blob: 341776f4c5d1d4da6cc1219b34586c6373187dd6 [file] [log] [blame]
willy tarreau036e1ce2005-12-17 13:46:33 +01001ChangeLog :
2===========
willy tarreau4302f492005-12-18 01:00:37 +01003
Christopher Fauleteaa786f2022-02-25 17:10:23 +010042022/02/25 : 2.4.14
5 - MINOR: sock: move the unused socket cleaning code into its own function
6 - BUG/MEDIUM: mworker: close unused transferred FDs on load failure
7 - BUG/MINOR: mworker: fix a FD leak of a sockpair upon a failed reload
8 - BUG/MINOR: sink: Use the right field in appctx context in release callback
9 - BUG/MEDIUM: resolvers: Really ignore trailing dot in domain names
10 - BUG/MEDIUM: fd: always align fdtab[] to 64 bytes
11 - BUG/MAJOR: compiler: relax alignment constraints on certain structures
12 - CI: ssl: enable parallel builds for OpenSSL on Linux
13 - CI: ssl: do not needlessly build the OpenSSL docs
14 - CI: ssl: keep the old method for ancient OpenSSL versions
15 - BUILD: fix compilation for OpenSSL-3.0.0-alpha17
16 - BUILD: adopt script/build-ssl.sh for OpenSSL-3.0.0beta2
17 - CI: github actions: add OpenSSL-3.0.0 builds
18 - CI: github actions: -Wno-deprecated-declarations with OpenSSL 3.0.0
19 - CI: github actions: relax OpenSSL-3.0.0 version comparision
20 - CI: github: switch to OpenSSL 3.0.0
21 - CI: github actions: update OpenSSL to 3.0.1
22 - BUG/MINOR: mailers: negotiate SMTP, not ESMTP
23 - BUG/MINOR: tools: url2sa reads ipv4 too far
24 - BUG/MEDIUM: htx: Be sure to have a buffer to perform a raw copy of a message
25 - BUG/MEDIUM: mux-h1: Don't wake h1s if mux is blocked on lack of output buffer
26 - BUG/MAJOR: mux-h2: Be sure to always report HTX parsing error to the app layer
27 - BUG/MINOR: proxy: preset the error message pointer to NULL in parse_new_proxy()
28 - REGTESTS: fix the race conditions in 40be_2srv_odd_health_checks
29 - CI: github: enable pool debugging by default
30 - BUG/MEDIUM: stream: Abort processing if response buffer allocation fails
31
Willy Tarreau095275f2022-02-16 16:29:03 +0100322022/02/16 : 2.4.13
33 - BUG/MEDIUM: connection: properly leave stopping list on error
34 - BUG/MEDIUM: htx: Adjust length to add DATA block in an empty HTX buffer
35 - BUILD/MINOR: fix solaris build with clang.
36 - BUG/MEDIUM: server: avoid changing healthcheck ctx with set server ssl
37 - MEDIUM: cli: yield between each pipelined command
38 - MINOR: channel: add new function co_getdelim() to support multiple delimiters
39 - BUG/MINOR: cli: avoid O(bufsize) parsing cost on pipelined commands
40 - BUG/MEDIUM: cli: Never wait for more data on client shutdown
41 - BUG/MEDIUM: mcli: do not try to parse empty buffers
42 - BUG/MEDIUM: mcli: always realign wrapping buffers before parsing them
43 - MEDIUM: h2/hpack: emit a Dynamic Table Size Update after settings change
44 - DEBUG: cli: add a new "debug dev fd" expert command
45 - BUILD: debug/cli: condition test of O_ASYNC to its existence
46 - DEBUG: pools: add new build option DEBUG_POOL_INTEGRITY
47 - BUG/MEDIUM: mworker: don't lose the stats socket on failed reload
48 - BUG/MINOR: pools: always flush pools about to be destroyed
49 - DEBUG: pools: add extra sanity checks when picking objects from a local cache
50 - DEBUG: pools: let's add reverse mapping from cache heads to thread and pool
51 - DEBUG: pools: replace the link pointer with the caller's address on pool_free()
52 - BUG/MAJOR: sched: prevent rare concurrent wakeup of multi-threaded tasks
53 - BUG/MINOR: mworker: does not erase the pidfile upon reload
54 - MINOR: listener: replace the listener's spinlock with an rwlock
55 - BUG/MEDIUM: listener: read-lock the listener during accept()
56 - BUG/MAJOR: http/htx: prevent unbounded loop in http_manage_server_side_cookies
57 - BUG/MAJOR: spoe: properly detach all agents when releasing the applet
58 - REGTESTS: peers: leave a bit more time to peers to synchronize
59 - BUG/MEDIUM: h2/hpack: fix emission of HPACK DTSU after settings change
60 - BUG/MINOR: mux-h2: update the session's idle delay before creating the stream
61
Christopher Faulet4b7772e2022-01-11 11:34:19 +0100622022/01/11 : 2.4.12
63 - BUG/MEDIUM: mworker: don't use _getsocks in wait mode
64 - BUG/MAJOR: mux-h1: Don't decrement .curr_len for unsent data
65
Willy Tarreau1e183b82022-01-07 16:40:23 +0100662022/01/07 : 2.4.11
67 - BUG/MEDIUM: backend: fix possible sockaddr leak on redispatch
68 - BUG/MINOR: pools: don't mark ourselves as harmless in DEBUG_UAF mode
69 - BUILD: cli: clear a maybe-unused warning on some older compilers
70 - BUILD: ssl: unbreak the build with newer libressl
71 - DOC: fix misspelled keyword "resolve_retries" in resolvers
72 - BUG/MEDIUM: ssl: initialize correctly ssl w/ default-server
73 - REGTESTS: ssl: fix ssl_default_server.vtc
74 - MINOR: proxy: add option idle-close-on-response
75 - BUILD: makefile: add -Wno-atomic-alignment to work around clang abusive warning
76 - BUG/MEDIUM: mux-h1: Fix splicing by properly detecting end of message
77 - BUG/MINOR: mux-h1: Fix splicing for messages with unknown length
78 - MINOR: compat: detect support for dl_iterate_phdr()
79 - MINOR: debug: add ability to dump loaded shared libraries
80 - MINOR: debug: add support for -dL to dump library names at boot
81 - BUG/MINOR: ssl: free the fields in srv->ssl_ctx
82 - BUG/MEDIUM: ssl: free the ckch instance linked to a server
83 - BUILD/MINOR: cpuset FreeBSD 14 build fix.
84 - BUILD/MINOR: tools: solaris build fix on dladdr.
85 - BUG/MINOR: cli: fix _getsocks with musl libc
86 - BUG/MEDIUM: http-ana: Preserve response's FLT_END analyser on L7 retry
87
Willy Tarreaubedf2772021-12-23 17:47:51 +0100882021/12/23 : 2.4.10
89 - BUILD/MINOR: server: fix compilation without SSL
90 - BUG/MEDIUM: cli: Properly set stream analyzers to process one command at a time
91 - BUG/MINOR: server: Don't rely on last default-server to init server SSL context
92 - BUG/MEDIUM: resolvers: Detach query item on response error
93 - BUG/MAJOR: segfault using multiple log forward sections.
94 - MINOR: mux-h1: Improve H1 traces by adding info about http parsers
95 - BUILD: bug: Fix error when compiling with -DDEBUG_STRICT_NOCRASH
96 - CI: Github Actions: temporarily disable BoringSSL builds
97 - MINOR: cli: "show version" displays the current process version
98 - BUILD: tree-wide: avoid warnings caused by redundant checks of obj_types
99 - IMPORT: slz: use the correct CRC32 instruction when running in 32-bit mode
100 - BUG/MINOR: cli/server: Don't crash when a server is added with a custom id
101 - DOC: spoe: Clarify use of the event directive in spoe-message section
102 - DOC: config: Specify %Ta is only available in HTTP mode
103 - DOC: config: retry-on list is space-delimited
104 - BUG/MEDIUM: mworker/cli: crash when trying to access an old PID in prompt mode
105 - MINOR: pools: work around possibly slow malloc_trim() during gc
106 - BUG/MINOR: backend: do not set sni on connection reuse
107 - BUG/MINOR: backend: restore the SF_SRV_REUSED flag original purpose
108
Christopher Fauletf8dcd9f2021-11-24 08:36:25 +01001092021/11/24 : 2.4.9
110 - MINOR: connection: add a new CO_FL_WANT_DRAIN flag to force drain on close
111 - MINOR: mux-h2: perform a full cycle shutdown+drain on close
112 - MINOR: mux-h2: add trace on extended connect usage
113 - BUG/MEDIUM: mux-h2: reject upgrade if no RFC8441 support
114 - BUG/MINOR: resolvers: fix sent messages were counted twice
115 - BUG/MINOR: resolvers: throw log message if trash not large enough for query
116 - BUG/MINOR: cache: properly ignore unparsable max-age in quotes
117 - DOC: config: Fix typo in ssl_fc_unique_id description
118 - BUG/MINOR: http-ana: Apply stop to the current section for http-response rules
119 - Revert "BUG/MINOR: http-ana: Don't eval front after-response rules if stopped on back"
120 - DOC: lua: Be explicit with the Reply object limits
121 - MINOR: mux-h1: Slightly Improve H1 traces
122 - BUG/MEDIUM: conn-stream: Don't reset CS flags on close
123 - BUG/MINOR: mworker: doesn't launch the program postparser
124 - BUG/MINOR: mux-h2: Fix H2_CF_DEM_SHORT_READ value
125 - BUG/MEDIUM: connection: make cs_shutr/cs_shutw//cs_close() idempotent
126 - BUG/MINOR: stick-table/cli: Check for invalid ipv6 key
127 - BUG/MEDIUM: mux-h1: Handle delayed silent shut in h1_process() to release H1C
128 - BUILD: makefile: simplify detection of libatomic
129 - BUG/MEDIUM: ssl: backend TLS resumption with sni and TLSv1.3
130 - BUG/MINOR: ssl: free correctly the sni in the backend SSL cache
131 - CLEANUP: ssl: fix wrong #else commentary
132 - BUG/MEDIUM: ssl: abort with the correct SSL error when SNI not found
133 - BUG/MEDIUM: mux-h2: always process a pending shut read
134 - BUG/MEDIUM: cache/cli: make "show cache" thread-safe
135 - BUG/MEDIUM: shctx: leave the block allocator when enough blocks are found
136 - BUG/MINOR: shctx: do not look for available blocks when the first one is enough
137 - MINOR: shctx: add a few BUG_ON() for consistency checks
138 - BUG/MINOR: ssl: make SSL counters atomic
139 - MINOR: stream/mux: implement websocket stream flag
140 - MINOR: connection: implement function to update ALPN
141 - MINOR: connection: add alternative mux_ops param for conn_install_mux_be
142 - MEDIUM: server/backend: implement websocket protocol selection
143 - MINOR: server: add ws keyword
144 - MINOR: promex: backend aggregated server check status
145 - BUG/MINOR: cache: Fix loop on cache entries in "show cache"
146
Willy Tarreaud1f8d412021-11-03 11:50:02 +01001472021/11/03 : 2.4.8
148 - CLEANUP: server: always include the storage for SSL settings
149 - CLEANUP: sample: rename sample_conv_var2smp() to *_sint
150 - CLEANUP: sample: uninline sample_conv_var2smp_str()
151 - MINOR: sample: provide a generic var-to-sample conversion function
152 - BUG/MEDIUM: sample: properly verify that variables cast to sample
153 - BUG/MEDIUM: mux_h2: Handle others remaining read0 cases on partial frames
154 - DOC: configuration: add clarification on escaping in keyword arguments
155 - MINOR: initcall: Rename __GLOBL and __GLOBL1.
156 - BUG/MINOR: http-ana: Don't eval front after-response rules if stopped on back
157 - BUG/MINOR: sample: Fix 'fix_tag_value' sample when waiting for more data
158 - BUG/MEDIUM: cpuset: fix cpuset size for FreeBSD
159 - BUG/MEDIUM: stream: Keep FLT_END analyzers if a stream detects a channel error
160 - Revert "CLEANUP: server: always include the storage for SSL settings"
161 - BUG/MEDIUM: tcpcheck: Properly catch early HTTP parsing errors
162 - BUG/MAJOR: dns: tcp session can remain attached to a list after a free
163 - BUG/MAJOR: dns: attempt to lock globaly for msg waiter list instead of use barrier
164 - MINOR: resolvers: fix the resolv_str_to_dn_label() API about trailing zero
165 - BUG/MEDIUM: resolver: make sure to always use the correct hostname length
166 - BUG/MINOR: resolvers: do not reject host names of length 255 in SRV records
167 - MINOR: resolvers: fix the resolv_dn_label_to_str() API about trailing zero
168 - BUG/MEDIUM: resolvers: fix truncated TLD consecutive to the API fix
169 - BUG/MEDIUM: resolvers: use correct storage for the target address
170 - MINOR: resolvers: merge address and target into a union "data"
171 - BUG/MAJOR: resolvers: add other missing references during resolution removal
172 - BUILD: resolvers: avoid a possible warning on null-deref
173 - BUG/MEDIUM: resolvers: always check a valid item in query_list
174 - BUG/MAJOR: buf: fix varint API post- vs pre- increment
175 - BUG/MINOR: task: do not set TASK_F_USR1 for no reason
176 - BUG/MINOR: mux-h2: do not prevent from sending a final GOAWAY frame
177 - BUG/MEDIUM: lua: fix memory leaks with realloc() on non-glibc systems
178 - MINOR: memprof: report the delta between alloc and free on realloc()
179 - MINOR: memprof: add one pointer size to the size of allocations
180 - BUILD: fix compilation on NetBSD
181 - BUG/MINOR: backend: fix improper insert in avail tree for always reuse
182 - BUILD: atomic: fix build on mac/arm64
183 - BUG/MINOR: mux-h1: Save shutdown mode if the shutdown is delayed
184 - BUG/MEDIUM: mux-h1: Perform a connection shutdown when the h1c is released
185 - CLEANUP: resolvers: do not export resolv_purge_resolution_answer_records()
186 - CLEANUP: always initialize the answer_list
187 - CLEANUP: resolvers: simplify resolv_link_resolution() regarding requesters
188 - CLEANUP: resolvers: replace all LIST_DELETE with LIST_DEL_INIT
189 - MEDIUM: resolvers: use a kill list to preserve the list consistency
190 - MEDIUM: resolvers: remove the last occurrences of the "safe" argument
191 - BUG/MEDIUM: resolvers: Don't recursively perform requester unlink
192 - BUG/MEDIUM: resolvers: Track api calls with a counter to free resolutions
193 - MINOR: halog: Add -qry parameter allowing to preserve the query string in -uX
194 - DOC: halog: Move the `-qry` parameter into the correct section in help text
195 - MINOR: halog: Rename -qry to -query
196 - CLEANUP: halog: Use consistent indentation in help()
197 - BUG/MINOR: halog: Add missing newlines in die() messages
198 - MINOR: halog: Add support for extracting captures using -hdr
199 - BUG/MEDIUM: http-ana: Drain request data waiting the tarpit timeout expiration
200 - BUG/MINOR: http: Authorization value can have multiple spaces after the scheme
201 - BUG/MEDIUM: stream-int: Block reads if channel cannot receive more data
202 - BUG/MEDIUM: sample: Cumulate frontend and backend sample validity flags
203 - BUG/MINOR: sample: fix backend direction flags consecutive to last fix
204 - DOC: config: Fix alphabetical order of fc_* samples
205 - BUILD/MINOR: cpuset freebsd build fix
206 - MINOR: stream: Improve dump of bogus streams
207 - DOC/peers: some grammar fixes for peers 2.1 spec
208 - SCRIPTS: git-show-backports: re-enable file-based filtering
209
Christopher Fauletb5e51a52021-10-04 14:56:33 +02002102021/10/04 : 2.4.7
211 - BUG/MEDIUM: http-ana: Clear request analyzers when applying redirect rule
212
Christopher Fauletd83fd762021-10-04 08:46:17 +02002132021/10/04 : 2.4.6
214 - BUG/MEDIUM: filters: Fix a typo when a filter is attached blocking the release
215
Christopher Faulete74a1b32021-10-01 17:54:02 +02002162021/10/01 : 2.4.5
217 - MINOR: lua: Add a flag on lua context to know the yield capability at run time
218 - BUG/MINOR: lua: Yield in channel functions only if lua context can yield
219 - BUG/MINOR: lua: Don't yield in channel.append() and channel.set()
220 - BUG/MINOR: stream: Don't release a stream if FLT_END is still registered
221 - BUG/MEDIUM: http-ana: Reset channels analysers when returning an error
222 - BUG/MINOR: filters: Always set FLT_END analyser when CF_FLT_ANALYZE flag is set
223 - BUG/MINOR: filters: Set right FLT_END analyser depending on channel
224 - BUG/MINOR: systemd: ExecStartPre must use -Ws
225 - BUG/MEDIUM: mux-h1: Remove "Upgrade:" header for requests with payload
226 - MINOR: htx: Skip headers with no value when adding a header list to a message
227 - CLEANUP: mux-h1: Remove condition rejecting upgrade requests with payload
228 - BUG/MEDIUM: stream-int: Don't block SI on a channel policy if EOI is reached
229 - BUG/MINOR: compat: make sure __WORDSIZE is always defined
230 - CLEANUP: pools: factor all malloc_trim() calls into trim_all_pools()
231 - MINOR: pools: automatically disable malloc_trim() with external allocators
232 - MINOR: pools: use mallinfo2() when available instead of mallinfo()
233 - BUG/MAJOR: mux-h1: Don't eval input data if an error was reported
234 - BUG/MINOR: tcpcheck: Improve LDAP response parsing to fix LDAP check
235 - DOC: management: certificate files must be sanitized before injection
236 - BUG/MINOR: connection: prevent null deref on mux cleanup task allocation
237 - BUILD: ist: prevent gcc11 maybe-uninitialized warning on istalloc
238 - BUG/MINOR: cli/payload: do not search for args inside payload
239 - BUG/MINOR: flt-trace: fix an infinite loop when random-parsing is set
240 - BUILD: tools: get the absolute path of the current binary on NetBSD.
241 - MINOR: tools: add FreeBSD support to get_exec_path()
242 - MINOR: proc: setting the process to produce a core dump on FreeBSD.
243 - BUILD: activity: use #ifdef not #if on USE_MEMORY_PROFILING
244 - BUILD/MINOR: defaults: eliminate warning on MAXHOSTNAMELEN with -Wundef
245 - BUILD/MINOR: ssl: avoid a build warning on LIBRESSL_VERSION with -Wundef
246 - IMPORT: slz: silence a build warning with -Wundef
247 - BUILD/MINOR: regex: avoid a build warning on USE_PCRE2 with -Wundef
248 - BUILD: ssl: next round of build warnings on LIBRESSL_VERSION_NUMBER
249 - BUILD: ssl: fix two remaining occurrences of #if USE_OPENSSL
250 - BUILD: tools: properly guard __GLIBC__ with defined()
251 - BUG/MINOR: vars: improve accuracy of the rules used to check expression validity
252 - MINOR: sample: add missing ARGC_ entries
253 - BUG/MINOR: vars: properly set the argument parsing context in the expression
254 - BUG/MINOR: vars: truncate the variable name in error reports about scope.
255 - BUG/MINOR: vars: do not talk about global section in CLI errors for set-var
256 - BUILD: fix dragonfly build again on __read_mostly
257 - BUILD: compiler: fixed a missing test on defined(__GNUC__)
258 - BUILD: halog: fix a -Wundef warning on non-glibc systems
259 - BUILD: threads: fix -Wundef for _POSIX_PRIORITY_SCHEDULING on libmusl
260 - BUG/MINOR: server: allow 'enable health' only if check configured
261 - BUG/MEDIUM: leastconn: fix rare possibility of divide by zero
262 - BUG/MINOR: h1-htx: Fix a typo when request parser is reset
263 - BUG/MINOR: http-ana: increment internal_errors counter on response error
264 - MINOR: server: implement a refcount for dynamic servers
265 - MINOR: global: define MODE_STOPPING
266 - BUG/MINOR: server: do not use refcount in free_server in stopping mode
267 - MINOR: server: return the next srv instance on free_server
268 - BUG/MINOR: stats: use refcount to protect dynamic server on dump
269 - BUG/MEDIUM: mux-h1: Adjust conditions to ask more space in the channel buffer
270 - BUG/MEDIUM: stream-int: Notify stream that the mux wants more room to xfer data
271 - BUG/MEDIUM: stream: Stop waiting for more data if SI is blocked on RXBLK_ROOM
272 - MINOR: stream-int: Set CO_RFL transient/persistent flags apart in si_cs_rcv()
273 - MINOR: htx: Add an HTX flag to know when a message is fragmented
274 - MINOR: htx: Add a function to know if the free space wraps
275 - BUG/MEDIUM: stream-int: Defrag HTX message in si_cs_recv() if necessary
276 - MINOR: stream-int: Notify mux when the buffer is not stuck when calling rcv_buf
277 - BUG/MINOR: mux-h1/mux-fcgi: Sanitize TE header to only send "trailers"
278 - DOC: peers: fix doc "enable" statement on "peers" sections
279 - MINOR: Makefile: add MEMORY_POOLS to the list of DEBUG_xxx options
280 - BUG/MEDIUM: lua: fix wakeup condition from sleep()
281 - BUG/MAJOR: lua: use task_wakeup() to properly run a task once
282 - MINOR: arg: Be able to forbid unresolved args when building an argument list
283 - BUG/MINOR: tcpcheck: Don't use arg list for default proxies during parsing
284 - BUG/MINOR: tcp-rules: Stop content rules eval on read error and end-of-input
285 - MINOR: tasks: catch TICK_ETERNITY with BUG_ON() in __task_queue()
286
Willy Tarreauacb1d0b2021-09-07 16:17:15 +02002872021/09/07 : 2.4.4
288 - BUG/MEDIUM: h2: match absolute-path not path-absolute for :path
289 - REGTESTS: http_upgrade: fix incorrect expectation on TCP->H1->H2
290 - REGTESTS: abortonclose: after retries, 503 is expected, not close
291 - MINOR: hlua: take the global Lua lock inside a global function
292 - BUG/MINOR: stick-table: fix the sc-set-gpt* parser when using expressions
293 - BUG/MEDIUM: base64: check output boundaries within base64{dec,urldec}
294 - BUG/MINOR: base64: base64urldec() ignores padding in output size check
295 - MINOR: compiler: implement an ONLY_ONCE() macro
296 - BUG/MINOR: lua: use strlcpy2() not strncpy() to copy sample keywords
297 - BUG/MINOR: time: fix idle time computation for long sleeps
298 - MINOR: time: add report_idle() to report process-wide idle time
299 - BUG/MINOR: ebtree: remove dependency on incorrect macro for bits per long
300 - BUG/MINOR threads: Use get_(local|gm)time instead of (local|gm)time
301 - BUG/MINOR: tools: Fix loop condition in dump_text()
302 - CLEANUP: Add missing include guard to signal.h
303 - BUG/MINOR: vars: fix set-var/unset-var exclusivity in the keyword parser
304 - DOC: configuration: remove wrong tcp-request examples in tcp-response
305 - BUG/MINOR: config: reject configs using HTTP with bufsize >= 256 MB
306 - CLEANUP: htx: remove comments about "must be < 256 MB"
307 - BUG/MAJOR: htx: fix missing header name length check in htx_add_header/trailer
308 - Revert "BUG/MINOR: stream-int: Don't block reads in si_update_rx() if chn may receive"
309
Willy Tarreau4dd5a5a2021-08-17 14:11:09 +02003102021/08/17 : 2.4.3
311 - BUILD: http_htx: fix ci compilation error with isdigit for Windows
312 - MINOR: mux_h2: define config to disable h2 websocket support
313 - BUG/MINOR: ssl: Default-server configuration ignored by server
314 - BUILD: add detection of missing important CFLAGS
315 - BUILD: lua: silence a build warning with TCC
316 - BUG/MEDIUM: mworker: do not register an exit handler if exit is expected
317 - BUG/MINOR: mworker: do not export HAPROXY_MWORKER_REEXEC across programs
318 - BUILD/MINOR: memprof fix macOs build.
319 - BUG/MEDIUM: ssl_sample: fix segfault for srv samples on invalid request
320 - BUG/MINOR: stats: Add missing agent stats on servers
321 - BUG/MINOR: check: fix the condition to validate a port-less server
322 - BUG/MINOR: resolvers: Use a null-terminated string to lookup in servers tree
323 - BUG/MINOR: systemd: must check the configuration using -Ws
324 - BUG/MINOR: mux-h1: Obey dontlognull option for empty requests
325 - BUG/MINOR: mux-h2: Obey dontlognull option during the preface
326 - BUG/MINOR: mux-h1: Be sure to swap H1C to splice mode when rcv_pipe() is called
327 - BUG/MEDIUM: mux-h2: Handle remaining read0 cases on partial frames
328 - BUG/MINOR: connection: Add missing error labels to conn_err_code_str
329 - BUG/MEDIUM: connection: close a rare race between idle conn close and takeover
330 - BUG/MEDIUM: pollers: clear the sleeping bit after waking up, not before
331 - BUG/MINOR: select: fix excess number of dead/skip reported
332 - BUG/MINOR: poll: fix abnormally high skip_fd counter
333 - BUG/MINOR: pollers: always program an update for migrated FDs
334 - BUG/MINOR: fd: protect fd state harder against a concurrent takeover
335 - DOC: internals: document the FD takeover process
336 - BUILD: opentracing: fixed build when using pkg-config utility
337 - BUG/MINOR: server: remove srv from px list on CLI 'add server' error
338 - BUG/MINOR: server: update last_change on maint->ready transitions too
339 - MINOR: server: unmark deprecated on enable health/agent cli
340 - ADMIN: dyncookie: implement a simple dynamic cookie calculator
341 - MINOR: spoe: Add a pointer on the filter config in the spoe_agent structure
342 - BUG/MEDIUM: spoe: Create a SPOE applet if necessary when the last one is released
343 - BUG/MINOR: buffer: fix buffer_dump() formatting
344 - BUG/MINOR: tcpcheck: Properly detect pending HTTP data in output buffer
345 - DOC: Improve the lua documentation
346 - DOC: config: Fix 'http-response send-spoe-group' documentation
347 - BUG/MEDIUM: spoe: Fix policy to close applets when SPOE connections are queued
348 - BUG/MEDIUM: cfgcheck: verify existing log-forward listeners during config check
349 - CLEANUP: assorted typo fixes in the code and comments
350 - DOC/MINOR: fix typo in management document
351 - MINOR: http: add a new function http_validate_scheme() to validate a scheme
352 - BUG/MAJOR: h2: verify early that non-http/https schemes match the valid syntax
353 - BUG/MAJOR: h2: verify that :path starts with a '/' before concatenating it
354 - BUG/MAJOR: h2: enforce stricter syntax checks on the :method pseudo-header
355 - BUG/MEDIUM: h2: give :authority precedence over Host
356 - REGTESTS: add a test to prevent h2 desync attacks
357
Christopher Faulet553dee32021-07-07 16:46:09 +02003582021/07/07 : 2.4.2
359 - BUG/MINOR: server-state: load SRV resolution only if params match the config
360 - BUG/MINOR: server: Forbid to set fqdn on the CLI if SRV resolution is enabled
361 - BUG/MEDIUM: server/cli: Fix ABBA deadlock when fqdn is set from the CLI
362 - MINOR: resolvers: Clean server in a dedicated function when removing a SRV item
363 - MINOR: resolvers: Remove server from named_servers tree when removing a SRV item
364 - BUG/MEDIUM: resolvers: Add a task on servers to check SRV resolution status
365 - BUG/MINOR: resolvers: Use resolver's lock in resolv_srvrq_expire_task()
366 - BUG/MINOR: server/cli: Fix locking in function processing "set server" command
367 - BUG/MINOR: cache: Correctly handle existing-but-empty 'accept-encoding' header
368 - BUG/MAJOR: server: fix deadlock when changing maxconn via agent-check
369 - REGTESTS: fix maxconn update with agent-check
370 - MINOR: tcp-act: Add set-src/set-src-port for "tcp-request content" rules
371 - DOC: config: Add missing actions in "tcp-request session" documentation
372 - CLEANUP: dns: Remove a forgotten debug message
373 - BUG/MINOR: resolvers: Always attach server on matching record on resolution
374 - BUG/MINOR: resolvers: Reset server IP when no ip is found in the response
375 - MINOR: resolvers: Reset server IP on error in resolv_get_ip_from_response()
376 - BUG/MINOR: checks: return correct error code for srv_parse_agent_check
377 - BUILD: Makefile: fix linkage for Haiku.
378 - BUG/MINOR: tcpcheck: Fix numbering of implicit HTTP send/expect rules
379 - BUG/MINOR: mqtt: Fix parser for string with more than 127 characters
380 - BUG/MINOR: mqtt: Support empty client ID in CONNECT message
381 - BUG/MEDIUM: resolvers: Make 1st server of a template take part to SRV resolution
382 - DOC: config: use CREATE USER for mysql-check
383 - BUG/MINOR: stick-table: fix several printf sign errors dumping tables
384 - BUG/MINOR: peers: fix data_type bit computation more than 32 data_types
385 - DOC: stick-table: add missing documentation about gpt0 stored type
386 - BUG/MEDIUM: sock: make sure to never miss early connection failures
387 - BUG/MINOR: cli: fix server name output in "show fd"
388 - Revert "MINOR: tcp-act: Add set-src/set-src-port for "tcp-request content" rules"
389 - MINOR: http: implement http_get_scheme
390 - MEDIUM: http: implement scheme-based normalization
391 - MEDIUM: h1-htx: apply scheme-based normalization on h1 requests
392 - MEDIUM: h2: apply scheme-based normalization on h2 requests
393 - REGTESTS: add http scheme-based normalization test
394
Willy Tarreau1ce7d492021-06-17 09:06:08 +02003952021/06/17 : 2.4.1
396 - BUG/MEDIUM: ebtree: Invalid read when looking for dup entry
397 - BUG/MAJOR: server: prevent deadlock when using 'set maxconn server'
398 - BUILD/MINOR: opentracing: fixed build when using clang
399 - BUG/MEDIUM: filters: Exec pre/post analysers only one time per filter
400 - BUG/MINOR: http-comp: Preserve HTTP_MSGF_COMPRESSIONG flag on the response
401 - Revert "MEDIUM: http-ana: Deal with L7 retries in HTTP analysers"
402 - BUG/MINOR: http-ana: Send the right error if max retries is reached on L7 retry
403 - BUG/MINOR: http-ana: Handle L7 retries on refused early data before K/A aborts
404 - MINOR: http-ana: Perform L7 retries because of status codes in response analyser
405 - MINOR: cfgparse: Fail when encountering extra arguments in macro
406 - DOC: intro: Fix typo in starter guide
407 - BUG/MINOR: server: Missing calloc return value check in srv_parse_source
408 - BUG/MINOR: peers: Missing calloc return value check in peers_register_table
409 - BUG/MINOR: ssl: Missing calloc return value check in ssl_init_single_engine
410 - BUG/MINOR: http: Missing calloc return value check in parse_http_req_capture
411 - BUG/MINOR: proxy: Missing calloc return value check in proxy_parse_declare
412 - BUG/MINOR: proxy: Missing calloc return value check in proxy_defproxy_cpy
413 - BUG/MINOR: http: Missing calloc return value check while parsing tcp-request/tcp-response
414 - BUG/MINOR: http: Missing calloc return value check while parsing tcp-request rule
415 - BUG/MINOR: compression: Missing calloc return value check in comp_append_type/algo
416 - BUG/MINOR: worker: Missing calloc return value check in mworker_env_to_proc_list
417 - BUG/MINOR: http: Missing calloc return value check while parsing redirect rule
418 - BUG/MINOR: http: Missing calloc return value check in make_arg_list
419 - BUG/MINOR: proxy: Missing calloc return value check in chash_init_server_tree
420 - CLEANUP: http-ana: Remove useless if statement about L7 retries
421 - BUG/MINOR: vars: Be sure to have a session to get checks variables
422 - DOC/MINOR: move uuid in the configuration to the right alphabetical order
423 - BUG/MAJOR: stream-int: Release SI endpoint on server side ASAP on retry
424 - MINOR: errors: allow empty va_args for diag variadic macro
425 - DOC: use the req.ssl_sni in examples
426 - BUILD: make tune.ssl.keylog available again
427 - BUG/MINOR: ssl: OCSP stapling does not work if expire too far in the future
428 - Revert "BUG/MINOR: opentracing: initialization after establishing daemon mode"
429 - BUG/MEDIUM: opentracing: initialization before establishing daemon and/or chroot mode
430 - BUG/MEDIUM: compression: Fix loop skipping unused blocks to get the next block
431 - BUG/MEDIUM: compression: Properly get the next block to iterate on payload
432 - BUG/MEDIUM: compression: Add a flag to know the filter is still processing data
433 - BUG/MINOR: pools: fix a possible memory leak in the lockless pool_flush()
434 - BUG/MINOR: pools: make DEBUG_UAF always write to the to-be-freed location
435 - MINOR: pools: do not maintain the lock during pool_flush()
436 - MINOR: pools: call malloc_trim() under thread isolation
437 - MEDIUM: pools: use a single pool_gc() function for locked and lockless
438 - BUG/MAJOR: pools: fix possible race with free() in the lockless variant
439 - CLEANUP: pools: remove now unused seq and pool_free_list
440 - BUG/MAJOR: htx: Fix htx_defrag() when an HTX block is expanded
441 - BUG/MINOR: mux-fcgi: Expose SERVER_SOFTWARE parameter by default
442 - CLEANUP: l7-retries: do not test the buffer before calling b_alloc()
443 - BUG/MINOR: resolvers: answser item list was randomly purged or errors
444 - MEDIUM: resolvers: add a ref on server to the used A/AAAA answer item
445 - MEDIUM: resolvers: add a ref between servers and srv request or used SRV record
446 - BUG/MAJOR: resolvers: segfault using server template without SRV RECORDs
447 - DOC: lua: Add a warning about buffers modification in HTTP
448 - BUG/MINOR: stick-table: insert srv in used_name tree even with fixed id
449 - BUG/MEDIUM: server: extend thread-isolate over much of CLI 'add server'
450 - BUG/MEDIUM: server: clear dynamic srv on delete from proxy id/name trees
451 - BUG/MEDIUM: server: do not forget to generate the dynamic servers ids
452 - BUG/MINOR: server: do not keep an invalid dynamic server in px ids tree
453 - BUG/MEDIUM: server: do not auto insert a dynamic server in px addr_node
454 - BUG/MEDIUM: shctx: use at least thread-based locking on USE_PRIVATE_CACHE
455 - BUG/MINOR: ssl: use atomic ops to update global shctx stats
456 - BUG/MINOR: mworker: fix typo in chroot error message
457 - CLEANUP: global: remove unused definition of stopping_task[]
458 - BUG/MAJOR: queue: set SF_ASSIGNED when setting strm->target on dequeue
459 - MINOR: backend: only skip LB when there are actual connections
460 - BUG/MINOR: mux-h1: do not skip the error response on bad requests
461 - BUG/MINOR: server: explicitly set "none" init-addr for dynamic servers
462 - MINOR: connection: add helper conn_append_debug_info()
463 - MINOR: mux-h2/trace: report a few connection-level info during h2_init()
464 - CLEANUP: mux-h2/traces: better align user messages
465 - BUG/MINOR: stats: make "show stat typed desc" work again
466 - MINOR: mux-h2: obey http-ignore-probes during the preface
467 - BUG/MINOR: mux-h2/traces: bring back the lost "rcvd H2 REQ" trace
468 - BUG/MINOR: mux-h2/traces: bring back the lost "sent H2 REQ/RES" traces
469
Willy Tarreau6cbbecf2021-05-14 09:03:30 +02004702021/05/14 : 2.4.0
471 - BUG/MINOR: http_fetch: fix possible uninit sockaddr in fetch_url_ip/port
472 - CLEANUP: cli/activity: Remove double spacing in set profiling command
473 - CI: Build VTest with clang
474 - CI: extend spellchecker whitelist, add "ists" as well
475 - CLEANUP: assorted typo fixes in the code and comments
476 - BUG/MINOR: memprof: properly account for differences for realloc()
477 - MINOR: memprof: also report the method used by each call
478 - MINOR: memprof: also report the totals and delta alloc-free
479 - CLEANUP: pattern: remove the unused and dangerous pat_ref_reload()
480 - BUG/MINOR: http_act: Fix normalizer names in error messages
481 - MINOR: uri_normalizer: Add `fragment-strip` normalizer
482 - MINOR: uri_normalizer: Add `fragment-encode` normalizer
483 - IMPORT: slz: use the generic function for the last bytes of the crc32
484 - IMPORT: slz: do not produce the crc32_fast table when CRC is natively supported
485 - BUILD/MINOR: opentracing: fixed compilation with filter enabled
486 - BUILD: makefile: add a few popular ARMv8 CPU targets
487 - BUG/MEDIUM: stick_table: fix crash when using tcp smp_fetch_src
488 - REGTESTS: stick-table: add src_conn_rate test
489 - CLEANUP: stick-table: remove a leftover of an old keyword declaration
490 - BUG/MINOR: stats: fix lastchk metric that got accidently lost
491 - EXAMPLES: add a "basic-config-edge" example config
492 - EXAMPLES: add a trivial config for quick testing
493 - DOC: management: Correct example reload command in the document
494 - Revert "CI: Build VTest with clang"
495 - MINOR: activity/cli: optionally support sorting by address on "show profiling"
496 - DEBUG: ssl: export ssl_sock_close() to see its symbol resolved in profiling
497 - BUG/MINOR: lua/vars: prevent get_var() from allocating a new name
498 - DOC: config: Fix configuration example for mqtt
499 - BUG/MAJOR: config: properly initialize cpu_map.thread[] up to MAX_THREADS
500 - BUILD: config: avoid a build warning on numa_detect_topology() without threads
501 - DOC: update min requirements in INSTALL
502 - IMPORT: slz: use inttypes.h instead of stdint.h
503 - BUILD: sample: use strtoll() instead of atoll()
504 - MINOR: version: mention that it's LTS now.
505
Willy Tarreau46b93af2021-05-10 07:50:26 +02005062021/05/10 : 2.4-dev19
507 - BUG/MINOR: hlua: Don't rely on top of the stack when using Lua buffers
508 - BUG/MEDIUM: cli: prevent memory leak on write errors
509 - BUG/MINOR: ssl/cli: fix a lock leak when no memory available
510 - MINOR: debug: add a new "debug dev sym" command in expert mode
511 - MINOR: pools/debug: slightly relax DEBUG_DONT_SHARE_POOLS
512 - CI: Github Actions: switch to LibreSSL-3.3.3
513 - MINOR: srv: close all idle connections on shutdown
514 - MINOR: connection: move session_list member in a union
515 - MEDIUM: mux_h1: release idling frontend conns on soft-stop
516 - MEDIUM: connection: close front idling connection on soft-stop
517 - MINOR: tools: add functions to retrieve the address of a symbol
518 - CLEANUP: activity: mark the profiling and task_profiling_mask __read_mostly
519 - MINOR: activity: add a "memory" entry to "profiling"
520 - MINOR: activity: declare the storage for memory usage statistics
521 - MEDIUM: activity: collect memory allocator statistics with USE_MEMORY_PROFILING
522 - MINOR: activity: clean up the show profiling io_handler a little bit
523 - MINOR: activity: make "show profiling" support a few arguments
524 - MINOR: activity: make "show profiling" also dump the memoery usage
525 - MINOR: activity: add the profiling.memory global setting
526 - BUILD: makefile: add new option USE_MEMORY_PROFILING
527 - MINOR: channel: Rely on HTX version if appropriate in channel_may_recv()
528 - BUG/MINOR: stream-int: Don't block reads in si_update_rx() if chn may receive
529 - MINOR: conn-stream: Force mux to wait for read events if abortonclose is set
530 - MEDIUM: mux-h1: Don't block reads when waiting for the other side
531 - BUG/MEDIUM: mux-h1: Properly report client close if abortonclose option is set
532 - REGTESTS: Add script to test abortonclose option
533 - MINOR: mux-h1: clean up conditions to enabled and disabled splicing
534 - MINOR: mux-h1: Subscribe for sends if output buffer is not empty in h1_snd_pipe
535 - MINOR: mux-h1: Always subscribe for reads when splicing is disabled
536 - MEDIUM: mux-h1: Wake H1 stream when both sides a synchronized
537 - CLEANUP: mux-h1: rename WAIT_INPUT/WAIT_OUTPUT flags
538 - MINOR: mux-h1: Manage processing blocking flags on the H1 stream
539 - BUG/MINOR: stream: Decrement server current session counter on L7 retry
540 - BUG/MINOR: config: fix uninitialized initial state in ".if" block evaluator
541 - BUG/MINOR: config: add a missing "ELIF_TAKE" test for ".elif" condition evaluator
542 - BUG/MINOR: config: .if/.elif should also accept negative integers
543 - MINOR: config: centralize the ".if"/".elif" condition parser and evaluator
544 - MINOR: config: keep up-to-date current file/line/section in the global struct
545 - MINOR: config: support some pseudo-variables for file/line/section
546 - BUILD: activity: do not include malloc.h
547 - MINOR: arg: improve the error message on missing closing parenthesis
548 - MINOR: global: export the build features string list
549 - MINOR: global: add version comparison functions
550 - MINOR: config: improve .if condition error reporting
551 - MINOR: config: make cfg_eval_condition() support predicates with arguments
552 - MINOR: config: add predicate "defined()" to conditional expression blocks
553 - MINOR: config: add predicates "streq()" and "strneq()" to conditional expressions
554 - MINOR: config: add predicate "feature" to detect certain built-in features
555 - MINOR: config: add predicates "version_atleast" and "version_before" to cond blocks
556 - BUG/MINOR: activity: use the new pointer to calculate the new size in realloc()
557 - BUG/MINOR: stream: properly clear the previous error mask on L7 retries
558 - MEDIUM: log: slightly refine the output format of alerts/warnings/etc
559 - MINOR: config: add a new message directive: .diag
560 - CLEANUP: cli/tree-wide: properly re-align the CLI commands' help messages
561 - BUG/MINOR: stream: Reset stream final state and si error type on L7 retry
562 - BUG/MINOR: checks: Handle synchronous connect when a tcpcheck is started
563 - BUG/MINOR: checks: Reschedule check on observe mode only if fastinter is set
564 - MINOR: global: define tainted flag
565 - MINOR: cfgparse: add a new field flags in cfg_keyword
566 - MINOR: cfgparse: implement experimental config keywords
567 - MINOR: action: replace match_pfx by a keyword flags field
568 - MINOR: action: implement experimental actions
569 - MINOR: cli: set tainted when using CLI expert/experimental mode
570 - MINOR: stats: report tainted on show info
571 - MINOR: http_act: mark normalize-uri as experimental
572 - BUILD: fix usage of ha_alert without format string
573 - MINOR: proxy: define PR_CAP_LB
574 - BUG/MINOR: server: do not report diag for peer servers with null weight
575 - DOC: ssl: Extra files loading now works for backends too
576 - ADDONS: make addons/ discoverable by git via .gitignore
577 - DOC: ssl: Add information about crl-file option
578 - MINOR: sample: improve error reporting on missing arg to strcmp() converter
579 - DOC: management: mention that some fields may be emitted as floats
580 - MINOR: tools: implement trimming of floating point numbers
581 - MINOR: tools: add a float-to-ascii conversion function
582 - MINOR: freq_ctr: add new functions to report float measurements
583 - MINOR: stats: avoid excessive padding of float values with trailing zeroes
584 - MINOR: stats: add the HTML conversion for float types
585 - MINOR: stats: pass the appctx flags to stats_fill_info()
586 - MINOR: stats: support an optional "float" option to "show info"
587 - MINOR: stats: use tv_remain() to precisely compute the uptime
588 - MINOR: stats: report uptime and start time as floats with subsecond resolution
589 - MINOR: stats: make "show info" able to report rates as floats when asked
590 - MINOR: config: mark tune.fd.edge-triggered as experimental
591 - REORG: vars: move the "proc" scope variables out of the global struct
592 - REORG: threads: move all_thread_mask() to thread.h
593 - BUILD: wdt: include signal-t.h
594 - BUILD: auth: include missing list.h
595 - REORG: mworker: move proc_self from global to mworker
596 - BUILD: ssl: ssl_utils requires chunk.h
597 - BUILD: config: cfgparse-ssl.c needs tools.h
598 - BUILD: wurfl: wurfl.c needs tools.h
599 - BUILD: spoe: flt_spoe.c needs tools.h
600 - BUILD: promex: service-prometheus.c needs tools.h
601 - BUILD: resolvers: include tools.h
602 - BUILD: config: include tools.h in cfgparse-listen.c
603 - BUILD: htx: include tools.h in http_htx.c
604 - BUILD: proxy: include tools.h in proxy.c
605 - BUILD: session: include tools.h in session.c
606 - BUILD: cache: include tools.h in cache.c
607 - BUILD: sink: include tools.h in sink.c
608 - BUILD: connection: include tools.h in connection.c
609 - BUILD: server-state: include tools.h from server_state.c
610 - BUILD: dns: include tools.h in dns.c
611 - BUILD: payload: include tools.h in payload.c
612 - BUILD: vars: include tools.h in vars.c
613 - BUILD: compression: include tools.h in compression.c
614 - BUILD: mworker: include tools.h from mworker.c
615 - BUILD: queue: include tools.h from queue.c
616 - BUILD: udp: include tools.h from proto_udp.c
617 - BUILD: stick-table: include freq_ctr.h from stick_table.h
618 - BUILD: server: include tools.h from server.c
619 - BUILD: server: include missing proxy.h in server.c
620 - BUILD: sink: include proxy.h in sink.c
621 - BUILD: mworker: include proxy.h in mworker.c
622 - BUILD: filters: include proxy.h in filters.c
623 - BUILD: fcgi-app: include proxy.h in fcgi-app.c
624 - BUILD: connection: move list_mux_proto() to connection.c
625 - REORG: stick-table: uninline stktable_alloc_data_type()
626 - REORG: stick-table: move composite address functions to stick_table.h
627 - REORG: config: uninline warnifnotcap() and failifnotcap()
628 - BUILD: task: remove unused includes from task.c
629 - MINOR: task: stop including stream.h from task.c
630 - BUILD: connection: stop including listener-t.h
631 - BUILD: hlua: include proxy.h from hlua.c
632 - BUILD: mux-h1: include proxy.h from mux-h1.c
633 - BUILD: mux-fcgi: include proxy.h from mux-fcgi.c
634 - BUILD: listener: include proxy.h from listener.c
635 - BUILD: http-rules: include proxy.h from http_rules.c
636 - BUILD: thread: include log.h from thread.c
637 - BUILD: comp: include proxy.h from flt_http_comp.c
638 - BUILD: fd: include log.h from fd.c
639 - BUILD: config: do not include proxy.h nor errors.h anymore in cfgparse.h
640 - BUILD: makefile: reorder object files by build time
641 - DOC: Fix a few grammar/spelling issues and casing of HAProxy
642 - REGTESTS: run-regtests: match both "HAProxy" and "HA-Proxy" in the version
643 - MINOR: version: report "HAProxy" not "HA-Proxy" in the version output
644 - DOC: remove last occurrences of "HA-Proxy" syntax
645 - DOC: peers: fix the protocol tag name in the doc
646 - ADMIN: netsnmp: report "HAProxy" and not "Haproxy" in output descriptions
647 - MEDIUM: mailers: use "HAProxy" nor "HAproxy" in the subject of messages
648 - DOC: fix a few remainig cases of "Haproxy" and "HAproxy" in doc and comments
649 - MINOR: tools/rnd: compute the result outside of the CAS loop
650 - BUILD: http_fetch: address a few aliasing warnings with older compilers
651 - BUILD: ssl: define HAVE_CRYPTO_memcmp() based on the library version
652 - BUILD: errors: include stdarg in errors.h
653 - REGTESTS: disable inter-thread idle connection sharing on sensitive tests
654 - MINOR: cli: make "help" support a command in argument
655 - MINOR: cli: sort the output of the "help" keywords
656 - CLEANUP: cli/mworker: properly align the help messages
657 - BUILD: memprof: make the old caller pointer a const in get_prof_bin()
658 - BUILD: compat: include malloc_np.h for USE_MEMORY_PROFILING on FreeBSD
659 - CI: Github Actions: enable USE_QUIC=1 for BoringSSL builds
660 - BUG/MEDIUM: quic: fix null deref on error path in qc_conn_init()
661 - BUILD: cli: appease a null-deref warning in cli_gen_usage_msg()
662
Willy Tarreau080347f2021-05-01 08:25:15 +02006632021/05/01 : 2.4-dev18
664 - DOC: Fix indentation for `path-strip-dot` normalizer
665 - DOC: Fix RFC reference for the percent-to-uppercase normalizer
666 - DOC: Add RFC references for the path-strip-dot(dot)? normalizers
667 - MINOR: uri_normalizer: Add a `percent-decode-unreserved` normalizer
668 - BUG/MINOR: mux-fcgi: Don't send normalized uri to FCGI application
669 - REORG: htx: Inline htx functions to add HTX blocks in a message
670 - CLEANUP: assorted typo fixes in the code and comments
671 - DOC: general: fix white spaces for HTML converter
672 - BUG/MINOR: ssl: ssl_sock_prepare_ssl_ctx does not return an error code
673 - BUG/MINOR: cpuset: move include guard at the very beginning
674 - BUG/MAJOR: fix build on musl with cpu_set_t support
675 - BUG/MEDIUM: cpuset: fix build on MacOS
676 - BUG/MINOR: htx: Preserve HTX flags when draining data from an HTX message
677 - MEDIUM: htx: Refactor htx_xfer_blks() to not rely on hdrs_bytes field
678 - CLEANUP: htx: Remove unsued hdrs_bytes field from the HTX start-line
679 - BUG/MINOR: mux-h2: Don't encroach on the reserve when decoding headers
680 - MEDIUM: http-ana: handle read error on server side if waiting for response
681 - MINOR: htx: Limit length of headers name/value when a HTX message is dumped
682 - BUG/MINOR: applet: Notify the other side if data were consumed by an applet
683 - BUG/MINOR: hlua: Don't consume headers when starting an HTTP lua service
684 - BUG/MEDIUM: mux-h2: Handle EOM flag when sending a DATA frame with zero-copy
685 - CLEANUP: channel: No longer notify the producer in co_skip()/co_htx_skip()
686 - DOC: general: fix example in set-timeout
687 - CLEANUP: cfgparse: de-uglify early file error handling in readcfgfile()
688 - MINOR: config: add a new "default-path" global directive
689 - BUG/MEDIUM: peers: initialize resync timer to get an initial full resync
690 - BUG/MEDIUM: peers: register last acked value as origin receiving a resync req
691 - BUG/MEDIUM: peers: stop considering ack messages teaching a full resync
692 - BUG/MEDIUM: peers: reset starting point if peers appears longly disconnected
693 - BUG/MEDIUM: peers: reset commitupdate value in new conns
694 - BUG/MEDIUM: peers: re-work updates lookup during the sync on the fly
695 - BUG/MEDIUM: peers: reset tables stage flags stages on new conns
696 - MINOR: peers: add informative flags about resync process for debugging
697 - BUG/MEDIUM: time: fix updating of global_now upon clock drift
698 - CLEANUP: freq_ctr: make arguments of freq_ctr_total() const
699 - CLEANUP: hlua: rename hlua_appctx* appctx to luactx
700 - MINOR: server: fix doc/trace on lb algo for dynamic server creation
701 - REGTESTS: server: fix cli_add_server due to previous trace update
702 - REGTESTS: add minimal CLI "add map" tests
703 - DOC: management: move "set var" to the proper place
704 - CLEANUP: map: slightly reorder the add map function
705 - MINOR: map: get rid of map_add_key_value()
706 - MINOR: map: show the current and next pattern version in "show map"
707 - MINOR: map/acl: add the possibility to specify the version in "show map/acl"
708 - MINOR: pattern: support purging arbitrary ranges of generations
709 - MINOR: map/acl: add the possibility to specify the version in "clear map/acl"
710 - MINOR: map/acl: add the "prepare map/acl" CLI command
711 - MINOR: map/acl: add the "commit map/acl" CLI command
712 - MINOR: map/acl: make "add map/acl" support an optional version number
713 - CLEANUP: map/cli: properly align the map/acl help
714 - BUILD: compiler: do not use already defined __read_mostly on dragonfly
715
Willy Tarreaubfd19d62021-04-23 19:11:10 +02007162021/04/23 : 2.4-dev17
717 - MINOIR: mux-pt/trace: Register a new trace source with its events
718 - BUG/MINOR: mux-pt: Fix a possible UAF because of traces in mux_pt_io_cb
719 - CI: travis: Drastically clean up .travis.yml
720 - CLEANUP: pattern: make all pattern tables read-only
721 - MINOR: trace: replace the trace() inline function with an equivalent macro
722 - MINOR: initcall: uniformize the section names between MacOS and other unixes
723 - CLEANUP: initcall: rename HA_SECTION to HA_INIT_SECTION
724 - MINOR: compiler: add macros to declare section names
725 - CLEANUP: initcall: rely on HA_SECTION_* instead of defining its own
726 - MINOR: global: declare a read_mostly section
727 - MINOR: fd: move a few read-mostly variables to their own section
728 - MINOR: epoll: move epoll_fd to read_mostly
729 - MINOR: kqueue: move kqueue_fd to read_mostly
730 - MINOR: pool: move pool declarations to read_mostly
731 - MINOR: threads: mark all_threads_mask as read_mostly
732 - MINOR: server: move idle_conn_task to read_mostly
733 - MINOR: protocol: move __protocol_by_family to read_mostly
734 - MINOR: pattern: make the pat_lru_seed read_mostly
735 - MINOR: trace: make trace sources read_mostly
736 - MINOR: freq_ctr: add a generic function to report the total value
737 - MEDIUM: freq_ctr: make read_freq_ctr_period() use freq_ctr_total()
738 - MEDIUM: freq_ctr: reimplement freq_ctr_remain_period() from freq_ctr_total()
739 - MINOR: freq_ctr: add the missing next_event_delay_period()
740 - MINOR: freq_ctr: unify freq_ctr and freq_ctr_period into freq_ctr
741 - MEDIUM: freq_ctr: replace the per-second counters with the generic ones
742 - MINOR: freq_ctr: add cpu_relax in the rotation loop of update_freq_ctr_period()
743 - MINOR: freq_ctr: simplify and improve the update function
744 - CLEANUP: time: remove the now unused ms_left_scaled
745 - MINOR: time: move the time initialization out of tv_update_date()
746 - MINOR: time: remove useless variable copies in tv_update_date()
747 - MINOR: time: change the global timeval and the the global tick at once
748 - MEDIUM: time: make the clock offset global and no per-thread
749 - MINOR: atomic: reimplement the relaxed version of x86 BTS/BTR
750 - MINOR: trace: Add the checks as a possible trace source
751 - MINOIR: checks/trace: Register a new trace source with its events
752 - MINOR: hlua: Add function to release a lua function
753 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a task
754 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a converter
755 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a fetch
756 - BUG/MINOR: hlua: Fix memory leaks on error path when parsing a lua action
757 - BUG/MINOR: hlua: Fix memory leaks on error path when registering an action
758 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a service
759 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a cli keyword
760 - BUG/MINOR: cfgparse/proxy: Fix some leaks during proxy section parsing
761 - BUG/MINOR: listener: Handle allocation error when allocating a new bind_conf
762 - BUG/MINOR: cfgparse/proxy: Hande allocation errors during proxy section parsing
763 - MINOR: cfgparse/proxy: Group alloc error handling during proxy section parsing
764 - DOC: internals: update the SSL architecture schema
765 - BUG/MEDIUM: sample: Fix adjusting size in field converter
766 - MINOR: sample: add ub64dec and ub64enc converters
767 - CLEANUP: sample: align samples list in sample.c
768 - MINOR: ist: Add `istclear(struct ist*)`
769 - CI: cirrus: install "pcre" package
770 - MINOR: opentracing: correct calculation of the number of arguments in the args[]
771 - MINOR: opentracing: transfer of context names without prefix
772 - MINOR: sample: converter: Add mjson library.
773 - MINOR: sample: converter: Add json_query converter
774 - CI: travis-ci: enable weekly graviton2 builds
775 - DOC: ssl: Certificate hot update only works on fronted certificates
776 - DOC: ssl: Certificate hot update works on server certificates
777 - BUG/MEDIUM: threads: Ignore current thread to end its harmless period
778 - MINOR: threads: Only consider running threads to end a thread harmeless period
779 - BUG/MINOR: checks: Set missing id to the dummy checks frontend
780 - MINOR: logs: Add support of checks as session origin to format lf strings
781 - BUG/MINOR: connection: Fix fc_http_major and bc_http_major for TCP connections
782 - MINOR: connection: Make bc_http_major compatible with tcp-checks
783 - BUG/MINOR: ssl-samples: Fix ssl_bc_* samples when called from a health-check
784 - BUG/MINOR: http-fetch: Make method smp safe if headers were already forwarded
785 - MINOR: tcp_samples: Add samples to get src/dst info of the backend connection
786 - MINOR: tcp_samples: Be able to call bc_src/bc_dst from the health-checks
787 - BUG/MINOR: http_htx: Remove BUG_ON() from http_get_stline() function
788 - BUG/MINOR: logs: Report the true number of retries if there was no connection
789 - BUILD: makefile: Redirect stderr to /dev/null when probing options
790 - MINOR: uri_normalizer: Add uri_normalizer module
791 - MINOR: uri_normalizer: Add `enum uri_normalizer_err`
792 - MINOR: uri_normalizer: Add `http-request normalize-uri`
793 - MINOR: uri_normalizer: Add a `merge-slashes` normalizer to http-request normalize-uri
794 - MINOR: uri_normalizer: Add a `dotdot` normalizer to http-request normalize-uri
795 - MINOR: uri_normalizer: Add support for supressing leading `../` for dotdot normalizer
796 - MINOR: uri_normalizer: Add a `sort-query` normalizer
797 - MINOR: uri_normalizer: Add a `percent-upper` normalizer
798 - MEDIUM: http_act: Rename uri-normalizers
799 - DOC: Add introduction to http-request normalize-uri
800 - DOC: Note that URI normalization is experimental
801 - BUG/MINOR: pools: maintain consistent ->allocated count on alloc failures
802 - BUG/MINOR: pools/buffers: make sure to always reserve the required buffers
803 - MINOR: pools: drop the unused static history of artificially failed allocs
804 - CLEANUP: pools: remove unused arguments to pool_evict_from_cache()
805 - MEDIUM: pools: move the cache into the pool header
806 - MINOR: pool: remove the size field from pool_cache_head
807 - MINOR: pools: rename CONFIG_HAP_LOCAL_POOLS to CONFIG_HAP_POOLS
808 - MINOR: pools: enable the fault injector in all allocation modes
809 - MINOR: pools: make the basic pool_refill_alloc()/pool_free() update needed_avg
810 - MEDIUM: pools: unify pool_refill_alloc() across all models
811 - CLEANUP: pools: re-merge pool_refill_alloc() and __pool_refill_alloc()
812 - MINOR: pools: call pool_alloc_nocache() out of the pool's lock
813 - CLEANUP: pools: move the lock to the only __pool_get_first() that needs it
814 - CLEANUP: pools: rename __pool_get_first() to pool_get_from_shared_cache()
815 - CLEANUP: pools: rename pool_*_{from,to}_cache() to *_local_cache()
816 - CLEANUP: pools: rename __pool_free() to pool_put_to_shared_cache()
817 - MINOR: tools: add statistical_prng_range() to get a random number over a range
818 - MINOR: pools: use cheaper randoms for fault injections
819 - MINOR: pools: move the fault injector to __pool_alloc()
820 - MINOR: pools: split the OS-based allocator in two
821 - MINOR: pools: always use atomic ops to maintain counters
822 - MINOR: pools: move pool_free_area() out of the lock in the locked version
823 - MINOR: pools: factor the release code into pool_put_to_os()
824 - MEDIUM: pools: make CONFIG_HAP_POOLS control both local and shared pools
825 - MINOR: pools: create unified pool_{get_from,put_to}_cache()
826 - MINOR: pools: evict excess objects using pool_evict_from_local_cache()
827 - MEDIUM: pools: make pool_put_to_cache() always call pool_put_to_local_cache()
828 - CLEANUP: pools: make the local cache allocator fall back to the shared cache
829 - CLEANUP: pools: merge pool_{get_from,put_to}_local_caches with generic ones
830 - CLEANUP: pools: uninline pool_put_to_cache()
831 - CLEANUP: pools: declare dummy pool functions to remove some ifdefs
832 - BUILD: pools: fix build with DEBUG_FAIL_ALLOC
833 - BUG/MINOR: server: make srv_alloc_lb() allocate lb_nodes for consistent hash
834 - CONTRIB: mod_defender: import the minimal number of includes
835 - CONTRIB: mod_defender: make the code build with the embedded includes
836 - CONTRIB: modsecurity: import the minimal number of includes
837 - CONTRIB: modsecurity: make the code build with the embedded includes
838 - CLEANUP: sample: Improve local variables in sample_conv_json_query
839 - CLEANUP: sample: Explicitly handle all possible enum values from mjson
840 - CLEANUP: sample: Use explicit return for successful `json_query`s
841 - CLEANUP: lists/tree-wide: rename some list operations to avoid some confusion
842 - CONTRIB: move spoa_example out of the tree
843 - BUG/MINOR: server: free srv.lb_nodes in free_server
844 - BUG/MINOR: logs: free logsrv.conf.file on exit
845 - BUG/MEDIUM: server: ensure thread-safety of server runtime creation
846 - MINOR: server: add log on dynamic server creation
847 - MINOR: server: implement delete server cli command
848 - CONTRIB: move spoa_server out of the tree
849 - CONTRIB: move modsecurity out of the tree
850 - BUG/MINOR: server: fix potential null gcc error in delete server
851 - BUG/MAJOR: mux-h2: Properly detect too large frames when decoding headers
852 - BUG/MEDIUM: mux-h2: Fix dfl calculation when merging CONTINUATION frames
853 - BUG/MINOR: uri_normalizer: Use delim parameter when building the sorted query in uri_normalizer_query_sort
854 - CLEANUP: uri_normalizer: Remove trailing whitespace
855 - MINOR: uri_normalizer: Add a `strip-dot` normalizer
856 - CONTRIB: move mod_defender out of the tree
857 - CLEANUP: contrib: remove the last references to the now dead contrib/ directory
858 - BUG/MEDIUM: config: fix cpu-map notation with both process and threads
859 - MINOR: config: add a diag for invalid cpu-map statement
860 - BUG/MINOR: mworker/init: don't reset nb_oldpids in non-mworker cases
861 - BUG/MINOR: mworker: don't use oldpids[] anymore for reload
862 - BUILD: makefile: fix the "make clean" target on strict bourne shells
863 - IMPORT: slz: import slz into the tree
864 - BUILD: compression: switch SLZ from out-of-tree to in-tree
865 - CI: github: do not build libslz any more
866 - CLEANUP: compression: remove calls to SLZ init functions
867 - BUG/MEDIUM: mux-h2: Properly handle shutdowns when received with data
868 - MINOR: cpuset: define a platform-independent cpuset type
869 - MINOR: cfgparse: use hap_cpuset for parse_cpu_set
870 - MEDIUM: config: use platform independent type hap_cpuset for cpu-map
871 - MINOR: thread: implement the detection of forced cpu affinity
872 - MINOR: cfgparse: support the comma separator on parse_cpu_set
873 - MEDIUM: cfgparse: detect numa and set affinity if needed
874 - MINOR: global: add option to disable numa detection
875 - BUG/MINOR: haproxy: fix compilation on macOS
876 - BUG/MINOR: cpuset: fix compilation on platform without cpu affinity
877 - MINOR: time: avoid unneeded updates to now_offset
878 - MINOR: time: avoid overwriting the same values of global_now
879 - CLEANUP: time: use __tv_to_ms() in tv_update_date() instead of open-coding
880 - MINOR: time: avoid u64 needlessly expensive computations for the 32-bit now_ms
881 - BUG/MINOR: peers: remove useless table check if initial resync is finished
882 - BUG/MEDIUM: peers: re-work connection to new process during reload.
883 - BUG/MEDIUM: peers: re-work refcnt on table to protect against flush
884 - BUG/MEDIUM: config: fix missing initialization in numa_detect_topology()
885
Willy Tarreau86512dd2021-04-09 17:10:39 +02008862021/04/09 : 2.4-dev16
887 - CLEANUP: dev/flags: remove useless test in the stdin number parser
888 - MINOR: No longer rely on deprecated sample fetches for predefined ACLs
889 - MINOR: acl: Add HTTP_2.0 predefined macro
890 - BUG/MINOR: hlua: Detect end of request when reading data for an HTTP applet
891 - BUG/MINOR: tools: fix parsing "us" unit for timers
892 - MINOR: server/bind: add support of new prefixes for addresses.
893 - MINOR: log: register config file and line number on log servers.
894 - MEDIUM: log: support tcp or stream addresses on log lines.
895 - BUG/MEDIUM: log: fix config parse error logging on stdout/stderr or any raw fd
896 - CLEANUP: fd: remove FD_POLL_DATA and FD_POLL_STICKY
897 - MEDIUM: fd: prepare FD_POLL_* to move to bits 8-15
898 - MEDIUM: fd: merge fdtab[].ev and state for FD_EV_* and FD_POLL_* into state
899 - MINOR: fd: move .linger_risk into fdtab[].state
900 - MINOR: fd: move .cloned into fdtab[].state
901 - MINOR: fd: move .initialized into fdtab[].state
902 - MINOR: fd: move .et_possible into fdtab[].state
903 - MINOR: fd: move .exported into fdtab[].state
904 - MINOR: fd: implement an exclusive syscall bit to remove the ugly "log" lock
905 - MINOR: cli/show-fd: slightly reorganize the FD status flags
906 - MINOR: atomic/arm64: detect and use builtins for the double-word CAS
907 - CLEANUP: atomic: add an explicit _FETCH variant for add/sub/and/or
908 - CLEANUP: atomic: make all standard add/or/and/sub operations return void
909 - CLEANUP: atomic: add a fetch-and-xxx variant for common operations
910 - CLEANUP: atomic: add HA_ATOMIC_INC/DEC for unit increments
911 - CLEANUP: atomic/tree-wide: replace single increments/decrements with inc/dec
912 - CLEANUP: atomic: use the __atomic variant of BTS/BTR on modern compilers
913 - MINOR: atomic: implement native BTS/BTR for x86
914 - MINOR: ist: Add `istappend(struct ist, char)`
915 - MINOR: ist: Add `istshift(struct ist*)`
916 - MINOR: ist: Add `istsplit(struct ist*, char)`
917 - BUG/MAJOR: fd: switch temp values to uint in fd_stop_both()
918 - MINOR: opentracing: register config file and line number on log servers
919 - MEDIUM: resolvers: add support of tcp address on nameserver line.
920 - MINOR: ist: Rename istappend() to __istappend()
921 - CLEANUP: htx: Make http_get_stline take a `const struct`
922 - CLEANUP: ist: Remove unused `count` argument from `ist2str*`
923 - CLEANUP: Remove useless malloc() casts
924
Willy Tarreau59fa1d12021-04-02 19:16:32 +02009252021/04/02 : 2.4-dev15
926 - BUG/MINOR: payload: Wait for more data if buffer is empty in payload/payload_lv
927 - BUG/MINOR: stats: Apply proper styles in HTML status page.
928 - BUG/MEDIUM: time: make sure to always initialize the global tick
929 - BUG/MINOR: tcp: fix silent-drop workaround for IPv6
930 - BUILD: tcp: use IPPROTO_IPV6 instead of SOL_IPV6 on FreeBSD/MacOS
931 - CLEANUP: socket: replace SOL_IP/IPV6/TCP with IPPROTO_IP/IPV6/TCP
932 - BUG/MINOR: http_fetch: make hdr_ip() resistant to empty fields
933 - BUG/MINOR: mux-h2: Don't emit log twice if an error occurred on the preface
934 - MINOR: stream: Don't trigger errors on destructive HTTP upgrades
935 - MINOR: frontend: Create HTTP txn for HTX streams
936 - MINOR: stream: Be sure to set HTTP analysers when creating an HTX stream
937 - BUG/MINOR: stream: Properly handle TCP>H1>H2 upgrades in http_wait_for_request
938 - BUG/MINOR: config: Add warning for http-after-response rules in TCP mode
939 - MINOR: muxes: Add a flag to notify a mux does not support any upgrade
940 - MINOR: mux-h1: Don't perform implicit HTTP/2 upgrade if not supported by mux
941 - MINOR: mux-pt: Don't perform implicit HTTP upgrade if not supported by mux
942 - MEDIUM: mux-h1: Expose h1 in the list of supported mux protocols
943 - MEDIUM: mux-pt: Expose passthrough in the list of supported mux protocols
944 - MINOR: muxes: Show muxes flags when the mux list is displayed
945 - DOC: config: Improve documentation about proto/check-proto keywords
946 - MINOR: stream: Use stream type instead of proxy mode when appropriate
947 - MINOR: filters/http-ana: Decide to filter HTTP headers in HTTP analysers
948 - MINOR: http-ana: Simplify creation/destruction of HTTP transactions
949 - MINOR: stream: Handle stream HTTP upgrade in a dedicated function
950 - MEDIUM: Add tcp-request switch-mode action to perform HTTP upgrade
951 - MINOR: config/proxy: Don't warn for HTTP rules in TCP if 'switch-mode http' set
952 - MINOR: config/proxy: Warn if a TCP proxy without backend is upgradable to HTTP
953 - DOC: config: Add documentation about TCP to HTTP upgrades
954 - REGTESTS: Add script to tests TCP to HTTP upgrades
955 - BUG/MINOR: payload/htx: Ingore L6 sample fetches for HTX streams/checks
956 - MINOR: htx: Make internal.strm.is_htx an internal sample fetch
957 - MINOR: action: Use a generic function to check validity of an action rule list
958 - MINOR: payload/config: Warn if a L6 sample fetch is used from an HTTP proxy
959 - MEDIUM: http-rules: Add wait-for-body action on request and response side
960 - REGTESTS: Add script to tests the wait-for-body HTTP action
961 - BUG/MINOR: http-fetch: Fix test on message state to capture the version
962 - CLEANUP: vars: always pre-initialize smp in vars_parse_cli_get_var()
963 - MINOR: global: define diagnostic mode of execution
964 - MINOR: cfgparse: diag for multiple nbthread statements
965 - MINOR: server: diag for 0 weight server
966 - MINOR: diag: create cfgdiag module
967 - MINOR: diag: diag if servers use the same cookie value
968 - MINOR: config: diag if global section after non-global
969 - TESTS: slightly reorganize the code in the tests/ directory
970 - TESTS: move tests/*.cfg to tests/config
971 - REGTESTS: ssl: "set ssl cert" and multi-certificates bundle
972 - REGTESTS: ssl: mark set_ssl_cert_bundle.vtc as broken
973 - CONTRIB: halog: fix issue with array of type char
974 - CONTRIB: tcploop: add a shutr command
975 - CONTRIB: debug: add the show-fd-to-flags script
976 - CONTRIB: debug: split poll from flags
977 - CONTRIB: move some dev-specific tools to dev/
978 - BUILD: makefile: always build the flags utility
979 - DEV: flags: replace the unneeded makefile with a README
980 - BUILD: makefile: integrate the hpack tools
981 - CONTRIB: merge ip6range with iprange
982 - CONTRIB: move some admin-related sub-projects to admin/
983 - CONTRIB: move halog to admin/
984 - ADMIN: halog: automatically enable USE_MEMCHR on the right glibc version
985 - BUILD: makefile: build halog with the correct flags
986 - BUILD: makefile: add a "USE_PROMEX" variable to ease building prometheus-exporter
987 - CONTRIB: move prometheus-exporter to addons/promex
988 - DOC: add a few words about USE_* and the addons directory
989 - CONTRIB: move 51Degrees to addons/51degrees
990 - CONTRIB: move src/da.c and contrib/deviceatlas to addons/deviceatlas
991 - CONTRIB: move src/wurfl.c and contrib/wurfl to addons/wurfl
992 - CONTRIB: move contrib/opentracing to addons/ot
993 - BUG/MINOR: opentracing: initialization after establishing daemon mode
994 - DOC: clarify that compression works for HTTP/2
995
Willy Tarreauaf6d88b2021-03-27 09:42:09 +01009962021/03/27 : 2.4-dev14
997 - MEDIUM: quic: Fix build.
998 - MEDIUM: quic: Fix build.
999 - CI: codespell: whitelist "Dragan Dosen"
1000 - CLEANUP: assorted typo fixes in the code and comments
1001 - CI: github actions: update LibreSSL to 3.2.5
1002 - REGTESTS: revert workaround for a crash with recent libressl on http-reuse sni
1003 - CLEANUP: mark defproxy as const on parse tune.fail-alloc
1004 - REGTESTS: remove unneeded experimental-mode in cli add server test
1005 - REGTESTS: wait for proper return of enable server in cli add server test
1006 - MINOR: compression: use pool_alloc(), not pool_alloc_dirty()
1007 - MINOR: spoe: use pool_alloc(), not pool_alloc_dirty()
1008 - MINOR: fcgi-app: use pool_alloc(), not pool_alloc_dirty()
1009 - MINOR: cache: use pool_alloc(), not pool_alloc_dirty()
1010 - MINOR: ssl: use pool_alloc(), not pool_alloc_dirty()
1011 - MINOR: opentracing: use pool_alloc(), not pool_alloc_dirty()
1012 - MINOR: dynbuf: make b_alloc() always check if the buffer is allocated
1013 - CLEANUP: compression: do not test for buffer before calling b_alloc()
1014 - CLEANUP: l7-retries: do not test the buffer before calling b_alloc()
1015 - MINOR: channel: simplify the channel's buffer allocation
1016 - MEDIUM: dynbuf: remove last usages of b_alloc_margin()
1017 - CLEANUP: dynbuf: remove b_alloc_margin()
1018 - CLEANUP: dynbuf: remove the unused b_alloc_fast() function
1019 - CLEANUP: pools: remove the unused pool_get_first() function
1020 - MINOR: pools: make the pool allocator support a few flags
1021 - MINOR: pools: add pool_zalloc() to return a zeroed area
1022 - CLEANUP: connection: use pool_zalloc() in conn_alloc_hash_node()
1023 - CLEANUP: filters: use pool_zalloc() in flt_stream_add_filter()
1024 - CLEANUP: spoe: use pool_zalloc() instead of pool_alloc+memset
1025 - CLEANUP: frontend: use pool_zalloc() in frontend_accept()
1026 - CLEANUP: mailers: use pool_zalloc() in enqueue_one_email_alert()
1027 - CLEANUP: resolvers: use pool_zalloc() in resolv_link_resolution()
1028 - CLEANUP: ssl: use pool_zalloc() in ssl_init_keylog()
1029 - CLEANUP: tcpcheck: use pool_zalloc() instead of pool_alloc+memset
1030 - CLEANUP: quic: use pool_zalloc() instead of pool_alloc+memset
1031 - MINOR: time: also provide a global, monotonic global_now_ms timer
1032 - BUG/MEDIUM: freq_ctr/threads: use the global_now_ms variable
1033 - MINOR: tools: introduce new option PA_O_DEFAULT_DGRAM on str2sa_range.
1034 - BUILD: tools: fix build error with new PA_O_DEFAULT_DGRAM
1035 - BUG/MINOR: ssl: Prevent disk access when using "add ssl crt-list"
1036 - CLEANUP: ssl: remove unused definitions
1037 - BUILD: ssl: guard ecdh functions with SSL_CTX_set_tmp_ecdh macro
1038 - MINOR: lua: Slightly improve function dumping the lua traceback
1039 - BUG/MEDIUM: debug/lua: Use internal hlua function to dump the lua traceback
1040 - BUG/MEDIUM: lua: Always init the lua stack before referencing the context
1041 - MINOR: fd: make fd_clr_running() return the remaining running mask
1042 - MINOR: fd: remove the unneeded running bit from fd_insert()
1043 - BUG/MEDIUM: fd: do not wait on FD removal in fd_delete()
1044 - CLEANUP: fd: remove unused fd_set_running_excl()
1045 - CLEANUP: fd: slightly simplify up _fd_delete_orphan()
1046 - BUG/MEDIUM: fd: Take the fd_mig_lock when closing if no DWCAS is available.
1047 - BUG/MEDIUM: release lock on idle conn killing on reached pool high count
1048 - BUG/MEDIUM: thread: Fix a deadlock if an isolated thread is marked as harmless
1049 - MINOR: tools: make url2ipv4 return the exact number of bytes parsed
1050 - BUG/MINOR: http_fetch: make hdr_ip() reject trailing characters
1051 - BUG/MEDIUM: mux-h1: make h1_shutw_conn() idempotent
1052 - BUG/MINOR: ssl: Fix update of default certificate
1053 - BUG/MINOR: ssl: Prevent removal of crt-list line if the instance is a default one
1054 - BUILD: ssl: introduce fine guard for ssl random extraction functions
1055 - REORG: global: move initcall register code in a dedicated file
1056 - REORG: global: move free acl/action in their related source files
1057 - REORG: split proxy allocation functions
1058 - MINOR: proxy: implement a free_proxy function
1059 - MINOR: proxy: define cap PR_CAP_LUA
1060 - MINOR: lua: properly allocate the lua Socket proxy
1061 - MINOR: lua: properly allocate the lua Socket servers
1062 - MINOR: vars: make get_vars() allow the session to be null
1063 - MINOR: vars: make the var() sample fetch keyword depend on nothing
1064 - CLEANUP: sample: remove duplicate "stopping" sample fetch keyword
1065 - MINOR: sample: make smp_resolve_args() return an allocate error message
1066 - MINOR: sample: add a new SMP_SRC_CONST sample capability
1067 - MINOR: sample: mark the truly constant sample fetch keywords as such
1068 - MINOR: sample: add a new CFG_PARSER context for samples
1069 - MINOR: action: add a new ACT_F_CFG_PARSER origin designation
1070 - MEDIUM: vars: add support for a "set-var" global directive
1071 - REGTESTS: add a basic reg-test for some "set-var" commands
1072 - MINOR: sample: add a new CLI_PARSER context for samples
1073 - MINOR: action: add a new ACT_F_CLI_PARSER origin designation
1074 - MINOR: vars/cli: add a "get var" CLI command to retrieve global variables
1075 - MEDIUM: cli: add a new experimental "set var" command
1076 - MINOR: compat: add short aliases for a few very commonly used types
1077 - BUILD: ssl: use EVP_CIPH_GCM_MODE macro instead of HA_OPENSSL_VERSION
1078 - MEDIUM: backend: use a trylock to grab a connection on high FD counts as well
1079
Willy Tarreau09cc6692021-03-19 17:16:18 +010010802021/03/19 : 2.4-dev13
1081 - BUG/MEDIUM: cli: fix "help" crashing since recent spelling fixes
1082 - BUG/MINOR: cfgparse: use the GLOBAL not LISTEN keywords list for spell checking
1083 - MINOR: tools: improve word fingerprinting by counting presence
1084 - MINOR: tools: do not sum squares of differences for word fingerprints
1085 - MINOR: cli: improve fuzzy matching to work on all remaining words at once
1086 - MINOR: cli: sort the suggestions by order of relevance
1087 - MINOR: cli: limit spelling suggestions to 5
1088 - MINOR: cfgparse/proxy: also support spelling fixes on options
1089 - BUG/MINOR: resolvers: Add missing case-insensitive comparisons of DNS hostnames
1090 - MINOR: time: export the global_now variable
1091 - BUG/MINOR: freq_ctr/threads: make use of the last updated global time
1092 - MINOR: freq_ctr/threads: relax when failing to update a sliding window value
1093 - MINOR/BUG: mworker/cli: do not use the unix_bind prefix for the master CLI socket
1094 - MINOR: mworker/cli: alert the user if we enabled a master CLI but not the master-worker mode
1095 - MINOR: cli: implement experimental-mode
1096 - REORG: server: add a free server function
1097 - MINOR: cfgparse: always alloc idle conns task
1098 - REORG: server: move keywords in srv_kws
1099 - MINOR: server: remove fastinter from mistyped kw list
1100 - REORG: server: split parse_server
1101 - REORG: server: move alert traces in parse_server
1102 - REORG: server: rename internal functions from parse_server
1103 - REORG: server: attach servers in parse_server
1104 - REORG: server: use flags for parse_server
1105 - MINOR: server: prepare parsing for dynamic servers
1106 - MINOR: stats: export function to allocate extra proxy counters
1107 - MEDIUM: server: implement 'add server' cli command
1108 - REGTESTS: implement test for 'add server' cli
1109 - MINOR: server: enable standard options for dynamic servers
1110 - MINOR: server: support keyword proto in 'add server' cli
1111 - BUG/MINOR: protocol: add missing support of dgram unix socket.
1112 - CLEANUP: Fix a typo in fix_is_valid description
1113 - MINOR: raw_sock: Add a close method.
1114 - MEDIUM: connections: Introduce a new XPRT method, start().
1115 - MEDIUM: connections: Implement a start() method for xprt_handshake.
1116 - MEDIUM: connections: Implement a start() method in ssl_sock.
1117 - MINOR: muxes: garbage collect the reset() method.
1118 - CLEANUP: tcp-rules: Fix a typo in error messages about expect-netscaler-cip
1119 - MEDIUM: lua: Use a per-thread counter to track some non-reentrant parts of lua
1120 - BUG/MEDIUM: debug/lua: Don't dump the lua stack if not dumpable
1121
Willy Tarreauacdd47d2021-03-13 11:48:28 +010011222021/03/13 : 2.4-dev12
1123 - CLEANUP: connection: Use `VAR_ARRAY` in `struct tlv` definition
1124 - CLEANUP: connection: Remove useless test for NULL before calling `pool_free()`
1125 - CLEANUP: connection: Use istptr / istlen for proxy_unique_id
1126 - MINOR: connection: Use a `struct ist` to store proxy_authority
1127 - CLEANUP: connection: Consistently use `struct ist` to process all TLV types
1128 - BUILD: task: fix build at -O0 with threads disabled
1129 - BUILD: bug: refine HA_LINK_ERROR() to only be used on gcc and derivatives
1130 - CLEANUP: config: make the cfg_keyword parsers take a const for the defproxy
1131 - BUILD: connection: do not use VAR_ARRAY in struct tlv
1132 - BUG/MEDIUM: session: NULL dereference possible when accessing the listener
1133 - MINOR: build: force CC to set a return code when probing options
1134 - CLEANUP: stream: rename a few remaining occurrences of "stream *sess"
1135 - BUG/MEDIUM: resolvers: handle huge responses over tcp servers.
1136 - CLEANUP: config: also address the cfg_keyword API change in the compression code
1137 - BUG/MEDIUM: ssl: properly remove the TASK_HEAVY flag at end of handshake
1138 - BUG/MINOR: sample: Rename SenderComID/TargetComID to SenderCompID/TargetCompID
1139 - MINOR: task: give the scheduler a bit more flexibility in the runqueue size
1140 - OPTIM: task: automatically adjust the default runqueue-depth to the threads
1141 - BUG/MINOR: connection: Missing QUIC initialization
1142 - BUG/MEDIUM: stick-tables: fix ref counter in table entry using multiple http tracksc.
1143 - BUILD: atomic/arm64: force the register pairs to use in __ha_cas_dw()
1144 - BUG/MEDIUM: filters: Set CF_FL_ANALYZE on channels when filters are attached
1145 - BUG/MINOR: tcpcheck: Update .health threshold of agent inside an agent-check
1146 - BUG/MINOR: proxy/session: Be sure to have a listener to increment its counters
1147 - BUG/MINOR: tcpcheck: Fix double free on error path when parsing tcp/http-check
1148 - BUG/MINOR: server-state: properly handle the case where the base is not set
1149 - BUG/MINOR: server-state: use the argument, not the global state
1150 - CLEANUP: tcp-rules: add missing actions in the tcp-request error message
1151 - CLEANUP: vars: make the error message clearer on missing arguments for set-var
1152 - CLEANUP: http-rules: remove the unexpected comma before the list of action keywords
1153 - CLEANUP: actions: the keyword must always be const from the rule
1154 - MINOR: tools: add simple word fingerprinting to find similar-looking words
1155 - MINOR: cfgparse: add cfg_find_best_match() to suggest an existing word
1156 - MINOR: cfgparse: suggest correct spelling for unknown words in proxy sections
1157 - MINOR: cfgparse: suggest correct spelling for unknown words in global section
1158 - MINOR: cfgparse/server: try to fix spelling mistakes on server lines
1159 - MINOR: cfgparse/bind: suggest correct spelling for unknown bind keywords
1160 - MINOR: actions: add a function to suggest an action ressembling a given word
1161 - MINOR: http-rules: suggest approaching action names on mismatch
1162 - MINOR: tcp-rules: suggest approaching action names on mismatch
1163 - BUG/MINOR: cfgparse/server: increment the extra keyword counter one at a time
1164 - Revert "BUG/MINOR: resolvers: Only renew TTL for SRV records with an additional record"
1165 - BUG/MINOR: resolvers: Consider server to have no IP on DNS resolution error
1166 - BUG/MINOR: resolvers: Reset server address on DNS error only on status change
1167 - BUG/MINOR: resolvers: Unlink DNS resolution to set RMAINT on SRV resolution
1168 - BUG/MEDIUM: resolvers: Don't set an address-less server as UP
1169 - BUG/MEDIUM: resolvers: Fix the loop looking for an existing ADD item
1170 - MINOR: resolvers: new function find_srvrq_answer_record()
1171 - BUG/MINOR; resolvers: Ignore DNS resolution for expired SRV item
1172 - BUG/MEDIUM: resolvers: Trigger a DNS resolution if an ADD item is obsolete
1173 - MINOR: resolvers: Use a function to remove answers attached to a resolution
1174 - MINOR: resolvers: Purge answer items when a SRV resolution triggers an error
1175 - MINOR: resolvers: Add function to change the srv status based on SRV resolution
1176 - MINOR: resolvers: Directly call srvrq_update_srv_state() when possible
1177 - BUG/MEDIUM: resolvers: Don't release resolution from a requester callbacks
1178 - BUG/MEDIUM: resolvers: Skip DNS resolution at startup if SRV resolution is set
1179 - MINOR: resolvers: Use milliseconds for cached items in resolver responses
1180 - MINOR: resolvers: Don't try to match immediatly renewed ADD items
1181 - CLEANUP: resolvers: Use ha_free() in srvrq_resolution_error_cb()
1182 - CLEANUP: resolvers: Perform unsafe loop on requester list when possible
1183 - BUG/MINOR: cli: make sure "help", "prompt", "quit" are enabled at master level
1184 - CLEANUP: cli: fix misleading comment and better indent the access level flags
1185 - MINOR: cli: set the ACCESS_MASTER* bits on the master bind_conf
1186 - MINOR: cli: test the appctx level for master access instead of comparing pointers
1187 - MINOR: cli: print the error message in the parser function itself
1188 - MINOR: cli: filter the list of commands to the matching part
1189 - MEDIUM: cli: apply spelling fixes for known commands before listing them
1190 - MINOR: tools: add the ability to update a word fingerprint
1191 - MINOR: cli: apply the fuzzy matching on the whole command instead of words
1192 - CLEANUP: cli: rename MAX_STATS_ARGS to MAX_CLI_ARGS
1193 - CLEANUP: cli: rename the last few "stats_" to "cli_"
1194 - CLEANUP: task: make sure tasklet handlers always indicate their statuses
1195 - CLEANUP: assorted typo fixes in the code and comments
1196
Willy Tarreau7bbc6c92021-03-05 21:24:23 +010011972021/03/05 : 2.4-dev11
1198 - CI: codespell: skip Makefile for spell check
1199 - CLEANUP: assorted typo fixes in the code and comments
1200 - BUG/MINOR: tcp-act: Don't forget to set the original port for IPv4 set-dst rule
1201 - BUG/MINOR: connection: Use the client's dst family for adressless servers
1202 - BUG/MEDIUM: spoe: Kill applets if there are pending connections and nbthread > 1
1203 - CLEANUP: Use ist2(const void*, size_t) whenever possible
1204 - CLEANUP: Use IST_NULL whenever possible
1205 - BUILD: proxy: Missing header inclusion for quic_transport_params_init()
1206 - BUILD: quic: Implicit conversion between SSL related enums.
1207 - DOC: spoe: Add a note about fragmentation support in HAProxy
1208 - MINOR: contrib: add support for heartbeat control messages.
1209 - MINOR: contrib: Enhance peers dissector heuristic.
1210 - BUG/MINOR: mux-h2: Fix typo in scheme adjustment
1211 - CLEANUP: Reapply the ist2() replacement patch
1212 - CLEANUP: Use istadv(const struct ist, const size_t) whenever possible
1213 - CLEANUP: Use isttest(const struct ist) whenever possible
1214 - Revert "CI: Pin VTest to a known good commit"
1215 - CLEANUP: backend: fix a wrong comment
1216 - BUG/MINOR: backend: free allocated bind_addr if reuse conn
1217 - MINOR: backend: handle reuse for conns with no server as target
1218 - REGTESTS: test http-reuse if no server target
1219 - BUG/MINOR: hlua: Don't strip last non-LWS char in hlua_pushstrippedstring()
1220 - BUG/MINOR: server-state: Don't load server-state file for disabled backends
1221 - CLEANUP: dns: Use DISGUISE() on a never-failing ring_attach() call
1222 - CLEANUP: dns: Remove useless test on ns->dgram in dns_connect_nameserver()
1223 - DOC: fix originalto except clause on destination address
1224 - CLEANUP: Use the ist() macro whenever possible
1225 - CLEANUP: Replace for loop with only a condition by while
1226 - REORG: atomic: reimplement pl_cpu_relax() from atomic-ops.h
1227 - BUG/MINOR: mt-list: always perform a cpu_relax call on failure
1228 - MINOR: atomic: add armv8.1-a atomics variant for cas-dw
1229 - MINOR: atomic: implement a more efficient arm64 __ha_cas_dw() using pairs
1230 - BUG/MINOR: ssl: don't truncate the file descriptor to 16 bits in debug mode
1231 - MEDIUM: pools: add CONFIG_HAP_NO_GLOBAL_POOLS and CONFIG_HAP_GLOBAL_POOLS
1232 - MINOR: pools: double the local pool cache size to 1 MB
1233 - MINOR: stream: use ABORT_NOW() and not abort() in stream_dump_and_crash()
1234 - CLEANUP: stream: explain why we queue the stream at the head of the server list
1235 - MEDIUM: backend: use a trylock when trying to grab an idle connection
1236 - REORG: tools: promote the debug PRNG to more general use as a statistical one
1237 - OPTIM: lb-random: use a cheaper PRNG to pick a server
1238 - MINOR: task: stop abusing the nice field to detect a tasklet
1239 - MINOR: task: move the nice field to the struct task only
1240 - MEDIUM: task: extend the state field to 32 bits
1241 - MINOR: task: add an application specific flag to the state: TASK_F_USR1
1242 - MEDIUM: muxes: mark idle conns tasklets with TASK_F_USR1
1243 - MINOR: xprt: add new xprt_set_idle and xprt_set_used methods
1244 - MEDIUM: ssl: implement xprt_set_used and xprt_set_idle to relax context checks
1245 - MINOR: server: don't read curr_used_conns multiple times
1246 - CLEANUP: global: reorder some fields to respect cache lines
1247 - CLEANUP: sockpair: silence a coverity check about fcntl()
1248 - CLEANUP: lua: set a dummy file name and line number on the dummy servers
1249 - MINOR: server: add a global list of all known servers
1250 - MINOR: cfgparse: finish to set up servers outside of the proxy setup loop
1251 - MINOR: server: allocate a per-thread struct for the per-thread connections stuff
1252 - MINOR: server: move actconns to the per-thread structure
1253 - CLEANUP: server: reorder some fields in the server struct to respect cache lines
1254 - MINOR: backend: add a BUG_ON if conn mux NULL in connect_server
1255 - BUG/MINOR: backend: fix condition for reuse on mode HTTP
1256 - BUILD: Fix build when using clang without optimizing.
1257 - CLEANUP: assorted typo fixes in the code and comments
1258
Willy Tarreau8ab65c22021-02-26 22:49:10 +010012592021/02/26 : 2.4-dev10
1260 - BUILD: SSL: introduce fine guard for RAND_keep_random_devices_open
1261 - MINOR: Configure the `cpp` userdiff driver for *.[ch] in .gitattributes
1262 - BUG/MINOR: ssl/cli: potential null pointer dereference in "set ssl cert"
1263 - BUG/MINOR: sample: secure convs that accept base64 string and var name as args
1264 - BUG/MEDIUM: vars: make functions vars_get_by_{name,desc} thread-safe
1265 - CLEANUP: vars: make smp_fetch_var() to reuse vars_get_by_desc()
1266 - DOC: muxes: add a diagram of the exchanges between muxes and outer world
1267 - BUG/MEDIUM: proxy: use thread-safe stream killing on hard-stop
1268 - BUG/MEDIUM: cli/shutdown sessions: make it thread-safe
1269 - BUG/MINOR: proxy: wake up all threads when sending the hard-stop signal
1270 - MINOR: stream: add an "epoch" to figure which streams appeared when
1271 - MINOR: cli/streams: make "show sess" dump all streams till the new epoch
1272 - MINOR: streams: use one list per stream instead of a global one
1273 - MEDIUM: streams: do not use the streams lock anymore
1274 - BUILD: dns: avoid a build warning when threads are disabled (dss unused)
1275 - MEDIUM: task: remove the tasks_run_queue counter and have one per thread
1276 - MINOR: tasks: do not maintain the rqueue_size counter anymore
1277 - CLEANUP: tasks: use a less confusing name for task_list_size
1278 - CLEANUP: task: move the tree root detection from __task_wakeup() to task_wakeup()
1279 - MINOR: task: limit the remote thread wakeup to the global runqueue only
1280 - MINOR: task: move the allocated tasks counter to the per-thread struct
1281 - CLEANUP: task: split the large tasklet_wakeup_on() function in two
1282 - BUG/MINOR: fd: properly wait for !running_mask in fd_set_running_excl()
1283 - BUG/MINOR: resolvers: Fix condition to release received ARs if not assigned
1284 - BUG/MINOR: resolvers: Only renew TTL for SRV records with an additional record
1285 - BUG/MINOR: resolvers: new callback to properly handle SRV record errors
1286 - BUG/MEDIUM: resolvers: Reset server address and port for obselete SRV records
1287 - BUG/MEDIUM: resolvers: Reset address for unresolved servers
1288 - DOC: Update the module list in MAINTAINERS file
1289 - MINOR: htx: Add function to reserve the max possible size for an HTX DATA block
1290 - DOC: Update the HTX API documentation
1291 - DOC: Update the filters guide
1292 - BUG/MEDIUM: contrib/prometheus-exporter: fix segfault in listener name dump
1293 - MINOR: task: split the counts of local and global tasks picked
1294 - MINOR: task: do not use __task_unlink_rq() from process_runnable_tasks()
1295 - MINOR: task: don't decrement then increment the local run queue
1296 - CLEANUP: task: re-merge __task_unlink_rq() with task_unlink_rq()
1297 - MINOR: task: make grq_total atomic to move it outside of the grq_lock
1298 - MINOR: tasks: also compute the tasklet latency when DEBUG_TASK is set
1299 - MINOR: task: make tasklet wakeup latency measurements more accurate
1300 - MINOR: server: Be more strict on the server-state line parsing
1301 - MINOR: server: Only fill one array when parsing a server-state line
1302 - MEDIUM: server: Refactor apply_server_state() to make it more readable
1303 - CLEANUP: server: Rename state_line node to node instead of name_name
1304 - CLEANUP: server: Rename state_line structure into server_state_line
1305 - CLEANUP: server: Use a local eb-tree to store lines of the global server-state file
1306 - MINOR: server: Be more strict when reading the version of a server-state file
1307 - MEDIUM: server: Store parsed params of a server-state line in the tree
1308 - MINOR: server: Remove cached line from global server-state tree when found
1309 - MINOR: server: Move loading state of servers in a dedicated function
1310 - MEDIUM: server: Use a tree to store local server-state lines
1311 - MINOR: server: Parse and store server-state lines in a dedicated function
1312 - MEDIUM: server: Don't load server-state file if a line is corrupted
1313 - REORG: server: Export and rename some functions updating server info
1314 - REORG: server-state: Move functions to deal with server-state in its own file
1315 - MINOR: server-state: Don't load server-state file for serverless proxies
1316 - CLEANUP: muxes: Remove useless if condition in show_fd function
1317 - BUG/MINOR: stats: fix compare of no-maint url suffix
1318 - MINOR: task: limit the number of subsequent heavy tasks with flag TASK_HEAVY
1319 - MINOR: ssl: mark the SSL handshake tasklet as heavy
1320 - CLEANUP: server: rename srv_cleanup_{idle,toremove}_connections()
1321 - BUG/MINOR: ssl: potential null pointer dereference in ckchs_dup()
1322 - MINOR: task: add one extra tasklet class: TL_HEAVY
1323 - MINOR: task: place the heavy elements in TL_HEAVY
1324 - MINOR: task: only limit TL_HEAVY tasks but not others
1325 - BUG/MINOR: http-ana: Only consider dst address to process originalto option
1326 - MINOR: tools: Add net_addr structure describing a network addess
1327 - MINOR: tools: Add function to compare an address to a network address
1328 - MEDIUM: http-ana: Add IPv6 support for forwardfor and orignialto options
1329 - CLEANUP: hlua: Use net_addr structure internally to parse and compare addresses
1330 - REGTESTS: Add script to test except param for fowardedfor/originalto options
1331 - DOC: scheduler: add a diagram showing the different queues and their usages
1332 - CLEANUP: tree-wide: replace free(x);x=NULL with ha_free(&x)
1333 - CLEANUP: config: replace a few free() with ha_free()
1334 - CLEANUP: vars: always zero the pointers after a free()
1335 - CLEANUP: ssl: remove a useless "if" before freeing an error message
1336 - CLEANUP: ssl: make ssl_sock_free_srv_ctx() zero the pointers after free
1337 - CLEANUP: ssl: use realloc() instead of free()+malloc()
1338
Willy Tarreau31dd3932021-02-20 13:30:31 +010013392021/02/20 : 2.4-dev9
1340 - BUG/MINOR: server: Remove RMAINT from admin state when loading server state
1341 - CLEANUP: check: fix get_check_status_info declaration
1342 - CLEANUP: contrib/prometheus-exporter: align for with srv status case
1343 - MEDIUM: stats: allow to select one field in `stats_fill_li_stats`
1344 - MINOR: stats: add helper to get status string
1345 - MEDIUM: contrib/prometheus-exporter: add listen stats
1346 - BUG/MINOR: dns: add test on result getting value from buffer into ring.
1347 - BUG/MINOR: dns: dns_connect_server must return -1 unsupported nameserver's type
1348 - BUG/MINOR: dns: missing test writing in output channel in session handler
1349 - BUG/MINOR: dns: fix ring attach control on dns_session_new
1350 - BUG/MEDIUM: dns: fix multiple double close on fd in dns.c
1351 - BUG/MAJOR: connection: prevent double free if conn selected for removal
1352 - BUG/MINOR: session: atomically increment the tracked sessions counter
1353 - REGTESTS: fix http_reuse_conn_hash proxy test
1354 - BUG/MINOR: backend: do not call smp_make_safe for sni conn hash
1355 - MINOR: connection: remove pointers for prehash in conn_hash_params
1356 - BUG/MINOR: checks: properly handle wrapping time in __health_adjust()
1357 - BUG/MEDIUM: checks: don't needlessly take the server lock in health_adjust()
1358 - DEBUG: thread: add 5 extra lock labels for statistics and debugging
1359 - OPTIM: server: switch the actconn list to an mt-list
1360 - Revert "MINOR: threads: change lock_t to an unsigned int"
1361 - MINOR: lb/api: let callers of take_conn/drop_conn tell if they have the lock
1362 - OPTIM: lb-first: do not take the server lock on take_conn/drop_conn
1363 - OPTIM: lb-leastconn: do not take the server lock on take_conn/drop_conn
1364 - OPTIM: lb-leastconn: do not unlink the server if it did not change
1365 - MINOR: tasks: add DEBUG_TASK to report caller info in a task
1366 - MINOR: tasks/debug: add some extra controls of use-after-free in DEBUG_TASK
1367 - BUG/MINOR: sample: Always consider zero size string samples as unsafe
1368 - MINOR: cli: add missing agent commands for set server
1369 - BUILD/MEDIUM: da Adding pcre2 support.
1370 - BUILD: ssl: introduce fine guard for OpenSSL specific SCTL functions
1371 - REGTESTS: reorder reuse conn proxy protocol test
1372 - DOC: explain the relation between pool-low-conn and tune.idle-pool.shared
1373 - MINOR: tasks: refine the default run queue depth
1374 - MINOR: listener: refine the default MAX_ACCEPT from 64 to 4
1375 - MINOR: mux_h2: do not try to remove front conn from idle trees
1376 - REGTESTS: workaround for a crash with recent libressl on http-reuse sni
1377 - BUG/MEDIUM: lists: Avoid an infinite loop in MT_LIST_TRY_ADDQ().
1378 - MINOR: connection: allocate dynamically hash node for backend conns
1379 - DOC: DeviceAtlas documentation typo fix.
1380 - BUG/MEDIUM: spoe: Resolve the sink if a SPOE logs in a ring buffer
1381 - BUG/MINOR: http-rules: Always replace the response status on a return action
1382 - BUG/MINOR: server: Init params before parsing a new server-state line
1383 - BUG/MINOR: server: Be sure to cut the last parsed field of a server-state line
1384 - MEDIUM: server: Don't introduce a new server-state file version
1385 - DOC: contrib/prometheus-exporter: remove htx reference
1386 - REGTESTS: contrib/prometheus-exporter: test NaN values
1387 - REGTESTS: contrib/prometheus-exporter: test well known labels
1388 - CI: github actions: switch to stable LibreSSL release
1389 - BUG/MINOR: server: Fix test on number of fields allowed in a server-state line
1390 - MINOR: dynbuf: make the buffer wait queue per thread
1391 - MINOR: dynbuf: use regular lists instead of mt_lists for buffer_wait
1392 - MINOR: dynbuf: pass offer_buffers() the number of buffers instead of a threshold
1393 - MINOR: sched: have one runqueue ticks counter per thread
1394
Willy Tarreaudc626ec2021-02-13 10:17:27 +010013952021/02/13 : 2.4-dev8
1396 - BUILD: ssl: fix typo in HAVE_SSL_CTX_ADD_SERVER_CUSTOM_EXT macro
1397 - BUILD: ssl: guard SSL_CTX_add_server_custom_ext with special macro
1398 - BUG/MINOR: mux-h1: Don't emit extra CRLF for empty chunked messages
1399 - MINOR: contrib/prometheus-exporter: use stats desc when possible followup
1400 - MEDIUM: contrib/prometheus-exporter: export base stick table stats
1401 - CLEANUP: assorted typo fixes in the code and comments
1402 - CLEANUP: check: fix some typo in comments
1403 - CLEANUP: tools: typo in `strl2irc` mention
1404 - BUILD: ssl: guard SSL_CTX_set_msg_callback with SSL_CTRL_SET_MSG_CALLBACK macro
1405 - MEDIUM: ssl: add a rwlock for SSL server session cache
1406 - BUG/MINOR: intops: fix mul32hi()'s off-by-one
1407 - BUG/MINOR: freq_ctr: fix a wrong delay calculation in next_event_delay()
1408 - MINOR: stick-tables/counters: add http_fail_cnt and http_fail_rate data types
1409 - MINOR: ssl: add SSL_SERVER_LOCK label in threads.h
1410 - BUG/MINOR: mux-h1: Don't increment HTTP error counter for 408/500/501 errors
1411 - BUG/MINOR: http-ana: Don't increment HTTP error counter on internal errors
1412 - BUG/MEDIUM: mux-h1: Always set CS_FL_EOI for response in MSG_DONE state
1413 - BUG/MINOR: mux-h1: Fix data skipping for bodyless responses
1414 - BUG/MINOR: mux-h1: Don't blindly skip EOT block for non-chunked messages
1415 - BUG/MEDIUM: mux-h2: Add EOT block when EOM flag is set on an empty HTX message
1416 - MINOR: mux-h1: Be sure EOM flag is set when processing end of outgoing message
1417 - REGTESTS: Add a script to test payload skipping for bodyless HTTP responses
1418 - BUG/MINOR: server: re-align state file fields number
1419 - CLEANUP: muxes: Remove useless calls to b_realign_if_empty()
1420 - BUG/MINOR: tools: Fix a memory leak on error path in parse_dotted_uints()
1421 - CLEANUP: remove unused variable assigned found by Coverity
1422 - CLEANUP: queue: Remove useless tests on p or pp in pendconn_process_next_strm()
1423 - BUG/MINOR: backend: hold correctly lock when killing idle conn
1424 - MEDIUM: connection: protect idle conn lists with locks
1425 - MEDIUM: connection: replace idle conn lists by eb trees
1426 - MINOR: backend: search conn in idle/safe trees after available
1427 - MINOR: backend: search conn in idle tree after safe on always reuse
1428 - MINOR: connection: prepare hash calcul for server conns
1429 - MINOR: connection: use the srv pointer for the srv conn hash
1430 - MINOR: backend: compare conn hash for session conn reuse
1431 - MINOR: connection: use sni as parameter for srv conn hash
1432 - MINOR: reg-tests: test http-reuse with sni
1433 - MINOR: backend: rewrite alloc of stream target address
1434 - MINOR: connection: use dst addr as parameter for srv conn hash
1435 - MINOR: reg-test: test http-reuse with specific dst addr
1436 - MINOR: backend: rewrite alloc of connection src address
1437 - MINOR: connection: use src addr as parameter for srv conn hash
1438 - MINOR: connection: use proxy protocol as parameter for srv conn hash
1439 - MINOR: reg-tests: test http-reuse with proxy protocol
1440 - MINOR: doc: update http reuse for new eligilible connections
1441 - BUG/MINOR: backend: fix compilation without ssl
1442 - REGTESTS: adjust http_reuse_conn_hash requirements
1443 - REGTESTS: deactivate a failed test on CI in http_reuse_conn_hash
1444 - REGTESTS: fix sni used in http_reuse_conn_hash for libressl 3.3.0
1445 - CI: cirrus: update FreeBSD image to 12.2
1446 - MEDIUM: cli: add check-addr command
1447 - MEDIUM: cli: add agent-port command
1448 - MEDIUM: server: add server-states version 2
1449 - MEDIUM: server: support {check,agent}_addr, agent_port in server state
1450 - MINOR: server: enhance error precision when applying server state
1451 - BUG/MINOR: server: Fix server-state-file-name directive
1452 - CLEANUP: deinit: release global and per-proxy server-state variables on deinit
1453 - BUG/MEDIUM: config: don't pick unset values from last defaults section
1454 - BUG/MINOR: stats: revert the change on ST_CONVDONE
1455 - BUG/MINOR: cfgparse: do not mention "addr:port" as supported on proxy lines
1456 - BUG/MINOR: http-htx: defpx must be a const in proxy_dup_default_conf_errors()
1457 - BUG/MINOR: tcpheck: the source list must be a const in dup_tcpcheck_var()
1458 - BUILD: proxy: add missing compression-t.h to proxy-t.h
1459 - REORG: move init_default_instance() to proxy.c and pass it the defproxy pointer
1460 - REORG: proxy: centralize the proxy allocation code into alloc_new_proxy()
1461 - MEDIUM: proxy: only take defaults when a default proxy is passed.
1462 - MINOR: proxy: move the defproxy freeing code to proxy.c
1463 - MINOR: proxy: always properly reset the just freed default instance pointers
1464 - BUG/MINOR: extcheck: proxy_parse_extcheck() must take a const for the defproxy
1465 - BUG/MINOR: tcpcheck: proxy_parse_*check*() must take a const for the defproxy
1466 - BUG/MINOR: server: parse_server() must take a const for the defproxy
1467 - MINOR: cfgparse: move defproxy to cfgparse-listen as a static
1468 - MINOR: proxy: add a new capability PR_CAP_DEF
1469 - MINOR: cfgparse: check PR_CAP_DEF instead of comparing poiner against defproxy
1470 - MINOR: cfgparse: use a pointer to the current default proxy
1471 - MINOR: proxy: also store the name for a defaults section
1472 - MINOR: proxy: support storing defaults sections into their own tree
1473 - MEDIUM: proxy: store the default proxies in a tree by name
1474 - MEDIUM: cfgparse: allow a proxy to designate the defaults section to use
1475 - MINOR: http: add baseq sample fetch
1476 - CLEANUP: tcpcheck: Remove a useless test on port variable
1477 - BUG/MINOR: server: Don't call fopen() with server-state filepath set to NULL
1478 - CLEANUP: server: Remove useless "filepath" variable in apply_server_state()
1479 - MINOR: peers/cli: do not dump the peers dictionaries by default on "show peers"
1480 - MINOR: cfgparse: implement a simple if/elif/else/endif macro block handler
1481 - DOC: tune: explain the origin of block size for ssl.cachesize
1482 - MINOR: tcp: add support for defer-accept on FreeBSD.
1483 - MINOR: ring: adds new ring_init function.
1484 - CLEANUP: channel: fix comment in ci_putblk.
1485 - BUG/MINOR: dns: add missing sent counter and parent id to dns counters.
1486 - BUG/MINOR: resolvers: fix attribute packed struct for dns
1487 - MINOR: resolvers: renames some resolvers internal types and removes dns prefix
1488 - MINOR: resolvers: renames type dns_resolvers to resolvers.
1489 - MINOR: resolvers: renames some resolvers specific types to not use dns prefix
1490 - MINOR: resolvers: renames some dns prefixed types using resolv prefix.
1491 - MINOR: resolvers: renames resolvers DNS_RESP_* errcodes RSLV_RESP_*
1492 - MINOR: resolvers: renames resolvers DNS_UPD_* returncodes to RSLV_UPD_*
1493 - MINOR: resolvers: rework prototype suffixes to split resolving and dns.
1494 - MEDIUM: resolvers: move resolvers section parsing from cfgparse.c to dns.c
1495 - MINOR: resolvers: replace nameserver's resolver ref by generic parent pointer
1496 - MINOR: resolvers: rework dns stats prototype because specific to resolvers
1497 - MEDIUM: resolvers: split resolving and dns message exchange layers.
1498 - MEDIUM: resolvers/dns: split dns.c into dns.c and resolvers.c
1499 - MEDIUM: dns: adds code to support pipelined DNS requests over TCP.
1500 - MEDIUM: resolvers: add supports of TCP nameservers in resolvers.
1501
Willy Tarreau5d46fbd2021-02-05 15:17:33 +010015022021/02/05 : 2.4-dev7
1503 - BUG/MINOR: stats: Continue to fill frontend stats on unimplemented metric
1504 - BUILD: ssl: guard Client Hello callbacks with HAVE_SSL_CLIENT_HELLO_CB macro instead of openssl version
1505 - BUG/MINOR: stats: Init the metric variable when frontend stats are filled
1506 - MINOR: contrib/prometheus-exporter: better output of Not-a-Number
1507 - CLEANUP: stats: improve field selection for frontend http fields
1508 - CLEANUP: assorted typo fixes in the code and comments
1509 - DOC: Improve documentation of the various hdr() fetches
1510 - MEDIUM: stats: allow to select one field in `stats_fill_be_stats`
1511 - MINOR: contrib/prometheus-exporter: use fill_be_stats for backend dump
1512 - MEDIUM: stats: allow to select one field in `stats_fill_sv_stats`
1513 - MINOR: contrib/prometheus-exporter: use fill_sv_stats for server dump
1514 - MINOR: abort() on my_unreachable() when DEBUG_USE_ABORT is set.
1515 - BUG/MEDIUM: filters/htx: Fix data forwarding when payload length is unknown
1516 - BUG/MINOR: config: fix leak on proxy.conn_src.bind_hdr_name
1517 - MINOR: reg-tests: add http-reuse test
1518 - CLEANUP: srv: fix comment for pool-max-conn
1519 - CLEANUP: backend: remove an obsolete comment on conn_backend_get
1520 - REORG: backend: simplify conn_backend_get
1521 - MINOR: ssl: Server ssl context prepare function refactoring
1522 - MINOR: ssl: Certificate chain loading refactorization
1523 - MEDIUM: ssl: Load client certificates in a ckch for backend servers
1524 - MEDIUM: ssl: Enable backend certificate hot update
1525 - MINOR: ssl: Remove client_crt member of the server's ssl context
1526 - CLEANUP: ssl/cli: rework free in cli_io_handler_commit_cert()
1527 - CLEANUP: ssl: remove SSL_CTX function parameter
1528 - CLEANUP: ssl: make load_srv_{ckchs,cert} match their bind counterpart
1529 - BUILD: Include stdlib.h in compiler.h if DEBUG_USE_ABORT is set
1530 - CI: Fix DEBUG_STRICT definition for Coverity
1531 - BUG/MINOR: stats: Remove a break preventing ST_F_QCUR to be set for servers
1532 - BUG/MINOR: stats: Add a break after filling ST_F_MODE field for servers
1533 - CLEANUP: ssl: remove dead code in ckch_inst_new_load_srv_store()
1534 - BUG/MINOR: ssl: init tmp chunk correctly in ssl_sock_load_sctl_from_file()
1535 - BUG/MEDIUM: session: only retrieve ready idle conn from session
1536 - BUG/MEDIUM: backend: never reuse a connection for tcp mode
1537 - REGTESTS: set_ssl_server_cert.vtc: remove the abort command
1538 - REGTESTS: set_ssl_server_cert.vtc: check the Sha1 Fingerprint
1539 - REGTESTS: set_ssl_server_cert.vtc: check the sha1 from the server
1540 - MEDIUM: stream-int: Take care of EOS if the SI wake callback function
1541 - MINOR: mux-h1: Try to wake up data layer first before calling its wake callback
1542 - MINOR: mux-h1: Wake up H1C after its creation if input buffer is not empty
1543 - MEDIUM: mux-h1: Add ST_READY state for the H1 connections
1544 - MINOR: stream: Add a function to validate TCP to H1 upgrades
1545 - MEDIUM: http-ana: Do nothing in wait-for-request analyzer if not htx
1546 - BUG/MEDIUM: stream: Don't immediatly ack the TCP to H1 upgrades
1547 - BUG/MAJOR: mux-h1: Properly handle TCP to H1 upgrades
1548 - MINOR: htx/http-ana: Save info about Upgrade option in the Connection header
1549 - MEDIUM: http-ana: Refuse invalid 101-switching-protocols responses
1550 - BUG/MINOR: h2/mux-h2: Reject 101 responses with a PROTOCOL_ERROR h2s error
1551 - MINOR: mux-h1/mux-fcgi: Don't set TUNNEL mode if payload length is unknown
1552 - MINOR: mux-h1: Split H1C_F_WAIT_OPPOSITE flag to separate input/output sides
1553 - MINOR: mux-h2: Add 2 flags to help to properly handle tunnel mode
1554 - MEDIUM: mux-h2: Block client data on server side waiting tunnel establishment
1555 - MEDIUM: mux-h2: Close streams when processing data for an aborted tunnel
1556 - MEDIUM: mux-h1: Properly handle tunnel establishments and aborts
1557 - BUG/MAJOR: mux-h1/mux-h2/htx: Fix HTTP tunnel management at the mux level
1558 - MINOR: htx: Rename HTX_FL_EOI flag into HTX_FL_EOM
1559 - REGTESTS: Don't run http_msg_full_on_eom script on the 2.4 anymore
1560 - MINOR: htx: Add a function to know if a block is the only one in a message
1561 - MAJOR: htx: Remove the EOM block type and use HTX_FL_EOM instead
1562 - MINOR: mux-h1: Add a flag on H1 streams with a response known to be bodyless
1563 - MEDIUM: mux-h1: Don't emit any payload for bodyless responses
1564 - MINOR: mux-h1: Don't emit C-L and T-E headers for 204 and 1xx responses
1565 - MINOR: mux-h1: Don't add Connection close/keep-alive header for 1xx messages
1566 - MINOR: h2/mux-h2: Add flags to notify the response is known to have no body
1567 - MEDIUM: mux-h2: Don't emit DATA frame for bodyless responses
1568 - MEDIUM: http-ana: Deal with L7 retries in HTTP analysers
1569 - MINOR: h1: reject websocket handshake if missing key
1570 - MEDIUM: h1: generate WebSocket key on response if needed
1571 - MINOR: mux_h2: define H2_SF_EXT_CONNECT_SENT stream flag
1572 - MEDIUM: h2: parse Extended CONNECT reponse to htx
1573 - MEDIUM: mux_h2: generate Extended CONNECT from htx upgrade
1574 - MEDIUM: h1: add a WebSocket key on handshake if needed
1575 - MEDIUM: mux_h2: generate Extended CONNECT response
1576 - MEDIUM: h2: parse Extended CONNECT request to htx
1577 - MEDIUM: h2: send connect protocol h2 settings
1578 - MINOR: vtc: add test for h1/h2 protocol upgrade translation
1579 - MINOR: vtc: add websocket test
1580 - REGTESTS: Fix required versions for several scripts
1581 - REGTEST: Don't use the websocket to validate http-check
1582 - MINOR: mux-h1/trace: add traces at level ERROR for all kind of errors
1583 - MINOR: mux-fcgi/trace: add traces at level ERROR for all kind of errors
1584 - MINOR: h1: Raise the chunk size limit up to (2^52 - 1)
1585 - BUG/MEDIUM: listener: do not accept connections faster than we can process them
1586 - REGTESTS: set_ssl_server_cert.vtc: set as broken
1587 - Revert "BUG/MEDIUM: listener: do not accept connections faster than we can process them"
1588 - BUG/MINOR: backend: check available list allocation for reuse
1589 - CI: Fix the coverity builds
1590 - DOC: management: fix "show resolvers" alphabetical ordering
1591 - MINOR: tools: add print_time_short() to print a condensed duration value
1592 - MINOR: activity: make profiling more manageable
1593 - MINOR: activity: declare a new structure to collect per-function activity
1594 - MEDIUM: tasks/activity: collect per-task statistics when profiling is enabled
1595 - MINOR: activity: also report collected tasks stats in "show profiling"
1596 - MINOR: activity: flush scheduler stats on "set profiling tasks on"
1597 - MINOR: activity: add a new "show tasks" command to list currently active tasks
1598 - MINOR: listener: export accept_queue_process
1599 - MINOR: session: export session_expire_embryonic()
1600 - MINOR: muxes: export the timeout and shutr task handlers
1601 - MINOR: checks: export a few functions that appear often in trace dumps
1602 - MINOR: peers: export process_peer_sync() to improve traces
1603 - MINOR: stick-tables: export process_table_expire()
1604 - MINOR: mux-h1: Remove first useless test on count in h1_process_output()
1605 - BUG/MINOR: stick-table: Always call smp_fetch_src() with a valid arg list
1606 - MINOR: http-fetch: Don't check if argument list is set in sample fetches
1607 - MINOR: http-conv: Don't check if argument list is set in sample converters
1608 - MINOR: sample: Don't check if argument list is set in sample fetches
1609 - MINOR: ssl-sample: Don't check if argument list is set in sample fetches
1610 - MINOR: mux-h2: Don't tests the start-line when sending HEADERS frame
1611 - MINOR: mux-h2: Slightly improve request HEADERS frames sending
1612 - MINOR: contrib/prometheus-exporter: declare states for objects
1613 - MAJOR: contrib/prometheus-exporter: move ftd/bkd/srv states to labels
1614 - MEDIUM: contrib/prometheus-exporter: Use dynamic labels instead of static ones
1615 - MINOR: listener: export manage_global_listener_queue()
1616 - BUG/MINOR: activity: take care of late wakeups in "show tasks"
1617 - REGTESTS: set_ssl_server_cert.vtc: remove SSL caching and set as working
1618 - REGTESTS: set_ssl_server_cert: cleanup the SSL caching option
1619 - MINOR: checks: Add function to get the result code corresponding to a status
1620 - MAJOR: contrib/prometheus-exporter: move health check status to labels
1621 - MINOR: contrib/prometheus-exporter: improve service status description field
1622 - MINOR: stats: improve pending connections description
1623 - MINOR: stats: improve max stats descriptions
1624 - MINOR: contrib/prometheus-exporter: use stats desc when possible
1625 - MINOR: contrib/prometheus-exporter: add uweight field
1626 - MINOR: contrib/prometheus-exporter: add recv logs_logs_total field
1627 - CLEANUP: contrib/prometheus-exporter: remove unused includes
1628 - CLEANUP: contrib/prometheus-exporter: align and reorder fields
1629 - CLEANUP: contrib/prometheus-exporter: remove description in README
1630 - DOC: contrib/prometheus-exporter: Add missing metrics in README
1631 - BUG/MINOR: contrib/prometheus-exporter: Add missing label for ST_F_HRSP_1XX
1632 - BUG/MINOR: contrib/prometheus-exporter: Restart labels dump at the right pos
1633 - BUG/MEDIUM: ssl/cli: abort ssl cert is freeing the old store
1634 - BUG/MEDIUM: ssl: check a connection's status before computing a handshake
1635 - BUG/MINOR: mux_h2: fix incorrect stat titles
1636 - MINOR: ssl/cli: flush the server session cache upon 'commit ssl cert'
1637 - BUG/MINOR: cli: fix set server addr/port coherency with health checks
1638 - MINOR: server: Don't set the check port during the update from a state file
1639 - MINOR: dns: Don't set the check port during a server dns resolution
1640 - MEDIUM: check: remove checkport checkaddr flag
1641 - MEDIUM: server: adding support for check_port in server state
1642 - BUG/MINOR: check: consitent way to set agentaddr
1643 - MEDIUM: check: align agentaddr and agentport behaviour
1644 - DOC: server: Add missing params in comment of the server state line parsing
1645 - BUG/MINOR: xxhash: make sure armv6 uses memcpy()
1646 - REGTESTS: mark http-check-send.vtc as 2.4-only
1647 - REGTESTS: mark sample_fetches/hashes.vtc as 2.4-only
1648 - BUG/MINOR: ssl: do not try to use early data if not configured
1649 - REGTESTS: unbreak http-check-send.vtc
1650 - MINOR: cli/show_fd: report local and report ports when known
1651 - BUILD: Makefile: move REGTESTST_TYPE default setting
1652 - BUG/MEDIUM: mux-h2: handle remaining read0 cases
1653 - CLEANUP: http-htx: Set buffer area to NULL instead of malloc(0)
1654 - BUG/MINOR: sock: Unclosed fd in case of connection allocation failure
1655 - BUG/MEDIUM: mux-h2: do not quit the demux loop before setting END_REACHED
1656
Willy Tarreau24c41d52021-01-22 16:19:46 +010016572021/01/22 : 2.4-dev6
1658 - MINOR: converter: adding support for url_enc
1659 - BUILD: SSL: guard TLS13 ciphersuites with HAVE_SSL_CTX_SET_CIPHERSUITES
1660 - BUILD: ssl: guard EVP_PKEY_get_default_digest_nid with ASN1_PKEY_CTRL_DEFAULT_MD_NID
1661 - BUILD: ssl: guard openssl specific with SSL_READ_EARLY_DATA_SUCCESS
1662 - BUILD: Makefile: exclude broken tests by default
1663 - CLEANUP: cfgparse: replace "realloc" with "my_realloc2" to fix to memory leak on error
1664 - BUG/MINOR: hlua: Fix memory leak in hlua_alloc
1665 - MINOR: contrib/prometheus-exporter: export build_info
1666 - DOC: fix some spelling issues over multiple files
1667 - CLEANUP: Fix spelling errors in comments
1668 - SCRIPTS: announce-release: fix typo in help message
1669 - CI: github: add a few more words to the codespell ignore list
1670 - DOC: Add maintainers for the Prometheus exporter
1671 - BUG/MINOR: sample: fix concat() converter's corruption with non-string variables
1672 - BUG/MINOR: server: Memory leak of proxy.used_server_addr during deinit
1673 - CLEANUP: sample: remove uneeded check in json validation
1674 - MINOR: reg-tests: add a way to add service dependency
1675 - BUG/MINOR: sample: check alloc_trash_chunk return value in concat()
1676 - BUG/MINOR: reg-tests: fix service dependency script
1677 - MINOR: reg-tests: add base prometheus test
1678 - Revert "BUG/MINOR: dns: SRV records ignores duplicated AR records"
1679 - BUG/MINOR: sample: Memory leak of sample_expr structure in case of error
1680 - BUG/MINOR: check: Don't perform any check on servers defined in a frontend
1681 - BUG/MINOR: init: enforce strict-limits when using master-worker
1682 - MINOR: contrib/prometheus-exporter: avoid connection close header
1683 - MINOR: contrib/prometheus-exporter: use fill_info for process dump
1684 - BUG/MINOR: init: Use a dynamic buffer to set HAPROXY_CFGFILES env variable
1685 - MINOR: config: Add failifnotcap() to emit an alert on proxy capabilities
1686 - MINOR: server: Forbid server definitions in frontend sections
1687 - BUG/MINOR: threads: Fixes the number of possible cpus report for Mac.
1688 - CLEANUP: pattern: rename pat_ref_commit() to pat_ref_commit_elt()
1689 - MINOR: pattern: add the missing generation ID manipulation functions
1690 - MINOR: peers: Add traces for peer control messages.
1691 - BUG/MINOR: dns: SRV records ignores duplicated AR records (v2)
1692 - BUILD: peers: fix build warning about unused variable
1693 - BUG/MEDIUM: stats: add missing INF_BUILD_INFO definition
1694 - MINOR: cache: Do not store responses with an unknown encoding
1695 - BUG/MINOR: peers: Possible appctx pointer dereference.
1696 - MINOR: build: discard echoing in help target
1697 - MINOR: cache: Remove the `hash` part of the accept-encoding secondary key
1698 - CLEANUP: cache: Use proper data types in secondary_key_cmp()
1699 - CLEANUP: Rename accept_encoding_hash_cmp to accept_encoding_bitmap_cmp
1700 - BUG/MINOR: peers: Wrong "new_conn" value for "show peers" CLI command.
1701 - MINOR: contrib: Make the wireshark peers dissector compile for more distribs.
1702 - BUG/MINOR: mux_h2: missing space between "st" and ".flg" in the "show fd" helper
1703 - CLEANUP: tools: make resolve_sym_name() take a const pointer
1704 - CLEANUP: cli: make "show fd" use a const connection to access other fields
1705 - MINOR: cli: make "show fd" also report the xprt and xprt_ctx
1706 - MINOR: xprt: add a new show_fd() helper to complete some "show fd" dumps.
1707 - MINOR: ssl: provide a "show fd" helper to report important SSL information
1708 - MINOR: xprt/mux: export all *_io_cb functions so that "show fd" resolves them
1709 - MINOR: mux-h2: make the "show fd" helper also decode the h2s subscriber when known
1710 - MINOR: mux-h1: make the "show fd" helper also decode the h1s subscriber when known
1711 - MINOR: mux-fcgi: make the "show fd" helper also decode the fstrm subscriber when known
1712 - CI: Pin VTest to a known good commit
1713 - MINOR: cli: give the show_fd helpers the ability to report a suspicious entry
1714 - MINOR: cli/show_fd: report some easily detectable suspicious states
1715 - MINOR: ssl/show_fd: report some FDs as suspicious when possible
1716 - MINOR: mux-h2/show_fd: report as suspicious an entry with too many calls
1717 - MINOR: mux-h1/show_fd: report as suspicious an entry with too many calls
1718 - BUG/MINOR: mworker: define _GNU_SOURCE for strsignal()
1719 - BUG/MEDIUM: tcpcheck: Don't destroy connection in the wake callback context
1720 - BUG/MEDIUM: mux-h2: Xfer rxbuf to the upper layer when creating a front stream
1721 - MINOR: http: Add HTTP 501-not-implemented error message
1722 - MINOR: muxes: Add exit status for errors about not implemented features
1723 - MINOR: mux-h1: Be prepared to return 501-not-implemented error during parsing
1724 - MEDIUM: mux-h1: Return a 501-not-implemented for upgrade requests with a body
1725 - DOC: Remove space after comma in converter signature
1726 - DOC: Rename '<var name>' to '<var>' in converter signature
1727 - MINOR: stats: duplicate 3 fields in bytes in info
1728 - MINOR: stats: add new start time field
1729 - MINOR: contrib/prometheus-exporter: merge info description from stats
1730 - MEDIUM: stats: allow to select one field in `stats_fill_fe_stats`
1731 - MINOR: contrib/prometheus-exporter: use fill_fe_stats for frontend dump
1732 - MINOR: contrib/prometheus-exporter: Don't needlessly set empty label for metrics
1733 - MINOR: contrib/prometheus-exporter: Split the PROMEX_FL_STATS_METRIC flag
1734 - MINOR: contrib/prometheus-exporter: Add promex_metric struct defining a metric
1735 - MEDIUM: contrib/prometheus-exporter: Rework matrices defining Promex metrics
1736 - BUG/MINOR: stream: Don't update counters when TCP to H2 upgrades are performed
1737 - BUG/MEDIUM: mux-h2: fix read0 handling on partial frames
1738 - MINOR: debug: always export the my_backtrace function
1739 - MINOR: debug: extract the backtrace dumping code to its own function
1740 - MINOR: debug: create ha_backtrace_to_stderr() to dump an instant backtrace
1741 - MEDIUM: debug: now always print a backtrace on CRASH_NOW() and friends
1742 - MINOR: debug: let ha_dump_backtrace() dump a bit further for some callers
1743 - BUILD: debug: fix build warning by consuming the write() result
1744 - MINOR: lua: remove unused variable
1745 - BUILD/MINOR: lua: define _GNU_SOURCE for LLONG_MAX
1746
Willy Tarreau421ed392021-01-06 17:41:32 +010017472021/01/06 : 2.4-dev5
1748 - BUG/MEDIUM: mux_h2: Add missing braces in h2_snd_buf()around trace+wakeup
1749 - BUILD: hpack: hpack-tbl-t.h uses VAR_ARRAY but does not include compiler.h
1750 - MINOR: time: increase the minimum wakeup interval to 60s
1751 - MINOR: check: do not ignore a connection header for http-check send
1752 - REGTESTS: complete http-check test
1753 - CI: travis-ci: drop coverity scan builds
1754 - MINOR: atomic: don't use ; to separate instruction on aarch64.
1755 - IMPORT: xxhash: update to v0.8.0 that introduces stable XXH3 variant
1756 - MEDIUM: xxhash: use the XXH3 functions to generate 64-bit hashes
1757 - MEDIUM: xxhash: use the XXH_INLINE_ALL macro to inline all functions
1758 - CLEANUP: xxhash: remove the unused src/xxhash.c
1759 - MINOR: sample: add the xxh3 converter
1760 - REGTESTS: add tests for the xxh3 converter
1761 - MINOR: protocol: Create proto_quic QUIC protocol layer.
1762 - MINOR: connection: Attach a "quic_conn" struct to "connection" struct.
1763 - MINOR: quic: Redefine control layer callbacks which are QUIC specific.
1764 - MINOR: ssl_sock: Initialize BIO and SSL objects outside of ssl_sock_init()
1765 - MINOR: connection: Add a new xprt to connection.
1766 - MINOR: ssl: Export definitions required by QUIC.
1767 - MINOR: cfgparse: Do not modify the QUIC xprt when parsing "ssl".
1768 - MINOR: tools: Add support for QUIC addresses parsing.
1769 - MINOR: quic: Add definitions for QUIC protocol.
1770 - MINOR: quic: Import C source code files for QUIC protocol.
1771 - MINOR: listener: Add QUIC info to listeners and receivers.
1772 - MINOR: server: Add QUIC definitions to servers.
1773 - MINOR: ssl: SSL CTX initialization modifications for QUIC.
1774 - MINOR: ssl: QUIC transport parameters parsing.
1775 - MINOR: quic: QUIC socket management finalization.
1776 - MINOR: cfgparse: QUIC default server transport parameters init.
1777 - MINOR: quic: Enable the compilation of QUIC modules.
1778 - MAJOR: quic: Make usage of ebtrees to store QUIC ACK ranges.
1779 - MINOR: quic: Attempt to make trace more readable
1780 - MINOR: quic: Make usage of the congestion control window.
1781 - MINOR: quic: Flag RX packet as ack-eliciting from the generic parser.
1782 - MINOR: quic: Code reordering to help in reviewing/modifying.
1783 - MINOR: quic: Add traces to congestion avoidance NewReno callback.
1784 - MINOR: quic: Display the SSL alert in ->ssl_send_alert() callback.
1785 - MINOR: quic: Update the initial salt to that of draft-29.
1786 - MINOR: quic: Add traces for in flght ack-eliciting packet counter.
1787 - MINOR: quic: make a packet build fails when qc_build_frm() fails.
1788 - MINOR: quic: Add traces for quic_packet_encrypt().
1789 - MINOR: cache: Refactoring of secondary_key building functions
1790 - MINOR: cache: Avoid storing responses whose secondary key was not correctly calculated
1791 - BUG/MINOR: cache: Manage multiple headers in accept-encoding normalization
1792 - MINOR: cache: Add specific secondary key comparison mechanism
1793 - MINOR: http: Add helper functions to trim spaces and tabs
1794 - MEDIUM: cache: Manage a subset of encodings in accept-encoding normalizer
1795 - REGTESTS: cache: Simplify vary.vtc file
1796 - REGTESTS: cache: Add a specific test for the accept-encoding normalizer
1797 - MINOR: cache: Remove redundant test in http_action_req_cache_use
1798 - MINOR: cache: Replace the "process-vary" option's expected values
1799 - CI: GitHub Actions: enable daily Coverity scan
1800 - BUG/MEDIUM: cache: Fix hash collision in `accept-encoding` handling for `Vary`
1801 - MEDIUM: stick-tables: Add srvkey option to stick-table
1802 - REGTESTS: add test for stickiness using "srvkey addr"
1803 - BUILD: Makefile: disable -Warray-bounds until it's fixed in gcc 11
1804 - BUG/MINOR: sink: Return an allocation failure in __sink_new if strdup() fails
1805 - BUG/MINOR: lua: Fix memory leak error cases in hlua_config_prepend_path
1806 - MINOR: lua: Use consistent error message 'memory allocation failed'
1807 - CLEANUP: Compare the return value of `XXXcmp()` functions with zero
1808 - CLEANUP: Apply the coccinelle patch for `XXXcmp()` on include/
1809 - CLEANUP: Apply the coccinelle patch for `XXXcmp()` on contrib/
1810 - MINOR: qpack: Add static header table definitions for QPACK.
1811 - CLEANUP: qpack: Wrong comment about the draft for QPACK static header table.
1812 - CLEANUP: quic: Remove useless QUIC event trace definitions.
1813 - BUG/MINOR: quic: Possible CRYPTO frame building errors.
1814 - MINOR: quic: Pass quic_conn struct to frame parsers.
1815 - BUG/MINOR: quic: Wrong STREAM frames parsing.
1816 - MINOR: quic: Drop packets with STREAM frames with wrong direction.
1817 - CLEANUP: ssl: Remove useless loop in tlskeys_list_get_next()
1818 - CLEANUP: ssl: Remove useless local variable in tlskeys_list_get_next()
1819 - MINOR: ssl: make tlskeys_list_get_next() take a list element
1820 - Revert "BUILD: Makefile: disable -Warray-bounds until it's fixed in gcc 11"
1821 - BUG/MINOR: cfgparse: Fail if the strdup() for `rule->be.name` for `use_backend` fails
1822 - CLEANUP: mworker: remove duplicate pointer tests in cfg_parse_program()
1823 - CLEANUP: Reduce scope of `header_name` in http_action_store_cache()
1824 - CLEANUP: Reduce scope of `hdr_age` in http_action_store_cache()
1825 - CLEANUP: spoe: fix typo on `var_check_arg` comment
1826 - BUG/MINOR: tcpcheck: Report a L7OK if the last evaluated rule is a send rule
1827 - CI: github actions: build several popular "contrib" tools
1828 - DOC: Improve the message printed when running `make` w/o `TARGET`
1829 - BUG/MEDIUM: server: srv_set_addr_desc() crashes when a server has no address
1830 - REGTESTS: add unresolvable servers to srvkey-addr
1831 - BUG/MINOR: stats: Make stat_l variable used to dump a stat line thread local
1832 - BUG/MINOR: quic: NULL pointer dereferences when building post handshake frames.
1833 - SCRIPTS: improve announce-release to support different tag and versions
1834 - SCRIPTS: make announce release support preparing announces before tag exists
1835 - CLEANUP: assorted typo fixes in the code and comments
1836 - BUG/MINOR: srv: do not init address if backend is disabled
1837 - BUG/MINOR: srv: do not cleanup idle conns if pool max is null
1838 - CLEANUP: assorted typo fixes in the code and comments
1839 - CLEANUP: few extra typo and fixes over last one ("ot" -> "to")
1840
Willy Tarreau4d711762020-12-21 11:54:56 +010018412020/12/21 : 2.4-dev4
1842 - BUG/MEDIUM: lb-leastconn: Reposition a server using the right eweight
1843 - BUG/MEDIUM: mux-h1: Fix a deadlock when a 408 error is pending for a client
1844 - BUG/MEDIUM: ssl/crt-list: bad behavior with "commit ssl cert"
1845 - BUG/MAJOR: cache: Crash because of disabled entry not removed from the tree
1846 - BUILD: SSL: fine guard for SSL_CTX_add_server_custom_ext call
1847 - MEDIUM: cache: Add a secondary entry counter and insertion limitation
1848 - MEDIUM: cache: Avoid going over duplicates lists too often
1849 - MINOR: cache: Add a max-secondary-entries cache option
1850 - CI: cirrus: drop CentOS 6 builds
1851 - BUILD: Makefile: have "make clean" destroy .o/.a/.s in contrib subdirs as well
1852 - MINOR: vars: replace static functions with global ones
1853 - MINOR: opentracing: add ARGC_OT enum
1854 - CONTRIB: opentracing: add the OpenTracing filter
1855 - DOC: opentracing: add the OpenTracing filter section
1856 - REGTESTS: make use of HAPROXY_ARGS and pass -dM by default
1857 - BUG/MINOR: http: Establish a tunnel for all 2xx responses to a CONNECT
1858 - BUG/MINOR: mux-h1: Don't set CS_FL_EOI too early for protocol upgrade requests
1859 - BUG/MEDIUM: http-ana: Never for sending data in TUNNEL mode
1860 - CLEANUP: mux-h2: Rename h2s_frt_make_resp_data() to be generic
1861 - CLEANUP: mux-h2: Rename h2c_frt_handle_data() to be generic
1862 - BUG/MEDIUM: mux-h1: Handle h1_process() failures on a pipelined request
1863 - CLEANUP: debug: mark the RNG's seed as unsigned
1864 - CONTRIB: halog: fix build issue caused by %L printf format
1865 - CONTRIB: halog: mark the has_zero* functions unused
1866 - CONTRIB: halog: fix signed/unsigned build warnings on counts and timestamps
1867 - CONTRIB: debug: address "poll" utility build on non-linux platforms
1868 - BUILD: plock: remove dead code that causes a warning in gcc 11
1869 - BUILD: ssl: fine guard for SSL_CTX_get0_privatekey call
1870 - BUG/MINOR: dns: SRV records ignores duplicated AR records
1871 - DOC: fix "smp_size" vs "sample_size" in "log" directive arguments
1872 - CLEANUP: assorted typo fixes in the code and comments
1873 - DOC: assorted typo fixes in the documentation
1874 - CI: codespell: whitelist "te" and "nd" words
1875
Willy Tarreaua786c412020-12-11 17:22:51 +010018762020/12/11 : 2.4-dev3
1877 - MINOR: log: Logging HTTP path only with %HPO
1878 - BUG/MINOR: mux-h2/stats: make stream/connection proto errors more accurate
1879 - MINOR: traces: add a new level "error" below the "user" level
1880 - MINOR: mux-h2/trace: add traces at level ERROR for protocol errors
1881 - BUG/MINOR: mux-h2/stats: not all GOAWAY frames are errors
1882 - BUG/MINOR: lua: missing "\n" in error message
1883 - BUG/MINOR: lua: lua-load doesn't check its parameters
1884 - BUG/MINOR: lua: Post init register function are not executed beyond the first one
1885 - BUG/MINOR: lua: Some lua init operation are processed unsafe
1886 - MINOR: actions: Export actions lookup functions
1887 - MINOR: actions: add a function returning a service pointer from its name
1888 - MINOR: cli: add a function to look up a CLI service description
1889 - BUG/MINOR: lua: warn when registering action, conv, sf, cli or applet multiple times
1890 - MINOR: cache: Improve accept_encoding_normalizer
1891 - MINOR: cache: Add entry to the tree as soon as possible
1892 - BUG/MINOR: trace: Wrong displayed trace level
1893 - BUG/MAJOR: ring: tcp forward on ring can break the reader counter.
1894 - MINOR: lua: simplify hlua_alloc() to only rely on realloc()
1895 - MEDIUM: lua-thread: use atomics for memory accounting
1896 - MINOR: lua-thread: remove struct hlua from function hlua_prepend_path()
1897 - MEDIUM: lua-thread: make hlua_post_init() no longer use the runtime execution function
1898 - MINOR: lua-thread: hlua_ctx_renew() is never called with main gL lua state
1899 - MINOR: lua-thread: Use NULL context for main lua state
1900 - MINOR: lua-thread: Stop usage of struct hlua for the global lua state
1901 - MINOR: lua-thread: Replace embedded struct hlua_function by a pointer
1902 - MINOR: lua-thread: Split hlua_init() function in two parts
1903 - MINOR: lua-thread: make hlua_ctx_init() get L from its caller
1904 - MINOR: lua-thread: Split hlua_load function in two parts
1905 - MINOR: lua-thread: Split hlua_post_init() function in two parts
1906 - MINOR: lua-thread: Add the "thread" core variable
1907 - MEDIUM: lua-thread: No longer use locked context in initialization parts
1908 - MEDIUM: lua-thread: Apply lock only if the parent state is the main thread
1909 - MINOR: lua-thread: Replace global gL var with an array of states
1910 - MINOR: lua-thread: Replace "struct hlua_function" allocation by dedicated function
1911 - MINOR: lua-thread: Replace state_from by state_id
1912 - MINOR: lua-thread: Store each function reference and init reference in array
1913 - MEDIUM: lua-thread: Add the lua-load-per-thread directive
1914 - MINOR: lua-thread: Add verbosity in errors
1915 - REGTESTS: add a test for the threaded Lua code
1916 - BUILD/MINOR: haproxy DragonFlyBSD affinity build update.
1917 - DOC/MINOR: Fix formatting in Management Guide
1918 - MINOR: cache: Do not store stale entry
1919 - MINOR: cache: Add extra "cache-control" value checks
1920 - MEDIUM: cache: Remove cache entry in case of POST on the same resource
1921 - MINOR: cache: Consider invalid Age values as stale
1922 - BUG/MEDIUM: lua-thread: some parts must be initialized once
1923 - BUG/MINOR: lua-thread: close all states on deinit
1924 - BUG/MINOR: listener: use sockaddr_in6 for IPv6
1925 - BUG/MINOR: mux-h1: Handle keep-alive timeout for idle frontend connections
1926 - MINOR: session: Add the idle duration field into the session
1927 - MINOR: mux-h1: Update session idle duration when data are received
1928 - MINOR: mux-h1: Reset session dates and durations info when the CS is detached
1929 - MINOR: logs: Use session idle duration when no stream is provided
1930 - MINOR: stream: Always get idle duration from the session
1931 - MINOR: stream: Don't retrieve anymore timing info from the mux csinfo
1932 - MINOR: mux-h1: Don't provide anymore timing info using cs_info structure
1933 - MINOR: muxes: Remove get_cs_info callback function now useless
1934 - MINOR: stream: Pass an optional input buffer when a stream is created
1935 - MINOR: mux-h1: Add a flag to disable reads to wait opposite side
1936 - MEDIUM: mux-h1: Use a h1c flag to block reads when splicing is in-progress
1937 - MINOR: mux-h1: Introduce H1C_F_IS_BACK flag on the H1 connection
1938 - MINOR: mux-h1: Separate parsing and formatting errors at H1 stream level
1939 - MINOR: mux-h1: Split front/back h1 stream creation in 2 functions
1940 - MINOR: mux-h1: Add a rxbuf into the H1 stream
1941 - MINOR: mux-h1: Don't set CS flags in internal parsing functions
1942 - MINOR: mux-h1: Add embryonic and attached states on the H1 connection
1943 - MINOR: mux-h1: rework the h1_timeout_task() function
1944 - MINOR: mux-h1: Reset more H1C flags when a H1 stream is destroyed
1945 - MINOR: mux-h1: Disable reads if an error was reported on the H1 stream
1946 - MINOR: mux-h1: Rework how shutdowns are handled
1947 - MINOR: mux-h1: Rework h1_refresh_timeout to be easier to read
1948 - MINOR: mux-h1: Process next request for IDLE connection only
1949 - MINOR: mux-h1: Add a idle expiration date on the H1 connection
1950 - MINOR: stick-tables: Add functions to update some values of a tracked counter
1951 - MINOR: session: Add functions to increase http values of tracked counters
1952 - MINOR: mux: Add a ctl parameter to get the exit status of the multiplexers
1953 - MINOR: logs: Get the multiplexer exist status when no stream is provided
1954 - MINOR: mux-h1: Add functions to send HTTP errors from the mux
1955 - MAJOR: mux-h1: Create the client stream as later as possible
1956 - DOC: config: Add notes about errors emitted by H1 mux
1957 - CLEANUP: mux-h1: Rename H1C_F_CS_* flags and reorder H1C flags
1958 - MINOR: http-ana: Remove useless update of t_idle duration of the stream
1959 - CLEANUP: htx: Remove HTX_FL_UPGRADE unsued flag
1960 - MEDIUM: http-ana: Don't process partial or empty request anymore
1961 - CLEANUP: http-ana: Remove TX_WAIT_NEXT_RQ unsued flag
1962 - CLEANUP: connection: Remove CS_FL_READ_PARTIAL flag
1963 - REGTESTS: Fix proxy_protocol_tlv_validation
1964 - MINOR: http-ana: Properly set message flags from the start-line flags
1965 - MINOR: h1-htx/http-ana: Set BODYLESS flag on message in TUNNEL state
1966 - MINOR: protocol: add a ->set_port() helper to address families
1967 - MINOR: listener: automatically set the port when creating listeners
1968 - MINOR: listener: now use a generic add_listener() function
1969 - MEDIUM: ssl: fatal error with bundle + openssl < 1.1.1
1970 - BUG/MEDIUM: stream: Xfer the input buffer to a fully created stream
1971 - BUG/MINOR: stream: Don't use input buffer after the ownership xfer
1972 - MINOR: protocol: remove the redundant ->sock_domain field
1973 - MINOR: protocol: export protocol definitions
1974 - CLEANUP: protocol: group protocol struct members by usage
1975 - MINOR: protocol: add a set of ctrl_init/ctrl_close methods for setup/teardown
1976 - MINOR: connection: use the control layer's init/close
1977 - MINOR: udp: export udp_suspend_receiver() and udp_resume_receiver()
1978 - BUG/MAJOR: spoa/python: Fixing return None
1979 - DOC: spoa/python: Fixing typo in IP related error messages
1980 - DOC: spoa/python: Rephrasing memory related error messages
1981 - DOC: spoa/python: Fixing typos in comments
1982 - BUG/MINOR: spoa/python: Cleanup references for failed Module Addobject operations
1983 - BUG/MINOR: spoa/python: Cleanup ipaddress objects if initialization fails
1984 - BUG/MEDIUM: spoa/python: Fixing PyObject_Call positional arguments
1985 - BUG/MEDIUM: spoa/python: Fixing references to None
1986 - DOC: email change of the DeviceAtlas maintainer
1987 - MINOR: cache: Dump secondary entries in "show cache"
1988 - CLEANUP: connection: use fd_stop_both() instead of conn_stop_polling()
1989 - MINOR: stream-int: don't touch polling anymore on shutdown
1990 - MINOR: connection: implement cs_drain_and_close()
1991 - MINOR: mux-pt: take care of CS_SHR_DRAIN in shutr()
1992 - MINOR: checks: use cs_drain_and_close() instead of draining the connection
1993 - MINOR: checks: don't call conn_cond_update_polling() anymore
1994 - CLEANUP: connection: open-code conn_cond_update_polling() and update the comment
1995 - CLEANUP: connection: remove the unused conn_{stop,cond_update}_polling()
1996 - BUG/MINOR: http-check: Use right condition to consider HTX message as full
1997 - BUG/MINOR: tcpcheck: Don't rearm the check timeout on each read
1998 - MINOR: tcpcheck: Only wait for more payload data on HTTP expect rules
1999 - BUG/MINOR: tools: make parse_time_err() more strict on the timer validity
2000 - BUG/MINOR: tools: Reject size format not starting by a digit
2001 - MINOR: action: define enum for timeout type of the set-timeout rule
2002 - MINOR: stream: prepare the hot refresh of timeouts
2003 - MEDIUM: stream: support a dynamic server timeout
2004 - MEDIUM: stream: support a dynamic tunnel timeout
2005 - MEDIUM: http_act: define set-timeout server/tunnel action
2006 - MINOR: frontend: add client timeout sample fetch
2007 - MINOR: backend: add timeout sample fetches
2008 - MINOR: stream: add sample fetches
2009 - MINOR: stream: add timeout sample fetches
2010 - REGTESTS: add regtest for http-request set-timeout
2011 - CLEANUP: remove the unused fd_stop_send() in conn_xprt_shutw{,_hard}()
2012 - CLEANUP: connection: remove the unneeded fd_stop_{recv,send} on read0/shutw
2013 - MINOR: connection: remove sock-specific code from conn_sock_send()
2014 - REORG: connection: move the socket iocb (conn_fd_handler) to sock.c
2015 - MINOR: protocol: add a ->drain() function at the connection control layer
2016 - MINOR: connection: make conn_sock_drain() use the control layer's ->drain()
2017 - MINOR: protocol: add a pair of check_events/ignore_events functions at the ctrl layer
2018 - MEDIUM: connection: make use of the control layer check_events/ignore_events
2019
Willy Tarreauc94431b2020-12-01 08:15:26 +010020202020/12/01 : 2.4-dev2
2021 - BUILD: Make DEBUG part of .build_opts
2022 - BUILD: Show the value of DEBUG= in haproxy -vv
2023 - CI: Set DEBUG=-DDEBUG_STRICT=1 in GitHub Actions
2024 - MINOR: stream: Add level 7 retries on http error 401, 403
2025 - CLEANUP: remove unused function "ssl_sock_is_ckch_valid"
2026 - BUILD: SSL: add BoringSSL guarding to "RAND_keep_random_devices_open"
2027 - BUILD: SSL: do not "update" BoringSSL version equivalent anymore
2028 - BUG/MEDIUM: http_act: Restore init of log-format list
2029 - DOC: better describes how to configure a fallback crt
2030 - BUG/MAJOR: filters: Always keep all offsets up to date during data filtering
2031 - MINOR: cache: Prepare helper functions for Vary support
2032 - MEDIUM: cache: Add the Vary header support
2033 - MINOR: cache: Add a process-vary option that can enable/disable Vary processing
2034 - BUG/CRITICAL: cache: Fix trivial crash by sending accept-encoding header
2035 - BUG/MAJOR: peers: fix partial message decoding
2036 - DOC: cache: Add new caching limitation information
2037 - DOC: cache: Add information about Vary support
2038 - DOC: better document the config file format and escaping/quoting rules
2039 - DOC: Clarify %HP description in log-format
2040 - CI: github actions: update LibreSSL to 3.3.0
2041 - CI: github actions: enable 51degrees feature
2042 - MINOR: fd/threads: silence a build warning with threads disabled
2043 - BUG/MINOR: tcpcheck: Don't forget to reset tcp-check flags on new kind of check
2044 - MINOR: tcpcheck: Don't handle anymore in-progress send rules in tcpcheck_main
2045 - BUG/MAJOR: tcpcheck: Allocate input and output buffers from the buffer pool
2046 - MINOR: tcpcheck: Don't handle anymore in-progress connect rules in tcpcheck_main
2047 - MINOR: config: Deprecate and ignore tune.chksize global option
2048 - MINOR: config: Add a warning if tune.chksize is used
2049 - REORG: tcpcheck: Move check option parsing functions based on tcp-check
2050 - MINOR: check: Always increment check health counter on CONPASS
2051 - MINOR: tcpcheck: Add support of L7OKC on expect rules error-status argument
2052 - DOC: config: Make disable-on-404 option clearer on transition conditions
2053 - DOC: config: Move req.hdrs and req.hdrs_bin in L7 samples fetches section
2054 - BUG/MINOR: http-fetch: Fix smp_fetch_body() when called from a health-check
2055 - MINOR: plock: use an ARMv8 instruction barrier for the pause instruction
2056 - MINOR: debug: add "debug dev sched" to stress the scheduler.
2057 - MINOR: debug: add a trivial PRNG for scheduler stress-tests
2058 - BUG/MEDIUM: lists: Lock the element while we check if it is in a list.
2059 - MINOR: task: remove tasklet_insert_into_tasklet_list()
2060 - MINOR: task: perform atomic counter increments only once per wakeup
2061 - MINOR: task: remove __tasklet_remove_from_tasklet_list()
2062 - BUG/MEDIUM: task: close a possible data race condition on a tasklet's list link
2063 - BUG/MEDIUM: local log format regression.
2064
Willy Tarreau1a38ffc2020-11-21 16:00:40 +010020652020/11/21 : 2.4-dev1
2066 - MINOR: ist: Add istend() function to return a pointer to the end of the string
2067 - MINOR: sample: Add converters to parse FIX messages
2068 - REGTEST: converter: Add a regtest for fix converters
2069 - MINOR: sample: Add converts to parses MQTT messages
2070 - REGTEST: converter: Add a regtest for MQTT converters
2071 - MINOR: compat: automatically include malloc.h on glibc
2072 - MEDIUM: pools: call malloc_trim() from pool_gc()
2073 - MEDIUM: pattern: call malloc_trim() on pat_ref_reload()
2074 - MINOR: pattern: move the update revision to the pat_ref, not the expression
2075 - CLEANUP: pattern: delete the back refs at once during pat_ref_reload()
2076 - MINOR: pattern: new sflag PAT_SF_REGFREE indicates regex_free() is needed
2077 - MINOR: pattern: make the delete and prune functions more generic
2078 - MEDIUM: pattern: link all final elements from the reference
2079 - MEDIUM: pattern: change the pat_del_* functions to delete from the references
2080 - MINOR: pattern: remerge the list and tree deletion functions
2081 - MINOR: pattern: perform a single call to pat_delete_gen() under the expression
2082 - CLEANUP: acl: don't reference the generic pattern deletion function anymore
2083 - CLEANUP: pattern: remove pat_delete_fcts[] and pattern_head->delete()
2084 - MINOR: pattern: introduce pat_ref_delete_by_ptr() to delete a valid reference
2085 - MINOR: pattern: store a generation number in the reference patterns
2086 - MEDIUM: pattern: only match patterns that match the current generation
2087 - MINOR: pattern: add pat_ref_commit() to commit a previously inserted element
2088 - MINOR: pattern: implement pat_ref_load() to load a pattern at a given generation
2089 - MINOR: pattern: add pat_ref_purge_older() to purge old entries
2090 - MEDIUM: pattern: make pat_ref_prune() rely on pat_ref_purge_older()
2091 - MINOR: pattern: during reload, delete elements frem the ref, not the expression
2092 - MINOR: pattern: prepare removal of a pattern from the list head
2093 - MEDIUM: pattern: turn the pattern chaining to single-linked list
2094 - CLEANUP: cfgparse: remove duplicate registration for transparent build options
2095 - BUG/MINOR: ssl: don't report 1024 bits DH param load error when it's higher
2096 - MINOR: http-htx: Add understandable errors for the errorfiles parsing
2097 - MINOR: ssl: instantiate stats module
2098 - MINOR: ssl: count client hello for stats
2099 - MINOR: ssl: add counters for ssl sessions
2100 - DOC: config: Fix a typo on ssl_c_chain_der
2101 - MINOR: server: remove idle lock in srv_cleanup_connections
2102 - BUILD: ssl: silence build warning on uninitialised counters
2103 - BUILD: http-htx: fix build warning regarding long type in printf
2104 - REGTEST: ssl: test wildcard and multi-type + exclusions
2105 - BUG/MEDIUM: ssl/crt-list: correctly insert crt-list line if crt already loaded
2106 - CI: Expand use of GitHub Actions for CI
2107 - REGTEST: ssl: mark reg-tests/ssl/ssl_crt-list_filters.vtc as broken
2108 - BUG/MINOR: pattern: a sample marked as const could be written
2109 - BUG/MINOR: lua: set buffer size during map lookups
2110 - MEDIUM: cache: Change caching conditions
2111 - BUG/MINOR: stats: free dynamically stats fields/lines on shutdown
2112 - BUG/MEDIUM: stats: prevent crash if counters not alloc with dummy one
2113 - MINOR: peers: Add traces to peer_treat_updatemsg().
2114 - BUG/MINOR: peers: Do not ignore a protocol error for dictionary entries.
2115 - BUG/MINOR: peers: Missing TX cache entries reset.
2116 - BUG/MEDIUM: peers: fix decoding of multi-byte length in stick-table messages
2117 - BUG/MINOR: http-fetch: Extract cookie value even when no cookie name
2118 - BUG/MINOR: http-fetch: Fix calls w/o parentheses of the cookie sample fetches
2119 - BUG/MEDIUM: check: reuse srv proto only if using same mode
2120 - MINOR: check: report error on incompatible proto
2121 - MINOR: check: report error on incompatible connect proto
2122 - BUG/MINOR: http-htx: Handle warnings when parsing http-error and http-errors
2123 - BUG/MAJOR: spoe: Be sure to remove all references on a released spoe applet
2124 - MINOR: spoe: Don't close connection in sync mode on processing timeout
2125 - BUG/MINOR: tcpcheck: Don't warn on unused rules if check option is after
2126 - MINOR: init: Fix the prototype for per-thread free callbacks
2127 - MINOR: config/mux-h2: Return ERR_ flags from init_h2() instead of a status
2128 - CLEANUP: config: Return ERR_NONE from config callbacks instead of 0
2129 - MINOR: cfgparse: tighten the scope of newnameserver variable, free it on error.
2130 - REGTEST: make ssl_client_samples and ssl_server_samples require to 2.2
2131 - REGTESTS: Add sample_fetches/cook.vtc
2132 - BUG/MEDIUM: filters: Forward all filtered data at the end of http filtering
2133 - BUG/MINOR: http-ana: Don't wait for the body of CONNECT requests
2134 - CLEANUP: flt-trace: Remove unused random-parsing option
2135 - MINOR: flt-trace: Add an option to inhibits trace messages
2136 - MINOR: flt-trace: Use a bitfield for the trace options
2137 - REGTESTS: Add a script to test the random forwarding with several filters
2138 - REGTESTS: mark the abns test as broken again
2139 - REGTESTS: converter: add url_dec test
2140 - CI: Stop hijacking the hosts file
2141 - CI: Make the h2spec workflow more consistent with the VTest workflow
2142 - CI: travis-ci: remove amd64, osx builds
2143 - CI: travis-ci: arm64 are not allowed to fail anymore
2144 - DOC: add missing 3.10 in the summary
2145 - MINOR: ssl: remove client hello counters
2146 - MEDIUM: stats: add counters for failed handshake
2147 - MINOR: ssl: create common ssl_ctx init
2148 - MEDIUM: cli/ssl: configure ssl on server at runtime
2149 - REGTEST: server/cli_set_ssl.vtc requires OpenSSL
2150 - DOC: coding-style: update a few rules about pointers
2151 - BUG/MINOR: ssl: segv on startup when AKID but no keyid
2152 - BUILD: ssl: use SSL_MODE_ASYNC macro instead of OPENSSL_VERSION
2153 - BUG/MEDIUM: http-ana: Don't eval http-after-response ruleset on empty messages
2154 - BUG/MEDIUM: ssl/crt-list: bundle support broken in crt-list
2155 - BUG/MEDIUM: ssl: error when no certificate are found
2156 - BUG/MINOR: ssl/crt-list: load bundle in crt-list only if activated
2157 - BUG/MEDIUM: ssl/crt-list: fix error when no file found
2158 - CI: Github Actions: enable prometheus exporter
2159 - CI: Github Actions: remove LibreSSL-3.0.2 builds
2160 - CI: Github Actions: enable BoringSSL builds
2161 - CI: travis-ci: remove builds migrated to GH actions
2162 - BUILD: makefile: enable crypt(3) for OpenBSD
2163 - CI: Github Action: run "apt-get update" before packages restore
2164 - BUILD: SSL: guard TLS13 ciphersuites with HAVE_SSL_CTX_SET_CIPHERSUITES
2165 - CI: Pass the github.event_name to matrix.py
2166 - CI: Clean up Windows CI
2167 - DOC: clarify how to create a fallback crt
2168 - CLEANUP: connection: do not use conn->owner when the session is known
2169 - BUG/MAJOR: connection: reset conn->owner when detaching from session list
2170 - REGTESTS: mark proxy_protocol_random_fail as broken
2171 - BUG/MINOR: http_htx: Fix searching headers by substring
2172 - MINOR: http_act: Add -m flag for del-header name matching method
2173
Willy Tarreau1db55792020-11-05 17:20:35 +010021742020/11/05 : 2.4-dev0
2175 - MINOR: version: it's development again.
2176 - DOC: mention in INSTALL that it's development again
2177
Willy Tarreau1c0a7222020-11-05 17:04:53 +010021782020/11/05 : 2.3.0
2179 - CLEANUP: pattern: remove unused entry "tree" in pattern.val
2180 - BUILD: ssl: use SSL_CTRL_GET_RAW_CIPHERLIST instead of OpenSSL versions
2181 - BUG/MEDIUM: filters: Don't try to init filters for disabled proxies
2182 - BUG/MINOR: proxy/server: Skip per-proxy/server post-check for disabled proxies
2183 - BUG/MINOR: checks: Report a socket error before any connection attempt
2184 - BUG/MINOR: server: Set server without addr but with dns in RMAINT on startup
2185 - MINOR: server: Copy configuration file and line for server templates
2186 - BUG/MEDIUM: mux-pt: Release the tasklet during an HTTP upgrade
2187 - BUILD: ssl: use HAVE_OPENSSL_KEYLOG instead of OpenSSL versions
2188 - MINOR: debug: don't count free(NULL) in memstats
2189 - BUG/MINOR: filters: Skip disabled proxies during startup only
2190 - MINOR: mux_h2: capitalize frame type in stats
2191 - MINOR: mux_h2: add stat for total count of connections/streams
2192 - MINOR: stats: do not display empty stat module title on html
2193 - BUG/MEDIUM: stick-table: limit the time spent purging old entries
2194 - BUG/MEDIUM: listener: only enable a listening listener if needed
2195 - BUG/MEDIUM: listener: never suspend inherited sockets
2196 - BUG/MEDIUM: listener: make the master also keep workers' inherited FDs
2197 - MINOR: fd: add fd_want_recv_safe()
2198 - MEDIUM: listeners: make use of fd_want_recv_safe() to enable early receivers
2199 - REGTESTS: mark abns_socket as working now
2200 - CLEANUP: mux-h2: Remove the h1 parser state from the h2 stream
2201 - MINOR: sock: add a check against cross worker<->master socket activities
2202 - CI: github actions: limit OpenSSL no-deprecated builds to "default,bug,devel" reg-tests
2203 - BUG/MEDIUM: server: make it possible to kill last idle connections
2204 - MINOR: mworker/cli: the master CLI use its own applet
2205 - MINOR: ssl: define SSL_CTX_set1_curves_list to itself on BoringSSL
2206 - BUILD: ssl: use feature macros for detecting ec curves manipulation support
2207 - DOC: Add dns as an available domain to show stat
2208 - BUILD: makefile: usual reorder of objects for faster builds
2209 - DOC: update INSTALL to mention that TCC is supported
2210 - DOC: mention in INSTALL that haproxy 2.3 is a stable version
2211 - MINOR: version: mention that it's stable now
2212
Willy Tarreaubd703e52020-10-31 13:17:06 +010022132020/10/31 : 2.3-dev9
2214 - CLEANUP: http_ana: remove unused assignation of `att_beg`
2215 - BUG/MEDIUM: ssl: OCSP must work with BoringSSL
2216 - BUG/MINOR: log: fix memory leak on logsrv parse error
2217 - BUG/MINOR: log: fix risk of null deref on error path
2218 - BUILD: ssl: more elegant OpenSSL early data support check
2219 - CI: github actions: update h2spec to 2.6.0
2220 - BUG/MINOR: cache: Check the return value of http_replace_res_status
2221 - MINOR: cache: Store the "Last-Modified" date in the cache_entry
2222 - MINOR: cache: Process the If-Modified-Since header in conditional requests
2223 - MINOR: cache: Create res.cache_hit and res.cache_name sample fetches
2224 - MINOR: mux-h2: register a stats module
2225 - MINOR: mux-h2: add counters instance to h2c
2226 - MINOR: mux-h2: add stats for received frame types
2227 - MINOR: mux-h2: report detected error on stats
2228 - MINOR: mux-h2: count open connections/streams on stats
2229 - BUG/MINOR: server: fix srv downtime calcul on starting
2230 - BUG/MINOR: server: fix down_time report for stats
2231 - BUG/MINOR: lua: initialize sample before using it
2232 - MINOR: cache: Add Expires header value parsing
2233 - MINOR: ist: Add a case insensitive istmatch function
2234 - BUG/MINOR: cache: Manage multiple values in cache-control header value
2235 - BUG/MINOR: cache: Inverted variables in http_calc_maxage function
2236 - MINOR: pattern: make pat_ref_append() return the newly added element
2237 - MINOR: pattern: make pat_ref_add() rely on pat_ref_append()
2238 - MINOR: pattern: export pat_ref_push()
2239 - CLEANUP: pattern: use calloc() rather than malloc for structures
2240 - CLEANUP: pattern: fix spelling/grammatical/copy-paste in comments
2241
Willy Tarreaufb1b9e32020-10-24 13:14:31 +020022422020/10/24 : 2.3-dev8
2243 - MINOR: backend: replace the lbprm lock with an rwlock
2244 - MINOR: lb/map: use seek lock and read locks where appropriate
2245 - MINOR: lb/leastconn: only take a read lock in fwlc_get_next_server()
2246 - MINOR: lb/first: use a read lock in fas_get_next_server()
2247 - MINOR: lb/chash: use a read lock in chash_get_server_hash()
2248 - BUG/MINOR: disable dynamic OCSP load with BoringSSL
2249 - BUILD: ssl: make BoringSSL use its own version numbers
2250 - CLEANUP: threads: don't register an initcall when not debugging
2251 - MINOR: threads: change lock_t to an unsigned int
2252 - CLEANUP: tree-wide: reorder a few structures to plug some holes around locks
2253 - CLEANUP: task: remove the unused and mishandled global_rqueue_size
2254 - BUG/MEDIUM: connection: Never cleanup server lists when freeing private conns
2255 - MEDIUM: config: report that "nbproc" is deprecated
2256 - BUG/MINOR: listener: close before free in `listener_accept`
2257 - MINOR: ssl: 'ssl-load-extra-del-ext' removes the certificate extension
2258 - BUG/MINOR: queue: properly report redistributed connections
2259 - CONTRIB: tcploop: remove unused local variables in tcp_pause()
2260 - BUILD: makefile: add entries to build common debugging tools
2261 - BUG/MEDIUM: server: support changing the slowstart value from state-file
2262 - MINOR: http: Add `enum etag_type http_get_etag_type(const struct ist)`
2263 - MINOR: http: Add etag comparison function
2264 - MEDIUM: cache: Store the ETag information in the cache_entry
2265 - MEDIUM: cache: Add support for 'If-None-Match' request header
2266 - REGTEST: cache: Add if-none-match test case
2267 - CLEANUP: compression: Make use of http_get_etag_type()
2268 - BUG/MINOR: http-ana: Don't send payload for internal responses to HEAD requests
2269 - BUG/MAJOR: mux-h2: Don't try to send data if we know it is no longer possible
2270 - MINOR: threads/debug: only report used lock stats
2271 - MINOR: threads/debug: only report lock stats for used operations
2272 - MINOR: proxy; replace the spinlock with an rwlock
2273 - MINOR: server: read-lock the cookie during srv_set_dyncookie()
2274 - MINOR: proxy/cli: only take a read lock in "show errors"
2275 - OPTIM: queue: don't call pendconn_unlink() when the pendconn is not queued
2276 - MINOR: queue: split __pendconn_unlink() in per-srv and per-prx
2277 - MINOR: queue: reduce the locked area in pendconn_add()
2278 - OPTIM: queue: make the nbpend counters atomic
2279 - OPTIM: queue: decrement the nbpend and totpend counters outside of the lock
2280 - MINOR: leastconn: take the queue length into account when queuing servers
2281 - MEDIUM: fwlc: re-enable per-server queuing up to maxqueue
2282 - Revert "OPTIM: queue: don't call pendconn_unlink() when the pendconn is not queued"
2283 - MINOR: stats: support the "up" output modifier for "show stat"
2284 - MINOR: stats: also support a "no-maint" show stat modifier
2285 - MINOR: stats: indicate the number of servers in a backend's status
2286 - MEDIUM: ssl: ssl-load-extra-del-ext work only with .crt
2287 - REGTEST: ssl: test "set ssl cert" with separate key / crt
2288 - DOC: management: apply the "show stat" modifiers to "show stat", not "show info"
2289 - MINOR: stats: report server's user-configured weight next to effective weight
2290 - CI: travis-ci: switch to Ubuntu 20.04
2291 - CONTRIB: release-estimator: Add release estimating tool
2292 - BUG/MEDIUM: queue: fix unsafe proxy pointer when counting nbpend
2293 - BUG/MINOR: extcheck: add missing checks on extchk_setenv()
2294
Willy Tarreau9d58c9b2020-10-17 10:31:50 +020022952020/10/17 : 2.3-dev7
2296 - CI: travis-ci: replace not defined SSL_LIB, SSL_INC for BotringSSL builds
2297 - BUG/MINOR: init: only keep rlim_fd_cur if max is unlimited
2298 - BUG/MINOR: mux-h2: do not stop outgoing connections on stopping
2299 - MINOR: fd: report an error message when failing initial allocations
2300 - MINOR: proto-tcp: make use of connect(AF_UNSPEC) for the pause
2301 - MINOR: sock: add sock_accept_conn() to test a listening socket
2302 - MINOR: protocol: make proto_tcp & proto_uxst report listening sockets
2303 - MINOR: sockpair: implement the .rx_listening function
2304 - CLEANUP: tcp: make use of sock_accept_conn() where relevant
2305 - CLEANUP: unix: make use of sock_accept_conn() where relevant
2306 - BUG/MINOR: listener: detect and handle shared sockets stopped in other processes
2307 - CONTRIB: tcploop: implement a disconnect operation 'D'
2308 - CLEANUP: protocol: intitialize all of the sockaddr when disconnecting
2309 - BUG/MEDIUM: deinit: check fdtab before fdtab[fd].owner
2310 - BUG/MINOR: connection: fix loop iter on connection takeover
2311 - BUG/MEDIUM: connection: fix srv idle count on conn takeover
2312 - MINOR: connection: improve list api usage
2313 - MINOR: mux/connection: add a new mux flag for HOL risk
2314 - MINOR: connection: don't check priv flag on free
2315 - MEDIUM: backend: add new conn to session if mux marked as HOL blocking
2316 - MEDIUM: backend: add reused conn to sess if mux marked as HOL blocking
2317 - MEDIUM: h2: remove conn from session on detach
2318 - MEDIUM: fcgi: remove conn from session on detach
2319 - DOC: Describe reuse safe for HOL handling
2320 - MEDIUM: proxy: remove obsolete "mode health"
2321 - MEDIUM: proxy: remove obsolete "monitor-net"
2322 - CLEANUP: protocol: remove the ->drain() function
2323 - CLEANUP: fd: finally get rid of fd_done_recv()
2324 - MINOR: connection: make sockaddr_alloc() take the address to be copied
2325 - MEDIUM: listener: allocate the connection before queuing a new connection
2326 - MINOR: session: simplify error path in session_accept_fd()
2327 - MINOR: connection: add new error codes for accept_conn()
2328 - MINOR: sock: rename sock_accept_conn() to sock_accepting_conn()
2329 - MINOR: protocol: add a new function accept_conn()
2330 - MINOR: sock: implement sock_accept_conn() to accept a connection
2331 - MINOR: sockpair: implement sockpair_accept_conn() to accept a connection
2332 - MEDIUM: listener: use protocol->accept_conn() to accept a connection
2333 - MEDIUM: listener: remove the second pass of fd manipulation at the end
2334 - MINOR: protocol: add a default I/O callback and put it into the receiver
2335 - MINOR: log: set the UDP receiver's I/O handler in the receiver
2336 - MINOR: protocol: register the receiver's I/O handler and not the protocol's
2337 - CLEANUP: protocol: remove the now unused <handler> field of proto_fam->bind()
2338 - DOC: improve the documentation for "option nolinger"
2339 - BUG/MEDIUM: proxy: properly stop backends
2340 - BUG/MEDIUM: task: bound the number of tasks picked from the wait queue at once
2341 - MINOR: threads: augment rwlock debugging stats to report seek lock stats
2342 - MINOR: threads: add the transitions to/from the seek state
2343 - MEDIUM: task: use an upgradable seek lock when scanning the wait queue
2344 - BUILD: listener: avoir a build warning when threads are disabled
2345 - BUG/MINOR: peers: Possible unexpected peer seesion reset after collisions.
2346 - MINOR: ssl: add volatile flags to ssl samples
2347 - MEDIUM: backend: reuse connection if using a static sni
2348 - BUG/MEDIUM: spoe: Unset variable instead of set it if no data provided
2349 - BUG/MEDIUM: mux-h1: Get the session from the H1S when capturing bad messages
2350 - BUG/MEDIUM: lb: Always lock the server when calling server_{take,drop}_conn
2351 - DOC: fix typo in MAX_SESS_STKCTR
2352
Willy Tarreaub7ffe192020-10-10 10:45:13 +020023532020/10/10 : 2.3-dev6
2354 - REGTESTS: use "command" instead of "which" for better POSIX compatibility
2355 - BUILD: makefile: Update feature flags for OpenBSD
2356 - DOC: agent-check: fix typo in "fail" word expected reply
2357 - DOC: crt: advise to move away from cert bundle
2358 - BUG/MINOR: ssl/crt-list: exit on warning out of crtlist_parse_line()
2359 - REGTEST: fix host part in balance-uri-path-only.vtc
2360 - REGTEST: make ssl_client_samples and ssl_server_samples requiret to 2.3
2361 - REGTEST: the iif converter test requires 2.3
2362 - REGTEST: make agent-check.vtc require 1.8
2363 - REGTEST: make abns_socket.vtc require 1.8
2364 - REGTEST: make map_regm_with_backref require 1.7
2365 - BUILD: makefile: Update feature flags for FreeBSD
2366 - OPTIM: backend/random: never queue on the server, always on the backend
2367 - OPTIM: backend: skip LB when we know the backend is full
2368 - BUILD: makefile: Fix building with closefrom() support enabled
2369 - BUILD: makefile: add an EXTRAVERSION variable to ease local naming
2370 - MINOR: tools: support for word expansion of environment in parse_line
2371 - BUILD: tools: fix minor build issue on isspace()
2372 - BUILD: makefile: Enable closefrom() support on Solaris
2373 - CLEANUP: ssl: Use structured format for error line report during crt-list parsing
2374 - MINOR: ssl: Add error if a crt-list might be truncated
2375 - MINOR: ssl: remove uneeded check in crtlist_parse_file
2376 - BUG/MINOR: Fix several leaks of 'log_tag' in init().
2377 - DOC: tcp-rules: Refresh details about L7 matching for tcp-request content rules
2378 - MEDIUM: tcp-rules: Warn if a track-sc* content rule doesn't depend on content
2379 - BUG/MINOR: tcpcheck: Set socks4 and send-proxy flags before the connect call
2380 - DOC: ssl: new "cert bundle" behavior
2381 - BUG/MEDIUM: queue: make pendconn_cond_unlink() really thread-safe
2382 - CLEANUP: ssl: "bundle" is not an OpenSSL wording
2383 - MINOR: counters: fix a typo in comment
2384 - BUG/MINOR: stats: fix validity of the json schema
2385 - REORG: stats: export some functions
2386 - MINOR: stats: add stats size as a parameter for csv/json dump
2387 - MINOR: stats: hide px/sv/li fields in applet struct
2388 - REORG: stats: extract proxy json dump
2389 - REORG: stats: extract proxies dump loop in a function
2390 - MINOR: hlua: Display debug messages on stderr only in debug mode
2391 - MINOR: stats: define the concept of domain for statistics
2392 - MINOR: stats: define additional flag px cap on domain
2393 - MEDIUM: stats: add delimiter for static proxy stats on csv
2394 - MEDIUM: stats: define an API to register stat modules
2395 - MEDIUM: stats: add abstract type to store counters
2396 - MEDIUM: stats: integrate static proxies stats in new stats
2397 - MINOR: stats: support clear counters for dynamic stats
2398 - MINOR: stats: display extra proxy stats on the html page
2399 - MINOR: stats: add config "stats show modules"
2400 - MINOR: dns/stats: integrate dns counters in stats
2401 - MINOR: stats: remove for loop declaration
2402 - DOC: ssl: fix typo about ocsp files
2403 - BUG/MINOR: peers: Inconsistency when dumping peer status codes.
2404 - DOC: update INSTALL with supported OpenBSD / FreeBSD versions
2405 - BUG/MINOR: proto_tcp: Report warning messages when listeners are bound
2406 - CLEANUP: cache: Fix leak of cconf->c.name during config check
2407 - CLEANUP: ssl: Release cached SSL sessions on deinit
2408 - BUG/MINOR: mux-h1: Be sure to only set CO_RFL_READ_ONCE for the first read
2409 - BUG/MINOR: mux-h1: Always set the session on frontend h1 stream
2410 - MINOR: mux-h1: Don't wakeup the H1C when output buffer become available
2411 - CLEANUP: sock-unix: Remove an unreachable goto clause
2412 - BUG/MINOR: proxy: inc req counter on new syslog messages.
2413 - BUG/MEDIUM: log: old processes with log foward section don't die on soft stop.
2414 - MINOR: stats: inc req counter on listeners.
2415 - MINOR: channel: new getword and getchar functions on channel.
2416 - MEDIUM: log: syslog TCP support on log forward section.
2417 - BUG/MINOR: proxy/log: frontend/backend and log forward names must differ
2418 - DOC: re-work log forward bind statement documentation.
2419 - DOC: fix a confusing typo on a regsub example
2420 - BUILD: Add a DragonFlyBSD target
2421 - BUG/MINOR: makefile: fix a tiny typo in the target list
2422 - BUILD: makefile: Update feature flags for NetBSD
2423 - CI: travis-ci: help Coverity to detect BUG_ON() as a real stop
2424 - DOC: Add missing stats fields in the management doc
2425 - BUG/MEDIUM: mux-fcgi: Don't handle pending read0 too early on streams
2426 - BUG/MEDIUM: mux-h2: Don't handle pending read0 too early on streams
2427 - DOC: Fix typos in configuration.txt
2428 - BUG/MINOR: http: Fix content-length of the default 500 error
2429 - BUG/MINOR: http-htx: Expect no body for 204/304 internal HTTP responses
2430 - REGTESTS: mark abns_socket as broken
2431 - MEDIUM: fd: always wake up one thread when enabling a foreing FD
2432 - MEDIUM: listeners: don't bounce listeners management between queues
2433 - MEDIUM: init: stop disabled proxies after initializing fdtab
2434 - MEDIUM: listeners: make unbind_listener() converge if needed
2435 - MEDIUM: deinit: close all receivers/listeners before scanning proxies
2436 - MEDIUM: listeners: remove the now unused ZOMBIE state
2437 - MINOR: listeners: do not uselessly try to close zombie listeners in soft_stop()
2438 - CLEANUP: proxy: remove the first_to_listen hack in zombify_proxy()
2439 - MINOR: listeners: introduce listener_set_state()
2440 - MINOR: proxy: maintain per-state counters of listeners
2441 - MEDIUM: proxy: remove the unused PR_STFULL state
2442 - MEDIUM: proxy: remove the PR_STERROR state
2443 - MEDIUM: proxy: remove state PR_STPAUSED
2444 - MINOR: startup: don't rely on PR_STNEW to check for listeners
2445 - CLEANUP: peers: don't use the PR_ST* states to mark enabled/disabled
2446 - MEDIUM: proxy: replace proxy->state with proxy->disabled
2447 - MEDIUM: proxy: remove start_proxies()
2448 - MEDIUM: proxy: merge zombify_proxy() with stop_proxy()
2449 - MINOR: listeners: check the current listener state in pause_listener()
2450 - MINOR: listeners: check the current listener earlier state in resume_listener()
2451 - MEDIUM: listener/proxy: make the listeners notify about proxy pause/resume
2452 - MINOR: protocol: introduce protocol_{pause,resume}_all()
2453 - MAJOR: signals: use protocol_pause_all() and protocol_resume_all()
2454 - CLEANUP: proxy: remove the now unused pause_proxies() and resume_proxies()
2455 - MEDIUM: proto_tcp: make the pause() more robust in multi-process
2456 - BUG/MEDIUM: listeners: correctly report pause() errors
2457 - MINOR: listeners: move fd_stop_recv() to the receiver's socket code
2458 - CLEANUP: protocol: remove the ->disable_all method
2459 - CLEANUP: listeners: remove unused disable_listener and disable_all_listeners
2460 - MINOR: listeners: export enable_listener()
2461 - MINOR: protocol: directly call enable_listener() from protocol_enable_all()
2462 - CLEANUP: protocol: remove the ->enable_all method
2463 - CLEANUP: listeners: remove the now unused enable_all_listeners()
2464 - MINOR: protocol: rename the ->listeners field to ->receivers
2465 - MINOR: protocol: replace ->pause(listener) with ->rx_suspend(receiver)
2466 - MINOR: protocol: implement an ->rx_resume() method
2467 - MINOR: listener: use the protocol's ->rx_resume() method when available
2468 - MINOR: sock: provide a set of generic enable/disable functions
2469 - MINOR: protocol: add a new pair of rx_enable/rx_disable methods
2470 - MINOR: protocol: add a new pair of enable/disable methods for listeners
2471 - MEDIUM: listeners: now use the listener's ->enable/disable
2472 - MINOR: listeners: split delete_listener() in two versions
2473 - MINOR: listeners: count unstoppable jobs on creation, not deletion
2474 - MINOR: listeners: add a new stop_listener() function
2475 - MEDIUM: proxy: make stop_proxy() now use stop_listener()
2476 - MEDIUM: proxy: add mode PR_MODE_PEERS to flag peers frontends
2477 - MEDIUM: proxy: centralize proxy status update and reporting
2478 - MINOR: protocol: add protocol_stop_now() to instant-stop listeners
2479 - MEDIUM: proxy: make soft_stop() stop most listeners using protocol_stop_now()
2480 - MEDIUM: udp: implement udp_suspend() and udp_resume()
2481 - MINOR: listener: add a few BUG_ON() statements to detect inconsistencies
2482 - MEDIUM: listeners: always close master vs worker listeners
2483 - BROKEN/MEDIUM: listeners: rework the unbind logic to make it idempotent
2484 - MEDIUM: listener: let do_unbind_listener() decide whether to close or not
2485 - CLEANUP: listeners: remove the do_close argument to unbind_listener()
2486 - MINOR: listeners: move the LI_O_MWORKER flag to the receiver
2487 - MEDIUM: receivers: add an rx_unbind() method in the protocols
2488 - MINOR: listeners: split do_unbind_listener() in two
2489 - MEDIUM: listeners: implement protocol level ->suspend/resume() calls
2490 - MEDIUM: config: mark "grace" as deprecated
2491 - MEDIUM: config: remove the deprecated and dangerous global "debug" directive
2492 - BUG/MINOR: proxy: respect the proper format string in sig_pause/sig_listen
2493 - MINOR: peers: heartbeat, collisions and handshake information for "show peers" command.
2494 - BUILD: makefile: Enable getaddrinfo() on OS/X
2495
Christopher Faulet05f01882020-09-25 18:40:47 +020024962020/09/25 : 2.3-dev5
2497 - DOC: Fix typo in iif() example
2498 - CLEANUP: Update .gitignore
2499 - BUILD: introduce possibility to define ABORT_NOW() conditionally
2500 - CI: travis-ci: help Coverity to recognize abort()
2501 - BUG/MINOR: Fix type passed of sizeof() for calloc()
2502 - CLEANUP: Do not use a fixed type for 'sizeof' in 'calloc'
2503 - CLEANUP: tree-wide: use VAR_ARRAY instead of [0] in various definitions
2504 - BUILD: connection: fix build on clang after the VAR_ARRAY cleanup
2505 - BUG/MINOR: ssl: verifyhost is case sensitive
2506 - BUILD: makefile: change default value of CC from gcc to cc
2507 - CI: travis-ci: split asan step out of running tests
2508 - BUG/MINOR: server: report correct error message for invalid port on "socks4"
2509 - BUG/MEDIUM: ssl: Don't call ssl_sock_io_cb() directly.
2510 - BUG/MINOR: ssl/crt-list: crt-list could end without a \n
2511 - BUG/MINOR: log-forward: fail on unknown keywords
2512 - MEDIUM: log-forward: use "dgram-bind" instead of "bind" for the listener
2513 - BUG/MEDIUM: log-forward: always quit on parsing errors
2514 - MEDIUM: ssl: remove bundle support in crt-list and directories
2515 - MEDIUM: ssl/cli: remove support for multi certificates bundle
2516 - MINOR: ssl: crtlist_dup_ssl_conf() duplicates a ssl_bind_conf
2517 - MINOR: ssl: crtlist_entry_dup() duplicates a crtlist_entry
2518 - MEDIUM: ssl: emulates the multi-cert bundles in the crtlist
2519 - MEDIUM: ssl: emulate multi-cert bundles loading in standard loading
2520 - CLEANUP: ssl: remove test on "multi" variable in ckch functions
2521 - CLEANUP: ssl/cli: remove test on 'multi' variable in CLI functions
2522 - CLEANUP: ssl: remove utility functions for bundle
2523 - DOC: explain bundle emulation in configuration.txt
2524 - BUILD: fix build with openssl < 1.0.2 since bundle removal
2525 - BUG/MINOR: log: gracefully handle the "udp@" address format for log servers
2526 - BUG/MINOR: dns: gracefully handle the "udp@" address format for nameservers
2527 - MINOR: listener: create a new struct "settings" in bind_conf
2528 - MINOR: listener: move bind_proc and bind_thread to struct settings
2529 - MINOR: listener: move the interface to the struct settings
2530 - MINOR: listener: move the network namespace to the struct settings
2531 - REORG: listener: create a new struct receiver
2532 - REORG: listener: move the listening address to a struct receiver
2533 - REORG: listener: move the receiving FD to struct receiver
2534 - REORG: listener: move the listener's proto to the receiver
2535 - MINOR: listener: make sock_find_compatible_fd() check the socket type
2536 - REORG: listener: move the receiver part to a new file
2537 - MINOR: receiver: link the receiver to its settings
2538 - MINOR: receiver: link the receiver to its owner
2539 - MINOR: listener: prefer to retrieve the socket's settings via the receiver
2540 - MINOR: receiver: add a receiver-specific flag to indicate the socket is bound
2541 - MINOR: listener: move the INHERITED flag down to the receiver
2542 - MINOR: receiver: move the FOREIGN and V6ONLY options from listener to settings
2543 - MINOR: sock: make sock_find_compatible_fd() only take a receiver
2544 - MINOR: protocol: rename the ->bind field to ->listen
2545 - MINOR: protocol: add a new ->bind() entry to bind the receiver
2546 - MEDIUM: sock_inet: implement sock_inet_bind_receiver()
2547 - MEDIUM: tcp: make use of sock_inet_bind_receiver()
2548 - MEDIUM: udp: make use of sock_inet_bind_receiver()
2549 - MEDIUM: sock_unix: implement sock_unix_bind_receiver()
2550 - MEDIUM: uxst: make use of sock_unix_bind_receiver()
2551 - MEDIUM: sockpair: implement sockpair_bind_receiver()
2552 - MEDIUM: proto_sockpair: make use of sockpair_bind_receiver()
2553 - MEDIUM: protocol: explicitly start the receiver before the listener
2554 - MEDIUM: protocol: do not call proto->bind() anymore from bind_listener()
2555 - MINOR: protocol: add a new proto_fam structure for protocol families
2556 - MINOR: protocol: retrieve the family-specific fields from the family
2557 - CLEANUP: protocol: remove family-specific fields from struct protocol
2558 - MINOR: protocol: add a real family for existing FDs
2559 - CLEANUP: tools: make str2sa_range() less awful for fd@ and sockpair@
2560 - MINOR: tools: make str2sa_range() take more options than just resolve
2561 - MINOR: tools: add several PA_O_PORT_* flags in str2sa_range() callers
2562 - MEDIUM: tools: make str2sa_range() validate callers' port specifications
2563 - MEDIUM: config: remove all checks for missing/invalid ports/ranges
2564 - MINOR: tools: add several PA_O_* flags in str2sa_range() callers
2565 - MINOR: listener: remove the inherited arg to create_listener()
2566 - MINOR: tools: make str2sa_range() optionally return the fd
2567 - MINOR: log: detect LOG_TARGET_FD from the fd and not from the syntax
2568 - MEDIUM: tools: make str2sa_range() resolve pre-bound listeners
2569 - MINOR: config: do not test an inherited socket again
2570 - MEDIUM: tools: make str2sa_range() check for the sockpair's FD usability
2571 - MINOR: tools: start to distinguish stream and dgram in str2sa_range()
2572 - MEDIUM: tools: make str2sa_range() only report AF_CUST_UDP on listeners
2573 - MINOR: tools: remove the central test for "udp" in str2sa_range()
2574 - MINOR: cfgparse: add str2receiver() to parse dgram receivers
2575 - MINOR: log-forward: use str2receiver() to parse the dgram-bind address
2576 - MEDIUM: config: make str2listener() not accept datagram sockets anymore
2577 - MINOR: listener: pass the chosen protocol to create_listeners()
2578 - MINOR: tools: make str2sa_range() directly return the protocol
2579 - MEDIUM: tools: make str2sa_range() check that the protocol has ->connect()
2580 - MINOR: protocol: add the control layer type in the protocol struct
2581 - MEDIUM: protocol: store the socket and control type in the protocol array
2582 - MEDIUM: tools: make str2sa_range() use protocol_lookup()
2583 - MEDIUM: proto_udp: replace last AF_CUST_UDP* with AF_INET*
2584 - MINOR: tools: drop listener detection hack from str2sa_range()
2585 - BUILD: sock_unix: add missing errno.h
2586 - MINOR: sock_inet: report the errno string in binding errors
2587 - MINOR: sock_unix: report the errno string in binding errors
2588 - BUILD: sock_inet: include errno.h
2589 - MINOR: h2/trace: also display the remaining frame length in traces
2590 - BUG/MINOR: h2/trace: do not display "stream error" after a frame ACK
2591 - BUG/MEDIUM: h2: report frame bits only for handled types
2592 - BUG/MINOR: http-fetch: Don't set the sample type during the htx prefetch
2593 - BUG/MINOR: Fix memory leaks cfg_parse_peers
2594 - BUG/MINOR: config: Fix memory leak on config parse listen
2595 - MINOR: backend: make the "whole" option of balance uri take only one bit
2596 - MINOR: backend: add a new "path-only" option to "balance uri"
2597 - REGTESTS: add a few load balancing tests
2598 - BUG/MEDIUM: listeners: do not pause foreign listeners
2599 - BUG/MINOR: listeners: properly close listener FDs
2600 - BUILD: trace: include tools.h
2601
Willy Tarreau253c4dc2020-09-11 17:05:59 +020026022020/09/11 : 2.3-dev4
2603 - MINOR: hlua: Add error message relative to the Channel manipulation and HTTP mode
2604 - BUG/MEDIUM: ssl: crt-list negative filters don't work
2605 - DOC: overhauling github issue templates
2606 - MEDIUM: cfgparse: Emit hard error on truncated lines
2607 - DOC: cache: Use '<name>' instead of '<id>' in error message
2608 - MINOR: cache: Reject duplicate cache names
2609 - REGTEST: remove stray leading spaces in converteers_ref_cnt_never_dec.vtc
2610 - MINOR: stats: prevent favicon.ico requests for stats page
2611 - BUILD: tools: include auxv a bit later
2612 - BUILD: task: work around a bogus warning in gcc 4.7/4.8 at -O1
2613 - MEDIUM: ssl: Support certificate chaining for certificate generation
2614 - MINOR: ssl: Support SAN extension for certificate generation
2615 - MINOR: tcp: don't try to set/clear v6only on inherited sockets
2616 - BUG/MINOR: reload: detect the OS's v6only status before choosing an old socket
2617 - MINOR: reload: determine the foreing binding status from the socket
2618 - MEDIUM: reload: stop passing listener options along with FDs
2619 - BUG/MEDIUM: ssl: fix ssl_bind_conf double free w/ wildcards
2620 - MEDIUM: fd: replace usages of fd_remove() with fd_stop_both()
2621 - CLEANUP: fd: remove fd_remove() and rename fd_dodelete() to fd_delete()
2622 - MINOR: fd: add a new "exported" flag and use it for all regular listeners
2623 - MEDIUM: reload: pass all exportable FDs, not just listeners
2624 - DOC: add description of pidfile in master-worker mode
2625 - BUG/MINOR: reload: do not fail when no socket is sent
2626 - REORG: tcp: move TCP actions from proto_tcp.c to tcp_act.c
2627 - CLEANUP: tcp: stop exporting smp_fetch_src()
2628 - REORG: tcp: move TCP sample fetches from proto_tcp.c to tcp_sample.c
2629 - REORG: tcp: move TCP bind/server keywords from proto_tcp.c to cfgparse-tcp.c
2630 - REORG: unix: move UNIX bind/server keywords from proto_uxst.c to cfgparse-unix.c
2631 - REORG: sock: start to move some generic socket code to sock.c
2632 - MINOR: sock: introduce sock_inet and sock_unix
2633 - MINOR: tcp/udp/unix: make use of proto->addrcmp() to compare addresses
2634 - MINOR: sock_inet: implement sock_inet_get_dst()
2635 - REORG: inet: replace tcp_is_foreign() with sock_inet_is_foreign()
2636 - REORG: sock_inet: move v6only_default from proto_tcp.c to sock_inet.c
2637 - REORG: sock_inet: move default_tcp_maxseg from proto_tcp.c
2638 - REORG: listener: move xfer_sock_list to sock.{c,h}.
2639 - MINOR: sock: add interface and namespace length to xfer_sock_list
2640 - MINOR: sock: implement sock_find_compatible_fd()
2641 - MINOR: sock_inet: move the IPv4/v6 transparent mode code to sock_inet
2642 - REORG: sock: move get_old_sockets() from haproxy.c
2643 - MINOR: sock: do not use LI_O_* in xfer_sock_list anymore
2644 - MINOR: sock: distinguish dgram from stream types when retrieving old sockets
2645 - BUILD: sock_unix: fix build issue with isdigit()
2646 - BUG/MEDIUM: http-ana: Don't wait to send 1xx responses received from servers
2647 - MINOR: http-htx: Add an option to eval query-string when the path is replaced
2648 - BUG/MINOR: http-rules: Replace path and query-string in "replace-path" action
2649 - MINOR: http-htx: Handle an optional reason when replacing the response status
2650 - MINOR: contrib/spoa-server: allow MAX_FRAME_SIZE override
2651 - BUG/MAJOR: contrib/spoa-server: Fix unhandled python call leading to memory leak
2652 - BUG/MINOR: contrib/spoa-server: Ensure ip address references are freed
2653 - BUG/MINOR: contrib/spoa-server: Do not free reference to NULL
2654 - BUG/MINOR: contrib/spoa-server: Updating references to free in case of failure
2655 - BUG/MEDIUM: contrib/spoa-server: Fix ipv4_address used instead of ipv6_address
2656 - CLEANUP: http: silence a cppcheck warning in get_http_auth()
2657 - REGTEST: increase some short timeouts to make tests more reliable
2658 - BUG/MINOR: threads: work around a libgcc_s issue with chrooting
2659 - BUILD: thread: limit the libgcc_s workaround to glibc only
2660 - MINOR: protocol: do not call proto->bind_all() anymore
2661 - MINOR: protocol: do not call proto->unbind_all() anymore
2662 - CLEANUP: protocol: remove all ->bind_all() and ->unbind_all() functions
2663 - MAJOR: init: start all listeners via protocols and not via proxies anymore
2664 - BUG/MINOR: startup: haproxy -s cause 100% cpu
2665 - Revert "BUG/MINOR: http-rules: Replace path and query-string in "replace-path" action"
2666 - BUG/MEDIUM: doc: Fix replace-path action description
2667 - MINOR: http-rules: Add set-pathq and replace-pathq actions
2668 - MINOR: http-fetch: Add pathq sample fetch
2669 - REGTEST: Add a test for request path manipulations, with and without the QS
2670 - MINOR: Commit .gitattributes
2671 - CLEANUP: Update .gitignore
2672 - BUG/MEDIUM: dns: Don't store additional records in a linked-list
2673 - BUG/MEDIUM: dns: Be sure to renew IP address for already known servers
2674 - MINOR: server: Improve log message sent when server address is updated
2675 - DOC: ssl-load-extra-files only applies to certificates on bind lines
2676 - BUG/MINOR: auth: report valid crypto(3) support depending on build options
2677 - BUG/MEDIUM: mux-h1: always apply the timeout on half-closed connections
2678 - BUILD: threads: better workaround for late loading of libgcc_s
2679 - BUILD: compiler: reserve the gcc version checks to the gcc compiler
2680 - BUILD: compiler: workaround a glibc madness around __attribute__()
2681 - BUILD: intops: on x86_64, the bswap instruction is called bswapq
2682 - BUILD: trace: always have an argument before variadic args in macros
2683 - BUILD: traces: don't pass an empty argument for missing ones
2684 - BUG/MINOR: haproxy: Free uri_auth->scope during deinit
2685 - CLEANUP: Free old_argv on deinit
2686 - CLEANUP: haproxy: Free post_proxy_check_list in deinit()
2687 - CLEANUP: haproxy: Free per_thread_*_list in deinit()
2688 - CLEANUP: haproxy: Free post_check_list in deinit()
2689 - BUG/MEDIUM: pattern: Renew the pattern expression revision when it is pruned
2690 - REORG: tools: move PARSE_OPT_* from tools.h to tools-t.h
2691 - MINOR: sample: Add iif(<true>,<false>) converter
2692
Willy Tarreauf104b532020-08-14 18:54:05 +020026932020/08/14 : 2.3-dev3
2694 - SCRIPTS: git-show-backports: make -m most only show the left branch
2695 - SCRIPTS: git-show-backports: emit the shell command to backport a commit
2696 - BUILD: Makefile: require SSL_LIB, SSL_INC to be explicitly set
2697 - CI: travis-ci: specify SLZ_LIB, SLZ_INC for travis builds
2698 - BUG/MEDIUM: mux-h1: Refresh H1 connection timeout after a synchronous send
2699 - CLEANUP: dns: typo in reported error message
2700 - BUG/MAJOR: dns: disabled servers through SRV records never recover
2701 - BUG/MINOR: spoa-server: fix size_t format printing
2702 - DOC: spoa-server: fix false friends `actually`
2703 - BUG/MINOR: ssl: fix memory leak at OCSP loading
2704 - BUG/MEDIUM: ssl: memory leak of ocsp data at SSL_CTX_free()
2705 - BUG/MEDIUM: map/lua: Return an error if a map is loaded during runtime
2706 - MINOR: arg: Add an argument type to keep a reference on opaque data
2707 - BUG/MINOR: converters: Store the sink in an arg pointer for debug() converter
2708 - BUG/MINOR: lua: Duplicate map name to load it when a new Map object is created
2709 - BUG/MINOR: arg: Fix leaks during arguments validation for fetches/converters
2710 - BUG/MINOR: lua: Check argument type to convert it to IPv4/IPv6 arg validation
2711 - BUG/MINOR: lua: Check argument type to convert it to IP mask in arg validation
2712 - MINOR: hlua: Don't needlessly copy lua strings in trash during args validation
2713 - BUG/MINOR: lua: Duplicate lua strings in sample fetches/converters arg array
2714 - MEDIUM: lua: Don't filter exported fetches and converters
2715 - MINOR: lua: Add support for userlist as fetches and converters arguments
2716 - MINOR: lua: Add support for regex as fetches and converters arguments
2717 - MINOR: arg: Use chunk_destroy() to release string arguments
2718 - BUG/MINOR: snapshots: leak of snapshots on deinit()
2719 - CLEANUP: ssl: ssl_sock_crt2der semicolon and spaces
2720 - MINOR: ssl: add ssl_{c,s}_chain_der fetch methods
2721 - CLEANUP: fix all duplicated semicolons
2722 - BUG/MEDIUM: ssl: fix the ssl-skip-self-issued-ca option
2723 - BUG/MINOR: ssl: ssl-skip-self-issued-ca requires >= 1.0.2
2724 - BUG/MINOR: stats: use strncmp() instead of memcmp() on health states
2725 - BUILD: makefile: don't disable -Wstringop-overflow anymore
2726 - BUG/MINOR: ssl: double free w/ smp_fetch_ssl_x_chain_der()
2727 - BUG/MEDIUM: htx: smp_prefetch_htx() must always validate the direction
2728 - BUG/MEDIUM: ssl: never generates the chain from the verify store
2729 - OPTIM: regex: PCRE2 use JIT match when JIT optimisation occured.
2730 - BUG/MEDIUM: ssl: does not look for all SNIs before chosing a certificate
2731 - CLEANUP: ssl: remove poorly readable nested ternary
2732
Willy Tarreau3f3cc8c2020-07-31 14:48:32 +020027332020/07/31 : 2.3-dev2
2734 - DOC: ssl: req_ssl_sni needs implicit TLS
2735 - BUG/MEDIUM: arg: empty args list must be dropped
2736 - BUG/MEDIUM: resolve: fix init resolving for ring and peers section.
2737 - BUG/MAJOR: tasks: don't requeue global tasks into the local queue
2738 - MINOR: tasks/debug: make the thread affinity BUG_ON check a bit stricter
2739 - MINOR: tasks/debug: add a few BUG_ON() to detect use of wrong timer queue
2740 - MINOR: tasks/debug: add a BUG_ON() check to detect requeued task on free
2741 - BUG/MAJOR: dns: Make the do-resolve action thread-safe
2742 - BUG/MEDIUM: dns: Release answer items when a DNS resolution is freed
2743 - MEDIUM: htx: Add a flag on a HTX message when no more data are expected
2744 - BUG/MEDIUM: stream-int: Don't set MSG_MORE flag if no more data are expected
2745 - BUG/MEDIUM: http-ana: Only set CF_EXPECT_MORE flag on data filtering
2746 - CLEANUP: dns: remove 45 "return" statements from dns_validate_dns_response()
2747 - BUG/MINOR: htx: add two missing HTX_FL_EOI and remove an unexpected one
2748 - BUG/MINOR: mux-fcgi: Don't url-decode the QUERY_STRING parameter anymore
2749 - BUILD: tools: fix build with static only toolchains
2750 - DOC: Use gender neutral language
2751 - BUG/MINOR: debug: Don't dump the lua stack if it is not initialized
2752 - BUG/MAJOR: dns: fix null pointer dereference in snr_update_srv_status
2753 - BUG/MAJOR: dns: don't treat Authority records as an error
2754 - CI : travis-ci : prepare for using stock OpenSSL
2755 - CI: travis-ci : switch to stock openssl when openssl-1.1.1 is used
2756 - MEDIUM: lua: Add support for the Lua 5.4
2757 - BUG/MEDIUM: dns: Don't yield in do-resolve action on a final evaluation
2758 - BUG/MINOR: lua: Abort execution of actions that yield on a final evaluation
2759 - MINOR: tcp-rules: Return an internal error if an action yields on a final eval
2760 - BUG/MINOR: tcp-rules: Preserve the right filter analyser on content eval abort
2761 - BUG/MINOR: tcp-rules: Set the inspect-delay when a tcp-response action yields
2762 - MEDIUM: tcp-rules: Use a dedicated expiration date for tcp ruleset
2763 - MEDIUM: lua: Set the analyse expiration date with smaller wake_time only
2764 - BUG/MEDIUM: connection: Be sure to always install a mux for sync connect
2765 - MINOR: connection: Preinstall the mux for non-ssl connect
2766 - MINOR: stream-int: Be sure to have a mux to do sends and receives
2767 - BUG/MINOR: lua: Fix a possible null pointer deref on lua ctx
2768 - SCRIPTS: announce-release: add the link to the wiki in the announce messages
2769 - CI: travis-ci: use better name for Coverity scan job
2770 - CI: travis-ci: use proper linking flags for SLZ build
2771 - BUG/MEDIUM: backend: always attach the transport before installing the mux
2772 - BUG/MEDIUM: tcp-checks: always attach the transport before installing the mux
2773 - MINOR: connection: avoid a useless recvfrom() on outgoing connections
2774 - MINOR: mux-h1: do not even try to receive if the connection is not fully set up
2775 - MINOR: mux-h1: do not try to receive on backend before sending a request
2776 - CLEANUP: assorted typo fixes in the code and comments
2777 - BUG/MEDIUM: ssl: check OCSP calloc in ssl_sock_load_ocsp()
2778
Willy Tarreaue732cbd2020-07-17 15:13:19 +020027792020/07/17 : 2.3-dev1
2780 - MINOR: config: make strict limits enabled by default
2781 - BUG/MINOR: acl: Fix freeing of expr->smp in prune_acl_expr
2782 - BUG/MINOR: sample: Fix freeing of conv_exprs in release_sample_expr
2783 - BUG/MINOR: haproxy: Free proxy->format_unique_id during deinit
2784 - BUG/MINOR: haproxy: Add missing free of server->(hostname|resolvers_id)
2785 - BUG/MINOR: haproxy: Free proxy->unique_id_header during deinit
2786 - BUG/MINOR: haproxy: Free srule->file during deinit
2787 - BUG/MINOR: haproxy: Free srule->expr during deinit
2788 - BUG/MINOR: sample: Free str.area in smp_check_const_bool
2789 - BUG/MINOR: sample: Free str.area in smp_check_const_meth
2790 - CLEANUP: haproxy: Free proxy_deinit_list in deinit()
2791 - CLEANUP: haproxy: Free post_deinit_list in deinit()
2792 - CLEANUP: haproxy: Free server_deinit_list in deinit()
2793 - CLEANUP: haproxy: Free post_server_check_list in deinit()
2794 - CLEANUP: Add static void vars_deinit()
2795 - CLEANUP: Add static void hlua_deinit()
2796 - CLEANUP: contrib/prometheus-exporter: typo fixes for ssl reuse metric
2797 - BUG/MEDIUM: lists: add missing store barrier on MT_LIST_BEHEAD()
2798 - BUG/MEDIUM: lists: add missing store barrier in MT_LIST_ADD/MT_LIST_ADDQ
2799 - MINOR: tcp: Support TCP keepalive parameters customization
2800 - BUILD: tcp: condition TCP keepalive settings to platforms providing them
2801 - MINOR: lists: rename some MT_LIST operations to clarify them
2802 - MINOR: buffer: use MT_LIST_ADDQ() for buffer_wait lists additions
2803 - MINOR: connection: use MT_LIST_ADDQ() to add connections to idle lists
2804 - MINOR: tasks: use MT_LIST_ADDQ() when killing tasks.
2805 - CONTRIB: da: fix memory leak in dummy function da_atlas_open()
2806 - CI: travis-ci: speed up osx build by running brew scripted, switch to latest osx image
2807 - BUG/MEDIUM: mux-h2: Don't add private connections in available connection list
2808 - BUG/MEDIUM: mux-fcgi: Don't add private connections in available connection list
2809 - MINOR: connection: Set the SNI on server connections before installing the mux
2810 - MINOR: connection: Set new connection as private on reuse never
2811 - MINOR: connection: Add a wrapper to mark a connection as private
2812 - MEDIUM: connection: Add private connections synchronously in session server list
2813 - MINOR: connection: Use a dedicated function to look for a session's connection
2814 - MINOR: connection: Set the conncetion target during its initialisation
2815 - MINOR: session: Take care to decrement idle_conns counter in session_unown_conn
2816 - MINOR: server: Factorize code to deal with reuse of server idle connections
2817 - MINOR: server: Factorize code to deal with connections removed from an idle list
2818 - CLEANUP: connection: remove unused field idle_time from the connection struct
2819 - BUG/MEDIUM: mux-h1: Continue to process request when switching in tunnel mode
2820 - MINOR: raw_sock: Report the number of bytes emitted using the splicing
2821 - MINOR: contrib/prometheus-exporter: Add missing global and per-server metrics
2822 - MINOR: backend: Add sample fetches to get the server's weight
2823 - BUG/MINOR: mux-fcgi: Handle empty STDERR record
2824 - BUG/MINOR: mux-fcgi: Set conn state to RECORD_P when skipping the record padding
2825 - BUG/MINOR: mux-fcgi: Set flags on the right stream field for empty FCGI_STDOUT
2826 - BUG/MINOR: backend: fix potential null deref on srv_conn
2827 - BUG/MEDIUM: log: issue mixing sampled to not sampled log servers.
2828 - MEDIUM: udp: adds minimal proto udp support for message listeners.
2829 - MEDIUM: log/sink: re-work and merge of build message API.
2830 - MINOR: log: adds syslog udp message handler and parsing.
2831 - MEDIUM: log: adds log forwarding section.
2832 - MINOR: log: adds counters on received syslog messages.
2833 - BUG/MEDIUM: fcgi-app: fix memory leak in fcgi_flt_http_headers
2834 - BUG/MEDIUM: server: resolve state file handle leak on reload
2835 - BUG/MEDIUM: server: fix possibly uninitialized state file on close
2836 - BUG/MEDIUM: channel: Be aware of SHUTW_NOW flag when output data are peeked
2837 - BUILD: config: address build warning on raspbian+rpi4
2838 - BUG/MAJOR: tasks: make sure to always lock the shared wait queue if needed
2839 - BUILD: config: fix again bugs gcc warnings on calloc
2840
Willy Tarreau33205c22020-07-07 16:35:28 +020028412020/07/07 : 2.3-dev0
Willy Tarreau848dbdf2020-07-07 16:39:18 +02002842 - [RELEASE] Released version 2.3-dev0
2843 - MINOR: version: back to development, update status message
2844
28452020/07/07 : 2.3-dev0
Willy Tarreau33205c22020-07-07 16:35:28 +02002846 - exact copy of 2.2.0
2847
Willy Tarreau3a00c912020-07-07 16:33:14 +020028482020/07/07 : 2.2.0
2849 - BUILD: mux-h2: fix typo breaking build when using DEBUG_LOCK
2850 - CLEANUP: makefile: update the outdated list of DEBUG_xxx options
2851 - BUILD: tools: make resolve_sym_name() return a const
2852 - CLEANUP: auth: fix useless self-include of auth-t.h
2853 - BUILD: tree-wide: cast arguments to tolower/toupper to unsigned char
2854 - CLEANUP: assorted typo fixes in the code and comments
2855 - WIP/MINOR: ssl: add sample fetches for keylog in frontend
2856 - DOC: fix tune.ssl.keylog sample fetches array
2857 - BUG/MINOR: ssl: check conn in keylog sample fetch
2858 - DOC: configuration: various typo fixes
2859 - MINOR: log: Remove unused case statement during the log-format string parsing
2860 - BUG/MINOR: mux-h1: Fix the splicing in TUNNEL mode
2861 - BUG/MINOR: mux-h1: Don't read data from a pipe if the mux is unable to receive
2862 - BUG/MINOR: mux-h1: Disable splicing only if input data was processed
2863 - BUG/MEDIUM: mux-h1: Disable splicing for the conn-stream if read0 is received
2864 - MINOR: mux-h1: Improve traces about the splicing
2865 - BUG/MINOR: backend: Remove CO_FL_SESS_IDLE if a client remains on the last server
2866 - BUG/MEDIUM: connection: Don't consider new private connections as available
2867 - BUG/MINOR: connection: See new connection as available only on reuse always
2868 - DOC: configuration: remove obsolete mentions of H2 being converted to HTTP/1.x
2869 - CLEANUP: ssl: remove unrelevant comment in smp_fetch_ssl_x_keylog()
2870 - DOC: update INSTALL with new compiler versions
2871 - DOC: minor update to coding style file
2872 - MINOR: version: mention that it's an LTS release now
2873
Willy Tarreau62f11a52020-07-04 07:10:24 +020028742020/07/04 : 2.2-dev12
2875 - BUG/MINOR: mux_h2: don't lose the leaving trace in h2_io_cb()
2876 - MINOR: cli: make "show sess" stop at the last known session
2877 - CLEANUP: buffers: remove unused buffer_wq_lock lock
2878 - BUG/MEDIUM: buffers: always allocate from the local cache first
2879 - MINOR: connection: align toremove_{lock,connections} and cleanup into idle_conns
2880 - CONTRIB: debug: add missing flags SI_FL_L7_RETRY & SI_FL_D_L7_RETRY
2881 - BUG/MEDIUM: connections: Don't increase curr_used_conns for shared connections.
2882 - BUG/MEDIUM: checks: Increment the server's curr_used_conns
2883 - REORG: buffer: rename buffer.c to dynbuf.c
2884 - REORG: includes: create tinfo.h for the thread_info struct
2885 - CLEANUP: pool: only include the type files from types
2886 - MINOR: pools: move the LRU cache heads to thread_info
2887 - BUG/MINOR: debug: fix "show fd" null-deref when built with DEBUG_FD
2888 - MINOR: stats: add 3 new output values for the per-server idle conn state
2889 - MINOR: activity: add per-thread statistics on FD takeover
2890 - BUG/MINOR: server: start cleaning idle connections from various points
2891 - MEDIUM: server: improve estimate of the need for idle connections
2892 - MINOR: stats: add the estimated need of concurrent connections per server
2893 - BUG/MINOR: threads: Don't forget to init each thread toremove_lock.
2894 - BUG/MEDIUM: lists: Lock the element while we check if it is in a list.
2895 - Revert "BUG/MEDIUM: lists: Lock the element while we check if it is in a list."
2896 - BUG/MINOR: haproxy: don't wake already stopping threads on exit
2897 - BUG/MINOR: server: always count one idle slot for current thread
2898 - MEDIUM: server: use the two thresholds for the connection release algorithm
2899 - BUG/MINOR: http-rules: Fix ACLs parsing for http deny rules
2900 - BUG/MINOR: sched: properly cover for a rare MT_LIST_ADDQ() race
2901 - MINOR: mux-h1: avoid taking the toremove_lock in on dying tasks
2902 - MINOR: mux-h2: avoid taking the toremove_lock in on dying tasks
2903 - MINOR: mux-fcgi: avoid taking the toremove_lock in on dying tasks
2904 - MINOR: pools: increase MAX_BASE_POOLS to 64
2905 - DOC: ssl: add "allow-0rtt" and "ciphersuites" in crt-list
2906 - BUG/MEDIUM: pattern: Add a trailing \0 to match strings only if possible
2907 - BUG/MEDIUM: log-format: fix possible endless loop in parse_logformat_string()
2908 - BUG/MINOR: proxy: fix dump_server_state()'s misuse of the trash
2909 - BUG/MINOR: proxy: always initialize the trash in show servers state
2910 - MINOR: cli/proxy: add a new "show servers conn" command
2911 - MINOR: server: skip servers with no idle conns earlier
2912 - BUG/MINOR: server: fix the connection release logic regarding nearly full conditions
2913 - MEDIUM: server: add a new pool-low-conn server setting
2914 - BUG/MEDIUM: backend: always search in the safe list after failing on the idle one
2915 - MINOR: backend: don't always takeover from the same threads
2916 - MINOR: sched: make sched->task_list_size atomic
2917 - MEDIUM: sched: create a new TASK_KILLED task flag
2918 - MEDIUM: sched: implement task_kill() to kill a task
2919 - MEDIUM: mux-h1: use task_kill() during h1_takeover() instead of task_wakeup()
2920 - MEDIUM: mux-h2: use task_kill() during h2_takeover() instead of task_wakeup()
2921 - MEDIUM: mux-fcgi: use task_kill() during fcgi_takeover() instead of task_wakeup()
2922 - MINOR: list: Add MT_LIST_DEL_SAFE_NOINIT() and MT_LIST_ADDQ_NOCHECK()
2923 - CLEANUP: connections: rename the toremove_lock to takeover_lock
2924 - MEDIUM: connections: Don't use a lock when moving connections to remove.
2925 - DOC: configuration: add missing index entries for tune.pool-{low,high}-fd-ratio
2926 - DOC: configuration: fix alphabetical ordering for tune.pool-{high,low}-fd-ratio
2927 - MINOR: config: add a new tune.idle-pool.shared global setting.
2928 - MINOR: 51d: silence a warning about null pointer dereference
2929 - MINOR: debug: add a new "debug dev memstats" command
2930 - MINOR: log-format: allow to preserve spacing in log format strings
2931 - BUILD: debug: avoid build warnings with DEBUG_MEM_STATS
2932 - BUG/MAJOR: sched: make sure task_kill() always queues the task
2933 - BUG/MEDIUM: muxes: Make sure nobody stole the connection before using it.
2934 - BUG/MEDIUM: cli/proxy: don't try to dump idle connection state if there's none
2935 - BUILD: haproxy: fix build error when RLIMIT_AS is not set
2936 - BUG/MAJOR: sched: make it work also when not building with DEBUG_STRICT
2937 - MINOR: log: add time second fraction field to rfc5424 log timestamp.
2938 - BUG/MINOR: log: missing timezone on iso dates.
2939 - BUG/MEDIUM: server: don't kill all idle conns when there are not enough
2940 - MINOR: sched: split tasklet_wakeup() into tasklet_wakeup_on()
2941 - BUG/MEDIUM: connections: Set the tid for the old tasklet on takeover.
2942 - BUG/MEDIUM: connections: Let the xprt layer know a takeover happened.
2943 - BUG/MINOR: http_act: don't check capture id in backend (2)
2944 - BUILD: makefile: disable threads by default on OpenBSD
2945 - BUILD: peers: fix build warning with gcc 4.2.1
2946 - CI: cirrus-ci: exclude slow reg-tests
2947
Willy Tarreau4462af82020-06-26 22:01:04 +020029482020/06/26 : 2.2-dev11
2949 - REGTEST: Add a simple script to tests errorfile directives in proxy sections
2950 - BUG/MEDIUM: fcgi-app: Resolve the sink if a fcgi-app logs in a ring buffer
2951 - BUG/MINOR: spoe: correction of setting bits for analyzer
2952 - BUG/MINOR: cfgparse: Support configurations without newline at EOF
2953 - MINOR: cfgparse: Warn on truncated lines / files
2954 - BUG/MINOR: http_ana: clarify connection pointer check on L7 retry
2955 - MINOR: debug: add a new DEBUG_FD build option
2956 - BUG/MINOR: tasks: make sure never to exceed max_processed
2957 - MINOR: task: add a new pointer to current tasklet queue
2958 - BUG/MEDIUM: task: be careful not to run too many tasks at TL_URGENT
2959 - BUG/MINOR: cfgparse: Fix argument reference in PARSE_ERR_TOOMANY message
2960 - BUG/MINOR: cfgparse: Fix calculation of position for PARSE_ERR_TOOMANY message
2961 - BUG/MEDIUM: ssl: fix ssl_bind_conf double free
2962 - MINOR: ssl: free bind_conf_node in crtlist_free()
2963 - MINOR: ssl: free the crtlist and the ckch during the deinit()
2964 - BUG/MINOR: ssl: fix build with ckch_deinit() and crtlist_deinit()
2965 - BUG/MINOR: ssl/cli: certs added from the CLI can't be deleted
2966 - MINOR: ssl: move the ckch/crtlist deinit to ssl_sock.c
2967 - MEDIUM: tasks: apply a fair CPU distribution between tasklet classes
2968 - MINOR: tasks: make current_queue an index instead of a pointer
2969 - MINOR: tasks: add a mask of the queues with active tasklets
2970 - MINOR: tasks: pass the queue index to run_task_from_list()
2971 - MINOR: tasks: make run_tasks_from_lists() scan the queues itself
2972 - MEDIUM: tasks: add a tune.sched.low-latency option
2973 - BUG/MEDIUM: ssl/cli: 'commit ssl cert' crashes when no private key
2974 - BUG/MINOR: cfgparse: don't increment linenum on incomplete lines
2975 - MINOR: tools: make parse_line() always terminate the args list
2976 - BUG/MINOR: cfgparse: report extraneous args *after* the string is allocated
2977 - MINOR: cfgparse: sanitize the output a little bit
2978 - MINOR: cli/ssl: handle trailing slashes in crt-list commands
2979 - MINOR: ssl: add the ssl_s_* sample fetches for server side certificate
2980 - BUG/MEDIUM: http-ana: Don't loop trying to generate a malformed 500 response
2981 - BUG/MINOR: stream-int: Don't wait to send truncated HTTP messages
2982 - BUG/MINOR: http-ana: Set CF_EOI on response channel for generated responses
2983 - BUG/MINOR: http-ana: Don't wait to send 1xx responses generated by HAProxy
2984 - MINOR: spoe: Don't systematically create new applets if processing rate is low
2985 - DOC: fix some typos in the ssl_s_{s|i}_dn documentation
2986 - BUILD: fix ssl_sample.c when building against BoringSSL
2987 - CI: travis-ci: switch BoringSSL builds to ninja
2988 - CI: extend spellchecker whitelist
2989 - DOC: assorted typo fixes in the documentation
2990 - CLEANUP: assorted typo fixes in the code and comments
2991 - MINOR: http: Add support for http 413 status
2992 - REGTEST: ssl: tests the ssl_f_* sample fetches
2993 - REGTEST: ssl: add some ssl_c_* sample fetches test
2994 - DOC: ssl: update the documentation of "commit ssl cert"
2995 - BUG/MINOR: cfgparse: correctly deal with empty lines
2996 - BUG/MEDIUM: fetch: Fix hdr_ip misparsing IPv4 addresses due to missing NUL
2997
Willy Tarreaudc0936c2020-06-19 21:43:26 +020029982020/06/19 : 2.2-dev10
2999 - BUILD: include: add sys/types before netinet/tcp.h
3000 - BUG/MEDIUM: log: don't hold the log lock during writev() on a file descriptor
3001 - BUILD: Remove nowarn for warnings that do not trigger
3002 - BUG/MEDIUM: pattern: fix thread safety of pattern matching
3003 - BUILD: Re-enable -Wimplicit-fallthrough
3004 - BUG/MINOR: ssl: fix ssl-{min,max}-ver with openssl < 1.1.0
3005 - BUILD: thread: add parenthesis around values of locking macros
3006 - BUILD: proto_uxst: shut up yet another gcc's absurd warning
3007 - BUG/MEDIUM: checks: Fix off-by-one in allocation of SMTP greeting cmd
3008 - CI: travis-ci: use "-O1" for clang builds
3009 - MINOR: haproxy: Add void deinit_and_exit(int)
3010 - MINOR: haproxy: Make use of deinit_and_exit() for clean exits
3011 - BUG/MINOR: haproxy: Free rule->arg.vars.expr during deinit_act_rules
3012 - BUILD: compression: make gcc 10 happy with free_zlib()
3013 - BUILD: atomic: add string.h for memcpy() on ARM64
3014 - BUG/MINOR: http: make smp_fetch_body() report that the contents may change
3015 - BUG/MINOR: tcp-rules: tcp-response must check the buffer's fullness
3016 - BUILD: haproxy: mark deinit_and_exit() as noreturn
3017 - BUG/MAJOR: vars: Fix bogus free() during deinit() for http-request rules
3018 - BUG/MEDIUM: ebtree: use a byte-per-byte memcmp() to compare memory blocks
3019 - MINOR: tools: add a new configurable line parse, parse_line()
3020 - BUG/MEDIUM: cfgparse: use parse_line() to expand/unquote/unescape config lines
3021 - BUG/MEDIUM: cfgparse: stop after a reasonable amount of fatal error
3022 - MINOR: http: do not close connections anymore after internal responses
3023 - BUG/MINOR: cfgparse: Add missing fatal++ in PARSE_ERR_HEX case
3024 - BUG/MINOR: spoe: add missing key length check before checking key names
3025 - MINOR: version: put the compiler version output into version.c not haproxy.c
3026 - MINOR: compiler: always define __has_feature()
3027 - MINOR: version: report the presence of the compiler's address sanitizer
3028 - BUILD: Fix build by including haproxy/global.h
3029 - BUG/MAJOR: connection: always disable ready events once reported
3030 - CLEANUP: activity: remove unused counter fd_lock
3031 - DOC: fd: make it clear that some fields ordering must absolutely be respected
3032 - MINOR: activity: report the number of times poll() reports I/O
3033 - MINOR: activity: rename confusing poll_* fields in the output
3034 - MINOR: fd: Fix a typo in a coment.
3035 - BUG/MEDIUM: fd: Don't fd_stop_recv() a fd we don't own.
3036 - BUG/MEDIUM: fd: Call fd_stop_recv() when we just got a fd.
3037 - MINOR: activity: group the per-loop counters at the top
3038 - MINOR: activity: rename the "stream" field to "stream_calls"
3039 - MEDIUM: fd: refine the fd_takeover() migration lock
3040 - MINOR: fd: slightly optimize the fd_takeover double-CAS loop
3041 - MINOR: fd: factorize the fd_takeover() exit path to make it safer
3042 - MINOR: peers: do not use localpeer as an array anymore
3043 - MEDIUM: peers: add the "localpeer" global option
3044 - MEDIUM: fd: add experimental support for edge-triggered polling
3045 - CONTRIB: debug: add the missing flags CO_FL_SAFE_LIST and CO_FL_IDLE_LIST
3046 - MINOR: haproxy: process signals before runnable tasks
3047 - MEDIUM: tasks: clean up the front side of the wait queue in wake_expired_tasks()
3048 - MEDIUM: tasks: also process late wakeups in process_runnable_tasks()
3049 - BUG/MINOR: cli: allow space escaping on the CLI
3050 - BUG/MINOR: mworker/cli: fix the escaping in the master CLI
3051 - BUG/MINOR: mworker/cli: fix semicolon escaping in master CLI
3052 - REGTEST: http-rules: test spaces in ACLs
3053 - REGTEST: http-rules: test spaces in ACLs with master CLI
3054 - BUG/MAJOR: init: properly compute the default global.maxpipes value
3055 - MEDIUM: map: make the "clear map" operation yield
3056 - BUG/MEDIUM: stream-int: fix loss of CO_SFL_MSG_MORE flag in forwarding
3057 - MINOR: mux_h1: Set H1_F_CO_MSG_MORE if we know we have more to send.
3058 - BUG/MINOR: systemd: Wait for network to be online
3059 - DOC: configuration: Unindent non-code sentences in the protobuf example
3060 - DOC: configuration: http-check send was missing from matrix
3061
Willy Tarreau1385c882020-06-11 10:22:10 +020030622020/06/11 : 2.2-dev9
3063 - BUG/MINOR: http-htx: Don't forget to release the http reply in release function
3064 - BUG/MINOR: http-htx: Fix a leak on error path during http reply parsing
3065 - MINOR: checks: Remove dead code from process_chk_conn()
3066 - REGTESTS: checks: Fix tls_health_checks when IPv6 addresses are used
3067 - REGTESTS: Add missing OPENSSL to REQUIRE_OPTIONS for lua/txn_get_priv
3068 - MINOR: lua: Use vars_unset_by_name_ifexist()
3069 - CLEANUP: vars: Remove void vars_unset_by_name(const char*, size_t, struct sample*)
3070 - MINOR: vars: Make vars_(un|)set_by_name(_ifexist|) return a success value
3071 - MINOR: lua: Make `set_var()` and `unset_var()` return success
3072 - MEDIUM: lua: Add `ifexist` parameter to `set_var`
3073 - MEDIUM: ring: new section ring to declare custom ring buffers.
3074 - REGTESTS: Add missing OPENSSL to REQUIRE_OPTIONS for compression/lua_validation
3075 - REGTESTS: Require the version 2.2 to execute lua/set_var
3076 - BUG/MEDIUM: checks: Refresh the conn-stream and the connection after a connect
3077 - MINOR: checks: Remove useless tests on the connection and conn-stream
3078 - BUG/MEDIUM: contrib/spoa: do not register python3.8 if --embed fail
3079 - BUG/MEDIUM: connection: Ignore PP2 unique ID for stream-less connections
3080 - BUG/MINOR: connection: Always get the stream when available to send PP2 line
3081 - BUG/MEDIUM: backend: set the connection owner to the session when using alpn.
3082 - MINOR: pools: compute an estimate of each pool's average needed objects
3083 - MEDIUM: pools: directly free objects when pools are too much crowded
3084 - REGTEST: Add connection/proxy_protocol_send_unique_id_alpn
3085 - MINOR: http-ana: Make the function http_reply_to_htx() public
3086 - MINOR: http-ana: Use proxy's error replies to emit 401/407 responses
3087 - MINOR: http-rules: Use an action function to eval http-request auth rules
3088 - CLEANUP: http: Remove unused HTTP message templates
3089 - BUG/MEDIUM: checks: Don't blindly subscribe for receive if waiting for connect
3090 - MINOR: checks: I/O callback function only rely on the data layer wake callback
3091 - BUG/MINOR: lua: Add missing string length for lua sticktable lookup
3092 - BUG/MEDIUM: logs: fix trailing zeros on log message.
3093 - CI: cirrus-ci: skip reg-tests/connection/proxy_protocol_send_unique_id_alpn.vtc on CentOS 6
3094 - BUG/MINOR: nameservers: fix error handling in parsing of resolv.conf
3095 - BUG/MEDIUM: checks: Don't add a tcpcheck ruleset twice in the shared tree
3096 - MEDIUM: ssl: use TLSv1.2 as the minimum default on bind lines
3097 - CLEANUP: pools: use the regular lock for the flush operation on lockless pools
3098 - SCRIPTS: publish-release: pass -n to gzip to remove timestamp
3099 - MINOR: ring: re-work ring attach generic API.
3100 - BUG/MINOR: error on unknown statement in ring section.
3101 - MEDIUM: ring: add server statement to forward messages from a ring
3102 - MEDIUM: ring: add new srv statement to support octet counting forward
3103 - MINOR: ssl: set ssl-min-ver in ambiguous configurations
3104 - CLEANUP: ssl: remove comment from dump_crtlist_sslconf()
3105 - BUILD: sink: address build warning on 32-bit architectures
3106 - BUG/MINOR: peers: fix internal/network key type mapping.
3107 - CLEANUP: regex: remove outdated support for regex actions
3108 - Revert "MINOR: ssl: rework add cert chain to CTX to be libssl independent"
3109 - MINOR: mux-h1/proxy: Add a proxy option to disable clear h2 upgrade
3110 - BUG/MEDIUM: lua: Reset analyse expiration timeout before executing a lua action
3111 - DOC: add a line about comments in crt-list
3112 - BUG/MEDIUM: hlua: Lock pattern references to perform set/add/del operations
3113 - BUG/MINOR: checks: Fix test on http-check rulesets during config validity check
3114 - BUG/MEDIUM: contrib/prometheus-exporter: Properly set flags to dump metrics
3115 - BUG/MEDIUM: mworker: fix the copy of options in copy_argv()
3116 - BUG/MINOR: init: -x can have a parameter starting with a dash
3117 - BUG/MINOR: init: -S can have a parameter starting with a dash
3118 - BUG/MEDIUM: mworker: fix the reload with an -- option
3119 - BUG/MINOR: ssl: fix a trash buffer leak in some error cases
3120 - BUG/MINOR: mworker: fix a memleak when execvp() failed
3121 - MINOR: sample: Add secure_memcmp converter
3122 - REORG: ebtree: move the C files from ebtree/ to src/
3123 - REORG: ebtree: move the include files from ebtree to include/import/
3124 - REORG: ebtree: clean up remains of the ebtree/ directory
3125 - REORG: include: create new file haproxy/api-t.h
3126 - REORG: include: create new file haproxy/api.h
3127 - REORG: include: update all files to use haproxy/api.h or api-t.h if needed
3128 - CLEANUP: include: remove common/config.h
3129 - CLEANUP: include: remove unused template.h
3130 - REORG: include: move MIN/MAX from tools.h to compat.h
3131 - REORG: include: move SWAP/MID_RANGE/MAX_RANGE from tools.h to standard.h
3132 - CLEANUP: include: remove unused common/tools.h
3133 - REORG: include: move the base files from common/ to haproxy/
3134 - REORG: include: move version.h to haproxy/
3135 - REORG: include: move base64.h, errors.h and hash.h from common to to haproxy/
3136 - REORG: include: move openssl-compat.h from common/ to haproxy/
3137 - REORG: include: move ist.h from common/ to import/
3138 - REORG: include: move the BUG_ON() code to haproxy/bug.h
3139 - REORG: include: move debug.h from common/ to haproxy/
3140 - CLEANUP: debug: drop unused function p_malloc()
3141 - REORG: include: split buf.h into haproxy/buf-t.h and haproxy/buf.h
3142 - REORG: include: move istbuf.h to haproxy/
3143 - REORG: include: split mini-clist into haproxy/list and list-t.h
3144 - REORG: threads: extract atomic ops from hathreads.h
3145 - CLEANUP: threads: remove a few needless includes of hathreads.h
3146 - REORG: include: split hathreads into haproxy/thread.h and haproxy/thread-t.h
3147 - CLEANUP: thread: rename __decl_hathreads() to __decl_thread()
3148 - REORG: include: move time.h from common/ to haproxy/
3149 - REORG: include: move integer manipulation functions from standard.h to intops.h
3150 - CLEANUP: include: remove excessive includes of common/standard.h
3151 - REORG: include: move freq_ctr to haproxy/
3152 - CLEANUP: pool: include freq_ctr.h and remove locally duplicated functions
3153 - REORG: memory: move the pool type definitions to haproxy/pool-t.h
3154 - REORG: memory: move the OS-level allocator to haproxy/pool-os.h
3155 - MINOR: memory: don't let __pool_get_first() pick from the cache
3156 - MEDIUM: memory: don't let pool_put_to_cache() free the objects itself
3157 - MINOR: memory: move pool-specific path of the locked pool_free() to __pool_free()
3158 - MEDIUM: memory: make local pools independent on lockless pools
3159 - REORG: include: move common/memory.h to haproxy/pool.h
3160 - REORG: include: move common/chunk.h to haproxy/chunk.h
3161 - REORG: include: move activity to haproxy/
3162 - REORG: include: move common/buffer.h to haproxy/dynbuf{,-t}.h
3163 - REORG: include: move common/net_helper.h to haproxy/net_helper.h
3164 - REORG: include: move common/namespace.h to haproxy/namespace{,-t}.h
3165 - REORG: include: split common/regex.h into haproxy/regex{,-t}.h
3166 - REORG: include: split common/xref.h into haproxy/xref{,-t}.h
3167 - REORG: include: move common/ticks.h to haproxy/ticks.h
3168 - REORG: include: split common/http.h into haproxy/http{,-t}.h
3169 - REORG: include: split common/http-hdr.h into haproxy/http-hdr{,-t}.h
3170 - REORG: include: move common/h1.h to haproxy/h1.h
3171 - REORG: include: split common/htx.h into haproxy/htx{,-t}.h
3172 - REORG: include: move hpack*.h to haproxy/ and split hpack-tbl
3173 - REORG: include: move common/h2.h to haproxy/h2.h
3174 - REORG: include: move common/fcgi.h to haproxy/
3175 - REORG: include: move protocol.h to haproxy/protocol{,-t}.h
3176 - REORG: tools: split common/standard.h into haproxy/tools{,-t}.h
3177 - REORG: include: move dict.h to hparoxy/dict{,-t}.h
3178 - REORG: include: move shctx to haproxy/shctx{,-t}.h
3179 - REORG: include: move port_range.h to haproxy/port_range{,-t}.h
3180 - REORG: include: move fd.h to haproxy/fd{,-t}.h
3181 - REORG: include: move ring to haproxy/ring{,-t}.h
3182 - REORG: include: move sink.h to haproxy/sink{,-t}.h
3183 - REORG: include: move pipe.h to haproxy/pipe{,-t}.h
3184 - CLEANUP: include: remove empty raw_sock.h
3185 - REORG: include: move proto_udp.h to haproxy/proto_udp{,-t}.h
3186 - REORG: include: move proto/proto_sockpair.h to haproxy/proto_sockpair.h
3187 - REORG: include: move compression.h to haproxy/compression{,-t}.h
3188 - REORG: include: move h1_htx.h to haproxy/h1_htx.h
3189 - REORG: include: move http_htx.h to haproxy/http_htx{,-t}.h
3190 - REORG: include: move hlua.h to haproxy/hlua{,-t}.h
3191 - REORG: include: move hlua_fcn.h to haproxy/hlua_fcn.h
3192 - REORG: include: move action.h to haproxy/action{,-t}.h
3193 - REORG: include: move arg.h to haproxy/arg{,-t}.h
3194 - REORG: include: move auth.h to haproxy/auth{,-t}.h
3195 - REORG: include: move dns.h to haproxy/dns{,-t}.h
3196 - REORG: include: move flt_http_comp.h to haproxy/
3197 - REORG: include: move counters.h to haproxy/counters-t.h
3198 - REORG: include: split mailers.h into haproxy/mailers{,-t}.h
3199 - REORG: include: move capture.h to haproxy/capture{,-t}.h
3200 - REORG: include: move frontend.h to haproxy/frontend.h
3201 - REORG: include: move obj_type.h to haproxy/obj_type{,-t}.h
3202 - REORG: include: move http_rules.h to haproxy/http_rules.h
3203 - CLEANUP: include: remove unused mux_pt.h
3204 - REORG: include: move mworker.h to haproxy/mworker{,-t}.h
3205 - REORG: include: move ssl_utils.h to haproxy/ssl_utils.h
3206 - REORG: include: move ssl_ckch.h to haproxy/ssl_ckch{,-t}.h
3207 - REORG: move ssl_crtlist.h to haproxy/ssl_crtlist{,-t}.h
3208 - REORG: include: move lb_chash.h to haproxy/lb_chash{,-t}.h
3209 - REORG: include: move lb_fas.h to haproxy/lb_fas{,-t}.h
3210 - REORG: include: move lb_fwlc.h to haproxy/lb_fwlc{,-t}.h
3211 - REORG: include: move lb_fwrr.h to haproxy/lb_fwrr{,-t}.h
3212 - REORG: include: move listener.h to haproxy/listener{,-t}.h
3213 - REORG: include: move pattern.h to haproxy/pattern{,-t}.h
3214 - REORG: include: move map to haproxy/map{,-t}.h
3215 - REORG: include: move payload.h to haproxy/payload.h
3216 - REORG: include: move sample.h to haproxy/sample{,-t}.h
3217 - REORG: include: move protocol_buffers.h to haproxy/protobuf{,-t}.h
3218 - REORG: include: move vars.h to haproxy/vars{,-t}.h
3219 - REORG: include: split global.h into haproxy/global{,-t}.h
3220 - REORG: include: move task.h to haproxy/task{,-t}.h
3221 - REORG: include: move proto_tcp.h to haproxy/proto_tcp.h
3222 - REORG: include: move signal.h to haproxy/signal{,-t}.h
3223 - REORG: include: move tcp_rules.h to haproxy/tcp_rules.h
3224 - REORG: include: move connection.h to haproxy/connection{,-t}.h
3225 - REORG: include: move checks.h to haproxy/check{,-t}.h
3226 - REORG: include: move http_fetch.h to haproxy/http_fetch.h
3227 - REORG: include: move peers.h to haproxy/peers{,-t}.h
3228 - REORG: include: move stick_table.h to haproxy/stick_table{,-t}.h
3229 - REORG: include: move session.h to haproxy/session{,-t}.h
3230 - REORG: include: move trace.h to haproxy/trace{,-t}.h
3231 - REORG: include: move acl.h to haproxy/acl.h{,-t}.h
3232 - REORG: include: split common/uri_auth.h into haproxy/uri_auth{,-t}.h
3233 - REORG: move applet.h to haproxy/applet{,-t}.h
3234 - REORG: include: move stats.h to haproxy/stats{,-t}.h
3235 - REORG: include: move cli.h to haproxy/cli{,-t}.h
3236 - REORG: include: move lb_map.h to haproxy/lb_map{,-t}.h
3237 - REORG: include: move ssl_sock.h to haproxy/ssl_sock{,-t}.h
3238 - REORG: include: move stream_interface.h to haproxy/stream_interface{,-t}.h
3239 - REORG: include: move channel.h to haproxy/channel{,-t}.h
3240 - REORG: include: move http_ana.h to haproxy/http_ana{,-t}.h
3241 - REORG: include: move filters.h to haproxy/filters{,-t}.h
3242 - REORG: include: move fcgi-app.h to haproxy/fcgi-app{,-t}.h
3243 - REORG: include: move log.h to haproxy/log{,-t}.h
3244 - REORG: include: move proxy.h to haproxy/proxy{,-t}.h
3245 - REORG: include: move spoe.h to haproxy/spoe{,-t}.h
3246 - REORG: include: move backend.h to haproxy/backend{,-t}.h
3247 - REORG: include: move queue.h to haproxy/queue{,-t}.h
3248 - REORG: include: move server.h to haproxy/server{,-t}.h
3249 - REORG: include: move stream.h to haproxy/stream{,-t}.h
3250 - REORG: include: move cfgparse.h to haproxy/cfgparse.h
3251 - CLEANUP: hpack: export debug functions and move inlines to .h
3252 - REORG: check: move the e-mail alerting code to mailers.c
3253 - REORG: check: move tcpchecks away from check.c
3254 - REORG: check: move email_alert* from proxy-t.h to mailers-t.h
3255 - REORG: check: extract the external checks from check.{c,h}
3256 - CLEANUP: include: don't include stddef.h directly
3257 - CLEANUP: include: don't include proxy-t.h in global-t.h
3258 - CLEANUP: include: move sample_data out of sample-t.h
3259 - REORG: include: move the error reporting functions to from log.h to errors.h
3260 - BUILD: reorder objects in the Makefile for faster builds
3261 - CLEANUP: compiler: add a THREAD_ALIGNED macro and use it where appropriate
3262 - CLEANUP: include: make atomic.h part of the base API
3263 - REORG: include: move MAX_THREADS to defaults.h
3264 - REORG: include: move THREAD_LOCAL and __decl_thread() to compiler.h
3265 - CLEANUP: include: tree-wide alphabetical sort of include files
3266 - REORG: include: make list-t.h part of the base API
3267 - REORG: dgram: rename proto_udp to dgram
3268
Willy Tarreau73b943b2020-05-22 16:19:04 +020032692020/05/22 : 2.2-dev8
3270 - MINOR: checks: Improve report of unexpected errors for expect rules
3271 - MEDIUM: checks: Add matching on log-format string for expect rules
3272 - DOC: Fix req.body and co documentation to be accurate
3273 - MEDIUM: checks: Remove dedicated sample fetches and use response ones instead
3274 - CLEANUP: checks: sort and rename tcpcheck_expect_type types
3275 - MINOR: checks: Use dedicated actions to send log-format strings in send rules
3276 - MINOR: checks: Simplify matching on HTTP headers in HTTP expect rules
3277 - MINOR: checks/sample: Remove unnecessary tests on the sample session
3278 - REGTEST: checks: Adapt SSL error message reported when connection is rejected
3279 - MINOR: mworker: replace ha_alert by ha_warning when exiting successfuly
3280 - MINOR: checks: Support log-format string to set the URI for HTTP send rules
3281 - MINOR: checks: Support log-format string to set the body for HTTP send rules
3282 - DOC: Be more explicit about configurable check ok/error/timeout status
3283 - MINOR: checks: Make matching on HTTP headers for expect rules less obscure
3284 - BUG/MEDIUM: lua: Fix dumping of stick table entries for STD_T_DICT
3285 - BUG/MINOR: config: Make use_backend and use-server post-parsing less obscur
3286 - REGTESTS: make the http-check-send test require version 2.2
3287 - BUG/MINOR: http-ana: fix NTLM response parsing again
3288 - BUG/MEDIUM: http_ana: make the detection of NTLM variants safer
3289 - BUG/MINOR: cfgparse: Abort parsing the current line if an invalid \x sequence is encountered
3290 - MINOR: cfgparse: Improve error message for invalid \x sequences
3291 - CI: travis-ci: enable arm64 builds again
3292 - MEDIUM: ssl: increase default-dh-param to 2048
3293 - CI: travis-ci: skip pcre2 on arm64 build
3294 - CI: travis-ci: extend the build time for SSL to 60 minutes
3295 - CLEANUP: config: drop unused setting CONFIG_HAP_MEM_OPTIM
3296 - CLEANUP: config: drop unused setting CONFIG_HAP_INLINE_FD_SET
3297 - CLENAUP: config: move CONFIG_HAP_LOCKLESS_POOLS out of config.h
3298 - CLEANUP: remove THREAD_LOCAL from config.h
3299 - CI: travis-ci: upgrade LibreSSL versions
3300 - DOC: assorted typo fixes in the documentation
3301 - CI: extend spellchecker whitelist
3302 - CLEANUP: assorted typo fixes in the code and comments
3303 - MAJOR: contrib: porting spoa_server to support python3
3304 - BUG/MEDIUM: checks: Subscribe to I/O events on an unfinished connect
3305 - BUG/MINOR: checks: Don't subscribe to I/O events if it is already done
3306 - BUG/MINOR: checks: Rely on next I/O oriented rule when waiting for a connection
3307 - MINOR: checks: Don't try to send outgoing data if waiting to be able to send
3308 - MINOR: sample: Move aes_gcm_dec implementation into sample.c
3309 - MINOR: sample: Add digest and hmac converters
3310 - BUG/MEDIUM: checks: Subscribe to I/O events only if a mux was installed
3311 - BUG/MINOR: sample/ssl: Fix digest converter for openssl < 1.1.0
3312 - BUG/MINOR: pools: use %u not %d to report pool stats in "show pools"
3313 - BUG/MINOR: pollers: remove uneeded free in global init
3314 - CLEANUP: select: enhance readability in init
3315 - BUG/MINOR: soft-stop: always wake up waiting threads on stopping
3316 - MINOR: soft-stop: let the first stopper only signal other threads
3317 - BUILD: select: only declare existing local labels to appease clang
3318 - BUG/MEDIUM: streams: Remove SF_ADDR_SET if we're retrying due to L7 retry.
3319 - BUG/MEDIUM: stream: Only allow L7 retries when using HTTP.
3320 - DOC: retry-on can only be used with mode http
3321 - MEDIUM: ssl: allow to register callbacks for SSL/TLS protocol messages
3322 - MEDIUM: ssl: split ssl_sock_msgcbk() and use a new callback mechanism
3323 - MINOR: ssl: add a new function ssl_sock_get_ssl_object()
3324 - MEDIUM: ssl: use ssl_sock_get_ssl_object() in fetchers where appropriate
3325 - REORG: ssl: move macros and structure definitions to ssl_sock.h
3326 - CLEANUP: ssl: remove the shsess_* macros
3327 - REORG: move the crt-list structures in their own .h
3328 - REORG: ssl: move the ckch structures to types/ssl_ckch.h
3329 - CLEANUP: ssl: add ckch prototypes in proto/ssl_ckch.h
3330 - REORG: ssl: move crtlist functions to src/ssl_crtlist.c
3331 - CLEANUP: ssl: avoid circular dependencies in ssl_crtlist.h
3332 - REORG: ssl: move the ckch_store related functions to src/ssl_ckch.c
3333 - REORG: ssl: move ckch_inst functions to src/ssl_ckch.c
3334 - REORG: ssl: move the crt-list CLI functions in src/ssl_crtlist.c
3335 - REORG: ssl: move the CLI 'cert' functions to src/ssl_ckch.c
3336 - REORG: ssl: move ssl configuration to cfgparse-ssl.c
3337 - MINOR: ssl: remove static keyword in some SSL utility functions
3338 - REORG: ssl: move ssl_sock_ctx and fix cross-dependencies issues
3339 - REORG: ssl: move sample fetches to src/ssl_sample.c
3340 - REORG: ssl: move utility functions to src/ssl_utils.c
3341 - DOC: ssl: update MAINTAINERS file
3342 - CI: travis-ci: switch arm64 builds to use openssl from distro
3343 - MINOR: stats: Prepare for more accurate moving averages
3344 - MINOR: stats: Expose native cum_req metric for a server
3345 - MEDIUM: stats: Enable more accurate moving average calculation for stats
3346 - BUILD: ssl: include buffer common headers for ssl_sock_ctx
3347 - BUILD: ssl: include errno.h in ssl_crtlist.c
3348 - CLEANUP: acl: remove unused assignment
3349 - DOC/MINOR: halog: Add long help info for ic flag
3350 - BUILD: ssl: fix build without OPENSSL_NO_ENGINE
3351 - DOC: SPOE is no longer experimental
3352 - BUG/MINOR: cache: Don't needlessly test "cache" keyword in parse_cache_flt()
3353 - MINOR: config: Don't dump keywords if argument is NULL
3354 - MEDIUM: checks: Make post-41 the default mode for mysql checks
3355 - BUG/MINOR: logs: prevent double line returns in some events.
3356 - MEDIUM: sink: build header in sink_write for log formats
3357 - MEDIUM: logs: buffer targets now rely on new sink_write
3358 - MEDIUM: sink: add global statement to create a new ring (sink buffer)
3359 - MEDIUM: hpack: use a pool for the hpack table
3360 - BUG/MAJOR: mux-fcgi: Stop sending loop if FCGI stream is blocked for any reason
3361 - BUG/MEDIUM: ring: write-lock the ring while attaching/detaching
3362 - MINOR: applet: adopt the wait list entry from the CLI
3363 - MINOR: ring: make the applet code not depend on the CLI
3364 - Revert "MEDIUM: sink: add global statement to create a new ring (sink buffer)"
3365 - CI: travis-ci: fix libslz download URL
3366 - MINOR: ssl: split config and runtime variable for ssl-{min,max}-ver
3367 - CLEANUP: http_ana: Remove unused TXN flags
3368 - BUG/MINOR: http-rules: Mark http return rules as final
3369 - MINOR: http-htx: Add http_reply type based on what is used for http return rules
3370 - CLEANUP: http-htx: Rename http_error structure into http_error_msg
3371 - MINOR: http-rules: Use http_reply structure for http return rules
3372 - MINOR: http-htx: Use a dedicated function to release http_reply objects
3373 - MINOR: http-htx: Use a dedicated function to parse http reply arguments
3374 - MINOR: http-htx: Use a dedicated function to check http reply validity
3375 - MINOR: http-ana: Use a dedicated function to send a response from an http reply
3376 - MEDIUM: http-rules: Rely on http reply for http deny/tarpit rules
3377 - MINOR: http-htx: Store default error messages in a global http reply array
3378 - MINOR: http-htx: Store messages of an http-errors section in a http reply array
3379 - MINOR: http-htx: Store errorloc/errorfile messages in http replies
3380 - MINOR: proxy: Add references on http replies for proxy error messages
3381 - MINOR: http-htx: Use http reply from the http-errors section
3382 - MINOR: http-ana: Use a TXN flag to prevent after-response ruleset evaluation
3383 - MEDIUM: http-ana: Use http replies for HTTP error messages
3384 - CLEANUP: http-htx: Remove unused storage of error messages in buffers
3385 - MINOR: htx: Add a function to copy a buffer in an HTX message
3386 - CLEANUP: channel: Remove channel_htx_copy_msg() function
3387 - MINOR: http-ana: Add a function to write an http reply in an HTX message
3388 - MINOR: http-htx/proxy: Add http-error directive using http return syntax
3389 - DOC: Fix "errorfile" description in the configuration manual
3390 - BUG/MINOR: checks: Respect check-ssl param when a port or an addr is specified
3391 - BUILD: hpack: make sure the hpack table can still be built standalone
3392 - CONTRIB: hpack: make use of the simplified standalone HPACK API
3393 - MINOR: connection: add pp2-never-send-local to support old PP2 behavior
3394
Willy Tarreaufc0b8f32020-05-05 21:49:10 +020033952020/05/05 : 2.2-dev7
3396 - MINOR: version: Show uname output in display_version()
3397 - CI: run weekly OpenSSL "no-deprecated" builds
3398 - CLEANUP: log: fix comment of parse_logformat_string()
3399 - DOC: Improve documentation on http-request set-src
3400 - MINOR: ssl/cli: disallow SSL options for directory in 'add ssl crt-list'
3401 - MINOR: ssl/cli: restrain certificate path when inserting into a directory
3402 - MINOR: ssl: add ssl-skip-self-issued-ca global option
3403 - BUG/MINOR: ssl: default settings for ssl server options are not used
3404 - MINOR: config: add a global directive to set default SSL curves
3405 - BUG/MEDIUM: http-ana: Handle NTLM messages correctly.
3406 - DOC: internals: update the SSL architecture schema
3407 - BUG/MINOR: tools: fix the i386 version of the div64_32 function
3408 - BUG/MINOR: mux-fcgi/trace: fix wrong set of trace flags in fcgi_strm_add_eom()
3409 - BUG/MINOR: http: make url_decode() optionally convert '+' to SP
3410 - DOC: option logasap does not depend on mode
3411 - MEDIUM: memory: make pool_gc() run under thread isolation
3412 - MINOR: contrib: make the peers wireshark dissector a plugin
3413 - BUG/MINOR: http-ana: Throw a 500 error if after-response ruleset fails on errors
3414 - BUG/MINOR: check: Update server address and port to execute an external check
3415 - MINOR: mini-clist: Add functions to iterate backward on a list
3416 - MINOR: checks: Add a way to send custom headers and payload during http chekcs
3417 - MINOR: server: respect warning and alert semantic
3418 - BUG/MINOR: checks: Respect the no-check-ssl option
3419 - BUG/MEDIUM: server/checks: Init server check during config validity check
3420 - CLEANUP: checks: Don't export anymore init_check and srv_check_healthcheck_port
3421 - BUG/MINOR: checks: chained expect will not properly wait for enough data
3422 - BUG/MINOR: checks: Forbid tcp-check lines in default section as documented
3423 - MINOR: checks: Use an enum to describe the tcp-check rule type
3424 - MINOR: checks: Simplify connection flag parsing in tcp-check connect
3425 - MEDIUM: checks: rewind to the first inverse expect rule of a chain on new data
3426 - MINOR: checks: simplify tcp expect config parser
3427 - MINOR: checks: add min-recv tcp-check expect option
3428 - MINOR: checks: add linger option to tcp connect
3429 - MINOR: checks: define a tcp expect type
3430 - MEDIUM: checks: rewrite tcp-check expect block
3431 - MINOR: checks: Stop xform buffers to null-terminated string for tcp-check rules
3432 - MINOR: checks: add rbinary expect match type
3433 - MINOR: checks: Simplify functions to get step id and comment
3434 - MEDIUM: checks: capture groups in expect regexes
3435 - MINOR: checks: Don't use a static tcp rule list head
3436 - MEDIUM: checks: Use a non-comment rule iterator to get next rule
3437 - MEDIUM: proxy/checks: Register a keyword to parse tcp-check rules
3438 - MINOR: checks: Set the tcp-check rule index during parsing
3439 - MINOR: checks: define tcp-check send type
3440 - MINOR: checks: define a tcp-check connect type
3441 - MEDIUM: checks: Add implicit tcp-check connect rule
3442 - MAJOR: checks: Refactor and simplify the tcp-check loop
3443 - MEDIUM: checks: Associate a session to each tcp-check healthcheck
3444 - MINOR: checks/vars: Add a check scope for variables
3445 - MEDIUM: checks: Parse custom action rules in tcp-checks
3446 - MINOR: checks: Add support to set-var and unset-var rules in tcp-checks
3447 - MINOR: checks: Add the sni option for tcp-check connect rules
3448 - MINOR: checks: Add the via-socks4 option for tcp-check connect rules
3449 - MINOR: checks: Add the alpn option for tcp-check connect rules
3450 - MINOR: ssl: Export a generic function to parse an alpn string
3451 - MINOR: checks: Add the default option for tcp-check connect rules
3452 - MINOR: checks: Add the addr option for tcp-check connect rule
3453 - MEDIUM: checks: Support expression to set the port
3454 - MEDIUM: checks: Support log-format strings for tcp-check send rules
3455 - MINOR: log: Don't depends on a stream to process samples in log-format string
3456 - MINOR: log: Don't systematically set LW_REQ when a sample expr is added
3457 - MEDIUM: checks: Add a shared list of tcp-check rules
3458 - MINOR: sample: add htonl converter
3459 - MINOR: sample: add cut_crlf converter
3460 - MINOR: sample: add ltrim converter
3461 - MINOR: sample: add rtrim converter
3462 - MINOR: checks: Use a name for the healthcheck status enum
3463 - MINOR: checks: Add option to tcp-check expect rules to customize error status
3464 - MINOR: checks: Merge tcp-check comment rules with the others at config parsing
3465 - MINOR: checks: Add a sample fetch to extract a block from the input check buffer
3466 - MEDIUM: checks: Add on-error/on-success option on tcp-check expect rules
3467 - MEDIUM: checks: Add status-code sample expression on tcp-check expect rules
3468 - MINOR: checks: Relax the default option for tcp-check connect rules
3469 - MEDIUM: checks: Add a list of vars to set before executing a tpc-check ruleset
3470 - MINOR: checks: Export the tcpcheck_eval_ret enum
3471 - MINOR: checks: Use dedicated function to handle onsuccess/onerror messages
3472 - MINOR: checks: Support custom functions to eval a tcp-check expect rules
3473 - MEDIUM: checks: Implement redis check using tcp-check rules
3474 - MEDIUM: checks: Implement ssl-hello check using tcp-check rules
3475 - MEDIUM: checks: Implement smtp check using tcp-check rules
3476 - MEDIUM: checks: Implement postgres check using tcp-check rules
3477 - MEDIUM: checks: Implement MySQL check using tcp-check rules
3478 - MEDIUM: checks: Implement LDAP check using tcp-check rules
3479 - MEDIUM: checks: Implement SPOP check using tcp-check rules
3480 - MINOR: server/checks: Move parsing of agent keywords in checks.c
3481 - MINOR: server/checks: Move parsing of server check keywords in checks.c
3482 - MEDIUM: checks: Implement agent check using tcp-check rules
3483 - REGTEST: Adapt regtests about checks to recent changes
3484 - MINOR: Produce tcp-check info message for pure tcp-check rules only
3485 - MINOR: checks: Add an option to set success status of tcp-check expect rules
3486 - MINOR: checks: Improve log message of tcp-checks on success
3487 - MINOR: proxy/checks: Move parsing of httpchk option in checks.c
3488 - MINOR: proxy/checks: Move parsing of tcp-check option in checks.c
3489 - MINOR: proxy/checks: Register a keyword to parse http-check rules
3490 - MINOR: proxy/checks: Move parsing of external-check option in checks.c
3491 - MINOR: proxy/checks: Register a keyword to parse external-check rules
3492 - MEDIUM: checks: Use a shared ruleset to store tcp-check rules
3493 - MINOR: checks: Use an indirect string to represent the expect matching string
3494 - MINOR: checks: Introduce flags to configure in tcp-check expect rules
3495 - MINOR: standard: Add my_memspn and my_memcspn
3496 - MINOR: checks: Add a reverse non-comment rule iterator to get last rule
3497 - MAJOR: checks: Implement HTTP check using tcp-check rules
3498 - MINOR: checks: Make resume conditions more explicit in tcpcheck_main()
3499 - MINOR: connection: Add macros to know if a conn or a cs uses an HTX mux
3500 - MEDIUM: checks: Refactor how data are received in tcpcheck_main()
3501 - MINOR: checks/obj_type: Add a new object type for checks
3502 - BUG/MINOR: obj_type: Handle stream object in obj_base_ptr() function
3503 - MINOR: checks: Use the check as origin when a session is created
3504 - MINOR: checks: Add a mux proto to health-check and tcp-check connect rule
3505 - MINOR: connection: Add a function to install a mux for a health-check
3506 - MAJOR: checks: Use the best mux depending on the protocol for health checks
3507 - MEDIUM: checks: Implement default TCP check using tcp-check rules
3508 - MINOR: checks: Remove unused code about pure TCP checks
3509 - CLEANUP: checks: Reorg checks.c file to be more readable
3510 - REGTEST: Fix reg-tests about health-checks to adapt them to recent changes
3511 - MINOR: ist: Add a function to retrieve the ist pointer
3512 - MINOR: checks: Use ist API as far as possible
3513 - BUG/MEDIUM: checks: Be sure to subscribe for sends if outgoing data remains
3514 - MINOR: checks: Use a tree instead of a list to store tcp-check rulesets
3515 - BUG/MINOR: checks: Send the right amount of outgoing data for HTTP checks
3516 - REGTEST: Add scripts to test based tcp-check health-checks
3517 - Revert "MEDIUM: checks: capture groups in expect regexes"
3518 - DOC: Add documentation about comments for tcp-check and http-check directives
3519 - DOC: Fix the tcp-check and http-check directives layout
3520 - BUG/MEDIUM: checks: Use the mux protocol specified on the server line
3521 - MINOR: checks: Support mux protocol definition for tcp and http health checks
3522 - BUG/MINOR: mux-fcgi: Be sure to have a connection as session's origin to use it
3523 - MINOR: checks: Support list of status codes on http-check expect rules
3524 - BUG/MEDIUM: checks: Unsubscribe to mux events when a conn-stream is destroyed
3525 - REGTEST: Add a script to validate agent checks
3526 - BUG/MINOR: server: Fix server_finalize_init() to avoid unused variable
3527 - BUG/MEDIUM: checks: unsubscribe for events on the old conn-stream on connect
3528 - BUG/MINOR: checks: Only use ssl_sock_is_ssl() if compiled with SSL support
3529 - BUG/MINOR: checks/server: use_ssl member must be signed
3530 - BUG/MEDIUM: sessions: Always pass the mux context as argument to destroy a mux
3531 - BUG/MEDIUM: checks: Destroy the conn-stream before the session
3532 - BUG/MINOR: checks: Fix PostgreSQL regex on the authentication packet
3533 - CI: cirrus-ci: remove reg-tests/checks/tcp-check-ssl.vtc on CentOS 6
3534 - MINOR: checks: Support HTTP/2 version (without '.0') for http-check send rules
3535 - MINOR: checks: Use ver keyword to specify the HTTP version for http checks
3536 - BUG/MINOR: checks: Remove wrong variable redeclaration
3537 - BUG/MINOR: checks: Properly handle truncated mysql server messages
3538 - CLEANUP: checks: Remove unused code when ldap server message is parsed
3539 - MINOR: checks: Make the use of the check's server more explicit on connect
3540 - BUG/MINOR: checks: Avoid incompatible cast when a binary string is parsed
3541 - BUG/MINOR: checks: Remove bad call to free() when an expect rule is parsed
3542 - BUG/MINOR: checks: Don't lose warning on proxy capability
3543 - MINOR: log: Add "Tu" timer
3544 - BUG/MINOR: checks: Set the output buffer length before calling parse_binary()
3545 - BUG/MEDIUM: mux-h1: make sure we always have a timeout on front connections
3546 - REGTEST: ssl: test the client certificate authentication
3547 - DOC: give a more accurate description of what check does
3548 - BUG/MEDIUM: capture: capture-req/capture-res converters crash without a stream
3549 - BUG/MEDIUM: capture: capture.{req,res}.* crash without a stream
3550 - BUG/MEDIUM: http: the "http_first_req" sample fetch could crash without a steeam
3551 - BUG/MEDIUM: http: the "unique-id" sample fetch could crash without a steeam
3552 - CLEANUP: http: add a few comments on certain functions' assumptions about streams
3553 - BUG/MEDIUM: sample: make the CPU and latency sample fetches check for a stream
3554 - MINOR: http-htx: Export functions to update message authority and host
3555 - MINOR: checks: Don't support multiple host header for http-check send rule
3556 - MINOR: checks: Skip some headers for http-check send rules
3557 - MINOR: checks: Keep the Host header and the request uri synchronized
3558 - CLEANUP: checks: Fix checks includes
3559 - DOC: Fix send rules in the http-check connect example
3560 - DOC: Add more info about request formatting in http-check send description
3561 - REGTEST: http-rules: Require PCRE or PCRE2 option to run map_redirect script
3562 - REGTEST: ssl: remove curl from the "add ssl crt-list" test
3563 - REGTEST: ssl: improve the "set ssl cert" test
3564 - CLEANUP: ssl: silence a build warning when threads are disabled
3565 - BUG/MEDIUM: listener: mark the thread as not stuck inside the loop
3566 - MINOR: threads: export the POSIX thread ID in panic dumps
3567 - BUG/MINOR: debug: properly use long long instead of long for the thread ID
3568 - BUG/MEDIUM: shctx: really check the lock's value while waiting
3569 - BUG/MEDIUM: shctx: bound the number of loops that can happen around the lock
3570 - MINOR: stream: report the list of active filters on stream crashes
3571 - BUG/MEDIUM: mux-fcgi: Return from detach if server don't keep the connection
3572 - BUG/MEDIUM: mux_fcgi: Free the FCGI connection at the end of fcgi_release()
3573 - BUG/MEDIUM: mux-fcgi: Fix wrong test on FCGI_CF_KEEP_CONN in fcgi_detach()
3574 - BUG/MEDIUM: connections: force connections cleanup on server changes
3575 - BUG/MEDIUM: h1: Don't compare host and authority if only h1 headers are parsed
3576 - BUG/MEDIUM: ssl: fix the id length check within smp_fetch_ssl_fc_session_id()
3577 - CLEANUP: connections: align function declaration
3578 - BUG/MINOR: sample: Set the correct type when a binary is converted to a string
3579 - MEDIUM: checks/http-fetch: Support htx prefetch from a check for HTTP samples
3580 - DOC: Document the log-format parameter for tcp-check send/send-binary rules
3581 - MINOR: checks: Add support of payload-based sample fetches
3582 - MINOR: checks: Add support of be_id, be_name, srv_id and srv_name sample fetches
3583 - MINOR: checks: Add support of server side ssl sample fetches
3584 - MINOR: checks: Add support of HTTP response sample fetches
3585 - MINOR: http-htx: Support different methods to look for header names
3586 - MINOR: checks: Set by default expect rule status to UNKNOWN during parsing
3587 - BUG/MINOR: checks: Support multiple HTTP expect rules
3588 - REGTEST: checks: Fix sync condition for agent-check
3589 - MEDIUM: checks: Support matching on headers for http-check expect rules
3590 - MINOR: lua: allow changing port with set_addr
3591 - BUG/MINOR: da: Fix HTX message prefetch
3592 - BUG/MINOR: wurfl: Fix HTX message prefetch
3593 - BUG/MINOR: 51d: Fix HTX message prefetch
3594 - MINOR: ist: add istadv() function
3595 - MINOR: ist: add istissame() function
3596 - MINOR: istbuf: add ist2buf() function
3597 - BUG/MINOR: threads: fix multiple use of argument inside HA_ATOMIC_CAS()
3598 - BUG/MINOR: threads: fix multiple use of argument inside HA_ATOMIC_UPDATE_{MIN,MAX}()
3599 - DOC: update intro.txt for 2.2
3600 - DOC: intro: add a contacts section
3601
Willy Tarreaud0089302020-04-17 14:19:38 +020036022020/04/17 : 2.2-dev6
3603 - BUG/MINOR: ssl: memory leak when find_chain is NULL
3604 - CLEANUP: ssl: rename ssl_get_issuer_chain to ssl_get0_issuer_chain
3605 - MINOR: ssl: rework add cert chain to CTX to be libssl independent
3606 - BUG/MINOR: peers: init bind_proc to 1 if it wasn't initialized
3607 - BUG/MINOR: peers: avoid an infinite loop with peers_fe is NULL
3608 - BUG/MINOR: peers: Use after free of "peers" section.
3609 - CI: github actions: add weekly h2spec test
3610 - BUG/MEDIUM: mux_h1: Process a new request if we already received it.
3611 - MINOR: build: Fix build in mux_h1
3612 - CLEANUP: remove obsolete comments
3613 - BUG/MEDIUM: dns: improper parsing of aditional records
3614 - MINOR: ssl: skip self issued CA in cert chain for ssl_ctx
3615 - MINOR: listener: add so_name sample fetch
3616 - MEDIUM: stream: support use-server rules with dynamic names
3617 - MINOR: servers: Add a counter for the number of currently used connections.
3618 - MEDIUM: connections: Revamp the way idle connections are killed
3619 - MINOR: cli: add a general purpose pointer in the CLI struct
3620 - MINOR: ssl: add a list of bind_conf in struct crtlist
3621 - REORG: ssl: move SETCERT enum to ssl_sock.h
3622 - BUG/MINOR: ssl: ckch_inst wrongly inserted in crtlist_entry
3623 - REORG: ssl: move some functions above crtlist_load_cert_dir()
3624 - MINOR: ssl: use crtlist_free() upon error in directory loading
3625 - MINOR: ssl: add a list of crtlist_entry in ckch_store
3626 - MINOR: ssl: store a ptr to crtlist in crtlist_entry
3627 - MINOR: ssl/cli: update pointer to store in 'commit ssl cert'
3628 - MEDIUM: ssl/cli: 'add ssl crt-list' command
3629 - REGTEST: ssl/cli: test the 'add ssl crt-list' command
3630 - BUG/MINOR: ssl: entry->ckch_inst not initialized
3631 - REGTEST: ssl/cli: change test type to devel
3632 - REGTEST: make the PROXY TLV validation depend on version 2.2
3633 - CLEANUP: assorted typo fixes in the code and comments
3634 - BUG/MINOR: stats: Fix color of draining servers on stats page
3635 - DOC: internals: Fix spelling errors in filters.txt
3636 - MINOR: connections: Don't mark conn flags 0x00000001 and 0x00000002 as unused.
3637 - REGTEST: make the unique-id test depend on version 2.0
3638 - BUG/MEDIUM: dns: Consider the fact that dns answers are case-insensitive
3639 - MINOR: ssl: split the line parsing of the crt-list
3640 - MINOR: ssl/cli: support filters and options in add ssl crt-list
3641 - MINOR: ssl: add a comment above the ssl_bind_conf keywords
3642 - REGTEST: ssl/cli: tests options and filters w/ add ssl crt-list
3643 - REGTEST: ssl: pollute the crt-list file
3644 - BUG/CRITICAL: hpack: never index a header into the headroom after wrapping
3645 - BUG/MINOR: protocol_buffer: Wrong maximum shifting.
3646 - CLEANUP: src/fd.c: mask setsockopt with DISGUISE
3647 - BUG/MINOR: ssl/cli: initialize fcount int crtlist_entry
3648 - REGTEST: ssl/cli: add other cases of 'add ssl crt-list'
3649 - CLEANUP: assorted typo fixes in the code and comments
3650 - DOC: management: add the new crt-list CLI commands
3651 - BUG/MINOR: ssl/cli: fix spaces in 'show ssl crt-list'
3652 - MINOR: ssl/cli: 'del ssl crt-list' delete an entry
3653 - MINOR: ssl/cli: replace dump/show ssl crt-list by '-n' option
3654 - CI: use better SSL library definition
3655 - CI: travis-ci: enable DEBUG_STRICT=1 for CI builds
3656 - CI: travis-ci: upgrade openssl to 1.1.1f
3657 - MINOR: ssl: improve the errors when a crt can't be open
3658 - CI: cirrus-ci: rename openssl package after it is renamed in FreeBSD
3659 - CI: adopt openssl download script to download all versions
3660 - BUG/MINOR: ssl/cli: lock the ckch structures during crt-list delete
3661 - MINOR: ssl/cli: improve error for bundle in add/del ssl crt-list
3662 - MINOR: ssl/cli: 'del ssl cert' deletes a certificate
3663 - BUG/MINOR: ssl: trailing slashes in directory names wrongly cached
3664 - BUG/MINOR: ssl/cli: memory leak in 'set ssl cert'
3665 - CLEANUP: ssl: use the refcount for the SSL_CTX'
3666 - CLEANUP: ssl/cli: use the list of filters in the crtlist_entry
3667 - BUG/MINOR: ssl: memleak of the struct cert_key_and_chain
3668 - CLEANUP: ssl: remove a commentary in struct ckch_inst
3669 - MINOR: ssl: initialize all list in ckch_inst_new()
3670 - MINOR: ssl: free instances and SNIs with ckch_inst_free()
3671 - MINOR: ssl: replace ckchs_free() by ckch_store_free()
3672 - BUG/MEDIUM: ssl/cli: trying to access to free'd memory
3673 - MINOR: ssl: ckch_store_new() alloc and init a ckch_store
3674 - MINOR: ssl: crtlist_new() alloc and initialize a struct crtlist
3675 - REORG: ssl: move some free/new functions
3676 - MINOR: ssl: crtlist_entry_{new, free}
3677 - BUG/MINOR: ssl: ssl_conf always set to NULL on crt-list parsing
3678 - MINOR: ssl: don't alloc ssl_conf if no option found
3679 - BUG/MINOR: connection: always send address-less LOCAL PROXY connections
3680 - BUG/MINOR: peers: Incomplete peers sections should be validated.
3681 - MINOR: init: report in "haproxy -c" whether there were warnings or not
3682 - MINOR: init: add -dW and "zero-warning" to reject configs with warnings
3683 - MINOR: init: report the compiler version in haproxy -vv
3684 - CLEANUP: assorted typo fixes in the code and comments
3685 - MINOR: init: report the haproxy version and executable path once on errors
3686 - DOC: Make how "option redispatch" works more explicit
3687 - BUILD: Makefile: add linux-musl to TARGET
3688 - CLEANUP: assorted typo fixes in the code and comments
3689 - CLEANUP: http: Fixed small typo in parse_http_return
3690 - DOC: hashing: update link to hashing functions
3691
Willy Tarreau3328f182020-03-23 09:43:45 +010036922020/03/23 : 2.2-dev5
3693 - CLEANUP: ssl: is_default is a bit in ckch_inst
3694 - BUG/MINOR: ssl/cli: sni_ctx' mustn't always be used as filters
3695 - DOC: ssl: clarify security implications of TLS tickets
3696 - CLEANUP: remove support for Linux i686 vsyscalls
3697 - CLEANUP: drop support for USE_MY_ACCEPT4
3698 - CLEANUP: remove support for USE_MY_EPOLL
3699 - CLEANUP: remove support for USE_MY_SPLICE
3700 - CLEANUP: remove the now unused common/syscall.h
3701 - BUILD: make dladdr1 depend on glibc version and not __USE_GNU
3702 - BUILD: wdt: only test for SI_TKILL when compiled with thread support
3703 - BUILD: Makefile: the compiler-specific flags should all be in SPEC_CFLAGS
3704 - CLEANUP: ssl: separate the directory loading in a new function
3705 - BUG/MINOR: buffers: MT_LIST_DEL_SAFE() expects the temporary pointer.
3706 - BUG/MEDIUM: mt_lists: Make sure we set the deleted element to NULL;
3707 - MINOR: init: move the maxsock calculation code to compute_ideal_maxsock()
3708 - MEDIUM: init: always try to push the FD limit when maxconn is set from -m
3709 - BUG/MAJOR: list: fix invalid element address calculation
3710 - BUILD: stream-int: fix a few includes dependencies
3711 - MINOR: mt_lists: Appease gcc.
3712 - MINOR: lists: Implement function to convert list => mt_list and mt_list => list
3713 - MINOR: servers: Kill priv_conns.
3714 - MINOR: lists: fix indentation.
3715 - BUG/MEDIUM: random: align the state on 2*64 bits for ARM64
3716 - BUG/MEDIUM: connections: Don't assume the connection has a valid session.
3717 - BUG/MEDIUM: pools: Always update free_list in pool_gc().
3718 - BUG/MINOR: haproxy: always initialize sleeping_thread_mask
3719 - BUG/MINOR: listener/mq: do not dispatch connections to remote threads when stopping
3720 - BUG/MINOR: haproxy/threads: try to make all threads leave together
3721 - Revert "BUILD: travis-ci: enable s390x builds"
3722 - BUILD: travis-ci: enable regular s390x builds
3723 - DOC: proxy_protocol: Reserve TLV type 0x05 as PP2_TYPE_UNIQUE_ID
3724 - MINOR: proxy_protocol: Ingest PP2_TYPE_UNIQUE_ID on incoming connections
3725 - MEDIUM: proxy_protocol: Support sending unique IDs using PPv2
3726 - CLEANUP: connection: Add blank line after declarations in PP handling
3727 - CLEANUP: assorted typo fixes in the code and comments
3728 - CI: add spellcheck github action
3729 - DOC: correct typo in alert message about rspirep
3730 - CI: travis: switch linux builds to clang-9
3731 - MINOR: debug: add a new DISGUISE() macro to pass a value as identity
3732 - MINOR: debug: consume the write() result in BUG_ON() to silence a warning
3733 - MINOR: use DISGUISE() everywhere we deliberately want to ignore a result
3734 - BUILD: pools: silence build warnings with DEBUG_MEMORY_POOLS and DEBUG_UAF
3735 - CLEANUP: connection: Stop directly setting an ist's .ptr
3736 - CI: travis: revert to clang-7 for BoringSSL tests
3737 - BUILD: on ARM, must be linked to libatomic.
3738 - BUILD: makefile: fix regex syntax in ARM platform detection
3739 - BUG/MEDIUM: peers: resync ended with RESYNC_PARTIAL in wrong cases.
3740 - REORG: ssl: move ssl_sock_load_cert()
3741 - MINOR: ssl: pass ckch_inst to ssl_sock_load_ckchs()
3742 - MEDIUM: ssl: allow crt-list caching
3743 - MINOR: ssl: directories are loaded like crt-list
3744 - BUG/MINOR: ssl: can't open directories anymore
3745 - BUG/MEDIUM: spoe: dup agent's engine_id string from trash.area
3746 - MINOR: fd: Use a separate lock for logs instead of abusing the fd lock.
3747 - MINOR: mux_pt: Don't try to remove the connection from the idle list.
3748 - MINOR: ssl/cli: show/dump ssl crt-list
3749 - BUG/MINOR: ssl/cli: free the trash chunk in dump_crtlist
3750 - MEDIUM: fd: Introduce a running mask, and use it instead of the spinlock.
3751 - BUG/MINOR: ssl: memory leak in crtlist_parse_file()
3752 - MINOR: tasks: Provide the tasklet to the callback.
3753 - BUG/MINOR: ssl: memleak of struct crtlist_entry
3754 - BUG/MINOR: pattern: Do not pass len = 0 to calloc()
3755 - BUILD: makefile: fix expression again to detect ARM platform
3756 - CI: travis: re-enable ASAN on clang
3757 - CI: travis: proper group output redirection together with travis_wait
3758 - DOC: assorted typo fixes in the documentation
3759 - MINOR: wdt: Move the definitions of WDTSIG and DEBUGSIG into types/signal.h.
3760 - BUG/MEDIUM: wdt: Don't ignore WDTSIG and DEBUGSIG in __signal_process_queue().
3761 - MINOR: memory: Change the flush_lock to a spinlock, and don't get it in alloc.
3762 - MINOR: ssl/cli: 'new ssl cert' command
3763 - MINOR: ssl/cli: show certificate status in 'show ssl cert'
3764 - MEDIUM: sessions: Don't be responsible for connections anymore.
3765 - MEDIUM: servers: Split the connections into idle, safe, and available.
3766 - MINOR: fd: Implement fd_takeover().
3767 - MINOR: connections: Add a new mux method, "takeover".
3768 - MINOR: connections: Make the "list" element a struct mt_list instead of list.
3769 - MINOR: connections: Add a flag to know if we're in the safe or idle list.
3770 - MEDIUM: connections: Attempt to get idle connections from other threads.
3771 - MEDIUM: mux_h1: Implement the takeover() method.
3772 - MEDIUM: mux_h2: Implement the takeover() method.
3773 - MEDIUM: mux_fcgi: Implement the takeover() method.
3774 - MEDIUM: connections: Kill connections even if we are reusing one.
3775 - BUG/MEDIUM: connections: Don't forget to decrement idle connection counters.
3776 - BUG/MINOR: ssl: Do not free garbage pointers on memory allocation failure
3777 - BUG/MINOR: ssl: Correctly add the 1 for the sentinel to the number of elements
3778 - BUG/MINOR: ssl: crtlist_dup_filters() must return NULL with fcount == 0
3779 - BUG/MEDIUM: build: Fix compilation by spelling decl correctly.
3780 - BUILD/MEDIUM: fd: Declare fd_mig_lock as extern.
3781 - CI: run travis-ci builds on push only, skip pull requests
3782 - CI: temporarily disable unstable travis arm64 builds
3783 - BUG/MINOR: ssl/cli: free BIO upon error in 'show ssl cert'
3784 - BUG/MINOR: connections: Make sure we free the connection on failure.
3785 - BUG/MINOR: ssl/cli: fix a potential NULL dereference
3786 - BUG/MEDIUM: h1: Make sure we subscribe before going into idle list.
3787 - BUG/MINOR: connections: Set idle_time before adding to idle list.
3788 - MINOR: muxes: Note that we can't usee a connection when added to the srv idle.
3789 - REGTEST: increase timeouts on the seamless-reload test
3790 - BUG/MINOR: haproxy/threads: close a possible race in soft-stop detection
3791 - CLEANUP: haproxy/threads: don't check global_tasks_mask twice
3792
Willy Tarreau5a753bd2020-03-09 14:57:20 +010037932020/03/09 : 2.2-dev4
3794 - MEDIUM: buffer: remove the buffer_wq lock
3795 - MINOR: ssl: move find certificate chain code to its own function
3796 - MINOR: ssl: resolve issuers chain later
3797 - MINOR: ssl: resolve ocsp_issuer later
3798 - MINOR: ssl/cli: "show ssl cert" command should print the "Chain Filename:"
3799 - BUG/MINOR: h2: reject again empty :path pseudo-headers
3800 - MINOR: wdt: always clear sigev_value to make valgrind happy
3801 - MINOR: epoll: always initialize all of epoll_event to please valgrind
3802 - BUG/MINOR: sample: Make sure to return stable IDs in the unique-id fetch
3803 - BUG/MEDIUM: ssl: chain must be initialized with sk_X509_new_null()
3804 - BUILD: cirrus-ci: suppress OS version check when installing packages
3805 - BUG/MINOR: http_ana: make sure redirect flags don't have overlapping bits
3806 - CLEANUP: fd: remove the FD_EV_STATUS aggregate
3807 - CLEANUP: fd: remove some unneeded definitions of FD_EV_* flags
3808 - MINOR: fd: merge the read and write error bits into RW error
3809 - BUG/MINOR: dns: ignore trailing dot
3810 - MINOR: contrib/prometheus-exporter: Add the last heathcheck duration metric
3811 - BUG/MINOR: http-htx: Do case-insensive comparisons on Host header name
3812 - MINOR: mux-h1: Remove useless case-insensitive comparisons
3813 - MINOR: rawsock: always mark the FD not ready when we're certain it happens
3814 - MEDIUM: connection: make the subscribe() call able to wakeup if ready
3815 - MEDIUM: connection: don't stop receiving events in the FD handler
3816 - MEDIUM: mux-h1: do not blindly wake up the tasklet at end of request anymore
3817 - BUG/MINOR: arg: don't reject missing optional args
3818 - MINOR: tools: make sure to correctly check the returned 'ms' in date2std_log
3819 - MINOR: debug: report the task handler's pointer relative to main
3820 - BUG/MEDIUM: debug: make the debug_handler check for the thread in threads_to_dump
3821 - MINOR: haproxy: export main to ease access from debugger
3822 - MINOR: haproxy: export run_poll_loop
3823 - MINOR: task: export run_tasks_from_list
3824 - BUILD: tools: remove obsolete and conflicting trace() from standard.c
3825 - MINOR: tools: add new function dump_addr_and_bytes()
3826 - MINOR: tools: add resolve_sym_name() to resolve function pointers
3827 - MINOR: debug: use resolve_sym_name() to dump task handlers
3828 - MINOR: cli: make "show fd" rely on resolve_sym_name()
3829 - MEDIUM: debug: add support for dumping backtraces of stuck threads
3830 - MINOR: debug: call backtrace() once upon startup
3831 - MINOR: ssl: add "ca-verify-file" directive
3832 - BUG/MINOR: wdt: do not return an error when the watchdog couldn't be enabled
3833 - BUILD: Makefile: include librt before libpthread
3834 - MEDIUM: wdt: fall back to CLOCK_REALTIME if CLOCK_THREAD_CPUTIME is not available
3835 - MINOR: wdt: do not depend on USE_THREAD
3836 - MINOR: debug: report the number of entries in the backtrace
3837 - MINOR: debug: improve backtrace() on aarch64 and possibly other systems
3838 - MINOR: debug: use our own backtrace function on clang+x86_64
3839 - MINOR: debug: dump the whole trace if we can't spot the starting point
3840 - BUILD: tools: unbreak resolve_sym_name() on non-GNU platforms
3841 - BUILD: tools: rely on __ELF__ not USE_DL to enable use of dladdr()
3842 - CLEANUP: contrib/spoa_example: Fix several typos
3843 - BUILD: makefile: do not modify the build options during make reg-tests
3844 - BUG/MEDIUM: connection: stop polling for sending when the event is ready
3845 - MEDIUM: stream-int: make sure to try to immediately validate the connection
3846 - MINOR: tcp/uxst/sockpair: only ask for I/O when really waiting for a connect()
3847 - MEDIUM: connection: only call ->wake() for connect() without I/O
3848 - OPTIM: connection: disable receiving on disabled events when the run queue is too high
3849 - OPTIM: mux-h1: subscribe rather than waking up at a few other places
3850 - REGTEST: Add unique-id reg-test
3851 - MINOR: stream: Add stream_generate_unique_id function
3852 - MINOR: stream: Use stream_generate_unique_id
3853 - BUG/MINOR: connection/debug: do not enforce !event_type on subscribe() anymore
3854 - MINOR: ssl/cli: support crt-list filters
3855 - MINOR: ssl: reach a ckch_store from a sni_ctx
3856 - DOC: fix incorrect indentation of http_auth_*
3857 - BUG/MINOR: ssl-sock: do not return an uninitialized pointer in ckch_inst_sni_ctx_to_sni_filters
3858 - MINOR: debug: add CLI command "debug dev write" to write an arbitrary size
3859 - MINOR: ist: Add `IST_NULL` macro
3860 - MINOR: ist: Add `int isttest(const struct ist)`
3861 - MINOR: ist: Add `struct ist istalloc(size_t)` and `void istfree(struct ist*)`
3862 - CLEANUP: Use `isttest()` and `istfree()`
3863 - MINOR: ist: Add `struct ist istdup(const struct ist)`
3864 - MINOR: proxy: Make `header_unique_id` a `struct ist`
3865 - MEDIUM: stream: Make the `unique_id` member of `struct stream` a `struct ist`
3866 - OPTIM: startup: fast unique_id allocation for acl.
3867 - DOC: configuration.txt: fix various typos
3868 - DOC: assorted typo fixes in the documentation and Makefile
3869 - BUG/MINOR: init: make the automatic maxconn consider the max of soft/hard limits
3870 - BUG/MAJOR: proxy_protocol: Properly validate TLV lengths
3871 - CLEANUP: proxy_protocol: Use `size_t` when parsing TLVs
3872 - MINOR: buf: Add function to insert a string at an absolute offset in a buffer
3873 - MINOR: htx: Add a function to return a block at a specific offset
3874 - MINOR: htx: Use htx_find_offset() to truncate an HTX message
3875 - MINOR: flt_trace: Use htx_find_offset() to get the available payload length
3876 - BUG/MINOR: filters: Use filter offset to decude the amount of forwarded data
3877 - BUG/MINOR: filters: Forward everything if no data filters are called
3878 - BUG/MEDIUM: cache/filters: Fix loop on HTX blocks caching the response payload
3879 - BUG/MEDIUM: compression/filters: Fix loop on HTX blocks compressing the payload
3880 - BUG/MINOR: http-ana: Reset request analysers on a response side error
3881 - BUG/MINOR: lua: Abort when txn:done() is called from a Lua action
3882 - BUG/MINOR: lua: Ignore the reserve to know if a channel is full or not
3883 - MINOR: lua: Add function to know if a channel is a response one
3884 - MINOR: lua: Stop using the lua txn in hlua_http_get_headers()
3885 - MINOR: lua: Stop using the lua txn in hlua_http_rep_hdr()
3886 - MINOR: lua: Stop using lua txn in hlua_http_del_hdr() and hlua_http_add_hdr()
3887 - MINOR: lua: Remove the flag HLUA_TXN_HTTP_RDY
3888 - MINOR: lua: Rename hlua_action_wake_time() to hlua_set_wake_time()
3889 - BUG/MINOR: lua: Init the lua wake_time value before calling a lua function
3890 - BUG/MINOR: http-rules: Return ACT_RET_ABRT to abort a transaction
3891 - BUG/MINOR: http-rules: Preserve FLT_END analyzers on reject action
3892 - BUG/MINOR: http-rules: Fix a typo in the reject action function
3893 - MINOR: cache/filters: Initialize the cache filter when stream is created
3894 - MINOR: compression/filters: Initialize the comp filter when stream is created
3895 - BUG/MINOR: rules: Preserve FLT_END analyzers on silent-drop action
3896 - BUG/MINOR: rules: Return ACT_RET_ABRT when a silent-drop action is executed
3897 - BUG/MINOR: rules: Increment be_counters if backend is assigned for a silent-drop
3898 - BUG/MINOR: http-rules: Abort transaction when a redirect is applied on response
3899 - BUILD: buffer: types/{ring.h,checks.h} should include buf.h, not buffer.h
3900 - BUILD: ssl: include mini-clist.h
3901 - BUILD: global: must not include common/standard.h but only types/freq_ctr.h
3902 - BUILD: freq_ctr: proto/freq_ctr needs to include common/standard.h
3903 - BUILD: listener: types/listener.h must not include standard.h
3904 - BUG/MEDIUM: random: initialize the random pool a bit better
3905 - BUG/MEDIUM: random: implement per-thread and per-process random sequences
3906 - Revert "BUG/MEDIUM: random: implement per-thread and per-process random sequences"
3907 - BUILD: cirrus-ci: get rid of unstable freebsd images
3908 - MINOR: tools: add 64-bit rotate operators
3909 - BUG/MEDIUM: random: implement a thread-safe and process-safe PRNG
3910 - MINOR: backend: use a single call to ha_random32() for the random LB algo
3911 - BUG/MINOR: checks/threads: use ha_random() and not rand()
3912 - MINOR: sample: make all bits random on the rand() sample fetch
3913 - MINOR: tools: add a generic function to generate UUIDs
3914 - DOC: fix typo about no-tls-tickets
3915 - DOC: improve description of no-tls-tickets
3916 - DOC: assorted typo fixes in the documentation
3917 - CLEANUP: remove unused code in 'my_ffsl/my_flsl' functions
3918
Willy Tarreau32bf97f2020-02-25 18:14:02 +010039192020/02/25 : 2.2-dev3
3920 - SCRIPTS: announce-release: place the send command in the mail's header
3921 - SCRIPTS: announce-release: allow the user to force to overwrite old files
3922 - SCRIPTS: backport: fix the master branch detection
3923 - BUG/MINOR: http-act: Set stream error flag before returning an error
3924 - BUG/MINOR: http-act: Fix bugs on error path during parsing of return actions
3925 - BUG/MEDIUM: ssl/cli: 'commit ssl cert' wrong SSL_CTX init
3926 - BUG/MEDIUM: tcp-rules: Fix track-sc* actions for L4/L5 TCP rules
3927 - DOC: schematic of the SSL certificates architecture
3928 - BUG/MAJOR: mux-h2: don't wake streams after connection was destroyed
3929 - BUG/MINOR: unix: better catch situations where the unix socket path length is close to the limit
3930 - BUILD: cirrus-ci: switch to "snap" images to unify openssl naming
3931 - BUILD: cirrus-ci: workaround "pkg install" bug
3932 - BUILD: cirrus-ci: add ERR=1 to freebsd builds
3933 - BUG/MINOR: connection: correctly retry I/O on signals
3934 - CLEANUP: mini-clist: simplify nested do { while(1) {} } while (0)
3935 - BUILD: http_act: cast file sizes when reporting file size error
3936 - BUG/MEDIUM: listener: only consider running threads when resuming listeners
3937 - BUG/MINOR: listener: enforce all_threads_mask on bind_thread on init
3938 - BUG/MINOR: tcp: avoid closing fd when socket failed in tcp_bind_listener
3939 - MINOR: build: add aix72-gcc build TARGET and power{8,9} CPUs
3940 - BUILD: travis-ci: no more allowed failures for openssl-1.0.2
3941 - BUILD: travis-ci: harden builds, add ERR=1 (warning ought to be errors)
3942 - BUILD: scripts/build-ssl.sh: use "uname" instead of ${TRAVIS_OS_NAME}
3943 - BUG/MINOR: tcp: don't try to set defaultmss when value is negative
3944 - SCRIPTS: make announce-release executable again
3945 - BUG/MINOR: namespace: avoid closing fd when socket failed in my_socketat
3946 - BUG/MEDIUM: muxes: Use the right argument when calling the destroy method.
3947 - BUG/MINOR: mux-fcgi: Forbid special characters when matching PATH_INFO param
3948 - CLEANUP: ssl: remove unused functions in openssl-compat.h
3949 - MINOR: mux-fcgi: Make the capture of the path-info optional in pathinfo regex
3950 - MINOR: tools: add is_idchar() to tell if a char may belong to an identifier
3951 - MINOR: chunk: implement chunk_strncpy() to copy partial strings
3952 - MINOR: sample/acl: use is_idchar() to locate the fetch/conv name
3953 - MEDIUM: arg: make make_arg_list() stop after its own arguments
3954 - MEDIUM: arg: copy parsed arguments into the trash instead of allocating them
3955 - MEDIUM: arg: make make_arg_list() support quotes in arguments
3956 - MINOR: sample: make sample_parse_expr() able to return an end pointer
3957 - MEDIUM: log-format: make the LF parser aware of sample expressions' end
3958 - BUG/MINOR: arg: report an error if an argument is larger than bufsize
3959 - SCRIPTS: announce-release: use mutt -H instead of -i to include the draft
3960 - BUILD: enable ERR=1 in github cygwin builds
3961 - BUG/MINOR: arg: fix again incorrect argument length check
3962 - MINOR: sample: regsub now supports backreferences
3963 - BUG/MINOR: tools: also accept '+' as a valid character in an identifier
3964 - MINOR: http-htx: Add a function to retrieve the headers size of an HTX message
3965 - MINOR: filters: Forward data only if the last filter forwards something
3966 - BUG/MINOR: filters: Count HTTP headers as filtered data but don't forward them
3967 - BUG/MINOR: http-htx: Don't return error if authority is updated without changes
3968 - BUG/MINOR: stream: Don't incr frontend cum_req counter when stream is closed
3969 - BUG/MINOR: sample: exit regsub() in case of trash allocation error
3970 - MINOR: ssl: add "issuers-chain-path" directive.
3971 - REGTESTS: use "command -v" instead of "which"
3972 - BUG/MINOR: http-ana: Matching on monitor-uri should be case-sensitive
3973 - MINOR: http-ana: Match on the path if the monitor-uri starts by a /
3974 - BUG/MINOR: ssl: Stop passing dynamic strings as format arguments
3975 - BUG/MAJOR: http-ana: Always abort the request when a tarpit is triggered
3976 - BUG/MINOR: mux: do not call conn_xprt_stop_recv() on buffer shortage
3977 - MINOR: checks: do not call conn_xprt_stop_send() anymore
3978 - CLEANUP: epoll: place the struct epoll_event in the stack
3979 - MEDIUM: connection: remove the intermediary polling state from the connection
3980 - MINOR: raw_sock: directly call fd_stop_send() and not conn_xprt_stop_send()
3981 - MINOR: tcp/uxst/sockpair: use fd_want_send() instead of conn_xprt_want_send()
3982 - MINOR: connection: remove the last calls to conn_xprt_{want,stop}_*
3983 - CLEANUP: connection: remove the definitions of conn_xprt_{stop,want}_{send,recv}
3984 - MINOR: connection: introduce a new receive flag: CO_RFL_READ_ONCE
3985 - MINOR: mux-h1: pass CO_RFL_READ_ONCE to the lower layers when relevant
3986 - MINOR: ist: add an iststop() function
3987 - BUG/MINOR: http: http-request replace-path duplicates the query string
3988 - CLEANUP: sample: use iststop instead of a for loop
3989 - BUG/MEDIUM: shctx: make sure to keep all blocks aligned
3990 - MINOR: compiler: move CPU capabilities definition from config.h and complete them
3991 - BUG/MEDIUM: ebtree: don't set attribute packed without unaligned access support
3992 - CLEANUP: http/h1: rely on HA_UNALIGNED_LE instead of checking for CPU families
3993 - BUILD: fix recent build failure on unaligned archs
3994 - MINOR: ssl: load the key from a dedicated file
3995 - BUG/MINOR: ssl: load .key in a directory only after PEM
3996 - MINOR: compiler: drop special cases of likely/unlikely for older compilers
3997 - CLEANUP: conn: Do not pass a pointer to likely
3998 - CLEANUP: net_helper: Do not negate the result of unlikely
3999 - BUILD: remove obsolete support for -mregparm / USE_REGPARM
4000 - CLEANUP: cfgparse: Fix type of second calloc() parameter
4001 - BUILD: ssl: only pass unsigned chars to isspace()
4002 - BUILD: general: always pass unsigned chars to is* functions
4003 - BUG/MINOR: sample: fix the json converter's endian-sensitivity
4004 - BUG/MEDIUM: ssl: fix several bad pointer aliases in a few sample fetch functions
4005 - CLEANUP: fd: use a union in fd_rm_from_fd_list() to shut aliasing warnings
4006 - CLEANUP: cache: use read_u32/write_u32 to access the cache entry's hash
4007 - CLEANUP: stick-tables: use read_u32() to display a node's key
4008 - CLEANUP: sample: use read_u64() in ipmask() to apply an IPv6 mask
4009 - MINOR: pattern: fix all remaining strict aliasing issues
4010 - CLEANUP: lua: fix aliasing issues in the address matching code
4011 - CLEANUP: connection: use read_u32() instead of a cast in the netscaler parser
4012 - BUILD: makefile: re-enable strict aliasing
4013 - BUG/MINOR: connection: make sure to correctly tag local PROXY connections
4014 - MINOR: compiler: add new alignment macros
4015 - BUILD: ebtree: improve architecture-specific alignment
4016 - MINOR: config: mark global.debug as deprecated
4017 - BUILD: travis-ci: enable s390x builds
4018 - MINOR: ssl/cli: 'show ssl cert' displays the chain
4019 - MINOR: ssl/cli: 'show ssl cert'displays the issuer in the chain
4020 - MINOR: ssl/cli: reorder 'show ssl cert' output
4021 - CLEANUP: ssl: move issuer_chain tree and definition
4022 - DOC: proxy-protocol: clarify IPv6 address representation in the spec
4023
Willy Tarreau4c47d912020-02-07 04:12:19 +010040242020/02/07 : 2.2-dev2
4025 - BUILD: CI: temporarily mark openssl-1.0.2 as allowed failure
4026 - MEDIUM: cli: Allow multiple filter entries for "show table"
4027 - BUG/MEDIUM: netscaler: Don't forget to allocate storage for conn->src/dst.
4028 - BUG/MINOR: ssl: ssl_sock_load_pem_into_ckch is not consistent
4029 - BUILD: stick-table: fix build errors introduced by last stick-table change
4030 - BUG/MINOR: cli: Missing arg offset for filter data values.
4031 - MEDIUM: streams: Always create a conn_stream in connect_server().
4032 - MEDIUM: connections: Get ride of the xprt_done callback.
4033 - CLEANUP: changelog: remove the duplicate entry for 2.2-dev1
4034 - BUILD: CI: move cygwin builds to Github Actions
4035 - MINOR: cli: Report location of errors or any extra data for "show table"
4036 - BUG/MINOR: ssl/cli: free the previous ckch content once a PEM is loaded
4037 - CLEANUP: backend: remove useless test for inexistent connection
4038 - CLEANUP: backend: shut another false null-deref in back_handle_st_con()
4039 - CLEANUP: stats: shut up a wrong null-deref warning from gcc 9.2
4040 - BUG/MINOR: ssl: increment issuer refcount if in chain
4041 - BUG/MINOR: ssl: memory leak w/ the ocsp_issuer
4042 - BUG/MINOR: ssl: typo in previous patch
4043 - BUG/MEDIUM: connections: Set CO_FL_CONNECTED in conn_complete_session().
4044 - BUG/MINOR: ssl/cli: ocsp_issuer must be set w/ "set ssl cert"
4045 - MEDIUM: connection: remove CO_FL_CONNECTED and only rely on CO_FL_WAIT_*
4046 - BUG/MEDIUM: 0rtt: Only consider the SSL handshake.
4047 - MINOR: stream-int: always report received shutdowns
4048 - MINOR: connection: remove CO_FL_SSL_WAIT_HS from CO_FL_HANDSHAKE
4049 - MEDIUM: connection: use CO_FL_WAIT_XPRT more consistently than L4/L6/HANDSHAKE
4050 - MINOR: connection: remove checks for CO_FL_HANDSHAKE before I/O
4051 - MINOR: connection: do not check for CO_FL_SOCK_RD_SH too early
4052 - MINOR: connection: don't check for CO_FL_SOCK_WR_SH too early in handshakes
4053 - MINOR: raw-sock: always check for CO_FL_SOCK_WR_SH before sending
4054 - MINOR: connection: remove some unneeded checks for CO_FL_SOCK_WR_SH
4055 - BUG/MINOR: stktable: report the current proxy name in error messages
4056 - BUG/MEDIUM: mux-h2: make sure we don't emit TE headers with anything but "trailers"
4057 - MINOR: lua: Add hlua_prepend_path function
4058 - MINOR: lua: Add lua-prepend-path configuration option
4059 - MINOR: lua: Add HLUA_PREPEND_C?PATH build option
4060 - BUILD: cfgparse: silence a bogus gcc warning on 32-bit machines
4061 - BUG/MINOR: http-ana: Increment the backend counters on the backend
4062 - BUG/MINOR: stream: Be sure to have a listener to increment its counters
4063 - BUG/MEDIUM: streams: Move the conn_stream allocation outside #IF USE_OPENSSL.
4064 - REGTESTS: make the set_ssl_cert test require version 2.2
4065 - BUG/MINOR: ssl: Possible memleak when allowing the 0RTT data buffer.
4066 - MINOR: ssl: Remove dead code.
4067 - BUG/MEDIUM: ssl: Don't forget to free ctx->ssl on failure.
4068 - BUG/MEDIUM: stream: Don't install the mux in back_handle_st_con().
4069 - MEDIUM: streams: Don't close the connection in back_handle_st_con().
4070 - MEDIUM: streams: Don't close the connection in back_handle_st_rdy().
4071 - BUILD: CI: disable slow regtests on Travis
4072 - BUG/MINOR: tcpchecks: fix the connect() flags regarding delayed ack
4073 - BUG/MINOR: http-rules: Always init log-format expr for common HTTP actions
4074 - BUG/MINOR: connection: fix ip6 dst_port copy in make_proxy_line_v2
4075 - BUG/MINOR: dns: allow 63 char in hostname
4076 - MINOR: proxy: clarify number of connections log when stopping
4077 - DOC: word converter ignores delimiters at the start or end of input string
4078 - MEDIUM: raw-sock: remove obsolete calls to fd_{cant,cond,done}_{send,recv}
4079 - BUG/MINOR: ssl/cli: fix unused variable with openssl < 1.0.2
4080 - MEDIUM: pipe/thread: reduce the locking overhead
4081 - MEDIUM: pipe/thread: maintain a per-thread local cache of recently used pipes
4082 - BUG/MEDIUM: pipe/thread: fix atomicity of pipe counters
4083 - MINOR: tasks: move the list walking code to its own function
4084 - MEDIUM: tasks: implement 3 different tasklet classes with their own queues
4085 - MEDIUM: tasks: automatically requeue into the bulk queue an already running tasklet
4086 - OPTIM: task: refine task classes default CPU bandwidth ratios
4087 - BUG/MEDIUM: connections: Don't forget to unlock when killing a connection.
4088 - MINOR: task: permanently flag tasklets waking themselves up
4089 - MINOR: task: make sched->current also reflect tasklets
4090 - MINOR: task: detect self-wakeups on tl==sched->current instead of TASK_RUNNING
4091 - OPTIM: task: readjust CPU bandwidth distribution since last update
4092 - MINOR: task: don't set TASK_RUNNING on tasklets
4093 - BUG/MEDIUM: memory_pool: Update the seq number in pool_flush().
4094 - MINOR: memory: Only init the pool spinlock once.
4095 - BUG/MEDIUM: memory: Add a rwlock before freeing memory.
4096 - BUG/MAJOR: memory: Don't forget to unlock the rwlock if the pool is empty.
4097 - MINOR: ssl: ssl-load-extra-files configure loading of files
4098 - SCRIPTS: add a new "backport" script to simplify long series of backports
4099 - BUG/MINOR: ssl: we may only ignore the first 64 errors
4100 - SCRIPTS: use /usr/bin/env bash instead of /bin/bash for scripts
4101 - BUG/MINOR: ssl: clear the SSL errors on DH loading failure
4102 - CLEANUP: hpack: remove a redundant test in the decoder
4103 - CLEANUP: peers: Remove unused static function `free_dcache`
4104 - CLEANUP: peers: Remove unused static function `free_dcache_tx`
4105 - CONTRIB: debug: add missing flags SF_HTX and SF_MUX
4106 - CONTRIB: debug: add the possibility to decode the value as certain types only
4107 - CONTRIB: debug: support reporting multiple values at once
4108 - BUG/MINOR: http-act: Use the good message to test strict rewritting mode
4109 - MINOR: global: Set default tune.maxrewrite value during global structure init
4110 - MINOR: http-rules: Set SF_ERR_PRXCOND termination flag when a header rewrite fails
4111 - MINOR: http-htx: Emit a warning if an error file runs over the buffer's reserve
4112 - MINOR: htx: Add a function to append an HTX message to another one
4113 - MINOR: htx/channel: Add a function to copy an HTX message in a channel's buffer
4114 - BUG/MINOR: http-ana: Don't overwrite outgoing data when an error is reported
4115 - MINOR: dns: Dynamically allocate dns options to reduce the act_rule size
4116 - MINOR: dns: Add function to release memory allocated for a do-resolve rule
4117 - BUG/MINOR: http-ana: Reset HTX first index when HAPRoxy sends a response
4118 - BUG/MINOR: http-ana: Set HTX_FL_PROXY_RESP flag if a server perform a redirect
4119 - MINOR: http-rules: Add a flag on redirect rules to know the rule direction
4120 - MINOR: http-rules: Handle the rule direction when a redirect is evaluated
4121 - MINOR: http-ana: Rely on http_reply_and_close() to handle server error
4122 - MINOR: http-ana: Add a function for forward internal responses
4123 - MINOR: http-ana/http-rules: Use dedicated function to forward internal responses
4124 - MEDIUM: http: Add a ruleset evaluated on all responses just before forwarding
4125 - MEDIUM: http-rules: Add the return action to HTTP rules
4126 - MEDIUM: http-rules: Support extra headers for HTTP return actions
4127 - CLEANUP: lua: Remove consistency check for sample fetches and actions
4128 - BUG/MINOR: http-ana: Increment failed_resp counters on invalid response
4129 - MINOR: lua: Get the action return code on the stack when an action finishes
4130 - MINOR: lua: Create the global 'act' object to register all action return codes
4131 - MINOR: lua: Add act:wake_time() function to set a timeout when an action yields
4132 - MEDIUM: lua: Add ability for actions to intercept HTTP messages
4133 - REGTESTS: Add reg tests for the HTTP return action
4134 - REGTESTS: Add a reg test for http-after-response rulesets
4135 - BUILD: lua: silence a warning on systems where longjmp is not marked as noreturn
4136 - MINOR: acl: Warn when an ACL is named 'or'
4137 - CONTRIB: debug: also support reading values from stdin
4138 - SCRIPTS: backport: use short revs and resolve the initial commit
4139 - BUG/MINOR: acl: Fix type of log message when an acl is named 'or'
4140
Willy Tarreau71f95fa2020-01-22 10:34:58 +010041412020/01/22 : 2.2-dev1
4142 - DOC: this is development again
4143 - MINOR: version: this is development again, update the status
4144 - SCRIPTS: update create-release to fix the changelog on new branches
4145 - CLEANUP: ssl: Clean up error handling
4146 - BUG/MINOR: contrib/prometheus-exporter: decode parameter and value only
4147 - BUG/MINOR: h1: Don't test the host header during response parsing
4148 - BUILD/MINOR: trace: fix use of long type in a few printf format strings
4149 - DOC: Clarify behavior of server maxconn in HTTP mode
4150 - MINOR: ssl: deduplicate ca-file
4151 - MINOR: ssl: compute ca-list from deduplicate ca-file
4152 - MINOR: ssl: deduplicate crl-file
4153 - CLEANUP: dns: resolution can never be null
4154 - BUG/MINOR: http-htx: Don't make http_find_header() fail if the value is empty
4155 - DOC: ssl/cli: set/commit/abort ssl cert
4156 - BUG/MINOR: ssl: fix SSL_CTX_set1_chain compatibility for openssl < 1.0.2
4157 - BUG/MINOR: fcgi-app: Make the directive pass-header case insensitive
4158 - BUG/MINOR: stats: Fix HTML output for the frontends heading
4159 - BUG/MINOR: ssl: fix X509 compatibility for openssl < 1.1.0
4160 - DOC: clarify matching strings on binary fetches
4161 - DOC: Fix ordered list in summary
4162 - DOC: move the "group" keyword at the right place
4163 - MEDIUM: init: prevent process and thread creation at runtime
4164 - BUG/MINOR: ssl/cli: 'ssl cert' cmd only usable w/ admin rights
4165 - BUG/MEDIUM: stream-int: don't subscribed for recv when we're trying to flush data
4166 - BUG/MINOR: stream-int: avoid calling rcv_buf() when splicing is still possible
4167 - BUG/MINOR: ssl/cli: don't overwrite the filters variable
4168 - BUG/MEDIUM: listener/thread: fix a race when pausing a listener
4169 - BUG/MINOR: ssl: certificate choice can be unexpected with openssl >= 1.1.1
4170 - BUG/MEDIUM: mux-h1: Never reuse H1 connection if a shutw is pending
4171 - BUG/MINOR: mux-h1: Don't rely on CO_FL_SOCK_RD_SH to set H1C_F_CS_SHUTDOWN
4172 - BUG/MINOR: mux-h1: Fix conditions to know whether or not we may receive data
4173 - BUG/MEDIUM: tasks: Make sure we switch wait queues in task_set_affinity().
4174 - BUG/MEDIUM: checks: Make sure we set the task affinity just before connecting.
4175 - MINOR: debug: replace popen() with pipe+fork() in "debug dev exec"
4176 - MEDIUM: init: set NO_NEW_PRIVS by default when supported
4177 - BUG/MINOR: mux-h1: Be sure to set CS_FL_WANT_ROOM when EOM can't be added
4178 - BUG/MEDIUM: mux-fcgi: Handle cases where the HTX EOM block cannot be inserted
4179 - BUG/MINOR: proxy: make soft_stop() also close FDs in LI_PAUSED state
4180 - BUG/MINOR: listener/threads: always use atomic ops to clear the FD events
4181 - BUG/MINOR: listener: also clear the error flag on a paused listener
4182 - BUG/MEDIUM: listener/threads: fix a remaining race in the listener's accept()
4183 - MINOR: listener: make the wait paths cleaner and more reliable
4184 - MINOR: listener: split dequeue_all_listener() in two
4185 - REORG: listener: move the global listener queue code to listener.c
4186 - DOC: document the listener state transitions
4187 - BUG/MEDIUM: kqueue: Make sure we report read events even when no data.
4188 - BUG/MAJOR: dns: add minimalist error processing on the Rx path
4189 - BUG/MEDIUM: proto_udp/threads: recv() and send() must not be exclusive.
4190 - DOC: listeners: add a few missing transitions
4191 - BUG/MINOR: tasks: only requeue a task if it was already in the queue
4192 - MINOR: tasks: split wake_expired_tasks() in two parts to avoid useless wakeups
4193 - DOC: proxies: HAProxy only supports 3 connection modes
4194 - DOC: remove references to the outdated architecture.txt
4195 - BUG/MINOR: log: fix minor resource leaks on logformat error path
4196 - BUG/MINOR: mworker: properly pass SIGTTOU/SIGTTIN to workers
4197 - BUG/MINOR: listener: do not immediately resume on transient error
4198 - BUG/MINOR: server: make "agent-addr" work on default-server line
4199 - BUG/MINOR: listener: fix off-by-one in state name check
4200 - BUILD/MINOR: unix sockets: silence an absurd gcc warning about strncpy()
4201 - MEDIUM: h1-htx: Add HTX EOM block when the message is in H1_MSG_DONE state
4202 - MINOR: http-htx: Add some htx sample fetches for debugging purpose
4203 - REGTEST: Add an HTX reg-test to check an edge case
4204 - DOC: clarify the fact that replace-uri works on a full URI
4205 - BUG/MINOR: sample: fix the closing bracket and LF in the debug converter
4206 - BUG/MINOR: sample: always check converters' arguments
4207 - MINOR: sample: Validate the number of bits for the sha2 converter
4208 - BUG/MEDIUM: ssl: Don't set the max early data we can receive too early.
4209 - MINOR: ssl/cli: 'show ssl cert' give information on the certificates
4210 - BUG/MINOR: ssl/cli: fix build for openssl < 1.0.2
4211 - MINOR: debug: support logging to various sinks
4212 - MINOR: http: add a new "replace-path" action
4213 - REGTEST: ssl: test the "set ssl cert" CLI command
4214 - REGTEST: run-regtests: implement #REQUIRE_BINARIES
4215 - MINOR: task: only check TASK_WOKEN_ANY to decide to requeue a task
4216 - BUG/MAJOR: task: add a new TASK_SHARED_WQ flag to fix foreing requeuing
4217 - BUG/MEDIUM: ssl: Revamp the way early data are handled.
4218 - MINOR: fd/threads: make _GET_NEXT()/_GET_PREV() use the volatile attribute
4219 - BUG/MEDIUM: fd/threads: fix a concurrency issue between add and rm on the same fd
4220 - REGTEST: make the "set ssl cert" require version 2.1
4221 - BUG/MINOR: ssl: openssl-compat: Fix getm_ defines
4222 - BUG/MEDIUM: state-file: do not allocate a full buffer for each server entry
4223 - BUG/MINOR: state-file: do not store duplicates in the global tree
4224 - BUG/MINOR: state-file: do not leak memory on parse errors
4225 - BUG/MAJOR: mux-h1: Don't pretend the input channel's buffer is full if empty
4226 - BUG/MEDIUM: stream: Be sure to never assign a TCP backend to an HTX stream
4227 - BUILD: ssl: improve SSL_CTX_set_ecdh_auto compatibility
4228 - BUILD: travis-ci: link with ssl libraries using rpath instead of LD_LIBRARY_PATH/DYLD_LIBRARY_PATH
4229 - BUILD: travis-ci: reenable address sanitizer for clang builds
4230 - BUG/MINOR: checks: refine which errno values are really errors.
4231 - BUG/MINOR: connection: only wake send/recv callbacks if the FD is active
4232 - CLEANUP: connection: conn->xprt is never NULL
4233 - MINOR: pollers: add a new flag to indicate pollers reporting ERR & HUP
4234 - MEDIUM: tcp: make tcp_connect_probe() consider ERR/HUP
4235 - REORG: connection: move tcp_connect_probe() to conn_fd_check()
4236 - MINOR: connection: check for connection validation earlier
4237 - MINOR: connection: remove the double test on xprt_done_cb()
4238 - CLEANUP: connection: merge CO_FL_NOTIFY_DATA and CO_FL_NOTIFY_DONE
4239 - MINOR: poller: do not call the IO handler if the FD is not active
4240 - OPTIM: epoll: always poll for recv if neither active nor ready
4241 - OPTIM: polling: do not create update entries for FD removal
4242 - BUG/MEDIUM: checks: Only attempt to do handshakes if the connection is ready.
4243 - BUG/MEDIUM: connections: Hold the lock when wanting to kill a connection.
4244 - BUILD: CI: modernize cirrus-ci
4245 - MINOR: config: disable busy polling on old processes
4246 - MINOR: ssl: Remove unused variable "need_out".
4247 - BUG/MINOR: h1: Report the right error position when a header value is invalid
4248 - BUG/MINOR: proxy: Fix input data copy when an error is captured
4249 - BUG/MEDIUM: http-ana: Truncate the response when a redirect rule is applied
4250 - BUG/MINOR: channel: inject output data at the end of output
4251 - BUG/MEDIUM: session: do not report a failure when rejecting a session
4252 - MEDIUM: dns: implement synchronous send
4253 - MINOR: raw_sock: make sure to disable polling once everything is sent
4254 - MINOR: http: Add 410 to http-request deny
4255 - MINOR: http: Add 404 to http-request deny
4256 - CLEANUP: mux-h2: remove unused goto "out_free_h2s"
4257 - BUILD: cirrus-ci: choose proper openssl package name
4258 - BUG/MAJOR: listener: do not schedule a task-less proxy
4259 - CLEANUP: server: remove unused err section in server_finalize_init
4260 - REGTEST: set_ssl_cert.vtc: replace "echo" with "printf"
4261 - BUG/MINOR: stream-int: Don't trigger L7 retry if max retries is already reached
4262 - BUG/MEDIUM: tasks: Use the MT macros in tasklet_free().
4263 - BUG/MINOR: mux-h2: use a safe list_for_each_entry in h2_send()
4264 - BUG/MEDIUM: mux-h2: fix missing test on sending_list in previous patch
4265 - CLEANUP: ssl: remove opendir call in ssl_sock_load_cert
4266 - MEDIUM: lua: don't call the GC as often when dealing with outgoing connections
4267 - BUG/MEDIUM: mux-h2: don't stop sending when crossing a buffer boundary
4268 - BUG/MINOR: cli/mworker: can't start haproxy with 2 programs
4269 - REGTEST: mcli/mcli_start_progs: start 2 programs
4270 - BUG/MEDIUM: mworker: remain in mworker mode during reload
4271 - DOC: clarify crt-base usage
4272 - CLEANUP: compression: remove unused deinit_comp_ctx section
4273 - BUG/MEDIUM: mux_h1: Don't call h1_send if we subscribed().
4274 - BUG/MEDIUM: raw_sock: Make sur the fd and conn are sync.
4275 - CLEANUP: proxy: simplify proxy_parse_rate_limit proxy checks
4276 - BUG/MAJOR: hashes: fix the signedness of the hash inputs
4277 - REGTEST: add sample_fetches/hashes.vtc to validate hashes
4278 - BUG/MEDIUM: cli: _getsocks must send the peers sockets
4279 - CLEANUP: cli: deduplicate the code in _getsocks
4280 - BUG/MINOR: stream: don't mistake match rules for store-request rules
4281 - BUG/MEDIUM: connection: add a mux flag to indicate splice usability
4282 - BUG/MINOR: pattern: handle errors from fgets when trying to load patterns
4283 - MINOR: connection: move the CO_FL_WAIT_ROOM cleanup to the reader only
4284 - MINOR: stream-int: remove dependency on CO_FL_WAIT_ROOM for rcv_buf()
4285 - MEDIUM: connection: get rid of CO_FL_CURR_* flags
4286 - BUILD: pattern: include errno.h
4287 - MEDIUM: mux-h2: do not try to stop sending streams on blocked mux
4288 - MEDIUM: mux-fcgi: do not try to stop sending streams on blocked mux
4289 - MEDIUM: mux-h2: do not make an h2s subscribe to itself on deferred shut
4290 - MEDIUM: mux-fcgi: do not make an fstrm subscribe to itself on deferred shut
4291 - REORG: stream/backend: move backend-specific stuff to backend.c
4292 - MEDIUM: backend: move the connection finalization step to back_handle_st_con()
4293 - MEDIUM: connection: merge the send_wait and recv_wait entries
4294 - MEDIUM: xprt: merge recv_wait and send_wait in xprt_handshake
4295 - MEDIUM: ssl: merge recv_wait and send_wait in ssl_sock
4296 - MEDIUM: mux-h1: merge recv_wait and send_wait
4297 - MEDIUM: mux-h2: merge recv_wait and send_wait event notifications
4298 - MEDIUM: mux-fcgi: merge recv_wait and send_wait event notifications
4299 - MINOR: connection: make the last arg of subscribe() a struct wait_event*
4300 - MINOR: ssl: Add support for returning the dn samples from ssl_(c|f)_(i|s)_dn in LDAP v3 (RFC2253) format.
4301 - DOC: Fix copy and paste mistake in http-response replace-value doc
4302 - BUG/MINOR: cache: Fix leak of cache name in error path
4303 - BUG/MINOR: dns: Make dns_query_id_seed unsigned
4304 - BUG/MINOR: 51d: Fix bug when HTX is enabled
4305 - MINOR: http-htx: Move htx sample fetches in the scope "internal"
4306 - MINOR: http-htx: Rename 'internal.htx_blk.val' to 'internal.htx_blk.data'
4307 - MINOR: http-htx: Make 'internal.htx_blk_data' return a binary string
4308 - DOC: Add a section to document the internal sample fetches
4309 - MINOR: mux-h1: Inherit send flags from the upper layer
4310 - MINOR: contrib/prometheus-exporter: Add heathcheck status/code in server metrics
4311 - BUG/MINOR: http-ana/filters: Wait end of the http_end callback for all filters
4312 - BUG/MINOR: http-rules: Remove buggy deinit functions for HTTP rules
4313 - BUG/MINOR: stick-table: Use MAX_SESS_STKCTR as the max track ID during parsing
4314 - MEDIUM: http-rules: Register an action keyword for all http rules
4315 - MINOR: tcp-rules: Always set from which ruleset a rule comes from
4316 - MINOR: actions: Use ACT_RET_CONT code to ignore an error from a custom action
4317 - MINOR: tcp-rules: Kill connections when custom actions return ACT_RET_ERR
4318 - MINOR: http-rules: Return an error when custom actions return ACT_RET_ERR
4319 - MINOR: counters: Add a counter to report internal processing errors
4320 - MEDIUM: http-ana: Properly handle internal processing errors
4321 - MINOR: http-rules: Add a rule result to report internal error
4322 - MINOR: http-rules: Handle internal errors during HTTP rules evaluation
4323 - MINOR: http-rules: Add more return codes to let custom actions act as normal ones
4324 - MINOR: tcp-rules: Handle denied/aborted/invalid connections from TCP rules
4325 - MINOR: http-rules: Handle denied/aborted/invalid connections from HTTP rules
4326 - MINOR: stats: Report internal errors in the proxies/listeners/servers stats
4327 - MINOR: contrib/prometheus-exporter: Export internal errors per proxy/server
4328 - MINOR: counters: Remove failed_secu counter and use denied_resp instead
4329 - MINOR: counters: Review conditions to increment counters from analysers
4330 - MINOR: http-ana: Add a txn flag to support soft/strict message rewrites
4331 - MINOR: http-rules: Handle all message rewrites the same way
4332 - MINOR: http-rules: Add a rule to enable or disable the strict rewriting mode
4333 - MEDIUM: http-rules: Enable the strict rewriting mode by default
4334 - REGTEST: Fix format of set-uri HTTP request rule in h1or2_to_h1c.vtc
4335 - MINOR: actions: Add a function pointer to release args used by actions
4336 - MINOR: actions: Regroup some info about HTTP rules in the same struct
4337 - MINOR: http-rules/tcp-rules: Call the defined action function first if defined
4338 - MINOR: actions: Rename the act_flag enum into act_opt
4339 - MINOR: actions: Add flags to configure the action behaviour
4340 - MINOR: actions: Use an integer to set the action type
4341 - MINOR: http-rules: Use a specific action type for some custom HTTP actions
4342 - MINOR: http-rules: Make replace-header and replace-value custom actions
4343 - MINOR: http-rules: Make set-header and add-header custom actions
4344 - MINOR: http-rules: Make set/del-map and add/del-acl custom actions
4345 - MINOR: http-rules: Group all processing of early-hint rule in its case clause
4346 - MEDIUM: http-rules: Make early-hint custom actions
4347 - MINOR: http-rule/tcp-rules: Make track-sc* custom actions
4348 - MINOR: tcp-rules: Make tcp-request capture a custom action
4349 - MINOR: http-rules: Add release functions for existing HTTP actions
4350 - BUG/MINOR: http-rules: Fix memory releases on error path during action parsing
4351 - MINOR: tcp-rules: Add release functions for existing TCP actions
4352 - BUG/MINOR: tcp-rules: Fix memory releases on error path during action parsing
4353 - MINOR: http-htx: Add functions to read a raw error file and convert it in HTX
4354 - MINOR: http-htx: Add functions to create HTX redirect message
4355 - MINOR: config: Use dedicated function to parse proxy's errorfiles
4356 - MINOR: config: Use dedicated function to parse proxy's errorloc
4357 - MEDIUM: http-htx/proxy: Use a global and centralized storage for HTTP error messages
4358 - MINOR: proxy: Register keywords to parse errorfile and errorloc directives
4359 - MINOR: http-htx: Add a new section to create groups of custom HTTP errors
4360 - MEDIUM: proxy: Add a directive to reference an http-errors section in a proxy
4361 - MINOR: http-rules: Update txn flags and status when a deny rule is executed
4362 - MINOR: http-rules: Support an optional status on deny rules for http reponses
4363 - MINOR: http-rules: Use same function to parse request and response deny actions
4364 - MINOR: http-ana: Add an error message in the txn and send it when defined
4365 - MEDIUM: http-rules: Support an optional error message in http deny rules
4366 - REGTEST: Add a strict rewriting mode reg test
4367 - REGEST: Add reg tests about error files
4368 - MINOR: ssl: accept 'verify' bind option with 'set ssl cert'
4369 - BUG/MINOR: ssl: ssl_sock_load_ocsp_response_from_file memory leak
4370 - BUG/MINOR: ssl: ssl_sock_load_issuer_file_into_ckch memory leak
4371 - BUG/MINOR: ssl: ssl_sock_load_sctl_from_file memory leak
4372 - BUG/MINOR: http_htx: Fix some leaks on error path when error files are loaded
4373 - CLEANUP: http-ana: Remove useless test on txn when the error message is retrieved
4374 - BUILD: CI: introduce ARM64 builds
4375 - BUILD: ssl: more elegant anti-replay feature presence check
4376 - MINOR: proxy/http-ana: Add support of extra attributes for the cookie directive
4377 - MEDIUM: dns: use Additional records from SRV responses
4378 - CLEANUP: Consistently `unsigned int` for bitfields
4379 - CLEANUP: pattern: remove the pat_time definition
4380 - BUG/MINOR: http_act: don't check capture id in backend
4381 - BUG/MINOR: ssl: fix build on development versions of openssl-1.1.x
4382
Willy Tarreau2e077f82019-11-25 20:36:16 +010043832019/11/25 : 2.2-dev0
4384 - exact copy of 2.1.0
4385
Willy Tarreaue54b43a2019-11-25 19:47:40 +010043862019/11/25 : 2.1.0
4387 - BUG/MINOR: init: fix set-dumpable when using uid/gid
4388 - MINOR: init: avoid code duplication while setting identify
4389 - BUG/MINOR: ssl: ssl_pkey_info_index ex_data can store a dereferenced pointer
4390 - BUG/MINOR: ssl: fix crt-list neg filter for openssl < 1.1.1
4391 - MINOR: peers: Alway show the table info for disconnected peers.
4392 - MINOR: peers: Add TX/RX heartbeat counters.
4393 - MINOR: peers: Add debugging information to "show peers".
4394 - BUG/MINOR: peers: Wrong null "server_name" data field handling.
4395 - MINOR: ssl/cli: 'abort ssl cert' deletes an on-going transaction
4396 - BUG/MEDIUM: mworker: don't fill the -sf argument with -1 during the reexec
4397 - BUG/MINOR: peers: "peer alive" flag not reset when deconnecting.
4398 - BUILD/MINOR: ssl: fix compiler warning about useless statement
4399 - BUG/MEDIUM: stream-int: Don't loose events on the CS when an EOS is reported
4400 - MINOR: contrib/prometheus-exporter: filter exported metrics by scope
4401 - MINOR: contrib/prometheus-exporter: Add a param to ignore servers in maintenance
4402 - BUILD: debug: Avoid warnings in dev mode with -02 because of some BUG_ON tests
4403 - BUG/MINOR: mux-h1: Fix tunnel mode detection on the response path
4404 - BUG/MINOR: http-ana: Properly catch aborts during the payload forwarding
4405 - DOC: Update http-buffer-request description to remove the part about chunks
4406 - BUG/MINOR: stream-int: Fix si_cs_recv() return value
4407 - DOC: internal: document the init calls
4408 - MEDIUM: dns: Add resolve-opts "ignore-weight"
4409 - MINOR: ssl: ssl_sock_prepare_ctx() return an error code
4410 - MEDIUM: ssl/cli: apply SSL configuration on SSL_CTX during commit
4411 - MINOR: ssl/cli: display warning during 'commit ssl cert'
4412 - MINOR: version: report the version status in "haproxy -v"
4413 - MINOR: version: emit the link to the known bugs in output of "haproxy -v"
4414 - DOC: Add documentation about the use-service action
4415 - MINOR: ssl: fix possible null dereference in error handling
4416 - BUG/MINOR: ssl: fix curve setup with LibreSSL
4417 - BUG/MINOR: ssl: Stop passing dynamic strings as format arguments
4418 - CLEANUP: ssl: check if a transaction exists once before setting it
4419 - BUG/MINOR: cli: fix out of bounds in -S parser
4420 - MINOR: ist: add ist_find_ctl()
4421 - BUG/MAJOR: h2: reject header values containing invalid chars
4422 - BUG/MAJOR: h2: make header field name filtering stronger
4423 - BUG/MAJOR: mux-h2: don't try to decode a response HEADERS frame in idle state
4424 - MINOR: h2: add a function to report H2 error codes as strings
4425 - MINOR: mux-h2/trace: report the connection and/or stream error code
4426 - SCRIPTS: create-release: show the correct origin name in suggested commands
4427 - SCRIPTS: git-show-backports: add "-s" to proposed cherry-pick commands
4428 - BUG/MEDIUM: trace: fix a typo causing an incorrect startup error
4429 - BUILD: reorder the objects in the makefile
4430 - DOC: mention in INSTALL haproxy 2.1 is a stable stable version
4431 - MINOR: version: indicate that this version is stable
4432
Willy Tarreau84681322019-11-15 18:49:37 +010044332019/11/15 : 2.1-dev5
4434 - BUG/MEDIUM: ssl/cli: don't alloc path when cert not found
4435 - BUG/MINOR: ssl/cli: unable to update a certificate without bundle extension
4436 - BUG/MINOR: ssl/cli: fix an error when a file is not found
4437 - MINOR: ssl/cli: replace the default_ctx during 'commit ssl cert'
4438 - DOC: fix date and http_date keywords syntax
4439 - MINOR: peers: Add "log" directive to "peers" section.
4440 - BUG/MEDIUM: mux-h1: Disable splicing for chunked messages
4441 - BUG/MEDIUM: stream: Be sure to support splicing at the mux level to enable it
4442 - MINOR: flt_trace: Rename macros to print trace messages
4443 - MINOR: trace: Add a set of macros to trace events if HA is compiled with debug
4444 - MEDIUM: stream/trace: Register a new trace source with its events
4445 - MINOR: doc: http-reuse connection pool fix
4446 - BUG/MEDIUM: stream: Be sure to release allocated captures for TCP streams
4447 - MINOR: http-ana: Remove the unused function http_reset_txn()
4448 - BUG/MINOR: action: do-resolve now use cached response
4449 - BUG: dns: timeout resolve not applied for valid resolutions
4450 - DOC: management: fix typo on "cache_lookups" stats output
4451 - BUG/MINOR: stream: init variables when the list is empty
4452 - BUG/MEDIUM: tasks: Make tasklet_remove_from_tasklet_list() no matter the tasklet.
4453 - BUG/MINOR: queue/threads: make the queue unlinking atomic
4454 - BUG/MEDIUM: Make sure we leave the session list in session_free().
4455 - CLEANUP: session: slightly simplify idle connection cleanup logic
4456 - MINOR: memory: also poison the area on freeing
4457 - CLEANUP: cli: use srv_shutdown_streams() instead of open-coding it
4458 - CLEANUP: stats: use srv_shutdown_streams() instead of open-coding it
4459 - BUG/MEDIUM: listeners: always pause a listener on out-of-resource condition
4460 - BUILD: contrib/da: remove an "unused" warning
4461 - BUG/MEDIUM: filters: Don't call TCP callbacks for HTX streams
4462 - MEDIUM: filters: Adapt filters API to allow again TCP filtering on HTX streams
4463 - MINOR: freq_ctr: Make the sliding window sums thread-safe
4464 - MINOR: stream: Remove the lock on the proxy to update time stats
4465 - MINOR: counters: Add fields to store the max observed for {q,c,d,t}_time
4466 - MINOR: stats: Report max times in addition of the averages for sessions
4467 - MINOR: contrib/prometheus-exporter: Report metrics about max times for sessions
4468 - BUG/MINOR: contrib/prometheus-exporter: Rename some metrics
4469 - MINOR: contrib/prometheus-exporter: report the number of idle conns per server
4470 - DOC: Add missing stats fields in the management manual
4471 - BUG/MINOR: mux-h1: Properly catch parsing errors on payload and trailers
4472 - BUG/MINOR: mux-h1: Don't set CS_FL_EOS on a read0 when receiving data to pipe
4473 - MINOR: mux-h1: Set EOI on the conn-stream when EOS is reported in TUNNEL state
4474 - MINOR: sink: Set the default max length for a message to BUFSIZE
4475 - MINOR: ring: make the parse function automatically set the handler/release
4476 - BUG/MINOR: log: make "show startup-log" use a ring buffer instead
4477 - MINOR: stick-table: allow sc-set-gpt0 to set value from an expression
4478
Willy Tarreau1753cb52019-11-03 15:43:10 +010044792019/11/03 : 2.1-dev4
4480 - BUG/MINOR: cli: don't call the kw->io_release if kw->parse failed
4481 - BUG/MINOR: mux-h2: Don't pretend mux buffers aren't full anymore if nothing sent
4482 - BUG/MAJOR: stream-int: Don't receive data from mux until SI_ST_EST is reached
4483 - DOC: remove obsolete section about header manipulation
4484 - BUG/MINOR: ssl/cli: cleanup on cli_parse_set_cert error
4485 - MINOR: ssl/cli: rework the 'set ssl cert' IO handler
4486 - BUILD: CI: comment out cygwin build, upgrade various ssl libraries
4487 - DOC: Improve documentation of http-re(quest|sponse) replace-(header|value|uri)
4488 - BUILD/MINOR: tools: shut up the format truncation warning in get_gmt_offset()
4489 - BUG/MINOR: spoe: fix off-by-one length in UUID format string
4490 - BUILD/MINOR: ssl: shut up a build warning about format truncation
4491 - BUILD: do not disable -Wformat-truncation anymore
4492 - MINOR: chunk: add chunk_istcat() to concatenate an ist after a chunk
4493 - Revert "MINOR: istbuf: add b_fromist() to make a buffer from an ist"
4494 - MINOR: mux: Add a new method to get informations about a mux.
4495 - BUG/MEDIUM: stream_interface: Only use SI_ST_RDY when the mux is ready.
4496 - BUG/MEDIUM: servers: Only set SF_SRV_REUSED if the connection if fully ready.
4497 - MINOR: doc: fix busy-polling performance reference
4498 - MINOR: config: allow no set-dumpable config option
4499 - MINOR: init: always fail when setrlimit fails
4500 - MINOR: ssl/cli: rework 'set ssl cert' as 'set/commit'
4501 - CLEANUP: ssl/cli: remove leftovers of bundle/certs (it < 2)
4502 - REGTEST: vtest can now enable mcli with its own flag
4503 - BUG/MINOR: config: Update cookie domain warn to RFC6265
4504 - MINOR: sample: add us/ms support to date/http_date
4505 - BUG/MINOR: ssl/cli: check trash allocation in cli_io_handler_commit_cert()
4506 - BUG/MEDIUM: mux-h2: report no available stream on a connection having errors
4507 - BUG/MEDIUM: mux-h2: immediately remove a failed connection from the idle list
4508 - BUG/MEDIUM: mux-h2: immediately report connection errors on streams
4509 - BUG/MINOR: stats: properly check the path and not the whole URI
4510 - BUG/MINOR: ssl: segfault in cli_parse_set_cert with old openssl/boringssl
4511 - BUG/MINOR: ssl: ckch->chain must be initialized
4512 - BUG/MINOR: ssl: double free on error for ckch->{key,cert}
4513 - MINOR: ssl: BoringSSL ocsp_response does not need issuer
4514 - BUG/MEDIUM: ssl/cli: fix dot research in cli_parse_set_cert
4515 - MINOR: backend: Add srv_name sample fetche
4516 - DOC: Add GitHub issue config.yml
4517
Willy Tarreauc70df532019-10-25 15:48:53 +020045182019/10/25 : 2.1-dev3
4519 - MINOR: mux-h2/trace: missing conn pointer in demux full message
4520 - MINOR: mux-h2: add a per-connection list of blocked streams
4521 - BUILD: ebtree: make eb_is_empty() and eb_is_dup() take a const
4522 - BUG/MEDIUM: mux-h2: do not enforce timeout on long connections
4523 - BUG/MEDIUM: tasks: Don't forget to decrement tasks_run_queue.
4524 - BUG/MINOR: peers: crash on reload without local peer.
4525 - BUG/MINOR: mux-h2/trace: Fix traces on h2c initialization
4526 - MINOR: h1-htx: Update h1_copy_msg_data() to ease the traces in the mux-h1
4527 - MINOR: htx: Adapt htx_dump() to be used from traces
4528 - MINOR: mux-h1/trace: register a new trace source with its events
4529 - MINOR: proxy: Store http-send-name-header in lower case
4530 - MINOR: http: Remove headers matching the name of http-send-name-header option
4531 - BUG/MINOR: mux-h1: Adjust header case when the server name is add to a request
4532 - BUG/MINOR: mux-h1: Adjust header case when chunked encoding is add to a message
4533 - MINOR: mux-h1: Try to wakeup the stream on output buffer allocation
4534 - MINOR: fcgi: Add function to get the string representation of a record type
4535 - MINOR: mux-fcgi/trace: Register a new trace source with its events
4536 - BUG/MEDIUM: cache: make sure not to cache requests with absolute-uri
4537 - DOC: clarify some points around http-send-name-header's behavior
4538 - MEDIUM: mux-h2: support emitting CONTINUATION frames after HEADERS
4539 - BUG/MINOR: mux-h1/mux-fcgi/trace: Fix position of the 4th arg in some traces
4540 - DOC: fix typo in Prometheus exporter doc
4541 - MINOR: h2: clarify the rules for how to convert an H2 request to HTX
4542 - MINOR: htx: Add 2 flags on the start-line to have more info about the uri
4543 - MINOR: http: Add a function to get the authority into a URI
4544 - MINOR: h1-htx: Set the flag HTX_SL_F_HAS_AUTHORITY during the request parsing
4545 - MEDIUM: http-htx: Keep the Host header and the request start-line synchronized
4546 - MINOR: h1-htx: Only use the path of a normalized URI to format a request line
4547 - MEDIUM: h2: make the request parser rebuild a complete URI
4548 - MINOR: h2: report in the HTX flags when the request has an authority
4549 - MEDIUM: mux-h2: do not map Host to :authority on output
4550 - MEDIUM: h2: use the normalized URI encoding for absolute form requests
4551 - MINOR: stats: mention in the help message support for "json" and "typed"
4552 - MINOR: stats: get rid of the ST_CONVDONE flag
4553 - MINOR: stats: replace the ST_* uri_auth flags with STAT_*
4554 - MINOR: stats: always merge the uri_auth flags into the appctx flags
4555 - MINOR: stats: set the appctx flags when initializing the applet only
4556 - MINOR: stats: get rid of the STAT_SHOWADMIN flag
4557 - MINOR: stats: make stats_dump_fields_json() directly take flags
4558 - MINOR: stats: uniformize the calling convention of the dump functions
4559 - MINOR: stats: support the "desc" output format modifier for info and stat
4560 - MINOR: stats: prepare to add a description with each stat/info field
4561 - MINOR: stats: make "show stat" and "show info"
4562 - MINOR: stats: fill all the descriptions for "show info" and "show stat"
4563 - BUG/MEDIUM: applet: always check a fast running applet's activity before killing
4564 - BUILD: stats: fix missing '=' sign in array declaration
4565 - MINOR: lists: add new macro LIST_SPLICE_END_DETACHED
4566 - MINOR: list: add new macro MT_LIST_BEHEAD
4567 - MEDIUM: task: Split the tasklet list into two lists.
4568 - MINOR: h2: Document traps to be avoided on multithread.
4569 - MINOR: lists: Try to use local variables instead of macro arguments.
4570 - MINOR: lists: Fix alignement of \ when relevant.
4571 - MINOR: mux-h2: also support emitting CONTINUATION on trailers
4572 - MINOR: ssl: crt-list do ckchn_lookup
4573 - REORG: ssl: rename ckch_node to ckch_store
4574 - REORG: ssl: move structures to ssl_sock.h
4575 - MINOR: ssl: initialize the sni_keytypes_map as EB_ROOT
4576 - MINOR: ssl: initialize explicitly the sni_ctx trees
4577 - BUG/MINOR: ssl: abort on sni allocation failure
4578 - BUG/MINOR: ssl: free the sni_keytype nodes
4579 - BUG/MINOR: ssl: abort on sni_keytypes allocation failure
4580 - MEDIUM: ssl: introduce the ckch instance structure
4581 - MEDIUM: ssl: split ssl_sock_add_cert_sni()
4582 - MINOR: ssl: ssl_sock_load_ckchn() can properly fail
4583 - MINOR: ssl: ssl_sock_load_multi_ckchs() can properly fail
4584 - MEDIUM: ssl: ssl_sock_load_ckchs() alloc a ckch_inst
4585 - MINOR: ssl: ssl_sock_load_crt_file_into_ckch() is filling from a BIO
4586 - MEDIUM: ssl/cli: 'set ssl cert' updates a certificate from the CLI
4587 - MINOR: ssl: load the sctl in/from the ckch
4588 - MINOR: ssl: load the ocsp in/from the ckch
4589 - BUG/MEDIUM: ssl: NULL dereference in ssl_sock_load_cert_sni()
4590 - BUG/MINOR: ssl: fix build without SSL
4591 - BUG/MINOR: ssl: fix build without multi-cert bundles
4592 - BUILD: ssl: wrong #ifdef for SSL engines code
4593 - BUG/MINOR: ssl: fix OCSP build with BoringSSL
4594 - BUG/MEDIUM: htx: Catch chunk_memcat() failures when HTX data are formatted to h1
4595 - BUG/MINOR: chunk: Fix tests on the chunk size in functions copying data
4596 - BUG/MINOR: mux-h1: Mark the output buffer as full when the xfer is interrupted
4597 - MINOR: mux-h1: Xfer as much payload data as possible during output processing
4598 - CLEANUP: h1-htx: Move htx-to-h1 formatting functions from htx.c to h1_htx.c
4599 - BUG/MINOR: mux-h1: Capture ignored parsing errors
4600 - MINOR: h1: Reject requests with different occurrences of the header host
4601 - MINOR: h1: Reject requests if the authority does not match the header host
4602 - REGTESTS: Send valid URIs in peers reg-tests and fix HA config to avoid warnings
4603 - REGTESTS: Adapt proxy_protocol_random_fail.vtc to match normalized URI too
4604 - BUG/MINOR: WURFL: fix send_log() function arguments
4605 - BUG/MINOR: ssl: fix error messages for OCSP loading
4606 - BUG/MINOR: ssl: can't load ocsp files
4607 - MINOR: version: make the version strings variables, not constants
4608 - BUG/MINOR: http-htx: Properly set htx flags on error files to support keep-alive
4609 - MINOR: htx: Add a flag on HTX to known when a response was generated by HAProxy
4610 - MINOR: mux-h1: Force close mode for proxy responses with an unfinished request
4611 - BUILD: travis-ci: limit build to branches "master" and "next"
4612 - BUILD/MEDIUM: threads: rename thread_info struct to ha_thread_info
4613 - BUILD/SMALL: threads: enable threads on osx
4614 - BUILD/MEDIUM: threads: enable cpu_affinity on osx
4615 - MINOR: istbuf: add b_fromist() to make a buffer from an ist
4616 - BUG/MINOR: cache: also cache absolute URIs
4617 - BUG/MINOR: mworker/ssl: close openssl FDs unconditionally
4618 - BUG/MINOR: tcp: Don't alter counters returned by tcp info fetchers
4619 - BUG/MEDIUM: lists: Handle 1-element-lists in MT_LIST_BEHEAD().
4620 - BUG/MEDIUM: mux_pt: Make sure we don't have a conn_stream before freeing.
4621 - BUG/MEDIUM: tasklet: properly compute the sleeping threads mask in tasklet_wakeup()
4622 - BUG/MAJOR: idle conns: schedule the cleanup task on the correct threads
4623 - BUG/MEDIUM: task: make tasklets either local or shared but not both at once
4624 - Revert e8826ded5fea3593d89da2be5c2d81c522070995.
4625 - BUG/MEDIUM: mux_pt: Don't destroy the connection if we have a stream attached.
4626 - BUG/MEDIUM: mux_pt: Only call the wake emthod if nobody subscribed to receive.
4627 - REGTEST: mcli/mcli_show_info: launch a 'show info' on the master CLI
4628 - CLEANUP: ssl: make ssl_sock_load_cert*() return real error codes
4629 - CLEANUP: ssl: make ssl_sock_load_ckchs() return a set of ERR_*
4630 - CLEANUP: ssl: make cli_parse_set_cert handle errcode and warnings.
4631 - CLEANUP: ssl: make ckch_inst_new_load_(multi_)store handle errcode/warn
4632 - CLEANUP: ssl: make ssl_sock_put_ckch_into_ctx handle errcode/warn
4633 - CLEANUP: ssl: make ssl_sock_load_dh_params handle errcode/warn
4634 - CLEANUP: bind: handle warning label on bind keywords parsing.
4635 - BUG/MEDIUM: ssl: 'tune.ssl.default-dh-param' value ignored with openssl > 1.1.1
4636 - BUG/MINOR: mworker/cli: reload fail with inherited FD
4637 - BUG/MINOR: ssl: Fix fd leak on error path when a TLS ticket keys file is parsed
4638 - BUG/MINOR: stick-table: Never exceed (MAX_SESS_STKCTR-1) when fetching a stkctr
4639 - BUG/MINOR: cache: alloc shctx after check config
4640 - BUG/MINOR: sample: Make the `field` converter compatible with `-m found`
4641 - BUG/MINOR: server: check return value of fopen() in apply_server_state()
4642 - REGTESTS: make seamless-reload depend on 1.9 and above
4643 - REGTESTS: server/cli_set_fqdn requires version 1.8 minimum
4644 - BUG/MINOR: dns: allow srv record weight set to 0
4645 - BUG/MINOR: ssl: fix memcpy overlap without consequences.
4646 - BUG/MINOR: stick-table: fix an incorrect 32 to 64 bit key conversion
4647 - BUG/MEDIUM: pattern: make the pattern LRU cache thread-local and lockless
4648 - BUG/MINOR: mux-h2: do not emit logs on backend connections
4649 - CLEANUP: ssl: remove old TODO commentary
4650 - CLEANUP: ssl: fix SNI/CKCH lock labels
4651 - MINOR: ssl: OCSP functions can load from file or buffer
4652 - MINOR: ssl: load sctl from buf OR from a file
4653 - MINOR: ssl: load issuer from file or from buffer
4654 - MINOR: ssl: split ssl_sock_load_crt_file_into_ckch()
4655 - BUG/MINOR: ssl/cli: fix looking up for a bundle
4656 - MINOR: ssl/cli: update ocsp/issuer/sctl file from the CLI
4657 - MINOR: ssl: update ssl_sock_free_cert_key_and_chain_contents
4658 - MINOR: ssl: copy a ckch from src to dst
4659 - MINOR: ssl: new functions duplicate and free a ckch_store
4660 - MINOR: ssl/cli: assignate a new ckch_store
4661 - MEDIUM: cli/ssl: handle the creation of SSL_CTX in an IO handler
4662 - BUG/MINOR: ssl/cli: fix build of SCTL and OCSP
4663 - BUG/MINOR: ssl/cli: out of bounds when built without ocsp/sctl
4664 - BUG/MINOR: ssl: fix build with openssl < 1.1.0
4665 - BUG/MINOR: ssl: fix build of X509_chain_up_ref() w/ libreSSL
4666 - MINOR: tcp: avoid confusion in time parsing init
4667 - MINOR: debug: add a new "debug dev stream" command
4668 - MINOR: cli/debug: validate addresses using may_access() in "debug dev stream"
4669 - REORG: move CLI access level definitions to cli.h
4670 - MINOR: cli: add an expert mode to hide dangerous commands
4671 - MINOR: debug: make most debug CLI commands accessible in expert mode
4672 - MINOR: stats/debug: maintain a counter of debug commands issued
4673 - BUG/MEDIUM: debug: address a possible null pointer dereference in "debug dev stream"
4674
Willy Tarreaucb8f03f2019-10-01 18:13:09 +020046752019/10/01 : 2.1-dev2
4676 - DOC: management: document reuse and connect counters in the CSV format
4677 - DOC: management: document cache_hits and cache_lookups in the CSV format
4678 - BUG/MINOR: dns: remove irrelevant dependency on a client connection
4679 - MINOR: applet: make appctx use their own pool
4680 - BUG/MEDIUM: checks: Don't attempt to receive data if we already subscribed.
4681 - BUG/MEDIUM: http/htx: unbreak option http_proxy
4682 - BUG/MINOR: backend: do not try to install a mux when the connection failed
4683 - MINOR: mux-h2: Don't adjust anymore the amount of data sent in h2_snd_buf()
4684 - BUG/MINOR: http_fetch: Fix http_auth/http_auth_group when called from TCP rules
4685 - BUG/MINOR: http_htx: Initialize HTX error messages for TCP proxies
4686 - BUG/MINOR: cache/htx: Make maxage calculation HTX aware
4687 - BUG/MINOR: hlua: Make the function txn:done() HTX aware
4688 - MINOR: proto_htx: Directly call htx_check_response_for_cacheability()
4689 - MINOR: proto_htx: Rely on the HTX function to apply a redirect rules
4690 - MINOR: proto_htx: Add the function htx_return_srv_error()
4691 - MINOR: backend/htx: Don't rewind output data to set the sni on a srv connection
4692 - MINOR: proto_htx: Don't stop forwarding when there is a post-connect processing
4693 - DOC: htx: Update comments in HTX files
4694 - CLEANUP: htx: Remove the unsued function htx_add_blk_type_size()
4695 - MINOR: htx: Deduce the number of used blocks from tail and head values
4696 - MINOR: htx: Use an array of char to store HTX blocks
4697 - MINOR: htx: Slightly update htx_dump() to report better messages
4698 - DOC: htx: Add internal documentation about the HTX
4699 - MAJOR: http: Deprecate and ignore the option "http-use-htx"
4700 - MEDIUM: mux-h2: Remove support of the legacy HTTP mode
4701 - CLEANUP: h2: Remove functions converting h2 requests to raw HTTP/1.1 ones
4702 - MINOR: connection: Remove the multiplexer protocol PROTO_MODE_HTX
4703 - MINOR: stream: Rely on HTX analyzers instead of legacy HTTP ones
4704 - MEDIUM: http_fetch: Remove code relying on HTTP legacy mode
4705 - MINOR: config: Remove tests on the option 'http-use-htx'
4706 - MINOR: stream: Remove tests on the option 'http-use-htx' in stream_new()
4707 - MINOR: proxy: Remove tests on the option 'http-use-htx' during H1 upgrade
4708 - MINOR: hlua: Remove tests on the option 'http-use-htx' to reject TCP applets
4709 - MINOR: cache: Remove tests on the option 'http-use-htx'
4710 - MINOR: contrib/prometheus-exporter: Remove tests on the option 'http-use-htx'
4711 - CLEANUP: proxy: Remove the flag PR_O2_USE_HTX
4712 - MINOR: proxy: Don't adjust connection mode of HTTP proxies anymore
4713 - MEDIUM: backend: Remove code relying on the HTTP legacy mode
4714 - MEDIUM: hlua: Remove code relying on the legacy HTTP mode
4715 - MINOR: http_act: Remove code relying on the legacy HTTP mode
4716 - MEDIUM: cache: Remove code relying on the legacy HTTP mode
4717 - MEDIUM: compression: Remove code relying on the legacy HTTP mode
4718 - MINOR: flt_trace: Remove code relying on the legacy HTTP mode
4719 - MINOR: stats: Remove code relying on the legacy HTTP mode
4720 - MAJOR: filters: Remove code relying on the legacy HTTP mode
4721 - MINOR: stream: Remove code relying on the legacy HTTP mode
4722 - MAJOR: http: Remove the HTTP legacy code
4723 - MINOR: hlua: Remove useless test on TX_CON_WANT_* flags
4724 - MINOR: proto_http: Remove unused http txn flags
4725 - MINOR: proto_http: Remove the unused flag HTTP_MSGF_WAIT_CONN
4726 - CLEANUP: proto_http: Group remaining flags of the HTTP transaction
4727 - CLEANUP: channel: Remove the unused flag CF_WAKE_CONNECT
4728 - CLEANUP: proto_http: Remove unecessary includes and comments
4729 - CLEANUP: proto_http: Move remaining code from proto_http.c to proto_htx.c
4730 - REORG: proto_htx: Move HTX analyzers & co to http_ana.{c,h} files
4731 - BUG/MINOR: debug: Remove flags CO_FL_SOCK_WR_ENA/CO_FL_SOCK_RD_ENA
4732 - MINOR: proxy: Remove support of the option 'http-tunnel'
4733 - DOC: config: Update as a result of the legacy HTTP removal
4734 - MEDIUM: config: Remove parsing of req* and rsp* directives
4735 - MINOR: proxy: Remove the unused list of block rules
4736 - MINOR: proxy/http_ana: Remove unused req_exp/rsp_exp and req_add/rsp_add lists
4737 - DOC: config: Remove unsupported req* and rsp* keywords
4738 - MINOR: global: Preset tune.max_http_hdr to its default value
4739 - MINOR: http: Don't store raw HTTP errors in chunks anymore
4740 - BUG/MINOR: session: Emit an HTTP error if accept fails only for H1 connection
4741 - BUG/MINOR: session: Send a default HTTP error if accept fails for a H1 socket
4742 - CLEANUP: mux-h2: Remove unused flags H2_SF_CHNK_*
4743 - BUG/MINOR: checks: do not exit tcp-checks from the middle of the loop
4744 - MINOR: config: Warn only if the option http-use-htx is used with "no" prefix
4745 - BUG/MEDIUM: mux-h1: Trim excess server data at the end of a transaction
4746 - MINOR: connection: add conn_get_src() and conn_get_dst()
4747 - MINOR: frontend: switch to conn_get_{src,dst}() for logging and debugging
4748 - MINOR: backend: switch to conn_get_{src,dst}() for port and address mapping
4749 - MINOR: ssl: switch to conn_get_dst() to retrieve the destination address
4750 - MINOR: tcp: replace various calls to conn_get_{from,to}_addr with conn_get_{src,dst}
4751 - MINOR: stream-int: use conn_get_{src,dst} in conn_si_send_proxy()
4752 - MINOR: stream/cli: use conn_get_{src,dst} in "show sess" and "show peers" output
4753 - MINOR: log: use conn_get_{dst,src}() to retrieve the cli/frt/bck/srv/ addresses
4754 - MINOR: http/htx: use conn_get_dst() to retrieve the destination address
4755 - MINOR: lua: use conn_get_{src,dst} to retrieve connection addresses
4756 - MINOR: http: check the source address via conn_get_src() in sample fetch functions
4757 - CLEANUP: connection: remove the now unused conn_get_{from,to}_addr()
4758 - MINOR: connection: add new src and dst fields
4759 - MINOR: connection: use conn->{src,dst} instead of &conn->addr.{from,to}
4760 - MINOR: ssl-sock: use conn->dst instead of &conn->addr.to
4761 - MINOR: lua: switch to conn->dst for a connection's target address
4762 - MINOR: peers: use conn->dst for the peer's target address
4763 - MINOR: htx: switch from conn->addr.{from,to} to conn->{src,dst}
4764 - MINOR: stream: switch from conn->addr.{from,to} to conn->{src,dst}
4765 - MINOR: proxy: switch to conn->src in error snapshots
4766 - MINOR: session: use conn->src instead of conn->addr.from
4767 - MINOR: tcp: replace conn->addr.{from,to} with conn->{src,dst}
4768 - MINOR: unix: use conn->dst for the target address in ->connect()
4769 - MINOR: sockpair: use conn->dst for the target address in ->connect()
4770 - MINOR: log: use conn->{src,dst} instead of conn->addr.{from,to}
4771 - MINOR: checks: replace conn->addr.to with conn->dst
4772 - MINOR: frontend: switch from conn->addr.{from,to} to conn->{src,dst}
4773 - MINOR: http: convert conn->addr.from to conn->src in sample fetches
4774 - MEDIUM: backend: turn all conn->addr.{from,to} to conn->{src,dst}
4775 - MINOR: connection: create a new pool for struct sockaddr_storage
4776 - MEDIUM: connection: make sure all address producers allocate their address
4777 - MAJOR: connection: remove the addr field
4778 - MINOR: connection: don't use clear_addr() anymore, just release the address
4779 - MINOR: stream: add a new target_addr entry in the stream structure
4780 - MAJOR: stream: store the target address into s->target_addr
4781 - MINOR: peers: now remove the remote connection setup code
4782 - MEDIUM: lua: do not allocate the remote connection anymore
4783 - MEDIUM: backend: always release any existing prior connection in connect_server()
4784 - MEDIUM: backend: remove impossible cases from connect_server()
4785 - BUG/MINOR: mux-h1: Close server connection if input data remains in h1_detach()
4786 - BUG/MEDIUM: tcp-checks: do not dereference inexisting conn_stream
4787 - BUG/MINOR: http_ana: Be sure to have an allocated buffer to generate an error
4788 - BUG/MINOR: http_htx: Support empty errorfiles
4789 - BUG/CRITICAL: http_ana: Fix parsing of malformed cookies which start by a delimiter
4790 - BUG/MEDIUM: protocols: add a global lock for the init/deinit stuff
4791 - BUG/MINOR: proxy: always lock stop_proxy()
4792 - MEDIUM: mux-h1: Add the support of headers adjustment for bogus HTTP/1 apps
4793 - BUILD: threads: add the definition of PROTO_LOCK
4794 - BUG/MEDIUM: lb-chash: Fix the realloc() when the number of nodes is increased
4795 - BUG/MEDIUM: streams: Don't switch the SI to SI_ST_DIS if we have data to send.
4796 - BUG/MINOR: log: make sure writev() is not interrupted on a file output
4797 - DOC: improve the wording in CONTRIBUTING about how to document a bug fix
4798 - MEDIUM: h1: Don't try to subscribe if we managed to read data.
4799 - MEDIUM: h1: Don't wake the H1 tasklet if we got the whole request.
4800 - REGTESTS: checks: exclude freebsd target for tcp-check_multiple_ports.vtc
4801 - BUG/MINOR: hlua/htx: Reset channels analyzers when txn:done() is called
4802 - BUG/MEDIUM: hlua: Check the calling direction in lua functions of the HTTP class
4803 - MINOR: hlua: Don't set request analyzers on response channel for lua actions
4804 - MINOR: hlua: Add a flag on the lua txn to know in which context it can be used
4805 - BUG/MINOR: hlua: Only execute functions of HTTP class if the txn is HTTP ready
4806 - BUG/MINOR: htx: Fix free space addresses calculation during a block expansion
4807 - MINOR: ssl: merge ssl_sock_load_cert_file() and ssl_sock_load_cert_chain_file()
4808 - MEDIUM: ssl: use cert_key_and_chain struct in ssl_sock_load_cert_file()
4809 - MEDIUM: ssl: split the loading of the certificates
4810 - MEDIUM: ssl: lookup and store in a ckch_node tree
4811 - MEDIUM: ssl: load DH param in struct cert_key_and_chain
4812 - BUG/MAJOR: queue/threads: avoid an AB/BA locking issue in process_srv_queue()
4813 - MINOR: ssl: use STACK_OF for chain certs
4814 - MINOR: ssl: add extra chain compatibility
4815 - MINOR: ssl: check private key consistency in loading
4816 - MINOR: ssl: do not look at DHparam with OPENSSL_NO_DH
4817 - CLEANUP: ssl: ssl_sock_load_crt_file_into_ckch
4818 - MINOR: ssl: clean ret variable in ssl_sock_load_ckchn
4819 - MAJOR: fd: Get rid of the fd cache.
4820 - MEDIUM: pollers: Remember the state for read and write for each threads.
4821 - MEDIUM: mux-h2: don't try to read more than needed
4822 - BUG/BUILD: ssl: fix build with openssl < 1.0.2
4823 - BUG/MEDIUM: ssl: does not try to free a DH in a ckch
4824 - BUG/MINOR: debug: fix a small race in the thread dumping code
4825 - MINOR: wdt: also consider that waiting in the thread dumper is normal
4826 - REGTESTS: checks: make 4be_1srv_health_checks more reliable
4827 - BUILD: ssl: BoringSSL add EVP_PKEY_base_id
4828 - BUG/MEDIUM: ssl: don't free the ckch in multi-cert bundle
4829 - BUG/MINOR: ssl: fix ressource leaks on error
4830 - BUG/MEDIUM: lb-chash: Ensure the tree integrity when server weight is increased
4831 - BUG/MAJOR: http/sample: use a static buffer for raw -> htx conversion
4832 - BUG/MINOR: stream-int: make sure to always release empty buffers after sending
4833 - BUG/MEDIUM: ssl: open the right path for multi-cert bundle
4834 - BUG/MINOR: stream-int: also update analysers timeouts on activity
4835 - BUG/MEDIUM: mux-h2: unbreak receipt of large DATA frames
4836 - BUG/MEDIUM: mux-h2: split the stream's and connection's window sizes
4837 - BUG/MEDIUM: proxy: Make sure to destroy the stream on upgrade from TCP to H2
4838 - DOC: Add 'Question.md' issue template, discouraging asking questions
4839 - BUG/MEDIUM: fd: Always reset the polled_mask bits in fd_dodelete().
4840 - BUG/MEDIUM: pollers: Clear the poll_send bits as well.
4841 - BUILD: travis-ci: enable daily Coverity scan
4842 - BUG/MINOR: mux-h2: don't refrain from sending an RST_STREAM after another one
4843 - BUG/MINOR: mux-h2: use CANCEL, not STREAM_CLOSED in h2c_frt_handle_data()
4844 - BUG/MINOR: mux-h2: do not send REFUSED_STREAM on aborted uploads
4845 - BUG/MEDIUM: mux-h2: do not recheck a frame type after a state transition
4846 - BUG/MINOR: mux-h2: always send stream window update before connection's
4847 - BUG/MINOR: mux-h2: always reset rcvd_s when switching to a new frame
4848 - BUG/MEDIUM: checks: make sure to close nicely when we're the last to speak
4849 - BUG/MEDIUM: stick-table: Wrong stick-table backends parsing.
4850 - CLEANUP: mux-h2: move the demuxed frame check code in its own function
4851 - MINOR: cache: add method to cache hash
4852 - MINOR: cache: allow caching of OPTIONS request
4853 - BUG/MINOR: ssl: fix 0-RTT for BoringSSL
4854 - MINOR: ssl: ssl_fc_has_early should work for BoringSSL
4855 - BUG/MINOR: pools: don't mark the thread harmless if already isolated
4856 - BUG/MINOR: buffers/threads: always clear a buffer's head before releasing it
4857 - CLEANUP: buffer: replace b_drop() with b_free()
4858 - CLEANUP: task: move the cpu_time field to the task-only part
4859 - MINOR: cli: add two new states to print messages on the CLI
4860 - MINOR: cli: add cli_msg(), cli_err(), cli_dynmsg(), cli_dynerr()
4861 - CLEANUP: cli: replace all occurrences of manual handling of return messages
4862 - BUG/MEDIUM: proxy: Don't forget the SF_HTX flag when upgrading TCP=>H1+HTX.
4863 - BUG/MEDIUM: proxy: Don't use cs_destroy() when freeing the conn_stream.
4864 - BUG/MINOR: lua: fix setting netfilter mark
4865 - BUG/MINOR: Fix prometheus '# TYPE' and '# HELP' headers
4866 - BUG/MEDIUM: lua: Fix test on the direction to set the channel exp timeout
4867 - BUG/MINOR: stats: Wait the body before processing POST requests
4868 - MINOR: fd: make sure to mark the thread as not stuck in fd_update_events()
4869 - BUG/MEDIUM: mux_pt: Don't call unsubscribe if we did not subscribe.
4870 - BUILD: travis-ci: trigger non-mainstream configurations only on daily builds.
4871 - MINOR: debug: indicate the applet name when the task is task_run_applet()
4872 - MINOR: tools: add append_prefixed_str()
4873 - MINOR: lua: export applet and task handlers
4874 - MEDIUM: debug: make the thread dump code show Lua backtraces
4875 - BUG/MEDIUM: h1: Always try to receive more in h1_rcv_buf().
4876 - MINOR: list: add LIST_SPLICE() to merge one list into another
4877 - MINOR: tools: add a DEFNULL() macro to use NULL for empty args
4878 - REORG: trace: rename trace.c to calltrace.c and mention it's not thread-safe
4879 - MINOR: sink: create definitions a minimal code for event sinks
4880 - MINOR: sink: add a support for file descriptors
4881 - MINOR: trace: start to create a new trace subsystem
4882 - MINOR: trace: add allocation of buffer-sized trace buffers
4883 - MINOR: trace/cli: register the "trace" CLI keyword to list the sources
4884 - MINOR: trace/cli: parse the "level" argument to configure the trace verbosity
4885 - MINOR: trace/cli: add "show trace" to report trace state and statistics
4886 - MINOR: trace: implement a very basic trace() function
4887 - MINOR: trace: add the file name and line number in the prefix
4888 - MINOR: trace: make trace() now also take a level in argument
4889 - MINOR: trace: implement a call to a decode function
4890 - MINOR: trace: add per-level macros to produce traces
4891 - MINOR: trace: add a definition of typed arguments to trace()
4892 - MINOR: trace: make sure to always stop the locking when stopping or pausing
4893 - MINOR: trace: add the possibility to lock on some arguments
4894 - MINOR: trace: parse the "lock" argument to trace
4895 - MINOR: trace: retrieve useful pointers and enforce lock-on
4896 - DOC: management: document the "trace" and "show trace" commands
4897 - BUILD: trace: make the lockon_ptr const to silence a warning without threads
4898 - BUG/MEDIUM: mux-h1: do not truncate trailing 0CRLF on buffer boundary
4899 - BUG/MEDIUM: mux-h1: do not report errors on transfers ending on buffer full
4900 - DOC: fixed typo in management.txt
4901 - BUG/MINOR: mworker: disable SIGPROF on re-exec
4902 - BUG/MEDIUM: listener/threads: fix an AB/BA locking issue in delete_listener()
4903 - BUG/MEDIUM: url32 does not take the path part into account in the returned hash.
4904 - MINOR: backend: Add srv_queue converter
4905 - MINOR: sink: set the fd-type sinks to non-blocking
4906 - MINOR: tools: add a function varint_bytes() to report the size of a varint
4907 - MINOR: buffer: add functions to read/write varints from/to buffers
4908 - MINOR: fd: add fd_write_frag_line() to send a fragmented line to an fd
4909 - MINOR: sink: now call the generic fd write function
4910 - MINOR: ring: add a new mechanism for retrieving/storing ring data in buffers
4911 - MINOR: ring: add a ring_write() function
4912 - MINOR: ring: add a generic CLI io_handler to dump a ring buffer
4913 - MINOR: sink: add support for ring buffers
4914 - MINOR: sink: implement "show events" to show supported sinks and dump the rings
4915 - MINOR: sink: now report the number of dropped events on output
4916 - MINOR: trace: support a default callback for the source
4917 - MINOR: trace: extend the source location to 13 chars
4918 - MINOR: trace: show thread number and source name in the trace
4919 - MINOR: trace: change the TRACE() calling convention to put the args and cb last
4920 - MINOR: connection: add the fc_pp_authority fetch -- authority TLV, from PROXYv2
4921 - MINOR: tools: add a generic struct "name_desc" for name-description pairs
4922 - MINOR: trace: replace struct trace_lockon_args with struct name_desc
4923 - MINOR: trace: change the "payload" level to "data" and move it
4924 - MINOR: trace: prepend the function name for developer level traces
4925 - MINOR: trace: also report the trace level in the output
4926 - MINOR: trace: change the detail_level to per-source verbosity
4927 - MINOR: mux-h2/trace: register a new trace source with its events
4928 - MINOR: mux-h2/trace: add the default decoding callback
4929 - MEDIUM: mux-h2/trace: add lots of traces all over the code
4930 - MINOR: mux-h2: add functions to convert an h2c/h2s state to a string
4931 - MINOR: mux-h2/trace: add a new verbosity level "clean"
4932 - MINOR: mux-h2/trace: only decode the start-line at verbosity other than "minimal"
4933 - MINOR: mux-h2/trace: always report the h2c/h2s state and flags
4934 - MINOR: mux-h2/trace: report h2s->id before h2c->dsi for the stream ID
4935 - CLEANUP: mux-h2/trace: reformat the "received" messages for better alignment
4936 - CLEANUP: mux-h2/trace: lower-case event names
4937 - MINOR: trace: extend default event names to 12 chars
4938 - BUG/MINOR: ring: fix the way watchers are counted
4939 - MINOR: cli: extend the CLI context with a list and two offsets
4940 - MINOR: mux-h2/trace: report the connection pointer and state before FRAME_H
4941 - MEDIUM: ring: implement a wait mode for watchers
4942 - BUG/MEDIUM: mux-h2/trace: do not dereference h2c->conn after failed idle
4943 - BUG/MEDIUM: mux-h2/trace: fix missing braces added with traces
4944 - BUG/MINOR: ring: b_peek_varint() returns a uint64_t, not a size_t
4945 - CLEANUP: fd: remove leftovers of the fdcache
4946 - MINOR: fd: add a new "initialized" bit in the fdtab struct
4947 - MINOR: fd/log/sink: make the non-blocking initialization depend on the initialized bit
4948 - MEDIUM: log: use the new generic fd_write_frag_line() function
4949 - MINOR: log: add a target type instead of hacking the address family
4950 - MEDIUM: log: add support for logging to a ring buffer
4951 - MINOR: send-proxy-v2: sends authority TLV according to TLV received
4952 - MINOR: build: add linux-glibc-legacy build TARGET
4953 - BUG/MEDIUM: peers: local peer socket not bound.
4954 - BUILD: connection: silence gcc warning with extra parentheses
4955 - BUG/MINOR: http-ana: Reset response flags when 1xx messages are handled
4956 - BUG/MINOR: h1: Properly reset h1m when parsing is restarted
4957 - BUG/MINOR: mux-h1: Fix size evaluation of HTX messages after headers parsing
4958 - BUG/MINOR: mux-h1: Don't stop anymore input processing when the max is reached
4959 - BUG/MINOR: mux-h1: Be sure to update the count before adding EOM after trailers
4960 - BUG/MEDIUM: cache: Properly copy headers splitted on several shctx blocks
4961 - BUG/MEDIUM: cache: Don't cache objects if the size of headers is too big
4962 - BUG/MINOR: mux-h1: Fix a possible null pointer dereference in h1_subscribe()
4963 - MEDIUM: fd: remove the FD_EV_POLLED status bit
4964 - MEDIUM: fd: simplify the fd_*_{recv,send} functions using BTS/BTR
4965 - MINOR: fd: make updt_fd_polling() a normal function
4966 - CONTRIB: debug: add new program "poll" to test poll() events
4967 - BUG/MINOR: checks: stop polling for write when we have nothing left to send
4968 - BUG/MINOR: checks: start sending the request right after connect()
4969 - BUG/MINOR: checks: make __event_chk_srv_r() report success before closing
4970 - BUG/MINOR: checks: do not uselessly poll for reads before the connection is up
4971 - BUG/MINOR: mux-h1: Fix a UAF in cfg_h1_headers_case_adjust_postparser()
4972 - BUILD: CI: add basic CentOS 6 cirrus build
4973 - MINOR: contrib/prometheus-exporter: Report DRAIN/MAINT/NOLB status for servers
4974 - BUG/MINOR: lb/leastconn: ignore the server weights for empty servers
4975 - BUG/MAJOR: ssl: ssl_sock was not fully initialized.
4976 - MEDIUM: fd: mark the FD as ready when it's inserted
4977 - MINOR: fd: add two new calls fd_cond_{recv,send}()
4978 - MEDIUM: connection: enable reading only once the connection is confirmed
4979 - MINOR: fd: add two flags ERR and SHUT to describe FD states
4980 - MEDIUM: fd: do not use the FD_POLL_* flags in the pollers anymore
4981 - BUG/MEDIUM: connection: don't keep more idle connections than ever needed
4982 - MINOR: stats: report the number of idle connections for each server
4983 - BUILD: CI: skip reg-tests/connection/proxy_protocol_random_fail.vtc on CentOS 6
4984 - BUILD/MINOR: auth: enabling for osx
4985 - BUG/MINOR: listener: Fix a possible null pointer dereference
4986 - BUG/MINOR: ssl: always check for ssl connection before getting its XPRT context
4987 - MINOR: stats: Add JSON export from the stats page
4988 - BUG/MINOR: filters: Properly set the HTTP status code on analysis error
4989 - MINOR: sample: Add UUID-fetch
4990 - CLEANUP: mux-h2: Remove unused flag H2_SF_DATA_CHNK
4991 - BUG/MINOR: acl: Fix memory leaks when an ACL expression is parsed
4992 - BUG/MINOR: backend: Fix a possible null pointer dereference
4993 - BUG/MINOR: Missing stat_field_names (since f21d17bb)
4994 - BUG/MEDIUM: stick-table: Properly handle "show table" with a data type argument
4995 - BUILD: CI: temporarily disable ASAN
4996 - MINOR: htx: Add a flag on HTX message to report processing errors
4997 - MINOR: mux-h1: Report a processing error during output processing
4998 - MINOR: http-ana: Handle HTX errors first during message analysis
4999 - MINOR: http-ana: Remove err_state field from http_msg
5000 - MINOR: config: Support per-proxy and per-server deinit functions callbacks
5001 - MINOR: config: Support per-proxy and per-server post-check functions callbacks
5002 - MINOR: http_fetch: Add sample fetches to get auth method/user/pass
5003 - MINOR: istbuf: Add the function b_isteqi()
5004 - MINOR: log: Provide a function to emit a log for an application
5005 - MINOR: http: Add function to parse value of the header Status
5006 - MEDIUM: mux-h1/h1-htx: move HTX convertion of H1 messages in dedicated file
5007 - MINOR: h1-htx: Use the same function to copy message payload in all cases
5008 - MINOR: muxes/htx: Ignore pseudo header during message formatting
5009 - MINOR: fcgi: Add code related to FCGI protocol
5010 - MEDIUM: fcgi-app: Add FCGI application and filter
5011 - MEDIUM: mux-fcgi: Add the FCGI multiplexer
5012 - MINOR: doc: Add documentation about the FastCGI support
5013 - BUG/MINOR: build: Fix compilation of mux_fcgi.c when compiled without SSL
5014 - BUILD: CI: install golang-1.13 when building BoringSSL
5015 - BUG/MINOR: mux-h2: Be sure to have a connection to unsubcribe
5016 - BUG/MINOR: mux-fcgi: Be sure to have a connection to unsubcribe
5017 - CLEANUP: fcgi-app: Remove useless test on fcgi_conf pointer
5018 - BUG/MINOR: mux-fcgi: Don't compare the filter name in its parsing callback
5019 - BUG/MAJOR: mux-h2: Handle HEADERS frames received after a RST_STREAM frame
5020 - BUG/MEDIUM: check/threads: make external checks run exclusively on thread 1
5021 - MEDIUM: list: Separate "locked" list from regular list.
5022 - MINOR: mt_lists: Add new macroes.
5023 - MEDIUM: servers: Use LIST_DEL_INIT() instead of LIST_DEL().
5024 - MINOR: mt_lists: Do nothing in MT_LIST_ADD/MT_LIST_ADDQ if already in list.
5025 - MINOR: mt_lists: Give MT_LIST_ADD, MT_LIST_ADDQ and MT_LIST_DEL a return value.
5026 - MEDIUM: tasklets: Make the tasklet list a struct mt_list.
5027 - TESTS: Add a stress-test for mt_lists.
5028 - BUILD: travis-ci: add PCRE2, SLZ build
5029 - BUG/MINOR: build: fix event ports (Solaris)
5030 - BUG/MEDIUM: namespace: fix fd leak in master-worker mode
5031 - OPTIM: listeners: use tasklets for the multi-queue rings
5032 - BUILD: makefile: work around yet another GCC fantasy (-Wstring-plus-int)
5033 - BUG/MINOR: stream-int: Process connection/CS errors first in si_cs_send()
5034 - BUG/MEDIUM: stream-int: Process connection/CS errors during synchronous sends
5035 - BUG/MEDIUM: checks: make sure the connection is ready before trying to recv
5036 - CLEANUP: task: remove impossible test
5037 - CLEANUP: task: cache the task_per_thread pointer
5038 - MINOR: task: split the tasklet vs task code in process_runnable_tasks()
5039 - MINOR: task: introduce a thread-local "sched" variable for local scheduler stuff
5040 - CLEANUP: mux-fcgi: Remove the unused function fcgi_strm_id()
5041 - BUG/MINOR: mux-fcgi: Use a literal string as format in app_log()
5042 - BUG/MEDIUM: tasklets: Make sure we're waking the target thread if it sleeps.
5043 - MINOR: h2/trace: indicate 'F' or 'B' to locate the side of an h2c in traces
5044 - MINOR: h2/trace: report the frame type when known
5045 - BUG/MINOR: mux-h2: do not wake up blocked streams before the mux is ready
5046 - BUG/MEDIUM: namespace: close open namespaces during soft shutdown
5047 - MINOR: time: add timeofday_as_iso_us() to return instant time as ISO
5048 - MINOR: sink: finally implement support for SINK_FMT_{TIMED,ISO}
5049 - MINOR: sink: change ring buffer "buf0"'s format to "timed"
5050 - BUG/MEDIUM: mux-h2: don't reject valid frames on closed streams
5051 - BUG/MINOR: mux-fcgi: silence a gcc warning about null dereference
5052 - BUG/MINOR: mux-h2: Fix missing braces because of traces in h2_detach()
5053 - BUG/MINOR: mux-h2: Use the dummy error when decoding headers for a closed stream
5054 - BUG/MAJOR: mux_h2: Don't consume more payload than received for skipped frames
5055 - BUG/MINOR: mux-h1: Do h2 upgrade only on the first request
5056 - BUG/MEDIUM: spoe: Use a different engine-id per process
5057 - MINOR: spoe: Improve generation of the engine-id
5058 - MINOR: spoe: Support the async mode with several threads
5059 - MINOR: http: Add server name header from HTTP multiplexers
5060 - CLEANUP: http-ana: Remove the unused function http_send_name_header()
5061 - MINOR: stats: Add the support of float fields in stats
5062 - BUG/MINOR: contrib/prometheus-exporter: Return the time averages in seconds
5063 - DOC: Fix documentation about the cli command to get resolver stats
5064 - BUG/MEDIUM: fcgi: fix missing list tail in sample fetch registration
5065 - BUG/MINOR: stats: Add a missing break in a switch statement
5066 - BUG/MINOR: lua: Properly initialize the buffer's fields for string samples in hlua_lua2(smp|arg)
5067 - CLEANUP: lua: Get rid of obsolete (size_t *) cast in hlua_lua2(smp|arg)
5068 - BUG/MEDIUM: lua: Store stick tables into the sample's `t` field
5069 - CLEANUP: proxy: Remove `proxy_tbl_by_name`
5070 - BUILD: ssl: fix a warning when built with openssl < 1.0.2
5071 - DOC: replace utf-8 quotes by ascii ones
5072 - BUG/MEDIUM: fd: HUP is an error only when write is active
5073 - BUG/MINOR: action: do-resolve does not yield on requests with body
5074 - Revert "MINOR: cache: allow caching of OPTIONS request"
5075
Willy Tarreaudb514072019-07-16 19:15:28 +020050762019/07/16 : 2.1-dev1
5077 - BUG/MEDIUM: h2/htx: Update data length of the HTX when the cookie list is built
5078 - DOC: this is a development branch again.
5079 - MEDIUM: Make 'block' directive fatal
5080 - MEDIUM: Make 'redispatch' directive fatal
5081 - MEDIUM: Make '(cli|con|srv)timeout' directive fatal
5082 - MEDIUM: Remove 'option independant-streams'
5083 - MINOR: sample: Add sha2([<bits>]) converter
5084 - MEDIUM: server: server-state global file stored in a tree
5085 - BUG/MINOR: lua/htx: Make txn.req_req_* and txn.res_rep_* HTX aware
5086 - BUG/MINOR: mux-h1: Add the header connection in lower case in outgoing messages
5087 - BUG/MEDIUM: compression: Set Vary: Accept-Encoding for compressed responses
5088 - MINOR: htx: Add the function htx_change_blk_value_len()
5089 - BUG/MEDIUM: htx: Fully update HTX message when the block value is changed
5090 - BUG/MEDIUM: mux-h2: Reset padlen when several frames are demux
5091 - BUG/MEDIUM: mux-h2: Remove the padding length when a DATA frame size is checked
5092 - BUG/MEDIUM: lb_fwlc: Don't test the server's lb_tree from outside the lock
5093 - BUG/MAJOR: sample: Wrong stick-table name parsing in "if/unless" ACL condition.
5094 - BUILD: mworker: silence two printf format warnings around getpid()
5095 - BUILD: makefile: use :space: instead of digits to count commits
5096 - BUILD: makefile: adjust the sed expression of "make help" for solaris
5097 - BUILD: makefile: do not rely on shell substitutions to determine git version
5098 - BUG/MINOR: mworker-prog: Fix segmentation fault during cfgparse
5099 - BUG/MINOR: spoe: Fix memory leak if failing to allocate memory
5100 - BUG/MEDIUM: mworker: don't call the thread and fdtab deinit
5101 - BUG/MEDIUM: stream_interface: Don't add SI_FL_ERR the state is < SI_ST_CON.
5102 - BUG/MEDIUM: connections: Always add the xprt handshake if needed.
5103 - BUG/MEDIUM: ssl: Don't do anything in ssl_subscribe if we have no ctx.
5104 - BUG/MEDIUM: mworker/cli: command pipelining doesn't work anymore
5105 - BUG/MINOR: htx: Save hdrs_bytes when the HTX start-line is replaced
5106 - BUG/MAJOR: mux-h1: Don't crush trash chunk area when outgoing message is formatted
5107 - BUG/MINOR: memory: Set objects size for pools in the per-thread cache
5108 - BUG/MINOR: log: Detect missing sampling ranges in config
5109 - BUG/MEDIUM: proto_htx: Don't add EOM on 1xx informational messages
5110 - BUG/MEDIUM: mux-h1: Use buf_room_for_htx_data() to detect too large messages
5111 - BUG/MINOR: mux-h1: Make format errors during output formatting fatal
5112 - BUG/MEDIUM: ssl: Don't attempt to set alpn if we're not using SSL.
5113 - BUG/MEDIUM: mux-h1: Always release H1C if a shutdown for writes was reported
5114 - BUG/MINOR: mworker/cli: don't output a \n before the response
5115 - BUG/MEDIUM: checks: unblock signals in external checks
5116 - BUG/MINOR: mux-h1: Skip trailers for non-chunked outgoing messages
5117 - BUG/MINOR: mux-h1: Don't return the empty chunk on HEAD responses
5118 - BUG/MEDIUM: connections: Always call shutdown, with no linger.
5119 - BUG/MEDIUM: checks: Make sure the tasklet won't run if the connection is closed.
5120 - BUG/MINOR: contrib/prometheus-exporter: Don't use channel_htx_recv_max()
5121 - BUG/MINOR: hlua: Don't use channel_htx_recv_max()
5122 - BUG/MEDIUM: channel/htx: Use the total HTX size in channel_htx_recv_limit()
5123 - BUG/MINOR: hlua/htx: Respect the reserve when HTX data are sent
5124 - BUG/MINOR: contrib/prometheus-exporter: Respect the reserve when data are sent
5125 - BUG/MEDIUM: connections: Make sure we're unsubscribe before upgrading the mux.
5126 - BUG/MEDIUM: servers: Authorize tfo in default-server.
5127 - BUG/MEDIUM: sessions: Don't keep an extra idle connection in sessions.
5128 - MINOR: server: Add "no-tfo" option.
5129 - BUG/MINOR: contrib/prometheus-exporter: Don't try to add empty data blocks
5130 - MINOR: action: Add the return code ACT_RET_DONE for actions
5131 - BUG/MEDIUM: http/applet: Finish request processing when a service is registered
5132 - BUG/MEDIUM: lb_fas: Don't test the server's lb_tree from outside the lock
5133 - BUG/MEDIUM: mux-h1: Handle TUNNEL state when outgoing messages are formatted
5134 - BUG/MINOR: mux-h1: Don't process input or ouput if an error occurred
5135 - MINOR: stream-int: Factorize processing done after sending data in si_cs_send()
5136 - BUG/MEDIUM: stream-int: Don't rely on CF_WRITE_PARTIAL to unblock opposite si
5137 - DOC: contrib: spoa_server Add some hints for building spoa_server
5138 - DOC: Fix typo in intro.txt
5139 - BUG/MEDIUM: servers: Don't forget to set srv_cs to NULL if we can't reuse it.
5140 - BUG/MINOR: ssl: revert empty handshake detection in OpenSSL <= 1.0.2
5141 - MINOR: pools: release the pool's lock during the malloc/free calls
5142 - MINOR: pools: always pre-initialize allocated memory outside of the lock
5143 - MINOR: pools: make the thread harmless during the mmap/munmap syscalls
5144 - BUG/MEDIUM: fd/threads: fix excessive CPU usage on multi-thread accept
5145 - BUG/MINOR: server: Be really able to keep "pool-max-conn" idle connections
5146 - BUG/MEDIUM: checks: Don't attempt to read if we destroyed the connection.
5147 - BUG/MEDIUM: da: cast the chunk to string.
5148 - DOC: Fix typos and grammer in configuration.txt
5149 - CLEANUP: proto_tcp: Remove useless header inclusions.
5150 - BUG/MEDIUM: servers: Fix a race condition with idle connections.
5151 - MINOR: task: introduce work lists
5152 - BUG/MAJOR: listener: fix thread safety in resume_listener()
5153 - BUG/MEDIUM: mux-h1: Don't release h1 connection if there is still data to send
5154 - BUG/MINOR: mux-h1: Correctly report Ti timer when HTX and keepalives are used
5155 - BUG/MEDIUM: streams: Don't give up if we couldn't send the request.
5156 - BUG/MEDIUM: streams: Don't redispatch with L7 retries if redispatch isn't set.
5157 - BUG/MINOR: mux-pt: do not pretend there's more data after a read0
5158 - BUG/MEDIUM: tcp-check: unbreak multiple connect rules again
5159 - MEDIUM: mworker-prog: Add user/group options to program section
5160 - REGTESTS: checks: tcp-check connect to multiple ports
5161 - BUG/MEDIUM: threads: cpu-map designating a single thread/process are ignored
5162
Willy Tarreau9dc6b972019-06-16 21:49:47 +020051632019/06/16 : 2.1-dev0
5164 - exact copy of 2.0.0
5165
Willy Tarreauba236302019-06-16 20:00:26 +020051662019/06/16 : 2.0.0
5167 - MINOR: fd: Don't use atomic operations when it's not needed.
5168 - DOC: mworker-prog: documentation for the program section
5169 - MINOR: http: add a new "http-request replace-uri" action
5170 - BUG/MINOR: 51d/htx: The _51d_fetch method, and the methods it calls are now HTX aware.
5171 - MINOR: 51d: Added dummy libraries for the 51Degrees module for testing.
5172 - MINOR: mworker: change formatting in uptime field of "show proc"
5173 - MINOR: mworker: add the HAProxy version in "show proc"
5174 - MINOR: doc: Remove -Ds option in man page
5175 - MINOR: doc: add master-worker in the man page
5176 - MINOR: doc: mention HAPROXY_LOCALPEER in the man
5177 - BUILD: Silence gcc warning about unused return value
5178 - CLEANUP: 51d: move the 51d dummy lib to contrib/51d/src to match the real lib
5179 - BUILD: travis-ci: add 51Degree device detection, update openssl to 1.1.1c
5180 - MINOR: doc: update the manpage and usage message about -S
5181 - BUILD/MINOR: 51d: Updated build registration output to indicate thatif the library is a dummy one or not.
5182 - BUG/MEDIUM: h1: Don't wait for handshake if we had an error.
5183 - BUG/MEDIUM: h1: Wait for the connection if the handshake didn't complete.
5184 - BUG/MINOR: task: prevent schedulable tasks from starving under high I/O activity
5185 - BUG/MINOR: fl_trace/htx: Be sure to always forward trailers and EOM
5186 - BUG/MINOR: channel/htx: Call channel_htx_full() from channel_full()
5187 - BUG/MINOR: http: Use the global value to limit the number of parsed headers
5188 - BUG/MINOR: htx: Detect when tail_addr meet end_addr to maximize free rooms
5189 - BUG/MEDIUM: htx: Don't change position of the first block during HTX analysis
5190 - CLEANUP: channel: Remove channel_htx_fwd_payload() and channel_htx_fwd_all()
5191 - BUG/MEDIUM: proto_htx: Introduce the state ENDING during forwarding
5192 - MINOR: htx: Add 3 flags on the start-line to deal with the request schemes
5193 - MINOR: h2: Set flags about the request's scheme on the start-line
5194 - MINOR: mux-h1: Set flags about the request's scheme on the start-line
5195 - MINOR: mux-h2: Forward clients scheme to servers checking start-line flags
5196 - MEDIUM: server: server-state only rely on server name
5197 - CLEANUP: connection: rename the wait_event.task field to .tasklet
5198 - CLEANUP: tasks: rename task_remove_from_tasklet_list() to tasklet_remove_*
5199 - BUG/MEDIUM: connections: Don't call shutdown() if we want to disable linger.
5200 - DOC: add some environment variables in section 2.3
5201 - BUILD: makefile: clarify the "help" output and list options
5202 - BUG/MINOR: mux-h1: Wake busy mux for I/O when message is fully sent
5203 - BUG: tasks: fix bug introduced by latest scheduler cleanup
5204 - BUG/MEDIUM: mux-h2: fix early close with option abortonclose
5205 - BUG/MEDIUM: connections: Don't use ALPN to pick mux when in mode TCP.
5206 - BUG/MEDIUM: connections: Don't try to send early data if we have no mux.
5207 - BUG/MEDIUM: mux-h2: properly account for the appended data in HTX
5208 - BUILD: makefile: further clarify the "help" output and list targets
5209 - BUILD: makefile: rename "linux2628" to "linux-glibc" and remove older targets
5210 - BUILD: travis-ci: switch to linux-glibc instead of linux2628
5211 - DOC: update few references to the linux* targets and change them to linux-glibc
5212 - BUILD: makefile: detect and reject recently removed linux targets
5213 - BUILD: makefile: enable linux namespaces by default on linux
5214 - BUILD: makefile: enable TFO on linux platforms
5215 - BUILD: makefile: enable getaddrinfo on the linux-glibc target
5216 - DOC: small updates to the CONTRIBUTING file
5217 - BUG/MEDIUM: ssl: Make sure we initiate the handshake after using early data.
5218 - CLEANUP: removed obsolete examples an move a few to better places
5219 - DOC: Fix typos in CONTRIBUTING
5220 - DOC: update the outdated ROADMAP file
5221 - DOC: create a BRANCHES file to explain the life cycle
5222 - DOC: mention in INSTALL haproxy 2.0 is a long-term supported stable version
5223 - BUILD: travis-ci: TFO and GETADDRINFO are now enabled by default
5224 - BUILD: makefile: make the obsolete target detection compatible with make-3.80
5225 - BUILD: tools: work around an internal compiler bug in gcc-3.4
5226 - BUILD: pattern: work around an internal compiler bug in gcc-3.4
5227 - BUILD: makefile: enable USE_RT on Solaris
5228 - BUILD: makefile: do not use echo -n
5229 - DOC: mention a few common build errors in the INSTALL file
5230
Willy Tarreauca3551f2019-06-11 19:28:00 +020052312019/06/11 : 2.0-dev7
5232 - BUG/MEDIUM: mux-h2: make sure the connection timeout is always set
5233 - MINOR: tools: add new bitmap manipulation functions
5234 - MINOR: logs: use the new bitmap functions instead of fd_sets for encoding maps
5235 - MINOR: chunks: Make sure trash_size is only set once.
5236 - Revert "MINOR: chunks: Make sure trash_size is only set once."
5237 - MINOR: threads: serialize threads initialization
5238 - MINOR peers: data structure simplifications for server names dictionary cache.
5239 - DOC: peers: Update for dictionary cache entries for peers protocol.
5240 - MINOR: dict: Store the length of the dictionary entries.
5241 - MINOR: peers: A bit of optimization when encoding cached server names.
5242 - MINOR: peers: Optimization for dictionary cache lookup.
5243 - MEDIUM: tools: improve time format error detection
5244 - BUG/MEDIUM: H1: When upgrading, make sure we don't free the buffer too early.
5245 - BUG/MEDIUM: stream_interface: Make sure we call si_cs_process() if CS_FL_EOI.
5246 - MINOR: threads: avoid clearing harmless twice in thread_release()
5247 - MEDIUM: threads: add thread_sync_release() to synchronize steps
5248 - BUG/MEDIUM: init/threads: prevent initialized threads from starting before others
5249 - OPTIM/MINOR: init/threads: only call protocol_enable_all() on first thread
5250 - BUG/MINOR: dict: race condition fix when inserting dictionary entries.
5251 - MEDIUM: init/threads: don't use spinlocks during the init phase
5252 - BUG/MINOR: cache/htx: Fix the counting of data already sent by the cache applet
5253 - BUG/MEDIUM: compression/htx: Fix the adding of the last data block
5254 - MINOR: flt_trace: Don't scrash the original offset during the random forwarding
5255 - MAJOR: htx: Rework how free rooms are tracked in an HTX message
5256 - MINOR: htx: Add the function htx_move_blk_before()
5257 - Revert "BUG/MEDIUM: H1: When upgrading, make sure we don't free the buffer too early."
5258 - BUG/MINOR: http-rules: mention "deny_status" for "deny" in the error message
5259 - MINOR: http: turn default error files to HTTP/1.1
5260 - BUG/MEDIUM: h1: Don't try to subscribe if we had a connection error.
5261 - BUG/MEDIUM: h1: Don't consider we're connected if the handshake isn't done.
5262 - MINOR: contrib/spoa_server: Upgrade SPOP to 2.0
5263 - BUG/MEDIUM: contrib/spoa_server: Set FIN flag on agent frames
5264 - MINOR: contrib/spoa_server: Add random IP score
5265 - DOC/MINOR: contrib/spoa_server: Fix typo in README
5266
Willy Tarreaub57f1092019-06-07 06:12:59 +020052672019/06/07 : 2.0-dev6
5268 - BUG/MEDIUM: connection: fix multiple handshake polling issues
5269 - MINOR: connection: also stop receiving after a SOCKS4 response
5270 - MINOR: mux-h1: don't try to recv() before the connection is ready
5271 - BUG/MEDIUM: mux-h1: only check input data for the current stream, not next one
5272 - MEDIUM: mux-h1: don't use CS_FL_REOS anymore
5273 - CLEANUP: connection: remove the now unused CS_FL_REOS flag
5274 - CONTRIB: debug: add 4 missing connection/conn_stream flags
5275 - MEDIUM: stream: make a full process_stream() loop when completing I/O on exit
5276 - MINOR: server: increase the default pool-purge-delay to 5 seconds
5277 - BUILD: tools: do not use the weak attribute for trace() on obsolete linkers
5278 - BUG/MEDIUM: vars: make sure the scope is always valid when accessing vars
5279 - BUG/MEDIUM: vars: make the tcp/http unset-var() action support conditions
5280 - BUILD: task: fix a build warning when threads are disabled
5281 - CLEANUP: peers: Remove tabs characters.
5282 - CLEANUP: peers: Replace hard-coded values by macros.
5283 - BUG/MINOR: peers: Wrong stick-table update message building.
5284 - MINOR: dict: Add dictionary new data structure.
5285 - MINOR: peers: Add a LRU cache implementation for dictionaries.
5286 - MINOR: stick-table: Add "server_name" new data type.
5287 - MINOR: cfgparse: Space allocation for "server_name" stick-table data type.
5288 - MINOR: proxy: Add a "server by name" tree to proxy.
5289 - MINOR: server: Add a dictionary for server names.
5290 - MINOR: stream: Stickiness server lookup by name.
5291 - MINOR: peers: Make peers protocol support new "server_name" data type.
5292 - MINOR: stick-table: Make the CLI stick-table handler support dictionary entry data type.
5293 - REGTEST: Add a basic server by name stickiness reg test.
5294 - MINOR: peers: Add dictionary cache information to "show peers" CLI command.
5295 - MINOR: peers: Replace hard-coded for peer protocol 64-bits value encoding by macros.
5296 - MINOR: peers: Replace hard-coded values for peer protocol messaging by macros.
5297 - CLEANUP: ssl: remove unneeded defined(OPENSSL_IS_BORINGSSL)
5298 - BUILD: travis-ci improvements
5299 - MINOR: SSL: add client/server random sample fetches
5300 - BUG/MINOR: channel/htx: Don't alter channel during forward for empty HTX message
5301 - BUG/MINOR: contrib/prometheus-exporter: Add HTX data block in one time
5302 - BUG/MINOR: mux-h1: errflag must be set on H1S and not H1M during output processing
5303 - MEDIUM: mux-h1: refactor output processing
5304 - MINOR: mux-h1: Add the flag HAVE_O_CONN on h1s
5305 - MINOR: mux-h1: Add h1_eval_htx_hdrs_size() to estimate size of the HTX headers
5306 - MINOR: mux-h1: Don't count the EOM in the estimated size of headers
5307 - MEDIUM: cache/htx: Always store info about HTX blocks in the cache
5308 - MEDIUM: htx: Add the parsing of trailers of chunked messages
5309 - MINOR: htx: Don't use end-of-data blocks anymore
5310 - BUG/MINOR: mux-h1: Don't send more data than expected
5311 - BUG/MINOR: flt_trace/htx: Only apply the random forwarding on the message body.
5312 - BUG/MINOR: peers: Wrong "server_name" decoding.
5313 - BUG/MEDIUM: servers: Don't attempt to destroy idle connections if disabled.
5314 - MEDIUM: checks: Make sure we unsubscribe before calling cs_destroy().
5315 - MEDIUM: connections: Wake the upper layer even if sending/receiving is disabled.
5316 - MEDIUM: ssl: Handle subscribe by itself.
5317 - MINOR: ssl: Make ssl_sock_handshake() static.
5318 - MINOR: connections: Add a new xprt method, remove_xprt.
5319 - MINOR: connections: Add a new xprt method, add_xprt().
5320 - MEDIUM: connections: Introduce a handshake pseudo-XPRT.
5321 - MEDIUM: connections: Remove CONN_FL_SOCK*
5322 - BUG/MEDIUM: ssl: Don't forget to initialize ctx->send_recv and ctx->recv_wait.
5323 - BUG/MINOR: peers: Wrong server name parsing.
5324 - MINOR: server: really increase the pool-purge-delay default to 5 seconds
5325 - BUG/MINOR: stream: don't emit a send-name-header in conn error or disconnect states
5326 - MINOR: stream-int: use bit fields to match multiple stream-int states at once
5327 - MEDIUM: stream-int: remove dangerous interval checks for stream-int states
5328 - MEDIUM: stream-int: introduce a new state SI_ST_RDY
5329 - MAJOR: stream-int: switch from SI_ST_CON to SI_ST_RDY on I/O
5330 - MEDIUM: stream-int: make idle-conns switch to ST_RDY
5331 - MEDIUM: stream: re-arrange the connection setup status reporting
5332 - MINOR: stream-int: split si_update() into si_update_rx() and si_update_tx()
5333 - MINOR: stream-int: make si_sync_send() from the send code of si_update_both()
5334 - MEDIUM: stream: rearrange the events to remove the loop
5335 - MEDIUM: stream: only loop on flags relevant to the analysers
5336 - MEDIUM: stream: don't abusively loop back on changes on CF_SHUT*_NOW
5337 - BUILD: stream-int: avoid a build warning in dev mode in si_state_bit()
5338 - BUILD: peers: fix a build warning about an incorrect intiialization
5339 - BUG/MINOR: time: make sure only one thread sets global_now at boot
5340 - BUG/MEDIUM: tcp: Make sure we keep the polling consistent in tcp_probe_connect.
5341
Willy Tarreauabc874e2019-06-02 12:06:08 +020053422019/06/02 : 2.0-dev5
5343 - BUILD: watchdog: use si_value.sival_int, not si_int for the timer's value
5344 - BUILD: signals: FreeBSD has SI_LWP instead of SI_TKILL
5345 - BUILD: watchdog: condition it to USE_RT
5346 - MINOR: raw_sock: report global traffic statistics
5347 - MINOR: stats: report the global output bit rate in human readable form
5348 - BUG/MINOR: proto-htx: Try to keep connections alive on redirect
5349 - BUG/MEDIUM: spoe: Don't use the SPOE applet after releasing it
5350 - BUG/MINOR: lua: Set right direction and flags on new HTTP objects
5351 - BUG/MINOR: mux-h2: Count EOM in bytes sent when a HEADERS frame is formatted
5352 - BUG/MINOR: mux-h1: Report EOI instead EOS on parsing error or H2 upgrade
5353 - BUG/MEDIUM: proto-htx: Not forward too much data when 1xx reponses are handled
5354 - BUG/MINOR: htx: Remove a forgotten while loop in htx_defrag()
5355 - DOC: fix typos
5356 - BUG/MINOR: ssl_sock: Fix memory leak when disabling compression
5357 - OPTIM: freq-ctr: don't take the date lock for most updates
5358 - MEDIUM: mux-h2: avoid doing expensive buffer realigns when not absolutely needed
5359 - CLEANUP: debug: remove the TRACE() macro
5360 - MINOR: buffer: introduce b_make() to make a buffer from its parameters
5361 - MINOR: buffer: add a new buffer ring API to manipulate rings of buffers
5362 - MEDIUM: mux-h2: replace all occurrences of mbuf with a buffer ring
5363 - MEDIUM: mux-h2: make the conditions to send based on mbuf, not just its tail
5364 - MINOR: mux-h2: introduce h2_release_mbuf() to release all buffers in the mbuf ring
5365 - MEDIUM: mux-h2: make the send() function iterate over all mux buffers
5366 - CLEANUP: mux-h2: consistently use a local variable for the mbuf
5367 - MINOR: mux-h2: report the mbuf's head and tail in "show fd"
5368 - MAJOR: mux-h2: switch to next mux buffer on buffer full condition.
5369 - BUILD: connections: shut up gcc about impossible out-of-bounds warning
5370 - BUILD: ssl: fix latest LibreSSL reg-test error
5371 - MINOR: cli/activity: remove "fd_del" and "fd_skip" from show activity
5372 - MINOR: cli/activity: add 3 general purpose counters in development mode
5373 - BUG/MAJOR: lb/threads: make sure the avoided server is not full on second pass
5374 - BUG/MEDIUM: queue: fix the tree walk in pendconn_redistribute.
5375 - BUG/MEDIUM: threads: fix double-word CAS on non-optimized 32-bit platforms
5376 - MEDIUM: config: now alert when two servers have the same name
5377 - MINOR: htx: Remove the macro IS_HTX_SMP() and always use IS_HTX_STRM() instead
5378 - MINOR: htx: Move the macro IS_HTX_STRM() in proto/stream.h
5379 - MINOR: htx: Store the head position instead of the wrap one
5380 - MINOR: htx: Store start-line block's position instead of address of its payload
5381 - MINOR: htx: Add functions to get the first block of an HTX message
5382 - MINOR: mux-h2/htx: Get the start-line from the head when HEADERS frame is built
5383 - MINOR: htx: Replace the function http_find_stline() by http_get_stline()
5384 - CLEANUP: htx: Remove unused function htx_get_stline()
5385 - MINOR: http/htx: Use sl_pos directly to replace the start-line
5386 - MEDIUM: http/htx: Perform analysis relatively to the first block
5387 - MINOR: channel/htx: Call channel_htx_recv_max() from channel_recv_max()
5388 - MINOR: htx: Add function htx_get_max_blksz()
5389 - BUG/MINOR: htx: Change htx_xfer_blk() to also count metadata
5390 - MEDIUM: mux-h1: Use the count value received from the SI in h1_rcv_buf()
5391 - MINOR: mux-h2: Use the count value received from the SI in h2_rcv_buf()
5392 - MINOR: stream-int: Don't use the flag CO_RFL_KEEP_RSV anymore in si_cs_recv()
5393 - MINOR: connection: Remove the unused flag CO_RFL_KEEP_RSV
5394 - MINOR: mux-h2/htx: Support zero-copy when possible in h2_rcv_buf()
5395 - MINOR: htx: Add a field to set the memory used by headers in the HTX start-line
5396 - MINOR: h2/htx: Set hdrs_bytes on the SL when an HTX message is produced
5397 - MINOR: mux-h1: Set hdrs_bytes on the SL when an HTX message is produced
5398 - MINOR: htx: Be sure to xfer all headers in one time in htx_xfer_blks()
5399 - MEDIUM: htx: 1xx messages are now part of the final reponses
5400 - MINOR: channel/htx: Add function to forward headers of an HTX message
5401 - MINOR: filters/htx: Use channel_htx_fwd_headers() after headers filtering
5402 - MINOR: proto-htx: Use channel_htx_fwd_headers() to forward 1xx responses
5403 - MEDIUM: htx: Store the first block position instead of the start-line one
5404 - MINOR: stats/htx: don't use the first block position but the head one
5405 - MINOR: channel/htx: Add functions to forward a part or all HTX payload
5406 - MINOR: proto-htx: Use channel_htx_fwd_all() when unfiltered body are forwarded
5407 - MEDIUM: filters/htx: Filter body relatively to the first block
5408 - MINOR: htx: Optimize htx_drain() when all data are drained
5409 - MINOR: htx: don't rely on htx_find_blk() anymore in the function htx_truncate()
5410 - MINOR: htx: remove the unused function htx_find_blk()
5411 - MINOR: htx: Remove support of pseudo headers because it is unused
5412 - BUG/MEDIUM: http: fix "http-request reject" when not final
5413 - MINOR: ssl: Make sure the underlying xprt's init method doesn't fail.
5414 - MINOR: ssl: Don't forget to call the close method of the underlying xprt.
5415 - MINOR: htx: rename htx_append_blk_value() to htx_add_data_atonce()
5416 - MINOR: htx: make htx_add_data() return the transmitted byte count
5417 - MEDIUM: htx: make htx_add_data() never defragment the buffer
5418 - MINOR: activity: write totals on the "show activity" output
5419 - MINOR: activity: report totals and average separately
5420 - MEDIUM: poller: separate the wait time from the wake events
5421 - MINOR: activity: report the number of failed pool/buffer allocations
5422 - MEDIUM: buffers: relax the buffer lock a little bit
5423 - MINOR: task: turn the WQ lock to an RW_LOCK
5424 - MEDIUM: task: don't grab the WR lock just to check the WQ
5425 - BUG/MEDIUM: mux-h1: Don't skip the TCP splicing when there is no more data to read
5426 - MEDIUM: sessions: Introduce session flags.
5427 - BUG/MEDIUM: h2: Don't forget to set h2s->cs to NULL after having free'd cs.
5428 - BUG/MEDIUM: mux-h2: fix the conditions to end the h2_send() loop
5429 - BUG/MEDIUM: mux-h2: don't refrain from offering oneself a used buffer
5430 - BUG/MEDIUM: connection: Use the session to get the origin address if needed.
5431 - MEDIUM: tasks: Get rid of active_tasks_mask.
5432 - MEDIUM: connection: Upstream SOCKS4 proxy support
5433 - BUILD: contrib/prometheus: fix build breakage caused by move of idle_pct
5434 - BUG/MINOR: deinit/threads: make hard-stop-after perform a clean exit
5435
Willy Tarreau56740692019-05-22 20:48:33 +020054362019/05/22 : 2.0-dev4
5437 - BUILD: enable freebsd builds on cirrus-ci
5438 - BUG/MINOR: http_fetch: Rely on the smp direction for "cookie()" and "hdr()"
5439 - MEDIUM: Make 'option forceclose' actually warn
5440 - MEDIUM: Make 'resolution_pool_size' directive fatal
5441 - DOC: management: place "show activity" at the right place
5442 - MINOR: cli/activity: show the dumping thread ID starting at 1
5443 - MINOR: task: export global_task_mask
5444 - MINOR: cli/debug: add a thread dump function
5445 - BUG/MEDIUM: streams: Don't use CF_EOI to decide if the request is complete.
5446 - BUG/MEDIUM: streams: Try to L7 retry before aborting the connection.
5447 - BUG/MINOR: debug: make ha_task_dump() always check the task before dumping it
5448 - BUG/MINOR: debug: make ha_task_dump() actually dump the requested task
5449 - MINOR: debug: make ha_thread_dump() and ha_task_dump() take a buffer
5450 - BUG/MINOR: debug: don't check the call date on tasklets
5451 - MINOR: thread: implement ha_thread_relax()
5452 - MINOR: task: put barriers after each write to curr_task
5453 - MINOR: task: always reset curr_task when freeing a task or tasklet
5454 - MINOR: stream: detach the stream from its own task on stream_free()
5455 - MEDIUM: debug/threads: implement an advanced thread dump system
5456 - REGTEST: extend the check duration on tls_health_checks and mark it slow
5457 - DOC: fix "successful" typo
5458 - MINOR: init: setenv HAPROXY_CFGFILES
5459 - MINOR: threads/init: synchronize the threads startup
5460 - MEDIUM: init/mworker: make the pipe register function a regular initcall
5461 - CLEANUP: memory: make the fault injection code use the OTHER_LOCK label
5462 - CLEANUP: threads: remove the now unused START_LOCK label
5463 - MINOR: init/threads: make the global threads an array of structs
5464 - MINOR: threads: add each thread's clockid into the global thread_info
5465 - CLEANUP: stream: remove an obsolete debugging test
5466 - MINOR: tools: add dump_hex()
5467 - MINOR: debug: implement ha_panic()
5468 - MINOR: debug/cli: add some debugging commands for developers
5469 - MINOR: tools: provide a may_access() function and make dump_hex() use it
5470 - MINOR: debug: make ha_panic() report threads starting at 1
5471 - REORG: compat: move some integer limit definitions from standard.h to compat.h
5472 - REORG: threads: move the struct thread_info from global.h to hathreads.h
5473 - MINOR: compat: make sure to always define clockid_t
5474 - MINOR: threads: always place the clockid in the struct thread_info
5475 - MINOR: threads: add a thread-local thread_info pointer "ti"
5476 - MINOR: time: move the cpu, mono, and idle time to thread_info
5477 - MINOR: time: add a function to retrieve another thread's cputime
5478 - MINOR: debug: report each thread's cpu usage in "show thread"
5479 - BUILD: threads: only assign the clock_id when supported
5480 - BUILD: makefile: use USE_OBSOLETE_LINKER for solaris
5481 - BUILD: makefile: remove -fomit-frame-pointer optimisation (solaris)
5482 - MAJOR: polling: add event ports support (Solaris)
5483 - BUG/MEDIUM: streams: Don't switch from SI_ST_CON to SI_ST_DIS on read0.
5484 - CLEANUP: time: refine the test on _POSIX_TIMERS
5485 - MINOR: compat: define a new empty type empty_t for non-implemented fields
5486 - CLEANUP: time: switch clockid_t to empty_t when not available
5487 - BUG/MINOR: mworker: Fix memory leak of mworker_proc members
5488 - CLEANUP: objtype: make obj_type() and obj_type_name() take consts
5489 - MINOR: debug: switch to SIGURG for thread dumps
5490 - CLEANUP: threads: really move thread_info to hathreads.c
5491 - MINOR: threads: make threads_{harmless|want_rdv}_mask constant 0 without threads
5492 - CLEANUP: debug: always report harmless/want_rdv even without threads
5493 - MINOR: threads: implement ha_tkill() and ha_tkillall()
5494 - CLEANUP: debug: make use of ha_tkill() and remove ifdefs
5495 - MINOR: stream: introduce a stream_dump() function and use it in stream_dump_and_crash()
5496 - MINOR: debug: dump streams when an applet, iocb or stream is known
5497 - MINOR: threads: add a "stuck" flag to the thread_info struct
5498 - MINOR: threads: add a timer_t per thread in thread_info
5499 - MAJOR: watchdog: implement a thread lockup detection mechanism
5500 - MINOR: stream: remove the cpu time detection from process_stream()
5501 - MINOR: connection: report the mux names in "haproxy -vv"
5502 - CLEANUP: mux-h1: use "H1" and not "h1" as the mux's name
5503 - BUG/MEDIUM: WURFL: segfault in wurfl-get() with missing info.
5504 - MINOR: WURFL: call header_retireve_callback() in dummy library
5505 - MINOR: WURFL: fixed Engine load failed error when wurfl-information-list contains wurfl_root_id
5506 - MINOR: WURFL: shows log messages during module initialization
5507 - MINOR: WURFL: removes heading wurfl-information-separator from wurfl-get-all() and wurfl-get() results
5508 - MINOR: WURFL: wurfl_get() and wurfl_get_all() now return an empty string if device detection fails
5509 - MEDIUM: WURFL: HTX awareness.
5510 - MINOR: WURFL: module version bump to 2.0
5511 - MINOR: WURFL: do not emit warnings when not configured
5512 - CONTRIB: wurfl: address 3 build issues in the wurfl dummy library
5513 - BUG/MEDIUM: init/threads: provide per-thread alloc/free function callbacks
5514 - BUILD: travis: add sanitizers to travis-ci builds
5515 - BUILD: time: remove the test on _POSIX_C_SOURCE
5516 - CLEANUP: build: rename some build macros to use the USE_* ones
5517 - CLEANUP: raw_sock: remove support for very old linux splice bug workaround
5518 - BUG/MEDIUM: dns: make the port numbers unsigned
5519 - MEDIUM: config: deprecate the antique req* and rsp* commands
5520
Willy Tarreaua257a9b2019-05-15 16:51:48 +020055212019/05/15 : 2.0-dev3
5522 - BUG/MINOR: peers: Really close the sessions with no heartbeat.
5523 - CLEANUP: peers: remove useless annoying tabulations.
5524 - CLEANUP: peers: replace timeout constants by macros.
5525 - REGTEST: Enable again reg tests with HEAD HTTP method usage.
5526 - DOC: The option httplog is no longer valid in a backend.
5527 - DOC: peers: Peers protocol documentation update.
5528 - REGTEST: remove unexpected "nbthread" statement from Lua test cases
5529 - BUILD: Makefile: remove 11-years old workarounds for deprecated options
5530 - BUILD: remove 10-years old error message for obsolete option USE_TCPSPLICE
5531 - BUILD: Makefile: remove outdated support for dlmalloc
5532 - BUILD: Makefile: consider a variable's origin and not its value for the options list
5533 - BUILD: Makefile: also report disabled options in the BUILD_OPTIONS variable
5534 - BUILD: Makefile: shorten default settings declaration
5535 - BUILD: Makefile: clean up the target declarations
5536 - BUILD: report the whole feature set with their status in haproxy -vv
5537 - BUILD: pass all "USE_*" variables as -DUSE_* to the compiler
5538 - REGTEST: script: make the script use the new features list
5539 - REGTEST: script: remove platform-specific assigments of OPTIONS
5540 - BUG/MINOR: peers: Missing initializations after peer session shutdown.
5541 - BUG/MINOR: contrib/prometheus-exporter: Fix applet accordingly to recent changes
5542 - BUILD/MINOR: listener: Silent a few signedness warnings.
5543 - BUG/MINOR: mux-h1: Only skip invalid C-L headers on output
5544 - BUG/MEDIUM: mworker: don't free the wrong child when not found
5545 - BUG/MEDIUM: checks: Don't bother subscribing if we have a connection error.
5546 - BUG/MAJOR: checks: segfault during tcpcheck_main
5547 - BUILD: makefile: work around an old bug in GNU make-3.80
5548 - BUILD: makefile: work around another bug in make 3.80
5549 - BUILD: http: properly mark some struct as extern
5550 - BUILD: chunk: properly declare pool_head_trash as extern
5551 - BUILD: cache: avoid a build warning with some compilers/linkers
5552 - MINOR: tools: make memvprintf() never pass a NULL target to vsnprintf()
5553 - MINOR: tools: add an unsetenv() implementation
5554 - BUILD: re-implement an initcall variant without using executable sections
5555 - BUILD: use inttypes.h instead of stdint.h
5556 - BUILD: connection: fix naming of ip_v field
5557 - BUILD: makefile: fix build of IPv6 header on aix51
5558 - BUILD: makefile: add _LINUX_SOURCE_COMPAT to build on AIX-51
5559 - BUILD: define unsetenv on AIX 5.1
5560 - BUILD: Makefile: disable shared cache on AIX 5.1
5561 - MINOR: ssl: Add aes_gcm_dec converter
5562 - REORG: mworker: move serializing functions to mworker.c
5563 - REORG: mworker: move signals functions to mworker.c
5564 - REORG: mworker: move IPC functions to mworker.c
5565 - REORG: mworker: move signal handlers and related functions
5566 - REORG: mworker: move mworker_cleanlisteners to mworker.c
5567 - MINOR: mworker: calloc mworker_proc structures
5568 - MINOR: mworker: don't use children variable anymore
5569 - MINOR: cli: export cli_parse_default() definition in cli.h
5570 - REORG: mworker/cli: move CLI functions to mworker.c
5571 - MEDIUM: mworker-prog: implement program for master-worker
5572 - MINOR: mworker/cli: show programs in 'show proc'
5573 - BUG/MINOR: cli: correctly handle abns in 'show cli sockets'
5574 - MINOR: cli: start addresses by a prefix in 'show cli sockets'
5575 - MINOR: cli: export HAPROXY_CLI environment variable
5576 - BUG/MINOR: htx: Preserve empty HTX messages with an unprocessed parsing error
5577 - BUG/MINOR: proto_htx: Reset to_forward value when a message is set to DONE
5578 - REGTEST: http-capture/h00000: Relax a regex matching the log message
5579 - REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled
5580 - REGTEST: http-rules/h00003: Use a different client for requests expecting a 301
5581 - REGTEST: log/b00000: Be sure the client always hits its timeout
5582 - REGTEST: lua/b00003: Relax the regex matching the log message
5583 - REGTEST: lua/b00003: Specify the HAProxy pid when the command ss is executed
5584 - BUG/MEDIUM: peers: fix a case where peer session is not cleanly reset on release.
5585 - BUG/MEDIUM: h2: Don't attempt to recv from h2_process_demux if we subscribed.
5586 - BUG/MEDIUM: htx: fix random premature abort of data transfers
5587 - BUG/MEDIUM: streams: Don't remove the SI_FL_ERR flag in si_update_both().
5588 - BUG/MEDIUM: streams: Store prev_state before calling si_update_both().
5589 - BUG/MEDIUM: stream: Don't clear the stream_interface flags in si_update_both.
5590 - MINOR: initcall: Don't forget to define the __start/stop_init_##stg symbols.
5591 - MINOR: threads: Implement thread_cpus_enabled() for FreeBSD.
5592 - BUG/MEDIUM: pattern: assign pattern IDs after checking the config validity
5593 - MINOR: skip get_gmtime where tm is unused
5594 - MINOR: ssl: Activate aes_gcm_dec converter for BoringSSL
5595 - BUG/MEDIUM: streams: Only re-run process_stream if we're in a connected state.
5596 - BUG/MEDIUM: stream_interface: Don't bother doing chk_rcv/snd if not connected.
5597 - BUG/MEDIUM: task/threads: address a fairness issue between local and global tasks
5598 - BUG/MINOR: tasks: make sure the first task to be queued keeps its nice value
5599 - BUG/MINOR: listener: renice the accept ring processing task
5600 - MINOR: cli/listener: report the number of accepts on "show activity"
5601 - MINOR: cli/activity: report the accept queue sizes in "show activity"
5602 - BUG/MEDIUM: spoe: Queue message only if no SPOE applet is attached to the stream
5603 - BUG/MEDIUM: spoe: Return an error if nothing is encoded for fragmented messages
5604 - BUG/MINOR: spoe: Be sure to set tv_request when each message fragment is encoded
5605 - BUG/MEDIUM: htx: Defrag if blocks position is changed and the payloads wrap
5606 - BUG/MEDIUM: htx: Don't crush blocks payload when append is done on a data block
5607 - MEDIUM: htx: Deprecate the option 'http-tunnel' and ignore it in HTX
5608 - MINOR: proto_htx: Don't adjust transaction mode anymore in HTX analyzers
5609 - BUG/MEDIUM: htx: Fix the process of HTTP CONNECT with h2 connections
5610 - MINOR: mux-h1: Simplify handling of 1xx responses
5611 - MINOR: stats/htx: Don't add "Connection: close" header anymore in stats responses
5612 - MEDIUM: h1: Add an option to sanitize connection headers during parsing
5613 - MEDIUM: mux-h1: Simplify the connection mode management by sanitizing headers
5614 - MINOR: mux-h1: Don't release the conn_stream anymore when h1s is destroyed
5615 - BUG/MINOR: mux-h1: Handle the flag CS_FL_KILL_CONN during a shutdown read/write
5616 - MINOR: mux-h2: Add a mux_ops dedicated to the HTX mode
5617 - MINOR: muxes: Add a flag to specify a multiplexer uses the HTX
5618 - MINOR: stream: Set a flag when the stream uses the HTX
5619 - MINOR: http: update the macro IS_HTX_STRM() to check the stream flag SF_HTX
5620 - MINOR: http_fetch/htx: Use stream flags instead of px mode in smp_prefetch_htx
5621 - MINOR: filters/htx: Use stream flags instead of px mode to instanciate a filter
5622 - MINOR: muxes: Rely on conn_is_back() during init to handle front/back conn
5623 - MEDIUM: muxes: Add an optional input buffer during mux initialization
5624 - MINOR: muxes: Pass the context of the mux to destroy() instead of the connection
5625 - MEDIUM: muxes: Be prepared to don't own connection during the release
5626 - MEDIUM: connection: Add conn_upgrade_mux_fe() to handle mux upgrades
5627 - MEDIUM: htx: Allow the option http-use-htx to be used on TCP proxies too
5628 - MAJOR: proxy/htx: Handle mux upgrades from TCP to HTTP in HTX mode
5629 - MAJOR: muxes/htx: Handle inplicit upgrades from h1 to h2
5630 - MAJOR: htx: Enable the HTX mode by default for all proxies
5631 - REGTEST: Use HTX by default and add '--no-htx' option to disable it
5632 - BUG/MEDIUM: muxes: Don't dereference mux context if null in release functions
5633 - CLEANUP: task: do not export rq_next anymore
5634 - MEDIUM: tasks: improve fairness between the local and global queues
5635 - MEDIUM: tasks: only base the nice offset on the run queue depth
5636 - MINOR: tasks: restore the lower latency scheduling when niced tasks are present
5637 - BUG/MEDIUM: map: Fix memory leak in the map converter
5638 - BUG/MINOR: ssl: Fix 48 byte TLS ticket key rotation
5639 - BUILD: task/thread: fix single-threaded build of task.c
5640 - BUILD: cli/threads: fix build in single-threaded mode
5641 - BUG/MEDIUM: muxes: Make sure we unsubcribed when destroying mux ctx.
5642 - BUG/MEDIUM: h2: Make sure we're not already in the send_list in h2_subscribe().
5643 - BUG/MEDIUM: h2: Revamp the way send subscriptions works.
5644 - MINOR: connections: Remove the SUB_CALL_UNSUBSCRIBE flag.
5645 - BUG/MEDIUM: Threads: Only use the gcc >= 4.7 builtins when using gcc >= 4.7.
5646 - BUILD: address a few cases of "static <type> inline foo()"
5647 - BUILD: do not specify "const" on functions returning structs or scalars
5648 - BUILD: htx: fix a used uninitialized warning on is_cookie2
5649 - MINOR: peers: Add a new command to the CLI for peers.
5650 - DOC: update for "show peers" CLI command.
5651 - BUG/MAJOR: lb/threads: fix insufficient locking on round-robin LB
5652 - MEDIUM: mworker: store the leaving state of a process
5653 - MEDIUM: mworker-prog: implements 'option start-on-reload'
5654 - CLEANUP: mworker: remove the type field in mworker_proc
5655 - MEDIUM: mworker/cli: export the HAPROXY_MASTER_CLI variable
5656 - MINOR: cli: don't add a semicolon at the end of HAPROXY_CLI
5657 - MINOR: mworker: export HAPROXY_MWORKER=1 when running in mworker mode
5658 - MINOR: init: add a "set-dumpable" global directive to enable core dumps
5659 - BUG/MINOR: listener/mq: correctly scan all bound threads under low load
5660 - BUG/MINOR: mworker: mworker_kill should apply on every children
5661 - BUG/MINOR: mworker: don't exit with an ambiguous value
5662 - BUG/MINOR: mworker: ensure that we still quits with SIGINT
5663 - REGTESTS: exclude tests that require ssl, pcre if no such feature is enabled
5664 - BUG/MINOR: mux-h1: Process input even if the input buffer is empty
5665 - BUG/MINOR: mux-h1: Don't switch the parser in busy mode if other side has done
5666 - BUG/MEDIUM: mux-h1: Notify the stream waiting for TCP splicing if ibuf is empty
5667 - BUG/MEDIUM: mux-h1: Enable TCP splicing to exchange data only
5668 - MINOR: mux-h1: Handle read0 during TCP splicing
5669 - BUG/MEDIUM: htx: Don't return the start-line if the HTX message is empty
5670 - BUG/MAJOR: http_fetch: Get the channel depending on the keyword used
5671 - BUG/MINOR: http_fetch/htx: Allow permissive sample prefetch for the HTX
5672 - BUG/MINOR: http_fetch/htx: Use HTX versions if the proxy enables the HTX mode
5673 - BUG/MEDIUM: tasks: Make sure we set TASK_QUEUED before adding a task to the rq.
5674 - BUG/MEDIUM: tasks: Make sure we modify global_tasks_mask with the rq_lock.
5675 - MINOR: tasks: Don't consider we can wake task with tasklet_wakeup().
5676 - MEDIUM: tasks: No longer use rq.node.leaf_p as a lock.
5677 - MINOR: tasks: Don't set the TASK_RUNNING flag when adding in the tasklet list.
5678 - BUG/MEDIUM: applets: Don't use task_in_rq().
5679 - BUG/MAJOR: task: make sure never to delete a queued task
5680 - MINOR: task/thread: factor out a wake-up condition
5681 - CLEANUP: task: remain consistent when using the task's handler
5682 - MEDIUM: tasks: Merge task_delete() and task_free() into task_destroy().
5683 - MEDIUM: tasks: Don't account a destroyed task as a runned task.
5684 - BUG/MINOR: contrib/prometheus-exporter: Fix a typo in the run-queue metric type
5685 - MINOR: contrib/prometheus-exporter: Remove usless rate metrics
5686 - MINOR: contrib/prometheus-exporter: Rename some metrics to be more usable
5687 - MINOR: contrib/prometheus-exporter: Follow best practices about metrics type
5688 - BUG/MINOR: mworker: disable busy polling in the master process
5689 - MEDIUM: tasks: Use __ha_barrier_store after modifying global_tasks_mask.
5690 - MEDIUM: ssl: Give ssl_sock its own context.
5691 - MEDIUM: connections: Move some fields from struct connection to ssl_sock_ctx.
5692 - MEDIUM: ssl: provide its own subscribe/unsubscribe function.
5693 - MEDIUM: connections: Provide a xprt_ctx for each xprt method.
5694 - MEDIUM: ssl: provide our own BIO.
5695 - BUILD/medium: ssl: Fix build with OpenSSL < 1.1.0
5696 - MINOR: peers: adds counters on show peers about tasks calls.
5697 - MEDIUM: enable travis-ci builds
5698 - MINOR: fd: Add a counter of used fds.
5699 - MEDIUM: connections: Add a way to control the number of idling connections.
5700 - BUG/MEDIUM: maps: only try to parse the default value when it's present
5701 - BUG/MINOR: acl: properly detect pattern type SMP_T_ADDR
5702 - REGTEST: Missing REQUIRE_VERSION declarations.
5703 - MINOR: proto_tcp: tcp-request content: enable set-dst and set-dst-var
5704 - BUG/MEDIUM: h1: Don't parse chunks CRLF if not enough data are available
5705 - BUG/MEDIUM: thread/http: Add missing locks in set-map and add-acl HTTP rules
5706 - BUG/MEDIUM: stream: Don't request a server connection if a shutw was scheduled
5707 - BUG/MINOR: 51d: Get the request channel to call CHECK_HTTP_MESSAGE_FIRST()
5708 - BUG/MINOR: da: Get the request channel to call CHECK_HTTP_MESSAGE_FIRST()
5709 - MINOR: gcc: Fix a silly gcc warning in connect_server()
5710 - MINOR: ssl/cli: async fd io-handlers printable on show fd
5711 - Revert "CLEANUP: wurfl: remove dead, broken and unmaintained code"
5712 - BUILD: add USE_WURFL to the list of known build options
5713 - MINOR: wurfl: indicate in haproxy -vv the wurfl version in use
5714 - BUILD: wurfl: build fix for 1.9/2.0 code base
5715 - CLEANUP: wurfl: removed deprecated methods
5716 - DOC: wurfl: added point of contact in MAINTAINERS file
5717 - MINOR: wurfl: enabled multithreading mode
5718 - MINOR: contrib: dummy wurfl library
5719 - MINOR: dns: dns_requester structures are now in a memory pool
5720 - MINOR: dns: move callback affection in dns_link_resolution()
5721 - MINOR: obj_type: new object type for struct stream
5722 - MINOR: action: new '(http-request|tcp-request content) do-resolve' action
5723 - MINOR: log: Extract some code to send syslog messages.
5724 - REGTEST: replace LEVEL option by a more human readable one.
5725 - REGTEST: rename the reg test files.
5726 - REGTEST: adapt some reg tests after renaming.
5727 - REGTEST: make the "run-regtests" script search for tests in reg-tests by default
5728 - BUG/MAJOR: stream: Missing DNS context initializations.
5729 - BUG/MEDIUM: stream: Fix the way early aborts on the client side are handled
5730 - BUG/MINOR: spoe: Don't systematically wakeup SPOE stream in the applet handler
5731 - BUG/MEDIUM: ssl: Return -1 on recv/send if we got EAGAIN.
5732 - BUG/MAJOR: lb/threads: fix AB/BA locking issue in round-robin LB
5733 - BUG/MAJOR: muxes: Use the HTX mode to find the best mux for HTTP proxies only
5734 - BUG/MINOR: htx: Exclude TCP proxies when the HTX mode is handled during startup
5735 - CLEANUP: task: report calls as unsigned in show sess
5736 - MINOR: tasks/activity: report the context switch and task wakeup rates
5737 - MINOR: stream: measure and report a stream's call rate in "show sess"
5738 - MINOR: applet: measure and report an appctx's call rate in "show sess"
5739 - BUILD: extend Travis CI config to support more platforms
5740 - REGTEST: exclude osx and generic targets for 40be_2srv_odd_health_checks
5741 - REGTEST: relax the IPv6 address format checks in converters_ipmask_concat_strcmp_field_word
5742 - REGTEST: exclude OSX and generic targets from abns_socket.vtc
5743 - BUILD: travis: remove the "allow_failures" entry
5744 - BUG/MINOR: activity: always initialize the profiling variable
5745 - MINOR: activity: make the profiling status per thread and not global
5746 - MINOR: activity: enable automatic profiling turn on/off
5747 - CLEANUP: standard: use proper const to addr_to_str() and port_to_str()
5748 - BUG/MINOR: proto_http: properly reset the stream's call rate on keep-alive
5749 - MINOR: connection: make the debugging helper functions safer
5750 - MINOR: stream/debug: make a stream dump and crash function
5751 - MEDIUM: appctx/debug: force a crash if an appctx spins over itself forever
5752 - MEDIUM: stream/debug: force a crash if a stream spins over itself forever
5753 - MEDIUM: streams: measure processing time and abort when detecting bugs
5754 - BUILD/MEDIUM: contrib: Dummy DeviceAtlas API.
5755 - MEDIUM: da: HTX mode support.
5756 - BUG/MEDIUM: mux-h2: properly deal with too large headers frames
5757 - BUG/MINOR: http: Call stream_inc_be_http_req_ctr() only one time per request
5758 - BUG/MEDIUM: spoe: arg len encoded in previous frag frame but len changed
5759 - MINOR: spoe: Use the sample context to pass frag_ctx info during encoding
5760 - DOC: contrib/modsecurity: Typos and fix the reject example
5761 - BUG/MEDIUM: contrib/modsecurity: If host header is NULL, don't try to strdup it
5762 - MINOR: log: Add "sample" new keyword to "log" lines.
5763 - MINOR: log: Enable the log sampling and load-balancing feature.
5764 - DOC: log: Document the sampling and load-balancing logging feature.
5765 - REGTEST: Add a new reg test for log load-balancing feature.
5766 - BUG/MAJOR: map/acl: real fix segfault during show map/acl on CLI
5767 - REGTEST: Make this reg test be Linux specific.
5768 - CLEANUP: task: move the task_per_thread definition to task.h
5769 - MINOR: activity: report context switch counts instead of rates
5770 - MINOR: threads: Implement HA_ATOMIC_LOAD().
5771 - BUG/MEDIUM: port_range: Make the ring buffer lock-free.
5772 - BUG/MEDIUM: listener: Fix how unlimited number of consecutive accepts is handled
5773 - MINOR: config: Test validity of tune.maxaccept during the config parsing
5774 - CLEANUP: config: Don't alter listener->maxaccept when nbproc is set to 1
5775 - BUG/MEDIUM: servers: fix typo "src" instead of "srv"
5776 - BUG/MEDIUM: ssl: Don't pretend we can retry a recv/send if we got a shutr/w.
5777 - BUG/MINOR: haproxy: fix rule->file memory leak
5778 - BUG/MINOR: log: properly free memory on logformat parse error and deinit()
5779 - BUG/MINOR: checks: free memory allocated for tasklets
5780 - BUG/MEDIUM: pattern: fix memory leak in regex pattern functions
5781 - BUG/MEDIUM: channels: Don't forget to reset output in channel_erase().
5782 - BUG/MEDIUM: connections: Make sure we remove CO_FL_SESS_IDLE on disown.
5783 - MINOR: threads: flatten the per-thread cpu-map
5784 - MINOR: init/threads: remove the useless tids[] array
5785 - MINOR: init/threads: make the threads array global
5786 - BUG/MEDIUM: ssl: Use the early_data API the right way.
5787 - BUG/MEDIUM: streams: Don't add CF_WRITE_ERROR if early data were rejected.
5788 - MEDIUM: streams: Add the ability to retry a request on L7 failure.
5789 - MEDIUM: streams: Add a way to replay failed 0rtt requests.
5790 - MEDIUM: streams: Add a new keyword for retry-on, "junk-response"
5791 - BUG/MINOR: stream: also increment the retry stats counter on L7 retries
5792 - BUG/MEDIUM: checks: make sure the warmup task takes the server lock
5793 - BUG/MINOR: logs/threads: properly split the log area upon startup
5794 - BUILD: extend travis-ci matrix
5795 - CLEANUP: Remove appsession documentation
5796 - DOC: Fix typo in keyword matrix
5797 - BUILD: remove "build_libressl" duplicate declaration
5798 - BUILD: travis-ci: get back to osx without openssl support
5799 - BUILD: enable several LibreSSL hacks, including
5800 - BUILD: temporarily mark LibreSSL builds as allowed to fail
5801 - BUILD: travis: TMPDIR replacement.
5802 - BUG/MEDIUM: ssl: Don't attempt to use early data with libressl.
5803 - MINOR: doc: Document allow-0rtt on the server line.
5804 - MINOR: doc: Document the interaction of allow-0rtt and retry-on 0rtt-rejected.
5805 - MEDIUM: proto: Change the prototype of the connect() method.
5806 - MEDIUM: tcp: add the "tfo" option to support TCP fastopen on the server
5807 - MINOR: config: Extract the code of "stick-table" line parsing.
5808 - BUILD/MINOR: stick-table: Compilation fix.
5809 - MEDIUM: stick-table: Stop handling stick-tables as proxies.
5810 - MINOR: stick-tables: Add peers process binding computing.
5811 - MINOR: stick-table: Add prefixes to stick-table names.
5812 - MINOR: peers: Do not emit global stick-table names.
5813 - DOC: Update for "table" lines in "peers" section.
5814 - REGTEST: Add reg tests for "table" lines in "peers" sections.
5815 - MEDIUM: regex: modify regex_comp() to atomically allocate/free the my_regex struct
5816 - REGTEST: make the tls_health_checks test much faster
5817 - REGTEST: make the "table in peers" test require v2.0
5818 - BUG/MINOR: mux-h2: rely on trailers output not input to turn them to empty data
5819 - BUG/MEDIUM: h2/htx: always fail on too large trailers
5820 - MEDIUM: mux-h2: discard contents that are to be sent after a shutdown
5821 - BUG/MEDIUM: mux-h2/htx: never wait for EOM when processing trailers
5822 - BUG/MEDIUM: h2/htx: never leave a trailers block alone with no EOM block
5823 - REGTEST: Flag some slow reg tests.
5824 - REGTEST: Reg tests file renaming.
5825 - REGTEST: Wrong renaming for one reg test.
5826 - REGTEST: Wrong assumption in IP:port logging test.
5827 - BUG/MINOR: mworker/ssl: close OpenSSL FDs on reload
5828 - MINOR: systemd: Use the variables from /etc/default/haproxy
5829 - MINOR: systemd: Make use of master socket in systemd unit
5830 - MINOR: systemd: support /etc/sysconfig/ for redhat based distrib
5831 - BUG/MEDIUM: stick-table: fix regression caused by a change in proxy struct
5832 - BUG/MEDIUM: tasks: fix possible segfault on task_destroy()
5833 - CLEANUP: task: remove unneeded tests before task_destroy()
5834 - MINOR: mworker: support a configurable maximum number of reloads
5835 - BUG/MINOR: mux-h2: fix the condition to close a cs-less h2s on the backend
5836 - BUG/MEDIUM: spoe: Be sure the sample is found before setting its context
5837 - BUG/MINOR: mux-h1: Fix the parsing of trailers
5838 - BUG/MINOR: htx: Never transfer more than expected in htx_xfer_blks()
5839 - MINOR: htx: Split on DATA blocks only when blocks are moved to an HTX message
5840 - MINOR: htx: Don't try to append a trailer block with the previous one
5841 - MINOR: htx: Remove support for unused OOB HTX blocks
5842 - BUILD: travis-ci bugfixes and improvements
5843 - BUG/MEDIUM: servers: Don't use the same srv flag for cookie-set and TFO.
5844 - BUG/MEDIUM: h2: Make sure we set send_list to NULL in h2_detach().
5845 - BUILD: ssl: fix again a libressl build failure after the openssl FD leak fix
5846 - CLEANUP: ssl-sock: use HA_OPENSSL_VERSION_NUMBER instead of OPENSSL_VERSION_NUMBER
5847 - BUILD: ssl: make libressl use its own version numbers
5848 - CLEANUP: ssl: remove 57 occurrences of useless tests on LIBRESSL_VERSION_NUMBER
5849 - MINOR: ssl: enable aes_gcm_dec on LibreSSL
5850 - BUILD: ssl: fix libressl build again after aes-gcm-enc
5851 - REORG: ssl: move openssl-compat from proto to common
5852 - REORG: ssl: move some OpenSSL defines from ssl_sock to openssl-compat
5853 - CLEANUP: ssl: never include openssl/*.h outside of openssl-compat.h anymore
5854 - CLEANUP: ssl: make inclusion of openssl headers safe
5855 - BUILD: add BoringSSL to travis-ci build matrix
5856 - BUILD: threads: Add __ha_cas_dw fallback for single threaded builds
5857 - BUG/MINOR: stream: Attach the read side on the response as soon as possible
5858 - BUG/MEDIUM: http: Use pointer to the begining of input to parse message headers
5859 - BUG/MEDIUM: h2: Don't check send_wait to know if we're in the send_list.
5860 - BUG/MEDIUM: streams: Make sur SI_FL_L7_RETRY is set before attempting a retry.
5861 - MEDIUM: streams: Add a new http action, disable-l7-retry.
5862 - MINOR: streams: Introduce a new retry-on keyword, all-retryable-errors.
5863 - BUG/MINOR: vars: Fix memory leak in vars_check_arg
5864 - BUILD: travis-ci: make TMPDIR global variable in travis-ci
5865 - CLEANUP: ssl: move the SSL_OP_* and SSL_MODE_* definitions to openssl-compat
5866 - CLEANUP: ssl: remove ifdef around SSL_CTX_get_extra_chain_certs()
5867 - CLEANUP: ssl: move all BIO_* definitions to openssl-compat
5868 - BUILD: threads: fix again the __ha_cas_dw() definition
5869 - BUG/MAJOR: mux-h2: do not add a stream twice to the send list
5870 - Revert "BUG/MINOR: vars: Fix memory leak in vars_check_arg"
5871 - BUG/MINOR: peers: Fix memory leak in cfg_parse_peers
5872 - BUG/MINOR: htx: make sure to always initialize the HTTP method when parsing a buffer
5873 - REGTEST: fix tls_health_checks random failures on MacOS in Travis-CI
5874 - MINOR: spoe: Set the argument chunk size to 0 when SPOE variables are checked
5875 - BUG/MINOR: vars: Fix memory leak in vars_check_arg
5876 - BUG/MAJOR: ssl: segfault upon an heartbeat request
5877 - MINOR: spoa-server: Clone the v1.7 spoa-example project
5878 - MINOR: spoa-server: move some definition from spoa_server.c to spoa_server.h
5879 - MINOR: spoa-server: Externalise debug functions
5880 - MINOR: spoe-server: rename "worker" functions
5881 - MINOR: spoa-server: Replace the thread init system by processes
5882 - MINOR: spoa-server: With debug mode, start only one process
5883 - MINOR: spoa-server: Allow registering external processes
5884 - MINOR: spoa-server: Allow registering message processors
5885 - MINOR: spoa-server: Load files
5886 - MINOR: spoa-server: Prepare responses
5887 - MINOR: spoa-server: Execute registered callbacks
5888 - MINOR: spoa-server: Add Lua processing
5889 - MINOR: spoa-server: Add python
5890 - MINOR/DOC: spoe-server: Add documentation
5891 - BUG/MEDIUM: connections: Don't forget to set xprt_ctx to NULL on close.
5892 - MINOR: lists: add LIST_ADDED() to check if an element belongs to a list
5893 - CLEANUP: mux-h2: use LIST_ADDED() instead of LIST_ISEMPTY() where relevant
5894 - MINOR: mux-h2: add two H2S flags to report the need for shutr/shutw
5895 - CLEANUP: mux-h2: simply use h2s->flags instead of ret in h2_deferred_shut()
5896 - CLEANUP: connection: remove the handle field from the wait_event struct
5897 - BUG/MINOR: log: Wrong log format initialization.
5898 - BUG/MINOR: mux-h2: make the do_shut{r,w} functions more robust against retries
5899 - BUG/MINOR: mworker: use after free when the PID not assigned
5900 - MINOR: mux-h2: remove useless test on stream ID vs last in wake function
5901 - MINOR: mux-h2: make h2_wake_some_streams() not depend on the CS flags
5902 - MINOR: mux-h2: make h2s_wake_one_stream() the only function to deal with CS
5903 - MINOR: mux-h2: make h2s_wake_one_stream() not depend on temporary CS flags
5904 - BUG/MINOR: mux-h2: make sure to honor KILL_CONN in do_shut{r,w}
5905 - CLEANUP: mux-h2: don't test for impossible CS_FL_REOS conditions
5906 - MINOR: mux-h2: add macros to check multiple stream states at once
5907 - MINOR: mux-h2: stop relying on CS_FL_REOS
5908 - BUG/MEDIUM: mux-h2: Set EOI on the conn_stream during h2_rcv_buf()
5909 - BUILD: debug: make gcc not complain on the ABORT_NOW() macro
5910 - MINOR: debug: add a new BUG_ON macro
5911 - MINOR: h2: Use BUG_ON() to enforce rules in subscribe/unsubscribe.
5912 - MINOR: h1: Use BUG_ON() to enforce rules in subscribe/unsubscribe.
5913 - MINOR: connections: Use BUG_ON() to enforce rules in subscribe/unsubscribe.
5914 - BUILD: ist: turn the lower/upper case tables to literal on obsolete linkers
5915
Willy Tarreau6e893b92019-03-26 05:40:51 +010059162019/03/26 : 2.0-dev2
5917 - CLEANUP: http: Remove unreachable code in parse_http_req_capture
5918 - CLEANUP: stream: Remove bogus loop in conn_si_send_proxy
5919 - MINOR: lists: Implement locked variations.
5920 - MEDIUM: servers: Used a locked list for idle_orphan_conns.
5921 - MEDIUM: servers: Reorganize the way idle connections are cleaned.
5922 - BUG/MEDIUM: lists: Properly handle the case we're removing the first elt.
5923 - MINOR: cfgparse: Add a cast to make gcc happier.
5924 - BUG/MEDIUM: standard: Wrong reallocation size.
5925 - BUG/MINOR: listener: keep accept rate counters accurate under saturation
5926 - DOC: fix alphabetic ordering for "tune.fail-alloc" setting
5927 - MAJOR: config: disable support for nbproc and nbthread in parallel
5928 - MEDIUM: listener: keep a single thread-mask and warn on "process" misuse
5929 - MAJOR: listener: do not hold the listener lock in listener_accept()
5930 - MINOR: listener: maintain a per-thread count of the number of connections on a listener
5931 - MINOR: tools: implement functions to look up the nth bit set in a mask
5932 - MINOR: listener: pre-compute some thread counts per bind_conf
5933 - MINOR: listener: implement multi-queue accept for threads
5934 - MAJOR: listener: use the multi-queue for multi-thread listeners
5935 - MINOR: activity: add accept queue counters for pushed and overflows
5936 - MINOR: config: add global tune.listener.multi-queue setting
5937 - MAJOR: threads: enable one thread per CPU by default
5938 - DOC: update management.txt to reflect that threads are used by default
5939 - BUG/MINOR: config: don't over-count the global maxsock value
5940 - BUG/MEDIUM: list: fix the rollback on addq in the locked liss
5941 - BUG/MEDIUM: list: fix LIST_POP_LOCKED's removal of the last pointer
5942 - BUG/MEDIUM: list: add missing store barriers when updating elements and head
5943 - MINOR: list: make the delete and pop operations idempotent
5944 - MINOR: server: remove a few unneeded LIST_INIT calls after LIST_DEL_LOCKED
5945 - BUG/MEDIUM: listener: use a self-locked list for the dequeue lists
5946 - BUG/MEDIUM: listener: make sure the listener never accepts too many conns
5947 - BUG/MEDIUM: list: correct fix for LIST_POP_LOCKED's removal of last element
5948 - MINOR: listener: introduce listener_backlog() to report the backlog value
5949 - MINOR: listener: do not needlessly set l->maxconn
5950 - MINOR: proxy: do not change the listeners' maxconn when updating the frontend's
5951 - MEDIUM: config: don't enforce a low frontend maxconn value anymore
5952 - MINOR: peers: Add a message for heartbeat.
5953 - MINOR: global: keep a copy of the initial rlim_fd_cur and rlim_fd_max values
5954 - BUG/MINOR: init: never lower rlim_fd_max
5955 - BUG/MINOR: checks: make external-checks restore the original rlim_fd_cur/max
5956 - BUG/MINOR: mworker: be careful to restore the original rlim_fd_cur/max on reload
5957 - MINOR: init: make the maxpipe computation more accurate
5958 - MINOR: init: move some maxsock updates earlier
5959 - MEDIUM: init: make the global maxconn default to what rlim_fd_cur permits
5960 - REGTEST: fix a spurious "nbthread 4" in the connection test
5961 - DOC: update the text related to the global maxconn value
5962 - BUG/MAJOR: mux-h2: fix race condition between close on both ends
5963 - MINOR: sample: Replace "req.ungrpc" smp fetch by a "ungrpc" converter.
5964 - BUG/MEDIUM: list: fix again LIST_ADDQ_LOCKED
5965 - MINOR: htx: unconditionally handle parsing errors in requests or responses
5966 - MINOR: mux-h2: always pass HTX_FL_PARSING_ERROR between h2s and buf on RX
5967 - BUG/MEDIUM: h2/htx: verify that :path doesn't contain invalid chars
5968 - MINOR: sample: Code factorization "ungrpc" converter.
5969 - MINOR: sample: Rework gRPC converter code.
5970 - CLEANUP: wurfl: remove dead, broken and unmaintained code
5971 - MINOR: config: relax the range checks on cpu-map
5972 - BUG/MINOR: ssl: fix warning about ssl-min/max-ver support
5973 - MINOR: sample: Extract some protocol buffers specific code.
5974 - DOC: Remove tabs and fixed punctuation.
5975 - MINOR: sample: Add a protocol buffers specific converter.
5976 - REGTEST: Peers reg tests.
5977 - REGTEST: Enable reg tests with HEAD HTTP method usage.
5978 - MINOR: lists: add a LIST_DEL_INIT() macro
5979 - MINOR: task: use LIST_DEL_INIT() to remove a task from the queue
5980 - MINOR: listener: improve incoming traffic distribution
5981 - MINOR: tools: implement my_flsl()
5982 - MEDIUM: listener: change the LB algorithm again to use two round robins instead
5983 - CLEANUP: listener: remove old thread bit mapping
5984 - MINOR: listener: move thr_idx from the bind_conf to the listener
5985 - BUG/MEDIUM: logs: Only attempt to free startup_logs once.
5986 - BUG/MAJOR: config: Wrong maxconn adjustment.
5987 - BUG/MEDIUM: 51d: fix possible segfault on deinit_51degrees()
5988 - OPTIM: task: limit the impact of memory barriers in taks_remove_from_task_list()
5989 - MINOR: fd: Remove debugging code.
5990 - BUG/MEDIUM: listeners: Don't call fd_stop_recv() if fd_updt is NULL.
5991 - MINOR: threads: Implement __ha_barrier_atomic*.
5992 - MEDIUM: threads: Use __ATOMIC_SEQ_CST when using the newer atomic API.
5993 - MINOR: threads: Add macros to do atomic operation with no memory barrier.
5994 - MEDIUM: various: Use __ha_barrier_atomic* when relevant.
5995 - MEDIUM: applets: Use the new _HA_ATOMIC_* macros.
5996 - MEDIUM: xref: Use the new _HA_ATOMIC_* macros.
5997 - MEDIUM: fd: Use the new _HA_ATOMIC_* macros.
5998 - MEDIUM: freq_ctr: Use the new _HA_ATOMIC_* macros.
5999 - MEDIUM: proxy: Use the new _HA_ATOMIC_* macros.
6000 - MEDIUM: server: Use the new _HA_ATOMIC_* macros.
6001 - MEDIUM: task: Use the new _HA_ATOMIC_* macros.
6002 - MEDIUM: activity: Use the new _HA_ATOMIC_* macros.
6003 - MEDIUM: backend: Use the new _HA_ATOMIC_* macros.
6004 - MEDIUM: cache: Use the new _HA_ATOMIC_* macros.
6005 - MEDIUM: checks: Use the new _HA_ATOMIC_* macros.
6006 - MEDIUM: pollers: Use the new _HA_ATOMIC_* macros.
6007 - MEDIUM: compression: Use the new _HA_ATOMIC_* macros.
6008 - MEDIUM: spoe: Use the new _HA_ATOMIC_* macros.
6009 - MEDIUM: threads: Use the new _HA_ATOMIC_* macros.
6010 - MEDIUM: http: Use the new _HA_ATOMIC_* macros.
6011 - MEDIUM: lb/threads: Use the new _HA_ATOMIC_* macros.
6012 - MEDIUM: listeners: Use the new _HA_ATOMIC_* macros.
6013 - MEDIUM: logs: Use the new _HA_ATOMIC_* macros.
6014 - MEDIUM: memory: Use the new _HA_ATOMIC_* macros.
6015 - MEDIUM: peers: Use the new _HA_ATOMIC_* macros.
6016 - MEDIUM: proto_tcp: Use the new _HA_ATOMIC_* macros.
6017 - MEDIUM: queues: Use the new _HA_ATOMIC_* macros.
6018 - MEDIUM: sessions: Use the new _HA_ATOMIC_* macros.
6019 - MEDIUM: ssl: Use the new _HA_ATOMIC_* macros.
6020 - MEDIUM: stream: Use the new _HA_ATOMIC_* macros.
6021 - MEDIUM: tcp_rules: Use the new _HA_ATOMIC_* macros.
6022 - MEDIUM: time: Use the new _HA_ATOMIC_* macros.
6023 - MEDIUM: vars: Use the new _HA_ATOMIC_* macros.
6024 - MINOR: config: remove obsolete use of DEFAULT_MAXCONN at various places
6025 - MINOR: config: continue to rely on DEFAULT_MAXCONN to set the minimum maxconn
6026 - BUG/MEDIUM: list: fix incorrect pointer unlocking in LIST_DEL_LOCKED()
6027 - BUG/MEDIUM: listener: make sure we don't pick stopped threads
6028 - MEDIUM: list: Remove useless barriers.
6029 - MEDIUM: list: Use _HA_ATOMIC_*
6030 - MEDIUM: connections: Use _HA_ATOMIC_*
6031 - BUG/MAJOR: tasks: Use the TASK_GLOBAL flag to know if we're in the global rq.
6032 - BUG/MEDIUM: threads/fd: do not forget to take into account epoll_fd/pipes
6033 - BUG/MEDIUM: init/threads: consider epoll_fd/pipes for automatic maxconn calculation
6034 - BUG/MEDIUM: tasks: Make sure we wake sleeping threads if needed.
6035 - BUG/MINOR: mux-h1: Don't report an error on EOS if no message was received
6036 - BUG/MINOR: stats/htx: Call channel_add_input() when response headers are sent
6037 - BUG/MINOR: lua/htx: Use channel_add_input() when response data are added
6038 - BUG/MINOR: lua/htx: Don't forget to call htx_to_buf() when appropriate
6039 - MINOR: stats: Add the status code STAT_STATUS_IVAL to handle invalid requests
6040 - MINOR: stats: Move stuff about the stats status codes in stats files
6041 - BUG/MINOR: stats: Be more strict on what is a valid request to the stats applet
6042 - Revert "REGTEST: Enable reg tests with HEAD HTTP method usage."
6043 - BUILD: listener: shut up a build warning when threads are disabled
6044 - BUILD: Makefile: allow the reg-tests target to be verbose
6045 - BUILD: Makefile: resolve LEVEL before calling run-regtests
6046 - BUG/MAJOR: spoe: Fix initialization of thread-dependent fields
6047 - BUG/MAJOR: stats: Fix how huge POST data are read from the channel
6048 - BUG/MINOR: http/counters: fix missing increment of fe->srv_aborts
6049 - BUG/MEDIUM: mux-h2: Always wakeup streams with no id to avoid frozen streams
6050 - MINOR: mux-h2: Set REFUSED_STREAM error to reset a stream if no data was never sent
6051 - MINOR: muxes: Report the Last read with a dedicated flag
6052 - MINOR: proto-http/proto-htx: Make error handling clearer during data forwarding
6053 - BUILD: tools: fix a build warning on some 32-bit archs
6054 - MINOR: init: report the list of optionally available services
6055 - MEDIUM: proto_htx: Switch to infinite forwarding if there is no data filter
6056 - BUG/MINOR: cache: Fully consume large requests in the cache applet
6057 - BUG/MINOR: stats: Fully consume large requests in the stats applet
6058 - BUG/MEDIUM: lua: Fully consume large requests when an HTTP applet ends
6059 - MINOR: proto_http: Add function to handle the header "Expect: 100-continue"
6060 - MINOR: proto_htx: Add function to handle the header "Expect: 100-continue"
6061 - MINOR: stats/cache: Handle the header Expect when applets are registered
6062 - MINOR: http/applets: Handle all applets intercepting HTTP requests the same way
6063 - CLEANUP: cache: don't export http_cache_applet anymore
6064 - MINOR: lua: Don't handle the header Expect in lua HTTP applets anymore
6065 - BUG/MINOR: doc: Be accurate on the behavior on pool-purge-delay.
6066 - Revert "MEDIUM: proto_htx: Switch to infinite forwarding if there is no data filter"
6067 - BUG/MEDIUM: mux-h2: Make sure we destroyed the h2s once shutr/shutw is done.
6068 - BUG/MEDIUM: mux-h2: Don't bother keeping the h2s if detaching and nothing to send.
6069 - BUG/MEDIUM: mux-h2: Use the right list in h2_stop_senders().
6070 - MINOR: mux-h2: copy small data blocks more often and reduce the number of pauses
6071 - CLEANUP: mux-h2: add some comments to help understand the code
6072 - BUG/MEDIUM: ssl: ability to set TLS 1.3 ciphers using ssl-default-server-ciphersuites
6073 - BUG/MINOR: log: properly format IPv6 address when LOG_OPT_HEXA modifier is used.
6074 - BUG/MEDIUM: h2: Try to be fair when sending data.
6075 - BUG/MINOR: proto-http: Don't forward request body anymore on error
6076 - MINOR: mux-h2: Remove useless test on ES flag in h2_frt_transfer_data()
6077 - MINOR: connection: and new flag to mark end of input (EOI)
6078 - MINOR: channel: Report EOI on the input channel if it was reached in the mux
6079 - MEDIUM: mux-h2: Don't mix the end of the message with the end of stream
6080 - MINOR: mux-h1: Set CS_FL_EOI the end of the message is reached
6081 - BUG/MEDIUM: http/htx: Fix handling of the option abortonclose
6082 - CLEANUP: muxes/stream-int: Remove flags CS_FL_READ_NULL and SI_FL_READ_NULL
6083 - MEDIUM: proto_htx: Reintroduce the infinite forwarding on data
6084 - BUG/MEDIUM: h2: only destroy the h2s if h2s->cs is NULL.
6085 - BUG/MEDIUM: h2: Use the new sending_list in h2s_notify_send().
6086 - BUG/MEDIUM: h2: Follow the same logic in h2_deferred_shut than in h2_snd_buf.
6087 - BUG/MEDIUM: h2: Remove the tasklet from the task list if unsubscribing.
6088 - BUG/MEDIUM: task/h2: add an idempotent task removal fucntion
6089 - CLEANUP: task: only perform a LIST_DEL() when the list is not empty
6090 - BUG/MEDIUM: mux-h2: make sure to always notify streams of EOS condition
6091 - CONTRIB: debug: report the CS and CF's EOI flags
6092 - MINOR: channel: don't unset CF_SHUTR_NOW after shutting down.
6093
Willy Tarreau6c1b6672019-02-26 16:43:49 +010060942019/02/26 : 2.0-dev1
6095 - MINOR: mux-h2: only increase the connection window with the first update
6096 - REGTESTS: remove the expected window updates from H2 handshakes
6097 - BUG/MINOR: mux-h2: make empty HEADERS frame return a connection error
6098 - BUG/MEDIUM: mux-h2: mark that we have too many CS once we have more than the max
6099 - MEDIUM: mux-h2: remove padlen during headers phase
6100 - MINOR: h2: add a bit-based frame type representation
6101 - MINOR: mux-h2: remove useless check for empty frame length in h2s_decode_headers()
6102 - MEDIUM: mux-h2: decode HEADERS frames before allocating the stream
6103 - MINOR: mux-h2: make h2c_send_rst_stream() use the dummy stream's error code
6104 - MINOR: mux-h2: add a new dummy stream for the REFUSED_STREAM error code
6105 - MINOR: mux-h2: fail stream creation more cleanly using RST_STREAM
6106 - MINOR: buffers: add a new b_move() function
6107 - MINOR: mux-h2: make h2_peek_frame_hdr() support an offset
6108 - MEDIUM: mux-h2: handle decoding of CONTINUATION frames
6109 - CLEANUP: mux-h2: remove misleading comments about CONTINUATION
6110 - BUG/MEDIUM: servers: Don't try to reuse connection if we switched server.
6111 - BUG/MEDIUM: tasks: Decrement tasks_run_queue in tasklet_free().
6112 - BUG/MINOR: htx: send the proper authenticate header when using http-request auth
6113 - BUG/MEDIUM: mux_h2: Don't add to the idle list if we're full.
6114 - BUG/MEDIUM: servers: Fail if we fail to allocate a conn_stream.
6115 - BUG/MAJOR: servers: Use the list api correctly to avoid crashes.
6116 - BUG/MAJOR: servers: Correctly use LIST_ELEM().
6117 - BUG/MAJOR: sessions: Use an unlimited number of servers for the conn list.
6118 - BUG/MEDIUM: servers: Flag the stream_interface on handshake error.
6119 - MEDIUM: servers: Be smarter when switching connections.
6120 - MEDIUM: sessions: Keep track of which connections are idle.
6121 - MINOR: payload: add sample fetch for TLS ALPN
6122 - BUG/MEDIUM: log: don't mark log FDs as non-blocking on terminals
6123 - MINOR: channel: Add the function channel_add_input
6124 - MINOR: stats/htx: Call channel_add_input instead of updating channel state by hand
6125 - BUG/MEDIUM: cache: Be sure to end the forwarding when XFER length is unknown
6126 - BUG/MAJOR: htx: Return the good block address after a defrag
6127 - MINOR: lb: allow redispatch when using consistent hash
6128 - CLEANUP: mux-h2: fix end-of-stream flag name when processing headers
6129 - BUG/MEDIUM: mux-h2: always restart reading if data are available
6130 - BUG/MINOR: mux-h2: set the stream-full flag when leaving h2c_decode_headers()
6131 - BUG/MINOR: mux-h2: don't check the CS count in h2c_bck_handle_headers()
6132 - BUG/MINOR: mux-h2: mark end-of-stream after processing response HEADERS, not before
6133 - BUG/MINOR: mux-h2: only update rxbuf's length for H1 headers
6134 - BUG/MEDIUM: mux-h1: use per-direction flags to indicate transitions
6135 - BUG/MEDIUM: mux-h1: make HTX chunking consistent with H2
6136 - BUG/MAJOR: stream-int: Update the stream expiration date in stream_int_notify()
6137 - BUG/MEDIUM: proto-htx: Set SI_FL_NOHALF on server side when request is done
6138 - BUG/MEDIUM: mux-h1: Add a task to handle connection timeouts
6139 - MINOR: mux-h2: make h2c_decode_headers() return a status, not a count
6140 - MINOR: mux-h2: add a new dummy stream : h2_error_stream
6141 - MEDIUM: mux-h2: make h2c_decode_headers() support recoverable errors
6142 - BUG/MINOR: mux-h2: detect when the HTX EOM block cannot be added after headers
6143 - MINOR: mux-h2: remove a misleading and impossible test
6144 - CLEANUP: mux-h2: clean the stream error path on HEADERS frame processing
6145 - MINOR: mux-h2: check for too many streams only for idle streams
6146 - MINOR: mux-h2: set H2_SF_HEADERS_RCVD when a HEADERS frame was decoded
6147 - BUG/MEDIUM: mux-h2: decode trailers in HEADERS frames
6148 - MINOR: h2: add h2_make_h1_trailers to turn H2 headers to H1 trailers
6149 - MEDIUM: mux-h2: pass trailers to H1 (legacy mode)
6150 - MINOR: htx: add a new function to add a block without filling it
6151 - MINOR: h2: add h2_make_htx_trailers to turn H2 headers to HTX trailers
6152 - MEDIUM: mux-h2: pass trailers to HTX
6153 - MINOR: mux-h1: parse the content-length header on output and set H1_MF_CLEN
6154 - BUG/MEDIUM: mux-h1: don't enforce chunked encoding on requests
6155 - MINOR: mux-h2: make HTX_BLK_EOM processing idempotent
6156 - MINOR: h1: make the H1 headers block parser able to parse headers only
6157 - MEDIUM: mux-h2: emit HEADERS frames when facing HTX trailers blocks
6158 - MINOR: stream/htx: Add info about the HTX structs in "show sess all" command
6159 - MINOR: stream: Add the subscription events of SIs in "show sess all" command
6160 - MINOR: mux-h1: Add the subscription events in "show fd" command
6161 - BUG/MEDIUM: h1: Get the h1m state when restarting the headers parsing
6162 - BUG/MINOR: cache/htx: Be sure to count partial trailers
6163 - BUG/MEDIUM: h1: In h1_init(), wake the tasklet instead of calling h1_recv().
6164 - BUG/MEDIUM: server: Defer the mux init until after xprt has been initialized.
6165 - MINOR: connections: Remove a stall comment.
6166 - BUG/MEDIUM: cli: make "show sess" really thread-safe
6167 - BUILD: add a new file "version.c" to carry version updates
6168 - MINOR: stream/htx: add the HTX flags output in "show sess all"
6169 - MINOR: stream/cli: fix the location of the waiting flag in "show sess all"
6170 - MINOR: stream/cli: report more info about the HTTP messages on "show sess all"
6171 - BUG/MINOR: lua: bad args are returned for Lua actions
6172 - BUG/MEDIUM: lua: dead lock when Lua tasks are trigerred
6173 - MINOR: htx: Add an helper function to get the max space usable for a block
6174 - MINOR: channel/htx: Add HTX version for some helper functions
6175 - BUG/MEDIUM: cache/htx: Respect the reserve when cached objects are served
6176 - BUG/MINOR: stats/htx: Respect the reserve when the stats page is dumped
6177 - DOC: regtest: make it clearer what the purpose of the "broken" series is
6178 - REGTEST: mailers: add new test for 'mailers' section
6179 - REGTEST: Add a reg test for health-checks over SSL/TLS.
6180 - BUG/MINOR: mux-h1: Close connection on shutr only when shutw was really done
6181 - MEDIUM: mux-h1: Clarify how shutr/shutw are handled
6182 - BUG/MINOR: compression: Disable it if another one is already in progress
6183 - BUG/MINOR: filters: Detect cache+compression config on legacy HTTP streams
6184 - BUG/MINOR: cache: Disable the cache if any compression filter precedes it
6185 - REGTEST: Add some informatoin to test results.
6186 - MINOR: htx: Add a function to truncate all blocks after a specific offset
6187 - MINOR: channel/htx: Add the HTX version of channel_truncate/erase
6188 - BUG/MINOR: proto_htx: Use HTX versions to truncate or erase a buffer
6189 - BUG/CRITICAL: mux-h2: re-check the frame length when PRIORITY is used
6190 - DOC: Fix typo in req.ssl_alpn example (commit 4afdd138424ab...)
6191 - DOC: http-request cache-use / http-response cache-store expects cache name
6192 - REGTEST: "capture (request|response)" regtest.
6193 - BUG/MINOR: lua/htx: Respect the reserve when data are send from an HTX applet
6194 - REGTEST: filters: add compression test
6195 - BUG/MEDIUM: init: Initialize idle_orphan_conns for first server in server-template
6196 - BUG/MEDIUM: ssl: Disable anti-replay protection and set max data with 0RTT.
6197 - DOC: Be a bit more explicit about allow-0rtt security implications.
6198 - MINOR: mux-h1: make the mux_h1_ops struct static
6199 - BUILD: makefile: add an EXTRA_OBJS variable to help build optional code
6200 - BUG/MEDIUM: connection: properly unregister the mux on failed initialization
6201 - BUG/MAJOR: cache: fix confusion between zero and uninitialized cache key
6202 - REGTESTS: test case for map_regm commit 271022150d
6203 - REGTESTS: Basic tests for concat,strcmp,word,field,ipmask converters
6204 - REGTESTS: Basic tests for using maps to redirect requests / select backend
6205 - DOC: REGTESTS README varnishtest -Dno-htx= define.
6206 - MINOR: spoe: Make the SPOE filter compatible with HTX proxies
6207 - MINOR: checks: Store the proxy in checks.
6208 - BUG/MEDIUM: checks: Avoid having an associated server for email checks.
6209 - REGTEST: Switch to vtest.
6210 - REGTEST: Adapt reg test doc files to vtest.
6211 - BUG/MEDIUM: h1: Make sure we destroy an inactive connectin that did shutw.
6212 - BUG/MINOR: base64: dec func ignores padding for output size checking
6213 - BUG/MEDIUM: ssl: missing allocation failure checks loading tls key file
6214 - MINOR: ssl: add support of aes256 bits ticket keys on file and cli.
6215 - BUG/MINOR: backend: don't use url_param_name as a hint for BE_LB_ALGO_PH
6216 - BUG/MINOR: backend: balance uri specific options were lost across defaults
6217 - BUG/MINOR: backend: BE_LB_LKUP_CHTREE is a value, not a bit
6218 - MINOR: backend: move url_param_name/len to lbprm.arg_str/len
6219 - MINOR: backend: make headers and RDP cookie also use arg_str/len
6220 - MINOR: backend: add new fields in lbprm to store more LB options
6221 - MINOR: backend: make the header hash use arg_opt1 for use_domain_only
6222 - MINOR: backend: remap the balance uri settings to lbprm.arg_opt{1,2,3}
6223 - MINOR: backend: move hash_balance_factor out of chash
6224 - MEDIUM: backend: move all LB algo parameters into an union
6225 - MINOR: backend: make the random algorithm support a number of draws
6226 - BUILD/MEDIUM: da: Necessary code changes for new buffer API.
6227 - BUG/MINOR: stick_table: Prevent conn_cur from underflowing
6228 - BUG: 51d: Changes to the buffer API in 1.9 were not applied to the 51Degrees code.
6229 - BUG/MEDIUM: stats: Get the right scope pointer depending on HTX is used or not
6230 - DOC: add a missing space in the documentation for bc_http_major
6231 - REGTEST: checks basic stats webpage functionality
6232 - BUG/MEDIUM: servers: Make assign_tproxy_address work when ALPN is set.
6233 - BUG/MEDIUM: connections: Add the CO_FL_CONNECTED flag if a send succeeded.
6234 - DOC: add github issue templates
6235 - MINOR: cfgparse: Extract some code to be re-used.
6236 - CLEANUP: cfgparse: Return asap from cfg_parse_peers().
6237 - CLEANUP: cfgparse: Code reindentation.
6238 - MINOR: cfgparse: Useless frontend initialization in "peers" sections.
6239 - MINOR: cfgparse: Rework peers frontend init.
6240 - MINOR: cfgparse: Simplication.
6241 - MINOR: cfgparse: Make "peer" lines be parsed as "server" lines.
6242 - MINOR: peers: Make outgoing connection to SSL/TLS peers work.
6243 - MINOR: cfgparse: SSL/TLS binding in "peers" sections.
6244 - DOC: peers: SSL/TLS documentation for "peers"
6245 - BUG/MINOR: startup: certain goto paths in init_pollers fail to free
6246 - BUG/MEDIUM: checks: fix recent regression on agent-check making it crash
6247 - BUG/MINOR: server: don't always trust srv_check_health when loading a server state
6248 - BUG/MINOR: check: Wake the check task if the check is finished in wake_srv_chk()
6249 - BUG/MEDIUM: ssl: Fix handling of TLS 1.3 KeyUpdate messages
6250 - DOC: mention the effect of nf_conntrack_tcp_loose on src/dst
6251 - BUG/MINOR: proto-htx: Return an error if all headers cannot be received at once
6252 - BUG/MEDIUM: mux-h2/htx: Respect the channel's reserve
6253 - BUG/MINOR: mux-h1: Apply the reserve on the channel's buffer only
6254 - BUG/MINOR: mux-h1: avoid copying output over itself in zero-copy
6255 - BUG/MAJOR: mux-h2: don't destroy the stream on failed allocation in h2_snd_buf()
6256 - BUG/MEDIUM: backend: also remove from idle list muxes that have no more room
6257 - BUG/MEDIUM: mux-h2: properly abort on trailers decoding errors
6258 - MINOR: h2: declare new sets of frame types
6259 - BUG/MINOR: mux-h2: CONTINUATION in closed state must always return GOAWAY
6260 - BUG/MINOR: mux-h2: headers-type frames in HREM are always a connection error
6261 - BUG/MINOR: mux-h2: make it possible to set the error code on an already closed stream
6262 - BUG/MINOR: hpack: return a compression error on invalid table size updates
6263 - MINOR: server: make sure pool-max-conn is >= -1
6264 - BUG/MINOR: stream: take care of synchronous errors when trying to send
6265 - CLEANUP: server: fix indentation mess on idle connections
6266 - BUG/MINOR: mux-h2: always check the stream ID limit in h2_avail_streams()
6267 - BUG/MINOR: mux-h2: refuse to allocate a stream with too high an ID
6268 - BUG/MEDIUM: backend: never try to attach to a mux having no more stream available
6269 - MINOR: server: add a max-reuse parameter
6270 - MINOR: mux-h2: always consider a server's max-reuse parameter
6271 - MEDIUM: stream-int: always mark pending outgoing SI_ST_CON
6272 - MINOR: stream: don't wait before retrying after a failed connection reuse
6273 - MEDIUM: h2: always parse and deduplicate the content-length header
6274 - BUG/MINOR: mux-h2: always compare content-length to the sum of DATA frames
6275 - CLEANUP: h2: Remove debug printf in mux_h2.c
6276 - MINOR: cfgparse: make the process/thread parser support a maximum value
6277 - MINOR: threads: make MAX_THREADS configurable at build time
6278 - DOC: nbthread is no longer experimental.
6279 - BUG/MINOR: listener: always fill the source address for accepted socketpairs
6280 - BUG/MINOR: mux-h2: do not report available outgoing streams after GOAWAY
6281 - BUG/MINOR: spoe: corrected fragmentation string size
6282 - BUG/MINOR: task: fix possibly missed event in inter-thread wakeups
6283 - BUG/MEDIUM: servers: Attempt to reuse an unfinished connection on retry.
6284 - BUG/MEDIUM: backend: always call si_detach_endpoint() on async connection failure
6285 - SCRIPTS: add the issue tracker URL to the announce script
6286 - MINOR: peers: Extract some code to be reused.
6287 - CLEANUP: peers: Indentation fixes.
6288 - MINOR: peers: send code factorization.
6289 - MINOR: peers: Add new functions to send code and reduce the I/O handler.
6290 - MEDIUM: peers: synchronizaiton code factorization to reduce the size of the I/O handler.
6291 - MINOR: peers: Move update receive code to reduce the size of the I/O handler.
6292 - MINOR: peers: Move ack, switch and definition receive code to reduce the size of the I/O handler.
6293 - MINOR: peers: Move high level receive code to reduce the size of I/O handler.
6294 - CLEANUP: peers: Be more generic.
6295 - MINOR: peers: move error handling to reduce the size of the I/O handler.
6296 - MINOR: peers: move messages treatment code to reduce the size of the I/O handler.
6297 - MINOR: peers: move send code to reduce the size of the I/O handler.
6298 - CLEANUP: peers: Remove useless statements.
6299 - MINOR: peers: move "hello" message treatment code to reduce the size of the I/O handler.
6300 - MINOR: peers: move peer initializations code to reduce the size of the I/O handler.
6301 - CLEANUP: peers: factor the error handling code in peer_treet_updatemsg()
6302 - CLEANUP: peers: factor error handling in peer_treat_definedmsg()
6303 - BUILD/MINOR: peers: shut up a build warning introduced during last cleanup
6304 - BUG/MEDIUM: mux-h2: only close connection on request frames on closed streams
6305 - CLEANUP: mux-h2: remove two useless but misleading assignments
6306 - BUG/MEDIUM: checks: Check that conn_install_mux succeeded.
6307 - BUG/MEDIUM: servers: Only destroy a conn_stream we just allocated.
6308 - BUG/MEDIUM: servers: Don't add an incomplete conn to the server idle list.
6309 - BUG/MEDIUM: checks: Don't try to set ALPN if connection failed.
6310 - BUG/MEDIUM: h2: In h2_send(), stop the loop if we failed to alloc a buf.
6311 - BUG/MEDIUM: peers: Handle mux creation failure.
6312 - BUG/MEDIUM: servers: Close the connection if we failed to install the mux.
6313 - BUG/MEDIUM: compression: Rewrite strong ETags
6314 - BUG/MINOR: deinit: tcp_rep.inspect_rules not deinit, add to deinit
6315 - CLEANUP: mux-h2: remove misleading leftover test on h2s' nullity
6316 - BUG/MEDIUM: mux-h2: wake up flow-controlled streams on initial window update
6317 - BUG/MEDIUM: mux-h2: fix two half-closed to closed transitions
6318 - BUG/MEDIUM: mux-h2: make sure never to send GOAWAY on too old streams
6319 - BUG/MEDIUM: mux-h2: do not abort HEADERS frame before decoding them
6320 - BUG/MINOR: mux-h2: make sure response HEADERS are not received in other states than OPEN and HLOC
6321 - MINOR: h2: add a generic frame checker
6322 - MEDIUM: mux-h2: check the frame validity before considering the stream state
6323 - CLEANUP: mux-h2: remove stream ID and frame length checks from the frame parsers
6324 - BUG/MINOR: mux-h2: make sure request trailers on aborted streams don't break the connection
6325 - DOC: compression: Update the reasons for disabled compression
6326 - BUG/MEDIUM: buffer: Make sure b_is_null handles buffers waiting for allocation.
6327 - DOC: htx: make it clear that htxbuf() and htx_from_buf() always return valid pointers
6328 - MINOR: htx: never check for null htx pointer in htx_is_{,not_}empty()
6329 - MINOR: mux-h2: consistently rely on the htx variable to detect the mode
6330 - BUG/MEDIUM: peers: Peer addresses parsing broken.
6331 - BUG/MEDIUM: mux-h1: Don't add "transfer-encoding" if message-body is forbidden
6332 - BUG/MEDIUM: connections: Don't forget to remove CO_FL_SESS_IDLE.
6333 - BUG/MINOR: stream: don't close the front connection when facing a backend error
6334 - BUG/MEDIUM: mux-h2: wait for the mux buffer to be empty before closing the connection
6335 - MINOR: stream-int: add a new flag to mention that we want the connection to be killed
6336 - MINOR: connstream: have a new flag CS_FL_KILL_CONN to kill a connection
6337 - BUG/MEDIUM: mux-h2: do not close the connection on aborted streams
6338 - BUG/MINOR: server: fix logic flaw in idle connection list management
6339 - MINOR: mux-h2: max-concurrent-streams should be unsigned
6340 - MINOR: mux-h2: make sure to only check concurrency limit on the frontend
6341 - MINOR: mux-h2: learn and store the peer's advertised MAX_CONCURRENT_STREAMS setting
6342 - BUG/MEDIUM: mux-h2: properly consider the peer's advertised max-concurrent-streams
6343 - MINOR: xref: Add missing barriers.
6344 - MINOR: muxes: Don't bother to LIST_DEL(&conn->list) before calling conn_free().
6345 - MINOR: debug: Add an option that causes random allocation failures.
6346 - BUG/MEDIUM: backend: always release the previous connection into its own target srv_list
6347 - BUG/MEDIUM: htx: check the HTX compatibility in dynamic use-backend rules
6348 - BUG/MINOR: tune.fail-alloc: Don't forget to initialize ret.
6349 - BUG/MINOR: backend: check srv_conn before dereferencing it
6350 - BUG/MEDIUM: mux-h2: always omit :scheme and :path for the CONNECT method
6351 - BUG/MEDIUM: mux-h2: always set :authority on request output
6352 - BUG/MEDIUM: stream: Don't forget to free s->unique_id in stream_free().
6353 - BUG/MINOR: threads: fix the process range of thread masks
6354 - BUG/MINOR: config: fix bind line thread mask validation
6355 - CLEANUP: threads: fix misleading comment about all_threads_mask
6356 - CLEANUP: threads: use nbits to calculate the thread mask
6357 - OPTIM: listener: optimize cache-line packing for struct listener
6358 - MINOR: tools: improve the popcount() operation
6359 - MINOR: config: keep an all_proc_mask like we have all_threads_mask
6360 - MINOR: global: add proc_mask() and thread_mask()
6361 - MINOR: config: simplify bind_proc processing using proc_mask()
6362 - MINOR: threads: make use of thread_mask() to simplify some thread calculations
6363 - BUG/MINOR: compression: properly report compression stats in HTX mode
6364 - BUG/MINOR: task: close a tiny race in the inter-thread wakeup
6365 - BUG/MAJOR: config: verify that targets of track-sc and stick rules are present
6366 - BUG/MAJOR: spoe: verify that backends used by SPOE cover all their callers' processes
6367 - BUG/MAJOR: htx/backend: Make all tests on HTTP messages compatible with HTX
6368 - BUG/MINOR: config: make sure to count the error on incorrect track-sc/stick rules
6369 - DOC: ssl: Clarify when pre TLSv1.3 cipher can be used
6370 - DOC: ssl: Stop documenting ciphers example to use
6371 - BUG/MINOR: spoe: do not assume agent->rt is valid on exit
6372 - BUG/MINOR: lua: initialize the correct idle conn lists for the SSL sockets
6373 - BUG/MEDIUM: spoe: initialization depending on nbthread must be done last
6374 - BUG/MEDIUM: server: initialize the idle conns list after parsing the config
6375 - BUG/MEDIUM: server: initialize the orphaned conns lists and tasks at the end
6376 - MINOR: config: make MAX_PROCS configurable at build time
6377 - BUG/MAJOR: spoe: Don't try to get agent config during SPOP healthcheck
6378 - BUG/MINOR: config: Reinforce validity check when a process number is parsed
6379 - BUG/MEDIUM: peers: check that p->srv actually exists before using p->srv->use_ssl
6380 - CONTRIB: contrib/prometheus-exporter: Add a Prometheus exporter for HAProxy
6381 - BUG/MINOR: mux-h1: verify the request's version before dropping connection: keep-alive
6382 - BUG: 51d: In Hash Trie, multi header matching was affected by the header names stored globaly.
6383 - MEDIUM: 51d: Enabled multi threaded operation in the 51Degrees module.
6384 - BUG/MAJOR: stream: avoid double free on unique_id
6385 - BUILD/MINOR: stream: avoid a build warning with threads disabled
6386 - BUILD/MINOR: tools: fix build warning in the date conversion functions
6387 - BUILD/MINOR: peers: remove an impossible null test in intencode()
6388 - BUILD/MINOR: htx: fix some potential null-deref warnings with http_find_stline
6389 - BUG/MEDIUM: peers: Missing peer initializations.
6390 - BUG/MEDIUM: http_fetch: fix the "base" and "base32" fetch methods in HTX mode
6391 - BUG/MEDIUM: proto_htx: Fix data size update if end of the cookie is removed
6392 - BUG/MEDIUM: http_fetch: fix "req.body_len" and "req.body_size" fetch methods in HTX mode
6393 - BUILD/MEDIUM: initcall: Fix build on MacOS.
6394 - BUG/MEDIUM: mux-h2/htx: Always set CS flags before exiting h2_rcv_buf()
6395 - MINOR: h2/htx: Set the flag HTX_SL_F_BODYLESS for messages without body
6396 - BUG/MINOR: mux-h1: Add "transfer-encoding" header on outgoing requests if needed
6397 - BUG/MINOR: mux-h2: Don't add ":status" pseudo-header on trailers
6398 - BUG/MINOR: proto-htx: Consider a XFER_LEN message as chunked by default
6399 - BUG/MEDIUM: h2/htx: Correctly handle interim responses when HTX is enabled
6400 - MINOR: mux-h2: Set HTX extra value when possible
6401 - BUG/MEDIUM: htx: count the amount of copied data towards the final count
6402 - MINOR: mux-h2: make the H2 MAX_FRAME_SIZE setting configurable
6403 - BUG/MEDIUM: mux-h2/htx: send an empty DATA frame on empty HTX trailers
6404 - BUG/MEDIUM: servers: Use atomic operations when handling curr_idle_conns.
6405 - BUG/MEDIUM: servers: Add a per-thread counter of idle connections.
6406 - MINOR: fd: add a new my_closefrom() function to close all FDs
6407 - MINOR: checks: use my_closefrom() to close all FDs
6408 - MINOR: fd: implement an optimised my_closefrom() function
6409 - BUG/MINOR: fd: make sure my_closefrom() doesn't miss some FDs
6410 - BUG/MAJOR: fd/threads, task/threads: ensure all spin locks are unlocked
6411 - BUG/MAJOR: listener: Make sure the listener exist before using it.
6412 - MINOR: fd: Use closefrom() as my_closefrom() if supported.
6413 - BUG/MEDIUM: mux-h1: Report the right amount of data xferred in h1_rcv_buf()
6414 - BUG/MINOR: channel: Set CF_WROTE_DATA when outgoing data are skipped
6415 - MINOR: htx: Add function to drain data from an HTX message
6416 - MINOR: channel/htx: Add function to skips output bytes from an HTX channel
6417 - BUG/MAJOR: cache/htx: Set the start-line offset when a cached object is served
6418 - BUG/MEDIUM: cache: Get objects from the cache only for GET and HEAD requests
6419 - BUG/MINOR: cache/htx: Return only the headers of cached objects to HEAD requests
6420 - BUG/MINOR: mux-h1: Always initilize h1m variable in h1_process_input()
6421 - BUG/MEDIUM: proto_htx: Fix functions applying regex filters on HTX messages
6422 - BUG/MEDIUM: h2: advertise to servers that we don't support push
6423 - MINOR: standard: Add a function to parse uints (dotted notation).
6424 - MINOR: arg: Add support for ARGT_PBUF_FNUM arg type.
6425 - MINOR: http_fetch: add "req.ungrpc" sample fetch for gRPC.
6426 - MINOR: sample: Add two sample converters for protocol buffers.
6427 - DOC: sample: Add gRPC related documentation.
6428
Willy Tarreaufba74ea2018-12-22 11:19:45 +010064292018/12/22 : 2.0-dev0
6430 - BUG/MAJOR: connections: Close the connection before freeing it.
6431 - REGTEST: Require the option LUA to run lua tests
6432 - REGTEST: script: Process script arguments before everything else
6433 - REGTEST: script: Evaluate the varnishtest command to allow quoted parameters
6434 - REGTEST: script: Add the option --clean to remove previous log direcotries
6435 - REGTEST: script: Add the option --debug to show logs on standard ouput
6436 - REGTEST: script: Add the option --keep-logs to keep all log directories
6437 - REGTEST: script: Add the option --use-htx to enable the HTX in regtests
6438 - REGTEST: script: Print only errors in the results report
6439 - REGTEST: Add option to use HTX prefixed by the macro 'no-htx'
6440 - REGTEST: Make reg-tests target support argument.
6441 - REGTEST: Fix a typo about barrier type.
6442 - REGTEST: Be less Linux specific with a syslog regex.
6443 - REGTEST: Missing enclosing quotes for ${tmpdir} macro.
6444 - REGTEST: Exclude freebsd target for some reg tests.
6445 - BUG/MEDIUM: h2: Don't forget to quit the sending_list if SUB_CALL_UNSUBSCRIBE.
6446 - BUG/MEDIUM: mux-h2: Don't forget to quit the send list on error reports
6447 - BUG/MEDIUM: dns: Don't prevent reading the last byte of the payload in dns_validate_response()
6448 - BUG/MEDIUM: dns: overflowed dns name start position causing invalid dns error
6449 - BUG/MINOR: compression/htx: Don't compress responses with unknown body length
6450 - BUG/MINOR: compression/htx: Don't add the last block of data if it is empty
6451 - MEDIUM: mux_h1: Implement h1_show_fd.
6452 - REGTEST: script: Add support of alternatives in requited options list
6453 - REGTEST: Add a basic test for the compression
6454 - BUG/MEDIUM: mux-h2: don't needlessly wake up the demux on short frames
6455 - REGTEST: A basic test for "http-buffer-request"
6456 - BUG/MEDIUM: server: Also copy "check-sni" for server templates.
6457 - MINOR: ssl: Add ssl_sock_set_alpn().
6458 - MEDIUM: checks: Add check-alpn.
6459 - wip
6460
Willy Tarreau82230502018-12-19 19:13:17 +010064612018/12/19 : 1.9.0
6462 - BUG/MEDIUM: compression: Use the right buffer pointers to compress input data
6463 - BUG/MINOR: mux_pt: Set CS_FL_WANT_ROOM when count is zero in rcv_buf() callback
6464 - BUG/MEDIUM: connection: Add a new CS_FL_ERR_PENDING flag to conn_streams.
6465 - CONTRIB: debug: teach the "flags" utility about new conn_stream flags
6466 - BUG/MEDIUM: stream-int: always clear CS_FL_WANT_ROOM before receiving
6467 - BUG/MEDIUM: mux-h2: also restart demuxing when data are pending in demux
6468 - BUG/MEDIUM: mux-h2: restart demuxing as soon as demux data are available
6469 - BUG/MEDIUM: h2: fix aggregated cookie length computation in HTX mode
6470 - MINOR: mux-h2: report more h2c, last h2s and cs information on "show fd"
6471 - CONTRIB: debug: report stream-int's flag SI_FL_CLEAN_ABRT
6472 - MINOR: cli/stream: add the conn_stream in "show sess" output
6473 - BUG/MINOR: mux-h2: don't report a fantom h2s in "show fd"
6474 - BUG/MINOR: cli/fd: don't isolate the thread for each individual fd
6475 - MINOR: objtype: report a few missing types in names and base pointers
6476 - BUG/MEDIUM: mux-h2: make sure to report synchronous errors after EOS
6477 - BUG/MEDIUM: mux-h2: report asynchronous errors in h2_wake_some_streams()
6478 - BUG/MEDIUM: mux-h2: make sure the demux also wakes streams up on errors
6479 - BUG/MINOR: mux-h1: report the correct frontend in error captures
6480 - BUG/MEDIUM: stream-int: also wake the stream up on end of transfer
6481 - MEDIUM: h2: properly check and deduplicate the content-length header in HTX
6482 - BUG/MEDIUM: stream: Forward the right amount of data before infinite forwarding
6483 - BUG/MINOR: proto_htx: Call the HTX version of the function managing client cookies
6484 - BUG/MEDIUM: lua/htx: Handle EOM in receive/get_line calls in HTTP applets
6485 - BUG/MINOR: lua: Return an error if a legacy HTTP applet doesn't send anything
6486 - MINOR: compression: Remove the thread_local variable buf_output
6487 - CLEANUP: connection: rename subscription events values and event field
6488 - CLEANUP: connection: rename conn->mux_ctx to conn->ctx
6489 - MINOR: connection: remove an unwelcome dependency on struct stream
6490 - CLEANUP: stream-int: consistently call the si/stream_int functions
6491 - BUG/MEDIUM: h1: Don't shutw/shutr the connection if we have keepalive.
6492 - BUG/MEDIUM: H2: Make sure htx is set even on empty frames.
6493 - BUG/MEDIUM: mux-h2: pass CS_FL_ERR_PENDING to h2_wake_some_streams()
6494 - MEDIUM: stream-int: always consider all CS errors on the send side
6495 - BUG/MEDIUM: h2: Make sure we don't set CS_FL_ERROR if there's still data.
6496 - CLEANUP: mux-h2: implement h2s_notify_{send,recv} to report events to subscribers
6497 - MINOR: mux-h2: add a new function h2s_alert() to call the data layer
6498 - BUG/MEDIUM: mux-h2: make use of h2s_alert() to report aborts
6499 - MINOR: connection: add cs_set_error() to set the error bits
6500 - CLEANUP: mux-h2: make use of cs_set_error()
6501 - BUG/MINOR: mux-h2: make sure we check the conn_stream in early data
6502 - BUG/MEDIUM: h2: Don't wait for flow control if the connection had a shutr.
6503 - MINOR: cli/show_fd: report that a connection is back or not
6504 - SCRIPTS: add the slack channel URL to the announce script
6505 - CLEANUP: remove my name and address from the copyright banner
6506 - DOC: mention in the readme that 1.9 is a stable version now
6507
Willy Tarreau2a7d6502018-12-16 22:35:06 +010065082018/12/16 : 1.9-dev11
6509 - BUG/MEDIUM: connection: Don't use the provided conn_stream if it was tried.
6510 - REGTEST/MINOR: remove double body specification for server txresp
6511 - BUG/MEDIUM: connections: Remove error flags when retrying.
6512 - REGTEST/MINOR: skip seamless-reload test with abns socket on freebsd
6513 - REGTEST/MINOR: remove health-check that can make the test fail
6514 - DOC: clarify that check-sni needs an argument.
6515 - DOC: refer to check-sni in the documentation of sni
6516 - BUG/MEDIUM: mux-h2: fix encoding of non-GET/POST methods
6517 - BUG/MINOR: mux-h1: Fix conn_mode processing for headerless outgoing messages
6518 - BUG/MEDIUM: mux-h1: Add a BUSY mode to not loop on pipelinned requests
6519 - BUG/MEDIUM: mux-h1: Don't loop on the headers parsing if the read0 was received
6520 - BUG/MEDIUM: htx: Always do a defrag if a block value is replace by a bigger one
6521 - BUG/MEDIUM: mux-h2: Don't forget to set the CS_FL_EOS flag with htx.
6522 - BUG/MINOR: hpack: fix off-by-one in header name encoding length calculation
6523 - CLEANUP: hpack: no need to include chunk.h, only include buf.h
6524 - MINOR: hpack: simplify the len to bytes conversion
6525 - MINOR: hpack: use ist2bin() to copy header names in hpack_encode_header()
6526 - MINOR: hpack: optimize header encoding for short names
6527 - CONTRIB: hpack: add a compressed stream generator for the encoder
6528 - MEDIUM: hpack: make it possible to encode any static header name
6529 - MINOR: hpack: move the length computation and encoding functions to .h
6530 - MINOR: hpack: provide a function to encode a short indexed header
6531 - MINOR: hpack: provide a function to encode a long indexed header
6532 - MINOR: hpack: provide new functions to encode the ":status" header
6533 - MEDIUM: mux-h2: make use of standard HPACK encoding functions for the status
6534 - MINOR: hpack: provide a function to encode an HTTP method
6535 - MEDIUM: mux-h2: make use of hpack_encode_method() to encode the method
6536 - MINOR: hpack: provide a function to encode an HTTP scheme
6537 - MEDIUM: mux-h2: make use of hpack_encode_scheme() to encode the scheme
6538 - MINOR: hpack: provide a function to encode an HTTP path
6539 - MEDIUM: mux-h2: make use of hpack_encode_path() to encode the path
6540 - REGTEST: add the HTTP rules test involving HTX processing
6541 - REORG: connection: centralize the conn_set_{tos,mark,quickack} functions
6542 - MEDIUM: cli: rework the CLI proxy parser
6543 - MINOR: cli: parse prompt command in the CLI proxy
6544 - MINOR: cli: implements 'quit' in the CLI proxy
6545 - BUG/MINOR: cli: wait for payload data even without prompt
6546 - MEDIUM: cli: handle payload in CLI proxy
6547 - MINOR: cli: use pcli_flags for prompt activation
6548 - MINOR: compression: Rename the function check_legacy_http_comp_flt()
6549 - MINOR: cache/htx: Don't use the same cache on HTX and legacy HTTP proxies
6550 - MINOR: cache: Register the cache as a data filter only if response is cacheable
6551 - MEDIUM: cache/htx: Add the HTX support into the cache
6552 - MINOR: cache: Improve and simplify the cache configuration check
6553 - MINOR: filters: Export the name of known filters
6554 - MEDIUM: cache/compression: Add a way to safely combined compression and cache
6555 - MEDIUM: cache: Require an explicit filter declaration if other filters are used
6556 - REORG: htx: merge types+proto into common/htx.h
6557 - REORG: http: create http_msg.c to place there some legacy HTTP parts
6558 - REORG: h1: move legacy http functions to http_msg.c
6559 - REORG: h1: move the h1_state definition to proto_http
6560 - CLEANUP: h1: remove some occurrences of unneeded h1.h inclusions
6561 - REORG: h1: merge types+proto into common/h1.h
6562 - CLEANUP: stream: remove SF_TUNNEL, SF_INITIALIZED, SF_CONN_TAR
6563 - MEDIUM: mux-h1: implement true zero-copy of DATA blocks
6564 - MINOR: config: round up global.tune.bufsize to the next multiple of 2 void*
6565 - BUG/MINOR: mux-h2: refrain from muxing during the preface
6566 - BUG/MINOR: mux-h2: advertise a larger connection window size
6567 - DOC: master CLI documentation in management.txt
6568 - MINOR: mux-h2: avoid copying large blocks into full buffers
6569 - MEDIUM: mux-h2: implement true zero-copy send of large HTX DATA blocks
6570 - MINOR: mux-h2: force reads to be HTX-aligned in HTX mode
6571 - MINOR: cli: change 'show proc' output of old processes
6572 - BUG/MEDIUM: mux-h1: Fix the zero-copy on output for chunked messages
6573 - BUG: dns: Prevent stack-exhaustion via recursion loop in dns_read_name
6574 - BUG: dns: Prevent out-of-bounds read in dns_read_name()
6575 - BUG: dns: Prevent out-of-bounds read in dns_validate_dns_response()
6576 - BUG: dns: Fix out-of-bounds read via signedness error in dns_validate_dns_response()
6577 - BUG: dns: Fix off-by-one write in dns_validate_dns_response()
6578 - REGTEST: the cache regtest requires haproxy 1.9
6579 - MEDIUM: cli: store CLI level in the appctx
6580 - MEDIUM: cli: show and change CLI permissions
6581 - CLEANUP: cli: use dedicated define instead of appctx ones
6582 - MEDIUM: cli: handle CLI level from the master CLI
6583 - BUG/MEDIUM: cli: handle correctly prefix and payload
6584 - BUILD: Makefile: Implements the help target
6585 - REGTESTS: adjust the http-rules regtest to support window updates
6586 - BUG/MEDIUM: connections: Remove CS_FL_EOS | CS_FL_REOS on retry.
6587 - BUG/MEDIUM: stream_interface: Don't report read0 if we were not connected.
6588 - BUG/MEDIUM: connection: Just make sure we closed the fd on connection failure.
6589 - MEDIUM: mux: Add an optional "reset" method.
6590 - BUG/MEDIUM: mux-h1: Fix loop if server closes its connection with unparsed data
6591 - MINOR: mux-h1: Add helper functions to wake a stream from recv or send
6592 - BUG/MEDIUM: mux-h1: Wake the stream for send once the connection is established
6593 - BUG/MEDIUM: connections: Don't attempt to reuse an unusable connection.
6594 - MEDIUM: htx: Try to take a connection over if it has no owner.
6595 - REGTEST: Reg testing improvements.
6596 - REGTEST: Add a first test for health-checks.
6597 - REGTEST: Reg test for "check" health-check option.
6598 - REGTEST: level 1 health-check test 2.
6599 - REGTEST: Add miscellaneous reg tests for health-checks.
6600 - REGTEST: add a few HTTP messaging tests
6601 - MINOR: lb: make the leastconn algorithm more accurate
6602 - REGTEST: fix missing space in checks/s00001
6603 - REGTEST: http-messaging: add "option http-buffer-request" for H2 tests
6604 - BUG/MEDIUM: cache: fix random crash on filter parser's error path
6605 - MINOR: connection: realign empty buffers in muxes, not transport layers
6606 - MINOR: mux_h1/h2: simplify the zero-copy Rx alignment
6607 - MINOR: backend: count the number of connect and reuse per server and per backend
6608 - BUG/MINOR: stats: fix inversion of failed header rewrites and other statuses
6609 - MINOR: tools: increase the number of ITOA strings to 16
6610 - MINOR: cache: report the number of cache lookups and cache hits
6611 - MEDIUM: tasks: check the global task mask instead of the thread number
6612 - MINOR: mworker: set all_threads_mask and pid_bit to 1
6613 - BUG/MINOR: proto_htx: Fix htx_res_set_status to also set the reason
6614 - BUG/MINOR: stats: Parse post data for HTX streams
6615 - MINOR: payload/htx: Adapt smp_fetch_len to be HTX aware
6616 - MINOR: http_fecth: Implement body_len and body_size sample fetches for the HTX
6617 - MAJOR: lua: Forbid calls to Channel functions for LUA scripts in HTTP proxies
6618 - MEDIUM: lua/htx: Adapt functions of the HTTP to be compatible with HTX
6619 - MINOR: lua/htx: Adapt the functions get_in_length and is_full to be HTX aware
6620 - MAJOR: lua/htx: Adapt HTTP applets to support HTX messages
6621 - MINOR: lua: Remove useless check on the messages state in HTTP functions
6622 - BUG/MEDIUM: htx: When performing zero-copy, start from the right offset.
6623 - BUG/MINOR: mworker: don't use unitialized mworker_proc struct
6624 - MINOR: mworker/cli: indicate in the master prompt when a reload failed
6625 - MINOR: cli: implements 'reload' on master CLI
6626 - BUG/MEDIUM: log: Don't call sample_fetch_as_type if we don't have a stream.
6627 - BUG/MEDIUM: mux-h1: make sure we always have at least one HTX block to send
6628 - BUG/MAJOR: backend: only update server's counters when the server exists
6629 - MINOR: tools: preset the port of fd-based "sockets" to zero
6630 - BUG/MINOR: log: fix logging to both FD and IP
6631 - REGTEST: Add a reg test for HTTP cookies.
6632 - BUILD: ssl: Fix compilation without deprecated OpenSSL 1.1 APIs
6633 - BUILD: thread: properly report multi-thread support
6634 - BUG/MINOR: logs: leave startup-logs global and not per-thread
6635 - BUG/MEDIUM: threads: don't close the thread waker pipe if not init
6636 - BUG/MAJOR: compression/cache: Make it really works with these both filters
6637 - BUG/MEDIUM: h2: Don't forget to destroy the h2s after deferred shut.
6638 - MEDIUM: proxy: Set http-reuse safe as default.
6639 - MEDIUM: servers: Add a command to limit the number of idling connections.
6640 - MEDIUM: servers: Replace idle-timeout with pool-purge-delay.
6641 - MEDIUM: mux: Destroy the stream before trying to add the conn to the idle list.
6642 - MEDIUM: mux: provide the session to the init() and attach() method.
6643 - MEDIUM: sessions: Don't keep an infinite number of idling connections.
6644 - MEDIUM: servers: Be more agressive when adding H2 connection to idle lists.
6645 - MEDIUM: mux_h2: Always set CS_FL_NOT_FIRST for new conn_streams.
6646 - BUG/MEDIUM: htx/cache: use the correct class of error codes on abort
6647 - BUG/MINOR: cache: also consider CF_SHUTR to abort delivery
6648 - MINOR: pools: Cast to volatile int * instead of int *.
6649 - MINOR: debug: make the ABORT_NOW macro use a volatile int
6650 - BUG/MEDIUM: h2: Don't destroy the h2s if it still has a cs attached.
6651 - BUG/MEDIUM: mux-h1: don't try to process an empty input buffer
6652 - DOC: clarify the agent-check status line syntax
6653 - BUG/MAJOR: hpack: fix length check for short names encoding
6654 - DOC: split the README into README + INSTALL
6655
Willy Tarreau72e92272018-12-08 16:20:55 +010066562018/12/08 : 1.9-dev10
6657 - MINOR: htx: Rename functions htx_*_to_str() to be H1 specific
6658 - BUG/MINOR: htx: Force HTTP/1.1 on H1 formatting when version is 1.1 or above
6659 - BUG/MINOR: fix ssl_fc_alpn and actually add ssl_bc_alpn
6660 - BUG/MEDIUM: mworker: stop proxies which have no listener in the master
6661 - BUG/MEDIUM: h1: Destroy a connection after detach if it has no owner.
6662 - BUG/MEDIUM: h2: Don't forget to wake the tasklet after shutr/shutw.
6663 - BUG/MINOR: flt_trace/compression: Use the right flag to add the HTX support
6664 - BUG/MEDIUM: stream_interface: Make REALLY sure we read all the data.
6665 - MEDIUM: mux-h1: Revamp the way subscriptions are handled.
6666 - BUG/MEDIUM: mux-h1: Always set CS_FL_RCV_MORE when data are received in h1_recv()
6667 - MINOR: mux-h1: Make sure to return 1 in h1_recv() when needed
6668 - BUG/MEDIUM: mux-h1: Release the mux H1 in h1_process() if there is no h1s
6669 - BUG/MINOR: proto_htx: Truncate the request when an error is detected
6670 - BUG/MEDIUM: h2: When sending in HTX, make sure the caller knows we sent all.
6671 - BUG/MEDIUM: mux-h2: properly update the window size in HTX mode
6672 - BUG/MEDIUM: mux-h2: make sure to always report HTX EOM when consumed by headers
6673 - BUG/MEDIUM: mux-h2: stop sending HTX once the mux is blocked
6674 - BUG/MEDIUM: mux-h2: don't send more HTX data than requested
6675 - MINOR: mux-h2: stop on non-DATA and non-EOM HTX blocks
6676 - BUG/MEDIUM: h1: Correctly report used data with no len.
6677 - MEDIUM: h1: Realign the ibuf before calling rcv_buf if needed.
6678 - BUG/MEDIUM: mux_pt: Always set CS_FL_RCV_MORE.
6679 - MINOR: htx: make htx_from_buf() adjust the size only on new buffers
6680 - MINOR: htx: add buf_room_for_htx_data() to help optimize buffer transfers
6681 - MEDIUM: mux-h1: make use of buf_room_for_htx_data() instead of b_room()
6682 - MEDIUM: mux-h1: attempt to zero-copy Rx DATA transfers
6683 - MEDIUM: mux-h1: avoid a double copy on the Tx path whenever possible
6684 - BUG/MEDIUM: stream-int: don't mark as blocked an empty buffer on Rx
6685 - BUG/MINOR: mux-h1: Check h1m flags to set the server conn_mode on request path
6686 - MEDIUM: htx: Rework conversion from a buffer to an htx structure
6687 - MEDIUM: channel/htx: Add functions for forward HTX data
6688 - MINOR: mux-h1: Don't adjust anymore the amount of data sent in h1_snd_buf()
6689 - CLEANUP: htx: Fix indentation here and there in HTX files
6690 - MINOR: mux-h1: Allow partial data consumption during outgoing data processing
6691 - BUG/MEDIUM: mux-h2: use the correct offset for the HTX start line
6692 - BUG/MEDIUM: mux-h2: stop sending using HTX on errors
6693 - MINOR: mux-h1: Drain obuf if the output is closed after sending data
6694 - BUG/MEDIUM: mworker: stop every tasks in the master
6695 - BUG/MEDIUM: htx: Set the right start-line offset after a defrag
6696 - BUG/MEDIUM: stream: Don't dereference s->txn when it is not there yet.
6697 - BUG/MEDIUM: connections: Reuse an already attached conn_stream.
6698 - MINOR: stream-int: add a new blocking condition on the remote connection
6699 - BUG/MEDIUM: stream-int: don't attempt to receive if the connection is not established
6700 - BUG/MEDIUM: lua: block on remote connection establishment
6701 - BUG/MEDIUM: mworker: fix several typos in mworker_cleantasks()
6702 - SCRIPTS/REGTEST: merge grep+sed into sed in run-regtests
6703 - BUG/MEDIUM: connections: Split CS_FL_RCV_MORE into 2 flags.
6704 - BUG/MEDIUM: h1: Don't free the connection if it's an outgoing connection.
6705 - BUG/MEDIUM: h1: Set CS_FL_REOS if we had a read0.
6706 - BUG/MEDIUM: mux-h1: Be sure to have a conn_stream to set CS_FL_REOS in h1_recv
6707 - REGTEST: Move LUA reg test 4 to level 1.
6708 - MINOR: ist: add functions to copy/uppercase/lowercase into a buffer or string
6709 - MEDIUM: ist: always turn header names to lower case
6710 - MINOR: h2: don't turn HTX header names to lower case anymore
6711 - MEDIUM: ist: use local conversion arrays to case conversion
6712 - MINOR: htx: switch to case sensitive search of lower case header names
6713 - MINOR: mux-h1: Set CS_FL_EOS when read0 is detected and no data are pending
6714 - BUG/MINOR: stream-int: Process read0 even if no data was received in si_cs_recv
6715 - REGTEST: fix the Lua test file name in test lua/h00002 :-)
6716 - REGTEST: add a basic test for HTTP rules manipulating headers
6717 - BUG/MEDIUM: sample: Don't treat SMP_T_METH as SMP_T_STR.
6718 - MINOR: sample: add bc_http_major
6719 - BUG/MEDIUM: htx: fix typo in htx_replace_stline() making it fail all the time
6720 - REGTEST: make the HTTP rules test compatible with HTTP/2 as well
6721 - BUG/MEDIUM: h2: Don't try to chunk data when using HTX.
6722 - MINOR: compiler: add a new macro ALREADY_CHECKED()
6723 - BUILD: h2: mark the start line already checked to avoid warnings
6724 - BUG/MINOR: mux-h1: Remove the connection header when it is useless
6725
Willy Tarreauda7e3be2018-12-02 19:31:37 +010067262018/12/02 : 1.9-dev9
6727 - BUILD/MINOR: ssl: fix build with non-alpn/non-npn libssl
6728 - BUG/MINOR: mworker: Do not attempt to close(2) fd -1
6729 - BUILD: compression: fix build error with DEFAULT_MAXZLIBMEM
6730 - MINOR: compression: always create the compression pool
6731 - BUG/MEDIUM: mworker: fix FD leak upon reload
6732 - BUILD: htx: fix fprintf format inconsistency on 32-bit platforms
6733 - BUILD: buffers: buf.h requires unistd to get ssize_t on libmusl
6734 - MINOR: initcall: introduce a way to register init functions to call at boot
6735 - MINOR: init: process all initcalls in order at boot time
6736 - MEDIUM: init: convert all trivial registration calls to initcalls
6737 - MINOR: thread: provide a set of lock initialisers
6738 - MINOR: threads: add new macros to declare self-initializing locks
6739 - MEDIUM: init: use self-initializing spinlocks and rwlocks
6740 - MINOR: initcall: apply initcall to all register_build_opts() calls
6741 - MINOR: initcall: use initcalls for most post_{check,deinit} and per_thread*
6742 - MINOR: initcall: use initcalls for section parsers
6743 - MINOR: memory: add a callback function to create a pool
6744 - MEDIUM: init: use initcall for all fixed size pool creations
6745 - MEDIUM: memory: use pool_destroy_all() to destroy all pools on deinit()
6746 - MEDIUM: initcall: use initcalls for a few initialization functions
6747 - MEDIUM: memory: make the pool cache an array and not a thread_local
6748 - MINOR: ssl: free ctx when libssl doesn't support NPN
6749 - BUG/MINOR: proto_htx: only mark connections private if NTLM is detected
6750 - MINOR: h2: make struct h2_ops static
6751 - BUG/MEDIUM: mworker: avoid leak of client socket
6752 - REORG: mworker: declare master variable in global.h
6753 - BUG/MEDIUM: listeners: CLOEXEC flag is not correctly set
6754 - CLEANUP: http: Fix typo in init_http's comment
6755 - BUILD: Makefile: Disable -Wcast-function-type if it exists.
6756 - BUG/MEDIUM: h2: Don't bogusly error if the previous stream was closed.
6757 - REGTEST/MINOR: script: add run-regtests.sh script
6758 - REGTEST: Add a basic test for the cache.
6759 - BUG/MEDIUM: mux_pt: Don't forget to unsubscribe() on attach.
6760 - BUG/MINOR: ssl: ssl_sock_parse_clienthello ignores session id
6761 - BUG/MEDIUM: connections: Wake the stream once the mux is chosen.
6762 - BUG/MEDIUM: connections: Don't forget to detach the connection from the SI.
6763 - BUG/MEDIUM: stream_interface: Don't check if the handshake is done.
6764 - BUG/MEDIUM: stream_interface: Make sure we read all the data available.
6765 - BUG/MEDIUM: h2: Call h2_process() if there's an error on the connection.
6766 - REGTEST: Fix several issues.
6767 - REGTEST: lua: check socket functionality from a lua-task
6768 - BUG/MEDIUM: session: Remove the session from the session_list in session_free.
6769 - BUG/MEDIUM: streams: Don't assume we have a CS in sess_update_st_con_tcp.
6770 - BUG/MEDIUM: connections: Don't assume we have a mux in connect_server().
6771 - BUG/MEDIUM: connections: Remove the connection from the idle list before destroy.
6772 - BUG/MEDIUM: session: properly clean the outgoing connection before freeing.
6773 - BUG/MEDIUM: mux_pt: Don't try to send if handshake is not done.
6774 - MEDIUM: connections: Put H2 connections in the idle list if http-reuse always.
6775 - MEDIUM: h2: Destroy a connection with no stream if it has no owner.
6776 - MAJOR: sessions: Store multiple outgoing connections in the session.
6777 - MEDIUM: session: Steal owner-less connections on end of transaction.
6778 - MEDIUM: server: Be smarter about deciding to reuse the last server.
6779 - BUG/MEDIUM: Special-case http_proxy when dealing with outgoing connections.
6780 - BUG/MINOR: cfgparse: Fix transition between 2 sections with the same name
6781 - BUG/MINOR: http: Use out buffer instead of trash to display error snapshot
6782 - BUG/MINOR: htx: Fix block size calculation when a start-line is added/replaced
6783 - BUG/MINOR: mux-h1: Fix processing of "Connection: " header on outgoing messages
6784 - BUG/MEDIUM: mux-h1: Reset the H1 parser when an outgoing message is processed
6785 - BUG/MINOR: proto_htx: Send outgoing data to client to start response processing
6786 - BUG/MINOR: htx: Stop a header or a start line lookup on the first EOH or EOM
6787 - BUG/MINOR: connection: report mux modes when HTX is supported
6788 - MINOR: htx: add a function to cut the beginning of a DATA block
6789 - MEDIUM: conn_stream: Add a way to get mux's info on a CS from the upper layer
6790 - MINOR: mux-h1: Implement get_cs_info() callback
6791 - MINOR: stream: Rely on CS's info if it exists and fallback on session's ones
6792 - MINOR: proto_htx: Use conn_stream's info to set t_idle duration when possible
6793 - MINOR: mux-h1: Don't rely on the stream anymore in h1_set_srv_conn_mode()
6794 - MINOR: mux-h1: Write last chunk and trailers if not found in the HTX message
6795 - MINOR: mux-h1: Be prepare to fail when EOM is added during trailers parsing
6796 - MINOR: mux-h1: Subscribe to send in h1_snd_buf() when not all data have been sent
6797 - MINOR: mux-h1: Consume channel's data in a loop in h1_snd_buf()
6798 - MEDIUM: mux-h1: Add keep-alive outgoing connections in connections list
6799 - MINOR: htx: Add function to add an HTX block just before another one
6800 - MINOR: htx: Add function to iterate on an HTX message using HTX blocks
6801 - MINOR: htx: Add a function to find the HTX block corresponding to a data offset
6802 - MINOR: stats: Don't add end-of-data marker and trailers in the HTX response
6803 - MEDIUM: htx: Change htx_sl to be a struct instead of an union
6804 - MINOR: htx: Add the start-line offset for the HTX message in the HTX structure
6805 - MEDIUM: htx: Don't rely on h1_sl anymore except during H1 header parsing
6806 - MINOR: proto-htx: Use the start-line flags to set the HTTP messsage ones
6807 - MINOR: htx: Add BODYLESS flags on the HTX start-line and the HTTP message
6808 - MINOR: proto_htx: Use full HTX messages to send 100-Continue responses
6809 - MINOR: proto_htx: Use full HTX messages to send 103-Early-Hints responses
6810 - MINOR: proto_htx: Use full HTX messages to send 401 and 407 responses
6811 - MINOR: proto_htx: Send valid HTX message when redir mode is enabled on a server
6812 - MINOR: proto_htx: Send valid HTX message to send 30x responses
6813 - MEDIUM: proto_htx: Convert all HTTP error messages into HTX
6814 - MINOR: mux-h1: Process conn_mode on the EOH when no connection header is found
6815 - MINOR: mux-h1: Change client conn_mode on an explicit close for the response
6816 - MINOR: mux-h1: Capture bad H1 messages
6817 - MAJOR: filters: Adapt filters API to be compatible with the HTX represenation
6818 - MEDIUM: proto_htx/filters: Add data filtering during the forwarding
6819 - MINOR: flt_trace: Adapt to be compatible with the HTX representation
6820 - MEDIUM: compression: Adapt to be compatible with the HTX representation
6821 - MINOR: h2: implement H2->HTX request header frame transcoding
6822 - MEDIUM: mux-h2: register mux for both HTTP and HTX modes
6823 - MEDIUM: mux-h2: make h2_rcv_buf() support HTX transfers
6824 - MEDIUM: mux-h2: make h2_snd_buf() HTX-aware
6825 - MEDIUM: mux-h2: add basic H2->HTX transcoding support for headers
6826 - MEDIUM: mux-h2: implement emission of H2 headers frames from HTX blocks
6827 - MEDIUM: mux-h2: implement the emission of DATA frames from HTX DATA blocks
6828 - MEDIUM: mux-h2: support passing H2 DATA frames to HTX blocks
6829 - BUG/MINOR: cfgparse: Fix the call to post parser of the last sections parsed
6830 - BUG/MEDIUM: mux-h2: don't lose the first response header in HTX mode
6831 - BUG/MEDIUM: mux-h2: remove the HTX EOM block on H2 response headers
6832 - MINOR: listener: the mux_proto entry in the bind_conf is const
6833 - MINOR: connection: create conn_get_best_mux_entry()
6834 - MINOR: server: the mux_proto entry in the server is const
6835 - MINOR: config: make sure to associate the proper mux to bind and servers
6836 - MINOR: hpack: add ":path" to the list of common header fields
6837 - MINOR: h2: add new functions to produce an HTX message from an H2 response
6838 - MINOR: mux-h2: mention that the mux is compatible with both sides
6839 - MINOR: mux-h2: implement an outgoing stream allocator : h2c_bck_stream_new()
6840 - MEDIUM: mux-h2: start to create the outgoing mux
6841 - MEDIUM: mux-h2: implement encoding of H2 request on the backend side
6842 - MEDIUM: mux-h2: make h2_frt_decode_headers() direction-agnostic
6843 - MEDIUM: mux-h2: make h2_process_demux() capable of processing responses as well
6844 - MEDIUM: mux-h2: Implement h2_attach().
6845 - MEDIUM: mux-h2: Don't bother flagging outgoing connections as TOOMANY.
6846 - REGTEST: Fix LEVEL 4 script 0 of "connection" module.
6847 - MINOR: connection: Fix a comment.
6848 - MINOR: mux: add a "max_streams" method.
6849 - MEDIUM: servers: Add a way to keep idle connections alive.
6850 - CLEANUP: fix typos in the htx subsystem
6851 - CLEANUP: Fix typo in the chunk headers file
6852 - CLEANUP: Fix typos in the h1 subsystem
6853 - CLEANUP: Fix typos in the h2 subsystem
6854 - CLEANUP: Fix a typo in the mini-clist header
6855 - CLEANUP: Fix a typo in the proto_htx subsystem
6856 - CLEANUP: Fix typos in the proto_tcp subsystem
6857 - CLEANUP: Fix a typo in the signal subsystem
6858 - CLEANUP: Fix a typo in the session subsystem
6859 - CLEANUP: Fix a typo in the queue subsystem
6860 - CLEANUP: Fix typos in the shctx subsystem
6861 - CLEANUP: Fix typos in the socket pair protocol subsystem
6862 - CLEANUP: Fix typos in the map management functions
6863 - CLEANUP: Fix typo in the fwrr subsystem
6864 - CLEANUP: Fix typos in the cli subsystem
6865 - CLEANUP: Fix typo in the 51d subsystem
6866 - CLEANUP: Fix a typo in the base64 subsystem
6867 - CLEANUP: Fix a typo in the connection subsystem
6868 - CLEANUP: Fix a typo in the protocol header file
6869 - CLEANUP: Fix a typo in the checks header file
6870 - CLEANUP: Fix typos in the file descriptor subsystem
6871 - CLEANUP: Fix a typo in the listener subsystem
6872 - BUG/MINOR: lb-map: fix unprotected update to server's score
6873 - BUILD: threads: fix minor build warnings when threads are disabled
6874
Willy Tarreau0b936ad2018-11-25 09:16:46 +010068752018/11/25 : 1.9-dev8
6876 - REORG: config: extract the global section parser into cfgparse-global
6877 - REORG: config: extract the proxy parser into cfgparse-listen.c
6878 - BUILD: update the list of supported targets and compilers in makefile and readme
6879 - BUILD: reorder the objects in the makefile
6880 - BUILD: Makefile: make "V=1" show some of the commands that are executed
6881 - BUILD: Makefile: add the quiet mode to a few more targets
6882 - BUILD: Makefile: add "$(Q)" to clean, tags and cscope targets
6883 - BUILD: Makefile: switch to quiet mode by default for CC/LD/AR
6884 - MINOR: cli: format `show proc` to be more readable
6885 - MINOR: cli: displays uptime in `show proc`
6886 - MINOR: cli: show master information in 'show proc'
6887 - BUG/MEDIUM: hpack: fix encoding of "accept-ranges" field
6888 - MAJOR: mux-h1: Remove the rxbuf and decode HTTP messages in channel's buffer
6889 - BUG/MINOR: mux-h1: Enable keep-alive on server side
6890 - BUG/MEDIUM: mux-h1: Fix freeze when the kernel splicing is used
6891 - BUG/MEDIUM: mux-h1: Don't set the flag CS_FL_RCV_MORE when nothing was parsed
6892 - BUG/MINOR: stats/htx: Remove channel's output when the request is eaten
6893 - BUG/MINOR: proto_htx: Fix request/response synchronisation on error
6894 - MINOR: stream-int: Notify caller when an error is reported after a rcv_pipe()
6895 - MINOR: stream-int: Notify caller when an error is reported after a rcv_buf()
6896 - BUG/MINOR: stream-int: Don't call snd_buf() if there are still data in the pipe
6897 - MINOR: stream-int: remove useless checks on CS and conn flags in si_cs_send()
6898 - BUG/MINOR: config: Be aware of the HTX during the check of mux protocols
6899 - BUG/MINOR: mux-htx: Fix bad test on h1c flags in h1_recv_allowed()
6900 - MEDIUM: mworker: wait mode use standard init code path
6901 - MINOR: log: introduce ha_notice()
6902 - MINOR: mworker: use ha_notice to announce a new worker
6903 - BUG/MEDIUM: http_fetch: Make sure name is initialized before http_find_header.
6904 - MINOR: cli: add mworker_accept_wrapper to 'show fd'
6905 - MEDIUM: signal: signal_unregister() removes every handlers
6906 - BUG/MEDIUM: mworker: unregister the signals of main()
6907 - MINOR: cli: add a few missing includes in proto/cli.h
6908 - REORG: time/activity: move activity measurements to activity.{c,h}
6909 - MINOR: activity: report the average loop time in "show activity"
6910 - MINOR: activity: add configuration and CLI support for "profiling.tasks"
6911 - MEDIUM: tasks: collect per-task CPU time and latency
6912 - MINOR: sample: add cpu_calls, cpu_ns_avg, cpu_ns_tot, lat_ns_avg, lat_ns_tot
6913 - MINOR: cli/activity: rename the stolen CPU time fields to mention milliseconds
6914 - BUG/MINOR: cli: Fix memory leak
6915 - BUG/MINOR: mworker: fix FD leak and memory leak in error path
6916 - MINOR: poller: move the call of tv_update_date() back to the pollers
6917 - MINOR: polling: add an option to support busy polling
6918 - MINOR: server: Add "alpn" and "npn" keywords.
6919 - MEDIUM: connection: Don't bother reactivating polling after connection retry.
6920 - MAJOR: connections: Defer mux creation for outgoing connection if alpn is set.
6921 - MEDIUM: ssl: Add ssl_bc_alpn and ssl_bc_npn sample fetches.
6922 - MINOR: servers: Free [idle|safe|priv]_conns on exit.
6923 - REGTEST: add the option to test only a specific set of files
6924 - REGTEST: add a test for connections to a "dispatch" address
6925 - BUG/MEDIUM: connections: Don't reset the conn flags in *connect_server().
6926 - MINOR: server: Only defined conn_complete_server if USE_OPENSSL is set.
6927 - BUG/MEDIUM: servers: Don't check if we have a conn_stream too soon.
6928 - BUG/MEDIUM: sessions: Set sess->origin to NULL if the origin was destroyed.
6929 - MEDIUM: servers: Store the connection in the SI until we have a mux.
6930 - BUG/MEDIUM: h2: wake the processing task up after demuxing
6931 - BUG/MEDIUM: h2: restart demuxing after releasing buffer space
6932
Willy Tarreau5c0e41b2018-11-18 22:33:00 +010069332018/11/18 : 1.9-dev7
6934 - BUILD: cache: fix a build warning regarding too large an integer for the age
6935 - CLEANUP: fix typos in the comments of the Makefile
6936 - CLEANUP: fix a typo in a comment for the contrib/halog subsystem
6937 - CLEANUP: fix typos in comments for the contrib/modsecurity subsystem
6938 - CLEANUP: fix typos in comments for contrib/spoa_example
6939 - CLEANUP: fix typos in comments for contrib/wireshark-dissectors
6940 - DOC: Fix typos in README and CONTRIBUTING
6941 - MINOR: log: slightly improve error message syntax on log failure
6942 - DOC: logs: the format directive was missing from the second log part
6943 - MINOR: log: report the number of dropped logs in the stats
6944 - MEDIUM: log: add support for logging to existing file descriptors
6945 - MEDIUM: log: support a new "short" format
6946 - MEDIUM: log: add a new "raw" format
6947 - BUG/MEDIUM: stream-int: change the way buffer room is requested by a stream-int
6948 - BUG/MEDIUM: stream-int: convert some co_data() checks to channel_is_empty()
6949 - MINOR: namespaces: don't build namespace.c if disabled
6950 - BUILD/MEDIUM: threads/affinity: DragonFly build fix
6951 - MINOR: http: Add new "early-hint" http-request action.
6952 - MINOR: http: Make new "early-hint" http-request action really be parsed.
6953 - MINOR: http: Implement "early-hint" http request rules.
6954 - MINOR: doc: Add information about "early-hint" http-request action.
6955 - DOC: early-hints: fix truncated line.
6956 - MINOR: mworker: only close std{in,out,err} in daemon mode
6957 - BUG/MEDIUM: log: don't CLOEXEC the inherited FDs
6958 - BUG/MEDIUM: Make sure stksess is properly aligned.
6959 - BUG/MEDIUM: stream-int: make failed splice_in always subscribe to recv
6960 - BUG/MEDIUM: stream-int: clear CO_FL_WAIT_ROOM after splicing data in
6961 - BUG/MINOR: stream-int: make sure not to go through the rcv_buf path after splice()
6962 - CONTRIB: debug: fix build related to conn_stream flags change
6963 - REGTEST: fix scripts 1 and 3 to accept development version
6964 - BUG/MINOR: http_fetch: Remove the version part when capturing the request uri
6965 - MINOR: http: Regroup return statements of http_req_get_intercept_rule at the end
6966 - MINOR: http: Regroup return statements of http_res_get_intercept_rule at the end
6967 - BUG/MINOR: http: Be sure to sent fully formed HTTP 103 responses
6968 - MEDIUM: jobs: support unstoppable jobs for soft stop
6969 - MEDIUM: listeners: support unstoppable listener
6970 - MEDIUM: cli: worker socketpair is unstoppable
6971 - BUG/MINOR: stream-int: set SI_FL_WANT_PUT in sess_establish()
6972 - MINOR: stream: move the conn_stream specific calls to the stream-int
6973 - BUG/MINOR: config: Copy default error messages when parsing of a backend starts
6974 - CLEANUP: h2: minimum documentation for recent API changes
6975 - MINOR: mux: implement a get_first_cs() method
6976 - MINOR: stream-int: make conn_si_send_proxy() use cs_get_first()
6977 - MINOR: stream-int: relax the forwarding rules in stream_int_notify()
6978 - MINOR: stream-int: expand the flags to 32-bit
6979 - MINOR: stream-int: rename SI_FL_WAIT_ROOM to SI_FL_RXBLK_ROOM
6980 - MINOR: stream-int: introduce new SI_FL_RXBLK flags
6981 - MINOR: stream-int: add new functions si_{rx,tx}_{blocked,endp_ready}()
6982 - MINOR: stream-int: replace SI_FL_WANT_PUT with !SI_FL_RX_WAIT_EP
6983 - MINOR: stream-int: use si_rx_blocked()/si_tx_blocked() to check readiness
6984 - MEDIUM: stream-int: use si_rx_buff_{rdy,blk} to report buffer readiness
6985 - MINOR: stream-int: replace si_{want,stop}_put() with si_rx_endp_{more,done}()
6986 - MEDIUM: stream-int: update the endp polling status only at the end of si_cs_recv()
6987 - MINOR: stream-int: make si_sync_recv() simply check ENDP before si_cs_recv()
6988 - MINOR: stream-int: automatically mark applets as ready if they block on the channel
6989 - MEDIUM: stream-int: fix the si_cant_put() calls used for end point readiness
6990 - MEDIUM: stream-int: fix the si_cant_put() calls used for buffer readiness
6991 - MEDIUM: stream-int: use si_rx_shut_blk() to indicate the SI is closed
6992 - MEDIUM: stream-int: unconditionally call si_chk_rcv() in update and notify
6993 - MEDIUM: stream-int: make use of si_rx_chan_{rdy,blk} to control the stream-int from the channel
6994 - MINOR: stream-int: replace si_cant_put() with si_rx_room_{blk,rdy}()
6995 - MEDIUM: connections: Wait until the connection is established to try to recv.
6996 - MEDIUM: mux: Teach the mux_pt how to deal with idle connections.
6997 - MINOR: mux: Add a new "avail_streams" method.
6998 - MINOR: mux: Add a destroy() method.
6999 - MINOR: sessions: Start to store the outgoing connection in sessions.
7000 - MAJOR: connections: Detach connections from streams.
7001 - MINOR: conn_stream: Add a flag to notify the mux it should flush its buffers
7002 - MINOR: htx: Add proto_htx.c file
7003 - MINOR: conn_stream: Add a flag to notify the mux it must respect the reserve
7004 - MINOR: http: Add standalone functions to parse a start-line or a header
7005 - MINOR: http: Call http_send_name_header with the stream instead of the txn
7006 - MINOR: conn_stream: Add a flag to notify the SI some data were received
7007 - MINOR: http: Add macros to check if a stream uses the HTX representation
7008 - MEDIUM: proto_htx: Add HTX analyzers and use it when the mux H1 is used
7009 - MEDIUM: mux-h1: Add dummy mux to handle HTTP/1.1 connections
7010 - MEDIUM: mux-h1: Add parsing of incoming and ougoing HTTP messages
7011 - MAJOR: mux-h1/proto_htx: Handle keep-alive connections in the mux
7012 - MEDIUM: mux-h1: Add support of the kernel TCP splicing to forward data
7013 - MEDIUM: htx: Add API to deal with the internal representation of HTTP messages
7014 - MINOR: http_htx: Add functions to manipulate HTX messages in http_htx.c
7015 - MINOR: proto_htx: Add some functions to handle HTX messages
7016 - MAJOR: mux-h1/proto_htx: Switch mux-h1 and HTX analyzers on the HTX representation
7017 - MINOR: http_htx: Add functions to replace part of the start-line
7018 - MINOR: http_htx: Add functions to retrieve a specific occurrence of a header
7019 - MINOR: proto_htx: Rewrite htx_apply_redirect_rule to handle HTX messages
7020 - MINOR: proto_htx: Add the internal function htx_del_hdr_value
7021 - MINOR: proto_htx: Add the internal function htx_fmt_res_line
7022 - MINOR: proto_htx: Add functions htx_transform_header and htx_transform_header_str
7023 - MINOR: proto_htx: Add functions htx_req_replace_stline and htx_res_set_status
7024 - MINOR: proto_htx: Add function to build and send HTTP 103 responses
7025 - MINOR: proto_htx: Add functions htx_req_get_intercept_rule and htx_res_get_intercept_rule
7026 - MINOR: proto_htx: Add functions to apply req* and rsp* rules on HTX messages
7027 - MINOR: proto_htx: Add functions to manage cookies on HTX messages
7028 - MINOR: proto_htx: Add functions to check the cacheability of HTX messages
7029 - MINOR: proto_htx: Add functions htx_send_name_header
7030 - MINOR: proto_htx: Add functions htx_perform_server_redirect
7031 - MINOR: proto_htx: Add functions to handle the stats applet
7032 - MEDIUM: proto_htx: Adapt htx_process_req_common to handle HTX messages
7033 - MEDIUM: proto_htx: Adapt htx_process_request to handle HTX messages
7034 - MINOR: proto_htx: Adapt htx_process_tarpit to handle HTX messages
7035 - MEDIUM: proto_htx: Adapt htx_wait_for_request_body to handle HTX messages
7036 - MEDIUM: proto_htx: Adapt htx_process_res_common to handle HTX messages
7037 - MINOR: http_fetch: Add smp_prefetch_htx
7038 - MEDIUM: http_fetch: Adapt all fetches to handle HTX messages
7039 - MEDIUM: mux-h1: Wait for connection establishment before consuming channel's data
7040 - MINOR: stats/htx: Adapt the stats applet to handle HTX messages
7041 - MINOR: stream: Don't reset sov value with HTX messages
7042 - MEDIUM: mux-h1: Handle errors and timeouts in the stream
7043 - MINOR: filters/htx: Forbid filters when the HTX is enabled on a proxy
7044 - MINOR: lua/htx: Forbid lua usage when the HTX is enabled on a proxy
7045 - CLEANUP: Fix some typos in the haproxy subsystem
7046 - CLEANUP: Fix typos in the dns subsystem
7047 - CLEANUP: Fix typos in the pattern subsystem
7048 - CLEANUP: fix 2 typos in the xxhash subsystem
7049 - CLEANUP: fix a few typos in the comments of the server subsystem
7050 - CLEANUP: fix a misspell in tests/filltab25.c
7051 - CLEANUP: fix a typo found in the stream subsystem
7052 - CLEANUP: fix typos in comments in ebtree
7053 - CLEANUP: fix typos in reg-tests
7054 - CLEANUP: fix typos in the comments of the vars subsystem
7055 - CLEANUP: fix typos in the hlua_fcn subsystem
7056 - CLEANUP: fix typos in the proto_http subsystem
7057 - CLEANUP: fix typos in the proxy subsystem
7058 - CLEANUP: fix typos in the ssl_sock subsystem
7059 - DOC: Fix typos in different subsections of the documentation
7060 - DOC: fix a few typos in the documentation
7061 - MINOR: Fix an error message thrown when we run out of memory
7062 - MINOR: Fix typos in error messages in the proxy subsystem
7063 - MINOR: fix typos in the examples files
7064 - CLEANUP: Fix a typo in the stats subsystem
7065 - CLEANUP: Fix typos in the acl subsystem
7066 - CLEANUP: Fix typos in the cache subsystem
7067 - CLEANUP: Fix typos in the cfgparse subsystem
7068 - CLEANUP: Fix typos in the filters subsystem
7069 - CLEANUP: Fix typos in the http subsystem
7070 - CLEANUP: Fix typos in the log subsystem
7071 - CLEANUP: Fix typos in the peers subsystem
7072 - CLEANUP: Fix typos in the regex subsystem
7073 - CLEANUP: Fix typos in the sample subsystem
7074 - CLEANUP: Fix typos in the spoe subsystem
7075 - CLEANUP: Fix typos in the standard subsystem
7076 - CLEANUP: Fix typos in the stick_table subsystem
7077 - CLEANUP: Fix typos in the task subsystem
7078 - MINOR: Fix typo in error message in the standard subsystem
7079 - CLEANUP: fix typos in the comments of hlua
7080 - MINOR: Fix typo in the error 500 output of hlua
7081 - MINOR: Fix a typo in a warning message in the spoe subsystem
7082
Willy Tarreau96079492018-11-11 10:43:39 +010070832018/11/11 : 1.9-dev6
7084 - BUG/MEDIUM: tools: fix direction of my_ffsl()
7085 - BUG/MINOR: cli: forward the whole command on master CLI
7086 - BUG/MEDIUM: auth/threads: use of crypt() is not thread-safe
7087 - MINOR: compat: automatically detect support for crypt_r()
7088 - MEDIUM: auth/threads: make use of crypt_r() on systems supporting it
7089 - DOC: split the http-request actions in their own section
7090 - DOC: split the http-response actions in their own section
7091 - BUG/MAJOR: stream-int: don't call si_cs_recv() in stream_int_chk_rcv_conn()
7092 - BUG/MINOR: tasks: make sure wakeup events are properly reported to subscribers
7093 - MINOR: stats: report the number of active jobs and listeners in "show info"
7094 - MINOR: stats: report the number of active peers in "show info"
7095 - MINOR: stats: report the number of currently connected peers
7096 - MINOR: cli: show the number of reload in 'show proc'
7097 - MINOR: cli: can't connect to the target CLI
7098 - MEDIUM: mworker: does not create the CLI proxy when no listener
7099 - MINOR: mworker: displays more information when leaving
7100 - MEDIUM: mworker: exit with the incriminated exit code
7101 - MINOR: mworker: displays a message when a worker is forked
7102 - MEDIUM: mworker: leave when the master die
7103 - CLEANUP: stream-int: retro-document si_cs_io_cb()
7104 - BUG/MEDIUM: mworker: does not abort() in mworker_pipe_register()
7105 - BUG/MEDIUM: stream-int: don't wake up for nothing during SI_ST_CON
7106 - BUG/MEDIUM: cli: crash when trying to access a worker
7107 - DOC: restore note about "independant" typo
7108 - MEDIUM: stream: implement stream_buf_available()
7109 - MEDIUM: appctx: check for allocation attempts in buffer allocation callbacks
7110 - MINOR: stream-int: rename si_applet_{want|stop|cant}_{get|put}
7111 - MINOR: stream-int: add si_done_{get,put} to indicate that we won't do it anymore
7112 - MINOR: stream-int: use si_cant_put() instead of setting SI_FL_WAIT_ROOM
7113 - MINOR: stream-int: make use of si_done_{get,put}() in shut{w,r}
7114 - MINOR: stream-int: make it clear that si_ops cannot be null
7115 - MEDIUM: stream-int: temporarily make si_chk_rcv() take care of SI_FL_WAIT_ROOM
7116 - MINOR: stream-int: factor the SI_ST_EST state test into si_chk_rcv()
7117 - MEDIUM: stream-int: make SI_FL_WANT_PUT reflect CF_DONT_READ
7118 - MEDIUM: stream-int: always call si_chk_rcv() when we make room in the buffer
7119 - MEDIUM: stream-int: make si_chk_rcv() check that SI_FL_WAIT_ROOM is cleared
7120 - MINOR: stream-int: replace si_update() with si_update_both()
7121 - MEDIUM: stream-int: make stream_int_update() aware of the lower layers
7122 - CLEANUP: stream-int: remove the now unused si->update() function
7123 - MEDIUM: stream-int: Rely only on SI_FL_WAIT_ROOM to stop data receipt
7124 - MEDIUM: stream-int: Try to read data even if channel's buffer seems to be full
7125 - BUG/MINOR: config: better detect the presence of the h2 pattern in npn/alpn
7126
Willy Tarreaubddf2922018-10-28 20:39:31 +010071272018/10/28 : 1.9-dev5
7128 - BUILD: Makefile: add the new ERR variable to force -Werror
7129 - MINOR: freq_ctr: add swrate_add_scaled() to work with large samples
7130 - MINOR: stream_interface: Avoid calling si_cs_send/recv if not needed.
7131 - CLEANUP: http: Remove the unused function http_find_header
7132 - MINOR: h1: Export some functions parsing the value of some HTTP headers
7133 - BUG/MEDIUM: stream-int: don't set SI_FL_WAIT_ROOM on CF_READ_DONTWAIT
7134 - MINOR: proxy: add a new option "http-use-htx"
7135 - BUG/MEDIUM: pools: fix the minimum allocation size
7136 - MINOR: shctx: Shared objects block by block allocation.
7137 - MINOR: cache: Larger HTTP objects caching.
7138 - MINOR: shctx: Add a maximum object size parameter.
7139 - MINOR: cache: Add "max-object-size" option.
7140 - DOC: Update about the cache support for big objects.
7141 - BUG/MINOR: cache: Crashes with "total-max-size" > 2047(MB).
7142 - BUG/MINOR: cache: Wrong usage of shctx_init().
7143 - BUG/MINOR: ssl: Wrong usage of shctx_init().
7144 - MINOR: cache: Avoid usage of atoi() when parsing "max-object-size".
7145 - MINOR: shctx: Change max. object size type to unsigned int.
7146 - DOC: cache: Missing information about "total-max-size" and "max-object-size"
7147 - CLEANUP: tools: fix misleading comment above function LIM2A
7148 - MEDIUM: channel: merge back flags CF_WRITE_PARTIAL and CF_WRITE_EVENT
7149 - BUG/MINOR: only mark connections private if NTLM is detected
7150 - BUG/MINOR: only auto-prefer last server if lb-alg is non-deterministic
7151 - MINOR: stream: don't prune variables if the list is empty
7152 - MINOR: stream-int: add si_alloc_ibuf() to ease input buffer allocation
7153 - MEDIUM: stream-int: replace channel_alloc_buffer() with si_alloc_ibuf() everywhere
7154 - MEDIUM: stream: always call si_cs_recv() after a failed buffer allocation
7155 - MEDIUM: stream: don't try to send first in process_stream()
7156 - MEDIUM: stream-int: make si_update() synchronize flag changes before the I/O
7157 - MEDIUM: stream-int: call si_cs_process() in stream_int_update_conn
7158 - MINOR: stream-int: don't needlessly call tasklet_wakeup() in stream_int_chk_snd_conn()
7159 - MINOR: stream-int: make stream_int_notify() not wake the tasklet up
7160 - MINOR: stream-int: don't needlessly call si_cs_send() in si_cs_process()
7161 - MINOR: mworker: number of reload in the life of a worker
7162 - MEDIUM: mworker: each worker socketpair is a CLI listener
7163 - REORG: mworker: move struct mworker_proc to global.h
7164 - MINOR: server: export new_server() function
7165 - MEDIUM: mworker: move proc_list gen before proxies startup
7166 - MEDIUM: mworker: add proc_list in global.h
7167 - MEDIUM: mworker: proxy for the master CLI
7168 - MEDIUM: mworker: create CLI listeners from argv[]
7169 - MEDIUM: cli: disable some keywords in the master
7170 - MEDIUM: mworker: find the server ptr using a CLI prefix
7171 - MEDIUM: cli: 'show proc' displays processus
7172 - MEDIUM: cli: implement 'mode cli' proxy analyzers
7173 - MINOR: cli: displays sockpair@ in "show cli sockets"
7174 - MEDIUM: cli: enable "show cli sockets" for the master
7175 - MINOR: cli: put @master @<relative pid> @!<pid> in the help
7176 - MEDIUM: listeners: set O_CLOEXEC on the accepted FDs
7177 - MEDIUM: mworker: stop the master proxy in the workers
7178 - MEDIUM: channel: reorder the channel analyzers for the cli
7179 - MEDIUM: cli: write a prompt for the CLI proxy of the master
7180 - MINOR: cli: helper to write an response message and close
7181 - MINOR: cache: Add "Age" header.
7182 - REGTEST: make the IP+port logging test more reliable
7183 - BUG/MINOR: memory: make the thread-local cache allocator set the debugging link
7184 - BUG/MAJOR: http: http_txn_get_path() may deference an inexisting buffer
7185 - BUG/MINOR: backend: assign the wait list after the error check
7186
Willy Tarreau01fbe742018-10-21 20:28:30 +020071872018/10/21 : 1.9-dev4
7188 - BUILD: Allow configuration of pcre-config path
7189 - DOC: clarify force-private-cache is an option
7190 - BUG/MINOR: connection: avoid null pointer dereference in send-proxy-v2
7191 - REORG: http: move the code to different files
7192 - REORG: http: move HTTP rules parsing to http_rules.c
7193 - CLEANUP: http: remove some leftovers from recent cleanups
7194 - BUILD: Makefile: add a "make opts" target to simply show the build options
7195 - BUILD: Makefile: speed up compiler options detection
7196 - BUG/MINOR: backend: check that the mux installed properly
7197 - BUG/MEDIUM: h2: check that the connection is still valid at the end of init()
7198 - BUG/MEDIUM: h2: make h2_stream_new() return an error on memory allocation failure
7199 - REGTEST/MINOR: compatibility: use unix@ instead of abns@ sockets
7200 - MINOR: ssl: cleanup old openssl API call
7201 - MINOR: ssl: generate-certificates for BoringSSL
7202 - BUG/MEDIUM: buffers: Make sure we don't wrap in ci_insert_line2/b_rep_blk.
7203 - MEDIUM: ssl: add support for ciphersuites option for TLSv1.3
7204 - CLEANUP: haproxy: Remove unused variable
7205 - CLEANUP: h1: Fix debug warnings for h1 headers
7206 - CLEANUP: stick-tables: Remove unneeded double (()) around conditional clause
7207 - MEDIUM: task: perform a single tree lookup per run queue batch
7208 - BUG/MEDIUM: Cur/CumSslConns counters not threadsafe.
7209 - BUG/MINOR: threads: move declaration of capabilities to config.h
7210 - OPTIM: tools: optimize my_ffsl() for x86_64
7211 - BUG/MINOR: h2: null-deref
7212 - BUG/MINOR: checks: queues null-deref
7213 - MINOR: connections: Introduce an unsubscribe method.
7214 - MEDIUM: connections: Change struct wait_list to wait_event.
7215 - BUG/MEDIUM: h2: Make sure we're not in the send list on flow control.
7216 - BUG/MEDIUM: mworker: segfault receiving SIGUSR1 followed by SIGTERM.
7217 - BUG/MEDIUM: stream: Make sure to unsubscribe before si_release_endpoint.
7218 - MINOR: http: Move comment about some HTTP macros in the right header file
7219 - MINOR: stats: Add missing include
7220 - MINOR: http: Export some functions and do cleanup to prepare HTTP refactoring
7221 - MEDIUM: http: Ignore http-pretend-keepalive option on frontend
7222 - MEDIUM: http: Ignore http-tunnel option on backend
7223 - MINOR: http: Use same flag for httpclose and forceclose options
7224 - MINOR: h1: Add EOH marker during headers parsing
7225 - MINOR: conn-stream: Add CL_FL_NOT_FIRST flag
7226 - MINOR: h1: Change the union h1_sl to use indirect strings to store infos
7227 - MINOR: h1: Add the flag H1_MF_NO_PHDR to not add pseudo-headers during parsing
7228 - MINOR: log: make sess_log() support sess=NULL
7229 - MINOR: chunk: add chunk_cpy() and chunk_cat()
7230 - MEDIUM: h2: stop relying on H2_SS_IDLE / H2_SS_CLOSED
7231 - CLEANUP: h2: rename h2c_snd_settings() to h2c_send_settings()
7232 - MINOR: h2: don't try to send data before preface
7233 - MINOR: h2: unify the mux init function
7234 - MINOR: h2: retrieve the front proxy from the caller instead of the session
7235 - MINOR: h2: split h2c_stream_new() into h2s_new() + h2c_frt_stream_new()
7236 - MINOR: h2: add a new flag to quickly distinguish front vs back connection
7237 - BUG/MEDIUM: mworker: don't poll on LI_O_INHERITED listeners
7238 - BUG/MEDIUM: stream: don't crash on out-of-memory
7239 - BUILD: compiler: add a new statement "__unreachable()"
7240 - BUILD: lua: silence some compiler warnings about potential null derefs
7241 - BUILD: ssl: fix null-deref warning in ssl_fc_cipherlist_str sample fetch
7242 - BUILD: ssl: fix another null-deref warning in ssl_sock_switchctx_cbk()
7243 - BUILD: stick-table: make sure not to fail on task_new() during initialization
7244 - BUILD: peers: check allocation error during peers_init_sync()
7245 - MINOR: tools: add a new function atleast2() to test masks for more than 1 bit
7246 - MINOR: config: use atleast2() instead of my_popcountl() where relevant
7247 - MEDIUM: fd/threads: only grab the fd's lock if the FD has more than one thread
7248 - MAJOR: tasks: create per-thread wait queues
7249 - OPTIM: tasks: group all tree roots per cache line
7250 - DOC: Fix a few typos
7251 - MINOR: pools: allocate most memory pools from an array
7252 - MINOR: pools: split pool_free() in the lockfree variant
7253 - MEDIUM: pools: implement a thread-local cache for pool entries
7254 - BUG/MEDIUM: threads: fix thread_release() at the end of the rendez-vous point
7255 - Revert "BUILD: lua: silence some compiler warnings about potential null derefs"
7256 - BUILD: lua: silence some compiler warnings about potential null derefs (#2)
7257 - MINOR: lua: all functions calling lua_yieldk() may return
7258 - BUILD: lua: silence some compiler warnings after WILL_LJMP
7259 - BUILD: Makefile: silence an option conflict warning with clang
7260 - MINOR: server: Use memcpy() instead of strncpy().
7261 - CLEANUP: state-file: make the path concatenation code a bit more consistent
7262 - MINOR: build: Disable -Wstringop-overflow.
7263 - MINOR: cfgparse: Write 130 as 128 as 0x82 and 0x80.
7264 - MINOR: peers: use defines instead of enums to appease clang.
7265 - DOC: fix reference to map files in MAINTAINERS
7266 - MINOR: fd: centralize poll timeout computation in compute_poll_timeout()
7267 - MINOR: poller: move time and date computation out of the pollers
7268 - BUILD: memory: fix pointer declaration for atomic CAS
7269 - BUILD: Makefile: add USE_RT to pass -lrt for clock_gettime() and friends
7270 - MINOR: time: add now_mono_time() and now_cpu_time()
7271 - MEDIUM: time: measure the time stolen by other threads
7272 - BUILD: memory: fix free_list pointer declaration again for atomic CAS
7273 - BUILD: compiler: rename __unreachable() to my_unreachable()
7274 - BUG/MEDIUM: pools: Fix the usage of mmap()) with DEBUG_UAF.
7275 - BUILD: memory: fix free_list pointer declaration again for atomic CAS
7276 - BUG/MEDIUM: h2: Close connection if no stream is left an GOAWAY was sent.
7277 - BUG/MEDIUM: connections: Remove subscription if going in idle mode.
7278 - BUG/MEDIUM: stream: Make sure polling is right on retry.
7279 - MINOR: h2: Make sure to return 1 in h2_recv() when needed.
7280 - MEDIUM: connections: Don't directly mess with the polling from the upper layers.
7281 - MINOR: streams: Call tasklet_free() after si_release_endpoint().
7282 - MINOR: connection: Add a SUB_CALL_UNSUBSCRIBE event.
7283 - MINOR: h2: Don't run tasks that are waiting to send if mux in full.
7284 - MINOR: ebtree: save 8 bytes in struct eb32sc_node
7285
Willy Tarreau27010f02018-09-29 20:17:33 +020072862018/09/29 : 1.9-dev3
7287 - BUG/MINOR: h1: don't consider the status for each header
7288 - MINOR: h1: report in the h1m struct if the HTTP version is 1.1 or above
7289 - MINOR: h1: parse the Connection header field
7290 - DOC: Fix typos in lua documentation
7291 - MINOR: h1: Add H1_MF_XFER_LEN flag
7292 - MINOR: http: add http_hdr_del() to remove a header from a list
7293 - MINOR: h1: add headers to the list after controls, not before
7294 - MEDIUM: h1: better handle transfer-encoding vs content-length
7295 - MEDIUM: h1: deduplicate the content-length header
7296 - BUG/MEDIUM: patterns: fix possible double free when reloading a pattern list
7297 - BUG/MEDIUM: h1: Really skip all updates when incomplete messages are parsed
7298 - CLEANUP/CONTRIB: hpack: remove some h1 build warnings
7299 - BUG/MINOR: tools: fix set_net_port() / set_host_port() on IPv4
7300 - BUG/MINOR: cli: make sure the "getsock" command is only called on connections
7301 - MINOR: stktable: provide an unchecked version of stktable_data_ptr()
7302 - MINOR: stream-int: make si_appctx() never fail
7303 - BUILD: ssl_sock: remove build warnings on potential null-derefs
7304 - BUILD: stats: remove build warnings on potential null-derefs
7305 - BUILD: stream: address null-deref build warnings at -Wextra
7306 - BUILD: http: address a couple of null-deref warnings at -Wextra
7307 - BUILD: log: silent build warnings due to unchecked __objt_{server,applet}
7308 - BUILD: dns: fix null-deref build warning at -Wextra
7309 - BUILD: checks: silence a null-deref build warning at -Wextra
7310 - BUILD: connection: silence a couple of null-deref build warnings at -Wextra
7311 - BUILD: backend: fix 3 build warnings related to null-deref at -Wextra
7312 - BUILD: sockpair: silence a build warning at -Wextra
7313 - BUILD: build with -Wextra and sort out certain warnings
7314 - BUG/CRITICAL: hpack: fix improper sign check on the header index value
7315 - BUG/MEDIUM: http: Don't parse chunked body if there is no input data
7316 - DOC: Update configuration doc about the maximum number of stick counters.
7317 - BUG/MEDIUM: process_stream: Don't use si_cs_io_cb() in process_stream().
7318 - MINOR: h2/stream_interface: Reintroduce te wake() method.
7319 - BUG/MEDIUM: h2: Wake the task instead of calling h2_recv()/h2_process().
7320 - BUG/MEDIUM: process_stream(): Don't wake the task if no new data was received.
7321 - MEDIUM: lua: Add stick table support for Lua.
7322
Willy Tarreau253006d2018-09-12 18:59:48 +020073232018/09/12 : 1.9-dev2
7324 - BUG/MINOR: buffers: Fix b_slow_realign when a buffer is realign without output
7325 - BUG/MEDIUM: threads: fix the no-thread case after the change to the sync point
7326 - BUG/MEDIUM: servers: check the queues once enabling a server
7327 - BUG/MEDIUM: queue: prevent a backup server from draining the proxy's connections
7328 - MEDIUM: mux: Remove const on the buffer in mux->snd_buf()
7329 - CLEANUP: backend: Move mux install to call it at only one place
7330 - MINOR: conn_stream: add an tx buffer to the conn_stream
7331 - MINOR: conn_stream: add cs_send() as a default snd_buf() function
7332 - MINOR: backend: Try to find the best mux for outgoing connections
7333 - MEDIUM: backend: don't rely on mux_pt_ops in connect_server()
7334 - MINOR: mux: Add info about the supported side in alpn_mux_list structure
7335 - MINOR: mux: Unlink ALPN and multiplexers to rather speak of mux protocols
7336 - MINOR: mux: Print the list of existing mux protocols during HA startup
7337 - MEDIUM: checks: use the new rendez-vous point to spread check result
7338 - MEDIUM: haproxy: don't use sync_poll_loop() anymore in the main loop
7339 - MINOR: threads: remove the previous synchronization point
7340 - MAJOR: server: make server state changes synchronous again
7341 - CLEANUP: server: remove the update list and the update lock
7342 - BUG/MINOR: threads: Remove the unexisting lock label "UPDATED_SERVERS_LOCK"
7343 - BUG/MEDIUM: stream_int: Don't check CO_FL_SOCK_RD_SH flag to trigger cs receive
7344 - MINOR: mux: Change get_mux_proto to get an ist as parameter
7345 - MINOR: mux: Improve the message with the list of existing mux protocols
7346 - MINOR: mux/frontend: Add 'proto' keyword to force the mux protocol
7347 - MINOR: mux/server: Add 'proto' keyword to force the multiplexer's protocol
7348 - MEDIUM: mux: Use the mux protocol specified on bind/server lines
7349 - BUG/MEDIUM: connection/mux: take care of serverless proxies
7350 - MINOR: queue: make sure the pendconn is released before logging
7351 - MINOR: stream: rename {srv,prx}_queue_size to *_queue_pos
7352 - MINOR: queue: store the queue index in the stream when enqueuing
7353 - MINOR: queue: replace the linked list with a tree
7354 - MEDIUM: add set-priority-class and set-priority-offset
7355 - MEDIUM: queue: adjust position based on priority-class and priority-offset
7356 - DOC: update the roadmap about priority queues
7357 - BUG/MINOR: ssl: empty connections reported as errors.
7358 - MINOR: connections: Make rcv_buf mandatory and nuke cs_recv().
7359 - MINOR: connections: Move rxbuf from the conn_stream to the h2s.
7360 - MINOR: connections: Get rid of txbuf.
7361 - MINOR: tasks: Allow tasklet_wakeup() to wakeup a task.
7362 - MINOR: connections/mux: Add the wait reason(s) to wait_list.
7363 - MINOR: stream_interface: Don't use si_cs_send() as a task handler.
7364 - MINOR: stream_interface: Give stream_interface its own wait_list.
7365 - MINOR: mux_h2: Don't use h2_send() as a callback.
7366 - MINOR: checks: Add event_srv_chk_io().
7367 - BUG/MEDIUM: tasks: Don't insert in the global rqueue if nbthread == 1
7368 - BUG/MEDIUM: sessions: Don't use t->state.
7369 - BUG/MEDIUM: ssl: fix missing error loading a keytype cert from a bundle.
7370 - BUG/MEDIUM: ssl: loading dh param from certifile causes unpredictable error.
7371 - BUG/MINOR: map: fix map_regm with backref
7372 - DOC: dns: explain set server ... fqdn requires resolver
7373 - DOC: add documentation for prio_class and prio_offset sample fetches.
7374 - DOC: ssl: Use consistent naming for TLS protocols
7375 - DOC: update the layering design notes
7376 - MINOR: tasks: Don't special-case when nbthreads == 1
7377 - MINOR: fd cache: And the thread_mask with all_threads_mask.
7378 - BUG/MEDIUM: lua: socket timeouts are not applied
7379 - BUG/MINOR: lua: fix extra 500ms added to socket timeouts
7380 - BUG/MEDIUM: server: update our local state before propagating changes
7381 - BUG/MEDIUM: cli/threads: protect all "proxy" commands against concurrent updates
7382 - DOC: server/threads: document which functions need to be called with/without locks
7383 - BUG/MEDIUM: cli/threads: protect some server commands against concurrent operations
7384 - BUG/MEDIUM: streams: Don't forget to remove the si from the wait list.
7385 - BUG/MEDIUM: tasklets: Add the thread as active when waking a tasklet.
7386 - BUG/MEDIUM: stream-int: Check if the conn_stream exist in si_cs_io_cb.
7387 - BUG/MEDIUM: H2: Activate polling after successful h2_snd_buf().
7388 - BUG/MEDIUM: stream_interface: Call the wake callback after sending.
7389 - BUG/MAJOR: queue/threads: make pendconn_redistribute not lock the server
7390 - BUG/MEDIUM: connection: don't forget to always delete the list's head
7391 - BUG/MEDIUM: lb/threads: always properly lock LB algorithms on maintenance operations
7392 - BUG/MEDIUM: check/threads: do not involve the rendez-vous point for status updates
7393 - BUG/MINOR: chunks: do not store -1 into chunk_printf() in case of error
7394 - BUG/MEDIUM: http: don't store exp_replace() result in the trash's length
7395 - BUG/MEDIUM: http: don't store url_decode() result in the samples's length
7396 - BUG/MEDIUM: dns: don't store dns_build_query() result in the trash's length
7397 - BUG/MEDIUM: map: don't store exp_replace() result in the trash's length
7398 - BUG/MEDIUM: connection: don't store recv() result into trash.data
7399 - BUG/MEDIUM: cli/ssl: don't store base64dec() result in the trash's length
7400 - MINOR: chunk: remove impossible tests on negative chunk->data
7401 - MINOR: sample: remove impossible tests on negative smp->data.u.str.data
7402 - DOC: Fix spelling error in configuration doc
7403 - REGTEST/MINOR: Missing mandatory "ignore_unknown_macro".
7404 - REGTEST/MINOR: Add a new class of regression testing files.
7405 - BUG/MEDIUM: unix: provide a ->drain() function
7406 - MINOR: connection: make conn_sock_drain() work for all socket families
7407 - BUG/MINOR: lua: Bad HTTP client request duration.
7408 - REGEST/MINOR: Add reg testing files.
7409 - BUG/MEDIUM: mux_pt: dereference the connection with care in mux_pt_wake()
7410 - REGTEST/MINOR: Add a reg testing file for b406b87 commit.
7411 - BUG/MEDIUM: lua: reset lua transaction between http requests
7412 - MINOR: add be_conn_free sample fetch
7413 - MINOR: Add srv_conn_free sample fetch
7414 - BUG/MEDIUM: hlua: Make sure we drain the output buffer when done.
7415 - MINOR: checks: Call wake_srv_chk() when we can finally send data.
7416 - BUG/MEDIUM: stream_interface: try to call si_cs_send() earlier.
7417 - BUG/MAJOR: thread: lua: Wrong SSL context initialization.
7418 - REGTEST/MINOR: Add a reg testing file for 3e60b11.
7419 - BUG/MEDIUM: hlua: Don't call RESET_SAFE_LJMP if SET_SAFE_LJMP returns 0.
7420 - REGTEST/MINOR: lua: Add reg testing files for 70d318c.
7421 - BUG/MEDIUM: dns/server: fix incomatibility between SRV resolution and server state file
7422 - BUG/MEDIUM: ECC cert should work with TLS < v1.2 and openssl >= 1.1.1
7423 - MINOR: tools: make date2str_log() take some consts
7424 - MINOR: thread: implement HA_ATOMIC_XADD()
7425 - BUG/MINOR: stream: use atomic increments for the request counter
7426 - BUG/MEDIUM: session: fix reporting of handshake processing time in the logs
7427 - BUG/MEDIUM: h2: fix risk of memory leak on malformated wrapped frames
7428 - BUG/MAJOR: buffer: fix incorrect check in __b_putblk()
7429 - MINOR: log: move the log code to sess_build_logline() to add extra arguments
7430 - MINOR: log: make the backend fall back to the frontend when there's no stream
7431 - MINOR: log: make sess_build_logline() not dereference a NULL stream for txn
7432 - MINOR: log: don't unconditionally pick log info from s->logs
7433 - CLEANUP: log: make the low_level lf_{ip,port,text,text_len} functions take consts
7434 - MINOR: log: keep a copy of the backend connection early in sess_build_logline()
7435 - MINOR: log: do not dereference a null stream to access captures
7436 - MINOR: log: be sure not to dereference a null stream for a target
7437 - MINOR: log: don't check the stream-int's conn_retries if the stream is NULL
7438 - MINOR: log: use NULL for the unique_id if there is no stream
7439 - MINOR: log: keep a copy of s->flags early to avoid a dereference
7440 - MINOR: log: use zero as the request counter if there is no stream
7441 - MEDIUM: log: make sess_build_logline() support being called with no stream
7442 - MINOR: log: provide a function to emit a log for a session
7443 - MEDIUM: h2: produce some logs on early errors that prevent streams from being created
7444 - BUG/MINOR: h1: fix buffer shift after realignment
7445 - MINOR: connection: make the initialization more consistent
7446 - MINOR: connection: add new function conn_get_proxy()
7447 - MINOR: connection: add new function conn_is_back()
7448 - MINOR: log: One const should be enough.
7449 - BUG/MINOR: dns: check and link servers' resolvers right after config parsing
7450 - BUG/MINOR: http/threads: atomically increment the error snapshot ID
7451 - MINOR: snapshot: restart on the event ID and not the stream ID
7452 - MINOR: snapshot: split the error snapshots into common and proto-specific parts
7453 - MEDIUM: snapshot: start to reorder the HTTP snapshot output a little bit
7454 - MEDIUM: snapshot: implement a show() callback and use it for HTTP
7455 - MINOR: proxy: add a new generic proxy_capture_error()
7456 - MINOR: http: make the HTTP error capture rely on the generic proxy code
7457 - MINOR: http: remove the pointer to the error snapshot in http_capture_bad_message()
7458 - REORG: cli: move the "show errors" handler from http to proxy
7459 - BUG/MEDIUM: snapshot: take the proxy's lock while dumping errors
7460 - MEDIUM: snapshots: dynamically allocate the snapshots
7461 - MEDIUM: snapshot: merge the captured data after the descriptor
7462 - MEDIUM: mworker: remove register/unregister signal functions
7463 - MEDIUM: mworker: use the haproxy poll loop
7464 - BUG/MINOR: mworker: no need to stop peers for each proxy
7465 - MINOR: mworker: mworker_cleanlisteners() delete the listeners
7466 - MEDIUM: mworker: block SIGCHLD until the master is ready
7467 - MEDIUM: mworker: never block SIG{TERM,INT} during reload
7468 - MEDIUM: startup: unify signal init between daemon and mworker mode
7469 - MINOR: mworker: don't deinit the poller fd when in wait mode
7470 - MEDIUM: mworker: master wait mode use its own initialization
7471 - MEDIUM: mworker: replace the master pipe by socketpairs
7472 - MINOR: mworker: keep and clean the listeners
7473 - MEDIUM: threads: close the thread-waker pipe during deinit
7474 - MEDIUM: mworker: call per_thread deinit in mworker_reload()
7475 - REORG: http: move the HTTP semantics definitions to http.h/http.c
7476 - REORG: http: move http_get_path() to http.c
7477 - REORG: http: move error codes production and processing to http.c
7478 - REORG: http: move the log encoding tables to log.c
7479 - REORG: http: move some header value processing functions to http.c
7480 - BUG/MAJOR: kqueue: Don't reset the changes number by accident.
7481 - MEDIUM: protocol: use a custom AF_MAX to help protocol parser
7482 - MEDIUM: protocol: sockpair protocol
7483 - TESTS: add a python wrapper for sockpair@
7484 - BUG/MINOR: server: Crash when setting FQDN via CLI.
7485 - BUG/MINOR: h2: report asynchronous end of stream on closed connections
7486 - BUILD: fix build without thread
7487 - BUG/MEDIUM: tasks: Don't forget to decrement task_list_size in tasklet_free().
7488 - MEDIUM: connections: Don't reset the polling flags in conn_fd_handler().
7489 - MEDIUM: connections/mux: Add a recv and a send+recv wait list.
7490 - MEDIUM: connections: Get rid of the recv() method.
7491 - MINOR: h2: Let user of h2_recv() and h2_send() know xfer has been done.
7492 - MEDIUM: h2: always subscribe to receive if allowed.
7493 - MEDIUM: h2: Don't use a wake() method anymore.
7494 - MEDIUM: stream_interface: Make recv() subscribe when more data is needed.
7495 - MINOR: connections: Add a "handle" field to wait_list.
7496 - MEDIUM: mux_h2: Revamp the send path when blocking.
7497 - MEDIUM: stream_interfaces: Starts receiving from the upper layers.
7498 - MINOR: checks: Give checks their own wait_list.
7499 - MINOR: conn_streams: Remove wait_list from conn_streams.
7500 - REORG: h1: create a new h1m_state
7501 - MINOR: h1: add the restart offsets into struct h1m
7502 - MINOR: h1: remove the unused states from h1m_state
7503 - MINOR: h1: provide a distinct init() function for request and response
7504 - MINOR: h1: add a message flag to indicate that a message carries a response
7505 - MINOR: h2: make sure h1m->err_pos field is correct on chunk error
7506 - MINOR: h1: properly pre-initialize err_pos to -2
7507 - MINOR: mux_h2: replace the req,res h1 messages with a single h1 message
7508 - MINOR: h2: pre-initialize h1m->err_pos to -1 on the output path
7509 - MEDIUM: h1: consider err_pos before deciding to accept a header name or not
7510 - MEDIUM: h1: make the parser support a pointer to a start line
7511 - MEDIUM: h1: let the caller pass the initial parser's state
7512 - MINOR: h1: make the message parser support a null <hdr> argument
7513 - MEDIUM: h1: support partial message parsing
7514 - MEDIUM: h1: remove the useless H1_MSG_BODY state
7515 - MINOR: h2: store the HTTP status into the H2S, not the H1M
7516 - MINOR: h1: remove the HTTP status from the H1M struct
7517 - MEDIUM: h1: implement the request parser as well
7518 - MINOR: h1: add H1_MF_TOLOWER to decide when to turn header names to lower case
7519 - MINOR: connection: pass the proxy when creating a connection
7520 - BUG/MEDIUM: h2: Don't forget to empty the wait lists on destroy.
7521 - BUG/MEDIUM: h2: Don't forget to set recv_wait_list to NULL in h2_detach.
7522 - BUG/MAJOR: h2: reset the parser's state on mux buffer full
7523
Willy Tarreau65e94d12018-08-02 18:12:50 +020075242018/08/02 : 1.9-dev1
7525 - BUG/MEDIUM: kqueue: Don't bother closing the kqueue after fork.
7526 - DOC: cache: update sections and fix some typos
7527 - BUILD/MINOR: deviceatlas: enable thread support
7528 - BUG/MEDIUM: tcp-check: Don't lock the server in tcpcheck_main
7529 - BUG/MEDIUM: ssl: don't allocate shctx several time
7530 - BUG/MEDIUM: cache: bad computation of the remaining size
7531 - BUILD: checks: don't include server.h
7532 - BUG/MEDIUM: stream: fix session leak on applet-initiated connections
7533 - BUILD/MINOR: haproxy : FreeBSD/cpu affinity needs pthread_np header
7534 - BUILD/MINOR: Makefile : enabling USE_CPU_AFFINITY
7535 - BUG/MINOR: ssl: CO_FL_EARLY_DATA removal is managed by stream
7536 - BUG/MEDIUM: threads/peers: decrement, not increment jobs on quitting
7537 - BUG/MEDIUM: h2: don't report an error after parsing a 100-continue response
7538 - BUG/MEDIUM: peers: fix some track counter rules dont register entries for sync.
7539 - BUG/MAJOR: thread/peers: fix deadlock on peers sync.
7540 - BUILD/MINOR: haproxy: compiling config cpu parsing handling when needed
7541 - MINOR: config: report when "monitor fail" rules are misplaced
7542 - BUG/MINOR: mworker: fix validity check for the pipe FDs
7543 - BUG/MINOR: mworker: detach from tty when in daemon mode
7544 - MINOR: threads: Fix pthread_setaffinity_np on FreeBSD.
7545 - BUG/MAJOR: thread: Be sure to request a sync between threads only once at a time
7546 - BUILD: Fix LDFLAGS vs. LIBS re linking order in various makefiles
7547 - BUG/MEDIUM: checks: Be sure we have a mux if we created a cs.
7548 - BUG/MINOR: hpack: fix debugging output of pseudo header names
7549 - BUG/MINOR: hpack: must reject huffman literals padded with more than 7 bits
7550 - BUG/MINOR: hpack: reject invalid header index
7551 - BUG/MINOR: hpack: dynamic table size updates are only allowed before headers
7552 - BUG/MAJOR: h2: correctly check the request length when building an H1 request
7553 - BUG/MINOR: h2: immediately close if receiving GOAWAY after the last stream
7554 - BUG/MINOR: h2: try to abort closed streams as soon as possible
7555 - BUG/MINOR: h2: ":path" must not be empty
7556 - BUG/MINOR: h2: fix a typo causing PING/ACK to be responded to
7557 - BUG/MINOR: h2: the TE header if present may only contain trailers
7558 - BUG/MEDIUM: h2: enforce the per-connection stream limit
7559 - BUG/MINOR: h2: do not accept SETTINGS_ENABLE_PUSH other than 0 or 1
7560 - BUG/MINOR: h2: reject incorrect stream dependencies on HEADERS frame
7561 - BUG/MINOR: h2: properly check PRIORITY frames
7562 - BUG/MINOR: h2: reject response pseudo-headers from requests
7563 - BUG/MEDIUM: h2: remove connection-specific headers from request
7564 - BUG/MEDIUM: h2: do not accept upper case letters in request header names
7565 - BUG/MINOR: h2: use the H2_F_DATA_* macros for DATA frames
7566 - BUG/MINOR: action: Don't check http capture rules when no id is defined
7567 - BUG/MAJOR: hpack: don't pretend large headers fit in empty table
7568 - BUG/MINOR: ssl: support tune.ssl.cachesize 0 again
7569 - BUG/MEDIUM: mworker: also close peers sockets in the master
7570 - BUG/MEDIUM: ssl engines: Fix async engines fds were not considered to fix fd limit automatically.
7571 - BUG/MEDIUM: checks: a down server going to maint remains definitely stucked on down state.
7572 - BUG/MEDIUM: peers: set NOLINGER on the outgoing stream interface
7573 - BUG/MEDIUM: h2: fix handling of end of stream again
7574 - MINOR: mworker: Update messages referencing exit-on-failure
7575 - MINOR: mworker: Improve wording in `void mworker_wait()`
7576 - CONTRIB: halog: Add help text for -s switch in halog program
7577 - BUG/MEDIUM: email-alert: don't set server check status from a email-alert task
7578 - BUG/MEDIUM: threads/vars: Fix deadlock in register_name
7579 - MINOR: systemd: remove comment about HAPROXY_STATS_SOCKET
7580 - DOC: notifications: add precisions about thread usage
7581 - BUG/MEDIUM: lua/notification: memory leak
7582 - MINOR: conn_stream: add new flag CS_FL_RCV_MORE to indicate pending data
7583 - BUG/MEDIUM: stream-int: always set SI_FL_WAIT_ROOM on CS_FL_RCV_MORE
7584 - BUG/MEDIUM: h2: automatically set CS_FL_RCV_MORE when the output buffer is full
7585 - BUG/MEDIUM: h2: enable recv polling whenever demuxing is possible
7586 - BUG/MEDIUM: h2: work around a connection API limitation
7587 - BUG/MEDIUM: h2: debug incoming traffic in h2_wake()
7588 - MINOR: h2: store the demux padding length in the h2c struct
7589 - BUG/MEDIUM: h2: support uploading partial DATA frames
7590 - MINOR: h2: don't demand that a DATA frame is complete before processing it
7591 - BUG/MEDIUM: h2: don't switch the state to HREM before end of DATA frame
7592 - BUG/MEDIUM: h2: don't close after the first DATA frame on tunnelled responses
7593 - BUG/MEDIUM: http: don't disable lingering on requests with tunnelled responses
7594 - BUG/MEDIUM: h2: fix stream limit enforcement
7595 - BUG/MINOR: stream-int: don't try to receive again after receiving an EOS
7596 - MINOR: sample: add len converter
7597 - BUG: MAJOR: lb_map: server map calculation broken
7598 - BUG: MINOR: http: don't check http-request capture id when len is provided
7599 - MINOR: sample: rename the "len" converter to "length"
7600 - BUG/MEDIUM: mworker: Set FD_CLOEXEC flag on log fd
7601 - DOC/MINOR: intro: typo, wording, formatting fixes
7602 - MINOR: netscaler: respect syntax
7603 - MINOR: netscaler: remove the use of cip_magic only used once
7604 - MINOR: netscaler: rename cip_len to clarify its uage
7605 - BUG/MEDIUM: netscaler: use the appropriate IPv6 header size
7606 - BUG/MAJOR: netscaler: address truncated CIP header detection
7607 - MINOR: netscaler: check in one-shot if buffer is large enough for IP and TCP header
7608 - MEDIUM: netscaler: do not analyze original IP packet size
7609 - MEDIUM: netscaler: add support for standard NetScaler CIP protocol
7610 - MINOR: spoe: add force-set-var option in spoe-agent configuration
7611 - CONTRIB: iprange: Fix compiler warning in iprange.c
7612 - CONTRIB: halog: Fix compiler warnings in halog.c
7613 - BUG/MINOR: h2: properly report a stream error on RST_STREAM
7614 - MINOR: mux: add flags to describe a mux's capabilities
7615 - MINOR: stream-int: set flag SI_FL_CLEAN_ABRT when mux supports clean aborts
7616 - BUG/MEDIUM: stream: don't consider abortonclose on muxes which close cleanly
7617 - BUG/MEDIUM: checks: a server passed in maint state was not forced down.
7618 - BUG/MEDIUM: lua: fix crash when using bogus mode in register_service()
7619 - MINOR: http: adjust the list of supposedly cacheable methods
7620 - MINOR: http: update the list of cacheable status codes as per RFC7231
7621 - MINOR: http: start to compute the transaction's cacheability from the request
7622 - BUG/MINOR: http: do not ignore cache-control: public
7623 - BUG/MINOR: http: properly detect max-age=0 and s-maxage=0 in responses
7624 - BUG/MINOR: cache: do not force the TX_CACHEABLE flag before checking cacheability
7625 - MINOR: http: add a function to check request's cache-control header field
7626 - BUG/MEDIUM: cache: do not try to retrieve host-less requests from the cache
7627 - BUG/MEDIUM: cache: replace old object on store
7628 - BUG/MEDIUM: cache: respect the request cache-control header
7629 - BUG/MEDIUM: cache: don't cache the response on no-cache="set-cookie"
7630 - BUG/MAJOR: connection: refine the situations where we don't send shutw()
7631 - BUG/MEDIUM: checks: properly set servers to stopping state on 404
7632 - BUG/MEDIUM: h2: properly handle and report some stream errors
7633 - BUG/MEDIUM: h2: improve handling of frames received on closed streams
7634 - DOC/MINOR: configuration: typo, formatting fixes
7635 - BUG/MEDIUM: h2: ensure we always know the stream before sending a reset
7636 - BUG/MEDIUM: mworker: don't close stdio several time
7637 - MINOR: don't close stdio anymore
7638 - BUG/MEDIUM: http: don't automatically forward request close
7639 - BUG/MAJOR: hpack: don't return direct references to the dynamic headers table
7640 - MINOR: h2: add a function to report pseudo-header names
7641 - DEBUG: hpack: make hpack_dht_dump() expose the output file
7642 - DEBUG: hpack: add more traces to the hpack decoder
7643 - CONTRIB: hpack: add an hpack decoder
7644 - MEDIUM: h2: prepare a graceful shutdown when the frontend is stopped
7645 - BUG/MEDIUM: h2: properly handle the END_STREAM flag on empty DATA frames
7646 - BUILD: ssl: silence a warning when building without NPN nor ALPN support
7647 - CLEANUP: rbtree: remove
7648 - BUG/MEDIUM: ssl: cache doesn't release shctx blocks
7649 - BUG/MINOR: lua: Fix default value for pattern in Socket.receive
7650 - DOC: lua: Fix typos in comments of hlua_socket_receive
7651 - BUG/MEDIUM: lua: Fix IPv6 with separate port support for Socket.connect
7652 - BUG/MINOR: lua: Fix return value of Socket.settimeout
7653 - MINOR: dns: Handle SRV record weight correctly.
7654 - BUG/MEDIUM: mworker: execvp failure depending on argv[0]
7655 - MINOR: hathreads: add support for gcc < 4.7
7656 - BUILD/MINOR: ancient gcc versions atomic fix
7657 - BUG/MEDIUM: stream: properly handle client aborts during redispatch
7658 - MINOR: spoe: add register-var-names directive in spoe-agent configuration
7659 - MINOR: spoe: Don't queue a SPOE context if nothing is sent
7660 - DOC: clarify the scope of ssl_fc_is_resumed
7661 - CONTRIB: debug: fix a few flags definitions
7662 - BUG/MINOR: poll: too large size allocation for FD events
7663 - MINOR: sample: add date_us sample
7664 - BUG/MEDIUM: peers: fix expire date wasn't updated if entry is modified remotely.
7665 - MINOR: servers: Don't report duplicate dyncookies for disabled servers.
7666 - MINOR: global/threads: move cpu_map at the end of the global struct
7667 - MINOR: threads: add a MAX_THREADS define instead of LONGBITS
7668 - MINOR: global: add some global activity counters to help debugging
7669 - MINOR: threads/fd: Use a bitfield to know if there are FDs for a thread in the FD cache
7670 - BUG/MEDIUM: threads/polling: Use fd_cache_mask instead of fd_cache_num
7671 - BUG/MEDIUM: fd: maintain a per-thread update mask
7672 - MINOR: fd: add a bitmask to indicate that an FD is known by the poller
7673 - BUG/MEDIUM: epoll/threads: use one epoll_fd per thread
7674 - BUG/MEDIUM: kqueue/threads: use one kqueue_fd per thread
7675 - BUG/MEDIUM: threads/mworker: fix a race on startup
7676 - BUG/MINOR: mworker: only write to pidfile if it exists
7677 - MINOR: threads: Fix build when we're not compiling with threads.
7678 - BUG/MINOR: threads: always set an owner to the thread_sync pipe
7679 - BUG/MEDIUM: threads/server: Fix deadlock in srv_set_stopping/srv_set_admin_flag
7680 - BUG/MEDIUM: checks: Don't try to release undefined conn_stream when a check is freed
7681 - BUG/MINOR: kqueue/threads: Don't forget to close kqueue_fd[tid] on each thread
7682 - MINOR: threads: Use __decl_hathreads instead of #ifdef/#endif
7683 - BUILD: epoll/threads: Add test on MAX_THREADS to avoid warnings when complied without threads
7684 - BUILD: kqueue/threads: Add test on MAX_THREADS to avoid warnings when complied without threads
7685 - CLEANUP: sample: Fix comment encoding of sample.c
7686 - CLEANUP: sample: Fix outdated comment about sample casts functions
7687 - BUG/MINOR: sample: Fix output type of c_ipv62ip
7688 - CLEANUP: Fix typo in ARGT_MSK6 comment
7689 - CLEANUP: standard: Use len2mask4 in str2mask
7690 - MINOR: standard: Add str2mask6 function
7691 - MINOR: config: Add support for ARGT_MSK6
7692 - MEDIUM: sample: Add IPv6 support to the ipmask converter
7693 - MINOR: config: Enable tracking of up to MAX_SESS_STKCTR stick counters.
7694 - BUG/MINOR: cli: use global.maxsock and not maxfd to list all FDs
7695 - MINOR: polling: make epoll and kqueue not depend on maxfd anymore
7696 - MINOR: fd: don't report maxfd in alert messages
7697 - MEDIUM: polling: start to move maxfd computation to the pollers
7698 - CLEANUP: fd/threads: remove the now unused fdtab_lock
7699 - MINOR: poll: more accurately compute the new maxfd in the loop
7700 - CLEANUP: fd: remove the unused "new" field
7701 - MINOR: fd: move the hap_fd_{clr,set,isset} functions to fd.h
7702 - MEDIUM: select: make use of hap_fd_* functions
7703 - MEDIUM: fd: use atomic ops for hap_fd_{clr,set} and remove poll_lock
7704 - MEDIUM: select: don't use the old FD state anymore
7705 - MEDIUM: poll: don't use the old FD state anymore
7706 - MINOR: fd: pass the iocb and owner to fd_insert()
7707 - BUG/MINOR: threads: Update labels array because of changes in lock_label enum
7708 - MINOR: stick-tables: Adds support for new "gpc1" and "gpc1_rate" counters.
7709 - BUG/MINOR: epoll/threads: only call epoll_ctl(DEL) on polled FDs
7710 - DOC: don't suggest using http-server-close
7711 - MINOR: introduce proxy-v2-options for send-proxy-v2
7712 - BUG/MEDIUM: spoe: Always try to receive or send the frame to detect shutdowns
7713 - BUG/MEDIUM: spoe: Allow producer to read and to forward shutdown on request side
7714 - MINOR: spoe: Remove check on min_applets number when a SPOE context is queued
7715 - MINOR: spoe: Always link a SPOE context with the applet processing it
7716 - MINOR: spoe: Replace sending_rate by a frequency counter
7717 - MINOR: spoe: Count the number of frames waiting for an ack for each applet
7718 - MEDIUM: spoe: Use an ebtree to manage idle applets
7719 - MINOR: spoa_example: Count the number of frames processed by each worker
7720 - MINOR: spoe: Add max-waiting-frames directive in spoe-agent configuration
7721 - MINOR: init: make stdout unbuffered
7722 - MINOR: early data: Don't rely on CO_FL_EARLY_DATA to wake up streams.
7723 - MINOR: early data: Never remove the CO_FL_EARLY_DATA flag.
7724 - MINOR: compiler: introduce offsetoff().
7725 - MINOR: threads: Introduce double-width CAS on x86_64 and arm.
7726 - MINOR: threads: add test and set/reset operations
7727 - MINOR: pools/threads: Implement lockless memory pools.
7728 - MAJOR: fd/threads: Make the fdcache mostly lockless.
7729 - MEDIUM: fd/threads: Make sure we don't miss a fd cache entry.
7730 - MAJOR: fd: compute the new fd polling state out of the fd lock
7731 - MINOR: epoll: get rid of the now useless fd_compute_new_polled_status()
7732 - MINOR: kqueue: get rid of the now useless fd_compute_new_polled_status()
7733 - MINOR: poll: get rid of the now useless fd_compute_new_polled_status()
7734 - MINOR: select: get rid of the now useless fd_compute_new_polled_status()
7735 - CLEANUP: fd: remove the now unused fd_compute_new_polled_status() function
7736 - MEDIUM: fd: make updt_fd_polling() use atomics
7737 - MEDIUM: poller: use atomic ops to update the fdtab mask
7738 - MINOR: fd: move the fd_{add_to,rm_from}_fdlist functions to fd.c
7739 - BUG/MINOR: fd/threads: properly dereference fdcache as volatile
7740 - MINOR: fd: remove the unneeded last CAS when adding an fd to the list
7741 - MINOR: fd: reorder fd_add_to_fd_list()
7742 - BUG/MINOR: time/threads: ensure the adjusted time is always correct
7743 - BUG/MEDIUM: standard: Fix memory leak in str2ip2()
7744 - MINOR: init: emit warning when -sf/-sd cannot parse argument
7745 - BUILD: fd/threads: fix breakage build breakage without threads
7746 - DOC: Describe routing impact of using interface keyword on bind lines
7747 - DOC: Mention -Ws in the list of available options
7748 - BUG/MINOR: config: don't emit a warning when global stats is incompletely configured
7749 - BUG/MINOR: fd/threads: properly lock the FD before adding it to the fd cache.
7750 - BUG/MEDIUM: threads: fix the double CAS implementation for ARMv7
7751 - BUG/MEDIUM: ssl: Don't always treat SSL_ERROR_SYSCALL as unrecovarable.
7752 - BUILD/MINOR: memory: stdint is needed for uintptr_t
7753 - BUG/MINOR: init: Add missing brackets in the code parsing -sf/-st
7754 - DOC: lua: new prototype for function "register_action()"
7755 - DOC: cfgparse: Warn on option (tcp|http)log in backend
7756 - BUG/MINOR: ssl/threads: Make management of the TLS ticket keys files thread-safe
7757 - MINOR: sample: add a new "concat" converter
7758 - BUG/MEDIUM: ssl: Shutdown the connection for reading on SSL_ERROR_SYSCALL
7759 - BUG/MEDIUM: http: Switch the HTTP response in tunnel mode as earlier as possible
7760 - BUG/MEDIUM: ssl/sample: ssl_bc_* fetch keywords are broken.
7761 - MINOR: ssl/sample: adds ssl_bc_is_resumed fetch keyword.
7762 - CLEANUP: cfgparse: Remove unused label end
7763 - CLEANUP: spoe: Remove unused label retry
7764 - CLEANUP: h2: Remove unused labels from mux_h2.c
7765 - CLEANUP: pools: Remove unused end label in memory.h
7766 - CLEANUP: standard: Fix typo in IPv6 mask example
7767 - BUG/MINOR: pools/threads: don't ignore DEBUG_UAF on double-word CAS capable archs
7768 - BUG/MINOR: debug/pools: properly handle out-of-memory when building with DEBUG_UAF
7769 - MINOR: debug/pools: make DEBUG_UAF also detect underflows
7770 - MINOR: stats: display the number of threads in the statistics.
7771 - BUG/MINOR: h2: Set the target of dbuf_wait to h2c
7772 - BUG/MEDIUM: h2: always consume any trailing data after end of output buffers
7773 - BUG/MEDIUM: buffer: Fix the wrapping case in bo_putblk
7774 - BUG/MEDIUM: buffer: Fix the wrapping case in bi_putblk
7775 - BUG/MEDIUM: spoe: Remove idle applets from idle list when HAProxy is stopping
7776 - Revert "BUG/MINOR: send-proxy-v2: string size must include ('\0')"
7777 - MINOR: ssl: extract full pkey info in load_certificate
7778 - MINOR: ssl: add ssl_sock_get_pkey_algo function
7779 - MINOR: ssl: add ssl_sock_get_cert_sig function
7780 - MINOR: connection: add proxy-v2-options ssl-cipher,cert-sig,cert-key
7781 - MINOR: connection: add proxy-v2-options authority
7782 - MINOR: systemd: Add section for SystemD sandboxing to unit file
7783 - MINOR: systemd: Add SystemD's Protect*= options to the unit file
7784 - MINOR: systemd: Add SystemD's SystemCallFilter option to the unit file
7785 - CLEANUP: h2: rename misleading h2c_stream_close() to h2s_close()
7786 - MINOR: h2: provide and use h2s_detach() and h2s_free()
7787 - MEDIUM: h2: use a single buffer allocator
7788 - MINOR/BUILD: fix Lua build on Mac OS X
7789 - BUILD/MINOR: fix Lua build on Mac OS X (again)
7790 - BUG/MINOR: session: Fix tcp-request session failure if handshake.
7791 - CLEANUP: .gitignore: Ignore binaries from the contrib directory
7792 - BUG/MINOR: unix: Don't mess up when removing the socket from the xfer_sock_list.
7793 - DOC: buffers: clarify the purpose of the <from> pointer in offer_buffers()
7794 - BUG/MEDIUM: h2: also arm the h2 timeout when sending
7795 - BUG/MINOR: cli: Fix a crash when passing a negative or too large value to "show fd"
7796 - CLEANUP: ssl: Remove a duplicated #include
7797 - CLEANUP: cli: Remove a leftover debug message
7798 - BUG/MINOR: cli: Fix a typo in the 'set rate-limit' usage
7799 - BUG/MEDIUM: fix a 100% cpu usage with cpu-map and nbthread/nbproc
7800 - BUG/MINOR: force-persist and ignore-persist only apply to backends
7801 - BUG/MEDIUM: threads/unix: Fix a deadlock when a listener is temporarily disabled
7802 - BUG/MAJOR: threads/queue: Fix thread-safety issues on the queues management
7803 - BUG/MINOR: dns: don't downgrade DNS accepted payload size automatically
7804 - TESTS: Add a testcase for multi-port + multi-server listener issue
7805 - CLEANUP: dns: remove duplicate code in src/dns.c
7806 - BUG/MINOR: seemless reload: Fix crash when an interface is specified.
7807 - BUG/MINOR: cli: Ensure all command outputs end with a LF
7808 - BUG/MINOR: cli: Fix a crash when sending a command with too many arguments
7809 - BUILD: ssl: Fix build with OpenSSL without NPN capability
7810 - BUG/MINOR: spoa-example: unexpected behavior for more than 127 args
7811 - BUG/MINOR: lua: return bad error messages
7812 - CLEANUP: lua/syntax: lua is a name and not an acronym
7813 - BUG/MEDIUM: tcp-check: single connect rule can't detect DOWN servers
7814 - BUG/MINOR: tcp-check: use the server's service port as a fallback
7815 - BUG/MEDIUM: threads/queue: wake up other threads upon dequeue
7816 - MINOR: log: stop emitting alerts when it's not possible to write on the socket
7817 - BUILD/BUG: enable -fno-strict-overflow by default
7818 - BUG/MEDIUM: fd/threads: ensure the fdcache_mask always reflects the cache contents
7819 - DOC: log: more than 2 log servers are allowed
7820 - MINOR: hash: add new function hash_crc32c
7821 - MINOR: proxy-v2-options: add crc32c
7822 - MINOR: accept-proxy: support proxy protocol v2 CRC32c checksum
7823 - REORG: compact "struct server"
7824 - MINOR: samples: add crc32c converter
7825 - BUG/MEDIUM: h2: properly account for DATA padding in flow control
7826 - BUG/MINOR: h2: ensure we can never send an RST_STREAM in response to an RST_STREAM
7827 - BUG/MINOR: listener: Don't decrease actconn twice when a new session is rejected
7828 - CLEANUP: map, stream: remove duplicate code in src/map.c, src/stream.c
7829 - BUG/MINOR: lua: the function returns anything
7830 - BUG/MINOR: lua funtion hlua_socket_settimeout don't check negative values
7831 - CLEANUP: lua: typo fix in comments
7832 - BUILD/MINOR: fix build when USE_THREAD is not defined
7833 - MINOR: lua: allow socket api settimeout to accept integers, float, and doubles
7834 - BUG/MINOR: hpack: fix harmless use of uninitialized value in hpack_dht_insert
7835 - MINOR: cli/threads: make "show fd" report thread_sync_io_handler instead of "unknown"
7836 - MINOR: cli: make "show fd" report the mux and mux_ctx pointers when available
7837 - BUILD/MINOR: cli: fix a build warning introduced by last commit
7838 - BUG/MAJOR: h2: remove orphaned streams from the send list before closing
7839 - MINOR: h2: always call h2s_detach() in h2_detach()
7840 - MINOR: h2: fuse h2s_detach() and h2s_free() into h2s_destroy()
7841 - BUG/MEDIUM: h2/threads: never release the task outside of the task handler
7842 - BUG/MEDIUM: h2: don't consider pending data on detach if connection is in error
7843 - BUILD/MINOR: threads: always export thread_sync_io_handler()
7844 - MINOR: mux: add a "show_fd" function to dump debugging information for "show fd"
7845 - MINOR: h2: implement a basic "show_fd" function
7846 - MINOR: cli: report cache indexes in "show fd"
7847 - BUG/MINOR: h2: remove accidental debug code introduced with show_fd function
7848 - BUG/MEDIUM: h2: always add a stream to the send or fctl list when blocked
7849 - BUG/MINOR: checks: check the conn_stream's readiness and not the connection
7850 - BUG/MINOR: fd: Don't clear the update_mask in fd_insert.
7851 - BUG/MINOR: email-alert: Set the mailer port during alert initialization
7852 - BUG/MINOR: cache: fix "show cache" output
7853 - BUG/MAJOR: cache: fix random crashes caused by incorrect delete() on non-first blocks
7854 - BUG/MINOR: spoe: Initialize variables used during conf parsing before any check
7855 - BUG/MINOR: spoe: Don't release the context buffer in .check_timeouts callbaclk
7856 - BUG/MINOR: spoe: Register the variable to set when an error occurred
7857 - BUG/MINOR: spoe: Don't forget to decrement fpa when a processing is interrupted
7858 - MINOR: spoe: Add metrics in to know time spent in the SPOE
7859 - MINOR: spoe: Add options to store processing times in variables
7860 - MINOR: log: move 'log' keyword parsing in dedicated function
7861 - MINOR: log: Keep the ref when a log server is copied to avoid duplicate entries
7862 - MINOR: spoe: Add loggers dedicated to the SPOE agent
7863 - MINOR: spoe: Add support for option dontlog-normal in the SPOE agent section
7864 - MINOR: spoe: use agent's logger to log SPOE messages
7865 - MINOR: spoe: Add counters to log info about SPOE agents
7866 - BUG/MAJOR: cache: always initialize newly created objects
7867 - MINOR: servers: Support alphanumeric characters for the server templates names
7868 - BUG/MEDIUM: threads: Fix the max/min calculation because of name clashes
7869 - BUG/MEDIUM: connection: Make sure we have a mux before calling detach().
7870 - BUG/MINOR: http: Return an error in proxy mode when url2sa fails
7871 - MINOR: proxy: Add fe_defbe fetcher
7872 - MINOR: config: Warn if resolvers has no nameservers
7873 - BUG/MINOR: cli: Guard against NULL messages when using CLI_ST_PRINT_FREE
7874 - MINOR: cli: Ensure the CLI always outputs an error when it should
7875 - MEDIUM: sample: Extend functionality for field/word converters
7876 - MINOR: export localpeer as an environment variable
7877 - BUG/MEDIUM: kqueue: When adding new events, provide an output to get errors.
7878 - BUILD: sample: avoid build warning in sample.c
7879 - BUG/CRITICAL: h2: fix incorrect frame length check
7880 - DOC: lua: update the links to the config and Lua API
7881 - BUG/MINOR: pattern: Add a missing HA_SPIN_INIT() in pat_ref_newid()
7882 - BUG/MAJOR: channel: Fix crash when trying to read from a closed socket
7883 - BUG/MINOR: log: t_idle (%Ti) is not set for some requests
7884 - BUG/MEDIUM: lua: Fix segmentation fault if a Lua task exits
7885 - MINOR: h2: detect presence of CONNECT and/or content-length
7886 - BUG/MEDIUM: h2: implement missing support for chunked encoded uploads
7887 - BUG/MINOR: spoe: Fix counters update when processing is interrupted
7888 - BUG/MINOR: spoe: Fix parsing of dontlog-normal option
7889 - MEDIUM: cli: Add payload support
7890 - MINOR: map: Add payload support to "add map"
7891 - MINOR: ssl: Add payload support to "set ssl ocsp-response"
7892 - BUG/MINOR: lua/threads: Make lua's tasks sticky to the current thread
7893 - MINOR: sample: Add strcmp sample converter
7894 - MINOR: http: Add support for 421 Misdirected Request
7895 - BUG/MINOR: config: disable http-reuse on TCP proxies
7896 - MINOR: ssl: disable SSL sample fetches when unsupported
7897 - MINOR: ssl: add fetch 'ssl_fc_session_key' and 'ssl_bc_session_key'
7898 - BUG/MINOR: checks: Fix check->health computation for flapping servers
7899 - BUG/MEDIUM: threads: Fix the sync point for more than 32 threads
7900 - BUG/MINOR, BUG/MINOR: lua: Put tasks to sleep when waiting for data
7901 - MINOR: backend: implement random-based load balancing
7902 - DOC/MINOR: clean up LUA documentation re: servers & array/table.
7903 - MINOR: lua: Add server name & puid to LUA Server class.
7904 - MINOR: lua: add get_maxconn and set_maxconn to LUA Server class.
7905 - BUG/MINOR: map: correctly track reference to the last ref_elt being dumped
7906 - BUG/MEDIUM: task: Don't free a task that is about to be run.
7907 - MINOR: fd: Make the lockless fd list work with multiple lists.
7908 - BUG/MEDIUM: pollers: Use a global list for fd shared between threads.
7909 - MINOR: pollers: move polled_mask outside of struct fdtab.
7910 - BUG/MINOR: lua: schedule socket task upon lua connect()
7911 - BUG/MINOR: lua: ensure large proxy IDs can be represented
7912 - BUG/MEDIUM: pollers/kqueue: use incremented position in event list
7913 - BUG/MINOR: cli: don't stop cli_gen_usage_msg() when kw->usage == NULL
7914 - BUG/MEDIUM: http: don't always abort transfers on CF_SHUTR
7915 - BUG/MEDIUM: ssl: properly protect SSL cert generation
7916 - BUG/MINOR: lua: Socket.send threw runtime error: 'close' needs 1 arguments.
7917 - BUG/MINOR: spoe: Mistake in error message about SPOE configuration
7918 - BUG/MEDIUM: spoe: Flags are not encoded in network order
7919 - CLEANUP: spoe: Remove unused variables the agent structure
7920 - DOC: spoe: fix a typo
7921 - BUG/MEDIUM: contrib/mod_defender: Use network order to encode/decode flags
7922 - BUG/MEDIUM: contrib/modsecurity: Use network order to encode/decode flags
7923 - DOC: add some description of the pending rework of the buffer structure
7924 - BUG/MINOR: ssl/lua: prevent lua from affecting automatic maxconn computation
7925 - MINOR: lua: Improve error message
7926 - BUG/MEDIUM: cache: don't cache when an Authorization header is present
7927 - MINOR: ssl: set SSL_OP_PRIORITIZE_CHACHA
7928 - BUG/MEDIUM: dns: Delay the attempt to run a DNS resolution on check failure.
7929 - BUG/BUILD: threads: unbreak build without threads
7930 - BUG/MEDIUM: servers: Add srv_addr default placeholder to the state file
7931 - BUG/MEDIUM: lua/socket: Length required read doesn't work
7932 - MINOR: tasks: Change the task API so that the callback takes 3 arguments.
7933 - MAJOR: tasks: Create a per-thread runqueue.
7934 - MAJOR: tasks: Introduce tasklets.
7935 - MINOR: tasks: Make the number of tasks to run at once configurable.
7936 - MAJOR: applets: Use tasks, instead of rolling our own scheduler.
7937 - BUG/MEDIUM: stick-tables: Decrement ref_cnt in table_* converters
7938 - MINOR: http: Log warning if (add|set)-header fails
7939 - DOC: management: add the new wrew stats column
7940 - MINOR: stats: also report the failed header rewrites warnings on the stats page
7941 - BUG/MEDIUM: tasks: Don't forget to increase/decrease tasks_run_queue.
7942 - BUG/MEDIUM: task: Don't forget to decrement max_processed after each task.
7943 - MINOR: task: Also consider the task list size when getting global tasks.
7944 - MINOR: dns: Implement `parse-resolv-conf` directive
7945 - BUG/MEDIUM: spoe: Return an error when the wrong ACK is received in sync mode
7946 - MINOR: task/notification: Is notifications registered ?
7947 - BUG/MEDIUM: lua/socket: wrong scheduling for sockets
7948 - BUG/MAJOR: lua: Dead lock with sockets
7949 - BUG/MEDIUM: lua/socket: Notification error
7950 - BUG/MEDIUM: lua/socket: Sheduling error on write: may dead-lock
7951 - BUG/MEDIUM: lua/socket: Buffer error, may segfault
7952 - DOC: contrib/modsecurity: few typo fixes
7953 - DOC: SPOE.txt: fix a typo
7954 - MAJOR: spoe: upgrade the SPOP version to 2.0 and remove the support for 1.0
7955 - BUG/MINOR: contrib/spoa_example: Don't reset the status code during disconnect
7956 - BUG/MINOR: contrib/mod_defender: Don't reset the status code during disconnect
7957 - BUG/MINOR: contrib/modsecurity: Don't reset the status code during disconnect
7958 - BUG/MINOR: contrib/mod_defender: update pointer on the end of the frame
7959 - BUG/MINOR: contrib/modsecurity: update pointer on the end of the frame
7960 - MINOR: task: Fix a compiler warning by adding a cast.
7961 - MINOR: stats: also report the nice and number of calls for applets
7962 - MINOR: applet: assign the same nice value to a new appctx as its owner task
7963 - MINOR: task: Fix compiler warning.
7964 - BUG/MEDIUM: tasks: Use the local runqueue when building without threads.
7965 - MINOR: tasks: Don't define rqueue if we're building without threads.
7966 - BUG/MINOR: unix: Make sure we can transfer abns sockets on seamless reload.
7967 - MINOR: lua: Increase debug information
7968 - BUG/MEDIUM: threads: handle signal queue only in thread 0
7969 - BUG/MINOR: don't ignore SIG{BUS,FPE,ILL,SEGV} during signal processing
7970 - BUG/MINOR: signals: ha_sigmask macro for multithreading
7971 - BUG/MAJOR: map: fix a segfault when using http-request set-map
7972 - DOC: regression testing: Add a short starting guide.
7973 - MINOR: tasks: Make sure we correctly init and deinit a tasklet.
7974 - BUG/MINOR: tasklets: Just make sure we don't pass a tasklet to the handler.
7975 - BUG/MINOR: lua: Segfaults with wrong usage of types.
7976 - BUG/MAJOR: ssl: Random crash with cipherlist capture
7977 - BUG/MAJOR: ssl: OpenSSL context is stored in non-reserved memory slot
7978 - BUG/MEDIUM: ssl: do not store pkinfo with SSL_set_ex_data
7979 - MINOR: tests: First regression testing file.
7980 - MINOR: reg-tests: Add reg-tests/README file.
7981 - MINOR: reg-tests: Add a few regression testing files.
7982 - DOC: Add new REGTEST tag info about reg testing.
7983 - BUG/MEDIUM: fd: Don't modify the update_mask in fd_dodelete().
7984 - MINOR: Some spelling cleanup in the comments.
7985 - BUG/MEDIUM: threads: Use the sync point to check active jobs and exit
7986 - MINOR: threads: Be sure to remove threads from all_threads_mask on exit
7987 - REGTEST/MINOR: Wrong URI in a reg test for SSL/TLS.
7988 - REGTEST/MINOR: Set HAPROXY_PROGRAM default value.
7989 - REGTEST/MINOR: Add levels to reg-tests target.
7990 - BUG/MAJOR: Stick-tables crash with segfault when the key is not in the stick-table
7991 - BUG/BUILD: threads: unbreak build without threads
7992 - BUG/MAJOR: stick_table: Complete incomplete SEGV fix
7993 - MINOR: stick-tables: make stktable_release() do nothing on NULL
7994 - BUG/MEDIUM: lua: possible CLOSE-WAIT state with '\n' headers
7995 - MINOR: startup: change session/process group settings
7996 - MINOR: systemd: consider exit status 143 as successful
7997 - REGTEST/MINOR: Wrong URI syntax.
7998 - CLEANUP: dns: remove obsolete macro DNS_MAX_IP_REC
7999 - CLEANUP: dns: inacurate comment about prefered IP score
8000 - MINOR: dns: fix wrong score computation in dns_get_ip_from_response
8001 - MINOR: dns: new DNS options to allow/prevent IP address duplication
8002 - REGTEST/MINOR: Unexpected curl URL globling.
8003 - BUG/MINOR: ssl: properly ref-count the tls_keys entries
8004 - MINOR: h2: keep a count of the number of conn_streams attached to the mux
8005 - BUG/MEDIUM: h2: don't accept new streams if conn_streams are still in excess
8006 - MINOR: h2: add the mux and demux buffer lengths on "show fd"
8007 - BUG/MEDIUM: h2: never leave pending data in the output buffer on close
8008 - BUG/MEDIUM: h2: make sure the last stream closes the connection after a timeout
8009 - MINOR: tasklet: Set process to NULL.
8010 - MINOR: buffer: implement a new file for low-level buffer manipulation functions
8011 - MINOR: buffer: switch buffer sizes and offsets to size_t
8012 - MINOR: buffer: add a few basic functions for the new API
8013 - MINOR: buffer: Introduce b_sub(), b_add(), and bo_add()
8014 - MINOR: buffer: Add b_set_data().
8015 - MINOR: buffer: introduce b_realign_if_empty()
8016 - MINOR: compression: pass the channel to http_compression_buffer_end()
8017 - MINOR: channel: add a few basic functions for the new buffer API
8018 - MINOR: channel/buffer: use c_realign_if_empty() instead of buffer_realign()
8019 - MINOR: channel/buffer: replace buffer_slow_realign() with channel_slow_realign() and b_slow_realign()
8020 - MEDIUM: channel: make channel_slow_realign() take a swap buffer
8021 - MINOR: h2: use b_slow_realign() with the trash as a swap buffer
8022 - MINOR: buffer: remove buffer_slow_realign() and the swap_buffer allocation code
8023 - MINOR: channel/buffer: replace b_{adv,rew} with c_{adv,rew}
8024 - MINOR: buffer: replace calls to buffer_space_wraps() with b_space_wraps()
8025 - MINOR: buffer: remove bi_getblk() and bi_getblk_nc()
8026 - MINOR: buffer: split bi_contig_data() into ci_contig_data and b_config_data()
8027 - MINOR: buffer: remove bi_ptr()
8028 - MINOR: buffer: remove bo_ptr()
8029 - MINOR: buffer: remove bo_end()
8030 - MINOR: buffer: remove bi_end()
8031 - MINOR: buffer: remove bo_contig_data()
8032 - MINOR: buffer: merge b{i,o}_contig_space()
8033 - MINOR: buffer: replace bo_getblk() with direction agnostic b_getblk()
8034 - MINOR: buffer: replace bo_getblk_nc() with b_getblk_nc() which takes an offset
8035 - MINOR: buffer: replace bi_del() and bo_del() with b_del()
8036 - MINOR: buffer: convert most b_ptr() calls to c_ptr()
8037 - MINOR: h1: make h1_measure_trailers() take the byte count in argument
8038 - MINOR: h2: clarify the fact that the send functions are unsigned
8039 - MEDIUM: h2: prevent the various mux encoders from modifying the buffer
8040 - MINOR: h1: make h1_skip_chunk_crlf() not depend on b_ptr() anymore
8041 - MINOR: h1: make h1_parse_chunk_size() not depend on b_ptr() anymore
8042 - MINOR: h1: make h1_measure_trailers() use an offset and a count
8043 - MEDIUM: h2: do not use buf->o anymore inside h2_snd_buf's loop
8044 - MEDIUM: h2: don't use b_ptr() nor b_end() anymore
8045 - MINOR: buffer: get rid of b_end() and b_to_end()
8046 - MINOR: buffer: make b_getblk_nc() take const pointers
8047 - MINOR: buffer: make b_getblk_nc() take size_t for the block sizes
8048 - MEDIUM: connection: make xprt->snd_buf() take the byte count in argument
8049 - MEDIUM: mux: make mux->snd_buf() take the byte count in argument
8050 - MEDIUM: connection: make xprt->rcv_buf() use size_t for the count
8051 - MEDIUM: mux: make mux->rcv_buf() take a size_t for the count
8052 - MINOR: connection: add a flags argument to rcv_buf()
8053 - MINOR: connection: add a new receive flag : CO_RFL_BUF_WET
8054 - MINOR: buffer: get rid of b_ptr() and convert its last users
8055 - MINOR: buffer: use b_room() to determine available space in a buffer
8056 - MINOR: buffer: replace buffer_not_empty() with b_data() or c_data()
8057 - MINOR: buffer: replace buffer_empty() with b_empty() or c_empty()
8058 - MINOR: buffer: make bo_putchar() use b_tail()
8059 - MINOR: buffer: replace buffer_full() with channel_full()
8060 - MINOR: buffer: replace bi_space_for_replace() with ci_space_for_replace()
8061 - MINOR: buffer: replace buffer_pending() with ci_data()
8062 - MINOR: buffer: replace buffer_flush() with c_adv(chn, ci_data(chn))
8063 - MINOR: buffer: use c_head() instead of buffer_wrap_sub(c->buf, p-o)
8064 - MINOR: buffer: use b_orig() to replace most references to b->data
8065 - MINOR: buffer: Use b_add()/bo_add() instead of accessing b->i/b->o.
8066 - MINOR: channel: remove almost all references to buf->i and buf->o
8067 - MINOR: channel: Add co_set_data().
8068 - MEDIUM: channel: adapt to the new buffer API
8069 - MINOR: checks: adapt to the new buffer API
8070 - MEDIUM: h2: update to the new buffer API
8071 - MINOR: buffer: remove unused bo_add()
8072 - MEDIUM: spoe: use the new buffer API for the SPOE buffer
8073 - MINOR: stats: adapt to the new buffers API
8074 - MINOR: cli: use the new buffer API
8075 - MINOR: cache: use the new buffer API
8076 - MINOR: stream-int: use the new buffer API
8077 - MINOR: stream: use wrappers instead of directly manipulating buffers
8078 - MINOR: backend: use new buffer API
8079 - MEDIUM: http: use wrappers instead of directly manipulating buffers states
8080 - MINOR: filters: convert to the new buffer API
8081 - MINOR: payload: convert to the new buffer API
8082 - MEDIUM: h1: port to new buffer API.
8083 - MINOR: flt_trace: adapt to the new buffer API
8084 - MEDIUM: compression: start to move to the new buffer API
8085 - MINOR: lua: use the wrappers instead of directly manipulating buffer states
8086 - MINOR: buffer: convert part bo_putblk() and bi_putblk() to the new API
8087 - MINOR: buffer: adapt buffer_slow_realign() and buffer_dump() to the new API
8088 - MAJOR: start to change buffer API
8089 - MINOR: buffer: remove the check for output on b_del()
8090 - MINOR: buffer: b_set_data() doesn't truncate output data anymore
8091 - MINOR: buffer: rename the "data" field to "area"
8092 - MEDIUM: buffers: move "output" from struct buffer to struct channel
8093 - MINOR: buffer: replace bi_fast_delete() with b_del()
8094 - MINOR: buffer: replace b{i,o}_put* with b_put*
8095 - MINOR: buffer: add a new file for ist + buffer manipulation functions
8096 - MINOR: checks: use b_putist() instead of b_putstr()
8097 - MINOR: buffers: remove b_putstr()
8098 - CLEANUP: buffer: minor cleanups to buffer.h
8099 - MINOR: buffers/channel: replace buffer_insert_line2() with ci_insert_line2()
8100 - MINOR: buffer: replace buffer_replace2() with b_rep_blk()
8101 - MINOR: buffer: rename the data length member to '->data'
8102 - MAJOR: buffer: finalize buffer detachment
8103 - MEDIUM: chunks: make the chunk struct's fields match the buffer struct
8104 - MAJOR: chunks: replace struct chunk with struct buffer
8105 - DOC: buffers: document the new buffers API
8106 - DOC: buffers: remove obsolete docs about buffers
8107 - MINOR: tasklets: Don't attempt to add a tasklet in the list twice.
8108 - MINOR: connections/mux: Add a new "subscribe" method.
8109 - MEDIUM: connections/mux: Revamp the send direction.
8110 - MINOR: connection: simplify subscription by adding a registration function
8111 - BUG/MINOR: http: Set brackets for the unlikely macro at the right place
8112 - BUG/MINOR: build: Fix compilation with debug mode enabled
8113 - BUILD: Generate sha256 checksums in publish-release
8114 - MINOR: debug: Add check for CO_FL_WILL_UPDATE
8115 - MINOR: debug: Add checks for conn_stream flags
8116 - MINOR: ist: Add the function isteqi
8117 - BUG/MEDIUM: threads: Fix the exit condition of the thread barrier
8118 - BUG/MEDIUM: mux_h2: Call h2_send() before updating polling.
8119 - MINOR: buffers: simplify b_contig_space()
8120 - MINOR: buffers: split b_putblk() into __b_putblk()
8121 - MINOR: buffers: add b_xfer() to transfer data between buffers
8122 - DOC: add some design notes about the new layering model
8123 - MINOR: conn_stream: add a new CS_FL_REOS flag
8124 - MINOR: conn_stream: add an rx buffer to the conn_stream
8125 - MEDIUM: conn_stream: add cs_recv() as a default rcv_buf() function
8126 - MEDIUM: stream-int: automatically call si_cs_recv_cb() if the cs has data on wake()
8127 - MINOR: h2: make each H2 stream support an intermediary input buffer
8128 - MEDIUM: h2: make h2_frt_decode_headers() use an intermediary buffer
8129 - MEDIUM: h2: make h2_frt_transfer_data() copy via an intermediary buffer
8130 - MEDIUM: h2: centralize transfer of decoded frames in h2_rcv_buf()
8131 - MEDIUM: h2: move headers and data frame decoding to their respective parsers
8132 - MEDIUM: buffers: make b_xfer() automatically swap buffers when possible
8133 - MEDIUM: h2: perform a single call to the data layer in demux()
8134 - MEDIUM: h2: don't call data_cb->recv() anymore
8135 - MINOR: h2: make use of CS_FL_REOS to indicate that end of stream was seen
8136 - MEDIUM: h2: use the default conn_stream's receive function
8137 - DOC: add more design feedback on the new layering model
8138 - MINOR: h2: add the error code and the max/last stream IDs to "show fd"
8139 - BUG/MEDIUM: stream-int: don't immediately enable reading when the buffer was reportedly full
8140 - BUG/MEDIUM: stats: don't ask for more data as long as we're responding
8141 - BUG/MINOR: servers: Don't make "server" in a frontend fatal.
8142 - BUG/MEDIUM: tasks: make sure we pick all tasks in the run queue
8143 - BUG/MEDIUM: tasks: Decrement rqueue_size at the right time.
8144 - BUG/MEDIUM: tasks: use atomic ops for active_tasks_mask
8145 - BUG/MEDIUM: tasks: Make sure there's no task left before considering inactive.
8146 - MINOR: signal: don't pass the signal number anymore as the wakeup reason
8147 - MINOR: tasks: extend the state bits from 8 to 16 and remove the reason
8148 - MINOR: tasks: Add a flag that tells if we're in the global runqueue.
8149 - BUG/MEDIUM: tasks: make __task_unlink_rq responsible for the rqueue size.
8150 - MINOR: queue: centralize dequeuing code a bit better
8151 - MEDIUM: queue: make pendconn_free() work on the stream instead
8152 - DOC: queue: document the expected locking model for the server's queue
8153 - MINOR: queue: make sure pendconn->strm->pend_pos is always valid
8154 - MINOR: queue: use a distinct variable for the assigned server and the queue
8155 - MINOR: queue: implement pendconn queue locking functions
8156 - MEDIUM: queue: get rid of the pendconn lock
8157 - MINOR: tasks: Make active_tasks_mask volatile.
8158 - MINOR: tasks: Make global_tasks_mask volatile.
8159 - MINOR: pollers: Add a way to wake a thread sleeping in the poller.
8160 - MINOR: threads/queue: Get rid of THREAD_WANT_SYNC in the queue code.
8161 - BUG/MEDIUM: threads/sync: use sched_yield when available
8162 - MINOR: ssl: BoringSSL matches OpenSSL 1.1.0
8163 - BUG/MEDIUM: h2: prevent orphaned streams from blocking a connection forever
8164 - BUG/MINOR: config: stick-table is not supported in defaults section
8165 - BUILD/MINOR: threads: unbreak build with threads disabled
8166 - BUG/MINOR: threads: Handle nbthread == MAX_THREADS.
8167 - BUG/MEDIUM: threads: properly fix nbthreads == MAX_THREADS
8168 - MINOR: threads: move "nbthread" parsing to hathreads.c
8169 - BUG/MEDIUM: threads: unbreak "bind" referencing an incorrect thread number
8170 - MEDIUM: proxy_protocol: Convert IPs to v6 when protocols are mixed
8171 - BUILD/MINOR: compiler: fix offsetof() on older compilers
8172 - SCRIPTS: git-show-backports: add missing quotes to "echo"
8173 - MINOR: threads: add more consistency between certain variables in no-thread case
8174 - MEDIUM: hathreads: implement a more flexible rendez-vous point
8175 - BUG/MEDIUM: cli: make "show fd" thread-safe
8176
Willy Tarreaub3066502017-11-26 19:50:17 +010081772017/11/26 : 1.9-dev0
8178
Willy Tarreau0b787922017-11-26 19:25:23 +010081792017/11/26 : 1.8.0
8180 - BUG/MEDIUM: stream: don't automatically forward connect nor close
8181 - BUG/MAJOR: stream: ensure analysers are always called upon close
8182 - BUG/MINOR: stream-int: don't try to read again when CF_READ_DONTWAIT is set
8183 - MEDIUM: mworker: Add systemd `Type=notify` support
8184 - BUG/MEDIUM: cache: free callback to remove from tree
8185 - CLEANUP: cache: remove unused struct
8186 - MEDIUM: cache: enable the HTTP analysers
8187 - CLEANUP: cache: remove wrong comment
8188 - MINOR: threads/atomic: rename local variables in macros to avoid conflicts
8189 - MINOR: threads/plock: rename local variables in macros to avoid conflicts
8190 - MINOR: threads/atomic: implement pl_mb() in asm on x86
8191 - MINOR: threads/atomic: implement pl_bts() on non-x86
8192 - MINOR: threads/build: atomic: replace the few inlines with macros
8193 - BUILD: threads/plock: fix a build issue on Clang without optimization
8194 - BUILD: ebtree: don't redefine types u32/s32 in scope-aware trees
8195 - BUILD: compiler: add a new type modifier __maybe_unused
8196 - BUILD: h2: mark some inlined functions "unused"
8197 - BUILD: server: check->desc always exists
8198 - BUG/MEDIUM: h2: properly report connection errors in headers and data handlers
8199 - MEDIUM: h2: add a function to emit an HTTP/1 request from a headers list
8200 - MEDIUM: h2: change hpack_decode_headers() to only provide a list of headers
8201 - BUG/MEDIUM: h2: always reassemble the Cookie request header field
8202 - BUG/MINOR: systemd: ignore daemon mode
8203 - CONTRIB: spoa_example: allow to compile outside HAProxy.
8204 - CONTRIB: spoa_example: remove bref, wordlist, cond_wordlist
8205 - CONTRIB: spoa_example: remove last dependencies on type "sample"
8206 - CONTRIB: spoa_example: remove SPOE enums that are useless for clients
8207 - CLEANUP: cache: reorder includes
8208 - MEDIUM: shctx: use unsigned int for len and block_count
8209 - MEDIUM: cache: "show cache" on the cli
8210 - BUG/MEDIUM: cache: use key=0 as a condition for freeing
8211 - BUG/MEDIUM: cache: refcount forbids to free the objects
8212 - BUG/MEDIUM: cache fix cli_kws structure
8213 - BUG/MEDIUM: deinit: correctly deinitialize the proxy and global listener tasks
8214 - BUG/MINOR: ssl: Always start the handshake if we can't send early data.
8215 - MINOR: ssl: Don't disable early data handling if we could not write.
8216 - MINOR: pools: prepare functions to override malloc/free in pools
8217 - MINOR: pools: implement DEBUG_UAF to detect use after free
8218 - BUG/MEDIUM: threads/time: fix time drift correction
8219 - BUG/MEDIUM: threads/time: maintain a common time reference between all threads
8220 - MINOR: sample: Add "thread" sample fetch
8221 - BUG/MINOR: Use crt_base instead of ca_base when crt is parsed on a server line
8222 - BUG/MINOR: stream: fix tv_request calculation for applets
8223 - BUG/MAJOR: h2: always remove a stream from the send list before freeing it
8224 - BUG/MAJOR: threads/task: dequeue expired tasks under the WQ lock
8225 - MINOR: ssl: Handle reading early data after writing better.
8226 - MINOR: mux: Make sure every string is woken up after the handshake.
8227 - MEDIUM: cache: store sha1 for hashing the cache key
8228 - MINOR: http: implement the "http-request reject" rule
8229 - MINOR: h2: send RST_STREAM before GOAWAY on reject
8230 - MEDIUM: h2: don't gracefully close the connection anymore on Connection: close
8231 - MINOR: h2: make use of client-fin timeout after GOAWAY
8232 - MEDIUM: config: ensure that tune.bufsize is at least 16384 when using HTTP/2
8233 - MINOR: ssl: Handle early data with BoringSSL
8234 - BUG/MEDIUM: stream: always release the stream-interface on abort
8235 - BUG/MEDIUM: cache: free ressources in chn_end_analyze
8236 - MINOR: cache: move the refcount decrease in the applet release
8237 - BUG/MINOR: listener: Allow multiple "process" options on "bind" lines
8238 - MINOR: config: Support a range to specify processes in "cpu-map" parameter
8239 - MINOR: config: Slightly change how parse_process_number works
8240 - MINOR: config: Export parse_process_number and use it wherever it's applicable
8241 - MINOR: standard: Add my_ffsl function to get the position of the bit set to one
8242 - MINOR: config: Add auto-increment feature for cpu-map
8243 - MINOR: config: Support partial ranges in cpu-map directive
8244 - MINOR:: config: Remove thread-map directive
8245 - MINOR: config: Add the threads support in cpu-map directive
8246 - MINOR: config: Add threads support for "process" option on "bind" lines
8247 - MEDIUM: listener: Bind listeners on a thread subset if specified
8248 - CLEANUP: debug: Use DPRINTF instead of fprintf into #ifdef DEBUG_FULL/#endif
8249 - CLEANUP: log: Rename Alert/Warning in ha_alert/ha_warning
8250 - MINOR/CLEANUP: proxy: rename "proxy" to "proxies_list"
8251 - CLEANUP: pools: rename all pool functions and pointers to remove this "2"
8252 - DOC: update the roadmap file with the latest changes merged in 1.8
8253 - DOC: fix mangled version in peers protocol documentation
8254 - DOC: add initial peers protovol v2.0 documentation.
8255 - DOC: mention William as maintainer of the cache and master-worker
8256 - DOC: add Christopher and Emeric as maintainers of the threads
8257 - MINOR: cache: replace a fprint() by an abort()
8258 - MEDIUM: cache: max-age configuration keyword
8259 - DOC: explain HTTP2 timeout behavior
8260 - DOC: cache: configuration and management
8261 - MAJOR: mworker: exits the master on failure
8262 - BUG/MINOR: threads: don't drop "extern" on the lock in include files
8263 - MINOR: task: keep a pointer to the currently running task
8264 - MINOR: task: align the rq and wq locks
8265 - MINOR: fd: cache-align fdtab and fdcache locks
8266 - MINOR: buffers: cache-align buffer_wq_lock
8267 - CLEANUP: server: reorder some fields in struct server to save 40 bytes
8268 - CLEANUP: proxy: slightly reorder the struct proxy to reduce holes
8269 - CLEANUP: checks: remove 16 bytes of holes in struct check
8270 - CLEANUP: cache: more efficiently pack the struct cache
8271 - CLEANUP: fd: place the lock at the beginning of struct fdtab
8272 - CLEANUP: pools: align pools on a cache line
8273 - DOC: config: add a few bits about how to configure HTTP/2
8274 - BUG/MAJOR: threads/queue: avoid recursive locking in pendconn_get_next_strm()
8275 - BUILD: Makefile: reorder object files by size
8276
Willy Tarreaucfe14662017-11-19 09:55:29 +010082772017/11/19 : 1.8-rc4
8278 - BUG/MEDIUM: cache: does not cache if no Content-Length
8279 - BUILD: thread/pipe: fix build without threads
8280 - BUG/MINOR: spoe: check buffer size before acquiring or releasing it
8281 - MINOR: debug/flags: Add missing flags
8282 - MINOR: threads: Use __decl_hathreads to declare locks
8283 - BUG/MINOR: buffers: Fix b_alloc_margin to be "fonctionnaly" thread-safe
8284 - BUG/MAJOR: ebtree/scope: fix insertion and removal of duplicates in scope-aware trees
8285 - BUG/MAJOR: ebtree/scope: fix lookup of next node in scope-aware trees
8286 - MINOR: ebtree/scope: add a function to find next node from a parent
8287 - MINOR: ebtree/scope: simplify the lookup functions by using eb32sc_next_with_parent()
8288 - BUG/MEDIUM: mworker: Fix re-exec when haproxy is started from PATH
8289 - BUG/MEDIUM: cache: use msg->sov to forward header
8290 - MINOR: cache: forward data with headers
8291 - MINOR: cache: disable cache if shctx_row_data_append fail
8292 - BUG/MINOR: threads: tid_bit must be a unsigned long
8293 - CLEANUP: tasks: Remove useless double test on rq_next
8294 - BUG/MEDIUM: standard: itao_str/idx and quote_str/idx must be thread-local
8295 - MINOR: tools: add a function to dump a scope-aware tree to a file
8296 - MINOR: tools: improve the DOT dump of the ebtree
8297 - MINOR: tools: emphasize the node being worked on in the tree dump
8298 - BUG/MAJOR: ebtree/scope: properly tag upper nodes during insertion
8299 - DOC: peers: Add a first version of peers protocol v2.1.
8300 - CONTRIB: Wireshark dissector for HAProxy Peer Protocol.
8301 - MINOR: mworker: display an accurate error when the reexec fail
8302 - BUG/MEDIUM: mworker: wait again for signals when execvp fail
8303 - BUG/MEDIUM: mworker: does not deinit anymore
8304 - BUG/MEDIUM: mworker: does not close inherited FD
8305 - MINOR: tests: add a python wrapper to test inherited fd
8306 - BUG/MINOR: Allocate the log buffers before the proxies startup
8307 - MINOR: tasks: Use a bitfield to track tasks activity per-thread
8308 - MAJOR: polling: Use active_tasks_mask instead of tasks_run_queue
8309 - MINOR: applets: Use a bitfield to track applets activity per-thread
8310 - MAJOR: polling: Use active_appels_mask instead of applets_active_queue
8311 - MEDIUM: applets: Don't process more than 200 active applets at once
8312 - MINOR: stream: Add thread-mask of tasks/FDs/applets in "show sess all" command
8313 - MINOR: SSL: Store the ASN1 representation of client sessions.
8314 - MINOR: ssl: Make sure we don't shutw the connection before the handshake.
8315 - BUG/MEDIUM: deviceatlas: ignore not valuable HTTP request data
8316
Willy Tarreau34650d52017-11-11 09:06:48 +010083172017/11/11 : 1.8-rc3
8318 - BUILD: use MAXPATHLEN instead of NAME_MAX.
8319 - BUG/MAJOR: threads/checks: add 4 missing spin_unlock() in various functions
8320 - BUG/MAJOR: threads/server: missing unlock in CLI fqdn parser
8321 - BUG/MINOR: cli: do not perform an invalid action on "set server check-port"
8322 - BUG/MAJOR: threads/checks: wrong use of SPIN_LOCK instead of SPIN_UNLOCK
8323 - CLEANUP: checks: remove return statements in locked functions
8324 - BUG/MINOR: cli: add severity in "set server addr" parser
8325 - CLEANUP: server: get rid of return statements in the CLI parser
8326 - BUG/MAJOR: cli/streams: missing unlock on exit "show sess"
8327 - BUG/MAJOR: threads/dns: add missing unlock on allocation failure path
8328 - BUG/MAJOR: threads/lb: fix missing unlock on consistent hash LB
8329 - BUG/MAJOR: threads/lb: fix missing unlock on map-based hash LB
8330 - BUG/MEDIUM: threads/stick-tables: close a race condition on stktable_trash_expired()
8331 - BUG/MAJOR: h2: set the connection's task to NULL when no client timeout is set
8332 - BUG/MAJOR: thread/listeners: enable_listener must not call unbind_listener()
8333 - BUG/MEDIUM: threads: don't try to free build option message on exit
8334 - MINOR: applets: no need to check for runqueue's emptiness in appctx_res_wakeup()
8335 - MINOR: add master-worker in the warning about nbproc
8336 - MINOR: mworker: allow pidfile in mworker + foreground
8337 - MINOR: mworker: write parent pid in the pidfile
8338 - MINOR: mworker: do not store child pid anymore in the pidfile
8339 - MINOR: ebtree: implement the scope-aware functions for eb32
8340 - MEDIUM: ebtree: specify the scope of every node inserted via eb32sc
8341 - MINOR: ebtree: update the eb32sc parent node's scope on delete
8342 - MEDIUM: ebtree: only consider the branches matching the scope in lookups
8343 - MINOR: ebtree: implement eb32sc_lookup_ge_or_first()
8344 - MAJOR: task: make use of the scope-aware ebtree functions
8345 - MINOR: task: simplify wake_expired_tasks() to avoid unlocking in the loop
8346 - MEDIUM: task: change the construction of the loop in process_runnable_tasks()
8347 - MINOR: threads: use faster locks for the spin locks
8348 - MINOR: tasks: only visit filled task slots after processing them
8349 - MEDIUM: tasks: implement a lockless scheduler for single-thread usage
8350 - BUG/MINOR: dns: Don't try to get the server lock if it's already held.
8351 - BUG/MINOR: dns: Don't lock the server lock in snr_check_ip_callback().
8352 - DOC: Add note about encrypted password CPU usage
8353 - BUG/MINOR: h2: set the "HEADERS_SENT" flag on stream, not connection
8354 - BUG/MEDIUM: h2: properly send an RST_STREAM on mux stream error
8355 - BUG/MEDIUM: h2: properly send the GOAWAY frame in the mux
8356 - BUG/MEDIUM: h2: don't try (and fail) to send non-existing data in the mux
8357 - MEDIUM: h2: remove the H2_SS_RESET intermediate state
8358 - BUG/MEDIUM: h2: fix some wrong error codes on connections
8359 - BUILD: threads: Rename SPIN/RWLOCK macros using HA_ prefix
8360 - BUILD: enable USE_THREAD for Solaris build.
8361 - BUG/MEDIUM: h2: don't close the connection is there are data left
8362 - MINOR: h2: don't re-enable the connection's task when we're closing
8363 - BUG/MEDIUM: h2: properly set H2_SF_ES_SENT when sending the final frame
8364 - BUG/MINOR: h2: correctly check for H2_SF_ES_SENT before closing
8365 - MINOR: h2: add new stream flag H2_SF_OUTGOING_DATA
8366 - BUG/MINOR: h2: don't send GOAWAY on failed response
8367 - BUG/MEDIUM: splice/threads: pipe reuse list was not protected.
8368 - BUG/MINOR: comp: fix compilation warning compiling without compression.
8369 - BUG/MINOR: stream-int: don't set MSG_MORE on closed request path
8370 - BUG/MAJOR: threads/tasks: fix the scheduler again
8371 - BUG/MINOR; ssl: Don't assume we have a ssl_bind_conf because a SNI is matched.
8372 - MINOR: ssl: Handle session resumption with TLS 1.3
8373 - MINOR: ssl: Spell 0x10101000L correctly.
8374 - MINOR: ssl: Handle sending early data to server.
8375 - BUILD: ssl: fix build of backend without ssl
8376 - BUILD: shctx: do not depend on openssl anymore
8377 - BUG/MINOR: h1: the HTTP/1 make status code parser check for digits
8378 - BUG/MEDIUM: h2: reject non-3-digit status codes
8379 - BUG/MEDIUM: stream-int: Don't loss write's notifs when a stream is woken up
8380 - BUG/MINOR: pattern: Rely on the sample type to copy it in pattern_exec_match
8381 - BUG/MEDIUM: h2: split the function to send RST_STREAM
8382 - BUG/MEDIUM: h1: ensure the chunk size parser can deal with full buffers
8383 - MINOR: tools: don't use unlikely() in hex2i()
8384 - BUG/MEDIUM: h2: support orphaned streams
8385 - BUG/MEDIUM: threads/cli: fix "show sess" locking on release
8386 - CLEANUP: mux: remove the unused "release()" function
8387 - MINOR: cli: make "show fd" report the fd's thread mask
8388 - BUG/MEDIUM: stream: don't ignore res.analyse_exp anymore
8389 - CLEANUP: global: introduce variable pid_bit to avoid shifts with relative_pid
8390 - MEDIUM: http: always reject the "PRI" method
8391
Willy Tarreaua8d8d6e2017-11-03 23:52:47 +010083922017/11/03 : 1.8-rc2
8393 - BUG/MINOR: send-proxy-v2: fix dest_len in make_tlv call
8394 - BUG/MINOR: send-proxy-v2: string size must include ('\0')
8395 - MINOR: mux: Only define pipe functions on linux.
8396 - MINOR: cache: Remove useless test for nonzero.
8397 - MINOR: cache: Don't confuse act_return and act_parse_ret.
8398 - BUG/MEDIUM: h2: don't try to parse incomplete H1 responses
8399 - BUG/MEDIUM: checks/mux: always enable send-polling after connecting
8400 - BUG/MAJOR: fix deadlock on healthchecks.
8401 - BUG/MINOR: thread: fix a typo in the debug code
8402 - BUILD: shctx: allow to be built without openssl
8403 - BUG/MEDIUM: cache: don't try to resolve wrong filters
8404 - BUG/MAJOR: buffers: fix get_buffer_nc() for data at end of buffer
8405 - BUG/MINOR: freq: fix infinite loop on freq_ctr_period.
8406 - BUG/MINOR: stdarg.h inclusion
8407 - BUG/MINOR: dns: fix missing lock protection on server.
8408 - BUG/MINOR: lua: fix missing lock protection on server.
8409 - BUILD: enable USE_THREAD for OpenBSD build.
8410 - BUG/MAJOR: mux_pt: don't dereference a connstream after ->wake()
8411 - MINOR: thread: report multi-thread support in haproxy -vv
8412
Willy Tarreau901f75c2017-10-31 23:18:29 +010084132017/10/31 : 1.8-rc1
8414 - BUG/MEDIUM: server: Allocate tmptrash before using it.
8415 - CONTRIB: trace: add the possibility to place trace calls in the code
8416 - CONTRIB: trace: try to display the function's return value on exit
8417 - CONTRIB: trace: report the base name only for file names
8418 - BUILD: ssl: support OPENSSL_NO_ASYNC #define
8419 - MINOR: ssl: build with recent BoringSSL library
8420 - BUG/MINOR: ssl: OCSP_single_get0_status can return -1
8421 - BUG/MINOR: cli: restore "set ssl tls-key" command
8422 - CLEANUP: cli: remove undocumented "set ssl tls-keys" command
8423 - IMPORT: sha1: import SHA1 functions
8424 - MINOR: sample: add the sha1 converter
8425 - MINOR: sample: add the hex2i converter
8426 - MINOR: stream-int: stop checking for useless connection flags in chk_snd_conn
8427 - MINOR: ssl: don't abort after sending 16kB
8428 - MINOR: connection: move the cleanup of flag CO_FL_WAIT_ROOM
8429 - MINOR: connection: add flag CO_FL_WILL_UPDATE to indicate when updates are granted
8430 - MEDIUM: connection: make use of CO_FL_WILL_UPDATE in conn_sock_shutw()
8431 - MINOR: raw_sock: make use of CO_FL_WILL_UPDATE
8432 - MINOR: ssl_sock: make use of CO_FL_WILL_UPDATE
8433 - BUG/MINOR: checks: Don't forget to release the connection on error case.
8434 - MINOR: buffer: add the buffer input manipulation functions
8435 - BUG/MEDIUM: prevent buffers being overwritten during build_logline() execution
8436 - MEDIUM: cfgparse: post section callback
8437 - MEDIUM: cfgparse: post parsing registration
8438 - MINOR: lua: add uuid to the Class Proxy
8439 - MINOR: hlua: Add regex class
8440 - MINOR: http: Mark the 425 code as "Too Early".
8441 - MEDIUM: ssl: convert CBS (BoringSSL api) usage to neutral code
8442 - MINOR: ssl: support Openssl 1.1.1 early callback for switchctx
8443 - MINOR: ssl: generated certificate is missing in switchctx early callback
8444 - MEDIUM: ssl: Handle early data with OpenSSL 1.1.1
8445 - BUILD: Makefile: disable -Wunused-label
8446 - MINOR: ssl/proto_http: Add keywords to take care of early data.
8447 - BUG/MINOR: lua: const attribute of a string is overridden
8448 - MINOR: ssl: Don't abuse ssl_options.
8449 - MINOR: update proxy-protocol-v2 #define
8450 - MINOR: merge ssl_sock_get calls for log and ppv2
8451 - MINOR: add ALPN information to send-proxy-v2
8452 - MEDIUM: h1: ensure that 1xx, 204 and 304 don't have a payload body
8453 - CLEANUP: shctx: get ride of the shsess_packet{_hdr} structures
8454 - MEDIUM: lists: list_for_each_entry{_safe}_from functions
8455 - REORG: shctx: move lock functions and struct
8456 - MEDIUM: shctx: allow the use of multiple shctx
8457 - REORG: shctx: move ssl functions to ssl_sock.c
8458 - MEDIUM: shctx: separate ssl and shctx
8459 - MINOR: shctx: rename lock functions
8460 - MINOR: h1: store the status code in the H1 message
8461 - BUG/MINOR: spoe: Don't compare engine name and SPOE scope when both are NULL
8462 - BUG/MINOR: spoa: Update pointer on the end of the frame when a reply is encoded
8463 - MINOR: action: Add trk_idx inline function
8464 - MINOR: action: Use trk_idx instead of tcp/http_trk_idx
8465 - MINOR: action: Add a function pointer in act_rule struct to check its validity
8466 - MINOR: action: Add function to check rules using an action ACT_ACTION_TRK_*
8467 - MINOR: action: Add a functions to check http capture rules
8468 - MINOR: action: Factorize checks on rules calling check_ptr if defined
8469 - MINOR: acl: Pass the ACLs as an explicit parameter of build_acl_cond
8470 - MEDIUM: spoe: Add support of ACLS to enable or disable sending of SPOE messages
8471 - MINOR: spoe: Check uniqness of SPOE engine names during config parsing
8472 - MEDIUM: spoe: Parse new "spoe-group" section in SPOE config file
8473 - MEDIUM: spoe/rules: Add "send-spoe-group" action for tcp/http rules
8474 - MINOR: spoe: Move message encoding in its own function
8475 - MINOR: spoe: Add a type to qualify the message list during encoding
8476 - MINOR: spoe: Add a generic function to encode a list of SPOE message
8477 - MEDIUM: spoe/rules: Process "send-spoe-group" action
8478 - BUG/MINOR: dns: Fix CLI keyword declaration
8479 - MAJOR: dns: Refactor the DNS code
8480 - BUG/MINOR: mailers: Fix a memory leak when email alerts are released
8481 - MEDIUM: mailers: Init alerts during conf parsing and refactor their processing
8482 - MINOR: mailers: Use pools to allocate email alerts and its tcpcheck_rules
8483 - MINOR: standard: Add memvprintf function
8484 - MINOR: log: Save alerts and warnings emitted during HAProxy startup
8485 - MINOR: cli: Add "show startup-logs" command
8486 - MINOR: startup: Extend the scope the MODE_STARTING flag
8487 - MINOR: threads: Prepare makefile to link with pthread
8488 - MINOR: threads: Add THREAD_LOCAL macro
8489 - MINOR: threads: Add atomic-ops and plock includes in import dir
8490 - MEDIUM: threads: Add hathreads header file
8491 - MINOR: threads: Add mechanism to register per-thread init/deinit functions
8492 - MINOR: threads: Add nbthread parameter
8493 - MEDIUM: threads: Adds a set of functions to handle sync-point
8494 - MAJOR: threads: Start threads to experiment multithreading
8495 - MINOR: threads: Define the sync-point inside run_poll_loop
8496 - MEDIUM: threads/buffers: Define and register per-thread init/deinit functions
8497 - MEDIUM: threads/chunks: Transform trash chunks in thread-local variables
8498 - MEDIUM: threads/time: Many global variables from time.h are now thread-local
8499 - MEDIUM: threads/logs: Make logs thread-safe
8500 - MEDIUM: threads/pool: Make pool thread-safe by locking all access to a pool
8501 - MAJOR: threads/fd: Make fd stuffs thread-safe
8502 - MINOR: threads/fd: Add a mask of threads allowed to process on each fd in fdtab array
8503 - MEDIUM: threads/fd: Initialize the process mask during the call to fd_insert
8504 - MINOR: threads/fd: Process cached events of FDs depending on the process mask
8505 - MINOR: threads/polling: pollers now handle FDs depending on the process mask
8506 - WIP: SQUASH WITH SYNC POINT
8507 - MAJOR: threads/task: handle multithread on task scheduler
8508 - MEDIUM: threads/signal: Add a lock to make signals thread-safe
8509 - MEDIUM: threads/listeners: Make listeners thread-safe
8510 - MEDIUM: threads/proxy: Add a lock per proxy and atomically update proxy vars
8511 - MEDIUM: threads/server: Make connection list (priv/idle/safe) thread-safe
8512 - MEDIUM: threads/server: Add a lock per server and atomically update server vars
8513 - MINOR: threads/server: Add a lock to deal with insert in updates_servers list
8514 - MEDIUM: threads/lb: Make LB algorithms (lb_*.c) thread-safe
8515 - MEDIUM: threads/stick-tables: handle multithreads on stick tables
8516 - MINOR: threads/sample: Change temp_smp into a thread local variable
8517 - MEDIUM: threads/http: Make http_capture_bad_message thread-safe
8518 - MINOR: threads/regex: Change Regex trash buffer into a thread local variable
8519 - MAJOR: threads/applet: Handle multithreading for applets
8520 - MAJOR: threads/peers: Make peers thread safe
8521 - MAJOR: threads/buffer: Make buffer wait queue thread safe
8522 - MEDIUM: threads/stream: Make streams list thread safe
8523 - MAJOR: threads/ssl: Make SSL part thread-safe
8524 - MEDIUM: threads/queue: Make queues thread-safe
8525 - MAJOR: threads/map: Make acls/maps thread safe
8526 - MEDIUM: threads/freq_ctr: Make the frequency counters thread-safe
8527 - MEDIUM: thread/vars: Make vars thread-safe
8528 - MEDIUM: threads/filters: Add init/deinit callback per thread
8529 - MINOR: threads/filters: Update trace filter to add _per_thread callbacks
8530 - MEDIUM: threads/compression: Make HTTP compression thread-safe
8531 - MEDIUM: threads/lua: Makes the jmpbuf and some other buffers local to the current thread.
8532 - MEDIUM: threads/lua: Add locks around the Lua execution parts.
8533 - MEDIUM: threads/lua: Ensure that the launched tasks runs on the same threads than me
8534 - MEDIUM: threads/lua: Cannot acces to the socket if we try to access from another thread.
8535 - MEDIUM: threads/xref: Convert xref function to a thread safe model
8536 - MEDIUM: threads/tasks: Add lock around notifications
8537 - MEDIUM: thread/spoe: Make the SPOE thread-safe
8538 - MEDIUM: thread/dns: Make DNS thread-safe
8539 - MINOR: threads: Add thread-map config parameter in the global section
8540 - MINOR: threads/checks: Add a lock to protect the pid list used by external checks
8541 - MINOR: threads/checks: Set the task process_mask when a check is executed
8542 - MINOR: threads/mailers: Add a lock to protect queues of email alerts
8543 - MEDIUM: threads/server: Use the server lock to protect health check and cli concurrency
8544 - MINOR: threads: Don't start when device a detection module is used
8545 - BUG/MEDIUM: threads: Run the poll loop on the main thread too
8546 - BUG/MINOR: threads: Add missing THREAD_LOCAL on static here and there
8547 - MAJOR: threads: Offically enable the threads support in HAProxy
8548 - BUG/MAJOR: threads/freq_ctr: fix lock on freq counters.
8549 - BUG/MAJOR: threads/time: Store the time deviation in an 64-bits integer
8550 - BUILD: stick-tables: silence an uninitialized variable warning
8551 - BUG/MINOR: dns: Fix SRV records with the new thread code.
8552 - MINOR: ssl: Remove the global allow-0rtt option.
8553 - CLEANUP: threads: replace the last few 1UL<<tid with tid_bit
8554 - CLEANUP: threads: rename process_mask to thread_mask
8555 - MINOR: h1: add a function to measure the trailers length
8556 - MINOR: threads: add a portable barrier for threads and non-threads
8557 - BUG/MAJOR: threads/freq_ctr: use a memory barrier to detect changes
8558 - BUG/MEDIUM: threads: Initialize the sync-point
8559 - MEDIUM: connection: start to introduce a mux layer between xprt and data
8560 - MINOR: connection: implement alpn registration of muxes
8561 - MINOR: mux: register the pass-through mux for any ALPN string
8562 - MEDIUM: session: use the ALPN token and proxy mode to select the mux
8563 - MINOR: connection: report the major HTTP version from the MUX for logging (fc_http_major)
8564 - MINOR: connection: introduce conn_stream
8565 - MINOR: mux: add more methods to mux_ops
8566 - MINOR: connection: introduce the conn_stream manipulation functions
8567 - MINOR: mux_pt: implement remaining mux_ops methods
8568 - MAJOR: connection : Split struct connection into struct connection and struct conn_stream.
8569 - MINOR: connection: make conn_stream users also check for per-stream error flag
8570 - MINOR: conn_stream: new shutr/w status flags
8571 - MINOR: conn_stream: modify cs_shut{r,w} API to pass the desired mode
8572 - MEDIUM: connection: make conn_sock_shutw() aware of lingering
8573 - MINOR: connection: add cs_close() to close a conn_stream
8574 - MEDIUM: mux_pt: make cs_shutr() / cs_shutw() properly close the connection
8575 - MEDIUM: connection: replace conn_full_close() with cs_close()
8576 - MEDIUM: connection: make mux->detach() release the connection
8577 - MEDIUM: stream: do not forcefully close the client connection anymore
8578 - MEDIUM: checks: exclusively use cs_destroy() to release a connection
8579 - MEDIUM: connection: add a destroy callback
8580 - MINOR: session: release the listener with the session, not the stream
8581 - MEDIUM: session: make use of the connection's destroy callback
8582 - CONTRIB: hpack: implement a reverse huffman table generator for hpack
8583 - MINOR: hpack: implement the HPACK Huffman table decoder
8584 - MINOR: hpack: implement the header tables management
8585 - MINOR: hpack: implement the decoder
8586 - MEDIUM: hpack: implement basic hpack encoding
8587 - MINOR: h2: centralize all HTTP/2 protocol elements and constants
8588 - MINOR: h2: create a very minimalistic h2 mux
8589 - MINOR: h2: expose tune.h2.header-table-size to configure the table size
8590 - MINOR: h2: expose tune.h2.initial-window-size to configure the window size
8591 - MINOR: h2: expose tune.h2.max-concurrent-streams to limit the number of streams
8592 - MINOR: h2: create the h2c struct and allocate its pool
8593 - MINOR: h2: create the h2s struct and the associated pool
8594 - MINOR: h2: handle two extra stream states for errors
8595 - MINOR: h2: add a frame header descriptor for incoming frames
8596 - MEDIUM: h2: allocate and release the h2c context on connection init/end
8597 - MEDIUM: h2: implement basic recv/send/wake functions
8598 - MEDIUM: h2: dynamically allocate the demux buffer on Rx
8599 - MEDIUM: h2: implement the mux buffer allocator
8600 - MINOR: h2: add the connection and stream flags listing the causes for blocking
8601 - MINOR: h2: add function h2s_id() to report a stream's ID
8602 - MINOR: h2: small function to know when the mux is busy
8603 - MINOR: h2: new function h2c_error to mark an error on the connection
8604 - MINOR: h2: new function h2s_error() to mark an error on a stream
8605 - MINOR: h2: add h2_set_frame_size() to update the size in a binary frame
8606 - MINOR: h2: new function h2_peek_frame_hdr() to retrieve a new frame header
8607 - MINOR: h2: add a few functions to retrieve contents from a wrapping buffer
8608 - MINOR: h2: add stream lookup function based on the stream ID
8609 - MINOR: h2: create dummy idle and closed streams
8610 - MINOR: h2: add the function to create a new stream
8611 - MINOR: h2: update the {MUX,DEM}_{M,D}ALLOC flags on buffer availability
8612 - MEDIUM: h2: start to consider the H2_CF_{MUX,DEM}_* flags for polling
8613 - MINOR: h2: also terminate the connection on shutr
8614 - MEDIUM: h2: properly consider all conditions for end of connection
8615 - MEDIUM: h2: wake the connection up for send on pending streams
8616 - MEDIUM: h2: start to implement the frames processing loop
8617 - MINOR: h2: add a function to send a GOAWAY error frame
8618 - MINOR: h2: match the H2 connection preface on init
8619 - MEDIUM: h2: enable connection polling for send when a cs wants to emit
8620 - MEDIUM: h2: enable reading again on the connection if it was blocked on stream buffer full
8621 - MEDIUM: h2: process streams pending for sending
8622 - MINOR: h2: send a real SETTINGS frame based on the configuration
8623 - MEDIUM: h2: detect the presence of the first settings frame
8624 - MINOR: h2: create a stream parser for the demuxer
8625 - MINOR: h2: implement PING frames
8626 - MEDIUM: h2: decode SETTINGS frames and extract relevant settings
8627 - MINOR: h2: lookup the stream during demuxing
8628 - MEDIUM: h2: honor WINDOW_UPDATE frames
8629 - MINOR: h2: implement h2_send_rst_stream() to send RST_STREAM frames
8630 - MINOR: h2: handle CONTINUATION frames
8631 - MEDIUM: h2: partial implementation of h2_detach()
8632 - MEDIUM: h2: unblock a connection when its current stream detaches
8633 - MEDIUM: h2: basic processing of HEADERS frame
8634 - MEDIUM: h2: don't use trash to decode headers!
8635 - MEDIUM: h2: implement the response HEADERS frame to encode the H1 response
8636 - MEDIUM: h2: send the H1 response body as DATA frames
8637 - MEDIUM: h2: skip the response trailers if any
8638 - MEDIUM: h2: properly continue to parse header block when facing a 1xx response
8639 - MEDIUM: h2: send WINDOW_UPDATE frames for connection
8640 - MEDIUM: h2: handle request body in DATA frames
8641 - MINOR: h2: handle RST_STREAM frames
8642 - MEDIUM: h2: send DATA+ES or RST_STREAM on shutw/shutr
8643 - MINOR: h2: use a common function to signal some and all streams.
8644 - MEDIUM: h2: handle GOAWAY frames
8645 - MINOR: h2: centralize the check for the idle streams
8646 - MINOR: h2: centralize the check for the half-closed(remote) streams
8647 - MEDIUM: h2: silently ignore frames higher than last_id after GOAWAY
8648 - MINOR: h2: properly reject PUSH_PROMISE frames coming from the client
8649 - MEDIUM: h2: perform a graceful shutdown on "Connection: close"
8650 - MEDIUM: h2: send a GOAWAY frame when dealing with an empty response
8651 - MEDIUM: h2: apply a timeout to h2 connections
8652 - BUG/MEDIUM: h2: fix incorrect timeout handling on the connection
8653 - MEDIUM: shctx: forbid shctx to read more than expected
8654 - MEDIUM: cache: configuration parsing and initialization
8655 - MEDIUM: cache: store objects in cache
8656 - MEDIUM: cache: deliver objects from cache
8657
Willy Tarreauf08137c2017-10-22 10:13:45 +020086582017/10/22 : 1.8-dev3
8659 - REORG: ssl: move defines and methodVersions table upper
8660 - MEDIUM: ssl: ctx_set_version/ssl_set_version func for methodVersions table
8661 - MINOR: ssl: support ssl-min-ver and ssl-max-ver with crt-list
8662 - MEDIUM: ssl: disable SSLv3 per default for bind
8663 - BUG/MAJOR: ssl: fix segfault on connection close using async engines.
8664 - BUG/MAJOR: ssl: buffer overflow using offloaded ciphering on async engine
8665 - BUG/MINOR: ssl: do not call directly the conn_fd_handler from async_fd_handler
8666 - BUG/MINOR: haproxy/cli : fix for solaris/illumos distros for CMSG* macros
8667 - BUG/MEDIUM: build without openssl broken
8668 - BUG/MINOR: warning: need_resend may be used uninitialized
8669 - BUG/MEDIUM: misplaced exit and wrong exit code
8670 - BUG/MINOR: Makefile: fix compile error with USE_LUA=1 in ubuntu16.04
8671 - BUILD: scripts: make publish-release support bare repositories
8672 - BUILD: scripts: add an automatic mode for publish-release
8673 - BUILD: scripts: add a "quiet" mode to publish-release
8674 - BUG/MAJOR: http: call manage_client_side_cookies() before erasing the buffer
8675 - BUG/MINOR: buffers: Fix bi/bo_contig_space to handle full buffers
8676 - CONTRIB: plug qdiscs: Plug queuing disciplines mini HOWTO.
8677 - BUG/MINOR: acls: Set the right refflag when patterns are loaded from a map
8678 - BUG/MINOR: ssl: Be sure that SSLv3 connection methods exist for openssl < 1.1.0
8679 - BUG/MINOR: http/filters: Be sure to wait if a filter loops in HTTP_MSG_ENDING
8680 - BUG/MEDIUM: peers: Peers CLOSE_WAIT issue.
8681 - BUG/MAJOR: server: Segfault after parsing server state file.
8682 - BUG/MEDIUM: unix: never unlink a unix socket from the file system
8683 - scripts: create-release pass -n to tail
8684 - SCRIPTS: create-release: enforce GIT_COMMITTER_{NAME|EMAIL} validity
8685 - BUG/MEDIUM: fix segfault when no argument to -x option
8686 - MINOR: warning on multiple -x
8687 - MINOR: mworker: don't copy -x argument anymore in copy_argv()
8688 - BUG/MEDIUM: mworker: don't reuse PIDs passed to the master
8689 - BUG/MINOR: Wrong peer task expiration handling during synchronization processing.
8690 - BUG/MINOR: cfgparse: Check if tune.http.maxhdr is in the range 1..32767
8691 - BUG/MINOR: log: pin the front connection when front ip/ports are logged
8692 - DOC: fix references to the section about the unix socket
8693 - BUG/MINOR: stream: flag TASK_WOKEN_RES not set if task in runqueue
8694 - MAJOR: task: task scheduler rework.
8695 - MINOR: task/stream: tasks related to a stream must be init by the caller.
8696 - MINOR: queue: Change pendconn_get_next_strm into private function
8697 - MINOR: backends: Change get_server_sh/get_server_uh into private function
8698 - MINOR: queue: Change pendconn_from_srv/pendconn_from_px into private functions
8699 - MEDIUM: stream: make stream_new() always set the target and analysers
8700 - MINOR: frontend: initialize HTTP layer after the debugging code
8701 - MINOR: connection: add a .get_alpn() method to xprt_ops
8702 - MINOR: ssl: add a get_alpn() method to ssl_sock
8703 - MINOR: frontend: retrieve the ALPN name when available
8704 - MINOR: frontend: report the connection's ALPN in the debug output
8705 - MINOR: stream: don't set backend's nor response analysers on SF_TUNNEL
8706 - MINOR: connection: send data before receiving
8707 - MAJOR: applet: applet scheduler rework.
8708 - BUG/MAJOR: frontend: don't dereference a null conn on outgoing connections
8709 - BUG/MAJOR: cli: fix custom io_release was crushed by NULL.
8710 - BUG/MAJOR: map: fix segfault during 'show map/acl' on cli.
8711 - BUG/MAJOR: compression: Be sure to release the compression state in all cases
8712 - MINOR: compression: Use a memory pool to allocate compression states
8713 - BUG/MAJOR: applet: fix a freeze if data is immedately forwarded.
8714 - DOC: fix references to the section about time format.
8715 - BUG/MEDIUM: map/acl: fix unwanted flags inheritance.
8716 - BUG/MAJOR: http: fix buffer overflow on loguri buffer.
8717 - MINOR: ssl: compare server certificate names to the SNI on outgoing connections
8718 - BUG/MINOR: stream: Don't forget to remove CF_WAKE_ONCE flag on response channel
8719 - BUG/MINOR: http: Don't reset the transaction if there are still data to send
8720 - BUG/MEDIUM: filters: Be sure to call flt_end_analyze for both channels
8721 - MINOR: peers: Add additional information to stick-table definition messages.
8722 - BUG/MINOR: http: properly handle all 1xx informational responses
8723 - OPTIM: ssl: don't consider a small ssl_read() as an indication of end of buffer
8724 - BUG/MINOR: peers: peer synchronization issue (with several peers sections).
8725 - CLEANUP: hdr_idx: make some function arguments const where possible
8726 - BUG/MINOR: Prevent a use-after-free on error scenario on option "-x".
8727 - BUG/MINOR: lua: In error case, the safe mode is not removed
8728 - BUG/MINOR: lua: executes the function destroying the Lua session in safe mode
8729 - BUG/MAJOR: lua/socket: resources not detroyed when the socket is aborted
8730 - BUG/MEDIUM: lua: bad memory access
8731 - BUG/MINOR: Lua: variable already initialized
8732 - DOC: update CONTRIBUTING regarding optional parts and message format
8733 - DOC: update the list of OpenSSL versions in the README
8734 - BUG/MINOR: http: Set the response error state in http_sync_res_state
8735 - MINOR: http: Reorder/rewrite checks in http_resync_states
8736 - MINOR: http: Switch requests/responses in TUNNEL mode only by checking txn flags
8737 - BUG/MEDIUM: http: Switch HTTP responses in TUNNEL mode when body length is undefined
8738 - MINOR: http: Rely on analyzers mask to end processing in forward_body functions
8739 - BUG/MINOR: http: Fix bug introduced in previous patch in http_resync_states
8740 - BUG/MINOR: contrib/modsecurity: BSD build fix
8741 - BUG/MINOR: contrib/mod_defender: build fix
8742 - BUG/MINOR: ssl: remove haproxy SSLv3 support when ssl lib have no SSLv3
8743 - MINOR: ssl: remove an unecessary SSL_OP_NO_* dependancy
8744 - BUILD: ssl: fix compatibility with openssl without TLSEXT_signature_*
8745 - MINOR: tools: add a portable timegm() alternative
8746 - BUILD: lua: replace timegm() with my_timegm() to fix build on Solaris 10
8747 - DOC: Updated 51Degrees git URL to point to a stable version.
8748 - BUG/MAJOR: http: Fix possible infinity loop in http_sync_(req|res)_state
8749 - MINOR: memory: remove macros
8750 - BUG/MINOR: lua: Fix Server.get_addr() port values
8751 - BUG/MINOR: lua: Correctly use INET6_ADDRSTRLEN in Server.get_addr()
8752 - MINOR: samples: Handle the type SMP_T_METH when we duplicate a sample in smp_dup
8753 - MINOR: samples: Handle the type SMP_T_METH in smp_is_safe and smp_is_rw
8754 - MINOR: samples: Don't allocate memory for SMP_T_METH sample when method is known
8755 - BUG/MINOR: lua: always detach the tcp/http tasks before freeing them
8756 - MINOR: task: always preinitialize the task's timeout in task_init()
8757 - CLEANUP: task: remove all initializations to TICK_ETERNITY after task_new()
8758 - BUG/MAJOR: lua: properly dequeue hlua_applet_wakeup() for new scheduler
8759 - MINOR: lua: Add proxy as member of proxy object.
8760 - DOC: lua: Proxy class doc update
8761 - MINOR: lua: Add lists of frontends and backends
8762 - BUG/MINOR: ssl: Fix check against SNI during server certificate verification
8763 - BUG/MINOR: ssl: make use of the name in SNI before verifyhost
8764 - MINOR: ssl: add a new error codes for wrong server certificates
8765 - BUG/MEDIUM: stream: don't retry SSL connections which fail the SNI name check
8766 - MINOR: ssl: add "no-ca-names" parameter for bind
8767 - BUG/MINOR: lua: Fix bitwise logic for hlua_server_check_* functions.
8768 - DOC: fix alphabetical order of "show commands" in management.txt
8769 - MINOR: listener: add a function to return a listener's state as a string
8770 - MINOR: cli: add a new "show fd" command
8771 - BUG/MEDIUM: ssl: Fix regression about certificates generation
8772 - MINOR: Add server port field to server state file.
8773 - MINOR: ssl: allow to start without certificate if strict-sni is set
8774 - MINOR: dns: Cache previous DNS answers.
8775 - MINOR: obj: Add a new type of object, OBJ_TYPE_SRVRQ.
8776 - Add a few functions to do unaligned access.
8777 - MINOR: dns: Handle SRV records.
8778 - MINOR: check: Fix checks when using SRV records.
8779 - MINOR: doc: Document SRV label usage.
8780 - BUILD/MINOR: cli: shut a minor gcc warning in "show fd"
8781 - BUILD: ssl: replace SSL_CTX_get0_privatekey for openssl < 1.0.2
8782 - BUILD/MINOR: build without openssl still broken
8783 - BUG/MAJOR: stream: in stream_free(), close the front endpoint and not the origin
8784 - CLEANUP: raw_sock: Use a better name for the constructor than __ssl_sock_deinit()
8785 - MINOR: init: Fix CPU affinity setting on FreeBSD.
8786 - MINOR: dns: Update analysis of TRUNCATED response for SRV records
8787 - MINOR: dns: update record dname matching for SRV query types
8788 - MINOR: dns: update dns response buffer reading pointer due to SRV record
8789 - MINOR: dns: duplicate entries in resolution wait queue for SRV records
8790 - MINOR: dns: make debugging function dump_dns_config() compatible with SRV records
8791 - MINOR: dns: ability to use a SRV resolution for multiple backends
8792 - MINOR: dns: enable caching of responses for server set by a SRV record
8793 - MINOR: dns: new dns record type (RTYPE) for OPT
8794 - MINOR: dns: enabled edns0 extension and make accpeted payload size tunable
8795 - MINOR: dns: default "hold obsolete" timeout set to 0
8796 - MINOR: chunks: add chunk_memcpy() and chunk_memcat()
8797 - MINOR: session: add a streams field to the session struct
8798 - MINOR: stream: link the stream to its session
8799 - MEDIUM: session: do not free a session until no stream references it
8800 - MINOR: ist: implement very simple indirect strings
8801 - TESTS: ist: add a test file for the functions
8802 - MINOR: http: export some of the HTTP parser macros
8803 - BUG/MINOR: Wrong type used as argument for spoe_decode_buffer().
8804 - BUG/MINOR: dns: server set by SRV records stay in "no resolution" status
8805 - MINOR: dns: Maximum DNS udp payload set to 8192
8806 - MINOR: dns: automatic reduction of DNS accpeted payload size
8807 - MINOR: dns: make SRV record processing more verbose
8808 - CLEANUP: dns: remove duplicated code in dns_resolve_recv()
8809 - CLEANUP: dns: remove duplicated code in dns_validate_dns_response()
8810 - BUG/MINOR: dns: wrong resolution interval lead to 100% CPU
8811 - BUG/MEDIUM: dns: fix accepted_payload_size parser to avoid integer overflow
8812 - BUG/MAJOR: lua: fix the impact of the scheduler changes again
8813 - BUG/MEDIUM: lua: HTTP services must take care of body-less status codes
8814 - MINOR: lua: properly process the contents of the content-length field
8815 - BUG/MEDIUM: stream: properly set the required HTTP analysers on use-service
8816 - OPTIM: lua: don't use expensive functions to parse headers in the HTTP applet
8817 - OPTIM: lua: don't add "Connection: close" on the response
8818 - REORG/MEDIUM: connection: introduce the notion of connection handle
8819 - BUG/MINOR: stream-int: don't check the CO_FL_CURR_WR_ENA flag
8820 - MEDIUM: connection: get rid of data->init() which was not for data
8821 - MEDIUM: stream: make stream_new() allocate its own task
8822 - CLEANUP: listener: remove the unused handler field
8823 - MEDIUM: session: add a pointer to a struct task in the session
8824 - MINOR: stream: provide a new stream creation function for connections
8825 - MEDIUM: connection: remove useless flag CO_FL_DATA_RD_SH
8826 - CLEANUP: connection: remove the unused conn_sock_shutw_pending()
8827 - MEDIUM: connection: remove useless flag CO_FL_DATA_WR_SH
8828 - DOC: add CLI info on privilege levels
8829 - DOC: Refer to Mozilla TLS info / config generator
8830 - MINOR: ssl: remove duplicate ssl_methods in struct bind_conf
8831 - BUG/MEDIUM: http: Fix a regression bug when a HTTP response is in TUNNEL mode
8832 - DOC: Add note about "* " prefix in CSV stats
8833 - CLEANUP: memory: Remove unused function pool_destroy
8834 - MINOR: listeners: Change listener_full and limit_listener into private functions
8835 - MINOR: listeners: Change enable_listener and disable_listener into private functions
8836 - MINOR: fd: Don't forget to reset fdtab[fd].update when a fd is added/removed
8837 - MINOR: fd: Set owner and iocb field before inserting a new fd in the fdtab
8838 - MINOR: backends: Make get_server_* functions explicitly static
8839 - MINOR: applet: Check applets_active_queue before processing applets queue
8840 - MINOR: chunks: Use dedicated function to init/deinit trash buffers
8841 - MEDIUM: chunks: Realloc trash buffers only after the config is parsed and checked
8842 - MINOR: logs: Use dedicated function to init/deinit log buffers
8843 - MINOR: logs: Realloc log buffers only after the config is parsed and checked
8844 - MINOR: buffers: Move swap_buffer into buffer.c and add deinit_buffer function
8845 - MINOR: stick-tables: Make static_table_key a struct variable instead of a pointer
8846 - MINOR: http: Use a trash chunk to store decoded string of the HTTP auth header
8847 - MINOR: fd: Add fd_active function
8848 - MINOR: fd: Use inlined functions to check fd state in fd_*_send/recv functions
8849 - MINOR: fd: Move (de)allocation of fdtab and fdinfo in (de)init_pollers
8850 - MINOR: freq_ctr: Return the new value after an update
8851 - MEDIUM: check: server states and weight propagation re-work
8852 - BUG/MEDIUM: epoll: ensure we always consider HUP and ERR
8853 - MINOR: fd: Add fd_update_events function
8854 - MINOR: polling: Use fd_update_events to update events seen for a fd
8855 - BUG/MINOR: server: Remove FQDN requirement for using init-addr and state file
8856 - Revert "BUG/MINOR: server: Remove FQDN requirement for using init-addr and state file"
8857 - MINOR: ssl: rework smp_fetch_ssl_fc_cl_str without internal ssl use
8858 - BUG/MEDIUM: http: Close streams for connections closed before a redirect
8859 - BUG/MINOR: Lua: The socket may be destroyed when we try to access.
8860 - MINOR: xref: Add a new xref system
8861 - MEDIUM: xref/lua: Use xref for referencing cosocket relation between stream and lua
8862 - MINOR: tasks: Move Lua notification from Lua to tasks
8863 - MINOR: net_helper: Inline functions meant to be inlined.
8864 - MINOR: cli: add socket commands and config to prepend informational messages with severity
8865 - MINOR: add severity information to cli feedback messages
8866 - BUILD: Makefile: add a function to detect support by the compiler of certain options
8867 - BUILD: Makefile: shut certain gcc/clang stupid warnings
8868 - BUILD: Makefile: improve detection of support for compiler warnings
8869 - MINOR: peers: don't reference the incoming listener on outgoing connections
8870 - MINOR: frontend: don't retrieve ALPN on the critical path
8871 - MINOR: protocols: always pass a "port" argument to the listener creation
8872 - MINOR: protocols: register the ->add function and stop calling them directly
8873 - MINOR: unix: remove the now unused proto_uxst.h file
8874 - MINOR: listeners: new function create_listeners
8875 - MINOR: listeners: make listeners count consistent with reality
8876 - MEDIUM: session: take care of incrementing/decrementing jobs
8877 - MINOR: listener: new function listener_release
8878 - MINOR: session: small cleanup of conn_complete_session()
8879 - MEDIUM: session: factor out duplicated code for conn_complete_session
8880 - MEDIUM: session: count the frontend's connections at a single place
8881 - BUG/MEDIUM: compression: Fix check on txn in smp_fetch_res_comp_algo
8882 - BUG/MINOR: compression: Check response headers before http-response rules eval
8883 - BUG/MINOR: spoe: Don't rely on SPOE ctx in debug message when its creation failed
8884 - BUG/MINOR: dns: Fix check on nameserver in snr_resolution_cb
8885 - MINOR: ssl: Remove useless checks on bind_conf or bind_conf->is_ssl
8886 - BUG/MINOR: contrib/mod_defender: close the va_list argp before return
8887 - BUG/MINOR: contrib/modsecurity: close the va_list ap before return
8888 - MINOR: tools: make my_htonll() more efficient on x86_64
8889 - MINOR: buffer: add b_del() to delete a number of characters
8890 - MINOR: buffer: add b_end() and b_to_end()
8891 - MINOR: net_helper: add functions to read from vectors
8892 - MINOR: net_helper: add write functions
8893 - MINOR: net_helper: add 64-bit read/write functions
8894 - MINOR: connection: adjust CO_FL_NOTIFY_DATA after removal of flags
8895 - MINOR: ist: add a macro to ease const array initialization
8896 - BUG/MEDIUM: server: unwanted behavior leaving maintenance mode on tracked stopping server
8897 - BUG/MEDIUM: server: unwanted behavior leaving maintenance mode on tracked stopping server (take2)
8898 - BUG/MINOR: log: fixing small memory leak in error code path.
8899 - BUG/MINOR: contrib/halog: fixing small memory leak
8900 - BUG/MEDIUM: tcp/http: set-dst-port action broken
8901 - CLEANUUP: checks: don't set conn->handle.fd to -1
8902 - BUG/MEDIUM: tcp-check: properly indicate polling state before performing I/O
8903 - BUG/MINOR: tcp-check: don't quit with pending data in the send buffer
8904 - BUG/MEDIUM: tcp-check: don't call tcpcheck_main() from the I/O handlers!
8905 - BUG/MINOR: unix: properly check for octal digits in the "mode" argument
8906 - MINOR: checks: make chk_report_conn_err() take a check, not a connection
8907 - CLEANUP: checks: remove misleading comments and statuses for external process
8908 - CLEANUP: checks: don't report report the fork() error twice
8909 - CLEANUP: checks: do not allocate a connection for process checks
8910 - TESTS: checks: add a simple test config for external checks
8911 - BUG/MINOR: tcp-check: don't initialize then break a connection starting with a comment
8912 - TESTS: checks: add a simple test config for tcp-checks
8913 - MINOR: tcp-check: make tcpcheck_main() take a check, not a connection
8914 - MINOR: checks: don't create then kill a dummy connection before tcp-checks
8915 - MEDIUM: checks: make tcpcheck_main() indicate if it recycled a connection
8916 - MEDIUM: checks: do not allocate a permanent connection anymore
8917 - BUG/MEDIUM: cli: fix "show fd" crash when dumping closed FDs
8918 - BUG/MEDIUM: http: Return an error when url_dec sample converter failed
8919 - BUG/MAJOR: stream-int: don't re-arm recv if send fails
8920 - BUILD/MINOR: 51d: fix warning when building with 51Degrees release version 3.2.12.12
8921 - DOC: 51d: add 51Degrees git URL that points to release version 3.2.12.12
8922 - DOC: 51d: Updated git URL and instructions for getting Hash Trie data files.
8923 - MINOR: compiler: restore the likely() wrapper for gcc 5.x
8924 - MINOR: session: remove the list of streams from struct session
8925 - DOC: fix some typos
8926 - MINOR: server: add the srv_queue() sample fetch method
8927 - MINOR: payload: add new sample fetch functions to process distcc protocol
8928 - MAJOR: servers: propagate server status changes asynchronously.
8929 - BUG/MEDIUM: ssl: fix OCSP expiry calculation
8930 - BUG/MINOR: stream-int: don't set MSG_MORE on SHUTW_NOW without AUTO_CLOSE
8931 - MINOR: server: Handle weight increase in consistent hash.
8932 - MINOR: checks: Add a new keyword to specify a SNI when doing SSL checks.
8933 - BUG/MINOR: tools: fix my_htonll() on x86_64
8934 - BUG/MINOR: stats: Clear a bit more counters with in cli_parse_clear_counters().
8935 - BUG/MAJOR: lua: scheduled task is freezing.
8936 - MINOR: buffer: add bo_del() to delete a number of characters from output
8937 - MINOR: buffer: add a function to match against string patterns
8938 - MINOR: buffer: add two functions to inject data into buffers
8939 - MINOR: buffer: add buffer_space_wraps()
8940 - REORG: channel: finally rename the last bi_* / bo_* functions
8941 - MINOR: buffer: add bo_getblk() and bo_getblk_nc()
8942 - MINOR: channel: make use of bo_getblk{,_nc} for their channel equivalents
8943 - MINOR: channel: make the channel be a const in all {ci,co}_get* functions
8944 - MINOR: ist: add ist0() to add a trailing zero to a string.
8945 - BUG/MEDIUM: log: check result details truncated.
8946 - MINOR: buffer: make bo_getblk_nc() not return 2 for a full buffer
8947 - REORG: http: move some very http1-specific parts to h1.{c,h}
8948 - REORG: http: move the HTTP/1 chunk parser to h1.{c,h}
8949 - REORG: http: move the HTTP/1 header block parser to h1.c
8950 - MEDIUM: http: make the chunk size parser only depend on the buffer
8951 - MEDIUM: http: make the chunk crlf parser only depend on the buffer
8952 - MINOR: h1: add struct h1m for basic HTTP/1 messages
8953 - MINOR: http: add very simple header management based on double strings
8954 - MEDIUM: h1: reimplement the http/1 response parser for the gateway
8955 - REORG: connection: rename CO_FL_DATA_* -> CO_FL_XPRT_*
8956 - MEDIUM: connection: make conn_sock_shutw() aware of lingering
8957 - MINOR: connection: ensure conn_ctrl_close() also resets the fd
8958 - MINOR: connection: add conn_stop_tracking() to disable tracking
8959 - MINOR: tcp: use conn_full_close() instead of conn_force_close()
8960 - MINOR: unix: use conn_full_close() instead of conn_force_close()
8961 - MINOR: checks: use conn_full_close() instead of conn_force_close()
8962 - MINOR: session: use conn_full_close() instead of conn_force_close()
8963 - MINOR: stream: use conn_full_close() instead of conn_force_close()
8964 - MINOR: stream: use conn_full_close() instead of conn_force_close()
8965 - MINOR: backend: use conn_full_close() instead of conn_force_close()
8966 - MINOR: stream-int: use conn_full_close() instead of conn_force_close()
8967 - MINOR: connection: remove conn_force_close()
8968 - BUG/MINOR: ssl: ocsp response with 'revoked' status is correct
8969
Willy Tarreauf57a29a2017-06-02 15:59:51 +020089702017/06/02 : 1.8-dev2
8971 - CLEANUP: server: moving netinet/tcp.h inclusion
8972 - DOC: changed "block"(deprecated) examples to http-request deny
8973 - DOC: add few comments to examples.
8974 - DOC: update sample code for PROXY protocol
8975 - DOC: mention lighttpd 1.4.46 implements PROXY
8976 - MINOR server: Restrict dynamic cookie check to the same proxy.
8977 - DOC: stick-table is available in frontend sections
8978 - BUG/MINOR: server : no transparent proxy for DragonflyBSD
8979 - BUILD/MINOR: stats: remove unexpected argument to stats_dump_json_header()
8980 - BUILD/MINOR: tools: fix build warning in debug_hexdump()
8981 - BUG/MINOR: dns: Wrong address family used when creating IPv6 sockets.
8982 - BUG/MINOR: config: missing goto out after parsing an incorrect ACL character
8983 - BUG/MINOR: arg: don't try to add an argument on failed memory allocation
8984 - MEDIUM: server: Inherit CLI weight changes and agent-check weight responses
8985 - BUG/MEDIUM: arg: ensure that we properly unlink unresolved arguments on error
8986 - BUG/MEDIUM: acl: don't free unresolved args in prune_acl_expr()
8987 - BUG/MEDIUM: servers: unbreak server weight propagation
8988 - MINOR: lua: ensure the memory allocator is used all the time
8989 - MINOR: cli: Add a command to send listening sockets.
8990 - MINOR: global: Add an option to get the old listening sockets.
8991 - MINOR: tcp: When binding socket, attempt to reuse one from the old proc.
8992 - MINOR: doc: document the -x flag
8993 - MINOR: proxy: Don't close FDs if not our proxy.
8994 - MINOR: socket transfer: Set a timeout on the socket.
8995 - MINOR: systemd wrapper: add support for passing the -x option.
8996 - BUG/MINOR: server: Fix a wrong error message during 'usesrc' keyword parsing.
8997 - BUG/MAJOR: Broken parsing for valid keywords provided after 'source' setting.
8998 - CLEANUP: logs: typo: simgle => single
8999 - BUG/MEDIUM: acl: proprely release unused args in prune_acl_expr()
9000 - MEDIUM: config: don't check config validity when there are fatal errors
9001 - BUG/MAJOR: Use -fwrapv.
9002 - BUG/MINOR: server: don't use "proxy" when px is really meant.
9003 - BUG/MEDIUM: http: Drop the connection establishment when a redirect is performed
9004 - BUG/MINOR: server: missing default server 'resolvers' setting duplication.
9005 - MINOR: server: Extract the code responsible of copying default-server settings.
9006 - MINOR: server: Extract the code which finalizes server initializations after 'server' lines parsing.
9007 - MINOR: server: Add 'server-template' new keyword supported in backend sections.
9008 - MINOR: server: Add server_template_init() function to initialize servers from a templates.
9009 - DOC: Add documentation for new "server-template" keyword.
9010 - DOC: add layer 4 links/cross reference to "block" keyword.
9011 - DOC: errloc/errorloc302/errorloc303 missing status codes.
9012 - BUG/MEDIUM: lua: memory leak
9013 - CLEANUP: lua: remove test
9014 - BUG/MINOR: hash-balance-factor isn't effective in certain circumstances
9015 - BUG/MINOR: change header-declared function to static inline
9016 - REORG: spoe: move spoe_encode_varint / spoe_decode_varint from spoe to common
9017 - MINOR: Add binary encoding request header sample fetch
9018 - MINOR: proto-http: Add sample fetch wich returns all HTTP headers
9019 - MINOR: Add ModSecurity wrapper as contrib
9020 - BUG/MINOR: ssl: fix warnings about methods for opensslv1.1.
9021 - DOC: update RFC references
9022 - CONTRIB: tcploop: add action "X" to execute a command
9023 - MINOR: server: cli: Add server FQDNs to server-state file and stats socket.
9024 - BUG/MINOR: contrib/mod_security: fix build on FreeBSD
9025 - BUG/MINOR: checks: don't send proxy protocol with agent checks
9026 - MINOR: ssl: add prefer-client-ciphers
9027 - MEDIUM: ssl: revert ssl/tls version settings relative to default-server.
9028 - MEDIUM: ssl: ssl_methods implementation is reworked and factored for min/max tlsxx
9029 - MEDIUM: ssl: calculate the real min/max TLS version and find holes
9030 - MINOR: ssl: support TLSv1.3 for bind and server
9031 - MINOR: ssl: show methods supported by openssl
9032 - MEDIUM: ssl: add ssl-min-ver and ssl-max-ver parameters for bind and server
9033 - MEDIUM: ssl: ssl-min-ver and ssl-max-ver compatibility.
9034 - CLEANUP: retire obsoleted USE_GETSOCKNAME build option
9035 - BUG/MAJOR: dns: Broken kqueue events handling (BSD systems).
9036 - MINOR: sample: Add b64dec sample converter
9037 - BUG/MEDIUM: lua: segfault if a converter or a sample doesn't return anything
9038 - MINOR: cli: add ACCESS_LVL_MASK to store the access level
9039 - MINOR: cli: add 'expose-fd listeners' to pass listeners FDs
9040 - MEDIUM: proxy: zombify proxies only when the expose-fd socket is bound
9041 - MEDIUM: ssl: add basic support for OpenSSL crypto engine
9042 - MAJOR: ssl: add openssl async mode support
9043 - MEDIUM: ssl: handle multiple async engines
9044 - MINOR: boringssl: basic support for OCSP Stapling
9045 - MEDIUM: mworker: replace systemd mode by master worker mode
9046 - MEDIUM: mworker: handle reload and signals
9047 - MEDIUM: mworker: wait mode on reload failure
9048 - MEDIUM: mworker: try to guess the next stats socket to use with -x
9049 - MEDIUM: mworker: exit-on-failure option
9050 - MEDIUM: mworker: workers exit when the master leaves
9051 - DOC: add documentation for the master-worker mode
9052 - MEDIUM: systemd: Type=forking in unit file
9053 - MAJOR: systemd-wrapper: get rid of the wrapper
9054 - MINOR: log: Add logurilen tunable.
9055 - CLEANUP: server.c: missing prototype of srv_free_dns_resolution
9056 - MINOR: dns: smallest DNS fqdn size
9057 - MINOR: dns: functions to manage memory for a DNS resolution structure
9058 - MINOR: dns: parse_server() now uses srv_alloc_dns_resolution()
9059 - REORG: dns: dns_option structure, storage of hostname_dn
9060 - MINOR: dns: new snr_check_ip_callback function
9061 - MAJOR: dns: save a copy of the DNS response in struct resolution
9062 - MINOR: dns: implement a LRU cache for DNS resolutions
9063 - MINOR: dns: make 'ancount' field to match the number of saved records
9064 - MINOR: dns: introduce roundrobin into the internal cache (WIP)
9065 - MAJOR/REORG: dns: DNS resolution task and requester queues
9066 - BUILD: ssl: fix build with OPENSSL_NO_ENGINE
9067 - MINOR: Add Mod Defender integration as contrib
9068 - CLEANUP: str2mask return code comment: non-zero -> zero.
9069 - MINOR: tools: make debug_hexdump() use a const char for the string
9070 - MINOR: tools: make debug_hexdump() take a string prefix
9071 - CLEANUP: connection: remove unused CO_FL_WAIT_DATA
9072
Willy Tarreau7b677262017-04-03 09:27:49 +020090732017/04/03 : 1.8-dev1
9074 - BUG/MEDIUM: proxy: return "none" and "unknown" for unknown LB algos
9075 - BUG/MINOR: stats: make field_str() return an empty string on NULL
9076 - DOC: Spelling fixes
9077 - BUG/MEDIUM: http: Fix tunnel mode when the CONNECT method is used
9078 - BUG/MINOR: http: Keep the same behavior between 1.6 and 1.7 for tunneled txn
9079 - BUG/MINOR: filters: Protect args in macros HAS_DATA_FILTERS and IS_DATA_FILTER
9080 - BUG/MINOR: filters: Invert evaluation order of HTTP_XFER_BODY and XFER_DATA analyzers
9081 - BUG/MINOR: http: Call XFER_DATA analyzer when HTTP txn is switched in tunnel mode
9082 - BUG/MAJOR: stream: fix session abort on resource shortage
9083 - OPTIM: stream-int: don't disable polling anymore on DONT_READ
9084 - BUG/MINOR: cli: allow the backslash to be escaped on the CLI
9085 - BUG/MEDIUM: cli: fix "show stat resolvers" and "show tls-keys"
9086 - DOC: Fix map table's format
9087 - DOC: Added 51Degrees conv and fetch functions to documentation.
9088 - BUG/MINOR: http: don't send an extra CRLF after a Set-Cookie in a redirect
9089 - DOC: mention that req_tot is for both frontends and backends
9090 - BUG/MEDIUM: variables: some variable name can hide another ones
9091 - MINOR: lua: Allow argument for actions
9092 - BUILD: rearrange target files by build time
9093 - CLEANUP: hlua: just indent functions
9094 - MINOR: lua: give HAProxy variable access to the applets
9095 - BUG/MINOR: stats: fix be/sessions/max output in html stats
9096 - MINOR: proxy: Add fe_name/be_name fetchers next to existing fe_id/be_id
9097 - DOC: lua: Documentation about some entry missing
9098 - DOC: lua: Add documentation about variable manipulation from applet
9099 - MINOR: Do not forward the header "Expect: 100-continue" when the option http-buffer-request is set
9100 - DOC: Add undocumented argument of the trace filter
9101 - DOC: Fix some typo in SPOE documentation
9102 - MINOR: cli: Remove useless call to bi_putchk
9103 - BUG/MINOR: cli: be sure to always warn the cli applet when input buffer is full
9104 - MINOR: applet: Count number of (active) applets
9105 - MINOR: task: Rename run_queue and run_queue_cur counters
9106 - BUG/MEDIUM: stream: Save unprocessed events for a stream
9107 - BUG/MAJOR: Fix how the list of entities waiting for a buffer is handled
9108 - BUILD/MEDIUM: Fixing the build using LibreSSL
9109 - BUG/MEDIUM: lua: In some case, the return of sample-fetches is ignored (2)
9110 - SCRIPTS: git-show-backports: fix a harmless typo
9111 - SCRIPTS: git-show-backports: add -H to use the hash of the commit message
9112 - BUG/MINOR: stream-int: automatically release SI_FL_WAIT_DATA on SHUTW_NOW
9113 - CLEANUP: applet/lua: create a dedicated ->fcn entry in hlua_cli context
9114 - CLEANUP: applet/table: add an "action" entry in ->table context
9115 - CLEANUP: applet: remove the now unused appctx->private field
9116 - DOC: lua: documentation about time parser functions
9117 - DOC: lua: improve links
9118 - DOC: lua: section declared twice
9119 - MEDIUM: cli: 'show cli sockets' list the CLI sockets
9120 - BUG/MINOR: cli: "show cli sockets" wouldn't list all processes
9121 - BUG/MINOR: cli: "show cli sockets" would always report process 64
9122 - CLEANUP: lua: rename one of the lua appctx union
9123 - BUG/MINOR: lua/cli: bad error message
9124 - MEDIUM: lua: use memory pool for hlua struct in applets
9125 - MINOR: lua/signals: Remove Lua part from signals.
9126 - DOC: cli: show cli sockets
9127 - MINOR: cli: automatically enable a CLI I/O handler when there's no parser
9128 - CLEANUP: memory: remove the now unused cli_parse_show_pools() function
9129 - CLEANUP: applet: group all CLI contexts together
9130 - CLEANUP: stats: move a misplaced stats context initialization
9131 - MINOR: cli: add two general purpose pointers and integers in the CLI struct
9132 - MINOR: appctx/cli: remove the cli_socket entry from the appctx union
9133 - MINOR: appctx/cli: remove the env entry from the appctx union
9134 - MINOR: appctx/cli: remove the "be" entry from the appctx union
9135 - MINOR: appctx/cli: remove the "dns" entry from the appctx union
9136 - MINOR: appctx/cli: remove the "server_state" entry from the appctx union
9137 - MINOR: appctx/cli: remove the "tlskeys" entry from the appctx union
9138 - CONTRIB: tcploop: add limits.h to fix build issue with some compilers
9139 - MINOR/DOC: lua: just precise one thing
9140 - DOC: fix small typo in fe_id (backend instead of frontend)
9141 - BUG/MINOR: Fix the sending function in Lua's cosocket
9142 - BUG/MINOR: lua: memory leak executing tasks
9143 - BUG/MINOR: lua: bad return code
9144 - BUG/MINOR: lua: memleak when Lua/cli fails
9145 - MEDIUM: lua: remove Lua struct from session, and allocate it with memory pools
9146 - CLEANUP: haproxy: statify unexported functions
9147 - MINOR: haproxy: add a registration for build options
9148 - CLEANUP: wurfl: use the build options list to report it
9149 - CLEANUP: 51d: use the build options list to report it
9150 - CLEANUP: da: use the build options list to report it
9151 - CLEANUP: namespaces: use the build options list to report it
9152 - CLEANUP: tcp: use the build options list to report transparent modes
9153 - CLEANUP: lua: use the build options list to report it
9154 - CLEANUP: regex: use the build options list to report the regex type
9155 - CLEANUP: ssl: use the build options list to report the SSL details
9156 - CLEANUP: compression: use the build options list to report the algos
9157 - CLEANUP: auth: use the build options list to report its support
9158 - MINOR: haproxy: add a registration for post-check functions
9159 - CLEANUP: checks: make use of the post-init registration to start checks
9160 - CLEANUP: filters: use the function registration to initialize all proxies
9161 - CLEANUP: wurfl: make use of the late init registration
9162 - CLEANUP: 51d: make use of the late init registration
9163 - CLEANUP: da: make use of the late init registration code
9164 - MINOR: haproxy: add a registration for post-deinit functions
9165 - CLEANUP: wurfl: register the deinit function via the dedicated list
9166 - CLEANUP: 51d: register the deinitialization function
9167 - CLEANUP: da: register the deinitialization function
9168 - CLEANUP: wurfl: move global settings out of the global section
9169 - CLEANUP: 51d: move global settings out of the global section
9170 - CLEANUP: da: move global settings out of the global section
9171 - MINOR: cfgparse: add two new functions to check arguments count
9172 - MINOR: cfgparse: move parsing of "ca-base" and "crt-base" to ssl_sock
9173 - MEDIUM: cfgparse: move all tune.ssl.* keywords to ssl_sock
9174 - MEDIUM: cfgparse: move maxsslconn parsing to ssl_sock
9175 - MINOR: cfgparse: move parsing of ssl-default-{bind,server}-ciphers to ssl_sock
9176 - MEDIUM: cfgparse: move ssl-dh-param-file parsing to ssl_sock
9177 - MEDIUM: compression: move the zlib-specific stuff from global.h to compression.c
9178 - BUG/MEDIUM: ssl: properly reset the reused_sess during a forced handshake
9179 - BUG/MEDIUM: ssl: avoid double free when releasing bind_confs
9180 - BUG/MINOR: stats: fix be/sessions/current out in typed stats
9181 - MINOR: tcp-rules: check that the listener exists before updating its counters
9182 - MEDIUM: spoe: don't create a dummy listener for outgoing connections
9183 - MINOR: listener: move the transport layer pointer to the bind_conf
9184 - MEDIUM: move listener->frontend to bind_conf->frontend
9185 - MEDIUM: ssl: remote the proxy argument from most functions
9186 - MINOR: connection: add a new prepare_bind_conf() entry to xprt_ops
9187 - MEDIUM: ssl_sock: implement ssl_sock_prepare_bind_conf()
9188 - MINOR: connection: add a new destroy_bind_conf() entry to xprt_ops
9189 - MINOR: ssl_sock: implement ssl_sock_destroy_bind_conf()
9190 - MINOR: server: move the use_ssl field out of the ifdef USE_OPENSSL
9191 - MINOR: connection: add a minimal transport layer registration system
9192 - CLEANUP: connection: remove all direct references to raw_sock and ssl_sock
9193 - CLEANUP: connection: unexport raw_sock and ssl_sock
9194 - MINOR: connection: add new prepare_srv()/destroy_srv() entries to xprt_ops
9195 - MINOR: ssl_sock: implement and use prepare_srv()/destroy_srv()
9196 - CLEANUP: ssl: move tlskeys_finalize_config() to a post_check callback
9197 - CLEANUP: ssl: move most ssl-specific global settings to ssl_sock.c
9198 - BUG/MINOR: backend: nbsrv() should return 0 if backend is disabled
9199 - BUG/MEDIUM: ssl: for a handshake when server-side SNI changes
9200 - BUG/MINOR: systemd: potential zombie processes
9201 - DOC: Add timings events schemas
9202 - BUILD: lua: build failed on FreeBSD.
9203 - MINOR: samples: add xx-hash functions
9204 - MEDIUM: regex: pcre2 support
9205 - BUG/MINOR: option prefer-last-server must be ignored in some case
9206 - MINOR: stats: Support "select all" for backend actions
9207 - BUG/MINOR: sample-fetches/stick-tables: bad type for the sample fetches sc*_get_gpt0
9208 - BUG/MAJOR: channel: Fix the definition order of channel analyzers
9209 - BUG/MINOR: http: report real parser state in error captures
9210 - BUILD: scripts: automatically update the branch in version.h when releasing
9211 - MINOR: tools: add a generic hexdump function for debugging
9212 - BUG/MAJOR: http: fix risk of getting invalid reports of bad requests
9213 - MINOR: http: custom status reason.
9214 - MINOR: connection: add sample fetch "fc_rcvd_proxy"
9215 - BUG/MINOR: config: emit a warning if http-reuse is enabled with incompatible options
9216 - BUG/MINOR: tools: fix off-by-one in port size check
9217 - BUG/MEDIUM: server: consider AF_UNSPEC as a valid address family
9218 - MEDIUM: server: split the address and the port into two different fields
9219 - MINOR: tools: make str2sa_range() return the port in a separate argument
9220 - MINOR: server: take the destination port from the port field, not the addr
9221 - MEDIUM: server: disable protocol validations when the server doesn't resolve
9222 - BUG/MEDIUM: tools: do not force an unresolved address to AF_INET:0.0.0.0
9223 - BUG/MINOR: ssl: EVP_PKEY must be freed after X509_get_pubkey usage
9224 - BUG/MINOR: ssl: assert on SSL_set_shutdown with BoringSSL
9225 - MINOR: Use "500 Internal Server Error" for 500 error/status code message.
9226 - MINOR: proto_http.c 502 error txt typo.
9227 - DOC: add deprecation notice to "block"
9228 - MINOR: compression: fix -vv output without zlib/slz
9229 - BUG/MINOR: Reset errno variable before calling strtol(3)
9230 - MINOR: ssl: don't show prefer-server-ciphers output
9231 - OPTIM/MINOR: config: Optimize fullconn automatic computation loading configuration
9232 - BUG/MINOR: stream: Fix how backend-specific analyzers are set on a stream
9233 - MAJOR: ssl: bind configuration per certificat
9234 - MINOR: ssl: add curve suite for ECDHE negotiation
9235 - MINOR: checks: Add agent-addr config directive
9236 - MINOR: cli: Add possiblity to change agent config via CLI/socket
9237 - MINOR: doc: Add docs for agent-addr configuration variable
9238 - MINOR: doc: Add docs for agent-addr and agent-send CLI commands
9239 - BUILD: ssl: fix to build (again) with boringssl
9240 - BUILD: ssl: fix build on OpenSSL 1.0.0
9241 - BUILD: ssl: silence a warning reported for ERR_remove_state()
9242 - BUILD: ssl: eliminate warning with OpenSSL 1.1.0 regarding RAND_pseudo_bytes()
9243 - BUILD: ssl: kill a build warning introduced by BoringSSL compatibility
9244 - BUG/MEDIUM: tcp: don't poll for write when connect() succeeds
9245 - BUG/MINOR: unix: fix connect's polling in case no data are scheduled
9246 - MINOR: server: extend the flags to 32 bits
9247 - BUG/MINOR: lua: Map.end are not reliable because "end" is a reserved keyword
9248 - MINOR: dns: give ability to dns_init_resolvers() to close a socket when requested
9249 - BUG/MAJOR: dns: restart sockets after fork()
9250 - MINOR: chunks: implement a simple dynamic allocator for trash buffers
9251 - BUG/MEDIUM: http: prevent redirect from overwriting a buffer
9252 - BUG/MEDIUM: filters: Do not truncate HTTP response when body length is undefined
9253 - BUG/MEDIUM: http: Prevent replace-header from overwriting a buffer
9254 - BUG/MINOR: http: Return an error when a replace-header rule failed on the response
9255 - BUG/MINOR: sendmail: The return of vsnprintf is not cleanly tested
9256 - BUG/MAJOR: ssl: fix a regression in ssl_sock_shutw()
9257 - BUG/MAJOR: lua segmentation fault when the request is like 'GET ?arg=val HTTP/1.1'
9258 - BUG/MEDIUM: config: reject anything but "if" or "unless" after a use-backend rule
9259 - MINOR: http: don't close when redirect location doesn't start with "/"
9260 - MEDIUM: boringssl: support native multi-cert selection without bundling
9261 - BUG/MEDIUM: ssl: fix verify/ca-file per certificate
9262 - BUG/MEDIUM: ssl: switchctx should not return SSL_TLSEXT_ERR_ALERT_WARNING
9263 - MINOR: ssl: removes SSL_CTX_set_ssl_version call and cleanup CTX creation.
9264 - BUILD: ssl: fix build with -DOPENSSL_NO_DH
9265 - MEDIUM: ssl: add new sample-fetch which captures the cipherlist
9266 - MEDIUM: ssl: remove ssl-options from crt-list
9267 - BUG/MEDIUM: ssl: in bind line, ssl-options after 'crt' are ignored.
9268 - BUG/MINOR: ssl: fix cipherlist captures with sustainable SSL calls
9269 - MINOR: ssl: improved cipherlist captures
9270 - BUG/MINOR: spoe: Fix soft stop handler using a specific id for spoe filters
9271 - BUG/MINOR: spoe: Fix parsing of arguments in spoe-message section
9272 - MAJOR: spoe: Add support of pipelined and asynchronous exchanges with agents
9273 - MINOR: spoe: Add support for pipelining/async capabilities in the SPOA example
9274 - MINOR: spoe: Remove SPOE details from the appctx structure
9275 - MINOR: spoe: Add status code in error variable instead of hardcoded value
9276 - MINOR: spoe: Send a log message when an error occurred during event processing
9277 - MINOR: spoe: Check the scope of sample fetches used in SPOE messages
9278 - MEDIUM: spoe: Be sure to wakeup the good entity waiting for a buffer
9279 - MINOR: spoe: Use the min of all known max_frame_size to encode messages
9280 - MAJOR: spoe: Add support of payload fragmentation in NOTIFY frames
9281 - MINOR: spoe: Add support for fragmentation capability in the SPOA example
9282 - MAJOR: spoe: refactor the filter to clean up the code
9283 - MINOR: spoe: Handle NOTIFY frames cancellation using ABORT bit in ACK frames
9284 - REORG: spoe: Move struct and enum definitions in dedicated header file
9285 - REORG: spoe: Move low-level encoding/decoding functions in dedicated header file
9286 - MINOR: spoe: Improve implementation of the payload fragmentation
9287 - MINOR: spoe: Add support of negation for options in SPOE configuration file
9288 - MINOR: spoe: Add "pipelining" and "async" options in spoe-agent section
9289 - MINOR: spoe: Rely on alertif_too_many_arg during configuration parsing
9290 - MINOR: spoe: Add "send-frag-payload" option in spoe-agent section
9291 - MINOR: spoe: Add "max-frame-size" statement in spoe-agent section
9292 - DOC: spoe: Update SPOE documentation to reflect recent changes
9293 - MINOR: config: warn when some HTTP rules are used in a TCP proxy
9294 - BUG/MEDIUM: ssl: Clear OpenSSL error stack after trying to parse OCSP file
9295 - BUG/MEDIUM: cli: Prevent double free in CLI ACL lookup
9296 - BUG/MINOR: Fix "get map <map> <value>" CLI command
9297 - MINOR: Add nbsrv sample converter
9298 - CLEANUP: Replace repeated code to count usable servers with be_usable_srv()
9299 - MINOR: Add hostname sample fetch
9300 - CLEANUP: Remove comment that's no longer valid
9301 - MEDIUM: http_error_message: txn->status / http_get_status_idx.
9302 - MINOR: http-request tarpit deny_status.
9303 - CLEANUP: http: make http_server_error() not set the status anymore
9304 - MEDIUM: stats: Add JSON output option to show (info|stat)
9305 - MEDIUM: stats: Add show json schema
9306 - BUG/MAJOR: connection: update CO_FL_CONNECTED before calling the data layer
9307 - MINOR: server: Add dynamic session cookies.
9308 - MINOR: cli: Let configure the dynamic cookies from the cli.
9309 - BUG/MINOR: checks: attempt clean shutw for SSL check
9310 - CONTRIB: tcploop: make it build on FreeBSD
9311 - CONTRIB: tcploop: fix time format to silence build warnings
9312 - CONTRIB: tcploop: report action 'K' (kill) in usage message
9313 - CONTRIB: tcploop: fix connect's address length
9314 - CONTRIB: tcploop: use the trash instead of NULL for recv()
9315 - BUG/MEDIUM: listener: do not try to rebind another process' socket
9316 - BUG/MEDIUM server: Fix crash when dynamic is defined, but not key is provided.
9317 - CLEANUP: config: Typo in comment.
9318 - BUG/MEDIUM: filters: Fix channels synchronization in flt_end_analyze
9319 - TESTS: add a test configuration to stress handshake combinations
9320 - BUG/MAJOR: stream-int: do not depend on connection flags to detect connection
9321 - BUG/MEDIUM: connection: ensure to always report the end of handshakes
9322 - MEDIUM: connection: don't test for CO_FL_WAKE_DATA
9323 - CLEANUP: connection: completely remove CO_FL_WAKE_DATA
9324 - BUG: payload: fix payload not retrieving arbitrary lengths
9325 - BUILD: ssl: simplify SSL_CTX_set_ecdh_auto compatibility
9326 - BUILD: ssl: fix OPENSSL_NO_SSL_TRACE for boringssl and libressl
9327 - BUG/MAJOR: http: fix typo in http_apply_redirect_rule
9328 - MINOR: doc: 2.4. Examples should be 2.5. Examples
9329 - BUG/MEDIUM: stream: fix client-fin/server-fin handling
9330 - MINOR: fd: add a new flag HAP_POLL_F_RDHUP to struct poller
9331 - BUG/MINOR: raw_sock: always perfom the last recv if RDHUP is not available
9332 - OPTIM: poll: enable support for POLLRDHUP
9333 - MINOR: kqueue: exclusively rely on the kqueue returned status
9334 - MEDIUM: kqueue: take care of EV_EOF to improve polling status accuracy
9335 - MEDIUM: kqueue: only set FD_POLL_IN when there are pending data
9336 - DOC/MINOR: Fix typos in proxy protocol doc
9337 - DOC: Protocol doc: add checksum, TLV type ranges
9338 - DOC: Protocol doc: add SSL TLVs, rename CHECKSUM
9339 - DOC: Protocol doc: add noop TLV
9340 - MEDIUM: global: add a 'hard-stop-after' option to cap the soft-stop time
9341 - MINOR: dns: improve DNS response parsing to use as many available records as possible
9342 - BUG/MINOR: cfgparse: loop in tracked servers lists not detected by check_config_validity().
9343 - MINOR: server: irrelevant error message with 'default-server' config file keyword.
9344 - MINOR: server: Make 'default-server' support 'backup' keyword.
9345 - MINOR: server: Make 'default-server' support 'check-send-proxy' keyword.
9346 - CLEANUP: server: code alignement.
9347 - MINOR: server: Make 'default-server' support 'non-stick' keyword.
9348 - MINOR: server: Make 'default-server' support 'send-proxy' and 'send-proxy-v2 keywords.
9349 - MINOR: server: Make 'default-server' support 'check-ssl' keyword.
9350 - MINOR: server: Make 'default-server' support 'force-sslv3' and 'force-tlsv1[0-2]' keywords.
9351 - CLEANUP: server: code alignement.
9352 - MINOR: server: Make 'default-server' support 'no-ssl*' and 'no-tlsv*' keywords.
9353 - MINOR: server: Make 'default-server' support 'ssl' keyword.
9354 - MINOR: server: Make 'default-server' support 'send-proxy-v2-ssl*' keywords.
9355 - CLEANUP: server: code alignement.
9356 - MINOR: server: Make 'default-server' support 'verify' keyword.
9357 - MINOR: server: Make 'default-server' support 'verifyhost' setting.
9358 - MINOR: server: Make 'default-server' support 'check' keyword.
9359 - MINOR: server: Make 'default-server' support 'track' setting.
9360 - MINOR: server: Make 'default-server' support 'ca-file', 'crl-file' and 'crt' settings.
9361 - MINOR: server: Make 'default-server' support 'redir' keyword.
9362 - MINOR: server: Make 'default-server' support 'observe' keyword.
9363 - MINOR: server: Make 'default-server' support 'cookie' keyword.
9364 - MINOR: server: Make 'default-server' support 'ciphers' keyword.
9365 - MINOR: server: Make 'default-server' support 'tcp-ut' keyword.
9366 - MINOR: server: Make 'default-server' support 'namespace' keyword.
9367 - MINOR: server: Make 'default-server' support 'source' keyword.
9368 - MINOR: server: Make 'default-server' support 'sni' keyword.
9369 - MINOR: server: Make 'default-server' support 'addr' keyword.
9370 - MINOR: server: Make 'default-server' support 'disabled' keyword.
9371 - MINOR: server: Add 'no-agent-check' server keyword.
9372 - DOC: server: Add docs for "server" and "default-server" new "no-*" and other settings.
9373 - MINOR: doc: fix use-server example (imap vs mail)
9374 - BUG/MEDIUM: tcp: don't require privileges to bind to device
9375 - BUILD: make the release script use shortlog for the final changelog
9376 - BUILD: scripts: fix typo in announce-release error message
9377 - CLEANUP: time: curr_sec_ms doesn't need to be exported
9378 - BUG/MEDIUM: server: Wrong server default CRT filenames initialization.
9379 - BUG/MEDIUM: peers: fix buffer overflow control in intdecode.
9380 - BUG/MEDIUM: buffers: Fix how input/output data are injected into buffers
9381 - BUG/MINOR: http: Fix conditions to clean up a txn and to handle the next request
9382 - CLEANUP: http: Remove channel_congested function
9383 - CLEANUP: buffers: Remove buffer_bounce_realign function
9384 - CLEANUP: buffers: Remove buffer_contig_area and buffer_work_area functions
9385 - MINOR: http: remove useless check on HTTP_MSGF_XFER_LEN for the request
9386 - MINOR: http: Add debug messages when HTTP body analyzers are called
9387 - BUG/MEDIUM: http: Fix blocked HTTP/1.0 responses when compression is enabled
9388 - BUG/MINOR: filters: Don't force the stream's wakeup when we wait in flt_end_analyze
9389 - DOC: fix parenthesis and add missing "Example" tags
9390 - DOC: update the contributing file
9391 - DOC: log-format/tcplog/httplog update
9392 - MINOR: config parsing: add warning when log-format/tcplog/httplog is overriden in "defaults" sections
9393
Willy Tarreau0e658fb2016-11-25 16:55:50 +010093942016/11/25 : 1.8-dev0
9395
Willy Tarreaue59fcdd2016-11-25 16:39:17 +010093962016/11/25 : 1.7.0
9397 - SCRIPTS: make publish-release also copy the new SPOE doc
9398 - BUILD: http: include types/sample.h in proto_http.h
9399 - BUILD: debug/flags: remove test for SF_COMP_READY
9400 - CONTRIB: debug/flags: add check for SF_ERR_CHK_PORT
9401 - MINOR: lua: add function which return true if the channel is full.
9402 - MINOR: lua: add ip addresses and network manipulation function
9403 - CONTRIB: tcploop: scriptable TCP I/O for debugging purposes
9404 - CONTRIB: tcploop: implement fork()
9405 - CONTRIB: tcploop: implement logging when called with -v
9406 - CONTRIB: tcploop: update the usage output
9407 - CONTRIB: tcploop: support sending plain strings
9408 - CONTRIB: tcploop: don't report failed send() or recv()
9409 - CONTRIB: tcploop: add basic loops via a jump instruction
9410 - BUG/MEDIUM: channel: bad unlikely macro
9411 - CLEANUP: lua: move comment
9412 - CLEANUP: lua: control executed twice
9413 - BUG/MEDIUM: ssl: Store certificate filename in a variable
9414 - BUG/MINOR: ssl: Print correct filename when error occurs reading OCSP
9415 - CLEANUP: ssl: Remove goto after return dead code
9416 - CLEANUP: ssl: Fix bind keywords name in comments
9417 - DOC: ssl: Use correct wording for ca-sign-pass
9418 - CLEANUP: lua: avoid directly calling getsockname/getpeername()
9419 - BUG/MINOR: stick-table: handle out-of-memory condition gracefully
9420 - MINOR: cli: add private pointer and release function
9421 - MEDIUM: lua: Add cli handler for Lua
9422 - BUG/MEDIUM: connection: check the control layer before stopping polling
9423 - DEBUG: connection: mark the closed FDs with a value that is easier to detect
9424 - BUG/MEDIUM: stick-table: fix regression caused by recent fix for out-of-memory
9425 - BUG/MINOR: cli: properly decrement ref count on tables during failed dumps
9426 - BUG/MEDIUM: lua: In some case, the return of sample-fetche is ignored
9427 - MINOR: filters: Add check_timeouts callback to handle timers expiration on streams
9428 - MINOR: spoe: Add 'timeout processing' option to limit time to process an event
9429 - MINOR: spoe: Remove useless 'timeout ack' option
9430 - MINOR: spoe: Add 'option continue-on-error' statement in spoe-agent section
9431 - MINOR: spoe: Add "maxconnrate" and "maxerrrate" statements
9432 - MINOR: spoe: Add "option set-on-error" statement
9433 - MINOR: stats: correct documentation of process ID for typed output
9434 - BUILD: contrib: fix ip6range build on Centos 7
9435 - BUILD: fix build on Solaris 10/11
9436 - BUG/MINOR: cli: fix pointer size when reporting data/transport layer name
9437 - BUG/MINOR: cli: dequeue from the proxy when changing a maxconn
9438 - BUG/MINOR: cli: wake up the CLI's task after a timeout update
9439 - MINOR: connection: add a few functions to report the data and xprt layers' names
9440 - MINOR: connection: add names for transport and data layers
9441 - REORG: cli: split dumpstats.c in src/cli.c and src/stats.c
9442 - REORG: cli: split dumpstats.h in stats.h and cli.h
9443 - REORG: cli: move ssl CLI functions to ssl_sock.c
9444 - REORG: cli: move map and acl code to map.c
9445 - REORG: cli: move show stat resolvers to dns.c
9446 - MINOR: cli: create new function cli_has_level() to validate permissions
9447 - MINOR: server: create new function cli_find_server() to find a server
9448 - MINOR: proxy: create new function cli_find_frontend() to find a frontend
9449 - REORG: cli: move 'set server' to server.c
9450 - REORG: cli: move 'show pools' to memory.c
9451 - REORG: cli: move 'show servers' to proxy.c
9452 - REORG: cli: move 'show sess' to stream.c
9453 - REORG: cli: move 'show backend' to proxy.c
9454 - REORG: cli: move get/set weight to server.c
9455 - REORG: cli: move "show stat" to stats.c
9456 - REORG: cli: move "show info" to stats.c
9457 - REORG: cli: move dump_text(), dump_text_line(), and dump_binary() to standard.c
9458 - REORG: cli: move table dump/clear/set to stick_table.c
9459 - REORG: cli: move "show errors" out of cli.c
9460 - REORG: cli: make "show env" also use the generic keyword registration
9461 - REORG: cli: move "set timeout" to its own handler
9462 - REORG: cli: move "clear counters" to stats.c
9463 - REORG: cli: move "set maxconn global" to its own handler
9464 - REORG: cli: move "set maxconn server" to server.c
9465 - REORG: cli: move "set maxconn frontend" to proxy.c
9466 - REORG: cli: move "shutdown sessions server" to stream.c
9467 - REORG: cli: move "shutdown session" to stream.c
9468 - REORG: cli: move "shutdown frontend" to proxy.c
9469 - REORG: cli: move "{enable|disable} frontend" to proxy.c
9470 - REORG: cli: move "{enable|disable} server" to server.c
9471 - REORG: cli: move "{enable|disable} health" to server.c
9472 - REORG: cli: move "{enable|disable} agent" to server.c
9473 - REORG: cli: move the "set rate-limit" functions to their own parser
9474 - CLEANUP: cli: rename STAT_CLI_* to CLI_ST_*
9475 - CLEANUP: cli: simplify the request parser a little bit
9476 - CLEANUP: cli: remove assignments to st0 and st2 in keyword parsers
9477 - BUILD: server: remove a build warning introduced by latest series
9478 - BUG/MINOR: log-format: uncatched memory allocation functions
9479 - CLEANUP: log-format: useless file and line in json converter
9480 - CLEANUP/MINOR: log-format: unexport functions parse_logformat_var_args() and parse_logformat_var()
9481 - CLEANUP: log-format: fix return code of the function parse_logformat_var()
9482 - CLEANUP: log-format: fix return code of function parse_logformat_var_args()
9483 - CLEANUP: log-format: remove unused arguments
9484 - MEDIUM: log-format: strict parsing and enable fail
9485 - MEDIUM: log-format/conf: take into account the parse_logformat_string() return code
9486 - BUILD: ssl: make the SSL layer build again with openssl 0.9.8
9487 - BUILD: vars: remove a build warning on vars.c
9488 - MINOR: lua: add utility function for check boolean argument
9489 - MINOR: lua: Add tokenize function.
9490 - BUG/MINOR: conf: calloc untested
9491 - MINOR: http/conf: store the use_backend configuration file and line for logs
9492 - MEDIUM: log-format: Use standard HAProxy log system to report errors
9493 - CLEANUP: sample: report "converter" instead of "conv method" in error messages
9494 - BUG: spoe: Fix parsing of SPOE actions in ACK frames
9495 - MINOR: cli: make "show stat" support a proxy name
9496 - MINOR: cli: make "show errors" support a proxy name
9497 - MINOR: cli: make "show errors" capable of dumping only request or response
9498 - BUG/MINOR: freq-ctr: make swrate_add() support larger values
9499 - CLEANUP: counters: move from 3 types to 2 types
9500 - CLEANUP: cfgparse: cascade the warnif_misplaced_* rules
9501 - REORG: tcp-rules: move tcp rules processing to their own file
9502 - REORG: stkctr: move all the stick counters processing to stick-tables.c
9503 - DOC: update the roadmap file with the latest changes
9504
Willy Tarreaud5d890b2016-11-09 23:18:17 +010095052016/11/09 : 1.7-dev6
9506 - DOC: fix the entry for hash-balance-factor config option
9507 - DOC: Fix typo in description of `-st` parameter in man page
9508 - CLEANUP: cfgparse: Very minor spelling correction
9509 - MINOR: examples: Update haproxy.spec URLs to haproxy.org
9510 - BUG/MEDIUM: peers: on shutdown, wake up the appctx, not the stream
9511 - BUG/MEDIUM: peers: fix use after free in peer_session_create()
9512 - MINOR: peers: make peer_session_forceshutdown() use the appctx and not the stream
9513 - MINOR: peers: remove the pointer to the stream
9514 - BUG/MEDIUM: systemd-wrapper: return correct exit codes
9515 - DOC: stats: provide state details for show servers state
9516 - MEDIUM: tools: make str2ip2() preserve existing ports
9517 - CLEANUP: tools: make ipcpy() preserve the original port
9518 - OPTIM: http: move all http character classs tables into a single one
9519 - OPTIM: http: improve parsing performance of long header lines
9520 - OPTIM: http: improve parsing performance of long URIs
9521 - OPTIM: http: optimize lookup of comma and quote in header values
9522 - BUG/MEDIUM: srv-state: properly restore the DRAIN state
9523 - BUG/MINOR: srv-state: allow to have both CMAINT and FDRAIN flags
9524 - MINOR: server: do not emit warnings/logs/alerts on server state changes at boot
9525 - BUG/MEDIUM: servers: properly propagate the maintenance states during startup
9526 - MEDIUM: wurfl: add Scientiamobile WURFL device detection module
9527 - DOC: move the device detection modules documentation to their own files
9528 - CLEANUP: wurfl: reduce exposure in the rest of the code
9529 - MEDIUM: ssl: Add support for OpenSSL 1.1.0
9530 - MINOR: stream: make option contstats usable again
9531 - MEDIUM: tools: make str2sa_range() return the FQDN even when not resolving
9532 - MINOR: init: move apply_server_state in haproxy.c before MODE_CHECK
9533 - MAJOR: server: postpone address resolution
9534 - MINOR: new srv_admin flag: SRV_ADMF_RMAINT
9535 - MINOR: server: indicate in the logs when RMAINT is cleared
9536 - MINOR: stats: indicate it when a server is down due to resolution
9537 - MINOR: server: make srv_set_admin_state() capable of telling why this happens
9538 - MINOR: dns: implement extra 'hold' timers.
9539 - MAJOR: dns: runtime resolution can change server admin state
9540 - MEDIUM: cli: leave the RMAINT state when setting an IP address on the CLI
9541 - MEDIUM: server: add a new init-addr server line setting
9542 - MEDIUM: server: make use of init-addr
9543 - MINOR: server: implement init-addr none
9544 - MEDIUM: server: make libc resolution failure non-fatal
9545 - MINOR: server: add support for explicit numeric address in init-addr
9546 - DOC: add some documentation for the "init-addr" server keyword
9547 - MINOR: init: add -dr to ignore server address resolution failures
9548 - MEDIUM: server: do not restrict anymore usage of IP address from the state file
9549 - BUG: vars: Fix 'set-var' converter because of a typo
9550 - CLEANUP: remove last references to 'ruleset' section
9551 - MEDIUM: filters: Add attch/detach and stream_set_backend callbacks
9552 - MINOR: filters: Update filters documentation accordingly to recent changes
9553 - MINOR: filters: Call stream_set_backend callbacks before updating backend stats
9554 - MINOR: filters: Remove backend filters attached to a stream only for HTTP streams
9555 - MINOR: flt_trace: Add hexdump option to dump forwarded data
9556 - MINOR: cfgparse: Add functions to backup and restore registered sections
9557 - MINOR: cfgparse: Parse scope lines and save the last one parsed
9558 - REORG: sample: move code to release a sample expression in sample.c
9559 - MINOR: vars: Allow '.' in variable names
9560 - MINOR: vars: Add vars_set_by_name_ifexist function
9561 - MEDIUM: vars: Add a per-process scope for variables
9562 - MINOR: vars: Add 'unset-var' action/converter
9563 - MAJOR: spoe: Add an experimental Stream Processing Offload Engine
9564 - MINOR: spoe: add random ip-reputation service as SPOA example
9565 - MINOR: spoe/checks: Add support for SPOP health checks
9566 - DOC: update ROADMAP file
9567
Willy Tarreau608efa12016-10-25 22:22:00 +020095682016/10/25 : 1.7-dev5
9569 - MINOR: cfgparse: few memory leaks fixes.
9570 - MEDIUM: log: Decompose %Tq in %Th %Ti %TR
9571 - CLEANUP: logs: remove unused log format field definitions
9572 - BUILD/MAJOR:updated 51d Trie implementation to incorperate latest update to 51Degrees.c
9573 - BUG/MAJOR: stream: properly mark the server address as unset on connect retry
9574 - CLEANUP: proto_http: Removing useless variable assignation
9575 - CLEANUP: dumpstats: Removing useless variables allocation
9576 - CLEANUP: dns: Removing usless variable & assignation
9577 - BUG/MINOR: payload: fix SSLv2 version parser
9578 - MINOR: cli: allow the semi-colon to be escaped on the CLI
9579 - MINOR: cli: change a server health check port through the stats socket
9580 - BUG/MINOR: Fix OSX compilation errors
9581 - MAJOR: check: find out which port to use for health check at run time
9582 - MINOR: server: introduction of 3 new server flags
9583 - MINOR: new update_server_addr_port() function to change both server's ADDR and service PORT
9584 - MINOR: cli: ability to change a server's port
9585 - CLEANUP/MINOR dns: comment do not follow up code update
9586 - MINOR: chunk: new strncat function
9587 - MINOR: dns: wrong DNS_MAX_UDP_MESSAGE value
9588 - MINOR: dns: new MAX values
9589 - MINOR: dns: new macro to compute DNS header size
9590 - MINOR: dns: new DNS structures to store received packets
9591 - MEDIUM: dns: new DNS response parser
9592 - MINOR: dns: query type change when last record is a CNAME
9593 - MINOR: dns: proper domain name validation when receiving DNS response
9594 - MINOR: dns: comments in types/dns.h about structures endianness
9595 - BUG/MINOR: displayed PCRE version is running release
9596 - MINOR: show Built with PCRE version
9597 - MINOR: show Running on zlib version
9598 - MEDIUM: make SO_REUSEPORT configurable
9599 - MINOR: enable IP_BIND_ADDRESS_NO_PORT on backend connections
9600 - BUG/MEDIUM: http/compression: Fix how chunked data are copied during the HTTP body parsing
9601 - BUG/MINOR: stats: report the correct conn_time in backend's html output
9602 - BUG/MEDIUM: dns: don't randomly crash on out-of-memory
9603 - MINOR: Add fe_req_rate sample fetch
9604 - MEDIUM: peers: Fix a peer stick-tables synchronization issue.
9605 - MEDIUM: cli: register CLI keywords with cli_register_kw()
9606 - BUILD: Make use of accept4() on OpenBSD.
9607 - MINOR: tcp: make set-src/set-src-port and set-dst/set-dst-port commutative
9608 - DOC: fix missed entry for "set-{src,dst}{,-port}"
9609 - BUG/MINOR: vars: use sess and not s->sess in action_store()
9610 - BUG/MINOR: vars: make smp_fetch_var() more robust against misuses
9611 - BUG/MINOR: vars: smp_fetch_var() doesn't depend on HTTP but on the session
9612 - MINOR: stats: output dcon
9613 - CLEANUP: tcp rules: mention everywhere that tcp-conn rules are L4
9614 - MINOR: counters: add new fields for denied_sess
9615 - MEDIUM: tcp: add registration and processing of TCP L5 rules
9616 - MINOR: stats: emit dses
9617 - DOC: document tcp-request session
9618 - MINOR: ssl: add debug traces
9619 - BUILD/CLEANUP: ssl: Check BIO_reset() return code
9620 - BUG/MINOR: ssl: Check malloc return code
9621 - BUG/MINOR: ssl: prevent multiple entries for the same certificate
9622 - BUG/MINOR: systemd: make the wrapper return a non-null status code on error
9623 - BUG/MINOR: systemd: always restore signals before execve()
9624 - BUG/MINOR: systemd: check return value of calloc()
9625 - MINOR: systemd: report it when execve() fails
9626 - BUG/MEDIUM: systemd: let the wrapper know that haproxy has completed or failed
9627 - MINOR: proxy: add 'served' field to proxy, equal to total of all servers'
9628 - MINOR: backend: add hash-balance-factor option for hash-type consistent
9629 - MINOR: server: compute a "cumulative weight" to allow chash balancing to hit its target
9630 - MEDIUM: server: Implement bounded-load hash algorithm
9631 - SCRIPTS: make git-show-backports also dump a "git show" command
9632 - MINOR: build: Allow linking to device-atlas library file
9633 - MINOR: stats: Escape equals sign on socket dump
9634
Willy Tarreau41d5e3a2016-08-14 12:25:21 +020096352016/08/14 : 1.7-dev4
9636 - MINOR: add list_append_word function
9637 - MEDIUM: init: use list_append_word in haproxy.c
9638 - MEDIUM: init: allow directory as argument of -f
9639 - CLEANUP: config: detect double registration of a config section
9640 - MINOR: log: add the %Td log-format specifier
9641 - MEDIUM: filters: Move HTTP headers filtering in its own callback
9642 - MINOR: filters: Simplify calls to analyzers using 2 new macros
9643 - MEDIUM: filters: Add pre and post analyzer callbacks
9644 - DOC: filters: Update the filters documentation accordingly to recent changes
9645 - BUG/MEDIUM: init: don't use environment locale
9646 - SCRIPTS: teach git-show-backports how to report upstream commits
9647 - SCRIPTS: make git-show-backports capable of limiting its history
9648 - BUG/MAJOR: fix listening IP address storage for frontends
9649 - BUG/MINOR: fix listening IP address storage for frontends (cont)
9650 - DOC: Fix typo so fetch is properly parsed by Cyril's converter
9651 - BUG/MAJOR: http: fix breakage of "reqdeny" causing random crashes
9652 - BUG/MEDIUM: stick-tables: fix breakage in table converters
9653 - MINOR: stick-table: change all stick-table converters' inputs to SMP_T_ANY
9654 - BUG/MEDIUM: dns: unbreak DNS resolver after header fix
9655 - BUILD: fix build on Solaris 11
9656 - BUG/MEDIUM: config: fix multiple declaration of section parsers
9657 - BUG/MEDIUM: stats: show servers state may show an servers from another backend
9658 - BUG/MEDIUM: fix risk of segfault with "show tls-keys"
9659 - MEDIUM: dumpstats: 'show tls-keys' is now able to show secrets
9660 - DOC: update doc about tls-tickets-keys dump
9661 - MEDIUM: tcp: add 'set-src' to 'tcp-request connection'
9662 - MINOR: set the CO_FL_ADDR_FROM_SET flags with 'set-src'
9663 - MEDIUM: tcp/http: add 'set-src-port' action
9664 - MEDIUM: tcp/http: new set-dst/set-dst-port actions
9665 - BUG/MEDIUM: sticktables: segfault in some configuration error cases
9666 - BUILD/MEDIUM: rebuild everything when an include file is changed
9667 - BUILD/MEDIUM: force a full rebuild if some build options change
9668 - BUG/MEDIUM: lua: converters doesn't work
9669 - BUG/MINOR: http: add-header: header name copied twice
9670 - BUG/MEDIUM: http: add-header: buffer overwritten
9671 - BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()
9672 - MINOR: stream: export the function 'smp_create_src_stkctr'
9673 - BUG/MEDIUM: dumpstats: undefined behavior in stats_tlskeys_list()
9674 - MEDIUM: dumpstats: make stats_tlskeys_list() yield-aware during tls-keys dump
9675 - BUG/MINOR: http: url32+src should use the big endian version of url32
9676 - BUG/MINOR: http: url32+src should check cli_conn before using it
9677 - DOC: http: add documentation for url32 and url32+src
9678 - BUG/MINOR: fix http-response set-log-level parsing error
9679 - MINOR: systemd: Use variable for config and pidfile paths
9680 - MINOR: systemd: Perform sanity check on config before reload
9681 - MEDIUM: ssl: support SNI filters with multicerts
9682 - MINOR: ssl: crt-list parsing factor
9683 - BUILD: ssl: fix typo causing a build failure in the multicert patch
9684 - MINOR: listener: add the "accept-netscaler-cip" option to the "bind" keyword
9685 - MINOR: tcp: add "tcp-request connection expect-netscaler-cip layer4"
9686 - BUG/MINOR: init: always ensure that global.rlimit_nofile matches actual limits
9687 - BUG/MINOR: init: ensure that FD limit is raised to the max allowed
9688 - BUG/MEDIUM: external-checks: close all FDs right after the fork()
9689 - BUG/MAJOR: external-checks: use asynchronous signal delivery
9690 - BUG/MINOR: external-checks: do not unblock undesired signals
9691 - CLEANUP: external-check: don't block/unblock SIGCHLD when manipulating the list
9692 - BUG/MEDIUM: filters: Fix data filtering when data are modified
9693 - BUG/MINOR: filters: Fix HTTP parsing when a filter loops on data forwarding
9694 - BUG/MINOR: srv-state: fix incorrect output of state file
9695 - BUG/MINOR: ssl: close ssl key file on error
9696 - BUG/MINOR: http: fix misleading error message for response captures
9697 - BUG/BUILD: don't automatically run "make" on "make install"
9698 - DOC: add missing doc for http-request deny [deny_status <status>]
9699 - CLEANUP: dumpstats: u64 field is an unsigned type.
9700 - BUG/MEDIUM: http: unbreak uri/header/url_param hashing
9701 - BUG/MINOR: Rework slightly commit 9962f8fc to clean code and avoid mistakes
9702 - MINOR: new function my_realloc2 = realloc + free upon failure
9703 - CLEANUP: fixed some usages of realloc leading to memory leak
9704 - Revert "BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()"
9705 - CLEANUP: connection: using internal struct to hold source and dest port.
9706 - DOC: spelling fixes
9707 - BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()
9708 - BUG/MEDIUM: dns: fix alignment issues in the DNS response parser
9709 - BUG/MINOR: Fix endiness issue in DNS header creation code
9710 - BUG/MEDIUM: lua: the function txn_done() from sample fetches can crash
9711 - BUG/MEDIUM: lua: the function txn_done() from action wrapper can crash
9712 - MEDIUM: http: implement http-response track-sc* directive
9713 - BUG/MINOR: peers: Fix peers data decoding issue
9714 - BUG/MINOR: peers: don't count track-sc multiple times on errors
9715 - MINOR: standard: add function "escape_string"
9716 - BUG/MEDIUM: log: use function "escape_string" instead of "escape_chunk"
9717 - MINOR: tcp: Return TCP statistics like RTT and RTT variance
9718 - DOC: lua: remove old functions
9719 - BUG/MEDIUM: lua: somme HTTP manipulation functions are called without valid requests
9720 - DOC: fix json converter example and error message
9721 - BUG/MEDIUM: stream-int: completely detach connection on connect error
9722 - DOC: minor typo fixes to improve HTML parsing by haproxy-dconv
9723 - BUILD: make proto_tcp.c compatible with musl library
9724 - BUG/MAJOR: compression: initialize avail_in/next_in even during flush
9725 - BUG/MEDIUM: samples: make smp_dup() always duplicate the sample
9726 - MINOR: sample: implement smp_is_safe() and smp_make_safe()
9727 - MINOR: sample: provide smp_is_rw() and smp_make_rw()
9728 - BUG/MAJOR: server: the "sni" directive could randomly cause trouble
9729 - BUG/MEDIUM: stick-tables: do not fail on string keys with no allocated size
9730 - BUG/MEDIUM: stick-table: properly convert binary samples to keys
9731 - MINOR: sample: use smp_make_rw() in upper/lower converters
9732 - MINOR: tcp: add dst_is_local and src_is_local
9733 - BUG/MINOR: peers: some updates are pushed twice after a resync.
9734 - BUILD: protocol: fix some build errors on OpenBSD
9735 - BUILD: log: iovec requires to include sys/uio.h on OpenBSD
9736 - BUILD: tcp: do not include netinet/ip.h for IP_TTL
9737 - BUILD: connection: fix build breakage on openbsd due to missing in_systm.h
9738 - BUILD: checks: remove the last strcat and eliminate a warning on OpenBSD
9739 - BUILD: tcp: define SOL_TCP when only IPPROTO_TCP exists
9740 - BUILD: compression: remove a warning when no compression lib is used
9741 - BUILD: poll: remove unused hap_fd_isset() which causes a warning with clang
9742 - MINOR: tcp: add further tcp info fetchers
9743 - BUG/MINOR: peers: empty chunks after a resync.
9744 - BUG/MAJOR: stick-counters: possible crash when using sc_trackers with wrong table
9745 - MINOR: standard.c: ipcmp() function to compare 2 IP addresses stored in 2 struct sockaddr_storage
9746 - MINOR: standard.c: ipcpy() function to copy an IP address from a struct sockaddr_storage into an other one
9747 - MAJOR: listen section: don't use first bind port anymore when no server ports are provided
9748
Willy Tarreau7d1b48f2016-05-10 15:36:58 +020097492016/05/10 : 1.7-dev3
9750 - MINOR: sample: Moves ARGS underlying type from 32 to 64 bits.
9751 - BUG/MINOR: log: Don't use strftime() which can clobber timezone if chrooted
9752 - BUILD: namespaces: fix a potential build warning in namespaces.c
9753 - MINOR: da: Using ARG12 macro for the sample fetch and the convertor.
9754 - DOC: add encoding to json converter example
9755 - BUG/MINOR: conf: "listener id" expects integer, but its not checked
9756 - DOC: Clarify tunes.vars.xxx-max-size settings
9757 - CLEANUP: chunk: adding NULL check to chunk_dup allocation.
9758 - CLEANUP: connection: fix double negation on memcmp()
9759 - BUG/MEDIUM: peers: fix incorrect age in frequency counters
9760 - BUG/MEDIUM: Fix RFC5077 resumption when more than TLS_TICKETS_NO are present
9761 - BUG/MAJOR: Fix crash in http_get_fhdr with exactly MAX_HDR_HISTORY headers
9762 - BUG/MINOR: lua: can't load external libraries
9763 - BUG/MINOR: prevent the dump of uninitialized vars
9764 - CLEANUP: map: it seems that the map were planed to be chained
9765 - MINOR: lua: move class registration facilities
9766 - MINOR: lua: remove some useless checks
9767 - CLEANUP: lua: Remove two same functions
9768 - MINOR: lua: refactor the Lua object registration
9769 - MINOR: lua: precise message when a critical error is catched
9770 - MINOR: lua: post initialization
9771 - MINOR: lua: Add internal function which strip spaces
9772 - MINOR: lua: convert field to lua type
9773 - DOC: "addr" parameter applies to both health and agent checks
9774 - DOC: timeout client: pointers to timeout http-request
9775 - DOC: typo on stick-store response
9776 - DOC: stick-table: amend paragraph blaming the loss of table upon reload
9777 - DOC: typo: ACL subdir match
9778 - DOC: typo: maxconn paragraph is wrong due to a wrong buffer size
9779 - DOC: regsub: parser limitation about the inability to use closing square brackets
9780 - DOC: typo: req.uri is now replaced by capture.req.uri
9781 - DOC: name set-gpt0 mismatch with the expected keyword
9782 - MINOR: http: sample fetch which returns unique-id
9783 - MINOR: dumpstats: extract stats fields enum and names
9784 - MINOR: dumpstats: split stats_dump_info_to_buffer() in two parts
9785 - MINOR: dumpstats: split stats_dump_fe_stats() in two parts
9786 - MINOR: dumpstats: split stats_dump_li_stats() in two parts
9787 - MINOR: dumpstats: split stats_dump_sv_stats() in two parts
9788 - MINOR: dumpstats: split stats_dump_be_stats() in two parts
9789 - MINOR: lua: dump general info
9790 - MINOR: lua: add class proxy
9791 - MINOR: lua: add class server
9792 - MINOR: lua: add class listener
9793 - BUG/MEDIUM: stick-tables: some sample-fetch doesn't work in the connection state.
9794 - MEDIUM: proxy: use dynamic allocation for error dumps
9795 - CLEANUP: remove unneeded casts
9796 - CLEANUP: uniformize last argument of malloc/calloc
9797 - DOC: fix "needed" typo
9798 - BUG/MINOR: dumpstats: fix write to global chunk
9799 - BUG/MINOR: dns: inapropriate way out after a resolution timeout
9800 - BUG/MINOR: dns: trigger a DNS query type change on resolution timeout
9801 - CLEANUP: proto_http: few corrections for gcc warnings.
9802 - BUG/MINOR: DNS: resolution structure change
9803 - BUG/MINOR : allow to log cookie for tarpit and denied request
9804 - BUG/MEDIUM: ssl: rewind the BIO when reading certificates
9805 - OPTIM/MINOR: session: abort if possible before connecting to the backend
9806 - DOC: http: rename the unique-id sample and add the documentation
9807 - BUG/MEDIUM: trace.c: rdtsc() is defined in two files
9808 - BUG/MEDIUM: channel: fix miscalculation of available buffer space (2nd try)
9809 - BUG/MINOR: server: risk of over reading the pref_net array.
9810 - BUG/MINOR: cfgparse: couple of small memory leaks.
9811 - BUG/MEDIUM: sample: initialize the pointer before parse_binary call.
9812 - DOC: fix discrepancy in the example for http-request redirect
9813 - MINOR: acl: Add predefined METH_DELETE, METH_PUT
9814 - CLEANUP: .gitignore cleanup
9815 - DOC: Clarify IPv4 address / mask notation rules
9816 - CLEANUP: fix inconsistency between fd->iocb, proto->accept and accept()
9817 - BUG/MEDIUM: fix maxaccept computation on per-process listeners
9818 - BUG/MINOR: listener: stop unbound listeners on startup
9819 - BUG/MINOR: fix maxaccept computation according to the frontend process range
9820 - TESTS: add blocksig.c to run tests with all signals blocked
9821 - MEDIUM: unblock signals on startup.
9822 - MINOR: filters: Print the list of existing filters during HA startup
9823 - MINOR: filters: Typo in an error message
9824 - MINOR: filters: Filters must define the callbacks struct during config parsing
9825 - DOC: filters: Add filters documentation
9826 - BUG/MEDIUM: channel: don't allow to overwrite the reserve until connected
9827 - BUG/MEDIUM: channel: incorrect polling condition may delay event delivery
9828 - BUG/MEDIUM: channel: fix miscalculation of available buffer space (3rd try)
9829 - BUG/MEDIUM: log: fix risk of segfault when logging HTTP fields in TCP mode
9830 - MINOR: Add ability for agent-check to set server maxconn
9831 - CLEANUP: Use server_parse_maxconn_change_request for maxconn CLI updates
9832 - MINOR: filters: add opaque data
9833 - BUG/MEDIUM: lua: protects the upper boundary of the argument list for converters/fetches.
9834 - MINOR: lua: migrate the argument mask to 64 bits type.
9835 - BUG/MINOR: dumpstats: Fix the "Total bytes saved" counter in backends stats
9836 - BUG/MINOR: log: fix a typo that would cause %HP to log <BADREQ>
9837 - BUG/MEDIUM: http: fix incorrect reporting of server errors
9838 - MINOR: channel: add new function channel_congested()
9839 - BUG/MEDIUM: http: fix risk of CPU spikes with pipelined requests from dead client
9840 - BUG/MAJOR: channel: fix miscalculation of available buffer space (4th try)
9841 - BUG/MEDIUM: stream: ensure the SI_FL_DONT_WAKE flag is properly cleared
9842 - BUG/MEDIUM: channel: fix inconsistent handling of 4GB-1 transfers
9843 - BUG/MEDIUM: stats: show servers state may show an empty or incomplete result
9844 - BUG/MEDIUM: stats: show backend may show an empty or incomplete result
9845 - MINOR: stats: fix typo in help messages
9846 - MINOR: stats: show stat resolvers missing in the help message
9847 - BUG/MINOR: dns: fix DNS header definition
9848 - BUG/MEDIUM: dns: fix alignment issue when building DNS queries
9849 - CLEANUP: don't ignore scripts in .gitignore
9850 - BUILD: add a few release and backport scripts in scripts/
9851
Willy Tarreau8234f6d2016-03-14 00:10:05 +010098522016/03/14 : 1.7-dev2
9853 - DOC: lua: fix lua API
9854 - DOC: mailers: typo in 'hostname' description
9855 - DOC: compression: missing mention of libslz for compression algorithm
9856 - BUILD/MINOR: regex: missing header
9857 - BUG/MINOR: stream: bad return code
9858 - DOC: lua: fix somme errors and add implicit types
9859 - MINOR: lua: add set/get priv for applets
9860 - BUG/MINOR: http: fix several off-by-one errors in the url_param parser
9861 - BUG/MINOR: http: Be sure to process all the data received from a server
9862 - MINOR: filters/http: Use a wrapper function instead of stream_int_retnclose
9863 - BUG/MINOR: chunk: make chunk_dup() always check and set dst->size
9864 - DOC: ssl: fixed some formatting errors in crt tag
9865 - MINOR: chunks: ensure that chunk_strcpy() adds a trailing zero
9866 - MINOR: chunks: add chunk_strcat() and chunk_newstr()
9867 - MINOR: chunk: make chunk_initstr() take a const string
9868 - MEDIUM: tools: add csv_enc_append() to preserve the original chunk
9869 - MINOR: tools: make csv_enc_append() always start at the first byte of the chunk
9870 - MINOR: lru: new function to delete <nb> least recently used keys
9871 - DOC: add Ben Shillito as the maintainer of 51d
9872 - BUG/MINOR: 51d: Ensures a unique domain for each configuration
9873 - BUG/MINOR: 51d: Aligns Pattern cache implementation with HAProxy best practices.
9874 - BUG/MINOR: 51d: Releases workset back to pool.
9875 - BUG/MINOR: 51d: Aligned const pointers to changes in 51Degrees.
9876 - CLEANUP: 51d: Aligned if statements with HAProxy best practices and removed casts from malloc.
9877 - MINOR: rename master process name in -Ds (systemd mode)
9878 - DOC: fix a few spelling mistakes
9879 - DOC: fix "workaround" spelling
9880 - BUG/MINOR: examples: Fixing haproxy.spec to remove references to .cfg files
9881 - MINOR: fix the return type for dns_response_get_query_id() function
9882 - MINOR: server state: missing LF (\n) on error message printed when parsing server state file
9883 - BUG/MEDIUM: dns: no DNS resolution happens if no ports provided to the nameserver
9884 - BUG/MAJOR: servers state: server port is erased when dns resolution is enabled on a server
9885 - BUG/MEDIUM: servers state: server port is used uninitialized
9886 - BUG/MEDIUM: config: Adding validation to stick-table expire value.
9887 - BUG/MEDIUM: sample: http_date() doesn't provide the right day of the week
9888 - BUG/MEDIUM: channel: fix miscalculation of available buffer space.
9889 - MEDIUM: pools: add a new flag to avoid rounding pool size up
9890 - BUG/MEDIUM: buffers: do not round up buffer size during allocation
9891 - BUG/MINOR: stream: don't force retries if the server is DOWN
9892 - BUG/MINOR: counters: make the sc-inc-gpc0 and sc-set-gpt0 touch the table
9893 - MINOR: unix: don't mention free ports on EAGAIN
9894 - BUG/CLEANUP: CLI: report the proper field states in "show sess"
9895 - MINOR: stats: send content-length with the redirect to allow keep-alive
9896 - BUG: stream_interface: Reuse connection even if the output channel is empty
9897 - DOC: remove old tunnel mode assumptions
9898 - BUG/MAJOR: http-reuse: fix risk of orphaned connections
9899 - BUG/MEDIUM: http-reuse: do not share private connections across backends
9900 - BUG/MINOR: ssl: Be sure to use unique serial for regenerated certificates
9901 - BUG/MINOR: stats: fix missing comma in stats on agent drain
9902 - MAJOR: filters: Add filters support
9903 - MINOR: filters: Do not reset stream analyzers if the client is gone
9904 - REORG: filters: Prepare creation of the HTTP compression filter
9905 - MAJOR: filters/http: Rewrite the HTTP compression as a filter
9906 - MEDIUM: filters: Use macros to call filters callbacks to speed-up processing
9907 - MEDIUM: filters: remove http_start_chunk, http_last_chunk and http_chunk_end
9908 - MEDIUM: filters: Replace filter_http_headers callback by an analyzer
9909 - MEDIUM: filters/http: Move body parsing of HTTP messages in dedicated functions
9910 - MINOR: filters: Add stream_filters structure to hide filters info
9911 - MAJOR: filters: Require explicit registration to filter HTTP body and TCP data
9912 - MINOR: filters: Remove unused or useless stuff and do small optimizations
9913 - MEDIUM: filters: Optimize the HTTP compression for chunk encoded response
9914 - MINOR: filters/http: Slightly update the parsing of chunks
9915 - MINOR: filters/http: Forward remaining data when a channel has no "data" filters
9916 - MINOR: filters: Add an filter example
9917 - MINOR: filters: Extract proxy stuff from the struct filter
9918 - MINOR: map: Add regex matching replacement
9919 - BUG/MINOR: lua: unsafe initialization
9920 - DOC: lua: fix somme errors
9921 - MINOR: lua: file dedicated to unsafe functions
9922 - MINOR: lua: add "now" time function
9923 - MINOR: standard: add RFC HTTP date parser
9924 - MINOR: lua: Add date functions
9925 - MINOR: lua: move common function
9926 - MINOR: lua: merge function
9927 - MINOR: lua: Add concat class
9928 - MINOR: standard: add function "escape_chunk"
9929 - MEDIUM: log: add a new log format flag "E"
9930 - DOC: add server name at rate-limit sessions example
9931 - BUG/MEDIUM: ssl: fix off-by-one in ALPN list allocation
9932 - BUG/MEDIUM: ssl: fix off-by-one in NPN list allocation
9933 - DOC: LUA: fix some typos and syntax errors
9934 - MINOR: cli: add a new "show env" command
9935 - MEDIUM: config: allow to manipulate environment variables in the global section
9936 - MEDIUM: cfgparse: reject incorrect 'timeout retry' keyword spelling in resolvers
9937 - MINOR: mailers: increase default timeout to 10 seconds
9938 - MINOR: mailers: use <CRLF> for all line endings
9939 - BUG/MAJOR: lua: segfault using Concat object
9940 - DOC: lua: copyrights
9941 - MINOR: common: mask conversion
9942 - MEDIUM: dns: extract options
9943 - MEDIUM: dns: add a "resolve-net" option which allow to prefer an ip in a network
9944 - MINOR: mailers: make it possible to configure the connection timeout
9945 - BUG/MAJOR: lua: applets can't sleep.
9946 - BUG/MINOR: server: some prototypes are renamed
9947 - BUG/MINOR: lua: Useless copy
9948 - BUG/MEDIUM: stats: stats bind-process doesn't propagate the process mask correctly
9949 - BUG/MINOR: server: fix the format of the warning on address change
9950 - CLEANUP: server: add "const" to some message strings
9951 - MINOR: server: generalize the "updater" source
9952 - BUG/MEDIUM: chunks: always reject negative-length chunks
9953 - BUG/MINOR: systemd: ensure we don't miss signals
9954 - BUG/MINOR: systemd: report the correct signal in debug message output
9955 - BUG/MINOR: systemd: propagate the correct signal to haproxy
9956 - MINOR: systemd: ensure a reload doesn't mask a stop
9957 - BUG/MEDIUM: cfgparse: wrong argument offset after parsing server "sni" keyword
9958 - CLEANUP: stats: Avoid computation with uninitialized bits.
9959 - CLEANUP: pattern: Ignore unknown samples in pat_match_ip().
9960 - CLEANUP: map: Avoid memory leak in out-of-memory condition.
9961 - BUG/MINOR: tcpcheck: fix incorrect list usage resulting in failure to load certain configs
9962 - BUG/MAJOR: samples: check smp->strm before using it
9963 - MINOR: sample: add a new helper to initialize the owner of a sample
9964 - MINOR: sample: always set a new sample's owner before evaluating it
9965 - BUG/MAJOR: vars: always retrieve the stream and session from the sample
9966 - CLEANUP: payload: remove useless and confusing nullity checks for channel buffer
9967 - BUG/MINOR: ssl: fix usage of the various sample fetch functions
9968 - MINOR: stats: create fields types suitable for all CSV output data
9969 - MINOR: stats: add all the "show info" fields in a table
9970 - MEDIUM: stats: fill all the show info elements prior to displaying them
9971 - MINOR: stats: add a function to emit fields into a chunk
9972 - MINOR: stats: add stats_dump_info_fields() to dump one field per line
9973 - MEDIUM: stats: make use of stats_dump_info_fields() for "show info"
9974 - MINOR: stats: add a declaration of all stats fields
9975 - MINOR: stats: don't hard-code the CSV fields list anymore
9976 - MINOR: stats: create stats fields storage and CSV dump function
9977 - MEDIUM: stats: convert stats_dump_fe_stats() to use stats_dump_fields_csv()
9978 - MEDIUM: stats: make stats_dump_fe_stats() use stats fields for HTML dump
9979 - MEDIUM: stats: convert stats_dump_li_stats() to use stats_dump_fields_csv()
9980 - MEDIUM: stats: make stats_dump_li_stats() use stats fields for HTML dump
9981 - MEDIUM: stats: convert stats_dump_be_stats() to use stats_dump_fields_csv()
9982 - MEDIUM: stats: make stats_dump_be_stats() use stats fields for HTML dump
9983 - MEDIUM: stats: convert stats_dump_sv_stats() to use stats_dump_fields_csv()
9984 - MEDIUM: stats: make stats_dump_sv_stats() use the stats field for HTML
9985 - MEDIUM: stats: move the server state coloring logic to the server dump function
9986 - MINOR: stats: do not use srv->admin & STATS_ADMF_MAINT in HTML dumps
9987 - MINOR: stats: do not check srv->state for SRV_ST_STOPPED in HTML dumps
9988 - MINOR: stats: make CSV report server check status only when enabled
9989 - MINOR: stats: only report backend's down time if it has servers
9990 - MINOR: stats: prepend '*' in front of the check status when in progress
9991 - MINOR: stats: make HTML stats dump rely on the table for the check status
9992 - MINOR: stats: add agent_status, agent_code, agent_duration to output
9993 - MINOR: stats: add check_desc and agent_desc to the output fields
9994 - MINOR: stats: add check and agent's health values in the output
9995 - MEDIUM: stats: make the HTML server state dump use the CSV states
9996 - MEDIUM: stats: only report observe errors when observe is set
9997 - MEDIUM: stats: expose the same flags for CLI and HTTP accesses
9998 - MEDIUM: stats: report server's address in the CSV output
9999 - MEDIUM: stats: report the cookie value in the server & backend CSV dumps
10000 - MEDIUM: stats: compute the color code only in the HTML form
10001 - MEDIUM: stats: report the listeners' address in the CSV output
10002 - MEDIUM: stats: make it possible to report the WAITING state for listeners
10003 - REORG: stats: dump the frontend's HTML stats via a generic function
10004 - REORG: stats: dump the socket stats via the generic function
10005 - REORG: stats: dump the server stats via the generic function
10006 - REORG: stats: dump the backend stats via the generic function
10007 - MEDIUM: stats: add a new "mode" column to report the proxy mode
10008 - MINOR: stats: report the load balancing algorithm in CSV output
10009 - MINOR: stats: add 3 fields to report the frontend-specific connection stats
10010 - MINOR: stats: report number of intercepted requests for frontend and backends
10011 - MINOR: stats: introduce stats_dump_one_line() to dump one stats line
10012 - CLEANUP: stats: make stats_dump_fields_html() not rely on proxy anymore
10013 - MINOR: stats: add ST_SHOWADMIN to pass the admin info in the regular flags
10014 - MINOR: stats: make stats_dump_fields_html() not use &trash by default
10015 - MINOR: stats: add functions to emit typed fields into a chunk
10016 - MEDIUM: stats: support "show info typed" on the CLI
10017 - MEDIUM: stats: implement a typed output format for stats
10018 - DOC: document the "show info typed" and "show stat typed" output formats
10019 - MINOR: cfgparse: warn when uid parameter is not a number
10020 - MINOR: cfgparse: warn when gid parameter is not a number
10021 - BUG/MINOR: standard: Avoid free of non-allocated pointer
10022 - BUG/MINOR: pattern: Avoid memory leak on out-of-memory condition
10023 - CLEANUP: http: fix a build warning introduced by a recent fix
10024 - BUG/MINOR: log: GMT offset not updated when entering/leaving DST
10025
Willy Tarreaucb928252015-12-20 23:33:18 +0100100262015/12/20 : 1.7-dev1
10027 - DOC: specify that stats socket doc (section 9.2) is in management
10028 - BUILD: install only relevant and existing documentation
10029 - CLEANUP: don't ignore debian/ directory if present
10030 - BUG/MINOR: dns: parsing error of some DNS response
10031 - BUG/MEDIUM: namespaces: don't fail if no namespace is used
10032 - BUG/MAJOR: ssl: free the generated SSL_CTX if the LRU cache is disabled
10033 - MEDIUM: dns: Don't use the ANY query type
10034 - BUILD: ssl: fix build error introduced in commit 7969a3 with OpenSSL < 1.0.0
10035 - DOC: fix a typo for a "deviceatlas" keyword
10036 - FIX: small typo in an example using the "Referer" header
10037 - MINOR: cli: ability to set per-server maxconn
10038 - DEBUG/MINOR: memory: add a build option to disable memory pools sharing
10039 - DEBUG/MEDIUM: memory: optionally protect free data in pools
10040 - DEBUG/MEDIUM: memory: add optional control pool memory operations
10041 - MEDIUM: memory: add accounting for failed allocations
10042 - BUG/MEDIUM: config: count memory limits on 64 bits, not 32
10043 - BUG/MAJOR: dns: first DNS response packet not matching queried hostname may lead to a loop
10044 - BUG/MINOR: dns: unable to parse CNAMEs response
10045 - BUG/MINOR: examples/haproxy.init: missing brace in quiet_check()
10046 - DOC: deviceatlas: more example use cases.
10047 - MINOR: config: allow IPv6 bracketed literals
10048 - BUG/BUILD: replace haproxy-systemd-wrapper with $(EXTRA) in install-bin.
10049 - BUILD: add Haiku as supported target.
10050 - BUG/MAJOR: http: don't requeue an idle connection that is already queued
10051 - DOC: typo on capture.res.hdr and capture.req.hdr
10052 - BUG/MINOR: dns: check for duplicate nameserver id in a resolvers section was missing
10053 - CLEANUP: use direction names in place of numeric values
10054 - BUG/MEDIUM: lua: sample fetches based on response doesn't work
10055 - MINOR: check: add agent-send server parameter
10056 - BUG/MINOR: http rule: http capture 'id' rule points to a non existing id
10057 - BUG/MINOR: server: check return value of fgets() in apply_server_state()
10058 - BUG/MINOR: acl: don't use record layer in req_ssl_ver
10059 - BUILD: freebsd: double declaration
10060 - BUG/MEDIUM: lua: clean output buffer
10061 - BUILD: check for libressl to be able to build against it
10062 - DOC: lua-api/index.rst small example fixes, spelling correction.
10063 - DOC: lua: architecture and first steps
10064 - DOC: relation between timeout http-request and option http-buffer-request
10065 - BUILD: Make deviceatlas require PCRE
10066 - BUG: http: do not abort keep-alive connections on server timeout
10067 - BUG/MEDIUM: http: switch the request channel to no-delay once done.
10068 - BUG/MINOR: lua: don't force-sslv3 LUA's SSL socket
10069 - BUILD/MINOR: http: proto_http.h needs sample.h
10070 - BUG/MEDIUM: http: don't enable auto-close on the response side
10071 - BUG/MEDIUM: stream: fix half-closed timeout handling
10072 - CLEANUP: compression: don't allocate DEFAULT_MAXZLIBMEM without USE_ZLIB
10073 - BUG/MEDIUM: cli: changing compression rate-limiting must require admin level
10074 - BUG/MEDIUM: sample: urlp can't match an empty value
10075 - BUILD: dumpstats: silencing warning for printf format specifier / time_t
10076 - CLEANUP: proxy: calloc call inverted arguments
10077 - MINOR: da: silent logging by default and displaying DeviceAtlas support if built.
10078 - BUG/MEDIUM: da: stop DeviceAtlas processing in the convertor if there is no input.
10079 - DOC: Edited 51Degrees section of README/
10080 - BUG/MEDIUM: checks: email-alert not working when declared in defaults
10081 - BUG/MINOR: checks: email-alert causes a segfault when an unknown mailers section is configured
10082 - BUG/MINOR: checks: typo in an email-alert error message
10083 - BUG/MINOR: tcpcheck: conf parsing error when no port configured on server and last rule is a CONNECT with no port
10084 - BUG/MINOR: tcpcheck: conf parsing error when no port configured on server and first rule(s) is (are) COMMENT
10085 - BUG/MEDIUM: http: fix http-reuse when frontend and backend differ
10086 - DOC: prefer using http-request/response over reqXXX/rspXXX directives
10087 - CLEANUP: haproxy: using _GNU_SOURCE instead of __USE_GNU macro.
10088 - MINOR: ssl: Added cert_key_and_chain struct
10089 - MEDIUM: ssl: Added support for creating SSL_CTX with multiple certs
10090 - MINOR: ssl: Added multi cert support for crt-list config keyword
10091 - MEDIUM: ssl: Added multi cert support for loading crt directories
10092 - MEDIUM: ssl: Added support for Multi-Cert OCSP Stapling
10093 - BUILD: ssl: set SSL_SOCK_NUM_KEYTYPES with openssl < 1.0.2
10094 - MINOR: config: make tune.recv_enough configurable
10095 - BUG/MEDIUM: config: properly adjust maxconn with nbproc when memmax is forced
10096 - DOC: ssl: Adding docs for Multi-Cert bundling
10097 - BUG/MEDIUM: peers: table entries learned from a remote are pushed to others after a random delay.
10098 - BUG/MEDIUM: peers: old stick table updates could be repushed.
10099 - MINOR: lua: service/applet can have access to the HTTP headers when a POST is received
10100 - REORG/MINOR: lua: convert boolean "int" to bitfield
10101 - BUG/MEDIUM: lua: Lua applets must not fetch samples using http_txn
10102 - BUG/MINOR: lua: Lua applets must not use http_txn
10103 - BUG/MEDIUM: lua: Forbid HTTP applets from being called from tcp rulesets
10104 - BUG/MAJOR: lua: Do not force the HTTP analysers in use-services
10105 - CLEANUP: lua: bad error messages
10106 - CONTRIB: initiate a debugging suite to make debugging easier
10107
Willy Tarreau991b4782015-10-13 21:48:10 +0200101082015/10/13 : 1.7-dev0
10109 - exact copy of 1.6.0
10110
Willy Tarreau844028b2015-10-13 18:52:22 +0200101112015/10/13 : 1.6.0
10112 - BUG/MINOR: Handle interactive mode in cli handler
10113 - DOC: global section missing parameters
10114 - DOC: backend section missing parameters
10115 - DOC: stats paramaters available in frontend
10116 - MINOR: lru: do not allocate useless memory in lru64_lookup
10117 - BUG/MINOR: http: Add OPTIONS in supported http methods (found by find_http_meth)
10118 - BUG/MINOR: ssl: fix management of the cache where forged certificates are stored
10119 - MINOR: ssl: Release Servers SSL context when HAProxy is shut down
10120 - MINOR: ssl: Read the file used to generate certificates in any order
10121 - MINOR: ssl: Add support for EC for the CA used to sign generated certificates
10122 - MINOR: ssl: Add callbacks to set DH/ECDH params for generated certificates
10123 - BUG/MEDIUM: logs: fix time zone offset format in RFC5424
10124 - BUILD: Fix the build on OSX (htonll/ntohll)
10125 - BUILD: enable build on Linux/s390x
10126 - BUG/MEDIUM: lua: direction test failed
10127 - MINOR: lua: fix a spelling error in some error messages
10128 - CLEANUP: cli: ensure we can never double-free error messages
10129 - BUG/MEDIUM: lua: force server-close mode on Lua services
10130 - MEDIUM: init: support more command line arguments after pid list
10131 - MEDIUM: init: support a list of files on the command line
10132 - MINOR: debug: enable memory poisonning to use byte 0
10133 - BUILD: ssl: fix build error introduced by recent commit
10134 - BUG/MINOR: config: make the stats socket pass the correct proxy to the parsers
10135 - MEDIUM: server: implement TCP_USER_TIMEOUT on the server
10136 - DOC: mention the "namespace" options for bind and server lines
10137 - DOC: add the "management" documentation
10138 - DOC: move the stats socket documentation from config to management
10139 - MINOR: examples: update haproxy.spec to mention new docs
10140 - DOC: mention management.txt in README
10141 - DOC: remove haproxy-{en,fr}.txt
10142 - BUILD: properly report when USE_ZLIB and USE_SLZ are used together
10143 - MINOR: init: report use of libslz instead of "no compression"
10144 - CLEANUP: examples: remove some obsolete and confusing files
10145 - CLEANUP: examples: remove obsolete configuration file samples
10146 - CLEANUP: examples: fix the example file content-sw-sample.cfg
10147 - CLEANUP: examples: update sample file option-http_proxy.cfg
10148 - CLEANUP: examples: update sample file ssl.cfg
10149 - CLEANUP: tests: move a test file from examples/ to tests/
10150 - CLEANUP: examples: shut up warnings in transparent proxy example
10151 - CLEANUP: tests: removed completely obsolete test files
10152 - DOC: update ROADMAP to remove what was done in 1.6
10153 - BUG/MEDIUM: pattern: fixup use_after_free in the pat_ref_delete_by_id
10154
Willy Tarreau8c1ad712015-10-06 12:13:56 +0200101552015/10/06 : 1.6-dev7
10156 - MINOR: cli: Dump all resolvers stats if no resolver section is given
10157 - BUG: config: external-check command validation is checking for incorrect arguments.
10158 - DOC: documentation format cleanups
10159 - DOC: lua: few typos.
10160 - BUG/MEDIUM: str2ip: make getaddrinfo() consider local address selection policy
10161 - BUG/MEDIUM: logs: segfault writing to log from Lua
10162 - DOC: fix lua use-service example
10163 - MINOR: payload: add support for tls session ticket ext
10164 - MINOR: lua: remove the run flag
10165 - MEDIUM: lua: change the timeout execution
10166 - MINOR: lua: rename the tune.lua.applet-timeout
10167 - DOC: lua: update Lua doc
10168 - DOC: lua: update doc according with the last Lua changes
10169 - MINOR: http/tcp: fill the avalaible actions
10170 - DOC: reorder misplaced res.ssl_hello_type in the doc
10171 - BUG/MINOR: tcp: make silent-drop always force a TCP reset
10172 - CLEANUP: tcp: silent-drop: only drain the connection when quick-ack is disabled
10173 - BUILD: tcp: use IPPROTO_IP when SOL_IP is not available
10174 - BUILD: server: fix build warnings introduced by load-server-state
10175 - BUG/MEDIUM: server: fix misuse of format string in load-server-state's warnings
10176
Willy Tarreaue7ae6562015-09-28 23:46:27 +0200101772015/09/28 : 1.6-dev6
10178 - BUG/MAJOR: can't enable a server through the stat socket
10179 - MINOR: server: Macro definition for server-state
10180 - MINOR: cli: new stats socket command: show servers state
10181 - DOC: stats socket command: show servers state
10182 - MINOR: config: new global directive server-state-base
10183 - DOC: global directive server-state-base
10184 - MINOR: config: new global section directive: server-state-file
10185 - DOC: new global directive: server-state-file
10186 - MINOR: config: new backend directives: load-server-state-from-file and server-state-file-name
10187 - DOC: load-server-state-from-file
10188 - MINOR: init: server state loaded from file
10189 - MINOR: server: startup slowstart task when using seamless reload of HAProxy
10190 - MINOR: cli: new stats socket command: show backend
10191 - DOC: servers state seamless reload example
10192 - BUG: dns: can't connect UDP socket on FreeBSD
10193 - MINOR: cfgparse: New function cfg_unregister_sections()
10194 - MINOR: chunk: New function free_trash_buffers()
10195 - BUG/MEDIUM: main: Freeing a bunch of static pointers
10196 - MINOR: proto_http: Externalisation of previously internal functions
10197 - MINOR: global: Few new struct fields for da module
10198 - MAJOR: da: Update of the DeviceAtlas API module
10199 - DOC: DeviceAtlas new keywords
10200 - DOC: README: DeviceAtlas sample configuration updates
10201 - MEDIUM: log: replace sendto() with sendmsg() in __send_log()
10202 - MEDIUM: log: use a separate buffer for the header and for the message
10203 - MEDIUM: logs: remove the hostname, tag and pid part from the logheader
10204 - MEDIUM: logs: add support for RFC5424 header format per logger
10205 - MEDIUM: logs: add a new RFC5424 log-format for the structured-data
10206 - DOC: mention support for the RFC5424 syslog message format
10207 - MEDIUM: logs: have global.log_send_hostname not contain the trailing space
10208 - MEDIUM: logs: pass the trailing "\n" as an iovec
10209 - BUG/MEDIUM: peers: some table updates are randomly not pushed.
10210 - BUG/MEDIUM: peers: same table updates re-pushed after a re-connect
10211 - BUG/MINOR: fct peer_prepare_ackmsg should not use trash.
10212 - MINOR: http: made CHECK_HTTP_MESSAGE_FIRST accessible to other functions
10213 - MINOR: global: Added new fields for 51Degrees device detection
10214 - DOC: Added more explanation for 51Degrees V3.2
10215 - BUILD: Changed 51Degrees option to support V3.2
10216 - MAJOR: 51d: Upgraded to support 51Degrees V3.2 and new features
10217 - MINOR: 51d: Improved string handling for LRU cache
10218 - DOC: add references to rise/fall for the fastinter explanation
10219 - MINOR: support cpu-map feature through the compile option USE_CPU_AFFINITY on FreeBSD
10220 - BUG/MAJOR: lua: potential unexpected aborts()
10221 - BUG/MINOR: lua: breaks the log message if his size exceed one buffer
10222 - MINOR: action: add private configuration
10223 - MINOR: action: add reference to the original keywork matched for the called parser.
10224 - MINOR: lua: change actions registration
10225 - MEDIUM: proto_http: smp_prefetch_http initialize txn
10226 - MINOR: channel: rename function chn_sess to chn_strm
10227 - CLEANUP: lua: align defines
10228 - MINOR: http: export http_get_path() function
10229 - MINOR: http: export the get_reason() function
10230 - MINOR: http: export function http_msg_analyzer()
10231 - MINOR: http: split initialization
10232 - MINOR: lua: reset pointer after use
10233 - MINOR: lua: identify userdata objects
10234 - MEDIUM: lua: use the function lua_rawset in place of lua_settable
10235 - BUG/MAJOR: lua: segfault after the channel data is modified by some Lua action.
10236 - CLEANUP: lua: use calloc in place of malloc
10237 - BUG/MEDIUM: lua: longjmp function must be unregistered
10238 - BUG/MEDIUM: lua: forces a garbage collection
10239 - BUG/MEDIUM: lua: wakeup task on bad conditions
10240 - MINOR: standard: avoid DNS resolution from the function str2sa_range()
10241 - MINOR: lua: extend socket address to support non-IP families
10242 - MINOR: lua/applet: the cosocket applet should use appctx_wakeup in place of task_wakeup
10243 - BUG/MEDIUM: lua: socket destroy before reading pending data
10244 - MEDIUM: lua: change the GC policy
10245 - OPTIM/MEDIUM: lua: executes the garbage collector only when using cosocket
10246 - BUG/MEDIUM: lua: don't reset undesired flags in hlua_ctx_resume
10247 - MINOR: applet: add init function
10248 - MINOR: applet: add an execution timeout
10249 - MINOR: stream/applet: add use-service action
10250 - MINOR: lua: add AppletTCP class and service
10251 - MINOR: lua: add AppletHTTP class and service
10252 - DOC: lua: some documentation update
10253 - DOC: add the documentation about internal circular lists
10254 - DOC: add a CONTRIBUTING file
10255 - DOC: add a MAINTAINERS file
10256 - BUG/MAJOR: peers: fix a crash when stopping peers on unbound processes
10257 - DOC: update coding-style to reference checkpatch.pl
10258 - BUG/MEDIUM: stick-tables: fix double-decrement of tracked entries
10259 - BUG/MINOR: args: add name for ARGT_VAR
10260 - DOC: add more entries to MAINTAINERS
10261 - DOC: add more entries to MAINTAINERS
10262 - CLEANUP: stream-int: remove obsolete function si_applet_call()
10263 - BUG/MAJOR: cli: do not dereference strm_li()->proto->name
10264 - BUG/MEDIUM: http: do not dereference strm_li(stream)
10265 - BUG/MEDIUM: proxy: do not dereference strm_li(stream)
10266 - BUG/MEDIUM: stream: do not dereference strm_li(stream)
10267 - MINOR: stream-int: use si_release_endpoint() to close idle conns
10268 - BUG/MEDIUM: payload: make req.payload and payload_lv aware of dynamic buffers
10269 - BUG/MEDIUM: acl: always accept match "found"
10270 - MINOR: applet: rename applet_runq to applet_active_queue
10271 - BUG/MAJOR: applet: use a separate run queue to maintain list integrity
10272 - MEDIUM: stream-int: split stream_int_update_conn() into si- and conn-specific parts
10273 - MINOR: stream-int: implement a new stream_int_update() function
10274 - MEDIUM: stream-int: factor out the stream update functions
10275 - MEDIUM: stream-int: call stream_int_update() from si_update()
10276 - MINOR: stream-int: export stream_int_update_*
10277 - MINOR: stream-int: move the applet_pause call out of the stream updates
10278 - MEDIUM: stream-int: clean up the conditions to enable reading in si_conn_wake_cb
10279 - MINOR: stream-int: implement the stream_int_notify() function
10280 - MEDIUM: stream-int: use the same stream notification function for applets and conns
10281 - MEDIUM: stream-int: completely remove stream_int_update_embedded()
10282 - MINOR: stream-int: rename si_applet_done() to si_applet_wake_cb()
10283 - BUG/MEDIUM: applet: fix reporting of broken write situation
10284 - BUG/MINOR: stats: do not call cli_release_handler 3 times
10285 - BUG/MEDIUM: cli: properly handle closed output
10286 - MINOR: cli: do not call the release handler on internal error.
10287 - BUG/MEDIUM: stream-int: avoid double-call to applet->release
10288 - DEBUG: add p_malloc() to return a poisonned memory area
10289 - CLEANUP: lua: remove unneeded memset(0) after calloc()
10290 - MINOR: lua: use the proper applet wakeup mechanism
10291 - BUG/MEDIUM: lua: better fix for the protocol check
10292 - BUG/MEDIUM: lua: properly set the target on the connection
10293 - MEDIUM: actions: pass a new "flags" argument to custom actions
10294 - MEDIUM: actions: add new flag ACT_FLAG_FINAL to notify about last call
10295 - MEDIUM: http: pass ACT_FLAG_FINAL to custom actions
10296 - MEDIUM: lua: only allow actions to yield if not in a final call
10297 - DOC: clarify how to make use of abstract sockets in socat
10298 - CLEANUP: config: make the errorloc/errorfile messages less confusing
10299 - MEDIUM: action: add a new flag ACT_FLAG_FIRST
10300 - BUG/MINOR: config: check that tune.bufsize is always positive
10301 - MEDIUM: config: set tune.maxrewrite to 1024 by default
10302 - DOC: add David Carlier as maintainer of da.c
10303 - DOC: fix some broken unexpected unicode chars in the Lua doc.
10304 - BUG/MEDIUM: proxy: ignore stopped peers
10305 - BUG/MEDIUM: proxy: do not wake stopped proxies' tasks during soft_stop()
10306 - MEDIUM: init: completely deallocate unused peers
10307 - BUG/MEDIUM: tcp: fix inverted condition to call custom actions
10308 - DOC: remove outdated actions lists on tcp-request/response
10309 - MEDIUM: tcp: add new tcp action "silent-drop"
10310 - DOC: add URLs to optional libraries in the README
10311
Willy Tarreaua02e8a62015-09-14 12:23:10 +0200103122015/09/14 : 1.6-dev5
10313 - MINOR: dns: dns_resolution structure update: time_t to unsigned int
10314 - BUG/MEDIUM: dns: DNS resolution doesn't start
10315 - BUG/MAJOR: dns: dns client resolution infinite loop
10316 - MINOR: dns: coding style update
10317 - MINOR: dns: new bitmasks to use against DNS flags
10318 - MINOR: dns: dns_nameserver structure update: new counter for truncated response
10319 - MINOR: dns: New DNS response analysis code: DNS_RESP_TRUNCATED
10320 - MEDIUM: dns: handling of truncated response
10321 - MINOR: DNS client query type failover management
10322 - MINOR: dns: no expected DNS record type found
10323 - MINOR: dns: new flag to report that no IP can be found in a DNS response packet
10324 - BUG/MINOR: DNS request retry counter used for retry only
10325 - DOC: DNS documentation updated
10326 - MEDIUM: actions: remove ACTION_STOP
10327 - BUG/MEDIUM: lua: outgoing connection was broken since 1.6-dev2 (bis)
10328 - BUG/MINOR: lua: last log character truncated.
10329 - CLEANUP: typo: bad indent
10330 - CLEANUP: actions: missplaced includes
10331 - MINOR: build: missing header
10332 - CLEANUP: lua: Merge log functions
10333 - BUG/MAJOR: http: don't manipulate the server connection if it's killed
10334 - BUG/MINOR: http: remove stupid HTTP_METH_NONE entry
10335 - BUG/MAJOR: http: don't call http_send_name_header() after an error
10336 - MEDIUM: tools: make str2sa_range() optionally return the FQDN
10337 - BUG/MINOR: tools: make str2sa_range() report unresolvable addresses
10338 - BUG/MEDIUM: dns: use the correct server hostname when resolving
10339
Willy Tarreau61d301f2015-08-30 00:17:17 +0200103402015/08/30 : 1.6-dev4
10341 - MINOR: log: Add log-format variable %HQ, to log HTTP query strings
10342 - DOC: typo in 'redirect', 302 code meaning
10343 - DOC: typos in tcp-check expect examples
10344 - DOC: resolve-prefer default value and default-server update
10345 - MINOR: DNS counters: increment valid counter
10346 - BUG/MEDIUM: DNS resolution response parsing broken
10347 - MINOR: server: add new SRV_ADMF_CMAINT flag
10348 - MINOR: server SRV_ADMF_CMAINT flag doesn't imply SRV_ADMF_FMAINT
10349 - BUG/MEDIUM: dns: wrong first time DNS resolution
10350 - BUG/MEDIUM: lua: Lua tasks fail to start.
10351 - BUILD: add USE_LUA to BUILD_OPTIONS when it's used
10352 - DOC/MINOR: fix OpenBSD versions where haproxy works
10353 - MINOR: 51d: unable to start haproxy without "51degrees-data-file"
10354 - BUG/MEDIUM: peers: fix wrong message id on stick table updates acknowledgement.
10355 - BUG/MAJOR: peers: fix current table pointer not re-initialized on session release.
10356 - BUILD: ssl: Allow building against libssl without SSLv3.
10357 - DOC: clarify some points about SSL and the proxy protocol
10358 - DOC: mention support for RFC 5077 TLS Ticket extension in starter guide
10359 - BUG/MEDIUM: mailer: DATA part must be terminated with <CRLF>.<CRLF>
10360 - DOC: match several lua configuration option names to those implemented in code
10361 - MINOR cfgparse: Correct the mailer warning text to show the right names to the user
10362 - BUG/MINOR: ssl: TLS Ticket Key rotation broken via socket command
10363 - MINOR: stream: initialize the current_rule field to NULL on stream init
10364 - BUG/MEDIUM: lua: timeout error with converters, wrapper and actions.
10365 - CLEANUP: proto_http: remove useless initialisation
10366 - CLEANUP: http/tcp actions: remove the scope member
10367 - BUG/MINOR: proto_tcp: custom action continue is ignored
10368 - MINOR: proto_tcp: add session in the action prototype
10369 - MINOR: vars: reduce the code size of some wrappers
10370 - MINOR: Move http method enum from proto_http to sample
10371 - MINOR: sample: Add ipv6 to ipv4 and sint to ipv6 casts
10372 - MINOR: sample/proto_tcp: export "smp_fetch_src"
10373 - MEDIUM: cli: rely on the map's output type instead of the sample type
10374 - BUG/MEDIUM: stream: The stream doen't inherit SC from the session
10375 - BUG/MEDIUM: vars: segfault during the configuration parsing
10376 - BUG/MEDIUM: stick-tables: refcount error after copying SC for the session to the stream
10377 - BUG/MEDIUM: lua: bad error processing
10378 - MINOR: samples: rename a struct from sample_storage to sample_data
10379 - MINOR: samples: rename some struct member from "smp" to "data"
10380 - MEDIUM: samples: Use the "struct sample_data" in the "struct sample"
10381 - MINOR: samples: extract the anonymous union and create the union sample_value
10382 - MINOR: samples: rename union from "data" to "u"
10383 - MEDIUM: 51degrees: Adapt the 51Degrees library
10384 - MINOR: samples: data assignation simplification
10385 - MEDIUM: pattern/map: Maps can returns various types
10386 - MINOR: map: The map can return IPv4 and IPv6
10387 - MEDIUM: actions: Merge (http|tcp)-(request|reponse) action structs
10388 - MINOR: actions: Remove the data opaque pointer
10389 - MINOR: lua: use the hlua_rule type in place of opaque type
10390 - MINOR: vars: use the vars types as argument in place of opaque type
10391 - MINOR: proto_http: use an "expr" type in place of generic opaque type.
10392 - MINOR: proto_http: replace generic opaque types by real used types for the actions on thr request line
10393 - MINOR: proto_http: replace generic opaque types by real used types in "http_capture"
10394 - MINOR: proto_http: replace generic opaque types by real used types in "http_capture" by id
10395 - MEDIUM: track-sc: Move the track-sc configuration storage in the union
10396 - MEDIUM: capture: Move the capture configuration storage in the union
10397 - MINOR: actions: add "from" information
10398 - MINOR: actions: remove the mark indicating the last entry in enum
10399 - MINOR: actions: Declare all the embedded actions in the same header file
10400 - MINOR: actions: change actions names
10401 - MEDIUM: actions: Add standard return code for the action API
10402 - MEDIUM: actions: Merge (http|tcp)-(request|reponse) keywords structs
10403 - MINOR: proto_tcp: proto_tcp.h is now useles
10404 - MINOR: actions: mutualise the action keyword lookup
10405 - MEDIUM: actions: Normalize the return code of the configuration parsers
10406 - MINOR: actions: Remove wrappers
10407 - MAJOR: stick-tables: use sample types in place of dedicated types
10408 - MEDIUM: stick-tables: use the sample type names
10409 - MAJOR: stick-tables: remove key storage from the key struct
10410 - MEDIUM: stick-tables: Add GPT0 in the stick tables
10411 - MINOR: stick-tables: Add GPT0 access
10412 - MINOR: stick-tables: Add GPC0 actions
10413 - BUG/MEDIUM: lua: the lua fucntion Channel:close() causes a segfault
10414 - DOC: ssl: missing LF
10415 - MINOR: lua: add core.done() function
10416 - DOC: fix function name
10417 - BUG/MINOR: lua: in some case a sample may remain undefined
10418 - DOC: fix "http_action_set_req_line()" comments
10419 - MINOR: http: Action for manipulating the returned status code.
10420 - MEDIUM: lua: turns txn:close into txn:done
10421 - BUG/MEDIUM: lua: cannot process more Lua hooks after a "done()" function call
10422 - BUILD: link with libdl if needed for Lua support
10423 - CLEANUP: backend: factor out objt_server() in connect_server()
10424 - MEDIUM: backend: don't call si_alloc_conn() when we reuse a valid connection
10425 - MEDIUM: stream-int: simplify si_alloc_conn()
10426 - MINOR: stream-int: add new function si_detach_endpoint()
10427 - MINOR: server: add a list of private idle connections
10428 - MINOR: connection: add a new list member in the connection struct
10429 - MEDIUM: stream-int: queue idle connections at the server
10430 - MINOR: stream-int: make si_idle_conn() only accept valid connections
10431 - MINOR: server: add a list of already used idle connections
10432 - MINOR: connection: add a new flag CO_FL_PRIVATE
10433 - MINOR: config: add new setting "http-reuse"
10434 - MAJOR: backend: initial work towards connection reuse
10435 - MAJOR: backend: improve the connection reuse mechanism
10436 - MEDIUM: backend: implement "http-reuse safe"
10437 - MINOR: server: add a list of safe, already reused idle connections
10438 - MEDIUM: backend: add the "http-reuse aggressive" strategy
10439 - DOC: document the new http-reuse directive
10440 - DOC: internals: document next steps for HTTP connection reuse
10441 - DOC: mention that %ms is left-padded with zeroes.
10442 - MINOR: init: indicate to check 'bind' lines when no listeners were found.
10443 - MAJOR: http: remove references to appsession
10444 - CLEANUP: config: remove appsession initialization
10445 - CLEANUP: appsession: remove appsession.c and sessionhash.c
10446 - CLEANUP: tests: remove sessionhash_test.c and test-cookie-appsess.cfg
10447 - CLEANUP: proxy: remove last references to appsession
10448 - CLEANUP: appsession: remove the last include files
10449 - DOC: remove documentation about appsession
10450 - CLEANUP: .gitignore: ignore more test files
10451 - CLEANUP: .gitignore: finally ignore everything but what is known.
10452 - MEDIUM: config: emit a warning on a frontend without listener
10453 - DOC: add doc/internals/entities-v2.txt
10454 - DOC: add doc/linux-syn-cookies.txt
10455 - DOC: add design thoughts on HTTP/2
10456 - DOC: add some thoughts on connection sharing for HTTP/2
10457 - DOC: add design thoughts on dynamic buffer allocation
10458 - BUG/MEDIUM: counters: ensure that src_{inc,clr}_gpc0 creates a missing entry
10459 - DOC: add new file intro.txt
10460 - MAJOR: tproxy: remove support for cttproxy
10461 - BUG/MEDIUM: lua: outgoing connection was broken since 1.6-dev2
10462 - DOC: lua: replace txn:close with txn:done in lua-api
10463 - DOC: intro: minor updates and fixes
10464 - DOC: intro: fix too long line.
10465 - DOC: fix example of http-request using ssl_fc_session_id
10466 - BUG/MEDIUM: lua: txn:done() still causes a segfault in TCP mode
10467 - CLEANUP: lua: fix some indent issues
10468 - BUG/MEDIUM: lua: fix a segfault in txn:done() if called twice
10469 - DOC: lua: mention than txn:close was renamed txn:done.
10470
Willy Tarreau50bdda62015-07-22 17:32:56 +0200104712015/07/22 : 1.6-dev3
10472 - CLEANUP: sample: generalize sample_fetch_string() as sample_fetch_as_type()
10473 - MEDIUM: http: Add new 'set-src' option to http-request
10474 - DOC usesrc root privileges requirments
10475 - BUG/MINOR: dns: wrong time unit for some DNS default parameters
10476 - MINOR: proxy: bit field for proxy_find_best_match diff status
10477 - MINOR: server: new server flag: SRV_F_FORCED_ID
10478 - MINOR: server: server_find functions: id, name, best_match
10479 - DOC: dns: fix chapters syntax
10480 - BUILD/MINOR: tools: rename popcount to my_popcountl
10481 - BUILD: add netbsd TARGET
10482 - MEDIUM: 51Degrees code refactoring and cleanup
10483 - MEDIUM: 51d: add LRU-based cache on User-Agent string detection
10484 - DOC: add notes about the "51degrees-cache-size" parameter
10485 - BUG/MEDIUM: 51d: possible incorrect operations on smp->data.str.str
10486 - BUG/MAJOR: connection: fix TLV offset calculation for proxy protocol v2 parsing
10487 - MINOR: Add sample fetch to detect Supported Elliptic Curves Extension
10488 - BUG/MINOR: payload: Add volatile flag to smp_fetch_req_ssl_ec_ext
10489 - BUG/MINOR: lua: type error in the arguments wrapper
10490 - CLEANUP: vars: remove unused struct
10491 - BUG/MINOR: http/sample: gmtime/localtime can fail
10492 - MINOR: standard: add 64 bits conversion functions
10493 - MAJOR: sample: converts uint and sint in 64 bits signed integer
10494 - MAJOR: arg: converts uint and sint in sint
10495 - MEDIUM: sample: switch to saturated arithmetic
10496 - MINOR: vars: returns variable content
10497 - MEDIUM: vars/sample: operators can use variables as parameter
10498 - BUG/MINOR: ssl: fix smp_fetch_ssl_fc_session_id
10499 - BUILD/MINOR: lua: fix a harmless build warning
10500 - BUILD/MINOR: stats: fix build warning due to condition always true
10501 - BUG/MAJOR: lru: fix unconditional call to free due to unexpected semi-colon
10502 - BUG/MEDIUM: logs: fix improper systematic use of quotes with a few tags
10503 - BUILD/MINOR: lua: ensure that hlua_ctx_destroy is properly defined
10504 - BUG/MEDIUM: lru: fix possible memory leak when ->free() is used
10505 - MINOR: vars: make the accounting not depend on the stream
10506 - MEDIUM: vars: move the session variables to the session, not the stream
10507 - BUG/MEDIUM: vars: do not freeze the connection when the expression cannot be fetched
10508 - BUG/MAJOR: buffers: make the buffer_slow_realign() function respect output data
10509 - BUG/MAJOR: tcp: tcp rulesets were still broken
10510 - MINOR: stats: improve compression stats reporting
10511 - MINOR: ssl: make self-generated certs also work with raw IPv6 addresses
10512 - CLEANUP: ssl: make ssl_sock_generated_cert_serial() take a const
10513 - CLEANUP: ssl: make ssl_sock_generate_certificate() use ssl_sock_generated_cert_serial()
10514 - BUG/MINOR: log: missing some ARGC_* entries in fmt_directives()
10515 - MINOR: args: add new context for servers
10516 - MINOR: stream: maintain consistence between channel_forward and HTTP forward
10517 - MINOR: ssl: provide ia function to set the SNI extension on a connection
10518 - MEDIUM: ssl: add sni support on the server lines
10519 - CLEANUP: stream: remove a useless call to si_detach()
10520 - CLEANUP: stream-int: fix a few outdated comments about stream_int_register_handler()
10521 - CLEANUP: stream-int: remove stream_int_unregister_handler() and si_detach()
10522 - MINOR: stream-int: only use si_release_endpoint() to release a connection
10523 - MINOR: standard: provide htonll() and ntohll()
10524 - CLEANUP/MINOR: dns: dns_str_to_dn_label() only needs a const char
10525 - BUG/MAJOR: dns: fix the length of the string to be copied
10526
Willy Tarreauad90f0d2015-06-17 15:53:25 +0200105272015/06/17 : 1.6-dev2
10528 - BUG/MINOR: ssl: Display correct filename in error message
10529 - MEDIUM: logs: Add HTTP request-line log format directives
10530 - BUG/MEDIUM: check: tcpcheck regression introduced by e16c1b3f
10531 - BUG/MINOR: check: fix tcpcheck error message
10532 - MINOR: use an int instead of calling tcpcheck_get_step_id
10533 - MINOR: tcpcheck_rule structure update
10534 - MINOR: include comment in tcpcheck error log
10535 - DOC: tcpcheck comment documentation
10536 - MEDIUM: server: add support for changing a server's address
10537 - MEDIUM: server: change server ip address from stats socket
10538 - MEDIUM: protocol: add minimalist UDP protocol client
10539 - MEDIUM: dns: implement a DNS resolver
10540 - MAJOR: server: add DNS-based server name resolution
10541 - DOC: server name resolution + proto DNS
10542 - MINOR: dns: add DNS statistics
10543 - MEDIUM: http: configurable http result codes for http-request deny
10544 - BUILD: Compile clean when debug options defined
10545 - MINOR: lru: Add the possibility to free data when an item is removed
10546 - MINOR: lru: Add lru64_lookup function
10547 - MEDIUM: ssl: Add options to forge SSL certificates
10548 - MINOR: ssl: Export functions to manipulate generated certificates
10549 - MEDIUM: config: add DeviceAtlas global keywords
10550 - MEDIUM: global: add the DeviceAtlas required elements to struct global
10551 - MEDIUM: sample: add the da-csv converter
10552 - MEDIUM: init: DeviceAtlas initialization
10553 - BUILD: Makefile: add options to build with DeviceAtlas
10554 - DOC: README: explain how to build with DeviceAtlas
10555 - BUG/MEDIUM: http: fix the url_param fetch
10556 - BUG/MEDIUM: init: segfault if global._51d_property_names is not initialized
10557 - MAJOR: peers: peers protocol version 2.0
10558 - MINOR: peers: avoid re-scheduling of pending stick-table's updates still not pushed.
10559 - MEDIUM: peers: re-schedule stick-table's entry for sync when data is modified.
10560 - MEDIUM: peers: support of any stick-table data-types for sync
10561 - BUG/MAJOR: sample: regression on sample cast to stick table types.
10562 - CLEANUP: deinit: remove codes for cleaning p->block_rules
10563 - DOC: Fix L4TOUT typo in documentation
10564 - DOC: set-log-level in Logging section preamble
10565 - BUG/MEDIUM: compat: fix segfault on FreeBSD
10566 - MEDIUM: check: include server address and port in the send-state header
10567 - MEDIUM: backend: Allow redispatch on retry intervals
10568 - MINOR: Add TLS ticket keys reference and use it in the listener struct
10569 - MEDIUM: Add support for updating TLS ticket keys via socket
10570 - DOC: Document new socket commands "show tls-keys" and "set ssl tls-key"
10571 - MINOR: Add sample fetch which identifies if the SSL session has been resumed
10572 - DOC: Update doc about weight, act and bck fields in the statistics
10573 - BUG/MEDIUM: ssl: fix tune.ssl.default-dh-param value being overwritten
10574 - MINOR: ssl: add a destructor to free allocated SSL ressources
10575 - MEDIUM: ssl: add the possibility to use a global DH parameters file
10576 - MEDIUM: ssl: replace standards DH groups with custom ones
10577 - MEDIUM: stats: Add enum srv_stats_state
10578 - MEDIUM: stats: Separate server state and colour in stats
10579 - MEDIUM: stats: Only report drain state in stats if server has SRV_ADMF_DRAIN set
10580 - MEDIUM: stats: Differentiate between DRAIN and DRAIN (agent)
10581 - MEDIUM: Lower priority of email alerts for log-health-checks messages
10582 - MEDIUM: Send email alerts when servers are marked as UP or enter the drain state
10583 - MEDIUM: Document when email-alerts are sent
10584 - BUG/MEDIUM: lua: bad argument number in analyser and in error message
10585 - MEDIUM: lua: automatically converts strings in proxy, tables, server and ip
10586 - BUG/MINOR: utf8: remove compilator warning
10587 - MEDIUM: map: uses HAProxy facilities to store default value
10588 - BUG/MINOR: lua: error in detection of mandatory arguments
10589 - BUG/MINOR: lua: set current proxy as default value if it is possible
10590 - BUG/MEDIUM: http: the action set-{method|path|query|uri} doesn't run.
10591 - BUG/MEDIUM: lua: undetected infinite loop
10592 - BUG/MAJOR: http: don't read past buffer's end in http_replace_value
10593 - BUG/MEDIUM: http: the function "(req|res)-replace-value" doesn't respect the HTTP syntax
10594 - MEDIUM/CLEANUP: http: rewrite and lighten http_transform_header() prototype
10595 - BUILD: lua: it miss the '-ldl' directive
10596 - MEDIUM: http: allows 'R' and 'S' in the protocol alphabet
10597 - MINOR: http: split the function http_action_set_req_line() in two parts
10598 - MINOR: http: split http_transform_header() function in two parts.
10599 - MINOR: http: export function inet_set_tos()
10600 - MINOR: lua: txn: add function set_(loglevel|tos|mark)
10601 - MINOR: lua: create and register HTTP class
10602 - DOC: lua: fix some typos
10603 - MINOR: lua: add log functions
10604 - BUG/MINOR: lua: Fix SSL initialisation
10605 - DOC: lua: some fixes
10606 - MINOR: lua: (req|res)_get_headers return more than one header value
10607 - MINOR: lua: map system integration in Lua
10608 - BUG/MEDIUM: http: functions set-{path,query,method,uri} breaks the HTTP parser
10609 - MINOR: sample: add url_dec converter
10610 - MEDIUM: sample: fill the struct sample with the session, proxy and stream pointers
10611 - MEDIUM: sample change the prototype of sample-fetches and converters functions
10612 - MINOR: sample: fill the struct sample with the options.
10613 - MEDIUM: sample: change the prototype of sample-fetches functions
10614 - MINOR: http: split the url_param in two parts
10615 - CLEANUP: http: bad indentation
10616 - MINOR: http: add body_param fetch
10617 - MEDIUM: http: url-encoded parsing function can run throught wrapped buffer
10618 - DOC: http: req.body_param documentation
10619 - MINOR: proxy: custom capture declaration
10620 - MINOR: capture: add two "capture" converters
10621 - MEDIUM: capture: Allow capture with slot identifier
10622 - MINOR: http: add array of generic pointers in http_res_rules
10623 - MEDIUM: capture: adds http-response capture
10624 - MINOR: common: escape CSV strings
10625 - MEDIUM: stats: escape some strings in the CSV dump
10626 - MINOR: tcp: add custom actions that can continue tcp-(request|response) processing
10627 - MINOR: lua: Lua tcp action are not final action
10628 - DOC: lua: schematics about lua socket organization
10629 - BUG/MINOR: debug: display (null) in place of "meth"
10630 - DOC: mention the "lua action" in documentation
10631 - MINOR: standard: add function that converts signed int to a string
10632 - BUG/MINOR: sample: wrong conversion of signed values
10633 - MEDIUM: sample: Add type any
10634 - MINOR: debug: add a special converter which display its input sample content.
10635 - MINOR: tcp: increase the opaque data array
10636 - MINOR: tcp/http/conf: extends the keyword registration options
10637 - MINOR: build: fix build dependency
10638 - MEDIUM: vars: adds support of variables
10639 - MINOR: vars: adds get and set functions
10640 - MINOR: lua: Variable access
10641 - MINOR: samples: add samples which returns constants
10642 - BUG/MINOR: vars/compil: fix some warnings
10643 - BUILD: add 51degrees options to makefile.
10644 - MINOR: global: add several 51Degrees members to global
10645 - MINOR: config: add 51Degrees config parsing.
10646 - MINOR: init: add 51Degrees initialisation code
10647 - MEDIUM: sample: add fiftyone_degrees converter.
10648 - MEDIUM: deinit: add cleanup for 51Degrees to deinit
10649 - MEDIUM: sample: add trie support to 51Degrees
10650 - DOC: add 51Degrees notes to configuration.txt.
10651 - DOC: add build indications for 51Degrees to README.
10652 - MEDIUM: cfgparse: introduce weak and strong quoting
10653 - BUG/MEDIUM: cfgparse: incorrect memmove in quotes management
10654 - MINOR: cfgparse: remove line size limitation
10655 - MEDIUM: cfgparse: expand environment variables
10656 - BUG/MINOR: cfgparse: fix typo in 'option httplog' error message
10657 - BUG/MEDIUM: cfgparse: segfault when userlist is misused
10658 - CLEANUP: cfgparse: remove reference to 'ruleset' section
10659 - MEDIUM: cfgparse: check section maximum number of arguments
10660 - MEDIUM: cfgparse: max arguments check in the global section
10661 - MEDIUM: cfgparse: check max arguments in the proxies sections
10662 - CLEANUP: stream-int: remove a redundant clearing of the linger_risk flag
10663 - MINOR: connection: make conn_sock_shutw() actually perform the shutdown() call
10664 - MINOR: stream-int: use conn_sock_shutw() to shutdown a connection
10665 - MINOR: connection: perform the call to xprt->shutw() in conn_data_shutw()
10666 - MEDIUM: stream-int: replace xprt->shutw calls with conn_data_shutw()
10667 - MINOR: checks: use conn_data_shutw_hard() instead of call via xprt
10668 - MINOR: connection: implement conn_sock_send()
10669 - MEDIUM: stream-int: make conn_si_send_proxy() use conn_sock_send()
10670 - MEDIUM: connection: make conn_drain() perform more controls
10671 - REORG: connection: move conn_drain() to connection.c and rename it
10672 - CLEANUP: stream-int: remove inclusion of fd.h that is not used anymore
10673 - MEDIUM: channel: don't always set CF_WAKE_WRITE on bi_put*
10674 - CLEANUP: lua: don't use si_ic/si_oc on known stream-ints
10675 - BUG/MEDIUM: peers: correctly configure the client timeout
10676 - MINOR: peers: centralize configuration of the peers frontend
10677 - MINOR: proxy: store the default target into the frontend's configuration
10678 - MEDIUM: stats: use frontend_accept() as the accept function
10679 - MEDIUM: peers: use frontend_accept() instead of peer_accept()
10680 - CLEANUP: listeners: remove unused timeout
10681 - MEDIUM: listener: store the default target per listener
10682 - BUILD: fix automatic inclusion of libdl.
10683 - MEDIUM: lua: implement a simple memory allocator
10684 - MEDIUM: compression: postpone buffer adjustments after compression
10685 - MEDIUM: compression: don't send leading zeroes with chunk size
10686 - BUG/MINOR: compression: consider the expansion factor in init
10687 - MINOR: http: check the algo name "identity" instead of the function pointer
10688 - CLEANUP: compression: statify all algo-specific functions
10689 - MEDIUM: compression: add a distinction between UA- and config- algorithms
10690 - MEDIUM: compression: add new "raw-deflate" compression algorithm
10691 - MEDIUM: compression: split deflate_flush() into flush and finish
10692 - CLEANUP: compression: remove unused reset functions
10693 - MAJOR: compression: integrate support for libslz
10694 - BUG/MEDIUM: http: hdr_cnt would not count any header when called without name
10695 - BUG/MAJOR: http: null-terminate the http actions keywords list
10696 - CLEANUP: lua: remove the unused hlua_sleep memory pool
10697 - BUG/MAJOR: lua: use correct object size when initializing a new converter
10698 - CLEANUP: lua: remove hard-coded sizeof() in object creations and mallocs
10699 - CLEANUP: lua: fix confusing local variable naming in hlua_txn_new()
10700 - CLEANUP: hlua: stop using variable name "s" alternately for hlua_txn and hlua_smp
10701 - CLEANUP: lua: get rid of the last "*ht" for struct hlua_txn.
10702 - CLEANUP: lua: rename last occurrences of "*s" to "*htxn" for hlua_txn
10703 - CLEANUP: lua: rename variable "sc" for struct hlua_smp
10704 - CLEANUP: lua: get rid of the last two "*hs" for hlua_smp
10705 - REORG/MAJOR: session: rename the "session" entity to "stream"
10706 - REORG/MEDIUM: stream: rename stream flags from SN_* to SF_*
10707 - MINOR: session: start to reintroduce struct session
10708 - MEDIUM: stream: allocate the session when a stream is created
10709 - MEDIUM: stream: move the listener's pointer to the session
10710 - MEDIUM: stream: move the frontend's pointer to the session
10711 - MINOR: session: add a pointer to the session's origin
10712 - MEDIUM: session: use the pointer to the origin instead of s->si[0].end
10713 - CLEANUP: sample: remove useless tests in fetch functions for l4 != NULL
10714 - MEDIUM: http: move header captures from http_txn to struct stream
10715 - MINOR: http: create a dedicated pool for http_txn
10716 - MAJOR: http: move http_txn out of struct stream
10717 - MAJOR: sample: don't pass l7 anymore to sample fetch functions
10718 - CLEANUP: lua: remove unused hlua_smp->l7 and hlua_txn->l7
10719 - MEDIUM: http: remove the now useless http_txn from {req/res} rules
10720 - CLEANUP: lua: don't pass http_txn anymore to hlua_request_act_wrapper()
10721 - MAJOR: sample: pass a pointer to the session to each sample fetch function
10722 - MINOR: stream: provide a few helpers to retrieve frontend, listener and origin
10723 - CLEANUP: stream: don't set ->target to the incoming connection anymore
10724 - MINOR: stream: move session initialization before the stream's
10725 - MINOR: session: store the session's accept date
10726 - MINOR: session: don't rely on s->logs.logwait in embryonic sessions
10727 - MINOR: session: implement session_free() and use it everywhere
10728 - MINOR: session: add stick counters to the struct session
10729 - REORG: stktable: move the stkctr_* functions from stream to sticktable
10730 - MEDIUM: streams: support looking up stkctr in the session
10731 - MEDIUM: session: update the session's stick counters upon session_free()
10732 - MEDIUM: proto_tcp: track the session's counters in the connection ruleset
10733 - MAJOR: tcp: make tcp_exec_req_rules() only rely on the session
10734 - MEDIUM: stream: don't call stream_store_counters() in kill_mini_session() nor session_accept()
10735 - MEDIUM: stream: move all the session-specific stuff of stream_accept() earlier
10736 - MAJOR: stream: don't initialize the stream anymore in stream_accept
10737 - MEDIUM: session: remove the task pointer from the session
10738 - REORG: session: move the session parts out of stream.c
10739 - MINOR: stream-int: make appctx_new() take the applet in argument
10740 - MEDIUM: peers: move the appctx initialization earlier
10741 - MINOR: session: introduce session_new()
10742 - MINOR: session: make use of session_new() when creating a new session
10743 - MINOR: peers: make use of session_new() when creating a new session
10744 - MEDIUM: peers: initialize the task before the stream
10745 - MINOR: session: set the CO_FL_CONNECTED flag on the connection once ready
10746 - CLEANUP: stream.c: do not re-attach the connection to the stream
10747 - MEDIUM: stream: isolate connection-specific initialization code
10748 - MEDIUM: stream: also accept appctx as origin in stream_accept_session()
10749 - MEDIUM: peers: make use of stream_accept_session()
10750 - MEDIUM: frontend: make ->accept only return +/-1
10751 - MEDIUM: stream: return the stream upon accept()
10752 - MEDIUM: frontend: move some stream initialisation to stream_new()
10753 - MEDIUM: frontend: move the fd-specific settings to session_accept_fd()
10754 - MEDIUM: frontend: don't restrict frontend_accept() to connections anymore
10755 - MEDIUM: frontend: move some remaining stream settings to stream_new()
10756 - CLEANUP: frontend: remove one useless local variable
10757 - MEDIUM: stream: don't rely on the session's listener anymore in stream_new()
10758 - MEDIUM: lua: make use of stream_new() to create an outgoing connection
10759 - MINOR: lua: minor cleanup in hlua_socket_new()
10760 - MINOR: lua: no need for setting timeouts / conn_retries in hlua_socket_new()
10761 - MINOR: peers: no need for setting timeouts / conn_retries in peer_session_create()
10762 - CLEANUP: stream-int: swap stream-int and appctx declarations
10763 - CLEANUP: namespaces: fix protection against multiple inclusions
10764 - MINOR: session: maintain the session count stats in the session, not the stream
10765 - MEDIUM: session: adjust the connection flags before stream_new()
10766 - MINOR: stream: pass the pointer to the origin explicitly to stream_new()
10767 - CLEANUP: poll: move the conditions for waiting out of the poll functions
10768 - BUG/MEDIUM: listener: don't report an error when resuming unbound listeners
10769 - BUG/MEDIUM: init: don't limit cpu-map to the first 32 processes only
10770 - BUG/MAJOR: tcp/http: fix current_rule assignment when restarting over a ruleset
10771 - BUG/MEDIUM: stream-int: always reset si->ops when si->end is nullified
10772 - DOC: update the entities diagrams
10773 - BUG/MEDIUM: http: properly retrieve the front connection
10774 - MINOR: applet: add a new "owner" pointer in the appctx
10775 - MEDIUM: applet: make the applet not depend on a stream interface anymore
10776 - REORG: applet: move the applet definitions out of stream_interface
10777 - CLEANUP: applet: rename struct si_applet to applet
10778 - REORG: stream-int: create si_applet_ops dedicated to applets
10779 - MEDIUM: applet: add basic support for an applet run queue
10780 - MEDIUM: applet: implement a run queue for active appctx
10781 - MEDIUM: stream-int: add a new function si_applet_done()
10782 - MAJOR: applet: now call si_applet_done() instead of si_update() in I/O handlers
10783 - MAJOR: stream: use a regular ->update for all stream interfaces
10784 - MEDIUM: dumpstats: don't unregister the applet anymore
10785 - MEDIUM: applet: centralize the call to si_applet_done() in the I/O handler
10786 - MAJOR: stream: do not allocate request buffers anymore when the left side is an applet
10787 - MINOR: stream-int: add two flags to indicate an applet's wishes regarding I/O
10788 - MEDIUM: applet: make the applets only use si_applet_{cant|want|stop}_{get|put}
10789 - MEDIUM: stream-int: pause the appctx if the task is woken up
10790 - BUG/MAJOR: tcp: only call registered actions when they're registered
10791 - BUG/MEDIUM: peers: fix applet scheduling
10792 - BUG/MEDIUM: peers: recent applet changes broke peers updates scheduling
10793 - MINOR: tools: provide an rdtsc() function for time comparisons
10794 - IMPORT: lru: import simple ebtree-based LRU functions
10795 - IMPORT: hash: import xxhash-r39
10796 - MEDIUM: pattern: add a revision to all pattern expressions
10797 - MAJOR: pattern: add LRU-based cache on pattern matching
10798 - BUG/MEDIUM: http: remove content-length from chunked messages
10799 - DOC: http: update the comments about the rules for determining transfer-length
10800 - BUG/MEDIUM: http: do not restrict parsing of transfer-encoding to HTTP/1.1
10801 - BUG/MEDIUM: http: incorrect transfer-coding in the request is a bad request
10802 - BUG/MEDIUM: http: remove content-length form responses with bad transfer-encoding
10803 - MEDIUM: http: restrict the HTTP version token to 1 digit as per RFC7230
10804 - MEDIUM: http: disable support for HTTP/0.9 by default
10805 - MEDIUM: http: add option-ignore-probes to get rid of the floods of 408
10806 - BUG/MINOR: config: clear proxy->table.peers.p for disabled proxies
10807 - MEDIUM: init: don't stop proxies in parent process when exiting
10808 - MINOR: stick-table: don't attach to peers in stopped state
10809 - MEDIUM: config: initialize stick-tables after peers, not before
10810 - MEDIUM: peers: add the ability to disable a peers section
10811 - MINOR: peers: store the pointer to the signal handler
10812 - MEDIUM: peers: unregister peers that were never started
10813 - MEDIUM: config: propagate the table's process list to the peers sections
10814 - MEDIUM: init: stop any peers section not bound to the correct process
10815 - MEDIUM: config: validate that peers sections are bound to exactly one process
10816 - MAJOR: peers: allow peers section to be used with nbproc > 1
10817 - DOC: relax the peers restriction to single-process
10818 - DOC: document option http-ignore-probes
10819 - DOC: fix the comments about the meaning of msg->sol in HTTP
10820 - BUG/MEDIUM: http: wait for the exact amount of body bytes in wait_for_request_body
10821 - BUG/MAJOR: http: prevent risk of reading past end with balance url_param
10822 - MEDIUM: stream: move HTTP request body analyser before process_common
10823 - MEDIUM: http: add a new option http-buffer-request
10824 - MEDIUM: http: provide 3 fetches for the body
10825 - DOC: update the doc on the proxy protocol
10826 - BUILD: pattern: fix build warnings introduced in the LRU cache
10827 - BUG/MEDIUM: stats: properly initialize the scope before dumping stats
10828 - CLEANUP: config: fix misleading information in error message.
10829 - MINOR: config: report the number of processes using a peers section in the error case
10830 - BUG/MEDIUM: config: properly compute the default number of processes for a proxy
10831 - MEDIUM: http: add new "capture" action for http-request
10832 - BUG/MEDIUM: http: fix the http-request capture parser
10833 - BUG/MEDIUM: http: don't forward client shutdown without NOLINGER except for tunnels
10834 - BUILD/MINOR: ssl: fix build failure introduced by recent patch
10835 - BUG/MAJOR: check: fix breakage of inverted tcp-check rules
10836 - CLEANUP: checks: fix double usage of cur / current_step in tcp-checks
10837 - BUG/MEDIUM: checks: do not dereference head of a tcp-check at the end
10838 - CLEANUP: checks: simplify the loop processing of tcp-checks
10839 - BUG/MAJOR: checks: always check for end of list before proceeding
10840 - BUG/MEDIUM: checks: do not dereference a list as a tcpcheck struct
10841 - BUG/MAJOR: checks: break infinite loops when tcp-checks starts with comment
10842 - MEDIUM: http: make url_param iterate over multiple occurrences
10843 - BUG/MEDIUM: peers: apply a random reconnection timeout
10844 - MEDIUM: config: reject invalid config with name duplicates
10845 - MEDIUM: config: reject conflicts in table names
10846 - CLEANUP: proxy: make the proxy lookup functions more user-friendly
10847 - MINOR: proxy: simply ignore duplicates in proxy name lookups
10848 - MINOR: config: don't open-code proxy name lookups
10849 - MEDIUM: config: clarify the conflicting modes detection for backend rules
10850 - CLEANUP: proxy: remove now unused function findproxy_mode()
10851 - MEDIUM: stick-table: remove the now duplicate find_stktable() function
10852 - MAJOR: config: remove the deprecated reqsetbe / reqisetbe actions
10853 - MINOR: proxy: add a new function proxy_find_by_id()
10854 - MINOR: proxy: add a flag to memorize that the proxy's ID was forced
10855 - MEDIUM: proxy: add a new proxy_find_best_match() function
10856 - CLEANUP: http: explicitly reference request in http_apply_redirect_rules()
10857 - MINOR: http: prepare support for parsing redirect actions on responses
10858 - MEDIUM: http: implement http-response redirect rules
10859 - MEDIUM: http: no need to close the request on redirect if data was parsed
10860 - BUG/MEDIUM: http: fix body processing for the stats applet
10861 - BUG/MINOR: da: fix log-level comparison to emove annoying warning
10862 - CLEANUP: global: remove one ifdef USE_DEVICEATLAS
10863 - CLEANUP: da: move the converter registration to da.c
10864 - CLEANUP: da: register the config keywords in da.c
10865 - CLEANUP: adjust the envelope name in da.h to reflect the file name
10866 - CLEANUP: da: remove ifdef USE_DEVICEATLAS from da.c
10867 - BUILD: make 51D easier to build by defaulting to 51DEGREES_SRC
10868 - BUILD: fix build warning when not using 51degrees
10869 - BUILD: make DeviceAtlas easier to build by defaulting to DEVICEATLAS_SRC
10870 - BUILD: ssl: fix recent build breakage on older SSL libs
10871
Willy Tarreau8747b6d2015-03-11 23:57:23 +0100108722015/03/11 : 1.6-dev1
10873 - CLEANUP: extract temporary $CFG to eliminate duplication
10874 - CLEANUP: extract temporary $BIN to eliminate duplication
10875 - CLEANUP: extract temporary $PIDFILE to eliminate duplication
10876 - CLEANUP: extract temporary $LOCKFILE to eliminate duplication
10877 - CLEANUP: extract quiet_check() to avoid duplication
10878 - BUG/MINOR: don't start haproxy on reload
10879 - DOC: Address issue where documentation is excluded due to a gitignore rule.
10880 - BUG/MEDIUM: systemd: set KillMode to 'mixed'
10881 - BUILD: fix "make install" to support spaces in the install dirs
10882 - BUG/MINOR: config: http-request replace-header arg typo
10883 - BUG: config: error in http-response replace-header number of arguments
10884 - DOC: missing track-sc* in http-request rules
10885 - BUILD: lua: missing ifdef related to SSL when enabling LUA
10886 - BUG/MEDIUM: regex: fix pcre_study error handling
10887 - MEDIUM: regex: Use pcre_study always when PCRE is used, regardless of JIT
10888 - BUG/MINOR: Fix search for -p argument in systemd wrapper.
10889 - MEDIUM: Improve signal handling in systemd wrapper.
10890 - DOC: fix typo in Unix Socket commands
10891 - BUG/MEDIUM: checks: external checks can't change server status to UP
10892 - BUG/MEDIUM: checks: segfault with external checks in a backend section
10893 - BUG/MINOR: checks: external checks shouldn't wait for timeout to return the result
10894 - BUG/MEDIUM: auth: fix segfault with http-auth and a configuration with an unknown encryption algorithm
10895 - BUG/MEDIUM: config: userlists should ensure that encrypted passwords are supported
10896 - BUG/MINOR: config: don't propagate process binding for dynamic use_backend
10897 - BUG/MINOR: log: fix request flags when keep-alive is enabled
10898 - BUG/MEDIUM: checks: fix conflicts between agent checks and ssl healthchecks
10899 - MINOR: checks: allow external checks in backend sections
10900 - MEDIUM: checks: provide environment variables to the external checks
10901 - MINOR: checks: update dynamic environment variables in external checks
10902 - DOC: checks: environment variables used by "external-check command"
10903 - BUG/MEDIUM: backend: correctly detect the domain when use_domain_only is used
10904 - MINOR: ssl: load certificates in alphabetical order
10905 - BUG/MINOR: checks: prevent http keep-alive with http-check expect
10906 - MINOR: lua: typo in an error message
10907 - MINOR: report the Lua version in -vv
10908 - MINOR: lua: add a compilation error message when compiled with an incompatible version
10909 - BUG/MEDIUM: lua: segfault when calling haproxy sample fetches from lua
10910 - BUILD: try to automatically detect the Lua library name
10911 - BUILD/CLEANUP: systemd: avoid a warning due to mixed code and declaration
10912 - BUG/MEDIUM: backend: Update hash to use unsigned int throughout
10913 - BUG/MEDIUM: connection: fix memory corruption when building a proxy v2 header
10914 - MEDIUM: connection: add new bit in Proxy Protocol V2
10915 - BUG/MINOR: ssl: rejects OCSP response without nextupdate.
10916 - BUG/MEDIUM: ssl: Fix to not serve expired OCSP responses.
10917 - BUG/MINOR: ssl: Fix OCSP resp update fails with the same certificate configured twice.
10918 - BUG/MINOR: ssl: Fix external function in order not to return a pointer on an internal trash buffer.
10919 - MINOR: add fetchs 'ssl_c_der' and 'ssl_f_der' to return DER formatted certs
10920 - MINOR: ssl: add statement to force some ssl options in global.
10921 - BUG/MINOR: ssl: correctly initialize ssl ctx for invalid certificates
10922 - BUG/MEDIUM: ssl: fix bad ssl context init can cause segfault in case of OOM.
10923 - BUG/MINOR: samples: fix unnecessary memcopy converting binary to string.
10924 - MINOR: samples: adds the bytes converter.
10925 - MINOR: samples: adds the field converter.
10926 - MINOR: samples: add the word converter.
10927 - BUG/MINOR: server: move the directive #endif to the end of file
10928 - BUG/MAJOR: buffer: check the space left is enough or not when input data in a buffer is wrapped
10929 - DOC: fix a few typos
10930 - CLEANUP: epoll: epoll_events should be allocated according to global.tune.maxpollevents
10931 - BUG/MINOR: http: fix typo: "401 Unauthorized" => "407 Unauthorized"
10932 - BUG/MINOR: parse: refer curproxy instead of proxy
10933 - BUG/MINOR: parse: check the validity of size string in a more strict way
10934 - BUILD: add new target 'make uninstall' to support uninstalling haproxy from OS
10935 - DOC: expand the docs for the provided stats.
10936 - BUG/MEDIUM: unix: do not unlink() abstract namespace sockets upon failure.
10937 - MEDIUM: ssl: Certificate Transparency support
10938 - MEDIUM: stats: proxied stats admin forms fix
10939 - MEDIUM: http: Compress HTTP responses with status codes 201,202,203 in addition to 200
10940 - BUG/MEDIUM: connection: sanitize PPv2 header length before parsing address information
10941 - MAJOR: namespace: add Linux network namespace support
10942 - MINOR: systemd: Check configuration before start
10943 - BUILD: ssl: handle boringssl in openssl version detection
10944 - BUILD: ssl: disable OCSP when using boringssl
10945 - BUILD: ssl: don't call get_rfc2409_prime when using boringssl
10946 - MINOR: ssl: don't use boringssl's cipher_list
10947 - BUILD: ssl: use OPENSSL_NO_OCSP to detect OCSP support
10948 - MINOR: stats: fix minor typo in HTML page
10949 - MINOR: Also accept SIGHUP/SIGTERM in systemd-wrapper
10950 - MEDIUM: Add support for configurable TLS ticket keys
10951 - DOC: Document the new tls-ticket-keys bind keyword
10952 - DOC: clearly state that the "show sess" output format is not fixed
10953 - MINOR: stats: fix minor typo fix in stats_dump_errors_to_buffer()
10954 - DOC: httplog does not support 'no'
10955 - BUG/MEDIUM: ssl: Fix a memory leak in DHE key exchange
10956 - MINOR: ssl: use SSL_get_ciphers() instead of directly accessing the cipher list.
10957 - BUG/MEDIUM: Consistently use 'check' in process_chk
10958 - MEDIUM: Add external check
10959 - BUG/MEDIUM: Do not set agent health to zero if server is disabled in config
10960 - MEDIUM/BUG: Only explicitly report "DOWN (agent)" if the agent health is zero
10961 - MEDIUM: Remove connect_chk
10962 - MEDIUM: Refactor init_check and move to checks.c
10963 - MEDIUM: Add free_check() helper
10964 - MEDIUM: Move proto and addr fields struct check
10965 - MEDIUM: Attach tcpcheck_rules to check
10966 - MEDIUM: Add parsing of mailers section
10967 - MEDIUM: Allow configuration of email alerts
10968 - MEDIUM: Support sending email alerts
10969 - DOC: Document email alerts
10970 - MINOR: Remove trailing '.' from email alert messages
10971 - MEDIUM: Allow suppression of email alerts by log level
10972 - BUG/MEDIUM: Do not consider an agent check as failed on L7 error
10973 - MINOR: deinit: fix memory leak
10974 - MINOR: http: export the function 'smp_fetch_base32'
10975 - BUG/MEDIUM: http: tarpit timeout is reset
10976 - MINOR: sample: add "json" converter
10977 - BUG/MEDIUM: pattern: don't load more than once a pattern list.
10978 - MINOR: map/acl/dumpstats: remove the "Done." message
10979 - BUG/MAJOR: ns: HAProxy segfault if the cli_conn is not from a network connection
10980 - BUG/MINOR: pattern: error message missing
10981 - BUG/MEDIUM: pattern: some entries are not deleted with case insensitive match
10982 - BUG/MINOR: ARG6 and ARG7 don't fit in a 32 bits word
10983 - MAJOR: poll: only rely on wake_expired_tasks() to compute the wait delay
10984 - MEDIUM: task: call session analyzers if the task is woken by a message.
10985 - MEDIUM: protocol: automatically pick the proto associated to the connection.
10986 - MEDIUM: channel: wake up any request analyzer on response activity
10987 - MINOR: converters: add a "void *private" argument to converters
10988 - MINOR: converters: give the session pointer as converter argument
10989 - MINOR: sample: add private argument to the struct sample_fetch
10990 - MINOR: global: export function and permits to not resolve DNS names
10991 - MINOR: sample: add function for browsing samples.
10992 - MINOR: global: export many symbols.
10993 - MINOR: includes: fix a lot of missing or useless includes
10994 - MEDIUM: tcp: add register keyword system.
10995 - MEDIUM: buffer: make bo_putblk/bo_putstr/bo_putchk return the number of bytes copied.
10996 - MEDIUM: http: change the code returned by the response processing rule functions
10997 - MEDIUM: http/tcp: permit to resume http and tcp custom actions
10998 - MINOR: channel: functions to get data from a buffer without copy
10999 - MEDIUM: lua: lua integration in the build and init system.
11000 - MINOR: lua: add ease functions
11001 - MINOR: lua: add runtime execution context
11002 - MEDIUM: lua: "com" signals
11003 - MINOR: lua: add the configuration directive "lua-load"
11004 - MINOR: lua: core: create "core" class and object
11005 - MINOR: lua: post initialisation bindings
11006 - MEDIUM: lua: add coroutine as tasks.
11007 - MINOR: lua: add sample and args type converters
11008 - MINOR: lua: txn: create class TXN associated with the transaction.
11009 - MINOR: lua: add shared context in the lua stack
11010 - MINOR: lua: txn: import existing sample-fetches in the class TXN
11011 - MINOR: lua: txn: add lua function in TXN that returns an array of http headers
11012 - MINOR: lua: register and execute sample-fetches in LUA
11013 - MINOR: lua: register and execute converters in LUA
11014 - MINOR: lua: add bindings for tcp and http actions
11015 - MINOR: lua: core: add sleep functions
11016 - MEDIUM: lua: socket: add "socket" class for TCP I/O
11017 - MINOR: lua: core: pattern and acl manipulation
11018 - MINOR: lua: channel: add "channel" class
11019 - MINOR: lua: txn: object "txn" provides two objects "channel"
11020 - MINOR: lua: core: can set the nice of the current task
11021 - MINOR: lua: core: can yield an execution stack
11022 - MINOR: lua: txn: add binding for closing the client connection.
11023 - MEDIUM: lua: Lua initialisation "on demand"
11024 - BUG/MAJOR: lua: send function fails and return bad bytes
11025 - MINOR: remove unused declaration.
11026 - MINOR: lua: remove some #define
11027 - MINOR: lua: use bitfield and macro in place of integer and enum
11028 - MINOR: lua: set skeleton for Lua execution expiration
11029 - MEDIUM: lua: each yielding function returns a wake up time.
11030 - MINOR: lua: adds "forced yield" flag
11031 - MEDIUM: lua: interrupt the Lua execution for running other process
11032 - MEDIUM: lua: change the sleep function core
11033 - BUG/MEDIUM: lua: the execution timeout is ignored in yield case
11034 - DOC: lua: Lua configuration documentation
11035 - MINOR: lua: add the struct session in the lua channel struct
11036 - BUG/MINOR: lua: set buffer if it is nnot avalaible.
11037 - BUG/MEDIUM: lua: reset flags before resuming execution
11038 - BUG/MEDIUM: lua: fix infinite loop about channel
11039 - BUG/MEDIUM: lua: the Lua process is not waked up after sending data on requests side
11040 - BUG/MEDIUM: lua: many errors when we try to send data with the channel API
11041 - MEDIUM: lua: use the Lua-5.3 version of the library
11042 - BUG/MAJOR: lua: some function are not yieldable, the forced yield causes errors
11043 - BUG/MEDIUM: lua: can't handle the response bytes
11044 - BUG/MEDIUM: lua: segfault with buffer_replace2
11045 - BUG/MINOR: lua: check buffers before initializing socket
11046 - BUG/MINOR: log: segfault if there are no proxy reference
11047 - BUG/MEDIUM: lua: sockets don't have buffer to write data
11048 - BUG/MEDIUM: lua: cannot connect socket
11049 - BUG/MINOR: lua: sockets receive behavior doesn't follows the specs
11050 - BUG/BUILD: lua: The strict Lua 5.3 version check is not done.
11051 - BUG/MEDIUM: buffer: one byte miss in buffer free space check
11052 - MEDIUM: lua: make the functions hlua_gethlua() and hlua_sethlua() faster
11053 - MINOR: replace the Core object by a simple model.
11054 - MEDIUM: lua: change the objects configuration
11055 - MEDIUM: lua: create a namespace for the fetches
11056 - MINOR: converters: add function to browse converters
11057 - MINOR: lua: wrapper for converters
11058 - MINOR: lua: replace function (req|get)_channel by a variable
11059 - MINOR: lua: fetches and converters can return an empty string in place of nil
11060 - DOC: lua api
11061 - BUG/MEDIUM: sample: fix random number upper-bound
11062 - BUG/MINOR: stats:Fix incorrect printf type.
11063 - BUG/MAJOR: session: revert all the crappy client-side timeout changes
11064 - BUG/MINOR: logs: properly initialize and count log sockets
11065 - BUG/MEDIUM: http: fetch "base" is not compatible with set-header
11066 - BUG/MINOR: counters: do not untrack counters before logging
11067 - BUG/MAJOR: sample: correctly reinitialize sample fetch context before calling sample_process()
11068 - MINOR: stick-table: make stktable_fetch_key() indicate why it failed
11069 - BUG/MEDIUM: counters: fix track-sc* to wait on unstable contents
11070 - BUILD: remove TODO from the spec file and add README
11071 - MINOR: log: make MAX_SYSLOG_LEN overridable at build time
11072 - MEDIUM: log: support a user-configurable max log line length
11073 - DOC: provide an example of how to use ssl_c_sha1
11074 - BUILD: checks: external checker needs signal.h
11075 - BUILD: checks: kill a minor warning on Solaris in external checks
11076 - BUILD: http: fix isdigit & isspace warnings on Solaris
11077 - BUG/MINOR: listener: set the listener's fd to -1 after deletion
11078 - BUG/MEDIUM: unix: failed abstract socket binding is retryable
11079 - MEDIUM: listener: implement a per-protocol pause() function
11080 - MEDIUM: listener: support rebinding during resume()
11081 - BUG/MEDIUM: unix: completely unbind abstract sockets during a pause()
11082 - DOC: explicitly mention the limits of abstract namespace sockets
11083 - DOC: minor fix on {sc,src}_kbytes_{in,out}
11084 - DOC: fix alphabetical sort of converters
11085 - MEDIUM: stick-table: implement lookup from a sample fetch
11086 - MEDIUM: stick-table: add new converters to fetch table data
11087 - MINOR: samples: add two converters for the date format
11088 - BUG/MAJOR: http: correctly rewind the request body after start of forwarding
11089 - DOC: remove references to CPU=native in the README
11090 - DOC: mention that "compression offload" is ignored in defaults section
11091 - DOC: mention that Squid correctly responds 400 to PPv2 header
11092 - BUILD: fix dependencies between config and compat.h
11093 - MINOR: session: export the function 'smp_fetch_sc_stkctr'
11094 - MEDIUM: stick-table: make it easier to register extra data types
11095 - BUG/MINOR: http: base32+src should use the big endian version of base32
11096 - MINOR: sample: allow IP address to cast to binary
11097 - MINOR: sample: add new converters to hash input
11098 - MINOR: sample: allow integers to cast to binary
11099 - BUILD: report commit ID in git versions as well
11100 - CLEANUP: session: move the stick counters declarations to stick_table.h
11101 - MEDIUM: http: add the track-sc* actions to http-request rules
11102 - BUG/MEDIUM: connection: fix proxy v2 header again!
11103 - BUG/MAJOR: tcp: fix a possible busy spinning loop in content track-sc*
11104 - OPTIM/MINOR: proxy: reduce struct proxy by 48 bytes on 64-bit archs
11105 - MINOR: log: add a new field "%lc" to implement a per-frontend log counter
11106 - BUG/MEDIUM: http: fix inverted condition in pat_match_meth()
11107 - BUG/MEDIUM: http: fix improper parsing of HTTP methods for use with ACLs
11108 - BUG/MINOR: pattern: remove useless allocation of unused trash in pat_parse_reg()
11109 - BUG/MEDIUM: acl: correctly compute the output type when a converter is used
11110 - CLEANUP: acl: cleanup some of the redundancy and spaghetti after last fix
11111 - BUG/CRITICAL: http: don't update msg->sov once data start to leave the buffer
11112 - MEDIUM: http: enable header manipulation for 101 responses
11113 - BUG/MEDIUM: config: propagate frontend to backend process binding again.
11114 - MEDIUM: config: properly propagate process binding between proxies
11115 - MEDIUM: config: make the frontends automatically bind to the listeners' processes
11116 - MEDIUM: config: compute the exact bind-process before listener's maxaccept
11117 - MEDIUM: config: only warn if stats are attached to multi-process bind directives
11118 - MEDIUM: config: report it when tcp-request rules are misplaced
11119 - DOC: indicate in the doc that track-sc* can wait if data are missing
11120 - MINOR: config: detect the case where a tcp-request content rule has no inspect-delay
11121 - MEDIUM: systemd-wrapper: support multiple executable versions and names
11122 - BUG/MEDIUM: remove debugging code from systemd-wrapper
11123 - BUG/MEDIUM: http: adjust close mode when switching to backend
11124 - BUG/MINOR: config: don't propagate process binding on fatal errors.
11125 - BUG/MEDIUM: check: rule-less tcp-check must detect connect failures
11126 - BUG/MINOR: tcp-check: report the correct failed step in the status
11127 - DOC: indicate that weight zero is reported as DRAIN
11128 - BUG/MEDIUM: config: avoid skipping disabled proxies
11129 - BUG/MINOR: config: do not accept more track-sc than configured
11130 - BUG/MEDIUM: backend: fix URI hash when a query string is present
11131 - BUG/MEDIUM: http: don't dump debug headers on MSG_ERROR
11132 - BUG/MAJOR: cli: explicitly call cli_release_handler() upon error
11133 - BUG/MEDIUM: tcp: fix outgoing polling based on proxy protocol
11134 - BUILD/MINOR: ssl: de-constify "ciphers" to avoid a warning on openssl-0.9.8
11135 - BUG/MEDIUM: tcp: don't use SO_ORIGINAL_DST on non-AF_INET sockets
11136 - BUG/BUILD: revert accidental change in the makefile from latest SSL fix
11137 - BUG/MEDIUM: ssl: force a full GC in case of memory shortage
11138 - MEDIUM: ssl: add support for smaller SSL records
11139 - MINOR: session: release a few other pools when stopping
11140 - MINOR: task: release the task pool when stopping
11141 - BUG/MINOR: config: don't inherit the default balance algorithm in frontends
11142 - BUG/MAJOR: frontend: initialize capture pointers earlier
11143 - BUG/MINOR: stats: correctly set the request/response analysers
11144 - MAJOR: polling: centralize calls to I/O callbacks
11145 - DOC: fix typo in the body parser documentation for msg.sov
11146 - BUG/MINOR: peers: the buffer size is global.tune.bufsize, not trash.size
11147 - MINOR: sample: add a few basic internal fetches (nbproc, proc, stopping)
11148 - DEBUG: pools: apply poisonning on every allocated pool
11149 - BUG/MAJOR: sessions: unlink session from list on out of memory
11150 - BUG/MEDIUM: patterns: previous fix was incomplete
11151 - BUG/MEDIUM: payload: ensure that a request channel is available
11152 - BUG/MINOR: tcp-check: don't condition data polling on check type
11153 - BUG/MEDIUM: tcp-check: don't rely on random memory contents
11154 - BUG/MEDIUM: tcp-checks: disable quick-ack unless next rule is an expect
11155 - BUG/MINOR: config: fix typo in condition when propagating process binding
11156 - BUG/MEDIUM: config: do not propagate processes between stopped processes
11157 - BUG/MAJOR: stream-int: properly check the memory allocation return
11158 - BUG/MEDIUM: memory: fix freeing logic in pool_gc2()
11159 - BUG/MAJOR: namespaces: conn->target is not necessarily a server
11160 - BUG/MEDIUM: compression: correctly report zlib_mem
11161 - CLEANUP: lists: remove dead code
11162 - CLEANUP: memory: remove dead code
11163 - CLEANUP: memory: replace macros pool_alloc2/pool_free2 with functions
11164 - MINOR: memory: cut pool allocator in 3 layers
11165 - MEDIUM: memory: improve pool_refill_alloc() to pass a refill count
11166 - MINOR: stream-int: retrieve session pointer from stream-int
11167 - MINOR: buffer: reset a buffer in b_reset() and not channel_init()
11168 - MEDIUM: buffer: use b_alloc() to allocate and initialize a buffer
11169 - MINOR: buffer: move buffer initialization after channel initialization
11170 - MINOR: buffer: only use b_free to release buffers
11171 - MEDIUM: buffer: always assign a dummy empty buffer to channels
11172 - MEDIUM: buffer: add a new buf_wanted dummy buffer to report failed allocations
11173 - MEDIUM: channel: do not report full when buf_empty is present on a channel
11174 - MINOR: session: group buffer allocations together
11175 - MINOR: buffer: implement b_alloc_fast()
11176 - MEDIUM: buffer: implement b_alloc_margin()
11177 - MEDIUM: session: implement a basic atomic buffer allocator
11178 - MAJOR: session: implement a wait-queue for sessions who need a buffer
11179 - MAJOR: session: only allocate buffers when needed
11180 - MINOR: stats: report a "waiting" flags for sessions
11181 - MAJOR: session: only wake up as many sessions as available buffers permit
11182 - MINOR: config: implement global setting tune.buffers.reserve
11183 - MINOR: config: implement global setting tune.buffers.limit
11184 - MEDIUM: channel: implement a zero-copy buffer transfer
11185 - MEDIUM: stream-int: support splicing from applets
11186 - OPTIM: stream-int: try to send pending spliced data
11187 - CLEANUP: session: remove session_from_task()
11188 - DOC: add missing entry for log-format and clarify the text
11189 - MINOR: logs: add a new per-proxy "log-tag" directive
11190 - BUG/MEDIUM: http: fix header removal when previous header ends with pure LF
11191 - MINOR: config: extend the default max hostname length to 64 and beyond
11192 - BUG/MEDIUM: channel: fix possible integer overflow on reserved size computation
11193 - BUG/MINOR: channel: compare to_forward with buf->i, not buf->size
11194 - MINOR: channel: add channel_in_transit()
11195 - MEDIUM: channel: make buffer_reserved() use channel_in_transit()
11196 - MEDIUM: channel: make bi_avail() use channel_in_transit()
11197 - BUG/MEDIUM: channel: don't schedule data in transit for leaving until connected
11198 - CLEANUP: channel: rename channel_reserved -> channel_is_rewritable
11199 - MINOR: channel: rename channel_full() to !channel_may_recv()
11200 - MINOR: channel: rename buffer_reserved() to channel_reserved()
11201 - MINOR: channel: rename buffer_max_len() to channel_recv_limit()
11202 - MINOR: channel: rename bi_avail() to channel_recv_max()
11203 - MINOR: channel: rename bi_erase() to channel_truncate()
11204 - BUG/MAJOR: log: don't try to emit a log if no logger is set
11205 - MINOR: tools: add new round_2dig() function to round integers
11206 - MINOR: global: always export some SSL-specific metrics
11207 - MINOR: global: report information about the cost of SSL connections
11208 - MAJOR: init: automatically set maxconn and/or maxsslconn when possible
11209 - MINOR: http: add a new fetch "query" to extract the request's query string
11210 - MINOR: hash: add new function hash_crc32
11211 - MINOR: samples: provide a "crc32" converter
11212 - MEDIUM: backend: add the crc32 hash algorithm for load balancing
11213 - BUG/MINOR: args: add missing entry for ARGT_MAP in arg_type_names
11214 - BUG/MEDIUM: http: make http-request set-header compute the string before removal
11215 - MEDIUM: args: use #define to specify the number of bits used by arg types and counts
11216 - MEDIUM: args: increase arg type to 5 bits and limit arg count to 5
11217 - MINOR: args: add type-specific flags for each arg in a list
11218 - MINOR: args: implement a new arg type for regex : ARGT_REG
11219 - MEDIUM: regex: add support for passing regex flags to regex_exec_match()
11220 - MEDIUM: samples: add a regsub converter to perform regex-based transformations
11221 - BUG/MINOR: sample: fix case sensitivity for the regsub converter
11222 - MEDIUM: http: implement http-request set-{method,path,query,uri}
11223 - DOC: fix missing closing brackend on regsub
11224 - MEDIUM: samples: provide basic arithmetic and bitwise operators
11225 - MEDIUM: init: continue to enforce SYSTEM_MAXCONN with auto settings if set
11226 - BUG/MINOR: http: fix incorrect header value offset in replace-hdr/replace-value
11227 - BUG/MINOR: http: abort request processing on filter failure
11228 - MEDIUM: tcp: implement tcp-ut bind option to set TCP_USER_TIMEOUT
11229 - MINOR: ssl/server: add the "no-ssl-reuse" server option
11230 - BUG/MAJOR: peers: initialize s->buffer_wait when creating the session
11231 - MINOR: http: add a new function to iterate over each header line
11232 - MINOR: http: add the new sample fetches req.hdr_names and res.hdr_names
11233 - MEDIUM: task: always ensure that the run queue is consistent
11234 - BUILD: Makefile: add -Wdeclaration-after-statement
11235 - BUILD/CLEANUP: ssl: avoid a warning due to mixed code and declaration
11236 - BUILD/CLEANUP: config: silent 3 warnings about mixed declarations with code
11237 - MEDIUM: protocol: use a family array to index the protocol handlers
11238 - BUILD: lua: cleanup many mixed occurrences declarations & code
11239 - BUG/MEDIUM: task: fix recently introduced scheduler skew
11240 - BUG/MINOR: lua: report the correct function name in an error message
11241 - BUG/MAJOR: http: fix stats regression consecutive to HTTP_RULE_RES_YIELD
11242 - Revert "BUG/MEDIUM: lua: can't handle the response bytes"
11243 - MINOR: lua: convert IP addresses to type string
11244 - CLEANUP: lua: use the same function names in C and Lua
11245 - REORG/MAJOR: move session's req and resp channels back into the session
11246 - CLEANUP: remove now unused channel pool
11247 - REORG/MEDIUM: stream-int: introduce si_ic/si_oc to access channels
11248 - MEDIUM: stream-int: add a flag indicating which side the SI is on
11249 - MAJOR: stream-int: only rely on SI_FL_ISBACK to find the requested channel
11250 - MEDIUM: stream-interface: remove now unused pointers to channels
11251 - MEDIUM: stream-int: make si_sess() use the stream int's side
11252 - MEDIUM: stream-int: use si_task() to retrieve the task from the stream int
11253 - MEDIUM: stream-int: remove any reference to the owner
11254 - CLEANUP: stream-int: add si_ib/si_ob to dereference the buffers
11255 - CLEANUP: stream-int: add si_opposite() to find the other stream interface
11256 - REORG/MEDIUM: channel: only use chn_prod / chn_cons to find stream-interfaces
11257 - MEDIUM: channel: add a new flag "CF_ISRESP" for the response channel
11258 - MAJOR: channel: only rely on the new CF_ISRESP flag to find the SI
11259 - MEDIUM: channel: remove now unused ->prod and ->cons pointers
11260 - CLEANUP: session: simplify references to chn_{prod,cons}(&s->{req,res})
11261 - CLEANUP: session: use local variables to access channels / stream ints
11262 - CLEANUP: session: don't needlessly pass a pointer to the stream-int
11263 - CLEANUP: session: don't use si_{ic,oc} when we know the session.
11264 - CLEANUP: stream-int: limit usage of si_ic/si_oc
11265 - CLEANUP: lua: limit usage of si_ic/si_oc
11266 - MINOR: channel: add chn_sess() helper to retrieve session from channel
11267 - MEDIUM: session: simplify receive buffer allocator to only use the channel
11268 - MEDIUM: lua: use CF_ISRESP to detect the channel's side
11269 - CLEANUP: lua: remove the session pointer from hlua_channel
11270 - CLEANUP: lua: hlua_channel_new() doesn't need the pointer to the session anymore
11271 - MEDIUM: lua: remove struct hlua_channel
11272 - MEDIUM: lua: remove hlua_sample_fetch
11273
Willy Tarreau15480d72014-06-19 21:10:58 +0200112742014/06/19 : 1.6-dev0
11275 - exact copy of 1.5.0
11276
Willy Tarreau9229f122014-06-19 21:01:06 +0200112772014/06/19 : 1.5.0
11278 - MEDIUM: ssl: ignored file names ending as '.issuer' or '.ocsp'.
11279 - MEDIUM: ssl: basic OCSP stapling support.
11280 - MINOR: ssl/cli: Fix unapropriate comment in code on 'set ssl ocsp-response'
11281 - MEDIUM: ssl: add 300s supported time skew on OCSP response update.
11282 - MINOR: checks: mysql-check: Add support for v4.1+ authentication
11283 - MEDIUM: ssl: Add the option to use standardized DH parameters >= 1024 bits
11284 - MEDIUM: ssl: fix detection of ephemeral diffie-hellman key exchange by using the cipher description.
11285 - MEDIUM: http: add actions "replace-header" and "replace-values" in http-req/resp
11286 - MEDIUM: Break out check establishment into connect_chk()
11287 - MEDIUM: Add port_to_str helper
11288 - BUG/MEDIUM: fix ignored values for half-closed timeouts (client-fin and server-fin) in defaults section.
11289 - BUG/MEDIUM: Fix unhandled connections problem with systemd daemon mode and SO_REUSEPORT.
11290 - MINOR: regex: fix a little configuration memory leak.
11291 - MINOR: regex: Create JIT compatible function that return match strings
11292 - MEDIUM: regex: replace all standard regex function by own functions
11293 - MEDIUM: regex: Remove null terminated strings.
11294 - MINOR: regex: Use native PCRE API.
11295 - MINOR: missing regex.h include
11296 - DOC: Add Exim as Proxy Protocol implementer.
11297 - BUILD: don't use type "uint" which is not portable
11298 - BUILD: stats: workaround stupid and bogus -Werror=format-security behaviour
11299 - BUG/MEDIUM: http: clear CF_READ_NOEXP when preparing a new transaction
11300 - CLEANUP: http: don't clear CF_READ_NOEXP twice
11301 - DOC: fix proxy protocol v2 decoder example
11302 - DOC: fix remaining occurrences of "pattern extraction"
11303 - MINOR: log: allow the HTTP status code to be logged even in TCP frontends
11304 - MINOR: logs: don't limit HTTP header captures to HTTP frontends
11305 - MINOR: sample: improve sample_fetch_string() to report partial contents
11306 - MINOR: capture: extend the captures to support non-header keys
11307 - MINOR: tcp: prepare support for the "capture" action
11308 - MEDIUM: tcp: add a new tcp-request capture directive
11309 - MEDIUM: session: allow shorter retry delay if timeout connect is small
11310 - MEDIUM: session: don't apply the retry delay when redispatching
11311 - MEDIUM: session: redispatch earlier when possible
11312 - MINOR: config: warn when tcp-check rules are used without option tcp-check
11313 - BUG/MINOR: connection: make proxy protocol v1 support the UNKNOWN protocol
11314 - DOC: proxy protocol example parser was still wrong
11315 - DOC: minor updates to the proxy protocol doc
11316 - CLEANUP: connection: merge proxy proto v2 header and address block
11317 - MEDIUM: connection: add support for proxy protocol v2 in accept-proxy
11318 - MINOR: tools: add new functions to quote-encode strings
11319 - DOC: clarify the CSV format
11320 - MEDIUM: stats: report the last check and last agent's output on the CSV status
11321 - MINOR: freq_ctr: introduce a new averaging method
11322 - MEDIUM: session: maintain per-backend and per-server time statistics
11323 - MEDIUM: stats: report per-backend and per-server time stats in HTML and CSV outputs
11324 - BUG/MINOR: http: fix typos in previous patch
11325 - DOC: remove the ultra-obsolete TODO file
11326 - DOC: update roadmap
11327 - DOC: minor updates to the README
11328 - DOC: mention the maxconn limitations with the select poller
11329 - DOC: commit a few old design thoughts files
11330
Willy Tarreau2e858402014-05-28 17:50:53 +0200113312014/05/28 : 1.5-dev26
11332 - BUG/MEDIUM: polling: fix possible CPU hogging of worker processes after receiving SIGUSR1.
11333 - BUG/MINOR: stats: fix a typo on a closing tag for a server tracking another one
11334 - OPTIM: stats: avoid the calculation of a useless link on tracking servers in maintenance
11335 - MINOR: fix a few memory usage errors
11336 - CONTRIB: halog: Filter input lines by date and time through timestamp
11337 - MINOR: ssl: SSL_CTX_set_options() and SSL_CTX_set_mode() take a long, not an int
11338 - BUG/MEDIUM: regex: fix risk of buffer overrun in exp_replace()
11339 - MINOR: acl: set "str" as default match for strings
11340 - DOC: Add some precisions about acl default matching method
11341 - MEDIUM: acl: strenghten the option parser to report invalid options
11342 - BUG/MEDIUM: config: a stats-less config crashes in 1.5-dev25
11343 - BUG/MINOR: checks: tcp-check must not stop on '\0' for binary checks
11344 - MINOR: stats: improve alignment of color codes to save one line of header
11345 - MINOR: checks: simplify and improve reporting of state changes when using log-health-checks
11346 - MINOR: server: remove the SRV_DRAIN flag which can always be deduced
11347 - MINOR: server: use functions to detect state changes and to update them
11348 - MINOR: server: create srv_was_usable() from srv_is_usable() and use a pointer
11349 - BUG/MINOR: stats: do not report "100%" in the thottle column when server is draining
11350 - BUG/MAJOR: config: don't free valid regex memory
11351 - BUG/MEDIUM: session: don't clear CF_READ_NOEXP if analysers are not called
11352 - BUG/MINOR: stats: tracking servers may incorrectly report an inherited DRAIN status
11353 - MEDIUM: proxy: make timeout parser a bit stricter
11354 - REORG/MEDIUM: server: split server state and flags in two different variables
11355 - REORG/MEDIUM: server: move the maintenance bits out of the server state
11356 - MAJOR: server: use states instead of flags to store the server state
11357 - REORG: checks: put the functions in the appropriate files !
11358 - MEDIUM: server: properly support and propagate the maintenance status
11359 - MEDIUM: server: allow multi-level server tracking
11360 - CLEANUP: checks: rename the server_status_printf function
11361 - MEDIUM: checks: simplify server up/down/nolb transitions
11362 - MAJOR: checks: move health checks changes to set_server_check_status()
11363 - MINOR: server: make the status reporting function support a reason
11364 - MINOR: checks: simplify health check reporting functions
11365 - MINOR: server: implement srv_set_stopped()
11366 - MINOR: server: implement srv_set_running()
11367 - MINOR: server: implement srv_set_stopping()
11368 - MEDIUM: checks: simplify failure notification using srv_set_stopped()
11369 - MEDIUM: checks: simplify success notification using srv_set_running()
11370 - MEDIUM: checks: simplify stopping mode notification using srv_set_stopping()
11371 - MEDIUM: stats: report a server's own state instead of the tracked one's
11372 - MINOR: server: make use of srv_is_usable() instead of checking eweight
11373 - MAJOR: checks: add support for a new "drain" administrative mode
11374 - MINOR: stats: use the admin flags for soft enable/disable/stop/start on the web page
11375 - MEDIUM: stats: introduce new actions to simplify admin status management
11376 - MINOR: cli: introduce a new "set server" command
11377 - MINOR: stats: report a distinct output for DOWN caused by agent
11378 - MINOR: checks: support specific check reporting for the agent
11379 - MINOR: checks: support a neutral check result
11380 - BUG/MINOR: cli: "agent" was missing from the "enable"/"disable" help message
11381 - MEDIUM: cli: add support for enabling/disabling health checks.
11382 - MEDIUM: stats: report down caused by agent prior to reporting up
11383 - MAJOR: agent: rework the response processing and support additional actions
11384 - MINOR: stats: improve the stats web page to support more actions
11385 - CONTRIB: halog: avoid calling time/localtime/mktime for each line
11386 - DOC: document the workarouds for Google Chrome's bogus pre-connect
11387 - MINOR: stats: report SSL key computations per second
11388 - MINOR: stats: add counters for SSL cache lookups and misses
11389
Willy Tarreaua3393952014-05-10 15:16:43 +0200113902014/05/10 : 1.5-dev25
11391 - MEDIUM: connection: Implement and extented PROXY Protocol V2
11392 - MINOR: ssl: clean unused ACLs declarations
11393 - MINOR: ssl: adds fetchs and ACLs for ssl back connection.
11394 - MINOR: ssl: merge client's and frontend's certificate functions.
11395 - MINOR: ssl: adds ssl_f_sha1 fetch to return frontend's certificate fingerprint
11396 - MINOR: ssl: adds sample converter base64 for binary type.
11397 - MINOR: ssl: convert to binary ssl_fc_unique_id and ssl_bc_unique_id.
11398 - BUG/MAJOR: ssl: Fallback to private session cache if current lock mode is not supported.
11399 - MAJOR: ssl: Change default locks on ssl session cache.
11400 - BUG/MINOR: chunk: Fix function chunk_strcmp and chunk_strcasecmp match a substring.
11401 - MINOR: ssl: add global statement tune.ssl.force-private-cache.
11402 - MINOR: ssl: remove fallback to SSL session private cache if lock init fails.
11403 - BUG/MEDIUM: patterns: last fix was still not enough
11404 - MINOR: http: export the smp_fetch_cookie function
11405 - MINOR: http: generic pointer to rule argument
11406 - BUG/MEDIUM: pattern: a typo breaks automatic acl/map numbering
11407 - BUG/MAJOR: patterns: -i and -n are ignored for inlined patterns
11408 - BUG/MINOR: proxy: unsafe initialization of HTTP transaction when switching from TCP frontend
11409 - BUG/MINOR: http: log 407 in case of proxy auth
11410 - MINOR: http: rely on the message body parser to send 100-continue
11411 - MEDIUM: http: move reqadd after execution of http_request redirect
11412 - MEDIUM: http: jump to dedicated labels after http-request processing
11413 - BUG/MINOR: http: block rules forgot to increment the denied_req counter
11414 - BUG/MINOR: http: block rules forgot to increment the session's request counter
11415 - MEDIUM: http: move Connection header processing earlier
11416 - MEDIUM: http: remove even more of the spaghetti in the request path
11417 - MINOR: http: silently support the "block" action for http-request
11418 - CLEANUP: proxy: rename "block_cond" to "block_rules"
11419 - MEDIUM: http: emulate "block" rules using "http-request" rules
11420 - MINOR: http: remove the now unused loop over "block" rules
11421 - MEDIUM: http: factorize the "auth" action of http-request and stats
11422 - MEDIUM: http: make http-request rules processing return a verdict instead of a rule
11423 - MINOR: config: add minimum support for emitting warnings only once
11424 - MEDIUM: config: inform the user about the deprecatedness of "block" rules
11425 - MEDIUM: config: inform the user that "reqsetbe" is deprecated
11426 - MEDIUM: config: inform the user only once that "redispatch" is deprecated
11427 - MEDIUM: config: warn that '{cli,con,srv}timeout' are deprecated
11428 - BUG/MINOR: auth: fix wrong return type in pat_match_auth()
11429 - BUILD: config: remove a warning with clang
11430 - BUG/MAJOR: http: connection setup may stall on balance url_param
11431 - BUG/MEDIUM: http/session: disable client-side expiration only after body
11432 - BUG/MEDIUM: http: correctly report request body timeouts
11433 - BUG/MEDIUM: http: disable server-side expiration until client has sent the body
11434 - MEDIUM: listener: make the accept function more robust against pauses
11435 - BUILD: syscalls: remove improper inline statement in front of syscalls
11436 - BUILD: ssl: SSL_CTX_set_msg_callback() needs openssl >= 0.9.7
11437 - BUG/MAJOR: session: recover the correct connection pointer in half-initialized sessions
11438 - DOC: add some explanation on the shared cache build options in the readme.
11439 - MEDIUM: proxy: only adjust the backend's bind-process when already set
11440 - MEDIUM: config: limit nbproc to the machine's word size
11441 - MEDIUM: config: check the bind-process settings according to nbproc
11442 - MEDIUM: listener: parse the new "process" bind keyword
11443 - MEDIUM: listener: inherit the process mask from the proxy
11444 - MAJOR: listener: only start listeners bound to the same processes
11445 - MINOR: config: only report a warning when stats sockets are bound to more than 1 process
11446 - CLEANUP: config: set the maxaccept value for peers listeners earlier
11447 - BUG/MINOR: backend: only match IPv4 addresses with RDP cookies
11448 - BUG/MINOR: checks: correctly configure the address family and protocol
11449 - MINOR: tools: split is_addr() and is_inet_addr()
11450 - MINOR: protocols: use is_inet_addr() when only INET addresses are desired
11451 - MEDIUM: unix: add preliminary support for connecting to servers over UNIX sockets
11452 - MEDIUM: checks: only complain about the missing port when the check uses TCP
11453 - MEDIUM: unix: implement support for Linux abstract namespace sockets
11454 - DOC: map_beg was missing from the table of map_* converters
11455 - DOC: ebtree: indicate that prefix insertion/lookup may be used with strings
11456 - MEDIUM: pattern: use ebtree's longest match to index/lookup string beginning
11457 - BUILD: remove the obsolete BSD and OSX makefiles
11458 - MEDIUM: unix: avoid a double connect probe when no data are sent
11459 - DOC: stop referencing the slow git repository in the README
11460 - BUILD: only build the systemd wrapper on Linux 2.6 and above
11461 - DOC: update roadmap with completed tasks
11462 - MEDIUM: session: implement half-closed timeouts (client-fin and server-fin)
11463
Willy Tarreau8860dcd2014-04-26 00:08:14 +0200114642014/04/26 : 1.5-dev24
11465 - MINOR: pattern: find element in a reference
11466 - MEDIUM: http: ACL and MAP updates through http-(request|response) rules
11467 - MEDIUM: ssl: explicitly log failed handshakes after a heartbeat
11468 - DOC: Full section dedicated to the converters
11469 - MEDIUM: http: register http-request and http-response keywords
11470 - BUG/MINOR: compression: correctly report incoming byte count
11471 - BUG/MINOR: http: don't report server aborts as client aborts
11472 - BUG/MEDIUM: channel: bi_putblk() must not wrap before the end of buffer
11473 - CLEANUP: buffers: remove unused function buffer_contig_space_with_res()
11474 - MEDIUM: stats: reimplement HTTP keep-alive on the stats page
11475 - BUG/MAJOR: http: fix timeouts during data forwarding
11476 - BUG/MEDIUM: http: 100-continue responses must process the next part immediately
11477 - MEDIUM: http: move skipping of 100-continue earlier
11478 - BUILD: stats: let gcc know that last_fwd cannot be used uninitialized...
11479 - CLEANUP: general: get rid of all old occurrences of "session *t"
11480 - CLEANUP: http: remove the useless "if (1)" inherited from version 1.4
11481 - BUG/MEDIUM: stats: mismatch between behaviour and doc about front/back
11482 - MEDIUM: http: enable analysers to have keep-alive on stats
11483 - REORG: http: move HTTP Connection response header parsing earlier
11484 - MINOR: stats: always emit HTTP/1.1 in responses
11485 - MINOR: http: add capture.req.ver and capture.res.ver
11486 - MINOR: checks: add a new global max-spread-checks directive
11487 - BUG/MAJOR: http: fix the 'next' pointer when performing a redirect
11488 - MINOR: http: implement the max-keep-alive-queue setting
11489 - DOC: fix alphabetic order of tcp-check
11490 - MINOR: connection: add a new error code for SSL with heartbeat
11491 - MEDIUM: ssl: implement a workaround for the OpenSSL heartbleed attack
11492 - BUG/MEDIUM: Revert "MEDIUM: ssl: Add standardized DH parameters >= 1024 bits"
11493 - BUILD: http: remove a warning on strndup
11494 - BUILD: ssl: avoid a warning about conn not used with OpenSSL < 1.0.1
11495 - BUG/MINOR: ssl: really block OpenSSL's response to heartbleed attack
11496 - MINOR: ssl: finally catch the heartbeats missing the padding
11497
Willy Tarreau8317b282014-04-23 01:49:41 +0200114982014/04/23 : 1.5-dev23
11499 - BUG/MINOR: reject malformed HTTP/0.9 requests
11500 - MINOR: systemd wrapper: re-execute on SIGUSR2
11501 - MINOR: systemd wrapper: improve logging
11502 - MINOR: systemd wrapper: propagate exit status
11503 - BUG/MINOR: tcpcheck connect wrong behavior
11504 - MEDIUM: proxy: support use_backend with dynamic names
11505 - MINOR: stats: Enhancement to stats page to provide information of last session time.
11506 - BUG/MEDIUM: peers: fix key consistency for integer stick tables
11507 - DOC: fix a typo on http-server-close and encapsulate options with double-quotes
11508 - DOC: fix fetching samples syntax
11509 - MINOR: ssl: add ssl_fc_unique_id to fetch TLS Unique ID
11510 - MEDIUM: ssl: Use ALPN support as it will be available in OpenSSL 1.0.2
11511 - DOC: fix typo
11512 - CLEANUP: code style: use tabs to indent codes instead of spaces
11513 - DOC: fix a few config typos.
11514 - BUG/MINOR: raw_sock: also consider ENOTCONN in addition to EAGAIN for recv()
11515 - DOC: lowercase format string in unique-id
11516 - MINOR: set IP_FREEBIND on IPv6 sockets in transparent mode
11517 - BUG/MINOR: acl: req_ssl_sni fails with SSLv3 record version
11518 - BUG/MINOR: build: add missing objects in osx and bsd Makefiles
11519 - BUG/MINOR: build: handle whitespaces in wc -l output
11520 - BUG/MINOR: Fix name lookup ordering when compiled with USE_GETADDRINFO
11521 - MEDIUM: ssl: Add standardized DH parameters >= 1024 bits
11522 - BUG/MEDIUM: map: The map parser includes blank lines.
11523 - BUG/MINOR: log: The log of quotted capture header has been terminated by 2 quotes.
11524 - MINOR: standard: add function "encode_chunk"
11525 - BUG/MINOR: http: fix encoding of samples used in http headers
11526 - MINOR: sample: add hex converter
11527 - MEDIUM: sample: change the behavior of the bin2str cast
11528 - MAJOR: auth: Change the internal authentication system.
11529 - MEDIUM: acl/pattern: standardisation "of pat_parse_int()" and "pat_parse_dotted_ver()"
11530 - MEDIUM: pattern: The pattern parser no more uses <opaque> and just takes one string.
11531 - MEDIUM: pattern: Change the prototype of the function pattern_register().
11532 - CONTRIB: ip6range: add a network IPv6 range to mask converter
11533 - MINOR: pattern: separe list element from the data part.
11534 - MEDIUM: pattern: add indexation function.
11535 - MEDIUM: pattern: The parse functions just return "struct pattern" without memory allocation
11536 - MINOR: pattern: Rename "pat_idx_elt" to "pattern_tree"
11537 - MINOR: sample: dont call the sample cast function "c_none"
11538 - MINOR: standard: Add function for converting cidr to network mask.
11539 - MEDIUM: sample: Remove types SMP_T_CSTR and SMP_T_CBIN, replace it by SMP_F_CONST flags
11540 - MEDIUM: sample/http_proto: Add new type called method
11541 - MINOR: dumpstats: Group map inline help
11542 - MEDIUM: pattern: The function pattern_exec_match() returns "struct pattern" if the patten match.
11543 - MINOR: dumpstats: change map inline sentences
11544 - MINOR: dumpstats: change the "get map" display management
11545 - MINOR: map/dumpstats: The cli cmd "get map ..." display the "int" format.
11546 - MEDIUM: pattern: The match function browse itself the list or the tree.
11547 - MEDIUM: pattern: Index IPv6 addresses in a tree.
11548 - MEDIUM: pattern: add delete functions
11549 - MEDIUM: pattern: add prune function
11550 - MEDIUM: pattern: add sample lookup function.
11551 - MEDIUM: pattern/dumpstats: The function pattern_lookup() is no longer used
11552 - MINOR: map/pattern: The sample parser is stored in the pattern
11553 - MAJOR: pattern/map: Extends the map edition system in the patterns
11554 - MEDIUM: pattern: merge same pattern
11555 - MEDIUM: pattern: The expected type is stored in the pattern head, and conversion is executed once.
11556 - MINOR: pattern: Each pattern is identified by unique id.
11557 - MINOR: pattern/acl: Each pattern of each acl can be load with specified id
11558 - MINOR: pattern: The function "pattern_register()" is no longer used.
11559 - MINOR: pattern: Merge function pattern_add() with pat_ref_push().
11560 - MINOR: pattern: store configuration reference for each acl or map pattern.
11561 - MINOR: pattern: Each pattern expression element store the reference struct.
11562 - MINOR: dumpstats: display the reference for th key/pattern and value.
11563 - MEDIUM: pattern: delete() function uses the pat_ref_elt to find the element to be removed
11564 - MEDIUM: pattern_find_smp: functions find_smp uses the pat_ref_elt to find the element to be removed
11565 - MEDIUM: dumpstats/pattern: display and use each pointer of each pattern dumped
11566 - MINOR: pattern/map/acl: Centralization of the file parsers
11567 - MINOR: pattern: Check if the file reference is not used with acl and map
11568 - MINOR: acl/pattern: Acl "-M" option force to load file as map file with two columns
11569 - MEDIUM: dumpstats: Display error message during add of values.
11570 - MINOR: pattern: The function pat_ref_set() have now atomic behavior
11571 - MINOR: regex: The pointer regstr in the struc regex is no longer used.
11572 - MINOR: cli: Block the usage of the command "acl add" in many cases.
11573 - MINOR: doc: Update the documentation about the map and acl
11574 - MINOR: pattern: index duplicates
11575 - MINOR: configuration: File and line propagation
11576 - MINOR: dumpstat/conf: display all the configuration lines that using pattern reference
11577 - MINOR: standard: Disable ip resolution during the runtime
11578 - MINOR: pattern: Remove the flag "PAT_F_FROM_FILE".
11579 - MINOR: pattern: forbid dns resolutions
11580 - DOC: document "get map" / "get acl" on the CLI
11581 - MEDIUM: acl: Change the acl register struct
11582 - BUG/MEDIUM: acl: boolean only matches were broken by recent changes
11583 - DOC: pattern: pattern organisation schematics
11584 - MINOR: pattern/cli: Update used terms in documentation and cli
11585 - MINOR: cli: remove information about acl or map owner.
11586 - MINOR: session: don't always assume there's a listener
11587 - MINOR: pattern: Add function to prune and reload pattern list.
11588 - MINOR: standard: Add ipv6 support in the function url2sa().
11589 - MEDIUM: config: Dynamic sections.
11590 - BUG/MEDIUM: stick-table: fix IPv4-to-IPv6 conversion in src_* fetches
11591 - MINOR: http: Add the "language" converter to for use with accept-language
11592 - BUG/MINOR: log: Don't dump empty unique-id
11593 - BUG/MAJOR: session: fix a possible crash with src_tracked
11594 - DOC: Update "language" documentation
11595 - MINOR: http: add the function "del-header" to the directives http-request and http-response
11596 - DOC: add some information on capture.(req|res).hdr
11597 - MINOR: http: capture.req.method and capture.req.uri
11598 - MINOR: http: optimize capture.req.method and capture.req.uri
11599 - MINOR: session: clean up the connection free code
11600 - BUG/MEDIUM: checks: immediately report a connection success
11601 - MEDIUM: connection: don't use real send() flags in snd_buf()
11602 - OPTIM: ssl: implement dynamic record size adjustment
11603 - MINOR: stats: report exact last session time in backend too
11604 - BUG/MEDIUM: stats: the "lastsess" field must appear last in the CSV.
11605 - BUG/MAJOR: check: fix memory leak in "tcp-check connect" over SSL
11606 - BUG/MINOR: channel: initialize xfer_small/xfer_large on new buffers
11607 - MINOR: channel: add the date of last read in the channel
11608 - MEDIUM: stream-int: automatically disable CF_STREAMER flags after idle
11609 - MINOR: ssl: add DEFAULT_SSL_MAX_RECORD to set the record size at build time
11610 - MINOR: config: make the stream interface idle timer user-configurable
11611 - MINOR: config: add global directives to set default SSL ciphers
11612 - MINOR: sample: add a rand() sample fetch to return a sample.
11613 - BUG/MEDIUM: config: immediately abort if peers section has no name
11614 - BUG/MINOR: ssl: fix syntax in config error message
11615 - BUG/MEDIUM: ssl: always send a full buffer after EAGAIN
11616 - BUG/MINOR: config: server on-marked-* statement is ignored in default-server
11617 - BUG/MEDIUM: backend: prefer-last-server breaks redispatch
11618 - BUG/MEDIUM: http: continue to emit 503 on keep-alive to different server
11619 - MEDIUM: acl: fix pattern type for payload / payload_lv
11620 - BUG/MINOR: config: fix a crash on startup when a disabled backend references a peer
11621 - BUG/MEDIUM: compression: fix the output type of the compressor name
11622 - BUG/MEDIUM: http: don't start to forward request data before the connect
11623 - MINOR: http: release compression context only in http_end_txn()
11624 - MINOR: protect ebimtree/ebistree against multiple inclusions
11625 - MEDIUM: proxy: create a tree to store proxies by name
11626 - MEDIUM: proxy: make findproxy() use trees to look up proxies
11627 - MEDIUM: proxy: make get_backend_server() use findproxy() to lookup proxies
11628 - MEDIUM: stick-table: lookup table names using trees.
11629 - MEDIUM: config: faster lookup for duplicated proxy name
11630 - CLEANUP: acl: remove obsolete test in parse_acl_expr()
11631 - MINOR: sample: move smp_to_type to sample.c
11632 - MEDIUM: compression: consider the "q=" attribute in Accept-Encoding
11633 - REORG: cfgparse: move server keyword parsing to server.c
11634 - BUILD: adjust makefile for AIX 5.1
11635 - BUG/MEDIUM: pattern: fix wrong definition of the pat_prune_fcts array
11636 - CLEANUP: pattern: move array definitions to proto/ and not types/
11637 - BUG/MAJOR: counters: check for null-deref when looking up an alternate table
11638 - BUILD: ssl: previous patch failed
11639 - BUILD/MEDIUM: standard: get rid of the last strcpy()
11640 - BUILD/MEDIUM: standard: get rid of sprintf()
11641 - BUILD/MEDIUM: cfgparse: get rid of sprintf()
11642 - BUILD/MEDIUM: checks: get rid of sprintf()
11643 - BUILD/MEDIUM: http: remove calls to sprintf()
11644 - BUG/MEDIUM: systemd-wrapper: fix locating of haproxy binary
11645 - BUILD/MINOR: ssl: remove one call to sprintf()
11646 - MEDIUM: http: don't reject anymore message bodies not containing the url param
11647 - MEDIUM: http: wait for the first chunk or message body length in http_process_body
11648 - CLEANUP: http: rename http_process_request_body()
11649 - CLEANUP: http: prepare dedicated processing for chunked encoded message bodies
11650 - MINOR: http: make msg->eol carry the last CRLF length
11651 - MAJOR: http: do not use msg->sol while processing messages or forwarding data
11652 - MEDIUM: http: http_parse_chunk_crlf() must not advance the buffer pointer
11653 - MAJOR: http: don't update msg->sov anymore while processing the body
11654 - MINOR: http: add a small helper to compute the amount of body bytes present
11655 - MEDIUM: http: add a small helper to compute how far to rewind to find headers
11656 - MINOR: http: add a small helper to compute how far to rewind to find URI
11657 - MEDIUM: http: small helpers to compute how far to rewind to find BODY and DATA
11658 - MAJOR: http: reset msg->sov after headers are forwarded
11659 - MEDIUM: http: forward headers again while waiting for connection to complete
11660 - BUG/MINOR: http: deinitialize compression after a parsing error
11661 - BUG/MINOR: http: deinitialize compression after a compression error
11662 - MEDIUM: http: headers must be forwarded even if data was already inspected
11663 - MAJOR: http: re-enable compression on chunked encoding
11664 - MAJOR: http/compression: fix chunked-encoded response processing
11665 - MEDIUM: http: cleanup: centralize a little bit HTTP compression end
11666 - MEDIUM: http: start to centralize the forwarding code
11667 - MINOR: http: further cleanups of response forwarding function
11668 - MEDIUM: http: only allocate the temporary compression buffer when needed
11669 - MAJOR: http: centralize data forwarding in the request path
11670 - CLEANUP: http: document the response forwarding states
11671 - CLEANUP: http: remove all calls to http_silent_debug()
11672 - DOC: internal: add some reminders about HTTP parsing and pointer states
11673 - BUG/MAJOR: http: fix bug in parse_qvalue() when selecting compression algo
11674 - BUG/MINOR: stats: last session was not always set
11675 - DOC: add pointer to the Cyril's HTML doc in the README
11676 - MEDIUM: config: relax use_backend check to make the condition optional
11677 - MEDIUM: config: report misplaced http-request rules
11678 - MEDIUM: config: report misplaced use-server rules
11679 - DOC: update roadmap with what was done.
11680
Willy Tarreau1a34d572014-02-03 00:41:29 +0100116812014/02/03 : 1.5-dev22
11682 - MEDIUM: tcp-check new feature: connect
11683 - MEDIUM: ssl: Set verify 'required' as global default for servers side.
11684 - MINOR: ssl: handshake optim for long certificate chains.
11685 - BUG/MINOR: pattern: pattern comparison executed twice
11686 - BUG/MEDIUM: map: segmentation fault with the stats's socket command "set map ..."
11687 - BUG/MEDIUM: pattern: Segfault in binary parser
11688 - MINOR: pattern: move functions for grouping pat_match_* and pat_parse_* and add documentation.
11689 - MINOR: standard: The parse_binary() returns the length consumed and his documentation is updated
11690 - BUG/MINOR: payload: the patterns of the acl "req.ssl_ver" are no parsed with the good function.
11691 - BUG/MEDIUM: pattern: "pat_parse_dotted_ver()" set bad expect_type.
11692 - BUG/MINOR: sample: The c_str2int converter does not fail if the entry is not an integer
11693 - BUG/MEDIUM: http/auth: Sometimes the authentication credentials can be mix between two requests
11694 - MINOR: doc: Bad cli function name.
11695 - MINOR: http: smp_fetch_capture_header_* fetch captured headers
11696 - BUILD: last release inadvertently prepended a "+" in front of the date
11697 - BUG/MEDIUM: stream-int: fix the keep-alive idle connection handler
11698 - BUG/MEDIUM: backend: do not re-initialize the connection's context upon reuse
11699 - BUG: Revert "OPTIM/MEDIUM: epoll: fuse active events into polled ones during polling changes"
11700 - BUG/MINOR: checks: successful check completion must not re-enable MAINT servers
11701 - MINOR: http: try to stick to same server after status 401/407
11702 - BUG/MINOR: http: always disable compression on HTTP/1.0
11703 - OPTIM: poll: restore polling after a poll/stop/want sequence
11704 - OPTIM: http: don't stop polling for read on the client side after a request
11705 - BUG/MEDIUM: checks: unchecked servers could not be enabled anymore
11706 - BUG/MEDIUM: stats: the web interface must check the tracked servers before enabling
11707 - BUG/MINOR: channel: CHN_INFINITE_FORWARD must be unsigned
11708 - BUG/MINOR: stream-int: do not clear the owner upon unregister
11709 - MEDIUM: stats: add support for HTTP keep-alive on the stats page
11710 - BUG/MEDIUM: stats: fix HTTP/1.0 breakage introduced in previous patch
11711 - Revert "MEDIUM: stats: add support for HTTP keep-alive on the stats page"
11712 - MAJOR: channel: add a new flag CF_WAKE_WRITE to notify the task of writes
11713 - OPTIM: session: set the READ_DONTWAIT flag when connecting
11714 - BUG/MINOR: http: don't clear the SI_FL_DONT_WAKE flag between requests
11715 - MINOR: session: factor out the connect time measurement
11716 - MEDIUM: session: prepare to support earlier transitions to the established state
11717 - MEDIUM: stream-int: make si_connect() return an established state when possible
11718 - MINOR: checks: use an inline function for health_adjust()
11719 - OPTIM: session: put unlikely() around the freewheeling code
11720 - MEDIUM: config: report a warning when multiple servers have the same name
11721 - BUG: Revert "OPTIM: poll: restore polling after a poll/stop/want sequence"
11722 - BUILD/MINOR: listener: remove a glibc warning on accept4()
11723 - BUG/MAJOR: connection: fix mismatch between rcv_buf's API and usage
11724 - BUILD: listener: fix recent accept4() again
11725 - BUG/MAJOR: ssl: fix breakage caused by recent fix abf08d9
11726 - BUG/MEDIUM: polling: ensure we update FD status when there's no more activity
11727 - MEDIUM: listener: fix polling management in the accept loop
11728 - MINOR: protocol: improve the proto->drain() API
11729 - MINOR: connection: add a new conn_drain() function
11730 - MEDIUM: tcp: report in tcp_drain() that lingering is already disabled on close
11731 - MEDIUM: connection: update callers of ctrl->drain() to use conn_drain()
11732 - MINOR: connection: add more error codes to report connection errors
11733 - MEDIUM: tcp: report connection error at the connection level
11734 - MEDIUM: checks: make use of chk_report_conn_err() for connection errors
11735 - BUG/MEDIUM: unique_id: HTTP request counter is not stable
11736 - DOC: fix misleading information about SIGQUIT
11737 - BUG/MAJOR: fix freezes during compression
11738 - BUG/MEDIUM: stream-interface: don't wake the task up before end of transfer
11739 - BUILD: fix VERDATE exclusion regex
11740 - CLEANUP: polling: rename "spec_e" to "state"
11741 - DOC: add a diagram showing polling state transitions
11742 - REORG: polling: rename "spec_e" to "state" and "spec_p" to "cache"
11743 - REORG: polling: rename "fd_spec" to "fd_cache"
11744 - REORG: polling: rename the cache allocation functions
11745 - REORG: polling: rename "fd_process_spec_events()" to "fd_process_cached_events()"
11746 - MAJOR: polling: rework the whole polling system
11747 - MAJOR: connection: remove the CO_FL_WAIT_{RD,WR} flags
11748 - MEDIUM: connection: remove conn_{data,sock}_poll_{recv,send}
11749 - MEDIUM: connection: add check for readiness in I/O handlers
11750 - MEDIUM: stream-interface: the polling flags must always be updated in chk_snd_conn
11751 - MINOR: stream-interface: no need to call fd_stop_both() on error
11752 - MEDIUM: connection: no need to recheck FD state
11753 - CLEANUP: connection: use conn_ctrl_ready() instead of checking the flag
11754 - CLEANUP: connection: use conn_xprt_ready() instead of checking the flag
11755 - CLEANUP: connection: fix comments in connection.h to reflect new behaviour.
11756 - OPTIM: raw-sock: don't speculate after a short read if polling is enabled
11757 - MEDIUM: polling: centralize polled events processing
11758 - MINOR: polling: create function fd_compute_new_polled_status()
11759 - MINOR: cli: add more information to the "show info" output
11760 - MEDIUM: listener: add support for limiting the session rate in addition to the connection rate
11761 - MEDIUM: listener: apply a limit on the session rate submitted to SSL
11762 - REORG: stats: move the stats socket states to dumpstats.c
11763 - MINOR: cli: add the new "show pools" command
11764 - BUG/MEDIUM: counters: flush content counters after each request
11765 - BUG/MEDIUM: counters: fix stick-table entry leak when using track-sc2 in connection
11766 - MINOR: tools: add very basic support for composite pointers
11767 - MEDIUM: counters: stop relying on session flags at all
11768 - BUG/MINOR: cli: fix missing break in command line parser
11769 - BUG/MINOR: config: correctly report when log-format headers require HTTP mode
11770 - MAJOR: http: update connection mode configuration
11771 - MEDIUM: http: make keep-alive + httpclose be passive mode
11772 - MAJOR: http: switch to keep-alive mode by default
11773 - BUG/MEDIUM: http: fix regression caused by recent switch to keep-alive by default
11774 - BUG/MEDIUM: listener: improve detection of non-working accept4()
11775 - BUILD: listener: add fcntl.h and unistd.h
11776 - BUG/MINOR: raw_sock: correctly set the MSG_MORE flag
11777
Willy Tarreau6b07bf72013-12-17 00:45:49 +0100117782013/12/17 : 1.5-dev21
11779 - MINOR: stats: don't use a monospace font to report numbers
11780 - MINOR: session: remove debugging code
11781 - BUG/MAJOR: patterns: fix double free caused by loading strings from files
11782 - MEDIUM: http: make option http_proxy automatically rewrite the URL
11783 - BUG/MEDIUM: http: cook_cnt() forgets to set its output type
11784 - BUG/MINOR: stats: correctly report throttle rate of low weight servers
11785 - BUG/MEDIUM: checks: servers must not start in slowstart mode
11786 - BUG/MINOR: acl: parser must also stop at comma on ACL-only keywords
11787 - MEDIUM: stream-int: implement a very simplistic idle connection manager
11788 - DOC: update the ROADMAP file
11789
Willy Tarreau11f64d62013-12-16 02:32:37 +0100117902013/12/16 : 1.5-dev20
11791 - DOC: add missing options to the manpage
11792 - DOC: add manpage references to all system calls
11793 - DOC: update manpage reference to haproxy-en.txt
11794 - DOC: remove -s and -l options from the manpage
11795 - DOC: missing information for the "description" keyword
11796 - DOC: missing http-send-name-header keyword in keyword table
11797 - MINOR: tools: function my_memmem() to lookup binary contents
11798 - MEDIUM: checks: add send/expect tcp based check
11799 - MEDIUM: backend: Enhance hash-type directive with an algorithm options
11800 - MEDIUM: backend: Implement avalanche as a modifier of the hashing functions.
11801 - DOC: Documentation for hashing function, with test results.
11802 - BUG/MEDIUM: ssl: potential memory leak using verifyhost
11803 - BUILD: ssl: compilation issue with openssl v0.9.6.
11804 - BUG/MINOR: ssl: potential memory leaks using ssl_c_key_alg or ssl_c_sig_alg.
11805 - MINOR: ssl: optimization of verifyhost on wildcard certificates.
11806 - BUG/MINOR: ssl: verifyhost does not match empty strings on wildcard.
11807 - MINOR: ssl: Add statement 'verifyhost' to "server" statements
11808 - CLEANUP: session: remove event_accept() which was not used anymore
11809 - BUG/MINOR: deinit: free fdinfo while doing cleanup
11810 - DOC: minor typo fix in documentation
11811 - BUG/MEDIUM: server: set the macro for server's max weight SRV_UWGHT_MAX to SRV_UWGHT_RANGE
11812 - BUG/MINOR: use the same check condition for server as other algorithms
11813 - DOC: fix typo in comments
11814 - BUG/MINOR: deinit: free server map which is allocated in init_server_map()
11815 - CLEANUP: stream_interface: cleanup loop information in si_conn_send_loop()
11816 - MINOR: buffer: align the last output line of buffer_dump()
11817 - MINOR: buffer: align the last output line if there are less than 8 characters left
11818 - DOC: stick-table: modify the description
11819 - OPTIM: stream_interface: return directly if the connection flag CO_FL_ERROR has been set
11820 - CLEANUP: code style: use tabs to indent codes
11821 - DOC: checkcache: block responses with cacheable cookies
11822 - BUG/MINOR: check_config_validity: check the returned value of stktable_init()
11823 - MEDIUM: haproxy-systemd-wrapper: Use haproxy in same directory
11824 - MEDIUM: systemd-wrapper: Kill child processes when interrupted
11825 - LOW: systemd-wrapper: Write debug information to stdout
11826 - BUG/MINOR: http: fix "set-tos" not working in certain configurations
11827 - MEDIUM: http: add IPv6 support for "set-tos"
11828 - DOC: ssl: update build instructions to use new SSL_* variables
11829 - BUILD/MINOR: systemd: fix compiler warning about unused result
11830 - url32+src - like base32+src but whole url including parameters
11831 - BUG/MINOR: fix forcing fastinter in "on-error"
11832 - CLEANUP: Make parameters of srv_downtime and srv_getinter const
11833 - CLEANUP: Remove unused 'last_slowstart_change' field from struct peer
11834 - MEDIUM: Split up struct server's check element
11835 - MEDIUM: Move result element to struct check
11836 - MEDIUM: Paramatise functions over the check of a server
11837 - MEDIUM: cfgparse: Factor out check initialisation
11838 - MEDIUM: Add state to struct check
11839 - MEDIUM: Move health element to struct check
11840 - MEDIUM: Add helper for task creation for checks
11841 - MEDIUM: Add helper function for failed checks
11842 - MEDIUM: Log agent fail, stopped or down as info
11843 - MEDIUM: Remove option lb-agent-chk
11844 - MEDIUM: checks: Add supplementary agent checks
11845 - MEDIUM: Do not mark a server as down if the agent is unavailable
11846 - MEDIUM: Set rise and fall of agent checks to 1
11847 - MEDIUM: Add enable and disable agent unix socket commands
11848 - MEDIUM: Add DRAIN state and report it on the stats page
11849 - BUILD/MINOR: missing header file
11850 - CLEANUP: regex: Create regex_comp function that compiles regex using compilation options
11851 - CLEANUP: The function "regex_exec" needs the string length but in many case they expect null terminated char.
11852 - MINOR: http: some exported functions were not in the header file
11853 - MINOR: http: change url_decode to return the size of the decoded string.
11854 - BUILD/MINOR: missing header file
11855 - BUG/MEDIUM: sample: The function v4tov6 cannot support input and output overlap
11856 - BUG/MINOR: arg: fix error reporting for add-header/set-header sample fetch arguments
11857 - MINOR: sample: export the generic sample conversion parser
11858 - MINOR: sample: export sample_casts
11859 - MEDIUM: acl: use the fetch syntax 'fetch(args),conv(),conv()' into the ACL keyword
11860 - MINOR: stick-table: use smp_expr_output_type() to retrieve the output type of a "struct sample_expr"
11861 - MINOR: sample: provide the original sample_conv descriptor struct to the argument checker function.
11862 - MINOR: tools: Add a function to convert buffer to an ipv6 address
11863 - MINOR: acl: export acl arrays
11864 - MINOR: acl: Extract the pattern parsing and indexation from the "acl_read_patterns_from_file()" function
11865 - MINOR: acl: Extract the pattern matching function
11866 - MINOR: sample: Define new struct sample_storage
11867 - MEDIUM: acl: associate "struct sample_storage" to each "struct acl_pattern"
11868 - REORG: acl/pattern: extract pattern matching from the acl file and create pattern.c
11869 - MEDIUM: pattern: create pattern expression
11870 - MEDIUM: pattern: rename "acl" prefix to "pat"
11871 - MEDIUM: sample: let the cast functions set their output type
11872 - MINOR: sample: add a private field to the struct sample_conv
11873 - MINOR: map: Define map types
11874 - MEDIUM: sample: add the "map" converter
11875 - MEDIUM: http: The redirect strings follows the log format rules.
11876 - BUG/MINOR: acl: acl parser does not recognize empty converter list
11877 - BUG/MINOR: map: The map list was declared in the map.h file
11878 - MINOR: map: Cleanup the initialisation of map descriptors.
11879 - MEDIUM: map: merge identical maps
11880 - BUG/MEDIUM: pattern: Pattern node has type of "struct pat_idx_elt" in place of "struct eb_node"
11881 - BUG/MEDIUM: map: Bad map file parser
11882 - CLEANUP/MINOR: standard: use the system define INET6_ADDRSTRLEN in place of MAX_IP6_LEN
11883 - BUG/MEDIUM: sample: conversion from str to ipv6 may read data past end
11884 - MINOR: map: export map_get_reference() function
11885 - MINOR: pattern: Each pattern sets the expected input type
11886 - MEDIUM: acl: Last patch change the output type
11887 - MEDIUM: pattern: Extract the index process from the pat_parse_*() functions
11888 - MINOR: standard: The function parse_binary() can use preallocated buffer
11889 - MINOR: regex: Change the struct containing regex
11890 - MINOR: regex: Copy the original regex expression into string.
11891 - MINOR: pattern: add support for compiling patterns for lookups
11892 - MINOR: pattern: make the pattern matching function return a pointer to the matched element
11893 - MINOR: map: export parse output sample functions
11894 - MINOR: pattern: add function to lookup a specific entry in pattern list
11895 - MINOR: pattern/map: Each pattern must free the associated sample
11896 - MEDIUM: dumpstat: make the CLI parser understand the backslash as an escape char
11897 - MEDIUM: map: dynamic manipulation of maps
11898 - BUG/MEDIUM: unique_id: junk in log on empty unique_id
11899 - BUG/MINOR: log: junk at the end of syslog packet
11900 - MINOR: Makefile: provide cscope rule
11901 - DOC: compression: chunk are not compressed anymore
11902 - MEDIUM: session: disable lingering on the server when the client aborts
11903 - BUG/MEDIUM: prevent gcc from moving empty keywords lists into BSS
11904 - DOC: remove the comment saying that SSL certs are not checked on the server side
11905 - BUG: counters: third counter was not stored if others unset
11906 - BUG/MAJOR: http: don't emit the send-name-header when no server is available
11907 - BUG/MEDIUM: http: "option checkcache" fails with the no-cache header
11908 - BUG/MAJOR: http: sample prefetch code was not properly migrated
11909 - BUG/MEDIUM: splicing: fix abnormal CPU usage with splicing
11910 - BUG/MINOR: stream_interface: don't call chk_snd() on polled events
11911 - OPTIM: splicing: use splice() for the last block when relevant
11912 - MEDIUM: sample: handle comma-delimited converter list
11913 - MINOR: sample: fix sample_process handling of unstable data
11914 - CLEANUP: acl: move the 3 remaining sample fetches to samples.c
11915 - MINOR: sample: add a new "date" fetch to return the current date
11916 - MINOR: samples: add the http_date([<offset>]) sample converter.
11917 - DOC: minor improvements to the part on the stats socket.
11918 - MEDIUM: sample: systematically pass the keyword pointer to the keyword
11919 - MINOR: payload: split smp_fetch_rdp_cookie()
11920 - MINOR: counters: factor out smp_fetch_sc*_tracked
11921 - MINOR: counters: provide a generic function to retrieve a stkctr for sc* and src.
11922 - MEDIUM: counters: factor out smp_fetch_sc*_get_gpc0
11923 - MEDIUM: counters: factor out smp_fetch_sc*_gpc0_rate
11924 - MEDIUM: counters: factor out smp_fetch_sc*_inc_gpc0
11925 - MEDIUM: counters: factor out smp_fetch_sc*_clr_gpc0
11926 - MEDIUM: counters: factor out smp_fetch_sc*_conn_cnt
11927 - MEDIUM: counters: factor out smp_fetch_sc*_conn_rate
11928 - MEDIUM: counters: factor out smp_fetch_sc*_conn_cur
11929 - MEDIUM: counters: factor out smp_fetch_sc*_sess_cnt
11930 - MEDIUM: counters: factor out smp_fetch_sc*_sess_rate
11931 - MEDIUM: counters: factor out smp_fetch_sc*_http_req_cnt
11932 - MEDIUM: counters: factor out smp_fetch_sc*_http_req_rate
11933 - MEDIUM: counters: factor out smp_fetch_sc*_http_err_cnt
11934 - MEDIUM: counters: factor out smp_fetch_sc*_http_err_rate
11935 - MEDIUM: counters: factor out smp_fetch_sc*_kbytes_in
11936 - MEDIUM: counters: factor out smp_fetch_sc*_bytes_in_rate
11937 - MEDIUM: counters: factor out smp_fetch_sc*_kbytes_out
11938 - MEDIUM: counters: factor out smp_fetch_sc*_bytes_out_rate
11939 - MEDIUM: counters: factor out smp_fetch_sc*_trackers
11940 - MINOR: session: make the number of stick counter entries more configurable
11941 - MEDIUM: counters: support passing the counter number as a fetch argument
11942 - MEDIUM: counters: support looking up a key in an alternate table
11943 - MEDIUM: cli: adjust the method for feeding frequency counters in tables
11944 - MINOR: cli: make it possible to enter multiple values at once with "set table"
11945 - MINOR: payload: allow the payload sample fetches to retrieve arbitrary lengths
11946 - BUG/MINOR: cli: "clear table" must not kill entries that don't match condition
11947 - MINOR: ssl: use MAXPATHLEN instead of PATH_MAX
11948 - MINOR: config: warn when a server with no specific port uses rdp-cookie
11949 - BUG/MEDIUM: unique_id: HTTP request counter must be unique!
11950 - DOC: add a mention about the limited chunk size
11951 - BUG/MEDIUM: fix broken send_proxy on FreeBSD
11952 - MEDIUM: stick-tables: flush old entries upon soft-stop
11953 - MINOR: tcp: add new "close" action for tcp-response
11954 - MINOR: payload: provide the "res.len" fetch method
11955 - BUILD: add SSL_INC/SSL_LIB variables to force the path to openssl
11956 - MINOR: http: compute response time before processing headers
11957 - BUG/MINOR: acl: fix improper string size assignment in proxy argument
11958 - BUG/MEDIUM: http: accept full buffers on smp_prefetch_http
11959 - BUG/MINOR: acl: implicit arguments of ACL keywords were not properly resolved
11960 - BUG/MEDIUM: session: risk of crash on out of memory conditions
11961 - BUG/MINOR: peers: set the accept date in outgoing connections
11962 - BUG/MEDIUM: tcp: do not skip tracking rules on second pass
11963 - BUG/MEDIUM: acl: do not evaluate next terms after a miss
11964 - MINOR: acl: add a warning when an ACL keyword is used without any value
11965 - MINOR: tcp: don't use tick_add_ifset() when timeout is known to be set
11966 - BUG/MINOR: acl: remove patterns from the tree before freeing them
11967 - MEDIUM: backend: add support for the wt6 hash
11968 - OPTIM/MEDIUM: epoll: fuse active events into polled ones during polling changes
11969 - OPTIM/MINOR: mark the source address as already known on accept()
11970 - BUG/MINOR: stats: don't count tarpitted connections twice
11971 - CLEANUP: http: homogenize processing of denied req counter
11972 - CLEANUP: http: merge error handling for req* and http-request *
11973 - BUG/MEDIUM: http: fix possible parser crash when parsing erroneous "http-request redirect" rules
11974 - BUG/MINOR: http: fix build warning introduced with url32/url32_src
11975 - BUG/MEDIUM: checks: fix slow start regression after fix attempt
11976 - BUG/MAJOR: server: weight calculation fails for map-based algorithms
11977 - MINOR: stats: report correct throttling percentage for servers in slowstart
11978 - OPTIM: connection: fold the error handling with handshake handling
11979 - MINOR: peers: accept to learn strings of different lengths
11980 - BUG/MAJOR: fix haproxy crash when using server tracking instead of checks
11981 - BUG/MAJOR: check: fix haproxy crash during soft-stop/soft-start
11982 - BUG/MINOR: stats: do not report "via" on tracking servers in maintenance
11983 - BUG/MINOR: connection: fix typo in error message report
11984 - BUG/MINOR: backend: fix target address retrieval in transparent mode
11985 - BUG/MINOR: config: report the correct track-sc number in tcp-rules
11986 - BUG/MINOR: log: fix log-format parsing errors
11987 - DOC: add some information about how to apply converters to samples
11988 - MINOR: acl/pattern: use types different from int to clarify who does what.
11989 - MINOR: pattern: import acl_find_match_name() into pattern.h
11990 - MEDIUM: stick-tables: support automatic conversion from ipv4<->ipv6
11991 - MEDIUM: log-format: relax parsing of '%' followed by unsupported characters
11992 - BUG/MINOR: http: usual deinit stuff in last commit
11993 - BUILD: log: silent a warning about isblank() with latest patches
11994 - BUG/MEDIUM: checks: fix health check regression causing them to depend on declaration order
11995 - BUG/MEDIUM: checks: fix a long-standing issue with reporting connection errors
11996 - BUG/MINOR: checks: don't consider errno and use conn->err_code
11997 - BUG/MEDIUM: checks: also update the DRAIN state from the web interface
11998 - MINOR: stats: remove some confusion between the DRAIN state and NOLB
11999 - BUG/MINOR: tcp: check that no error is pending during a connect probe
12000 - BUG/MINOR: connection: check EINTR when sending a PROXY header
12001 - MEDIUM: connection: set the socket shutdown flags on socket errors
12002 - BUG/MEDIUM: acl: fix regression introduced by latest converters support
12003 - MINOR: connection: clear errno prior to checking for errors
12004 - BUG/MINOR: checks: do not trust errno in write event before any syscall
12005 - MEDIUM: checks: centralize error reporting
12006 - OPTIM: checks: don't poll on recv when using plain TCP connects
12007 - OPTIM: checks: avoid setting SO_LINGER twice
12008 - MINOR: tools: add a generic binary hex string parser
12009 - BUG/MEDIUM: checks: tcp-check: do not poll when there's nothing to send
12010 - BUG/MEDIUM: check: tcp-check might miss some outgoing data when socket buffers are full
12011 - BUG/MEDIUM: args: fix double free on error path in argument expression parser
12012 - BUG/MINOR: acl: fix sample expression error reporting
12013 - BUG/MINOR: checks: tcp-check actions are enums, not flags
12014 - MEDIUM: checks: make tcp-check perform multiple send() at once
12015 - BUG/MEDIUM: stick: completely remove the unused flag from the store entries
12016 - OPTIM: ebtree: pack the struct eb_node to avoid holes on 64-bit
12017 - BUG/MEDIUM: stick-tables: complete the latest fix about store-responses
12018 - CLEANUP: stream_interface: remove unused field err_loc
12019 - MEDIUM: stats: don't use conn->xprt_st anymore
12020 - MINOR: session: add a simple function to retrieve a session from a task
12021 - MEDIUM: stats: don't use conn->xprt_ctx anymore
12022 - MEDIUM: peers: don't rely on conn->xprt_ctx anymore
12023 - MINOR: http: prevent smp_fetch_url_{ip,port} from using si->conn
12024 - MINOR: connection: make it easier to emit proxy protocol for unknown addresses
12025 - MEDIUM: stats: prepare the HTTP stats I/O handler to support more states
12026 - MAJOR: stats: move the HTTP stats handling to its applet
12027 - MEDIUM: stats: move request argument processing to the final step
12028 - MEDIUM: session: detect applets from the session by using s->target
12029 - MAJOR: session: check for a connection to an applet in sess_prepare_conn_req()
12030 - MAJOR: session: pass applet return traffic through the response analysers
12031 - MEDIUM: stream-int: split the shutr/shutw functions between applet and conn
12032 - MINOR: stream-int: make the shutr/shutw functions void
12033 - MINOR: obj: provide a safe and an unsafe access to pointed objects
12034 - MINOR: connection: add a field to store an object type
12035 - MINOR: connection: always initialize conn->objt_type to OBJ_TYPE_CONN
12036 - MEDIUM: stream interface: move the peers' ptr into the applet context
12037 - MINOR: stream-interface: move the applet context to its own struct
12038 - MINOR: obj: introduce a new type appctx
12039 - MINOR: stream-int: rename ->applet to ->appctx
12040 - MINOR: stream-int: split si_prepare_embedded into si_prepare_none and si_prepare_applet
12041 - MINOR: stream-int: add a new pointer to the end point
12042 - MEDIUM: stream-interface: set the pointer to the applet into the applet context
12043 - MAJOR: stream interface: remove the ->release function pointer
12044 - MEDIUM: stream-int: make ->end point to the connection or the appctx
12045 - CLEANUP: stream-int: remove obsolete si_ctrl function
12046 - MAJOR: stream-int: stop using si->conn and use si->end instead
12047 - MEDIUM: stream-int: do not allocate a connection in parallel to applets
12048 - MEDIUM: session: attach incoming connection to target on embryonic sessions
12049 - MINOR: connection: add conn_init() to (re)initialize a connection
12050 - MINOR: checks: call conn_init() to properly initialize the connection.
12051 - MINOR: peers: make use of conn_init() to initialize the connection
12052 - MINOR: session: use conn_init() to initialize the connections
12053 - MINOR: http: use conn_init() to reinitialize the server connection
12054 - MEDIUM: connection: replace conn_prepare with conn_assign
12055 - MINOR: get rid of si_takeover_conn()
12056 - MINOR: connection: add conn_new() / conn_free()
12057 - MAJOR: connection: add two new flags to indicate readiness of control/transport
12058 - MINOR: stream-interface: introduce si_reset() and si_set_state()
12059 - MINOR: connection: reintroduce conn_prepare to set the protocol and transport
12060 - MINOR: connection: replace conn_assign with conn_attach
12061 - MEDIUM: stream-interface: introduce si_attach_conn to replace si_prepare_conn
12062 - MAJOR: stream interface: dynamically allocate the outgoing connection
12063 - MEDIUM: connection: move the send_proxy offset to the connection
12064 - MINOR: connection: check for send_proxy during the connect(), not the SI
12065 - MEDIUM: connection: merge the send_proxy and local_send_proxy calls
12066 - MEDIUM: stream-int: replace occurrences of si->appctx with si_appctx()
12067 - MEDIUM: stream-int: return the allocated appctx in stream_int_register_handler()
12068 - MAJOR: stream-interface: dynamically allocate the applet context
12069 - MEDIUM: session: automatically register the applet designated by the target
12070 - MEDIUM: stats: delay appctx initialization
12071 - CLEANUP: peers: use less confusing state/status code names
12072 - MEDIUM: peers: delay appctx initialization
12073 - MINOR: stats: provide some appctx information in "show sess all"
12074 - DIET/MINOR: obj: pack the obj_type enum to 8 bits
12075 - DIET/MINOR: connection: rearrange a few fields to save 8 bytes in the struct
12076 - DIET/MINOR: listener: rearrange a few fields in struct listener to save 16 bytes
12077 - DIET/MINOR: proxy: rearrange a few fields in struct proxy to save 16 bytes
12078 - DIET/MINOR: session: reduce the struct session size by 8 bytes
12079 - DIET/MINOR: stream-int: rearrange a few fields in struct stream_interface to save 8 bytes
12080 - DIET/MINOR: http: reduce the size of struct http_txn by 8 bytes
12081 - MINOR: http: switch the http state to an enum
12082 - MINOR: http: use an enum for the auth method in http_auth_data
12083 - DIET/MINOR: task: reduce struct task size by 8 bytes
12084 - MINOR: stream_interface: add reporting of ressouce allocation errors
12085 - MINOR: session: report lack of resources using the new stream-interface's error code
12086 - BUILD: simplify the date and version retrieval in the makefile
12087 - BUILD: prepare the makefile to skip format lines in SUBVERS and VERDATE
12088 - BUILD: use format tags in VERDATE and SUBVERS files
12089 - BUG/MEDIUM: channel: bo_getline() must wait for \n until buffer is full
12090 - CLEANUP: check: server port is unsigned
12091 - BUG/MEDIUM: checks: agent doesn't get the response if server does not closes
12092 - MINOR: tools: buf2ip6 must not modify output on failure
12093 - MINOR: pattern: do not assign SMP_TYPES by default to patterns
12094 - MINOR: sample: make sample_parse_expr() use memprintf() to report parse errors
12095 - MINOR: arg: improve wording on error reporting
12096 - BUG/MEDIUM: sample: simplify and fix the argument parsing
12097 - MEDIUM: acl: fix the argument parser to let the lower layer report detailed errors
12098 - MEDIUM: acl: fix the initialization order of the ACL expression
12099 - CLEANUP: acl: remove useless blind copy-paste from sample converters
12100 - TESTS: add regression tests for ACL and sample expression parsers
12101 - BUILD: time: adapt the type of TV_ETERNITY to the local system
12102 - MINOR: chunks: allocate the trash chunks before parsing the config
12103 - BUILD: definitely silence some stupid GCC warnings
12104 - MINOR: chunks: always initialize the output chunk in get_trash_chunk()
12105 - MINOR: checks: improve handling of the servers tracking chain
12106 - REORG: checks: retrieve the check-specific defines from server.h to checks.h
12107 - MINOR: checks: use an enum instead of flags to report a check result
12108 - MINOR: checks: rename the state flags
12109 - MINOR: checks: replace state DISABLED with CONFIGURED and ENABLED
12110 - MINOR: checks: use check->state instead of srv->state & SRV_CHECKED
12111 - MINOR: checks: fix agent check interval computation
12112 - MINOR: checks: add a PAUSED state for the checks
12113 - MINOR: checks: create the agent tasks even when no check is configured
12114 - MINOR: checks: add a flag to indicate what check is an agent
12115 - MEDIUM: checks: enable agent checks even if health checks are disabled
12116 - BUG/MEDIUM: checks: ensure we can enable a server after boot
12117 - BUG/MEDIUM: checks: tracking servers must not inherit the MAINT flag
12118 - BUG/MAJOR: session: repair tcp-request connection rules
12119 - BUILD: fix SUBVERS extraction in the Makefile
12120 - BUILD: pattern: silence a warning about uninitialized value
12121 - BUILD: log: fix build warning on Solaris
12122 - BUILD: dumpstats: fix build error on Solaris
12123 - DOC: move option pgsql-check to the correct place
12124 - DOC: move option tcp-check to the proper place
12125 - MINOR: connection: add simple functions to report connection readiness
12126 - MEDIUM: connection: centralize handling of nolinger in fd management
12127 - OPTIM: http: set CF_READ_DONTWAIT on response message
12128 - OPTIM: http: do not re-enable reading on client side while closing the server side
12129 - MINOR: config: add option http-keep-alive
12130 - MEDIUM: connection: inform si_alloc_conn() whether existing conn is OK or not
12131 - MAJOR: stream-int: handle the connection reuse in si_connect()
12132 - MAJOR: http: add the keep-alive transition on the server side
12133 - MAJOR: backend: enable connection reuse
12134 - MINOR: http: add option prefer-last-server
12135 - MEDIUM: http: do not report connection errors for second and further requests
12136
Willy Tarreaueab1dc62013-06-17 15:10:25 +0200121372013/06/17 : 1.5-dev19
12138 - MINOR: stats: remove the autofocus on the scope input field
12139 - BUG/MEDIUM: Fix crt-list file parsing error: filtered name was ignored.
12140 - BUG/MEDIUM: ssl: EDH ciphers are not usable if no DH parameters present in pem file.
12141 - BUG/MEDIUM: shctx: makes the code independent on SSL runtime version.
12142 - MEDIUM: ssl: improve crt-list format to support negation
12143 - BUG: ssl: fix crt-list for clients not supporting SNI
12144 - MINOR: stats: show soft-stopped servers in different color
12145 - BUG/MINOR: config: "source" does not work in defaults section
12146 - BUG: regex: fix pcre compile error when using JIT
12147 - MINOR: ssl: add pattern fetch 'ssl_c_sha1'
12148 - BUG: ssl: send payload gets corrupted if tune.ssl.maxrecord is used
12149 - MINOR: show PCRE version and JIT status in -vv
12150 - BUG/MINOR: jit: don't rely on USE flag to detect support
12151 - DOC: readme: add suggestion to link against static openssl
12152 - DOC: examples: provide simplified ssl configuration
12153 - REORG: tproxy: prepare the transparent proxy defines for accepting other OSes
12154 - MINOR: tproxy: add support for FreeBSD
12155 - MINOR: tproxy: add support for OpenBSD
12156 - DOC: examples: provide an example of transparent proxy configuration for FreeBSD 8
12157 - CLEANUP: fix minor typo in error message.
12158 - CLEANUP: fix missing include <string.h> in proto/listener.h
12159 - CLEANUP: protect checks.h from multiple inclusions
12160 - MINOR: compression: acl "res.comp" and fetch "res.comp_algo"
12161 - BUG/MINOR: http: add-header/set-header did not accept the ACL condition
12162 - BUILD: mention in the Makefile that USE_PCRE_JIT is for libpcre >= 8.32
12163 - BUG/MEDIUM: splicing is broken since 1.5-dev12
12164 - BUG/MAJOR: acl: add implicit arguments to the resolve list
12165 - BUG/MINOR: tcp: fix error reporting for TCP rules
12166 - CLEANUP: peers: remove a bit of spaghetti to prepare for the next bugfix
12167 - MINOR: stick-table: allow to allocate an entry without filling it
12168 - BUG/MAJOR: peers: fix an overflow when syncing strings larger than 16 bytes
12169 - MINOR: session: only call http_send_name_header() when changing the server
12170 - MINOR: tcp: report the erroneous word in tcp-request track*
12171 - BUG/MAJOR: backend: consistent hash can loop forever in certain circumstances
12172 - BUG/MEDIUM: log: fix regression on log-format handling
12173 - MEDIUM: log: report file name, line number, and directive name with log-format errors
12174 - BUG/MINOR: cli: "clear table" did not work anymore without a key
12175 - BUG/MINOR: cli: "clear table xx data.xx" does not work anymore
12176 - BUG/MAJOR: http: compression still has defects on chunked responses
12177 - BUG/MINOR: stats: fix confirmation links on the stats interface
12178 - BUG/MINOR: stats: the status bar does not appear anymore after a change
12179 - BUG/MEDIUM: stats: allocate the stats frontend also on "stats bind-process"
12180 - BUG/MEDIUM: stats: fix a regression when dealing with POST requests
12181 - BUG/MINOR: fix unterminated ACL array in compression
12182 - BUILD: last fix broke non-linux platforms
12183 - MINOR: init: indicate the SSL runtime version on -vv.
12184 - BUG/MEDIUM: compression: the deflate algorithm must use global settings as well
12185 - BUILD: stdbool is not portable (again)
12186 - DOC: readme: add a small reminder about restrictions to respect in the code
12187 - MINOR: ebtree: add new eb_next_dup/eb_prev_dup() functions to visit duplicates
12188 - BUG/MINOR: acl: fix a double free during exit when using PCRE_JIT
12189 - DOC: fix wrong copy-paste in the rspdel example
12190 - MINOR: counters: make it easier to extend the amount of tracked counters
12191 - MEDIUM: counters: add support for tracking a third counter
12192 - MEDIUM: counters: add a new "gpc0_rate" counter in stick-tables
12193 - BUG/MAJOR: http: always ensure response buffer has some room for a response
12194 - MINOR: counters: add fetch/acl sc*_tracked to indicate whether a counter is tracked
12195 - MINOR: defaults: allow REQURI_LEN and CAPTURE_LEN to be redefined
12196 - MINOR: log: add a new flag 'L' for locally processed requests
12197 - MINOR: http: add full-length header fetch methods
12198 - MEDIUM: protocol: implement a "drain" function in protocol layers
12199 - MEDIUM: http: add a new "http-response" ruleset
12200 - MEDIUM: http: add the "set-nice" action to http-request and http-response
12201 - MEDIUM: log: add a log level override value in struct session
12202 - MEDIUM: http: add support for action "set-log-level" in http-request/http-response
12203 - MEDIUM: http: add support for "set-tos" in http-request/http-response
12204 - MEDIUM: http: add the "set-mark" action on http-request/http-response rules
12205 - MEDIUM: tcp: add "tcp-request connection expect-proxy layer4"
12206 - MEDIUM: acl: automatically detect the type of certain fetches
12207 - MEDIUM: acl: remove a lot of useless ACLs that are equivalent to their fetches
12208 - MEDIUM: acl: remove 15 additional useless ACLs that are equivalent to their fetches
12209 - DOC: major reorg of ACL + sample fetch
12210 - CLEANUP: http: remove the bogus urlp_ip ACL match
12211 - MINOR: acl: add the new "env()" fetch method to retrieve an environment variable
12212 - BUG/MINOR: acl: correctly consider boolean fetches when doing casts
12213 - BUG/CRITICAL: fix a possible crash when using negative header occurrences
12214 - DOC: update ROADMAP file
12215 - MEDIUM: counters: use sc0/sc1/sc2 instead of sc1/sc2/sc3
12216 - MEDIUM: stats: add proxy name filtering on the statistic page
12217
Willy Tarreau289dd922013-04-03 02:26:31 +0200122182013/04/03 : 1.5-dev18
12219 - DOCS: Add explanation of intermediate certs to crt paramater
12220 - DOC: typo and minor fixes in compression paragraph
12221 - MINOR: config: http-request configuration error message misses new keywords
12222 - DOC: minor typo fix in documentation
12223 - BUG/MEDIUM: ssl: ECDHE ciphers not usable without named curve configured.
12224 - MEDIUM: ssl: add bind-option "strict-sni"
12225 - MEDIUM: ssl: add mapping from SNI to cert file using "crt-list"
12226 - MEDIUM: regex: Use PCRE JIT in acl
12227 - DOC: simplify bind option "interface" explanation
12228 - DOC: tfo: bump required kernel to linux-3.7
12229 - BUILD: add explicit support for TFO with USE_TFO
12230 - MEDIUM: New cli option -Ds for systemd compatibility
12231 - MEDIUM: add haproxy-systemd-wrapper
12232 - MEDIUM: add systemd service
12233 - BUG/MEDIUM: systemd-wrapper: don't leak zombie processes
12234 - BUG/MEDIUM: remove supplementary groups when changing gid
12235 - BUG/MEDIUM: config: fix parser crash with bad bind or server address
12236 - BUG/MINOR: Correct logic in cut_crlf()
12237 - CLEANUP: checks: Make desc argument to set_server_check_status const
12238 - CLEANUP: dumpstats: Make cli_release_handler() static
12239 - MEDIUM: server: Break out set weight processing code
12240 - MEDIUM: server: Allow relative weights greater than 100%
12241 - MEDIUM: server: Tighten up parsing of weight string
12242 - MEDIUM: checks: Add agent health check
12243 - BUG/MEDIUM: ssl: openssl 0.9.8 doesn't open /dev/random before chroot
12244 - BUG/MINOR: time: frequency counters are not totally accurate
12245 - BUG/MINOR: http: don't process abortonclose when request was sent
12246 - BUG/MEDIUM: stream_interface: don't close outgoing connections on shutw()
12247 - BUG/MEDIUM: checks: ignore late resets after valid responses
12248 - DOC: fix bogus recommendation on usage of gpc0 counter
12249 - BUG/MINOR: http-compression: lookup Cache-Control in the response, not the request
12250 - MINOR: signal: don't block SIGPROF by default
12251 - OPTIM: epoll: make use of EPOLLRDHUP
12252 - OPTIM: splice: detect shutdowns and avoid splice() == 0
12253 - OPTIM: splice: assume by default that splice is working correctly
12254 - BUG/MINOR: log: temporary fix for lost SSL info in some situations
12255 - BUG/MEDIUM: peers: only the last peers section was used by tables
12256 - BUG/MEDIUM: config: verbosely reject peers sections with multiple local peers
12257 - BUG/MINOR: epoll: use a fix maxevents argument in epoll_wait()
12258 - BUG/MINOR: config: fix improper check for failed memory alloc in ACL parser
12259 - BUG/MINOR: config: free peer's address when exiting upon parsing error
12260 - BUG/MINOR: config: check the proper variable when parsing log minlvl
12261 - BUG/MEDIUM: checks: ensure the health_status is always within bounds
12262 - BUG/MINOR: cli: show sess should always validate s->listener
12263 - BUG/MINOR: log: improper NULL return check on utoa_pad()
12264 - CLEANUP: http: remove a useless null check
12265 - CLEANUP: tcp/unix: remove useless NULL check in {tcp,unix}_bind_listener()
12266 - BUG/MEDIUM: signal: signal handler does not properly check for signal bounds
12267 - BUG/MEDIUM: tools: off-by-one in quote_arg()
12268 - BUG/MEDIUM: uri_auth: missing NULL check and memory leak on memory shortage
12269 - BUG/MINOR: unix: remove the 'level' field from the ux struct
12270 - CLEANUP: http: don't try to deinitialize http compression if it fails before init
12271 - CLEANUP: config: slowstart is never negative
12272 - CLEANUP: config: maxcompcpuusage is never negative
12273 - BUG/MEDIUM: log: emit '-' for empty fields again
12274 - BUG/MEDIUM: checks: fix a race condition between checks and observe layer7
12275 - BUILD: fix a warning emitted by isblank() on non-c99 compilers
12276 - BUILD: improve the makefile's support for libpcre
12277 - MEDIUM: halog: add support for counting per source address (-ic)
12278 - MEDIUM: tools: make str2sa_range support all address syntaxes
12279 - MEDIUM: config: make use of str2sa_range() instead of str2sa()
12280 - MEDIUM: config: use str2sa_range() to parse server addresses
12281 - MEDIUM: config: use str2sa_range() to parse peers addresses
12282 - MINOR: tests: add a config file to ease address parsing tests.
12283 - MINOR: ssl: add a global tunable for the max SSL/TLS record size
12284 - BUG/MINOR: syscall: fix NR_accept4 system call on sparc/linux
12285 - BUILD/MINOR: syscall: add definition of NR_accept4 for ARM
12286 - MINOR: config: report missing peers section name
12287 - BUG/MEDIUM: tools: fix bad character handling in str2sa_range()
12288 - BUG/MEDIUM: stats: never apply "unix-bind prefix" to the global stats socket
12289 - MINOR: tools: prepare str2sa_range() to return an error message
12290 - BUG/MEDIUM: checks: don't call connect() on unsupported address families
12291 - MINOR: tools: prepare str2sa_range() to accept a prefix
12292 - MEDIUM: tools: make str2sa_range() parse unix addresses too
12293 - MEDIUM: config: make str2listener() use str2sa_range() to parse unix addresses
12294 - MEDIUM: config: use a single str2sa_range() call to parse bind addresses
12295 - MEDIUM: config: use str2sa_range() to parse log addresses
12296 - CLEANUP: tools: remove str2sun() which is not used anymore.
12297 - MEDIUM: config: add complete support for str2sa_range() in dispatch
12298 - MEDIUM: config: add complete support for str2sa_range() in server addr
12299 - MEDIUM: config: add complete support for str2sa_range() in 'server'
12300 - MEDIUM: config: add complete support for str2sa_range() in 'peer'
12301 - MEDIUM: config: add complete support for str2sa_range() in 'source' and 'usesrc'
12302 - CLEANUP: minor cleanup in str2sa_range() and str2ip()
12303 - CLEANUP: config: do not use multiple errmsg at once
12304 - MEDIUM: tools: support specifying explicit address families in str2sa_range()
12305 - MAJOR: listener: support inheriting a listening fd from the parent
12306 - MAJOR: tools: support environment variables in addresses
12307 - BUG/MEDIUM: http: add-header should not emit "-" for empty fields
12308 - BUG/MEDIUM: config: ACL compatibility check on "redirect" was wrong
12309 - BUG/MEDIUM: http: fix another issue caused by http-send-name-header
12310 - DOC: mention the new HTTP 307 and 308 redirect statues
12311 - MEDIUM: poll: do not use FD_* macros anymore
12312 - BUG/MAJOR: ev_select: disable the select() poller if maxsock > FD_SETSIZE
12313 - BUG/MINOR: acl: ssl_fc_{alg,use}_keysize must parse integers, not strings
12314 - BUG/MINOR: acl: ssl_c_used, ssl_fc{,_has_crt,_has_sni} take no pattern
12315 - BUILD: fix usual isdigit() warning on solaris
12316 - BUG/MEDIUM: tools: vsnprintf() is not always reliable on Solaris
12317 - OPTIM: buffer: remove one jump in buffer_count()
12318 - OPTIM: http: improve branching in chunk size parser
12319 - OPTIM: http: optimize the response forward state machine
12320 - BUILD: enable poll() by default in the makefile
12321 - BUILD: add explicit support for Mac OS/X
12322 - BUG/MAJOR: http: use a static storage for sample fetch context
12323 - BUG/MEDIUM: ssl: improve error processing and reporting in ssl_sock_load_cert_list_file()
12324 - BUG/MAJOR: http: fix regression introduced by commit a890d072
12325 - BUG/MAJOR: http: fix regression introduced by commit d655ffe
12326 - BUG/CRITICAL: using HTTP information in tcp-request content may crash the process
12327 - MEDIUM: acl: remove flag ACL_MAY_LOOKUP which is improperly used
12328 - MEDIUM: samples: use new flags to describe compatibility between fetches and their usages
12329 - MINOR: log: indicate it when some unreliable sample fetches are logged
12330 - MEDIUM: samples: move payload-based fetches and ACLs to their own file
12331 - MINOR: backend: rename sample fetch functions and declare the sample keywords
12332 - MINOR: frontend: rename sample fetch functions and declare the sample keywords
12333 - MINOR: listener: rename sample fetch functions and declare the sample keywords
12334 - MEDIUM: http: unify acl and sample fetch functions
12335 - MINOR: session: rename sample fetch functions and declare the sample keywords
12336 - MAJOR: acl: make all ACLs reference the fetch function via a sample.
12337 - MAJOR: acl: remove the arg_mask from the ACL definition and use the sample fetch's
12338 - MAJOR: acl: remove fetch argument validation from the ACL struct
12339 - MINOR: http: add new direction-explicit sample fetches for headers and cookies
12340 - MINOR: payload: add new direction-explicit sample fetches
12341 - CLEANUP: acl: remove ACL hooks which were never used
12342 - MEDIUM: proxy: remove acl_requires and just keep a flag "http_needed"
12343 - MINOR: sample: provide a function to report the name of a sample check point
12344 - MAJOR: acl: convert all ACL requires to SMP use+val instead of ->requires
12345 - CLEANUP: acl: remove unused references to ACL_USE_*
12346 - MINOR: http: replace acl_parse_ver with acl_parse_str
12347 - MEDIUM: acl: move the ->parse, ->match and ->smp fields to acl_expr
12348 - MAJOR: acl: add option -m to change the pattern matching method
12349 - MINOR: acl: remove the use_count in acl keywords
12350 - MEDIUM: acl: have a pointer to the keyword name in acl_expr
12351 - MEDIUM: acl: support using sample fetches directly in ACLs
12352 - MEDIUM: http: remove val_usr() to validate user_lists
12353 - MAJOR: sample: maintain a per-proxy list of the fetch args to resolve
12354 - MINOR: ssl: add support for the "alpn" bind keyword
12355 - MINOR: http: status code 303 is HTTP/1.1 only
12356 - MEDIUM: http: implement redirect 307 and 308
12357 - MINOR: http: status 301 should not be marked non-cacheable
12358
Willy Tarreaua3ecbd92012-12-28 15:04:05 +0100123592012/12/28 : 1.5-dev17
12360 - MINOR: ssl: Setting global tune.ssl.cachesize value to 0 disables SSL session cache.
12361 - BUG/MEDIUM: stats: fix stats page regression introduced by commit 20b0de5
12362 - BUG/MINOR: stats: last fix was still wrong
12363 - BUG/MINOR: stats: http-request rules still don't cope with stats
12364 - BUG/MINOR: http: http-request add-header emits a corrupted header
12365 - BUG/MEDIUM: stats: disable request analyser when processing POST or HEAD
12366 - BUG/MINOR: log: make log-format, unique-id-format and add-header more independant
12367 - BUILD: log: unused variable svid
12368 - CLEANUP: http: rename the misleading http_check_access_rule
12369 - MINOR: http: move redirect rule processing to its own function
12370 - REORG: config: move the http redirect rule parser to proto_http.c
12371 - MEDIUM: http: add support for "http-request redirect" rules
12372 - MEDIUM: http: add support for "http-request tarpit" rule
12373
Willy Tarreau69eda352012-12-24 16:48:14 +0100123742012/12/24 : 1.5-dev16
12375 - BUG/MEDIUM: ssl: Prevent ssl error from affecting other connections.
12376 - BUG/MINOR: ssl: error is not reported if it occurs simultaneously with peer close detection.
12377 - MINOR: ssl: add fetch and acl "ssl_c_used" to check if current SSL session uses a client certificate.
12378 - MINOR: contrib: make the iprange tool grep for addresses
12379 - CLEANUP: polling: gcc doesn't always optimize constants away
12380 - OPTIM: poll: optimize fd management functions for low register count CPUs
12381 - CLEANUP: poll: remove a useless double-check on fdtab[fd].owner
12382 - OPTIM: epoll: use a temp variable for intermediary flag computations
12383 - OPTIM: epoll: current fd does not count as a new one
12384 - BUG/MINOR: poll: the I/O handler was called twice for polled I/Os
12385 - MINOR: http: make resp_ver and status ACLs check for the presence of a response
12386 - BUG/MEDIUM: stream-interface: fix possible stalls during transfers
12387 - BUG/MINOR: stream_interface: don't return when the fd is already set
12388 - BUG/MEDIUM: connection: always update connection flags prior to computing polling
12389 - CLEANUP: buffer: use buffer_empty() instead of buffer_len()==0
12390 - BUG/MAJOR: stream_interface: fix occasional data transfer freezes
12391 - BUG/MEDIUM: stream_interface: fix another case where the reader might not be woken up
12392 - BUG/MINOR: http: don't abort client connection on premature responses
12393 - BUILD: no need to clean up when making git-tar
12394 - MINOR: log: add a tag for amount of bytes uploaded from client to server
12395 - BUG/MEDIUM: log: fix possible segfault during config parsing
12396 - MEDIUM: log: change a few log tokens to make them easier to remember
12397 - BUG/MINOR: log: add_to_logformat_list() used the wrong constants
12398 - MEDIUM: log-format: make the format parser more robust and more extensible
12399 - MINOR: sample: support cast from bool to string
12400 - MINOR: samples: add a function to fetch and convert any sample to a string
12401 - MINOR: log: add lf_text_len
12402 - MEDIUM: log: add the ability to include samples in logs
12403 - REORG: stats: massive code reorg and cleanup
12404 - REORG: stats: move the HTTP header injection to proto_http
12405 - REORG: stats: functions are now HTTP/CLI agnostic
12406 - BUG/MINOR: log: fix regression introduced by commit 8a3f52
12407 - MINOR: chunks: centralize the trash chunk allocation
12408 - MEDIUM: stats: use hover boxes instead of title to report details
12409 - MEDIUM: stats: use multi-line tips to display detailed counters
12410 - MINOR: tools: simplify the use of the int to ascii macros
12411 - MINOR: stats: replace STAT_FMT_CSV with STAT_FMT_HTML
12412 - MINOR: http: prepare to support more http-request actions
12413 - MINOR: log: make parse_logformat_string() take a const char *
12414 - MEDIUM: http: add http-request 'add-header' and 'set-header' to build headers
12415
Willy Tarreau0cae4b32012-12-12 00:39:52 +0100124162012/12/12 : 1.5-dev15
12417 - DOC: add a few precisions on compression
12418 - BUG/MEDIUM: ssl: Fix handshake failure on session resumption with client cert.
12419 - BUG/MINOR: ssl: One free session in cache remains unused.
12420 - BUG/MEDIUM: ssl: first outgoing connection would fail with {ca,crt}-ignore-err
12421 - MEDIUM: ssl: manage shared cache by blocks for huge sessions.
12422 - MINOR: acl: add fetch for server session rate
12423 - BUG/MINOR: compression: Content-Type is case insensitive
12424 - MINOR: compression: disable on multipart or status != 200
12425 - BUG/MINOR: http: don't report client aborts as server errors
12426 - MINOR: stats: compute the ratio of compressed response based on 2xx responses
12427 - MINOR: http: factor out the content-type checks
12428 - BUG/MAJOR: stats: correctly check for a possible divide error when showing compression ratios
12429 - BUILD: ssl: OpenSSL 0.9.6 has no renegociation
12430 - BUG/MINOR: http: disable compression when message has no body
12431 - MINOR: compression: make the stats a bit more robust
12432 - BUG/MEDIUM: comp: DEFAULT_MAXZLIBMEM was expressed in bytes and not megabytes
12433 - MINOR: connection: don't remove failed handshake flags
12434 - MEDIUM: connection: add an error code in connections
12435 - MEDIUM: connection: add minimal error reporting in logs for incomplete connections
12436 - MEDIUM: connection: add error reporting for the PROXY protocol header
12437 - MEDIUM: connection: add error reporting for the SSL
12438 - DOC: document the connection error format in logs
12439 - BUG/MINOR: http: don't log a 503 on client errors while waiting for requests
12440 - BUILD: stdbool is not portable
12441 - BUILD: ssl: NAME_MAX is not portable, use MAXPATHLEN instead
12442 - BUG/MAJOR: raw_sock: must check error code on hangup
12443 - BUG/MAJOR: polling: do not set speculative events on ERR nor HUP
12444 - BUG/MEDIUM: session: fix FD leak when transport layer logging is enabled
12445 - MINOR: stats: add a few more information on session dump
12446 - BUG/MINOR: tcp: set the ADDR_TO_SET flag on outgoing connections
12447 - CLEANUP: connection: remove unused server/proxy/task/si_applet declarations
12448 - BUG/MEDIUM: tcp: process could theorically crash on lack of source ports
12449 - MINOR: cfgparse: mention "interface" in the list of allowed "source" options
12450 - MEDIUM: connection: introduce "struct conn_src" for servers and proxies
12451 - CLEANUP: proto_tcp: use the same code to bind servers and backends
12452 - CLEANUP: backend: use the same tproxy address selection code for servers and backends
12453 - BUG/MEDIUM: stick-tables: conversions to strings were broken in dev13
12454 - MEDIUM: proto_tcp: add support for tracking L7 information
12455 - MEDIUM: counters: add sc1_trackers/sc2_trackers
12456 - MINOR: http: add the "base32" pattern fetch function
12457 - MINOR: http: add the "base32+src" fetch method.
12458 - CLEANUP: session: use an array for the stick counters
12459 - BUG/MINOR: proto_tcp: fix parsing of "table" in track-sc1/2
12460 - BUG/MINOR: proto_tcp: bidirectional fetches not supported anymore in track-sc1/2
12461 - BUG/MAJOR: connection: always recompute polling status upon I/O
12462 - BUG/MINOR: connection: remove a few synchronous calls to polling updates
12463 - MINOR: config: improve error checking on TCP stick-table tracking
12464 - DOC: add some clarifications to the readme
12465
Willy Tarreaufee48ce2012-11-26 03:11:05 +0100124662012/11/26 : 1.5-dev14
12467 - DOC: fix minor typos
12468 - BUG/MEDIUM: compression: does not forward trailers
12469 - MINOR: buffer_dump with ASCII
12470 - BUG/MEDIUM: checks: mark the check as stopped after a connect error
12471 - BUG/MEDIUM: checks: ensure we completely disable polling upon success
12472 - BUG/MINOR: checks: don't mark the FD as closed before transport close
12473 - MEDIUM: checks: avoid accumulating TIME_WAITs during checks
12474 - MINOR: cli: report the msg state in full text in "show sess $PTR"
12475 - CLEANUP: checks: rename some server check flags
12476 - MAJOR: checks: rework completely bogus state machine
12477 - BUG/MINOR: checks: slightly clean the state machine up
12478 - MEDIUM: checks: avoid waking the application up for pure TCP checks
12479 - MEDIUM: checks: close the socket as soon as we have a response
12480 - BUG/MAJOR: checks: close FD on all timeouts
12481 - MINOR: checks: fix recv polling after connect()
12482 - MEDIUM: connection: provide a common conn_full_close() function
12483 - BUG/MEDIUM: checks: prevent TIME_WAITs from appearing also on timeouts
12484 - BUG/MAJOR: peers: the listener's maxaccept was not set and caused loops
12485 - MINOR: listeners: make the accept loop more robust when maxaccept==0
12486 - BUG/MEDIUM: acl: correctly resolve all args, not just the first one
12487 - BUG/MEDIUM: acl: make prue_acl_expr() correctly free ACL expressions upon exit
12488 - BUG/MINOR: stats: fix inversion of the report of a check in progress
12489 - MEDIUM: tcp: add explicit support for delayed ACK in connect()
12490 - BUG/MEDIUM: connection: always disable polling upon error
12491 - MINOR: connection: abort earlier when errors are detected
12492 - BUG/MEDIUM: checks: report handshake failures
12493 - BUG/MEDIUM: connection: local_send_proxy must wait for connection to establish
12494 - MINOR: tcp: add support for the "v6only" bind option
12495 - MINOR: stats: also report the computed compression savings in html stats
12496 - MINOR: stats: report the total number of compressed responses per front/back
12497 - MINOR: tcp: add support for the "v4v6" bind option
12498 - DOC: stats: document the comp_rsp stats column
12499 - BUILD: buffer: fix another isprint() warning on solaris
12500 - MINOR: cli: add support for the "show sess all" command
12501 - BUG/MAJOR: cli: show sess <id> may randomly corrupt the back-ref list
12502 - MINOR: cli: improve output format for show sess $ptr
12503
Willy Tarreauad15d122012-11-22 01:11:33 +0100125042012/11/22 : 1.5-dev13
12505 - BUILD: fix build issue without USE_OPENSSL
12506 - BUILD: fix compilation error with DEBUG_FULL
12507 - DOC: ssl: remove prefer-server-ciphers documentation
12508 - DOC: ssl: surround keywords with quotes
12509 - DOC: fix minor typo on http-send-name-header
12510 - BUG/MEDIUM: acls using IPv6 subnets patterns incorrectly match IPs
12511 - BUG/MAJOR: fix a segfault on option http_proxy and url_ip acl
12512 - MEDIUM: http: accept IPv6 values with (s)hdr_ip acl
12513 - BUILD: report zlib support in haproxy -vv
12514 - DOC: compression: add some details and clean up the formatting
12515 - DOC: Change is_ssl acl to ssl_fc acl in example
12516 - DOC: make it clear what the HTTP request size is
12517 - MINOR: ssl: try to load Diffie-Hellman parameters from cert file
12518 - DOC: ssl: update 'crt' statement on 'bind' about Diffie-Hellman parameters loading
12519 - MINOR: ssl: add elliptic curve Diffie-Hellman support for ssl key generation
12520 - DOC: ssl: add 'ecdhe' statement on 'bind'
12521 - MEDIUM: ssl: add client certificate authentication support
12522 - DOC: ssl: add 'verify', 'cafile' and 'crlfile' statements on 'bind'
12523 - MINOR: ssl: add fetch and ACL 'client_crt' to test a client cert is present
12524 - DOC: ssl: add fetch and ACL 'client_cert'
12525 - MINOR: ssl: add ignore verify errors options
12526 - DOC: ssl: add 'ca-ignore-err' and 'crt-ignore-err' statements on 'bind'
12527 - MINOR: ssl: add fetch and ACL 'ssl_verify_result'
12528 - DOC: ssl: add fetch and ACL 'ssl_verify_result'
12529 - MINOR: ssl: add fetches and ACLs to return verify errors
12530 - DOC: ssl: add fetches and ACLs 'ssl_verify_crterr', 'ssl_verify_caerr', and 'ssl_verify_crterr_depth'
12531 - MINOR: ssl: disable shared memory and locks on session cache if nbproc == 1
12532 - MINOR: ssl: add build param USE_PRIVATE_CACHE to build cache without shared memory
12533 - MINOR: ssl : add statements 'notlsv11' and 'notlsv12' and rename 'notlsv1' to 'notlsv10'.
12534 - DOC: ssl : add statements 'notlsv11' and 'notlsv12' and rename 'notlsv1' to 'notlsv10'.
12535 - MEDIUM: config: authorize frontend and listen without bind.
12536 - MINOR: ssl: add statement 'no-tls-tickets' on bind to disable stateless session resumption
12537 - DOC: ssl: add 'no-tls-tickets' statement documentation.
12538 - BUG/MINOR: ssl: Fix CRL check was not enabled when crlfile was specified.
12539 - BUG/MINOR: build: Fix compilation issue on openssl 0.9.6 due to missing CRL feature.
12540 - BUG/MINOR: conf: Fix 'maxsslconn' statement error if built without OPENSSL.
12541 - BUG/MINOR: build: Fix failure with USE_OPENSSL=1 and USE_FUTEX=1 on archs i486 and i686.
12542 - MINOR: ssl: remove prefer-server-ciphers statement and set it as the default on ssl listeners.
12543 - BUG/MEDIUM: ssl: subsequent handshakes fail after server configuration changes
12544 - MINOR: ssl: add 'crt-base' and 'ca-base' global statements.
12545 - MEDIUM: conf: rename 'nosslv3' and 'notlsvXX' statements 'no-sslv3' and 'no-tlsvXX'.
12546 - MEDIUM: conf: rename 'cafile' and 'crlfile' statements 'ca-file' and 'crl-file'
12547 - MINOR: ssl: use bit fields to store ssl options instead of one int each
12548 - MINOR: ssl: add 'force-sslv3' and 'force-tlsvXX' statements on bind.
12549 - MINOR: ssl: add 'force-sslv3' and 'force-tlsvXX' statements on server
12550 - MINOR: ssl: add defines LISTEN_DEFAULT_CIPHERS and CONNECT_DEFAULT_CIPHERS.
12551 - BUG/MINOR: ssl: Fix issue on server statements 'no-tls*' and 'no-sslv3'
12552 - MINOR: ssl: move ssl context init for servers from cfgparse.c to ssl_sock.c
12553 - MEDIUM: ssl: reject ssl server keywords in default-server statement
12554 - MINOR: ssl: add statement 'no-tls-tickets' on server side.
12555 - MINOR: ssl: add statements 'verify', 'ca-file' and 'crl-file' on servers.
12556 - DOC: Fix rename of options cafile and crlfile to ca-file and crl-file.
12557 - MINOR: sample: manage binary to string type convertion in stick-table and samples.
12558 - MINOR: acl: add parse and match primitives to use binary type on ACLs
12559 - MINOR: sample: export 'sample_get_trash_chunk(void)'
12560 - MINOR: conf: rename all ssl modules fetches using prefix 'ssl_fc' and 'ssl_c'
12561 - MINOR: ssl: add pattern and ACLs fetches 'ssl_fc_protocol', 'ssl_fc_cipher', 'ssl_fc_use_keysize' and 'ssl_fc_alg_keysize'
12562 - MINOR: ssl: add pattern fetch 'ssl_fc_session_id'
12563 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_version' and 'ssl_f_version'
12564 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_s_dn', 'ssl_c_i_dn', 'ssl_f_s_dn' and 'ssl_c_i_dn'
12565 - MINOR: ssl: add pattern and ACLs 'ssl_c_sig_alg' and 'ssl_f_sig_alg'
12566 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_key_alg' and 'ssl_f_key_alg'
12567 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_notbefore', 'ssl_c_notafter', 'ssl_f_notbefore' and 'ssl_f_notafter'
12568 - MINOR: ssl: add 'crt' statement on server.
12569 - MINOR: ssl: checks the consistency of a private key with the corresponding certificate
12570 - BUG/MEDIUM: ssl: review polling on reneg.
12571 - BUG/MEDIUM: ssl: Fix some reneg cases not correctly handled.
12572 - BUG/MEDIUM: ssl: Fix sometimes reneg fails if requested by server.
12573 - MINOR: build: allow packagers to specify the ssl cache size
12574 - MINOR: conf: add warning if ssl is not enabled and a certificate is present on bind.
12575 - MINOR: ssl: Add tune.ssl.lifetime statement in global.
12576 - MINOR: compression: Enable compression for IE6 w/SP2, IE7 and IE8
12577 - BUG: http: revert broken optimisation from 82fe75c1a79dac933391501b9d293bce34513755
12578 - DOC: duplicate ssl_sni section
12579 - MEDIUM: HTTP compression (zlib library support)
12580 - CLEANUP: use struct comp_ctx instead of union
12581 - BUILD: remove dependency to zlib.h
12582 - MINOR: compression: memlevel and windowsize
12583 - MEDIUM: use pool for zlib
12584 - MINOR: compression: try init in cfgparse.c
12585 - MINOR: compression: init before deleting headers
12586 - MEDIUM: compression: limit RAM usage
12587 - MINOR: compression: tune.comp.maxlevel
12588 - MINOR: compression: maximum compression rate limit
12589 - MINOR: log-format: check number of arguments in cfgparse.c
12590 - BUG/MEDIUM: compression: no Content-Type header but type in configuration
12591 - BUG/MINOR: compression: deinit zlib only when required
12592 - MEDIUM: compression: don't compress when no data
12593 - MEDIUM: compression: use pool for comp_ctx
12594 - MINOR: compression: rate limit in 'show info'
12595 - MINOR: compression: report zlib memory usage
12596 - BUG/MINOR: compression: dynamic level increase
12597 - DOC: compression: unsupported cases.
12598 - MINOR: compression: CPU usage limit
12599 - MEDIUM: http: add "redirect scheme" to ease HTTP to HTTPS redirection
12600 - BUG/MAJOR: ssl: missing tests in ACL fetch functions
12601 - MINOR: config: add a function to indent error messages
12602 - REORG: split "protocols" files into protocol and listener
12603 - MEDIUM: config: replace ssl_conf by bind_conf
12604 - CLEANUP: listener: remove unused conf->file and conf->line
12605 - MEDIUM: listener: add a minimal framework to register "bind" keyword options
12606 - MEDIUM: config: move the "bind" TCP parameters to proto_tcp
12607 - MEDIUM: move bind SSL parsing to ssl_sock
12608 - MINOR: config: improve error reporting for "bind" lines
12609 - MEDIUM: config: move the common "bind" settings to listener.c
12610 - MEDIUM: config: move all unix-specific bind keywords to proto_uxst.c
12611 - MEDIUM: config: enumerate full list of registered "bind" keywords upon error
12612 - MINOR: listener: add a scope field in the bind keyword lists
12613 - MINOR: config: pass the file and line to config keyword parsers
12614 - MINOR: stats: fill the file and line numbers in the stats frontend
12615 - MINOR: config: set the bind_conf entry on listeners created from a "listen" line.
12616 - MAJOR: listeners: use dual-linked lists to chain listeners with frontends
12617 - REORG: listener: move unix perms from the listener to the bind_conf
12618 - BUG: backend: balance hdr was broken since 1.5-dev11
12619 - MINOR: standard: make memprintf() support a NULL destination
12620 - MINOR: config: make str2listener() use memprintf() to report errors.
12621 - MEDIUM: stats: remove the stats_sock struct from the global struct
12622 - MINOR: ssl: set the listeners' data layer to ssl during parsing
12623 - MEDIUM: stats: make use of the standard "bind" parsers to parse global socket
12624 - DOC: move bind options to their own section
12625 - DOC: stats: refer to "bind" section for "stats socket" settings
12626 - DOC: fix index to reference bind and server options
12627 - BUG: http: do not print garbage on invalid requests in debug mode
12628 - BUG/MINOR: config: check the proper pointer to report unknown protocol
12629 - CLEANUP: connection: offer conn_prepare() to set up a connection
12630 - CLEANUP: config: fix typo inteface => interface
12631 - BUG: stats: fix regression introduced by commit 4348fad1
12632 - MINOR: cli: allow to set frontend maxconn to zero
12633 - BUG/MAJOR: http: chunk parser was broken with buffer changes
12634 - MEDIUM: monitor: simplify handling of monitor-net and mode health
12635 - MINOR: connection: add a pointer to the connection owner
12636 - MEDIUM: connection: make use of the owner instead of container_of
12637 - BUG/MINOR: ssl: report the L4 connection as established when possible
12638 - BUG/MEDIUM: proxy: must not try to stop disabled proxies upon reload
12639 - BUG/MINOR: config: use a copy of the file name in proxy configurations
12640 - BUG/MEDIUM: listener: don't pause protocols that do not support it
12641 - MEDIUM: proxy: add the global frontend to the list of normal proxies
12642 - BUG/MINOR: epoll: correctly disable FD polling in fd_rem()
12643 - MINOR: signal: really ignore signals configured with no handler
12644 - MINOR: buffers: add a few functions to write chars, strings and blocks
12645 - MINOR: raw_sock: always report asynchronous connection errors
12646 - MEDIUM: raw_sock: improve connection error reporting
12647 - REORG: connection: rename the data layer the "transport layer"
12648 - REORG: connection: rename app_cb "data"
12649 - MINOR: connection: provide a generic data layer wakeup callback
12650 - MINOR: connection: split conn_prepare() in two functions
12651 - MINOR: connection: add an init callback to the data_cb struct
12652 - MEDIUM: session: use a specific data_cb for embryonic sessions
12653 - MEDIUM: connection: use a generic data-layer init() callback
12654 - MEDIUM: connection: reorganize connection flags
12655 - MEDIUM: connection: only call the data->wake callback on activity
12656 - MEDIUM: connection: make it possible for data->wake to return an error
12657 - MEDIUM: session: register a data->wake callback to process errors
12658 - MEDIUM: connection: don't call the data->init callback upon error
12659 - MEDIUM: connection: it's not the data layer's role to validate the connection
12660 - MEDIUM: connection: automatically disable polling on error
12661 - REORG: connection: move the PROXY protocol management to connection.c
12662 - MEDIUM: connection: add a new local send-proxy transport callback
12663 - MAJOR: checks: make use of the connection layer to send checks
12664 - REORG: server: move the check-specific parts into a check subsection
12665 - MEDIUM: checks: use real buffers to store requests and responses
12666 - MEDIUM: check: add the ctrl and transport layers in the server check structure
12667 - MAJOR: checks: completely use the connection transport layer
12668 - MEDIUM: checks: add the "check-ssl" server option
12669 - MEDIUM: checks: enable the PROXY protocol with health checks
12670 - CLEANUP: checks: remove minor warnings for assigned but not used variables
12671 - MEDIUM: tcp: enable TCP Fast Open on systems which support it
12672 - BUG: connection: fix regression from commit 9e272bf9
12673 - CLEANUP: cttproxy: remove a warning on undeclared close()
12674 - BUG/MAJOR: ensure that hdr_idx is always reserved when L7 fetches are used
12675 - MEDIUM: listener: add support for linux's accept4() syscall
12676 - MINOR: halog: sort output by cookie code
12677 - BUG/MINOR: halog: -ad/-ac report the correct number of output lines
12678 - BUG/MINOR: halog: fix help message for -ut/-uto
12679 - MINOR: halog: add a parameter to limit output line count
12680 - BUILD: accept4: move the socketcall declaration outside of accept4()
12681 - MINOR: server: add minimal infrastructure to parse keywords
12682 - MINOR: standard: make indent_msg() support empty messages
12683 - MEDIUM: server: check for registered keywords when parsing unknown keywords
12684 - MEDIUM: server: move parsing of keyword "id" to server.c
12685 - BUG/MEDIUM: config: check-send-proxy was ignored if SSL was not builtin
12686 - MEDIUM: ssl: move "server" keyword SSL options parsing to ssl_sock.c
12687 - MEDIUM: log: suffix the frontend's name with '~' when using SSL
12688 - MEDIUM: connection: always unset the transport layer upon close
12689 - BUG/MINOR: session: fix some leftover from debug code
12690 - BUG/MEDIUM: session: enable the conn_session_update() callback
12691 - MEDIUM: connection: add a flag to hold the transport layer
12692 - MEDIUM: log: add a new LW_XPRT flag to pin the transport layer
12693 - MINOR: log: make lf_text use a const char *
12694 - MEDIUM: log: report SSL ciphers and version in logs using logformat %sslc/%sslv
12695 - REORG: http: rename msg->buf to msg->chn since it's a channel
12696 - CLEANUP: http: use 'chn' to name channel variables, not 'buf'
12697 - CLEANUP: channel: use 'chn' instead of 'buf' as local variable names
12698 - CLEANUP: tcp: use 'chn' instead of 'buf' or 'b' for channel pointer names
12699 - CLEANUP: stream_interface: use 'chn' instead of 'b' to name channel pointers
12700 - CLEANUP: acl: use 'chn' instead of 'b' to name channel pointers
12701 - MAJOR: channel: replace the struct buffer with a pointer to a buffer
12702 - OPTIM: channel: reorganize struct members to improve cache efficiency
12703 - CLEANUP: session: remove term_trace which is not used anymore
12704 - OPTIM: session: reorder struct session fields
12705 - OPTIM: connection: pack the struct target
12706 - DOC: document relations between internal entities
12707 - MINOR: ssl: add 'ssl_npn' sample/acl to extract TLS/NPN information
12708 - BUILD: ssl: fix shctx build on older compilers
12709 - MEDIUM: ssl: add support for the "npn" bind keyword
12710 - BUG: ssl: fix ssl_sni ACLs to correctly process regular expressions
12711 - MINOR: chunk: provide string compare functions
12712 - MINOR: sample: accept fetch keywords without parenthesis
12713 - MEDIUM: sample: pass an empty list instead of a null for fetch args
12714 - MINOR: ssl: improve socket behaviour upon handshake abort.
12715 - BUG/MEDIUM: http: set DONTWAIT on data when switching to tunnel mode
12716 - MEDIUM: listener: provide a fallback for accept4() when not supported
12717 - BUG/MAJOR: connection: risk of crash on certain tricky close scenario
12718 - MEDIUM: cli: allow the stats socket to be bound to a specific set of processes
12719 - OPTIM: channel: inline channel_forward's fast path
12720 - OPTIM: http: inline http_parse_chunk_size() and http_skip_chunk_crlf()
12721 - OPTIM: tools: inline hex2i()
12722 - CLEANUP: http: rename HTTP_MSG_DATA_CRLF state
12723 - MINOR: compression: automatically disable compression for older browsers
12724 - MINOR: compression: optimize memLevel to improve byte rate
12725 - BUG/MINOR: http: compression should consider all Accept-Encoding header values
12726 - BUILD: fix coexistence of openssl and zlib
12727 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_serial' and 'ssl_f_serial'
12728 - BUG/MEDIUM: command-line option -D must have precedence over "debug"
12729 - MINOR: tools: add a clear_addr() function to unset an address
12730 - BUG/MEDIUM: tcp: transparent bind to the source only when address is set
12731 - CLEANUP: remove trashlen
12732 - MAJOR: session: detach the connections from the stream interfaces
12733 - DOC: update document describing relations between internal entities
12734 - BUILD: make it possible to specify ZLIB path
12735 - MINOR: compression: add an offload option to remove the Accept-Encoding header
12736 - BUG: compression: disable auto-close and enable MSG_MORE during transfer
12737 - CLEANUP: completely remove trashlen
12738 - MINOR: chunk: add a function to reset a chunk
12739 - CLEANUP: replace chunk_printf() with chunk_appendf()
12740 - MEDIUM: make the trash be a chunk instead of a char *
12741 - MEDIUM: remove remains of BUFSIZE in HTTP auth and sample conversions
12742 - MEDIUM: stick-table: allocate the table key of size buffer size
12743 - BUG/MINOR: stream_interface: don't loop over ->snd_buf()
12744 - BUG/MINOR: session: ensure that we don't retry connection if some data were sent
12745 - OPTIM: session: don't process the whole session when only timers need a refresh
12746 - BUG/MINOR: session: mark the handshake as complete earlier
12747 - MAJOR: connection: remove the CO_FL_CURR_*_POL flag
12748 - BUG/MAJOR: always clear the CO_FL_WAIT_* flags after updating polling flags
12749 - MAJOR: sepoll: make the poller totally event-driven
12750 - OPTIM: stream_interface: disable reading when CF_READ_DONTWAIT is set
12751 - BUILD: compression: remove a build warning
12752 - MEDIUM: fd: don't unset fdtab[].updated upon delete
12753 - REORG: fd: move the speculative I/O management from ev_sepoll
12754 - REORG: fd: move the fd state management from ev_sepoll
12755 - REORG: fd: centralize the processing of speculative events
12756 - BUG: raw_sock: also consider ENOTCONN in addition to EAGAIN
12757 - BUILD: stream_interface: remove si_fd() and its references
12758 - BUILD: compression: enable build in BSD and OSX Makefiles
12759 - MAJOR: ev_select: make the poller support speculative events
12760 - MAJOR: ev_poll: make the poller support speculative events
12761 - MAJOR: ev_kqueue: make the poller support speculative events
12762 - MAJOR: polling: replace epoll with sepoll and remove sepoll
12763 - MAJOR: polling: remove unused callbacks from the poller struct
12764 - MEDIUM: http: refrain from sending "Connection: close" when Upgrade is present
12765 - CLEANUP: channel: remove any reference of the hijackers
12766 - CLEANUP: stream_interface: remove the external task type target
12767 - MAJOR: connection: replace struct target with a pointer to an enum
12768 - BUG: connection: fix typo in previous commit
12769 - BUG: polling: don't skip polled events in the spec list
12770 - MINOR: splice: disable it when the system returns EBADF
12771 - MINOR: build: allow packagers to specify the default maxzlibmem
12772 - BUG: halog: fix broken output limitation
12773 - BUG: proxy: fix server name lookup in get_backend_server()
12774 - BUG: compression: do not always increment the round counter on allocation failure
12775 - BUG/MEDIUM: compression: release the zlib pools between keep-alive requests
12776 - MINOR: global: don't prevent nbproc from being redefined
12777 - MINOR: config: support process ranges for "bind-process"
12778 - MEDIUM: global: add support for CPU binding on Linux ("cpu-map")
12779 - MINOR: ssl: rename and document the tune.ssl.cachesize option
12780 - DOC: update the PROXY protocol spec to support v2
12781 - MINOR: standard: add a simple popcount function
12782 - MEDIUM: adjust the maxaccept per listener depending on the number of processes
12783 - BUG: compression: properly disable compression when content-type does not match
12784 - MINOR: cli: report connection status in "show sess xxx"
12785 - BUG/MAJOR: stream_interface: certain workloads could cause get stuck
12786 - BUILD: cli: fix build when SSL is enabled
12787 - MINOR: cli: report the fd state in "show sess xxx"
12788 - MINOR: cli: report an error message on missing argument to compression rate
12789 - MINOR: http: add some debugging functions to pretty-print msg state names
12790 - BUG/MAJOR: stream_interface: read0 not always handled since dev12
12791 - DOC: documentation on http header capture is wrong
12792 - MINOR: http: allow the cookie capture size to be changed
12793 - DOC: http header capture has not been limited in size for a long time
12794 - DOC: update readme with build methods for BSD
12795 - BUILD: silence a warning on Solaris about usage of isdigit()
12796 - MINOR: stats: report HTTP compression stats per frontend and per backend
12797 - MINOR: log: add '%Tl' to log-format
12798 - MINOR: samples: update the url_param fetch to match parameters in the path
12799
Willy Tarreau16216822012-09-10 09:46:55 +0200128002012/09/10 : 1.5-dev12
12801 - CONTRIB: halog: sort URLs by avg bytes_read or total bytes_read
12802 - MEDIUM: ssl: add support for prefer-server-ciphers option
12803 - MINOR: IPv6 support for transparent proxy
12804 - MINOR: protocol: add SSL context to listeners if USE_OPENSSL is defined
12805 - MINOR: server: add SSL context to servers if USE_OPENSSL is defined
12806 - MEDIUM: connection: add a new handshake flag for SSL (CO_FL_SSL_WAIT_HS).
12807 - MEDIUM: ssl: add new files ssl_sock.[ch] to provide the SSL data layer
12808 - MEDIUM: config: add the 'ssl' keyword on 'bind' lines
12809 - MEDIUM: config: add support for the 'ssl' option on 'server' lines
12810 - MEDIUM: ssl: protect against client-initiated renegociation
12811 - BUILD: add optional support for SSL via the USE_OPENSSL flag
12812 - MEDIUM: ssl: add shared memory session cache implementation.
12813 - MEDIUM: ssl: replace OpenSSL's session cache with the shared cache
12814 - MINOR: ssl add global setting tune.sslcachesize to set SSL session cache size.
12815 - MEDIUM: ssl: add support for SNI and wildcard certificates
12816 - DOC: Typos cleanup
12817 - DOC: fix name for "option independant-streams"
12818 - DOC: specify the default value for maxconn in the context of a proxy
12819 - BUG/MINOR: to_log erased with unique-id-format
12820 - LICENSE: add licence exception for OpenSSL
12821 - BUG/MAJOR: cookie prefix doesn't support cookie-less servers
12822 - BUILD: add an AIX 5.2 (and later) target.
12823 - MEDIUM: fd/si: move peeraddr from struct fdinfo to struct connection
12824 - MINOR: halog: use the more recent dual-mode fgets2 implementation
12825 - BUG/MEDIUM: ebtree: ebmb_insert() must not call cmp_bits on full-length matches
12826 - CLEANUP: halog: make clean should also remove .o files
12827 - OPTIM: halog: make use of memchr() on platforms which provide a fast one
12828 - OPTIM: halog: improve cold-cache behaviour when loading a file
12829 - BUG/MINOR: ACL implicit arguments must be created with unresolved flag
12830 - MINOR: replace acl_fetch_{path,url}* with smp_fetch_*
12831 - MEDIUM: pattern: add the "base" sample fetch method
12832 - OPTIM: i386: make use of kernel-mode-linux when available
12833 - BUG/MINOR: tarpit: fix condition to return the HTTP 500 message
12834 - BUG/MINOR: polling: some events were not set in various pollers
12835 - MINOR: http: add the urlp_val ACL match
12836 - BUG: stktable: tcp_src_to_stktable_key() must return NULL on invalid families
12837 - MINOR: stats/cli: add plans to support more stick-table actions
12838 - MEDIUM: stats/cli: add support for "set table key" to enter values
12839 - REORG/MEDIUM: fd: remove FD_STCLOSE from struct fdtab
12840 - REORG/MEDIUM: fd: remove checks for FD_STERROR in ev_sepoll
12841 - REORG/MEDIUM: fd: get rid of FD_STLISTEN
12842 - REORG/MINOR: connection: move declaration to its own include file
12843 - REORG/MINOR: checks: put a struct connection into the server
12844 - MINOR: connection: add flags to the connection struct
12845 - MAJOR: get rid of fdtab[].state and use connection->flags instead
12846 - MINOR: fd: add a new I/O handler to fdtab
12847 - MEDIUM: polling: prepare to call the iocb() function when defined.
12848 - MEDIUM: checks: make use of fdtab->iocb instead of cb[]
12849 - MEDIUM: protocols: use the generic I/O callback for accept callbacks
12850 - MINOR: connection: add a handler for fd-based connections
12851 - MAJOR: connection: replace direct I/O callbacks with the connection callback
12852 - MINOR: fd: make fdtab->owner a connection and not a stream_interface anymore
12853 - MEDIUM: connection: remove the FD_POLL_* flags only once
12854 - MEDIUM: connection: extract the send_proxy callback from proto_tcp
12855 - MAJOR: tcp: remove the specific I/O callbacks for TCP connection probes
12856 - CLEANUP: remove the now unused fdtab direct I/O callbacks
12857 - MAJOR: remove the stream interface and task management code from sock_*
12858 - MEDIUM: stream_interface: pass connection instead of fd in sock_ops
12859 - MEDIUM: stream_interface: centralize the SI_FL_ERR management
12860 - MAJOR: connection: add a new CO_FL_CONNECTED flag
12861 - MINOR: rearrange tcp_connect_probe() and fix wrong return codes
12862 - MAJOR: connection: call data layer handshakes from the handler
12863 - MEDIUM: fd: remove the EV_FD_COND_* primitives
12864 - MINOR: sock_raw: move calls to si_data_close upper
12865 - REORG: connection: replace si_data_close() with conn_data_close()
12866 - MEDIUM: sock_raw: introduce a read0 callback that is different from shutr
12867 - MAJOR: stream_int: use a common stream_int_shut*() functions regardless of the data layer
12868 - MAJOR: fd: replace all EV_FD_* macros with new fd_*_* inline calls
12869 - MEDIUM: fd: add fd_poll_{recv,send} for use when explicit polling is required
12870 - MEDIUM: connection: add definitions for dual polling mechanisms
12871 - MEDIUM: connection: make use of the new polling functions
12872 - MAJOR: make use of conn_{data|sock}_{poll|stop|want}* in connection handlers
12873 - MEDIUM: checks: don't use FD_WAIT_* anymore
12874 - MINOR: fd: get rid of FD_WAIT_*
12875 - MEDIUM: stream_interface: offer a generic function for connection updates
12876 - MEDIUM: stream-interface: offer a generic chk_rcv function for connections
12877 - MEDIUM: stream-interface: add a snd_buf() callback to sock_ops
12878 - MEDIUM: stream-interface: provide a generic stream_int_chk_snd_conn() function
12879 - MEDIUM: stream-interface: provide a generic si_conn_send_cb callback
12880 - MEDIUM: stream-interface: provide a generic stream_sock_read0() function
12881 - REORG/MAJOR: use "struct channel" instead of "struct buffer"
12882 - REORG/MAJOR: extract "struct buffer" from "struct channel"
12883 - MINOR: connection: provide conn_{data|sock}_{read0|shutw} functions
12884 - REORG: sock_raw: rename the files raw_sock*
12885 - MAJOR: raw_sock: extract raw_sock_to_buf() from raw_sock_read()
12886 - MAJOR: raw_sock: temporarily disable splicing
12887 - MINOR: stream-interface: add an rcv_buf callback to sock_ops
12888 - REORG: stream-interface: move sock_raw_read() to si_conn_recv_cb()
12889 - MAJOR: connection: split the send call into connection and stream interface
12890 - MAJOR: stream-interface: restore splicing mechanism
12891 - MAJOR: stream-interface: make conn_notify_si() more robust
12892 - MEDIUM: proxy-proto: don't use buffer flags in conn_si_send_proxy()
12893 - MAJOR: stream-interface: don't commit polling changes in every callback
12894 - MAJOR: stream-interface: fix splice not to call chk_snd by itself
12895 - MEDIUM: stream-interface: don't remove WAIT_DATA when a handshake is in progress
12896 - CLEANUP: connection: split sock_ops into data_ops, app_cp and si_ops
12897 - REORG: buffers: split buffers into chunk,buffer,channel
12898 - MAJOR: channel: remove the BF_OUT_EMPTY flag
12899 - REORG: buffer: move buffer_flush, b_adv and b_rew to buffer.h
12900 - MINOR: channel: rename bi_full to channel_full as it checks the whole channel
12901 - MINOR: buffer: provide a new buffer_full() function
12902 - MAJOR: channel: stop relying on BF_FULL to take action
12903 - MAJOR: channel: remove the BF_FULL flag
12904 - REORG: channel: move buffer_{replace,insert_line}* to buffer.{c,h}
12905 - CLEANUP: channel: usr CF_/CHN_ prefixes instead of BF_/BUF_
12906 - CLEANUP: channel: use "channel" instead of "buffer" in function names
12907 - REORG: connection: move the target pointer from si to connection
12908 - MAJOR: connection: move the addr field from the stream_interface
12909 - MEDIUM: stream_interface: remove CAP_SPLTCP/CAP_SPLICE flags
12910 - MEDIUM: proto_tcp: remove any dependence on stream_interface
12911 - MINOR: tcp: replace tcp_src_to_stktable_key with addr_to_stktable_key
12912 - MEDIUM: connection: add an ->init function to data layer
12913 - MAJOR: session: introduce embryonic sessions
12914 - MAJOR: connection: make the PROXY decoder a handshake handler
12915 - CLEANUP: frontend: remove the old proxy protocol decoder
12916 - MAJOR: connection: rearrange the polling flags.
12917 - MEDIUM: connection: only call tcp_connect_probe when nothing was attempted yet
12918 - MEDIUM: connection: complete the polling cleanups
12919 - MEDIUM: connection: avoid calling handshakes when polling is required
12920 - MAJOR: stream_interface: continue to update data polling flags during handshakes
12921 - CLEANUP: fd: remove fdtab->flags
12922 - CLEANUP: fdtab: flatten the struct and merge the spec struct with the rest
12923 - CLEANUP: includes: fix includes for a number of users of fd.h
12924 - MINOR: ssl: disable TCP quick-ack by default on SSL listeners
12925 - MEDIUM: config: add a "ciphers" keyword to set SSL cipher suites
12926 - MEDIUM: config: add "nosslv3" and "notlsv1" on bind and server lines
12927 - BUG: ssl: mark the connection as waiting for an SSL connection during the handshake
12928 - BUILD: http: rename error_message http_error_message to fix conflicts on RHEL
12929 - BUILD: ssl: fix shctx build on RHEL with futex
12930 - BUILD: include sys/socket.h to fix build failure on FreeBSD
12931 - BUILD: fix build error without SSL (ssl_cert)
12932 - BUILD: ssl: use MAP_ANON instead of MAP_ANONYMOUS
12933 - BUG/MEDIUM: workaround an eglibc bug which truncates the pidfiles when nbproc > 1
12934 - MEDIUM: config: support per-listener backlog and maxconn
12935 - MINOR: session: do not send an HTTP/500 error on SSL sockets
12936 - MEDIUM: config: implement maxsslconn in the global section
12937 - BUG: tcp: close socket fd upon connect error
12938 - MEDIUM: connection: improve error handling around the data layer
12939 - MINOR: config: make the tasks "nice" value configurable on "bind" lines.
12940 - BUILD: shut a gcc warning introduced by commit 269ab31
12941 - MEDIUM: config: centralize handling of SSL config per bind line
12942 - BUILD: makefile: report USE_OPENSSL status in build options
12943 - BUILD: report openssl build settings in haproxy -vv
12944 - MEDIUM: ssl: add sample fetches for is_ssl, ssl_has_sni, ssl_sni_*
12945 - DOC: add a special acknowledgement for the stud project
12946 - DOC: add missing SSL options for servers and listeners
12947 - BUILD: automatically add -lcrypto for SSL
12948 - DOC: add some info about openssl build in the README
12949
Willy Tarreau02c7c142012-06-04 00:43:45 +0200129502012/06/04 : 1.5-dev11
12951 - BUG/MEDIUM: option forwardfor if-none doesn't work with some configurations
12952 - BUG/MAJOR: trash must always be the size of a buffer
12953 - DOC: fix minor regex example issue and improve doc on stats
12954 - MINOR: stream_interface: add a pointer to the listener for TARG_TYPE_CLIENT
12955 - MEDIUM: protocol: add a pointer to struct sock_ops to the listener struct
12956 - MINOR: checks: add on-marked-up option
12957 - MINOR: balance uri: added 'whole' parameter to include query string in hash calculation
12958 - MEDIUM: stream_interface: remove the si->init
12959 - MINOR: buffers: add a rewind function
12960 - BUG/MAJOR: fix regression on content-based hashing and http-send-name-header
12961 - MAJOR: http: stop using msg->sol outside the parsers
12962 - CLEANUP: http: make it more obvious that msg->som is always null outside of chunks
12963 - MEDIUM: http: get rid of msg->som which is not used anymore
12964 - MEDIUM: http: msg->sov and msg->sol will never wrap
12965 - BUG/MAJOR: checks: don't call set_server_status_* when no LB algo is set
12966 - BUG/MINOR: stop connect timeout when connect succeeds
12967 - REORG: move the send-proxy code to tcp_connect_write()
12968 - REORG/MINOR: session: detect the TCP monitor checks at the protocol accept
12969 - MINOR: stream_interface: introduce a new "struct connection" type
12970 - REORG/MINOR: stream_interface: move si->fd to struct connection
12971 - REORG/MEDIUM: stream_interface: move applet->state and private to connection
12972 - MINOR: stream_interface: add a data channel close function
12973 - MEDIUM: stream_interface: call si_data_close() before releasing the si
12974 - MINOR: peers: use the socket layer operations from the peer instead of sock_raw
12975 - BUG/MINOR: checks: expire on timeout.check if smaller than timeout.connect
12976 - MINOR: add a new function call tracer for debugging purposes
12977 - BUG/MINOR: perform_http_redirect also needs to rewind the buffer
12978 - BUG/MAJOR: b_rew() must pass a signed offset to b_ptr()
12979 - BUG/MEDIUM: register peer sync handler in the proper order
12980 - BUG/MEDIUM: buffers: fix bi_putchr() to correctly advance the pointer
12981 - BUG/MINOR: fix option httplog validation with TCP frontends
12982 - BUG/MINOR: log: don't report logformat errors in backends
12983 - REORG/MINOR: use dedicated proxy flags for the cookie handling
12984 - BUG/MINOR: config: do not report twice the incompatibility between cookie and non-http
12985 - MINOR: http: add support for "httponly" and "secure" cookie attributes
12986 - BUG/MEDIUM: ensure that unresolved arguments are freed exactly once
12987 - BUG/MINOR: commit 196729ef used wrong condition resulting in freeing constants
12988 - MEDIUM: stats: add support for soft stop/soft start in the admin interface
12989 - MEDIUM: stats: add the ability to kill sessions from the admin interface
12990 - BUILD: add support for linux kernels >= 2.6.28
12991
Willy Tarreauffb89472012-05-14 07:26:56 +0200129922012/05/14 : 1.5-dev10
12993 - BUG/MINOR: stats admin: "Unexpected result" was displayed unconditionally
12994 - BUG/MAJOR: acl: http_auth_group() must not accept any user from the userlist
12995 - CLEANUP: auth: make the code build again with DEBUG_AUTH
12996 - BUG/MEDIUM: config: don't crash at config load time on invalid userlist names
12997 - REORG: use the name sock_raw instead of stream_sock
12998 - MINOR: stream_interface: add a client target : TARG_TYPE_CLIENT
12999 - BUG/MEDIUM: stream_interface: restore get_src/get_dst
13000 - CLEANUP: sock_raw: remove last references to stream_sock
13001 - CLEANUP: stream_interface: stop exporting socket layer functions
13002 - MINOR: stream_interface: add an init callback to sock_ops
13003 - MEDIUM: stream_interface: derive the socket operations from the target
13004 - MAJOR: fd: remove the need for the socket layer to recheck the connection
13005 - MINOR: session: call the socket layer init function when a session establishes
13006 - MEDIUM: session: add support for tunnel timeouts
13007 - MINOR: standard: add a new debug macro : fddebug()
13008 - CLEANUP: fd: remove unused cb->b pointers in the struct fdtab
13009 - OPTIM: proto_http: don't enable quick-ack on empty buffers
13010 - OPTIM/MAJOR: ev_sepoll: process spec events after polled events
13011 - OPTIM/MEDIUM: stream_interface: add a new SI_FL_NOHALF flag
13012
Willy Tarreaua0564f32012-05-08 21:56:27 +0200130132012/05/08 : 1.5-dev9
13014 - MINOR: Add release callback to si_applet
13015 - CLEANUP: Fix some minor typos
13016 - MINOR: Add TO/FROM_SET flags to struct stream_interface
13017 - CLEANUP: Fix some minor whitespace issues
13018 - MINOR: stats admin: allow unordered parameters in POST requests
13019 - CLEANUP: fix typo in findserver() log message
13020 - MINOR: stats admin: use the backend id instead of its name in the form
13021 - MINOR: stats admin: reduce memcmp()/strcmp() calls on status codes
13022 - DOC: cleanup indentation, alignment, columns and chapters
13023 - DOC: fix some keywords arguments documentation
13024 - MINOR: cli: display the 4 IP addresses and ports on "show sess XXX"
13025 - BUG/MAJOR: log: possible segfault with logformat
13026 - MEDIUM: log: split of log_format generation
13027 - MEDIUM: log: New format-log flags: %Fi %Fp %Si %Sp %Ts %rt %H %pid
13028 - MEDIUM: log: Unique ID
13029 - MINOR: log: log-format: usable without httplog and tcplog
13030 - BUG/MEDIUM: balance source did not properly hash IPv6 addresses
13031 - MINOR: contrib/iprange: add a network IP range to mask converter
13032 - MEDIUM: session: implement the "use-server" directive
13033 - MEDIUM: log: add a new cookie flag 'U' to report situations where cookie is not used
13034 - MEDIUM: http: make extract_cookie_value() iterate over cookie values
13035 - MEDIUM: http: add cookie and scookie ACLs
13036 - CLEANUP: lb_first: add reference to a paper describing the original idea
13037 - MEDIUM: stream_sock: add a get_src and get_dst callback and remove SN_FRT_ADDR_SET
13038 - BUG/MINOR: acl: req_ssl_sni would randomly fail if a session ID is present
13039 - BUILD: http: make extract_cookie_value() return an int not size_t
13040 - BUILD: http: stop gcc-4.1.2 from complaining about possibly uninitialized values
13041 - CLEANUP: http: message parser must ignore HTTP_MSG_ERROR
13042 - MINOR: standard: add a memprintf() function to build formatted error messages
13043 - CLEANUP: remove a few warning about unchecked return values in debug code
13044 - MEDIUM: move message-related flags from transaction to message
13045 - DOC: add a diagram to explain how circular buffers work
13046 - MAJOR: buffer rework: replace ->send_max with ->o
13047 - MAJOR: buffer: replace buf->l with buf->{o+i}
13048 - MINOR: buffers: provide simple pointer normalization functions
13049 - MINOR: buffers: remove unused function buffer_contig_data()
13050 - MAJOR: buffers: replace buf->w with buf->p - buf->o
13051 - MAJOR: buffers: replace buf->r with buf->p + buf->i
13052 - MAJOR: http: move buffer->lr to http_msg->next
13053 - MAJOR: http: change msg->{som,col,sov,eoh} to be relative to buffer origin
13054 - CLEANUP: http: remove unused http_msg->col
13055 - MAJOR: http: turn http_msg->eol to a buffer-relative offset
13056 - MEDIUM: http: add a pointer to the buffer in http_msg
13057 - MAJOR: http: make http_msg->sol relative to buffer's origin
13058 - MEDIUM: http: http_send_name_header: remove references to msg and buffer
13059 - MEDIUM: http: remove buffer arg in a few header manipulation functions
13060 - MEDIUM: http: remove buffer arg in http_capture_bad_message
13061 - MEDIUM: http: remove buffer arg in http_msg_analyzer
13062 - MEDIUM: http: remove buffer arg in http_upgrade_v09_to_v10
13063 - MEDIUM: http: remove buffer arg in http_buffer_heavy_realign
13064 - MEDIUM: http: remove buffer arg in chunk parsing functions
13065 - MINOR: http: remove useless wrapping checks in http_msg_analyzer
13066 - MEDIUM: buffers: fix unsafe use of buffer_ignore at some places
13067 - MEDIUM: buffers: add new pointer wrappers and get rid of almost all buffer_wrap_add calls
13068 - MEDIUM: buffers: implement b_adv() to advance a buffer's pointer
13069 - MEDIUM: buffers: rename a number of buffer management functions
13070 - MEDIUM: http: add a prefetch function for ACL pattern fetch
13071 - MEDIUM: http: make all ACL fetch function use acl_prefetch_http()
13072 - BUG/MINOR: http_auth: ACLs are volatile, not permanent
13073 - MEDIUM: http/acl: merge all request and response ACL fetches of headers and cookies
13074 - MEDIUM: http/acl: make acl_fetch_hdr_{ip,val} rely on acl_fetch_hdr()
13075 - MEDIUM: add a new typed argument list parsing framework
13076 - MAJOR: acl: make use of the new argument parsing framework
13077 - MAJOR: acl: store the ACL argument types in the ACL keyword declaration
13078 - MEDIUM: acl: acl_find_target() now resolves arguments based on their types
13079 - MAJOR: acl: make acl_find_targets also resolve proxy names at config time
13080 - MAJOR: acl: ensure that implicit table and proxies are valid
13081 - MEDIUM: acl: remove unused tests for missing args when args are mandatory
13082 - MEDIUM: pattern: replace type pattern_arg with type arg
13083 - MEDIUM: pattern: get rid of arg_i in all functions making use of arguments
13084 - MEDIUM: pattern: use the standard arg parser
13085 - MEDIUM: pattern: add an argument validation callback to pattern descriptors
13086 - MEDIUM: pattern: report the precise argument parsing error when known.
13087 - MEDIUM: acl: remove the ACL_TEST_F_NULL_MATCH flag
13088 - MINOR: pattern: add a new 'sample' type to store fetched data
13089 - MEDIUM: pattern: add new sample types to replace pattern types
13090 - MAJOR: acl: make use of the new sample struct and get rid of acl_test
13091 - MEDIUM: pattern/acl: get rid of temp_pattern in ACLs
13092 - MEDIUM: acl: get rid of the SET_RES flags
13093 - MEDIUM: get rid of SMP_F_READ_ONLY and SMP_F_MUST_FREE
13094 - MINOR: pattern: replace struct pattern with struct sample
13095 - MEDIUM: pattern: integrate pattern_data into sample and use sample everywhere
13096 - MEDIUM: pattern: retrieve the sample type in the sample, not in the keyword description
13097 - MEDIUM: acl/pattern: switch rdp_cookie functions stack up-down
13098 - MEDIUM: acl: replace acl_expr with args in acl fetch_* functions
13099 - MINOR: tcp: replace acl_fetch_rdp_cookie with smp_fetch_rdp_cookie
13100 - MEDIUM: acl/pattern: use the same direction scheme
13101 - MEDIUM: acl/pattern: start merging common sample fetch functions
13102 - MEDIUM: pattern: ensure that sample types always cast into other types.
13103 - MEDIUM: acl/pattern: factor out the src/dst address fetches
13104 - MEDIUM: acl: implement payload and payload_lv
13105 - CLEANUP: pattern: ensure that payload and payload_lv always stay in the buffer
13106 - MINOR: stick_table: centralize the handling of empty keys
13107 - MINOR: pattern: centralize handling of unstable data in pattern_process()
13108 - MEDIUM: pattern: use smp_fetch_rdp_cookie instead of the pattern specific version
13109 - MINOR: acl: set SMP_OPT_ITERATE on fetch functions
13110 - MINOR: acl: add a val_args field to keywords
13111 - MINOR: proto_tcp: validate arguments of payload and payload_lv ACLs
13112 - MEDIUM: http: merge acl and pattern header fetch functions
13113 - MEDIUM: http: merge ACL and pattern cookie fetches into a single one
13114 - MEDIUM: acl: report parsing errors to the caller
13115 - MINOR: arg: improve error reporting on invalid arguments
13116 - MINOR: acl: report errors encountered when loading patterns from files
13117 - MEDIUM: acl: extend the pattern parsers to report meaningful errors
13118 - REORG: use the name "sample" instead of "pattern" to designate extracted data
13119 - REORG: rename "pattern" files
13120 - MINOR: acl: add types to ACL patterns
13121 - MINOR: standard: add an IPv6 parsing function (str62net)
13122 - MEDIUM: acl: support IPv6 address matching
13123 - REORG: stream_interface: create a struct sock_ops to hold socket operations
13124 - REORG/MEDIUM: move protocol->{read,write} to sock_ops
13125 - REORG/MEDIUM: stream_interface: initialize socket ops from descriptors
13126 - REORG/MEDIUM: replace stream interface protocol functions by a proto pointer
13127 - REORG/MEDIUM: move the default accept function from sockstream to protocols.c
13128 - MEDIUM: proto_tcp: remove src6 and dst6 pattern fetch methods
13129 - BUG/MINOR: http: error snapshots are wrong if buffer wraps
13130 - BUG/MINOR: http: ensure that msg->err_pos is always relative to buf->p
13131 - MEDIUM: http: improve error capture reports
13132 - MINOR: acl: add the cook_val() match to match a cookie against an integer
13133 - BUG/MEDIUM: send_proxy: fix initialisation of send_proxy_ofs
13134 - MEDIUM: memory: add the ability to poison memory at run time
13135 - BUG/MEDIUM: log: ensure that unique_id is properly initialized
13136 - MINOR: cfgparse: use a common errmsg pointer for all parsers
13137 - MEDIUM: cfgparse: make backend_parse_balance() use memprintf to report errors
13138 - MEDIUM: cfgparse: use the new error reporting framework for remaining cfg_keywords
13139 - MINOR: http: replace http_message_realign() with buffer_slow_realign()
13140
Willy Tarreau9eeb57b2012-03-26 06:15:29 +0200131412012/03/26 : 1.5-dev8
13142 - MINOR: patch for minor typo (ressources/resources)
13143 - MEDIUM: http: add support for sending the server's name in the outgoing request
13144 - DOC: mention that default checks are TCP connections
13145 - BUG/MINOR: fix options forwardfor if-none when an alternative header name is specified
13146 - CLEANUP: Make check_statuses, analyze_statuses and process_chk static
13147 - CLEANUP: Fix HCHK spelling errors
13148 - BUG/MINOR: fix typo in processing of http-send-name-header
13149 - MEDIUM: log: Use linked lists for loggers
13150 - BUILD: fix declaration inside a scope block
13151 - REORG: log: split send_log function
13152 - MINOR: config: Parse the string of the log-format config keyword
13153 - MINOR: add ultoa, ulltoa, ltoa, lltoa implementations
13154 - MINOR: Date and time fonctions that don't use snprintf
13155 - MEDIUM: log: make http_sess_log use log_format
13156 - DOC: log-format documentation
13157 - MEDIUM: log: use log_format for mode tcplog
13158 - MEDIUM: log-format: backend source address %Bi %Bp
13159 - BUG/MINOR: log-format: fix %o flag
13160 - BUG/MEDIUM: bad length in log_format and __send_log
13161 - MINOR: logformat %st is signed
13162 - BUILD/MINOR: fix the source URL in the spec file
13163 - DOC: acl is http_first_req, not http_req_first
13164 - BUG/MEDIUM: don't trim last spaces from headers consisting only of spaces
13165 - MINOR: acl: add new matches for header/path/url length
13166 - BUILD: halog: make halog build on solaris
13167 - BUG/MINOR: don't use a wrong port when connecting to a server with mapped ports
13168 - MINOR: remove the client/server side distinction in SI addresses
13169 - MINOR: halog: add support for matching queued requests
13170 - DOC: indicate that cookie "prefix" and "indirect" should not be mixed
13171 - OPTIM/MINOR: move struct sockaddr_storage to the tail of structs
13172 - OPTIM/MINOR: make it possible to change pipe size (tune.pipesize)
13173 - BUILD/MINOR: silent a build warning in src/pipe.c (fcntl)
13174 - OPTIM/MINOR: move the hdr_idx pools out of the proxy struct
13175 - MEDIUM: tune.http.maxhdr makes it possible to configure the maximum number of HTTP headers
13176 - BUG/MINOR: fix a segfault when parsing a config with undeclared peers
13177 - CLEANUP: rename possibly confusing struct field "tracked"
13178 - BUG/MEDIUM: checks: fix slowstart behaviour when server tracking is in use
13179 - MINOR: config: tolerate server "cookie" setting in non-HTTP mode
13180 - MEDIUM: buffers: add some new primitives and rework existing ones
13181 - BUG: buffers: don't return a negative value on buffer_total_space_res()
13182 - MINOR: buffers: make buffer_pointer() support negative pointers too
13183 - CLEANUP: kill buffer_replace() and use an inline instead
13184 - BUG: tcp: option nolinger does not work on backends
13185 - CLEANUP: ebtree: remove a few annoying signedness warnings
13186 - CLEANUP: ebtree: clarify licence and update to 6.0.6
13187 - CLEANUP: ebtree: remove 4-year old harmless typo in duplicates insertion code
13188 - CLEANUP: ebtree: remove another typo, a wrong initialization in insertion code
13189 - BUG: ebtree: ebst_lookup() could return the wrong entry
13190 - OPTIM: stream_sock: reduce the amount of in-flight spliced data
13191 - OPTIM: stream_sock: save a failed recv syscall when splice returns EAGAIN
13192 - MINOR: acl: add support for TLS server name matching using SNI
13193 - BUG: http: re-enable TCP quick-ack upon incomplete HTTP requests
13194 - BUG: proto_tcp: don't try to bind to a foreign address if sin_family is unknown
13195 - MINOR: pattern: export the global temporary pattern
13196 - CLEANUP: patterns: get rid of pattern_data_setstring()
13197 - MEDIUM: acl: use temp_pattern to store fetched information in the "method" match
13198 - MINOR: acl: include pattern.h to make pattern migration more transparent
13199 - MEDIUM: pattern: change the pattern data integer from unsigned to signed
13200 - MEDIUM: acl: use temp_pattern to store any integer-type information
13201 - MEDIUM: acl: use temp_pattern to store any address-type information
13202 - CLEANUP: acl: integer part of acl_test is not used anymore
13203 - MEDIUM: acl: use temp_pattern to store any string-type information
13204 - CLEANUP: acl: remove last data fields from the acl_test struct
13205 - MEDIUM: http: replace get_ip_from_hdr2() with http_get_hdr()
13206 - MEDIUM: patterns: the hdr() pattern is now of type string
13207 - DOC: add minimal documentation on how ACLs work internally
13208 - DOC: add a coding-style file
13209 - OPTIM: halog: keep a fast path for the lines-count only
13210 - CLEANUP: silence a warning when building on sparc
13211 - BUG: http: tighten the list of allowed characters in a URI
13212 - MEDIUM: http: block non-ASCII characters in URIs by default
13213 - DOC: add some documentation from RFC3986 about URI format
13214 - BUG/MINOR: cli: correctly remove the whole table on "clear table"
13215 - BUG/MEDIUM: correctly disable servers tracking another disabled servers.
13216 - BUG/MEDIUM: zero-weight servers must not dequeue requests from the backend
13217 - MINOR: halog: add some help on the command line
13218 - BUILD: fix build error on FreeBSD
13219 - BUG: fix double free in peers config error path
13220 - MEDIUM: improve config check return codes
13221 - BUILD: make it possible to look for pcre in the default system paths
13222 - MINOR: config: emit a warning when 'default_backend' masks servers
13223 - MINOR: backend: rework the LC definition to support other connection-based algos
13224 - MEDIUM: backend: add the 'first' balancing algorithm
13225 - BUG: fix httplog trailing LF
13226 - MEDIUM: increase chunk-size limit to 2GB-1
13227 - BUG: queue: fix dequeueing sequence on HTTP keep-alive sessions
13228 - BUG: http: disable TCP delayed ACKs when forwarding content-length data
13229 - BUG: checks: fix server maintenance exit sequence
13230 - BUG/MINOR: stream_sock: don't remove BF_EXPECT_MORE and BF_SEND_DONTWAIT on partial writes
13231 - DOC: enumerate valid status codes for "observe layer7"
13232 - MINOR: buffer: switch a number of buffer args to const
13233 - CLEANUP: silence signedness warning in acl.c
13234 - BUG: stream_sock: si->release was not called upon shutw()
13235 - MINOR: log: use "%ts" to log term status only and "%tsc" to log with cookie
13236 - BUG/CRITICAL: log: fix risk of crash in development snapshot
13237 - BUG/MAJOR: possible crash when using capture headers on TCP frontends
13238 - MINOR: config: disable header captures in TCP mode and complain
13239
Willy Tarreau60612eb2011-09-10 23:43:11 +0200132402011/09/10 : 1.5-dev7
13241 - [BUG] fix binary stick-tables
13242 - [MINOR] http: *_dom matching header functions now also split on ":"
13243 - [BUG] checks: fix support of Mysqld >= 5.5 for mysql-check
13244 - [MINOR] acl: add srv_conn acl to count connections on a specific backend server
13245 - [MINOR] check: add redis check support
13246 - [DOC] small fixes to clearly distinguish between keyword and variables
13247 - [MINOR] halog: add support for termination code matching (-tcn/-TCN)
13248 - [DOC] Minor spelling fixes and grammatical enhancements
13249 - [CLEANUP] dumpstats: make symbols static where possible
13250 - [MINOR] Break out dumping table
13251 - [MINOR] Break out processing of clear table
13252 - [MINOR] Allow listing of stick table by key
13253 - [MINOR] Break out all stick table socat command parsing
13254 - [MINOR] More flexible clearing of stick table
13255 - [MINOR] Allow showing and clearing by key of ipv6 stick tables
13256 - [MINOR] Allow showing and clearing by key of integer stick tables
13257 - [MINOR] Allow showing and clearing by key of string stick tables
13258 - [CLEANUP] Remove assigned but unused variables
13259 - [CLEANUP] peers.h: fix declarations
13260 - [CLEANUP] session.c: Make functions static where possible
13261 - [MINOR] Add active connection list to server
13262 - [MINOR] Allow shutdown of sessions when a server becomes unavailable
13263 - [MINOR] Add down termination condition
13264 - [MINOR] Make appsess{,ion}_refresh static
13265 - [MINOR] Add rdp_cookie pattern fetch function
13266 - [CLEANUP] Remove unnecessary casts
13267 - [MINOR] Add non-stick server option
13268 - [MINOR] Consistently use error in tcp_parse_tcp_req()
13269 - [MINOR] Consistently free expr on error in cfg_parse_listen()
13270 - [MINOR] Free rdp_cookie_name on denint()
13271 - [MINOR] Free tcp rules on denint()
13272 - [MINOR] Free stick table pool on denint()
13273 - [MINOR] Free stick rules on denint()
13274 - [MEDIUM] Fix stick-table replication on soft-restart
13275 - [MEDIUM] Correct ipmask() logic
13276 - [MINOR] Correct type in table dump examples
13277 - [MINOR] Fix build error in stream_int_register_handler()
13278 - [MINOR] Use DPRINTF in assign_server()
13279 - [BUG] checks: http-check expect could fail a check on multi-packet responses
13280 - [DOC] fix minor typo in the "dispatch" doc
13281 - [BUG] proto_tcp: fix address binding on remote source
13282 - [MINOR] http: don't report the "haproxy" word on the monitoring response
13283 - [REORG] http: move HTTP error codes back to proto_http.h
13284 - [MINOR] http: make the "HTTP 200" status code configurable.
13285 - [MINOR] http: partially revert the chunking optimization for now
13286 - [MINOR] stream_sock: always clear BF_EXPECT_MORE upon complete transfer
13287 - [CLEANUP] stream_sock: remove unneeded FL_TCP and factor out test
13288 - [MEDIUM] http: add support for "http-no-delay"
13289 - [OPTIM] http: optimize chunking again in non-interactive mode
13290 - [OPTIM] stream_sock: avoid fast-forwarding of partial data
13291 - [OPTIM] stream_sock: don't use splice on too small payloads
13292 - [MINOR] config: make it possible to specify a cookie even without a server
13293 - [BUG] stats: support url-encoded forms
13294 - [MINOR] config: automatically compute a default fullconn value
13295 - [CLEANUP] config: remove some left-over printf debugging code from previous patch
13296 - [DOC] add missing entry or stick store-response
13297 - [MEDIUM] http: add support for 'cookie' and 'set-cookie' patterns
13298 - [BUG] halog: correctly handle truncated last line
13299 - [MINOR] halog: make SKIP_CHAR stop on field delimiters
13300 - [MINOR] halog: add support for HTTP log matching (-H)
13301 - [MINOR] halog: gain back performance before SKIP_CHAR fix
13302 - [OPTIM] halog: cache some common fields positions
13303 - [OPTIM] halog: check once for correct line format and reuse the pointer
13304 - [OPTIM] halog: remove many 'if' by using a function pointer for the filters
13305 - [OPTIM] halog: remove support for tab delimiters in input data
13306 - [BUG] session: risk of crash on out of memory (1.5-dev regression)
13307 - [MINOR] session: try to emit a 500 response on memory allocation errors
13308 - [OPTIM] stream_sock: reduce the default number of accepted connections at once
13309 - [BUG] stream_sock: disable listener when system resources are exhausted
13310 - [MEDIUM] proxy: add a PAUSED state to listeners and move socket tricks out of proxy.c
13311 - [BUG] stream_sock: ensure orphan listeners don't accept too many connections
13312 - [MINOR] listeners: add listen_full() to mark a listener full
13313 - [MINOR] listeners: add support for queueing resource limited listeners
13314 - [MEDIUM] listeners: put listeners in queue upon resource shortage
13315 - [MEDIUM] listeners: queue proxy-bound listeners at the proxy's
13316 - [MEDIUM] listeners: don't stop proxies when global maxconn is reached
13317 - [MEDIUM] listeners: don't change listeners states anymore in maintain_proxies
13318 - [CLEANUP] proxy: rename a few proxy states (PR_STIDLE and PR_STRUN)
13319 - [MINOR] stats: report a "WAITING" state for sockets waiting for resource
13320 - [MINOR] proxy: make session rate-limit more accurate
13321 - [MINOR] sessions: only wake waiting listeners up if rate limit is OK
13322 - [BUG] proxy: peers must only be stopped once, not upon every call to maintain_proxies
13323 - [CLEANUP] proxy: merge maintain_proxies() operation inside a single loop
13324 - [MINOR] task: new function task_schedule() to schedule a wake up
13325 - [MAJOR] proxy: finally get rid of maintain_proxies()
13326 - [BUG] proxy: stats frontend and peers were missing many initializers
13327 - [MEDIUM] listeners: add a global listener management task
13328 - [MINOR] proxy: make findproxy() return proxies from numeric IDs too
13329 - [DOC] fix typos, "#" is a sharp, not a dash
13330 - [MEDIUM] stats: add support for changing frontend's maxconn at runtime
13331 - [MEDIUM] checks: group health checks methods by values and save option bits
13332 - [MINOR] session-counters: add the ability to clear the counters
13333 - [BUG] check: http-check expect + regex would crash in defaults section
13334 - [MEDIUM] http: make x-forwarded-for addition conditional
13335 - [REORG] build: move syscall redefinition to specific places
13336 - [CLEANUP] update the year in the copyright banner
13337 - [BUG] possible crash in 'show table' on stats socket
13338 - [BUG] checks: use the correct destination port for sending checks
13339 - [BUG] backend: risk of picking a wrong port when mapping is used with crossed families
13340 - [MINOR] make use of set_host_port() and get_host_port() to get rid of family mismatches
13341 - [DOC] fixed a few "sensible" -> "sensitive" errors
13342 - [MINOR] make use of addr_to_str() and get_host_port() to replace many inet_ntop()
13343 - [BUG] http: trailing white spaces must also be trimmed after headers
13344 - [MINOR] stats: display "<NONE>" instead of the frontend name when unknown
13345 - [MINOR] http: take a capture of too large requests and responses
13346 - [MINOR] http: take a capture of truncated responses
13347 - [MINOR] http: take a capture of bad content-lengths.
13348 - [DOC] add a few old and uncommitted docs
13349 - [CLEANUP] cfgparse: fix reported options for the "bind" keyword
13350 - [MINOR] halog: add -hs/-HS to filter by HTTP status code range
13351 - [MINOR] halog: support backslash-escaped quotes
13352 - [CLEANUP] remove dirty left-over of a debugging message
13353 - [MEDIUM] stats: disable complex socket reservation for stats socket
13354 - [CLEANUP] remove a useless test in manage_global_listener_queue()
13355 - [MEDIUM] stats: add the "set maxconn" setting to the command line interface
13356 - [MEDIUM] add support for global.maxconnrate to limit the per-process conn rate.
13357 - [MINOR] stats: report the current and max global connection rates
13358 - [MEDIUM] stats: add the ability to adjust the global maxconnrate
13359 - [BUG] peers: don't pre-allocate 65000 connections to each peer
13360 - [MEDIUM] don't limit peers nor stats socket to maxconn nor maxconnrate
13361 - [BUG] peers: the peer frontend must not emit any log
13362 - [CLEANUP] proxy: make pause_proxy() perform the required controls and emit the logs
13363 - [BUG] peers: don't keep a peers section which has a NULL frontend
13364 - [BUG] peers: ensure the peers are resumed if they were paused
13365 - [MEDIUM] stats: add the ability to enable/disable/shutdown a frontend at runtime
13366 - [MEDIUM] session: make session_shutdown() an independant function
13367 - [MEDIUM] stats: offer the possibility to kill a session from the CLI
13368 - [CLEANUP] stats: centralize tests for backend/server inputs on the CLI
13369 - [MEDIUM] stats: offer the possibility to kill sessions by server
13370 - [MINOR] halog: do not consider byte 0x8A as end of line
13371 - [MINOR] frontend: ensure debug message length is always initialized
13372 - [OPTIM] halog: make fgets parse more bytes by blocks
13373 - [OPTIM] halog: add assembly version of the field lookup code
13374 - [MEDIUM] poll: add a measurement of idle vs work time
13375 - [CLEANUP] startup: report only the basename in the usage message
13376 - [MINOR] startup: add an option to change to a new directory
13377 - [OPTIM] task: don't scan the run queue if we know it's empty
13378 - [BUILD] stats: stdint is not present on solaris
13379 - [DOC] update the README file to reflect new naming rules for patches
13380 - [MINOR] stats: report the number of requests intercepted by the frontend
13381 - [DOC] update ROADMAP file
13382
Willy Tarreau04df1122011-04-08 00:56:41 +0200133832011/04/08 : 1.5-dev6
13384 - [BUG] stream_sock: use get_addr_len() instead of sizeof() on sockaddr_storage
13385 - [BUG] TCP source tracking was broken with IPv6 changes
13386 - [BUG] stick-tables did not work when converting IPv6 to IPv4
13387 - [CRITICAL] fix risk of crash when dealing with space in response cookies
13388
Willy Tarreaub06ed2c2011-03-29 01:10:33 +0200133892011/03/29 : 1.5-dev5
13390 - [BUG] standard: is_addr return value for IPv4 was inverted
13391 - [MINOR] update comment about IPv6 support for server
13392 - [MEDIUM] use getaddrinfo to resolve names if gethostbyname fail
13393 - [DOC] update IPv6 support for bind
13394 - [DOC] document IPv6 support for server
13395 - [DOC] fix a minor typo
13396 - [MEDIUM] IPv6 support for syslog
13397 - [DOC] document IPv6 support for syslog
13398 - [MEDIUM] IPv6 support for stick-tables
13399 - [DOC] document IPv6 support for stick-tables
13400 - [DOC] update ROADMAP file
13401 - [BUG] session: src_conn_cur was returning src_conn_cnt instead
13402 - [MINOR] frontend: add a make_proxy_line function
13403 - [MEDIUM] stream_sock: add support for sending the proxy protocol header line
13404 - [MEDIUM] server: add support for the "send-proxy" option
13405 - [DOC] update the spec on the proxy protocol
13406 - [BUILD] proto_tcp: fix build issue with CTTPROXY
13407 - [DOC] update ROADMAP file
13408 - [MEDIUM] config: rework the IPv4/IPv6 address parser to support host-only addresses
13409 - [MINOR] cfgparse: better report wrong listening addresses and make use of str2sa_range
13410 - [BUILD] add the USE_GETADDRINFO build option
13411 - [TESTS] provide a test case for various address formats
13412 - [BUG] session: conn_retries was not always initialized
13413 - [BUG] log: retrieve the target from the session, not the SI
13414 - [BUG] http: fix possible incorrect forwarded wrapping chunk size (take 2)
13415 - [MINOR] tools: add two macros MID_RANGE and MAX_RANGE
13416 - [BUG] http: fix content-length handling on 32-bit platforms
13417 - [OPTIM] buffers: uninline buffer_forward()
13418 - [BUG] stream_sock: fix handling for server side PROXY protocol
13419 - [MINOR] acl: add support for table_cnt and table_avl matches
13420 - [DOC] update ROADMAP file
13421
Willy Tarreaue0052cc2011-03-13 22:15:02 +0100134222011/03/13 : 1.5-dev4
13423 - [MINOR] cfgparse: Check whether the path given for the stats socket actually fits into the sockaddr_un structure to avoid truncation.
13424 - [MINOR] unix sockets : inherits the backlog size from the listener
13425 - [CLEANUP] unix sockets : move create_uxst_socket() in uxst_bind_listener()
13426 - [DOC] fix a minor typo
13427 - [DOC] fix ignore-persist documentation
13428 - [MINOR] add warnings on features not compatible with multi-process mode
13429 - [BUG] http: fix http-pretend-keepalive and httpclose/tunnel mode
13430 - [MINOR] stats: add support for several packets in stats admin
13431 - [BUG] stats: admin commands must check the proxy state
13432 - [BUG] stats: admin web interface must check the proxy state
13433 - [MINOR] http: add pattern extraction method to stick on query string parameter
13434 - [MEDIUM] add internal support for IPv6 server addresses
13435 - [MINOR] acl: add be_id/srv_id to match backend's and server's id
13436 - [MINOR] log: add support for passing the forwarded hostname
13437 - [MINOR] log: ability to override the syslog tag
13438 - [MINOR] checks: add PostgreSQL health check
13439 - [DOC] update ROADMAP file
13440 - [BUILD] pattern: use 'int' instead of 'int32_t'
13441 - [OPTIM] linux: add support for bypassing libc to force using vsyscalls
13442 - [BUG] debug: report the correct poller list in verbose mode
13443 - [BUG] capture: do not capture a cookie if there is no memory left
13444 - [BUG] appsession: fix possible double free in case of out of memory
13445 - [CRITICAL] cookies: mixing cookies in indirect mode and appsession can crash the process
13446 - [BUG] http: correctly update the header list when removing two consecutive headers
13447 - [BUILD] add the CPU=native and ARCH=32/64 build options
13448 - [BUILD] add -fno-strict-aliasing to fix warnings with gcc >= 4.4
13449 - [CLEANUP] hash: move the avalanche hash code globally available
13450 - [MEDIUM] hash: add support for an 'avalanche' hash-type
13451 - [DOC] update roadmap file
13452 - [BUG] http: do not re-enable the PROXY analyser on keep-alive
13453 - [OPTIM] http: don't send each chunk in a separate packet
13454 - [DOC] fix minor typos reported recently in the peers section
13455 - [DOC] fix another typo in the doc
13456 - [MINOR] stats: report HTTP message state and buffer flags in error dumps
13457 - [BUG] http chunking: don't report a parsing error on connection errors
13458 - [BUG] stream_interface: truncate buffers when sending error messages
13459 - [MINOR] http: support wrapping messages in error captures
13460 - [MINOR] http: capture incorrectly chunked message bodies
13461 - [MINOR] stats: add global event ID and count
13462 - [BUG] http: analyser optimizations broke pipelining
13463 - [CLEANUP] frontend: only apply TCP-specific settings to TCP/TCP6 sockets
13464 - [BUG] http: fix incorrect error reporting during data transfers
13465 - [CRITICAL] session: correctly leave turn-around and queue states on abort
13466 - [BUG] session: release slot before processing pending connections
13467 - [MINOR] tcp: add support for dynamic MSS setting
13468 - [BUG] stick-table: correctly terminate string keys during lookups
13469 - [BUG] acl: fix handling of empty lines in pattern files
13470 - [BUG] stick-table: use the private buffer when padding strings
13471 - [BUG] ebtree: fix ebmb_lookup() with len smaller than the tree's keys
13472 - [OPTIM] ebtree: ebmb_lookup: reduce stack usage by moving the return code out of the loop
13473 - [OPTIM] ebtree: inline ebst_lookup_len and ebis_lookup_len
13474 - [REVERT] undo the stick-table string key lookup fixes
13475 - [MINOR] http: improve url_param pattern extraction to ignore empty values
13476 - [BUILD] frontend: shut a warning with TCP_MAXSEG
13477 - [BUG] http: update the header list's tail when removing the last header
13478 - [DOC] fix minor typo in the proxy protocol doc
13479 - [DOC] fix typos (http-request instead of http-check)
13480 - [BUG] http: use correct ACL pointer when evaluating authentication
13481 - [BUG] cfgparse: correctly count one socket per port in ranges
13482 - [BUG] startup: set the rlimits before binding ports, not after.
13483 - [BUG] acl: srv_id must return no match when the server is NULL
13484 - [MINOR] acl: add ability to check for internal response-only parameters
13485 - [MINOR] acl: srv_id is only valid in responses
13486 - [MINOR] config: warn if response-only conditions are used in "redirect" rules
13487 - [BUG] acl: fd leak when reading patterns from file
13488 - [DOC] fix minor typo in "usesrc"
13489 - [BUG] http: fix possible incorrect forwarded wrapping chunk size
13490 - [BUG] http: fix computation of message body length after forwarding has started
13491 - [BUG] http: balance url_param did not work with first parameters on POST
13492 - [TESTS] update the url_param regression test to test check_post too
13493 - [DOC] update ROADMAP
13494 - [DOC] internal: reflect the fact that SI_ST_ASS is transient
13495 - [BUG] config: don't crash on empty pattern files.
13496 - [MINOR] stream_interface: make use of an applet descriptor for IO handlers
13497 - [REORG] stream_interface: move the st0, st1 and private members to the applet
13498 - [REORG] stream_interface: split the struct members in 3 parts
13499 - [REORG] session: move client and server address to the stream interface
13500 - [REORG] tcp: make tcpv4_connect_server() take the target address from the SI
13501 - [MEDIUM] stream_interface: store the target pointer and type
13502 - [CLEANUP] stream_interface: remove the applet.handler pointer
13503 - [MEDIUM] log: take the logged server name from the stream interface
13504 - [CLEANUP] session: remove data_source from struct session
13505 - [CLEANUP] stats: make all dump functions only rely on the stream interface
13506 - [REORG] session: move the data_ctx struct to the stream interface's applet
13507 - [MINOR] proxy: add PR_O2_DISPATCH to detect dispatch mode
13508 - [MINOR] cfgparse: only keep one of dispatch, transparent, http_proxy
13509 - [MINOR] session: add a pointer to the new target into the session
13510 - [MEDIUM] session: remove s->prev_srv which is not needed anymore
13511 - [CLEANUP] stream_interface: use inline functions to manipulate targets
13512 - [MAJOR] session: remove the ->srv pointer from struct session
13513 - [MEDIUM] stats: split frontend and backend stats
13514 - [MEDIUM] http: always evaluate http-request rules before stats http-request
13515 - [REORG] http: move the http-request rules to proto_http
13516 - [BUG] http: stats were not incremented on http-request deny
13517 - [MINOR] checks: report it if checks fail due to socket creation error
13518
Willy Tarreau442e8342010-11-11 23:29:35 +0100135192010/11/11 : 1.5-dev3
13520 - [DOC] fix http-request documentation
13521 - [MEDIUM] enable/disable servers from the stats web interface
13522 - [MEDIUM] stats: add an admin level
13523 - [DOC] stats: document the "stats admin" statement
13524 - [MINOR] startup: print the proxy socket which caused an error
13525 - [CLEANUP] Remove unneeded chars allocation
13526 - [MINOR] config: detect options not supported due to compilation options
13527 - [MINOR] Add pattern's fetchs payload and payload_lv
13528 - [MINOR] frontend: improve accept-proxy header parsing
13529 - [MINOR] frontend: add tcpv6 support on accept-proxy bind
13530 - [MEDIUM] Enhance message errors management on binds
13531 - [MINOR] Manage unix socket source field on logs
13532 - [MINOR] Manage unix socket source field on session dump on sock stats
13533 - [MINOR] Support of unix listener sockets for debug and log event messages on frontend.c
13534 - [MINOR] Add some tests on sockets family for port remapping and mode transparent.
13535 - [MINOR] Manage socket type unix for some logs
13536 - [MINOR] Enhance controls of socket's family on acls and pattern fetch
13537 - [MINOR] Support listener's sockets unix on http logs.
13538 - [MEDIUM] Add supports of bind on unix sockets.
13539 - [BUG] stick table purge failure if size less than 255
13540 - [BUG] stick table entries expire on counters updates/read or show table, even if there is no "expire" parameter
13541 - [MEDIUM] Implement tcp inspect response rules
13542 - [DOC] tcp-response content and inspect
13543 - [MINOR] new acls fetch req_ssl_hello_type and rep_ssl_hello_type
13544 - [DOC] acls rep_ssl_hello and req_ssl_hello
13545 - [MEDIUM] Create new protected pattern types CONSTSTRING and CONSTDATA to force memcpy if data from protected areas need to be manipulated.
13546 - [DOC] new type binary in stick-table
13547 - [DOC] stick store-response and new patterns payload and payload_lv
13548 - [MINOR] Manage all types (ip, integer, string, binary) on cli "show table" command
13549 - [MEDIUM] Create updates tree on stick table to manage sync.
13550 - [MAJOR] Add new files src/peer.c, include/proto/peers.h and include/types/peers.h for sync stick table management
13551 - [MEDIUM] Manage peers section parsing and stick table registration on peers.
13552 - [MEDIUM] Manage soft stop on peers proxy
13553 - [DOC] add documentation for peers section
13554 - [MINOR] checks: add support for LDAPv3 health checks
13555 - [MINOR] add better support to "mysql-check"
13556 - [BUG] Restore info about available active/backup servers
13557 - [CONTRIB] Update haproxy.pl
13558 - [CONTRIB] Update Cacti Tempates
13559 - [CONTRIB] add templates for Cacti.
13560 - [BUG] http: don't consider commas as a header delimitor within quotes
13561 - [MINOR] support a global jobs counter
13562 - [DOC] add a summary about cookie incompatibilities between specs and browsers
13563 - [DOC] fix description of cookie "insert" and "indirect" modes
13564 - [MEDIUM] http: fix space handling in the request cookie parser
13565 - [MEDIUM] http: fix space handling in the response cookie parser
13566 - [DOC] fix typo in the queue() definition (backend, not frontend)
13567 - [BUG] deinit: unbind listeners before freeing them
13568 - [BUG] stream_interface: only call si->release when both dirs are closed
13569 - [MEDIUM] buffers: rework the functions to exchange between SI and buffers
13570 - [DOC] fix typo in the avg_queue() and be_conn() definition (backend, not frontend)
13571 - [MINOR] halog: add '-tc' to sort by termination codes
13572 - [MINOR] halog: skip non-traffic logs for -st and -tc
13573 - [BUG] stream_sock: cleanly disable the listener in case of resource shortage
13574 - [BUILD] stream_sock: previous fix lacked the #include, causing a warning.
13575 - [DOC] bind option is "defer-accept", not "defer_accept"
13576 - [DOC] missing index entry for http-check send-state
13577 - [DOC] tcp-request inspect-delay is for backends too
13578 - [BUG] ebtree: string_equal_bits() could return garbage on identical strings
13579 - [BUG] stream_sock: try to flush any extra pending request data after a POST
13580 - [BUILD] proto_http: eliminate some build warnings with gcc-2.95
13581 - [MEDIUM] make it possible to combine http-pretend-keepalived with httpclose
13582 - [MEDIUM] tcp-request : don't wait for inspect-delay to expire when the buffer is full
13583 - [MEDIUM] checks: add support for HTTP contents lookup
13584 - [TESTS] add test-check-expect to test various http-check methods
13585 - [MINOR] global: add "tune.chksize" to change the default check buffer size
13586 - [MINOR] cookie: add options "maxidle" and "maxlife"
13587 - [MEDIUM] cookie: support client cookies with some contents appended to their value
13588 - [MINOR] http: make some room in the transaction flags to extend cookies
13589 - [MINOR] cookie: add the expired (E) and old (O) flags for request cookies
13590 - [MEDIUM] cookie: reassign set-cookie status flags to store more states
13591 - [MINOR] add encode/decode function for 30-bit integers from/to base64
13592 - [MEDIUM] cookie: check for maxidle and maxlife for incoming dated cookies
13593 - [MEDIUM] cookie: set the date in the cookie if needed
13594 - [DOC] document the cookie maxidle and maxlife parameters
13595 - [BUG] checks: don't log backend down for all zero-weight servers
13596 - [MEDIUM] checks: set server state to one state from failure when leaving maintenance
13597 - [BUG] config: report correct keywords for "observe"
13598 - [MINOR] checks: ensure that we can inherit binary checks from the defaults section
13599 - [MINOR] acl: add the http_req_first match
13600 - [DOC] fix typos about bind-process syntax
13601 - [BUG] cookie: correctly unset default cookie parameters
13602 - [MINOR] cookie: add support for the "preserve" option
13603 - [BUG] ebtree: fix duplicate strings insertion
13604 - [CONTRIB] halog: report per-url counts, errors and times
13605 - [CONTRIB] halog: minor speed improvement in timer parser
13606 - [MINOR] buffers: add a new request analyser flag for PROXY mode
13607 - [MINOR] listener: add the "accept-proxy" option to the "bind" keyword
13608 - [MINOR] standard: add read_uint() to parse a delimited unsigned integer
13609 - [MINOR] standard: change arg type from const char* to char*
13610 - [MINOR] frontend: add a new analyser to parse a proxied connection
13611 - [MEDIUM] session: call the frontend_decode_proxy analyser on proxied connections
13612 - [DOC] add the proxy protocol's specifications
13613 - [DOC] document the 'accept-proxy' bind option
13614 - [MINOR] cfgparse: report support of <path> for the 'bind' statements
13615 - [DOC] add references to unix socket handling
13616 - [MINOR] move MAXPATHLEN definition to compat.h
13617 - [MEDIUM] unix sockets: cleanup the error reporting path
13618 - [BUG] session: don't stop forwarding of data upon last packet
13619 - [CLEANUP] accept: replace some inappropriate Alert() calls with send_log()
13620 - [BUILD] peers: shut a printf format warning (key_size is a size_t)
13621 - [BUG] accept: don't close twice upon error
13622 - [OPTIM] session: don't recheck analysers when buffer flags have not changed
13623 - [OPTIM] stream_sock: don't clear FDs that are already cleared
13624 - [BUG] proto_tcp: potential bug on pattern fetch dst and dport
13625
Willy Tarreau37242fa2010-08-28 19:21:00 +0200136262010/08/28 : 1.5-dev2
13627 - [MINOR] startup: release unused structs after forking
13628 - [MINOR] startup: don't wait for nothing when no old pid remains
13629 - [CLEANUP] reference product branch 1.5
13630 - [MEDIUM] signals: add support for registering functions and tasks
13631 - [MEDIUM] signals: support redistribution of signal zero when stopping
13632 - [BUG] http: don't set auto_close if more data are expected
13633
Willy Tarreaufc815fd2010-08-25 10:56:53 +0200136342010/08/25 : 1.5-dev1
13635 - [BUG] stats: session rate limit gets garbaged in the stats
13636 - [DOC] mention 'option http-server-close' effect in Tq section
13637 - [DOC] summarize and highlight persistent connections behaviour
13638 - [DOC] add configuration samples
13639 - [BUG] http: dispatch and http_proxy modes were broken for a long time
13640 - [BUG] http: the transaction must be initialized even in TCP mode
13641 - [BUG] tcp: dropped connections must be counted as "denied" not "failed"
13642 - [BUG] consistent hash: balance on all servers, not only 2 !
13643 - [CONTRIB] halog: report per-server status codes, errors and response times
13644 - [BUG] http: the transaction must be initialized even in TCP mode (part 2)
13645 - [BUG] client: always ensure to zero rep->analysers
13646 - [BUG] session: clear BF_READ_ATTACHED before next I/O
13647 - [BUG] http: automatically close response if req is aborted
13648 - [BUG] proxy: connection rate limiting was eating lots of CPU
13649 - [BUG] http: report correct flags in case of client aborts during body
13650 - [TESTS] refine non-regression tests and add 4 new tests
13651 - [BUG] debug: wrong pointer was used to report a status line
13652 - [BUG] debug: correctly report truncated messages
13653 - [DOC] document the "dispatch" keyword
13654 - [BUG] stick_table: fix possible memory leak in case of connection error
13655 - [CLEANUP] acl: use 'L6' instead of 'L4' in ACL flags relying on contents
13656 - [MINOR] accept: count the incoming connection earlier
13657 - [CLEANUP] tcp: move some non tcp-specific layer6 processing out of proto_tcp
13658 - [CLEANUP] client: move some ACLs away to their respective locations
13659 - [CLEANUP] rename client -> frontend
13660 - [MEDIUM] separate protocol-level accept() from the frontend's
13661 - [MINOR] proxy: add a list to hold future layer 4 rules
13662 - [MEDIUM] config: parse tcp layer4 rules (tcp-request accept/reject)
13663 - [MEDIUM] tcp: check for pure layer4 rules immediately after accept()
13664 - [OPTIM] frontend: tell the compiler that errors are unlikely to occur
13665 - [MEDIUM] frontend: check for LI_O_TCP_RULES in the listener
13666 - [MINOR] frontend: only check for monitor-net rules if LI_O_CHK_MONNET is set
13667 - [CLEANUP] buffer->cto is not used anymore
13668 - [MEDIUM] session: finish session establishment sequence in with I/O handlers
13669 - [MEDIUM] session: initialize server-side timeouts after connect()
13670 - [MEDIUM] backend: initialize the server stream_interface upon connect()
13671 - [MAJOR] frontend: don't initialize the server-side stream_int anymore
13672 - [MEDIUM] session: move the conn_retries attribute to the stream interface
13673 - [MEDIUM] session: don't assign conn_retries upon accept() anymore
13674 - [MINOR] frontend: rely on the frontend and not the backend for INDEPSTR
13675 - [MAJOR] frontend: reorder the session initialization upon accept
13676 - [MINOR] proxy: add an accept() callback for the application layer
13677 - [MAJOR] frontend: split accept() into frontend_accept() and session_accept()
13678 - [MEDIUM] stats: rely on the standard session_accept() function
13679 - [MINOR] buffer: refine the flags that may wake an analyser up.
13680 - [MINOR] stream_sock: don't dereference a non-existing frontend
13681 - [MINOR] session: differenciate between accepted connections and received connections
13682 - [MEDIUM] frontend: count the incoming connection earlier
13683 - [MINOR] frontend: count denied TCP requests separately
13684 - [CLEANUP] stick_table: add/clarify some comments
13685 - [BUILD] memory: add a few missing parenthesis to the pool management macros
13686 - [MINOR] stick_table: add support for variable-sized data
13687 - [CLEANUP] stick_table: rename some stksess struct members to avoid confusion
13688 - [CLEANUP] stick_table: move pattern to key functions to stick_table.c
13689 - [MEDIUM] stick_table: add room for extra data types
13690 - [MINOR] stick_table: add support for "conn_cum" data type.
13691 - [MEDIUM] stick_table: don't overwrite data when storing an entry
13692 - [MINOR] config: initialize stick tables after all the parsing
13693 - [MINOR] stick_table: provide functions to return stksess data from a type
13694 - [MEDIUM] stick_table: move the server ID to a generic data type
13695 - [MINOR] stick_table: enable it for frontends too
13696 - [MINOR] stick_table: export the stick_table_key
13697 - [MINOR] tcp: add per-source connection rate limiting
13698 - [MEDIUM] stick_table: separate storage and update of session entries
13699 - [MEDIUM] stick-tables: add a reference counter to each entry
13700 - [MINOR] session: add a pointer to the tracked counters for the source
13701 - [CLEANUP] proto_tcp: make the config parser a little bit more flexible
13702 - [BUG] config: report the correct proxy type in tcp-request errors
13703 - [MINOR] config: provide a function to quote args in a more friendly way
13704 - [BUG] stick_table: the fix for the memory leak caused a regression
13705 - [MEDIUM] backend: support servers on 0.0.0.0
13706 - [BUG] stick-table: correctly refresh expiration timers
13707 - [MEDIUM] stream-interface: add a ->release callback
13708 - [MINOR] proxy: add a "parent" member to the structure
13709 - [MEDIUM] session: make it possible to call an I/O handler on both SI
13710 - [MINOR] tools: add a fast div64_32 function
13711 - [MINOR] freq_ctr: add new types and functions for periods different from 1s
13712 - [MINOR] errors: provide new status codes for config parsing functions
13713 - [BUG] http: denied requests must not be counted as denied resps in listeners
13714 - [MINOR] tools: add a get_std_op() function to parse operators
13715 - [MEDIUM] acl: make use of get_std_op() to parse intger ranges
13716 - [MAJOR] stream_sock: better wakeup conditions on read()
13717 - [BUG] session: analysers must be checked when SI state changes
13718 - [MINOR] http: reset analysers to listener's, not frontend's
13719 - [MEDIUM] session: support "tcp-request content" rules in backends
13720 - [BUILD] always match official tags when doing git-tar
13721 - [MAJOR] stream_interface: fix the wakeup conditions for embedded iohandlers
13722 - [MEDIUM] buffer: make buffer_feed* support writing non-contiguous chunks
13723 - [MINOR] tcp: src_count acl does not have a permanent result
13724 - [MAJOR] session: add track-counters to track counters related to the session
13725 - [MINOR] stick-table: provide a table lookup function
13726 - [MINOR] stick-table: use suffix "_cnt" for cumulated counts
13727 - [MEDIUM] session: move counter ACL fetches from proto_tcp
13728 - [MEDIUM] session: add concurrent connections counter
13729 - [MEDIUM] session: add data in and out volume counters
13730 - [MINOR] session: add the trk_conn_cnt ACL keyword to track connection counts
13731 - [MEDIUM] session-counters: automatically update tracked connection count
13732 - [MINOR] session: add the trk_conn_cur ACL keyword to track concurrent connection
13733 - [MINOR] session: add trk_kbytes_* ACL keywords to track data size
13734 - [MEDIUM] session: add a counter on the cumulated number of sessions
13735 - [MINOR] config: support a comma-separated list of store data types in stick-table
13736 - [MEDIUM] stick-tables: add support for arguments to data_types
13737 - [MEDIUM] stick-tables: add stored data argument type checking
13738 - [MEDIUM] session counters: add conn_rate and sess_rate counters
13739 - [MEDIUM] session counters: add bytes_in_rate and bytes_out_rate counters
13740 - [MINOR] stktable: add a stktable_update_key() function
13741 - [MINOR] session-counters: add a general purpose counter (gpc0)
13742 - [MEDIUM] session-counters: add HTTP req/err tracking
13743 - [MEDIUM] stats: add "show table [<name>]" to dump a stick-table
13744 - [MEDIUM] stats: add "clear table <name> key <value>" to clear table entries
13745 - [CLEANUP] stick-table: declare stktable_data_types as extern
13746 - [MEDIUM] stick-table: make use of generic types for stored data
13747 - [MINOR] stats: correctly report errors on "show table" and "clear table"
13748 - [MEDIUM] stats: add the ability to dump table entries matching criteria
13749 - [DOC] configuration: document all the new tracked counters
13750 - [DOC] stats: document "show table" and "clear table"
13751 - [MAJOR] session-counters: split FE and BE track counters
13752 - [MEDIUM] tcp: accept the "track-counters" in "tcp-request content" rules
13753 - [MEDIUM] session counters: automatically remove expired entries.
13754 - [MEDIUM] config: replace 'tcp-request <action>' with "tcp-request connection"
13755 - [MEDIUM] session-counters: make it possible to count connections from frontend
13756 - [MINOR] session-counters: use "track-sc{1,2}" instead of "track-{fe,be}-counters"
13757 - [MEDIUM] session-counters: correctly unbind the counters tracked by the backend
13758 - [CLEANUP] stats: use stksess_kill() to remove table entries
13759 - [DOC] update the references to session counters and to tcp-request connection
13760 - [DOC] cleanup: split a few long lines
13761 - [MEDIUM] http: forward client's close when abortonclose is set
13762 - [BUG] queue: don't dequeue proxy-global requests on disabled servers
13763 - [BUG] stats: global stats timeout may be specified before stats socket.
13764 - [BUG] conf: add tcp-request content rules to the correct list
13765
Willy Tarreau21475e32010-05-23 08:46:08 +0200137662010/05/23 : 1.5-dev0
13767 - exact copy of 1.4.6
13768
Willy Tarreau5fdd77d2010-05-16 22:34:28 +0200137692010/05/16 : 1.4.6
13770 - [BUILD] ebtree: update to v6.0.1 to remove references to dprintf()
13771 - [CLEANUP] acl: make use of eb_is_empty() instead of open coding the tree's emptiness test
13772 - [MINOR] acl: add srv_is_up() to check that a specific server is up or not
13773 - [DOC] add a few precisions about the use of RDP cookies
13774
Willy Tarreau9d4d9e32010-05-13 22:17:08 +0200137752010/05/13 : 1.4.5
13776 - [DOC] report minimum kernel version for tproxy in the Makefile
13777 - [MINOR] add the "ignore-persist" option to conditionally ignore persistence
13778 - [DOC] add the "ignore-persist" option to conditionally ignore persistence
13779 - [DOC] fix ignore-persist/force-persist documentation
13780 - [BUG] cttproxy: socket fd leakage in check_cttproxy_version
13781 - [DOC] doc/configuration.txt: fix typos
13782 - [MINOR] option http-pretend-keepalive is both for FEs and BEs
13783 - [MINOR] fix possible crash in debug mode with invalid responses
13784 - [MINOR] halog: add support for statisticts on status codes
13785 - [OPTIM] halog: use a faster zero test in fgets()
13786 - [OPTIM] halog: minor speedup by using unlikely()
13787 - [OPTIM] halog: speed up fgets2-64 by about 10%
13788 - [DOC] refresh the README file and merge the CONTRIB file into it
13789 - [MINOR] acl: support loading values from files
13790 - [MEDIUM] ebtree: upgrade to version 6.0
13791 - [MINOR] acl trees: add flags and union members to store values in trees
13792 - [MEDIUM] acl: add ability to insert patterns in trees
13793 - [MEDIUM] acl: add tree-based lookups of exact strings
13794 - [MEDIUM] acl: add tree-based lookups of networks
13795 - [MINOR] acl: ignore empty lines and comments in pattern files
13796 - [MINOR] stick-tables: add support for "stick on hdr"
13797
Willy Tarreau9508c1c2010-04-07 23:12:24 +0200137982010/04/07 : 1.4.4
13799 - [BUG] appsession should match the whole cookie name
13800 - [CLEANUP] proxy: move PR_O_SSL3_CHK to options2 to release one flag
13801 - [MEDIUM] backend: move the transparent proxy address selection to backend
13802 - [MINOR] add very fast IP parsing functions
13803 - [MINOR] add new tproxy flags for dynamic source address binding
13804 - [MEDIUM] add ability to connect to a server from an IP found in a header
13805 - [BUILD] config: last patch breaks build without CONFIG_HAP_LINUX_TPROXY
13806 - [MINOR] http: make it possible to pretend keep-alive when doing close
13807 - [MINOR] config: report "default-server" instead of "(null)" in error messages
13808
Willy Tarreau75934a12010-03-30 09:50:08 +0200138092010/03/30 : 1.4.3
13810 - [CLEANUP] stats: remove printf format warning in stats_dump_full_sess_to_buffer()
13811 - [MEDIUM] session: better fix for connection to servers with closed input
13812 - [DOC] indicate in the doc how to bind to port ranges
13813 - [BUG] backend: L7 hashing must not be performed on incomplete requests
13814 - [TESTS] add a simple program to test connection resets
13815 - [MINOR] cli: "show errors" should display "backend <NONE>" when backend was not used
13816 - [MINOR] config: emit warnings when HTTP-only options are used in TCP mode
13817 - [MINOR] config: allow "slowstart 0s"
13818 - [BUILD] 'make tags' did not consider files ending in '.c'
13819 - [MINOR] checks: add the ability to disable a server in the config
13820
Willy Tarreauda618cb2010-03-17 23:41:57 +0100138212010/03/17 : 1.4.2
13822 - [CLEANUP] product branch update
13823 - [DOC] Some more documentation cleanups
13824 - [BUG] clf logs segfault when capturing a non existant header
13825 - [OPTIM] config: only allocate check buffer when checks are enabled
13826 - [MEDIUM] checks: support multi-packet health check responses
13827 - [CLEANUP] session: remove duplicate test
13828 - [BUG] http: don't wait for response data to leave buffer is client has left
13829 - [MINOR] proto_uxst: set accept_date upon accept() to the wall clock time
13830 - [MINOR] stats: don't send empty lines in "show errors"
13831 - [MINOR] stats: make the data dump function reusable for other purposes
13832 - [MINOR] stats socket: add show sess <id> to dump details about a session
13833 - [BUG] stats: connection reset counters must be plain ascii, not HTML
13834 - [BUG] url_param hash may return a down server
13835 - [MINOR] force null-termination of hostname
13836 - [MEDIUM] connect to servers even when the input has already been closed
13837 - [BUG] don't merge anonymous ACLs !
13838 - [BUG] config: fix endless loop when parsing "on-error"
13839 - [MINOR] http: don't mark a server as failed when it returns 501/505
13840 - [OPTIM] checks: try to detect the end of response without polling again
13841 - [BUG] checks: don't report an error when recv() returns an error after data
13842 - [BUG] checks: don't abort when second poll returns an error
13843 - [MINOR] checks: make shutdown() silently fail
13844 - [BUG] http: fix truncated responses on chunk encoding when size divides buffer size
13845 - [BUG] init: unconditionally catch SIGPIPE
13846 - [BUG] checks: don't wait for a close to start parsing the response
13847
Willy Tarreauc5e60c32010-03-04 23:39:19 +0100138482010/03/04 : 1.4.1
13849 - [BUG] Clear-cookie path issue
13850 - [DOC] fix typo on stickiness rules
13851 - [BUILD] fix BSD and OSX makefiles for missing files
13852 - [BUILD] includes order breaks OpenBSD build
13853 - [BUILD] fix some build warnings on Solaris with is* macros
13854 - [BUG] logs: don't report "last data" when we have just closed after an error
13855 - [BUG] logs: don't report "proxy request" when server closes early
13856 - [BUILD] fix platform-dependant build issues related to crypt()
13857 - [STATS] count transfer aborts caused by client and by server
13858 - [STATS] frontend requests were not accounted for failed requests
13859 - [MINOR] report total number of processed connections when stopping a proxy
13860 - [DOC] be more clear about the limitation to one single monitor-net entry
13861
Willy Tarreaue18fdfd2010-02-26 14:55:22 +0100138622010/02/26 : 1.4.0
13863 - [MINOR] stats: report maint state for tracking servers too
13864 - [DOC] fix summary to add pattern extraction
13865 - [DOC] Documentation cleanups
13866 - [BUG] cfgparse memory leak and missing free calls in deinit()
13867 - [BUG] pxid/puid/luid: don't shift IDs when some of them are forced
13868 - [EXAMPLES] add auth.cfg
13869 - [BUG] uri_auth: ST_SHLGNDS should be 0x00000008 not 0x0000008
13870 - [BUG] uri_auth: do not attemp to convert uri_auth -> http-request more than once
13871 - [BUILD] auth: don't use unnamed unions
13872 - [BUG] config: report unresolvable host names as errors
13873 - [BUILD] fix build breakage with DEBUG_FULL
13874 - [DOC] fix a typo about timeout check and clarify the explanation.
13875 - [MEDIUM] http: don't use trash to realign large buffers
13876 - [STATS] report HTTP requests (total and rate) in frontends
13877 - [STATS] separate frontend and backend HTTP stats
13878 - [MEDIUM] http: revert to use a swap buffer for realignment
13879 - [MINOR] stats: report the request rate in frontends as cell titles
13880 - [MINOR] stats: mark areas with an underline when tooltips are available
13881 - [DOC] reorder some entries to maintain the alphabetical order
13882 - [DOC] cleanup of the keyword matrix
13883
Willy Tarreaub05613d2010-02-02 10:18:28 +0100138842010/02/02 : 1.4-rc1
13885 - [MEDIUM] add a maintenance mode to servers
13886 - [MINOR] http-auth: last fix was wrong
13887 - [CONTRIB] add base64rev-gen.c that was used to generate the base64rev table.
13888 - [MINOR] Base64 decode
13889 - [MINOR] generic auth support with groups and encrypted passwords
13890 - [MINOR] add ACL_TEST_F_NULL_MATCH
13891 - [MINOR] http-request: allow/deny/auth support for frontend/backend/listen
13892 - [MINOR] acl: add http_auth and http_auth_group
13893 - [MAJOR] use the new auth framework for http stats
13894 - [DOC] add info about userlists, http-request and http_auth/http_auth_group acls
13895 - [STATS] make it possible to change a CLI connection timeout
13896 - [BUG] patterns: copy-paste typo in type conversion arguments
13897 - [MINOR] pattern: make the converter more flexible by supporting void* and int args
13898 - [MINOR] standard: str2mask: string to netmask converter
13899 - [MINOR] pattern: add support for argument parsers for converters
13900 - [MINOR] pattern: add the "ipmask()" converting function
13901 - [MINOR] config: off-by-one in "stick-table" after list of converters
13902 - [CLEANUP] acl, patterns: make use of my_strndup() instead of malloc+memcpy
13903 - [BUG] restore accidentely removed line in last patch !
13904 - [MINOR] checks: make the HTTP check code add the CRLF itself
13905 - [MINOR] checks: add the server's status in the checks
13906 - [BUILD] halog: make without arch-specific optimizations
13907 - [BUG] halog: fix segfault in case of empty log in PCT mode (cherry picked from commit fe362fe4762151d209b9656639ee1651bc2b329d)
13908 - [MINOR] http: disable keep-alive when process is going down
13909 - [MINOR] acl: add build_acl_cond() to make it easier to add ACLs in config
13910 - [CLEANUP] config: use build_acl_cond() instead of parse_acl_cond()
13911 - [CLEANUP] config: use warnif_cond_requires_resp() to check for bad ACLs
13912 - [MINOR] prepare req_*/rsp_* to receive a condition
13913 - [CLEANUP] config: specify correct const char types to warnif_* functions
13914 - [MEDIUM] config: factor out the parsing of 20 req*/rsp* keywords
13915 - [MEDIUM] http: make the request filter loop check for optional conditions
13916 - [MEDIUM] http: add support for conditional request filter execution
13917 - [DOC] add some build info about the AIX platform (cherry picked from commit e41914c77edbc40aebf827b37542d37d758e371e)
13918 - [MEDIUM] http: add support for conditional request header addition
13919 - [MEDIUM] http: add support for conditional response header rewriting
13920 - [DOC] add some missing ACLs about response header matching
13921 - [MEDIUM] http: add support for proxy authentication
13922 - [MINOR] http-auth: make the 'unless' keyword work as expected
13923 - [CLEANUP] config: use build_acl_cond() to simplify http-request ACL parsing
13924 - [MEDIUM] add support for anonymous ACLs
13925 - [MEDIUM] http: switch to tunnel mode after status 101 responses
13926 - [MEDIUM] http: stricter processing of the CONNECT method
13927 - [BUG] config: reset check request to avoid double free when switching to ssl/sql
13928 - [MINOR] config: fix too large ssl-hello-check message.
13929 - [BUG] fix error response in case of server error
13930
Willy Tarreau2eba6aa2010-01-25 23:28:05 +0100139312010/01/25 : 1.4-dev8
13932 - [CLEANUP] Keep in sync "defaults" support between documentation and code
13933 - [MEDIUM] http: add support for Proxy-Connection header
13934 - [CRITICAL] buffers: buffer_insert_line2 must not change the ->w entry
13935 - [MINOR] http: remove a copy-paste typo in transaction cleaning
13936 - [BUG] http: trim any excess buffer data when recycling a connection
13937
Willy Tarreau6939b552010-01-25 01:54:37 +0100139382010/01/25 : 1.4-dev7
13939 - [BUG] appsession: possible memory leak in case of out of memory condition
13940 - [MINOR] config: don't accept 'appsession' in defaults section
13941 - [MINOR] Add function to parse a size in configuration
13942 - [MEDIUM] Add stick table (persistence) management functions and types
13943 - [MEDIUM] Add pattern fetch management types and functions
13944 - [MEDIUM] Add src dst and dport pattern fetches.
13945 - [MEDIUM] Add stick table configuration and init.
13946 - [MEDIUM] Add stick and store rules analysers.
13947 - [MINOR] add option "mysql-check" to use MySQL health checks
13948 - [BUG] health checks: fix requeued message
13949 - [OPTIM] remove SSP_O_VIA and SSP_O_STATUS
13950 - [BUG] checks: fix newline termination
13951 - [MINOR] acl: add fe_id/so_id to match frontend's and socket's id
13952 - [BUG] appsession's sessid must be reset at end of transaction
13953 - [BUILD] appsession did not build anymore under gcc-2.95
13954 - [BUG] server redirection used an uninitialized string.
13955 - [MEDIUM] http: fix handling of message pointers
13956 - [MINOR] http: fix double slash prefix with server redirect
13957 - [MINOR] http redirect: add the ability to append a '/' to the URL
13958 - [BUG] stream_interface: fix retnclose and remove cond_close
13959 - [MINOR] http redirect: don't explicitly state keep-alive on 1.1
13960 - [MINOR] http: move appsession 'sessid' from session to http_txn
13961 - [OPTIM] reorder http_txn to optimize cache lines placement
13962 - [MINOR] http: differentiate waiting for new request and waiting for a complete requst
13963 - [MINOR] http: add a separate "http-keep-alive" timeout
13964 - [MINOR] config: remove undocumented and buggy 'timeout appsession'
13965 - [DOC] fix various too large lines
13966 - [DOC] remove several trailing spaces
13967 - [DOC] add the doc about stickiness
13968 - [BUILD] remove a warning in standard.h on AIX
13969 - [BUG] checks: chars are unsigned on AIX, check was always true
13970 - [CLEANUP] stream_sock: MSG_NOSIGNAL is only for send(), not recv()
13971 - [BUG] check: we must not check for error before reading a response
13972 - [BUG] buffers: remove remains of wrong obsolete length check
13973 - [OPTIM] stream_sock: don't shutdown(write) when the socket is in error
13974 - [BUG] http: don't count req errors on client resets or t/o during keep-alive
13975 - [MEDIUM] http: don't switch to tunnel mode upon close
13976 - [DOC] add documentation about connection header processing
13977 - [MINOR] http: add http_remove_header2() to remove a header value.
13978 - [MINOR] tools: add a "word_match()" function to match words and ignore spaces
13979 - [MAJOR] http: rework request Connection header handling
13980 - [MAJOR] http: rework response Connection header handling
13981 - [MINOR] add the ability to force kernel socket buffer size.
13982 - [BUG] http_server_error() must not purge a previous pending response
13983 - [OPTIM] http: don't delay response if next request is incomplete
13984 - [MINOR] add the "force-persist" statement to force persistence on down servers
13985 - [MINOR] http: logs must report persistent connections to down servers
13986 - [BUG] buffer_replace2 must never change the ->w entry
13987
Willy Tarreau11f8f542010-01-08 07:49:44 +0100139882010/01/08 : 1.4-dev6
13989 - [BUILD] warning in stream_interface.h
13990 - [BUILD] warning ultoa_r returns char *
13991 - [MINOR] hana: only report stats if it is enabled
13992 - [MINOR] stats: add "a link" & "a href" for sockets
13993 - [MINOR]: stats: add show-legends to report additional informations
13994 - [MEDIUM] default-server support
13995 - [BUG]: add 'observer', 'on-error', 'error-limit' to supported options list
13996 - [MINOR] stats: add href to tracked server
13997 - [BUG] stats: show UP/DOWN status also in tracking servers
13998 - [DOC] Restore ability to search a keyword at the beginning of a line
13999 - [BUG] stats: cookie should be reported under backend not under proxy
14000 - [BUG] cfgparser/stats: fix error message
14001 - [BUG] http: disable auto-closing during chunk analysis
14002 - [BUG] http: fix hopefully last closing issue on data forwarding
14003 - [DEBUG] add an http_silent_debug function to debug HTTP states
14004 - [MAJOR] http: fix again the forward analysers
14005 - [BUG] http_process_res_common() must not skip the forward analyser
14006 - [BUG] http: some possible missed close remain in the forward chain
14007 - [BUG] http: redirect needed to be updated after recent changes
14008 - [BUG] http: don't set no-linger on response in case of forced close
14009 - [MEDIUM] http: restore the original behaviour of option httpclose
14010 - [TESTS] add a file to test various connection modes
14011 - [BUG] http: check options before the connection header
14012 - [MAJOR] session: fix the order by which the analysers are run
14013 - [MEDIUM] session: also consider request analysers added during response
14014 - [MEDIUM] http: make safer use of the DONT_READ and AUTO_CLOSE flags
14015 - [BUG] http: memory leak with captures when using keep-alive
14016 - [BUG] http: fix for capture memory leak was incorrect
14017 - [MINOR] http redirect: use proper call to return last response
14018 - [MEDIUM] http: wait for some flush of the response buffer before a new request
14019 - [MEDIUM] session: limit the number of analyser loops
14020
Willy Tarreau1f445892010-01-03 23:23:36 +0100140212010/01/03 : 1.4-dev5
14022 - [MINOR] server tracking: don't care about the tracked server's mode
14023 - [MEDIUM] appsession: add "len", "prefix" and "mode" options
14024 - [MEDIUM] appsession: add the "request-learn" option
14025 - [BUG] Configuration parser bug when escaping characters
14026 - [MINOR] CSS & HTML fun
14027 - [MINOR] Collect & provide http response codes received from servers
14028 - [BUG] Fix silly typo: hspr_other -> hrsp_other
14029 - [MINOR] Add "a name" to stats page
14030 - [MINOR] add additional "a href"s to stats page
14031 - [MINOR] Collect & provide http response codes for frontends, fix backends
14032 - [DOC] some small spell fixes and unifications
14033 - [MEDIUM] Decrease server health based on http responses / events, version 3
14034 - [BUG] format '%d' expects type 'int', but argument 5 has type 'long int'
14035 - [BUG] config: fix erroneous check on cookie domain names, again
14036 - [BUG] Healthchecks: get a proper error code if connection cannot be completed immediately
14037 - [DOC] trivial fix for man page
14038 - [MINOR] config: report all supported options for the "bind" keyword
14039 - [MINOR] tcp: add support for the defer_accept bind option
14040 - [MINOR] unix socket: report the socket path in case of bind error
14041 - [CONTRIB] halog: support searching by response time
14042 - [DOC] add a reminder about obsolete documents
14043 - [DOC] point to 1.4 doc, not 1.3
14044 - [DOC] option tcp-smart-connect was missing from index
14045 - [MINOR] http: detect connection: close earlier
14046 - [CLEANUP] sepoll: clean up the fd_clr/fd_set functions
14047 - [OPTIM] move some rarely used fields out of fdtab
14048 - [MEDIUM] fd: merge fd_list into fdtab
14049 - [MAJOR] buffer: flag BF_DONT_READ to disable reads when not required
14050 - [MINOR] http: add new transaction flags for keep-alive and content-length
14051 - [MEDIUM] http request: parse connection, content-length and transfer-encoding
14052 - [MINOR] http request: update the TX_SRV_CONN_KA flag on rewrite
14053 - [MINOR] http request: simplify the test of no-data
14054 - [MEDIUM] http request: simplify POST length detection
14055 - [MEDIUM] http request: make use of pre-parsed transfer-encoding header
14056 - [MAJOR] http: create the analyser which waits for a response
14057 - [MINOR] http: pre-set the persistent flags in the transaction
14058 - [MEDIUM] http response: check body length and set transaction flags
14059 - [MINOR] http response: update the TX_CLI_CONN_KA flag on rewrite
14060 - [MINOR] http: remove the last call to stream_int_return
14061 - [IMPORT] import ebtree v5.0 into directory ebtree/
14062 - [MEDIUM] build: switch ebtree users to use new ebtree version
14063 - [CLEANUP] ebtree: remove old unused files
14064 - [BUG] definitely fix regparm issues between haproxy core and ebtree
14065 - [CLEANUP] ebtree: cast to char * to get rid of gcc warning
14066 - [BUILD] missing #ifndef in ebmbtree.h
14067 - [BUILD] missing #ifndef in ebsttree.h
14068 - [MINOR] tools: add hex2i() function to convert hex char to int
14069 - [MINOR] http: create new MSG_BODY sub-states
14070 - [BUG] stream_sock: BUF_INFINITE_FORWARD broke splice on 64-bit platforms
14071 - [DOC] option is "defer-accept", not "defer_accept"
14072 - [MINOR] http: keep pointer to beginning of data
14073 - [BUG] x-original-to: name was not set in default instance
14074 - [MINOR] http: detect tunnel mode and set it in the session
14075 - [BUG] config: fix error message when config file is not found
14076 - [BUG] config: fix wrong handling of too large argument count
14077 - [BUG] config: disable 'option httplog' on TCP proxies
14078 - [BUG] config: fix erroneous check on cookie domain names
14079 - [BUG] config: cookie domain was ignored in defaults sections
14080 - [MINOR] config: support passing multiple "domain" statements to cookies
14081 - [MINOR] ebtree: add functions to lookup non-null terminated strings
14082 - [MINOR] config: don't report error on all subsequent files on failure
14083 - [BUG] second fix for the printf format warning
14084 - [BUG] check_post: limit analysis to the buffer length
14085 - [MEDIUM] http: process request body in a specific analyser
14086 - [MEDIUM] backend: remove HTTP POST parsing from get_server_ph_post()
14087 - [MAJOR] http: completely process the "connection" header
14088 - [MINOR] http: only consider chunk encoding with HTTP/1.1
14089 - [MAJOR] buffers: automatically compute the maximum buffer length
14090 - [MINOR] http: move the http transaction init/cleanup code to proto_http
14091 - [MINOR] http: move 1xx handling earlier to eliminate a lot of ifs
14092 - [MINOR] http: introduce a new synchronisation state : HTTP_MSG_DONE
14093 - [MEDIUM] http: rework chunk-size parser
14094 - [MEDIUM] http: add a new transaction flags indicating if we know the transfer length
14095 - [MINOR] buffers: add buffer_ignore() to skip some bytes
14096 - [BUG] http: offsets are relative to the buffer, not to ->som
14097 - [MEDIUM] http: automatically re-aling request buffer
14098 - [BUG] http: body parsing must consider the start of message
14099 - [MINOR] new function stream_int_cond_close()
14100 - [MAJOR] http: implement body parser
14101 - [BUG] http: typos on several unlikely() around header insertion
14102 - [BUG] stream_sock: wrong max computation on recv
14103 - [MEDIUM] http: rework the buffer alignment logic
14104 - [BUG] buffers: wrong size calculation for displaced data
14105 - [MINOR] stream_sock: prepare for closing when all pending data are sent
14106 - [MEDIUM] http: add two more states for the closing period
14107 - [MEDIUM] http: properly handle "option forceclose"
14108 - [MINOR] stream_sock: add SI_FL_NOLINGER for faster close
14109 - [MEDIUM] http: make forceclose use SI_FL_NOLINGER
14110 - [MEDIUM] session: set SI_FL_NOLINGER when aborting on write timeouts
14111 - [MEDIUM] http: add some SI_FL_NOLINGER around server errors
14112 - [MINOR] config: option forceclose is valid in frontends too
14113 - [BUILD] halog: insufficient include path in makefile
14114 - [MEDIUM] http: make the analyser not rely on msg being initialized anymore
14115 - [MEDIUM] http: make the parsers able to wait for a buffer flush
14116 - [MAJOR] http: add support for option http-server-close
14117 - [BUG] http: ensure we abort data transfer on write error
14118 - [BUG] last fix was overzealous and disabled server-close
14119 - [BUG] http: fix erroneous trailers size computation
14120 - [MINOR] stream_sock: enable MSG_MORE when forwarding finite amount of data
14121 - [OPTIM] http: set MSG_MORE on response when a pipelined request is pending
14122 - [BUG] http: redirects were broken by chunk changes
14123 - [BUG] http: the request URI pointer is relative to the buffer
14124 - [OPTIM] http: don't immediately enable reading on request
14125 - [MINOR] http: move redirect messages to HTTP/1.1 with a content-length
14126 - [BUG] http: take care of errors, timeouts and aborts during the data phase
14127 - [MINOR] http: don't wait for sending requests to the server
14128 - [MINOR] http: make the conditional redirect support keep-alive
14129 - [BUG] http: fix cookie parser to support spaces and commas in values
14130 - [MINOR] config: some options were missing for "redirect"
14131 - [MINOR] redirect: add support for unconditional rules
14132 - [MINOR] config: centralize proxy struct initialization
14133 - [MEDIUM] config: remove the limitation of 10 reqadd/rspadd statements
14134 - [MEDIUM] config: remove the limitation of 10 config files
14135 - [CLEANUP] http: remove a remaining impossible condition
14136 - [OPTIM] http: optimize a bit the construct of the forward loops
14137
Willy Tarreauc82a9e52009-10-12 06:40:53 +0200141382009/10/12 : 1.4-dev4
14139 - [DOC] add missing rate_lim and rate_max
14140 - [MAJOR] struct chunk rework
14141 - [MEDIUM] Health check reporting code rework + health logging, v3
14142 - [BUG] check if rise/fall has an argument and it is > 0
14143 - [MINOR] health checks logging unification
14144 - [MINOR] add "description", "node" and show-node"/"show-desc", remove "node-name", v2
14145 - [MINOR] Allow dots in show-node & add "white-space: nowrap" in th.pxname.
14146 - [DOC] Add information about http://haproxy.1wt.eu/contrib.html
14147 - [MINOR] Introduce include/types/counters.h
14148 - [CLEANUP] Move counters to dedicated structures
14149 - [MINOR] Add "clear counters" to clear statistics counters
14150 - [MEDIUM] Collect & provide separate statistics for sockets, v2
14151 - [BUG] Fix NULL pointer dereference in stats_check_uri_auth(), v2
14152 - [MINOR] acl: don't report valid acls as potential mistakes
14153 - [MINOR] Add cut_crlf(), ltrim(), rtrim() and alltrim()
14154 - [MINOR] Add chunk_htmlencode and chunk_asciiencode
14155 - [MINOR] Capture & display more data from health checks, v2
14156 - [BUG] task.c: don't assing last_timer to node-less entries
14157 - [BUG] http stats: large outputs sometimes got some parts chopped off
14158 - [MINOR] backend: export some functions to recount servers
14159 - [MINOR] backend: uninline some LB functions
14160 - [MINOR] include time.h from freq_ctr.h as is uses "now".
14161 - [CLEANUP] backend: move LB algos to individual files
14162 - [MINOR] lb_map: reorder code in order to ease integration of new hash functions
14163 - [CLEANUP] proxy: move last lb-specific bits to their respective files
14164 - [MINOR] backend: separate declarations of LB algos from their lookup method
14165 - [MINOR] backend: reorganize the LB algorithm selection
14166 - [MEDIUM] backend: introduce the "static-rr" LB algorithm
14167 - [MINOR] report list of supported pollers with -vv
14168 - [DOC] log-health-checks is an option, not a directive
14169 - [MEDIUM] new option "independant-streams" to stop updating read timeout on writes
14170 - [BUG] stats: don't call buffer_shutw(), but ->shutw() instead
14171 - [MINOR] stats: strip CR and LF from the input command line
14172 - [BUG] don't refresh timeouts late after detected activity
14173 - [MINOR] stats_dump_errors_to_buffer: use buffer_feed_chunk()
14174 - [MINOR] stats_dump_sess_to_buffer: use buffer_feed_chunk()
14175 - [MINOR] stats: make stats_dump_raw_to_buffer() use buffer_feed_chunk
14176 - [MEDIUM] stats: don't use s->ana_state anymore
14177 - [MINOR] remove now obsolete ana_state from the session struct
14178 - [MEDIUM] stats: make HTTP stats use an I/O handler
14179 - [MEDIUM] stream_int: adjust WAIT_ROOM handling
14180 - [BUG] config: look for ID conflicts in all sockets, not only last ones.
14181 - [MINOR] config: reference file and line with any listener/proxy/server declaration
14182 - [MINOR] config: report places of duplicate names or IDs
14183 - [MINOR] config: add pointer to file name in block/redirect/use_backend/monitor rules
14184 - [MINOR] tools: add a new get_next_id() function
14185 - [MEDIUM] config: automatically find unused IDs for proxies, servers and listeners
14186 - [OPTIM] counters: move some max numbers to the counters struct
14187 - [BUG] counters: fix segfault on missing counters for a listener
14188 - [MEDIUM] backend: implement consistent hashing variation
14189 - [MINOR] acl: add fe_conn, be_conn, queue, avg_queue
14190 - [MINOR] stats: use 'clear counters all' to clear all values
14191 - [MEDIUM] add access restrictions to the stats socket
14192 - [MINOR] buffers: add buffer_feed2() and make buffer_feed() measure string length
14193 - [MINOR] proxy: provide function to retrieve backend/server pointers
14194 - [MINOR] add the "initial weight" to the server struct.
14195 - [MEDIUM] stats: add the "get weight" command to report a server's weight
14196 - [MEDIUM] stats: add the "set weight" command
14197 - [BUILD] add a 'make tags' target
14198 - [MINOR] stats: add support for numeric IDs in set weight/get weight
14199 - [MINOR] stats: use a dedicated state to output static data
14200 - [OPTIM] stats: check free space before trying to print
14201
Willy Tarreau9f389e02009-09-24 00:12:50 +0200142022009/09/24 : 1.4-dev3
14203 - [BUILD] compilation of haproxy-1.4-dev2 on FreeBSD
14204 - [MEDIUM] Collect & show information about last health check, v3
14205 - [MINOR] export the hostname variable so that all the code can access it
14206 - [MINOR] stats: add a new node-name setting
14207 - [MEDIUM] remove old experimental tcpsplice option
14208 - [BUILD] fix build for systems without SOL_TCP
14209 - [MEDIUM] move connection establishment from backend to the SI.
14210 - [MEDIUM] make the global stats socket part of a frontend
14211 - [MEDIUM] session: account per-listener connections
14212 - [MINOR] session: switch to established state if no connect function
14213 - [MEDIUM] make the unix stats sockets use the generic session handler
14214 - [CLEANUP] unix: remove uxst_process_session()
14215 - [CLEANUP] move remaining stats sockets code to dumpstats
14216 - [MINOR] move the initial task's nice value to the listener
14217 - [MINOR] cleanup set_session_backend by using pre-computed analysers
14218 - [MINOR] set s->srv_error according to the analysers
14219 - [MEDIUM] set rep->analysers from fe and be analysers
14220 - [MEDIUM] replace BUFSIZE with buf->size in computations
14221 - [MEDIUM] make it possible to change the buffer size in the configuration
14222 - [MEDIUM] report error on buffer writes larger than buffer size
14223 - [MEDIUM] stream_interface: add and use ->update function to resync
14224 - [CLEANUP] remove ifdef MSG_NOSIGNAL and define it instead
14225 - [MEDIUM] remove TCP_CORK and make use of MSG_MORE instead
14226 - [BUG] tarpit did not work anymore
14227 - [MINOR] acl: add support for hdr_ip to match IP addresses in headers
14228 - [MAJOR] buffers: fix misuse of the BF_SHUTW_NOW flag
14229 - [MINOR] buffers: provide more functions to handle buffer data
14230 - [MEDIUM] buffers: provide new buffer_feed*() function
14231 - [MINOR] buffers: add peekchar and peekline functions for stream interfaces
14232 - [MINOR] buffers: provide buffer_si_putchar() to send a char from a stream interface
14233 - [BUG] buffer_forward() would not correctly consider data already scheduled
14234 - [MINOR] buffers: add buffer_cut_tail() to cut only unsent data
14235 - [MEDIUM] stream_interface: make use of buffer_cut_tail() to report errors
14236 - [MAJOR] http: add support for HTTP 1xx informational responses
14237 - [MINOR] buffers: inline buffer_si_putchar()
14238 - [MAJOR] buffers: split BF_WRITE_ENA into BF_AUTO_CONNECT and BF_AUTO_CLOSE
14239 - [MAJOR] buffers: fix the BF_EMPTY flag's meaning
14240 - [BUG] stream_interface: SI_ST_CLO must have buffers SHUT
14241 - [MINOR] stream_sock: don't set SI_FL_WAIT_DATA if BF_SHUTW_NOW is set
14242 - [MEDIUM] add support for infinite forwarding
14243 - [BUILD] stream_interface: fix conflicting declaration
14244 - [BUG] buffers: buffer_forward() must not always clear BF_OUT_EMPTY
14245 - [BUG] variable buffer size ignored at initialization time
14246 - [MINOR] ensure that buffer_feed() and buffer_skip() set BF_*_PARTIAL
14247 - [BUG] fix buffer_skip() and buffer_si_getline() to correctly handle wrap-arounds
14248 - [MINOR] stream_interface: add SI_FL_DONT_WAKE flag
14249 - [MINOR] stream_interface: add iohandler callback
14250 - [MINOR] stream_interface: add functions to support running as internal/external tasks
14251 - [MEDIUM] session: call iohandler for embedded tasks (applets)
14252 - [MINOR] add a ->private member to the stream_interface
14253 - [MEDIUM] stats: prepare the connection for closing before dumping
14254 - [MEDIUM] stats: replace the stats socket analyser with an SI applet
14255
Willy Tarreau68dcd252009-08-09 22:57:09 +0200142562009/08/09 : 1.4-dev2
14257 - [BUG] task: fix possible crash when some timeouts are not configured
14258 - [BUG] log: option tcplog would log to global if no logger was defined
14259
Willy Tarreaub03d2982009-07-29 22:38:32 +0200142602009/07/29 : 1.4-dev1
14261 - [MINOR] acl: add support for matching of RDP cookies
14262 - [MEDIUM] add support for RDP cookie load-balancing
14263 - [MEDIUM] add support for RDP cookie persistence
14264 - [MINOR] add a new CLF log format
14265 - [MINOR] startup: don't imply -q with -D
14266 - [BUG] ensure that we correctly re-start old process in case of error
14267 - [MEDIUM] add support for binding to source port ranges during connect
14268 - [MINOR] config: track "no option"/"option" changes
14269 - [MINOR] config: support resetting options do default values
14270 - [MEDIUM] implement option tcp-smart-accept at the frontend
14271 - [MEDIUM] stream_sock: implement tcp-cork for use during shutdowns on Linux
14272 - [MEDIUM] implement tcp-smart-connect option at the backend
14273 - [MEDIUM] add support for TCP MSS adjustment for listeners
14274 - [MEDIUM] support setting a server weight to zero
14275 - [MINOR] make DEFAULT_MAXCONN user-configurable at build time
14276 - [MAJOR] session: don't clear buffer status flags anymore
14277 - [MAJOR] session: only check for timeouts when they have just occurred.
14278 - [MAJOR] session: simplify buffer error handling
14279 - [MEDIUM] config: split parser and checker in two functions
14280 - [MEDIUM] config: support loading multiple configuration files
14281 - [MEDIUM] stream_sock: don't close prematurely when nolinger is set
14282 - [MEDIUM] session: rework buffer analysis to permit permanent analysers
14283 - [MEDIUM] splice: set the capability on each stream_interface
14284 - [BUG] http: redirect rules were processed too early
14285 - [CLEANUP] remove unused DEBUG_PARSE_NO_SPEEDUP define
14286 - [MEDIUM] http: split request waiter from request processor
14287 - [MEDIUM] session: tell analysers what bit they were called for
14288 - [MAJOR] http: complete splitting of the remaining stages
14289 - [MINOR] report in the proxies the requirements for ACLs
14290 - [MINOR] http: rely on proxy->acl_requires to allocate hdr_idx
14291 - [MINOR] acl: add HTTP protocol detection (req_proto_http)
14292 - [MINOR] prepare callers of session_set_backend to handle errors
14293 - [BUG] default ACLs did not properly set the ->requires flag
14294 - [MEDIUM] allow a TCP frontend to switch to an HTTP backend
14295 - [MINOR] ensure we can jump from swiching rules to http without data
14296 - [MINOR] http: take http request timeout from the backend
14297 - [MINOR] allow TCP inspection rules to make use of HTTP ACLs
14298 - [BUILD] report commit date and not author's date as build date
14299 - [MINOR] acl: don't complain anymore when using L7 acls in TCP
14300 - [BUG] stream_sock: always shutdown(SHUT_WR) before closing
14301 - [BUG] stream_sock: don't stop reading when the poller reports an error
14302 - [BUG] config: tcp-request content only accepts "if" or "unless"
14303 - [BUG] task: fix possible timer drift after update
14304 - [MINOR] apply tcp-smart-connect option for the checks too
14305 - [MINOR] stats: better displaying in MSIE
14306 - [MINOR] config: improve error reporting in global section
14307 - [MINOR] config: improve error reporting in listen sections
14308 - [MINOR] config: the "capture" keyword is not allowed in backends
14309 - [MINOR] config: improve error reporting when checking configuration
14310 - [BUILD] fix a minor build warning on AIX
14311 - [BUILD] use "git cmd" instead of "git-cmd"
14312 - [CLEANUP] report 2009 not 2008 in the copyright banner.
14313 - [MINOR] print usage on the stats sockets upon invalid commands
14314 - [MINOR] acl: detect and report potential mistakes in ACLs
14315 - [BUILD] fix incorrect printf arg count with tcp_splice
14316 - [BUG] fix random pauses on last segment of a series
14317 - [BUILD] add support for build under Cygwin
14318
Willy Tarreau79158882009-06-09 11:59:08 +0200143192009/06/09 : 1.4-dev0
14320 - exact copy of 1.3.18
14321
Willy Tarreaubeb05ae2009-05-10 20:27:47 +0200143222009/05/10 : 1.3.18
14323 - [MEDIUM] add support for "balance hdr(name)"
14324 - [CLEANUP] give a little bit more information in error message
14325 - [MINOR] add X-Original-To: header
14326 - [BUG] x-original-to: fix missing initialization to default value
14327 - [BUILD] spec file: fix broken pipe during rpmbuild and add man file
14328 - [MINOR] improve reporting of misplaced acl/reqxxx rules
14329 - [MEDIUM] http: add options to ignore invalid header names
14330 - [MEDIUM] http: capture invalid requests/responses even if accepted
14331 - [BUILD] add format(printf) to printf-like functions
14332 - [MINOR] fix several printf formats and missing arguments
14333 - [BUG] stats: total and lbtot are unsigned
14334 - [MINOR] fix a few remaining printf-like formats on 64-bit platforms
14335 - [CLEANUP] remove unused make option from haproxy.spec
14336 - [BUILD] make it possible to pass alternative arch at build time
14337 - [MINOR] switch all stat counters to 64-bit
14338 - [MEDIUM] ensure we don't recursively call pool_gc2()
14339 - [CRITICAL] uninitialized response field can sometimes cause crashes
14340 - [BUG] fix wrong pointer arithmetics in HTTP message captures
14341 - [MINOR] rhel init script : support the reload operation
14342 - [MINOR] add basic signal handling functions
14343 - [BUILD] add signal.o to all makefiles
14344 - [MEDIUM] call signal_process_queue from run_poll_loop
14345 - [MEDIUM] pollers: don't wait if a signal is pending
14346 - [MEDIUM] convert all signals to asynchronous signals
14347 - [BUG] O(1) pollers should check their FD before closing it
14348 - [MINOR] don't close stdio fds twice
14349 - [MINOR] add options dontlog-normal and log-separate-errors
14350 - [DOC] minor fixes and rearrangements
14351 - [BUG] fix parser crash on unconditional tcp content rules
14352 - [DOC] rearrange the configuration manual and add a summary
14353 - [MINOR] standard: provide a new 'my_strndup' function
14354 - [MINOR] implement per-logger log level limitation
14355 - [MINOR] compute the max of sessions/s on fe/be/srv
14356 - [MINOR] stats: report max sessions/s and limit in CSV export
14357 - [MINOR] stats: report max sessions/s and limit in HTML stats
14358 - [MINOR] stats/html: use the arial font before helvetica
14359
Willy Tarreauf459b422009-03-29 15:26:57 +0200143602009/03/29 : 1.3.17
14361 - Update specfile to build for v2.6 kernel.
14362 - [BUG] reset the stream_interface connect timeout upon connect or error
14363 - [BUG] reject unix accepts when connection limit is reached
14364 - [MINOR] show sess: report number of calls to each task
14365 - [BUG] don't call epoll_ctl() on closed sockets
14366 - [BUG] stream_sock: disable I/O on fds reporting an error
14367 - [MINOR] sepoll: don't count two events on the same FD.
14368 - [MINOR] show sess: report a lot more information about sessions
14369 - [BUG] stream_sock: check for shut{r,w} before refreshing some timeouts
14370 - [BUG] don't set an expiration date directly from now_ms
14371 - [MINOR] implement ulltoh() to write HTML-formatted numbers
14372 - [MINOR] stats/html: group digits by 3 to clarify numbers
14373 - [BUILD] remove haproxy-small.spec
14374 - [BUILD] makefile: remove unused references to linux24eold and EPOLL_CTL_WORKAROUND
14375
Willy Tarreau8019ffa2009-03-22 23:46:12 +0100143762009/03/22 : 1.3.16
14377 - [BUILD] Fixed Makefile for linking pcre
14378 - [CONTRIB] selinux policy for haproxy
14379 - [MINOR] show errors: encode backslash as well as non-ascii characters
14380 - [MINOR] cfgparse: some cleanups in the consistency checks
14381 - [MINOR] cfgparse: set backends to "balance roundrobin" by default
14382 - [MINOR] tcp-inspect: permit the use of no-delay inspection
14383 - [MEDIUM] reverse internal proxy declaration order to match configuration
14384 - [CLEANUP] config: catch and report some possibly wrong rule ordering
14385 - [BUG] connect timeout is in the stream interface, not the buffer
14386 - [BUG] session: errors were not reported in termination flags in TCP mode
14387 - [MINOR] tcp_request: let the caller take care of errors and timeouts
14388 - [CLEANUP] http: remove some commented out obsolete code in process_response
14389 - [MINOR] update ebtree to version 4.1
14390 - [MEDIUM] scheduler: get rid of the 4 trees thanks and use ebtree v4.1
14391 - [BUG] sched: don't leave 3 lasts tasks unprocessed when niced tasks are present
14392 - [BUG] scheduler: fix improper handling of duplicates __task_queue()
14393 - [MINOR] sched: permit a task to stay up between calls
14394 - [MINOR] task: keep a task count and clean up task creators
14395 - [MINOR] stats: report number of tasks (active and running)
14396 - [BUG] server check intervals must not be null
14397 - [OPTIM] stream_sock: don't retry to read after a large read
14398 - [OPTIM] buffer: new BF_READ_DONTWAIT flag reduces EAGAIN rates
14399 - [MEDIUM] session: don't resync FSMs on non-interesting changes
14400 - [BUG] check for global.maxconn before doing accept()
14401 - [OPTIM] sepoll: do not re-check whole list upon accepts
14402
Willy Tarreau8185ced2009-03-09 22:45:53 +0100144032009/03/09 : 1.3.16-rc2
14404 - [BUG] stream_sock: write timeout must be updated when forwarding !
14405
Willy Tarreauff63b432009-03-09 01:03:42 +0100144062009/03/09 : 1.3.16-rc1
14407 - appsessions: cleanup DEBUG_HASH and initialize request_counter
14408 - [MINOR] acl: add new keyword "connslots"
14409 - [MINOR] cfgparse: fix off-by 2 in error message size
14410 - [BUILD] fix build with gcc 4.3
14411 - [BUILD] fix MANDIR default location to match documentation
14412 - [TESTS] add a debug patch to help trigger the stats bug
14413 - [BUG] Flush buffers also where there are exactly 0 bytes left
14414 - [MINOR] Allow to specify a domain for a cookie
14415 - [BUG/CLEANUP] cookiedomain -> cookie_domain rename + free(p->cookie_domain)
14416 - [MEDIUM] Fix memory freeing at exit
14417 - [MEDIUM] Fix memory freeing at exit, part 2
14418 - [BUG] Fix listen & more of 2 couples <ip>:<port>
14419 - [DOC] remove buggy comment for use_backend
14420 - [CRITICAL] fix server state tracking: it was O(n!) instead of O(n)
14421 - [MEDIUM] add support for URI hash depth and length limits
14422 - [MINOR] permit renaming of x-forwarded-for header
14423 - [BUILD] fix Makefile.bsd and Makefile.osx for stream_interface
14424 - [BUILD] Haproxy won't compile if DEBUG_FULL is defined
14425 - [MEDIUM] upgrade to ebtree v4.0
14426 - [DOC] update the README file with new build options
14427 - [MEDIUM] reduce risk of event starvation in ev_sepoll
14428 - [MEDIUM] detect streaming buffers and tag them as such
14429 - [MEDIUM] add support for conditional HTTP redirection
14430 - [BUILD] make install should depend on haproxy not "all"
14431 - [DEBUG] add a TRACE macro to facilitate runtime data extraction
14432 - [BUG] event pollers must not wait if a task exists in the run queue
14433 - [BUG] queue management: wake oldest request in queues
14434 - [BUG] log: reported queue position was offed-by-one
14435 - [BUG] fix the dequeuing logic to ensure that all requests get served
14436 - [DOC] documentation for the "retries" parameter was missing.
14437 - [MEDIUM] implement a monotonic internal clock
14438 - [MEDIUM] further improve monotonic clock by check forward jumps
14439 - [OPTIM] add branch prediction hints in list manipulations
14440 - [MAJOR] replace ultree with ebtree in wait-queues
14441 - [BUG] we could segfault during exit while freeing uri_auths
14442 - [BUG] wqueue: perform proper timeout comparisons with wrapping values
14443 - [MINOR] introduce now_ms, the current date in milliseconds
14444 - [BUG] disable buffer read timeout when reading stats
14445 - [MEDIUM] rework the wait queue mechanism
14446 - [BUILD] change declaration of base64tab to fix build with Intel C++
14447 - [OPTIM] shrink wake_expired_tasks() by using task_wakeup()
14448 - [MAJOR] use an ebtree instead of a list for the run queue
14449 - [MEDIUM] introduce task->nice and boot access to statistics
14450 - [OPTIM] task_queue: assume most consecutive timers are equal
14451 - [BUILD] silent a warning in unlikely() with gcc 4.x
14452 - [MAJOR] convert all expiration timers from timeval to ticks
14453 - [BUG] use_backend would not correctly consider "unless"
14454 - [TESTS] added test-acl.cfg to test some ACL combinations
14455 - [MEDIUM] add support for configuration keyword registration
14456 - [MEDIUM] modularize the global "stats" keyword configuration parser
14457 - [MINOR] cfgparse: add support for warnings in external functions
14458 - [MEDIUM] modularize the "timeout" keyword configuration parser
14459 - [MAJOR] implement tcp request content inspection
14460 - [MINOR] acl: add a new parsing function: parse_dotted_ver
14461 - [MINOR] acl: add req_ssl_ver in TCP, to match an SSL version
14462 - [CLEANUP] remove unused include/types/client.h
14463 - [CLEANUP] remove many #include <types/xxx> from C files
14464 - [CLEANUP] remove dependency on obsolete INTBITS macro
14465 - [DOC] document the new "tcp-request" keyword and associated ACLs
14466 - [MINOR] acl: add REQ_CONTENT to the list of default acls
14467 - [MEDIUM] acl: permit fetch() functions to set the result themselves
14468 - [MEDIUM] acl: get rid of dummy values in always_true/always_false
14469 - [MINOR] acl: add the "wait_end" acl verb
14470 - [MEDIUM] acl: enforce ACL type checking
14471 - [MEDIUM] acl: set types on all currently known ACL verbs
14472 - [MEDIUM] acl: when possible, report the name and requirements of ACLs in warnings
14473 - [CLEANUP] remove 65 useless NULL checks before free
14474 - [MEDIUM] memory: update pool_free2() to support NULL pointers
14475 - [MEDIUM] buffers: ensure buffer_shut* are properly called upon shutdowns
14476 - [MEDIUM] process_srv: rely on buffer flags for client shutdown
14477 - [MEDIUM] process_srv: don't rely at all on client state
14478 - [MEDIUM] process_cli: don't rely at all on server state
14479 - [BUG] fix segfault with url_param + check_post
14480 - [BUG] server timeout was not considered in some circumstances
14481 - [BUG] client timeout incorrectly rearmed while waiting for server
14482 - [MAJOR] kill CL_STINSPECT and CL_STHEADERS (step 1)
14483 - [MAJOR] get rid of SV_STANALYZE (step 2)
14484 - [MEDIUM] simplify and centralize request timeout cancellation and request forwarding
14485 - [MAJOR] completely separate HTTP and TCP states on the request path
14486 - [BUG] fix recently introduced loop when client closes early
14487 - [MAJOR] get rid of the SV_STHEADERS state
14488 - [MAJOR] better separation of response processing and server state
14489 - [MAJOR] clearly separate HTTP response processing from TCP server state
14490 - [MEDIUM] remove unused references to {CL|SV}_STSHUT*
14491 - [MINOR] term_trace: add better instrumentations to trace the code
14492 - [BUG] ev_sepoll: closed file descriptors could persist in the spec list
14493 - [BUG] process_response must not enable the read FD
14494 - [BUG] buffers: remove BF_MAY_CONNECT and fix forwarding issue
14495 - [BUG] process_response: do not touch srv_state
14496 - [BUG] maintain_proxies must not disable backends
14497 - [CLEANUP] get rid of BF_SHUT*_PENDING
14498 - [MEDIUM] buffers: add BF_EMPTY and BF_FULL to remove dependency on req/rep->l
14499 - [MAJOR] process_session: rely only on buffer flags
14500 - [MEDIUM] use buffer->wex instead of buffer->cex for connect timeout
14501 - [MEDIUM] centralize buffer timeout checks at the top of process_session
14502 - [MINOR] ensure the termination flags are set by process_xxx
14503 - [MEDIUM] session: move the analysis bit field to the buffer
14504 - [OPTIM] process_cli/process_srv: reduce the number of tests
14505 - [BUG] regparm is broken on gcc < 3
14506 - [BUILD] fix warning in proto_tcp.c with gcc >= 4
14507 - [MEDIUM] merge inspect_exp and txn->exp into request buffer
14508 - [BUG] process_cli/process_srv: don't call shutdown when already done
14509 - [BUG] process_request: HTTP body analysis must return zero if missing data
14510 - [TESTS] test-fsm: 22 regression tests for state machines
14511 - [BUG] Fix empty X-Forwarded-For header name when set in defaults section
14512 - [BUG] fix harmless but wrong fd insertion sequence
14513 - [MEDIUM] make it possible for analysers to follow the whole session
14514 - [MAJOR] rework of the server FSM
14515 - [OPTIM] remove useless fd_set(read) upon shutdown(write)
14516 - [MEDIUM] massive cleanup of process_srv()
14517 - [MEDIUM] second level of code cleanup for process_srv_data
14518 - [MEDIUM] third cleanup and optimization of process_srv_data()
14519 - [MEDIUM] process_srv_data: ensure that we always correctly re-arm timeouts
14520 - [MEDIUM] stream_sock_process_data moved to stream_sock.c
14521 - [MAJOR] make the client side use stream_sock_process_data()
14522 - [MEDIUM] split stream_sock_process_data
14523 - [OPTIM] stream_sock_read must check for null-reads more often
14524 - [MINOR] only call flow analysers when their read side is connected.
14525 - [MEDIUM] reintroduce BF_HIJACK with produce_content
14526 - [MINOR] re-arrange buffer flags and rename some of them
14527 - [MINOR] do not check for BF_SHUTR when computing write timeout
14528 - [OPTIM] ev_sepoll: detect newly created FDs and check them once
14529 - [OPTIM] reduce the number of calls to task_wakeup()
14530 - [OPTIM] force inlining of large functions with gcc >= 3
14531 - [MEDIUM] indicate a reason for a task wakeup
14532 - [MINOR] change type of fdtab[]->owner to void*
14533 - [MAJOR] make stream sockets aware of the stream interface
14534 - [MEDIUM] stream interface: add the ->shutw method as well as in and out buffers
14535 - [MEDIUM] buffers: add BF_READ_ATTACHED and BF_ANA_TIMEOUT
14536 - [MEDIUM] process_session: make use of the new buffer flags
14537 - [CLEANUP] process_session: move debug outputs out of the critical loop
14538 - [MEDIUM] move QUEUE and TAR timers to stream interfaces
14539 - [OPTIM] add compiler hints in tick_is_expired()
14540 - [MINOR] add buffer_check_timeouts() to check what timeouts have fired.
14541 - [MEDIUM] use buffer_check_timeouts instead of stream_sock_check_timeouts()
14542 - [MINOR] add an expiration flag to the stream_sock_interface
14543 - [MAJOR] migrate the connection logic to stream interface
14544 - [MAJOR] add a connection error state to the stream_interface
14545 - [MEDIUM] add the SN_CURR_SESS flag to the session to track open sessions
14546 - [MEDIUM] continue layering cleanups.
14547 - [MEDIUM] stream_interface: added a DISconnected state between CON/EST and CLO
14548 - [MEDIUM] remove stream_sock_update_data()
14549 - [MINOR] maintain a global session list in order to ease debugging
14550 - [BUG] shutw must imply close during a connect
14551 - [MEDIUM] process shutw during connection attempt
14552 - [MEDIUM] make the stream interface control the SHUT{R,W} bits
14553 - [MAJOR] complete layer4/7 separation
14554 - [CLEANUP] move the session-related functions to session.c
14555 - [MINOR] call session->do_log() for logging
14556 - [MINOR] replace the ambiguous client_return function by stream_int_return
14557 - [MINOR] replace client_retnclose() with stream_int_retnclose()
14558 - [MINOR] replace srv_close_with_err() with http_server_error()
14559 - [MEDIUM] make the http server error function a pointer in the session
14560 - [CLEANUP] session.c: removed some migration left-overs in sess_establish()
14561 - [MINOR] stream_sock_data_finish() should not expose fd
14562 - [MEDIUM] extract TCP request processing from HTTP
14563 - [MEDIUM] extract the HTTP tarpit code from process_request().
14564 - [MEDIUM] move the HTTP request body analyser out of process_request().
14565 - [MEDIUM] rename process_request to http_process_request
14566 - [BUG] fix forgotten server session counter
14567 - [MINOR] declare process_session in session.h, not proto_http.h
14568 - [MEDIUM] first pass of lifting to proto_uxst.c:uxst_event_accept()
14569 - [MINOR] add an analyser code for UNIX stats request
14570 - [MINOR] pre-set analyser flags on the listener at registration time
14571 - [BUG] do not forward close from cons to prod with analysers
14572 - [MEDIUM] ensure that sock->shutw() also closes read for init states
14573 - [MINOR] add an analyser state in struct session
14574 - [MAJOR] make unix sockets work again with stats
14575 - [MEDIUM] remove cli_fd, srv_fd, cli_state and srv_state from the session
14576 - [MINOR] move the listener reference from fd to session
14577 - [MEDIUM] reference the current hijack function in the buffer itself
14578 - [MINOR] slightly rebalance stats_dump_{raw,http}
14579 - [MINOR] add a new back-reference type : struct bref
14580 - [MINOR] add back-references to sessions for later use by a dumper.
14581 - [MEDIUM] add support for "show sess" in unix stats socket
14582 - [BUG] do not release the connection slot during a retry
14583 - [BUG] dynamic connection throttling could return a max of zero conns
14584 - [BUG] do not try to pause backends during reload
14585 - [BUG] ensure that listeners from disabled proxies are correctly unbound.
14586 - [BUG] acl-related keywords are not allowed in defaults sections
14587 - [BUG] cookie capture is declared in the frontend but checked on the backend
14588 - [BUG] critical errors should be reported even in daemon mode
14589 - [MINOR] redirect: add support for the "drop-query" option
14590 - [MINOR] redirect: add support for "set-cookie" and "clear-cookie"
14591 - [MINOR] redirect: in prefix mode a "/" means not to change the URI
14592 - [BUG] do not dequeue requests on a dead server
14593 - [BUG] do not dequeue the backend's pending connections on a dead server
14594 - [MINOR] stats: indicate if a task is running in "show sess"
14595 - [BUG] check timeout must not be changed if timeout.check is not set
14596 - [BUG] "option transparent" is for backend, not frontend !
14597 - [MINOR] transfer errors were not reported anymore in data phase
14598 - [MEDIUM] add a send limit to a buffer
14599 - [MEDIUM] don't report buffer timeout when there is I/O activity
14600 - [MEDIUM] indicate when we don't care about read timeout
14601 - [MINOR] add flags to indicate when a stream interface is waiting for space/data
14602 - [MEDIUM] enable inter-stream_interface wakeup calls
14603 - [MAJOR] implement autonomous inter-socket forwarding
14604 - [MINOR] add the splice_len member to the buffer struct in preparation of splice support
14605 - [MEDIUM] stream_sock: factor out the return path in case of no-writes
14606 - [MEDIUM] i/o: rework ->to_forward and ->send_max
14607 - [OPTIM] stream_sock: do not ask for polling on EAGAIN if we have read
14608 - [OPTIM] buffer: replace rlim by max_len
14609 - [OPTIM] stream_sock: factor out the buffer full handling out of the loop
14610 - [CLEANUP] replace a few occurrences of (flags & X) && !(flags & Y)
14611 - [CLEANUP] stream_sock: move the write-nothing condition out of the loop
14612 - [MEDIUM] split stream_sock_write() into callback and core functions
14613 - [MEDIUM] stream_sock_read: call ->chk_snd whenever there are data pending
14614 - [MINOR] stream_sock: fix a few wrong empty calculations
14615 - [MEDIUM] stream_sock: try to send pending data on chk_snd()
14616 - [MINOR] global.maxpipes: add the ability to reserve file descriptors for pipes
14617 - [MEDIUM] splice: add configuration options and set global.maxpipes
14618 - [MINOR] introduce structures required to support Linux kernel splicing
14619 - [MEDIUM] add definitions for Linux kernel splicing
14620 - [MAJOR] complete support for linux 2.6 kernel splicing
14621 - [BUG] reserve some pipes for backends with splice enabled
14622 - [MEDIUM] splice: add hints to support older buggy kernels
14623 - [MEDIUM] introduce pipe pools
14624 - [MEDIUM] splice: make use of pipe pools
14625 - [STATS] report pipe usage in the statistics
14626 - [OPTIM] make global.maxpipes default to global.maxconn/4 when not specified
14627 - [BUILD] fix snapshot date extraction with negative timezones
14628 - [MEDIUM] move global tuning options to the global structure
14629 - [MEDIUM] splice: add the global "nosplice" option
14630 - [BUILD] add USE_LINUX_SPLICE to enable LINUX_SPLICE on linux 2.6
14631 - [BUG] we must not exit if protocol binding only returns a warning
14632 - [MINOR] add support for bind interface name
14633 - [BUG] inform the user when root is expected but not set
14634 - [MEDIUM] add support for source interface binding
14635 - [MEDIUM] add support for source interface binding at the server level
14636 - [MEDIUM] implement bind-process to limit service presence by process
14637 - [DOC] document maxpipes, nosplice, option splice-{auto,request,response}
14638 - [DOC] filled the logging section of the configuration manual
14639 - [DOC] document HTTP status codes
14640 - [DOC] document a few missing info about errorfile
14641 - [BUG] fix random memory corruption using "show sess"
14642 - [BUG] fix unix socket processing of interrupted output
14643 - [DOC] add diagrams of queuing and future ACL design
14644 - [BUILD] proto_http did not build on gcc-2.95
14645 - [BUG] the "source" keyword must first clear optional settings
14646 - [BUG] global.tune.maxaccept must be limited even in mono-process mode
14647 - [MINOR] ensure that http_msg_analyzer updates pointer to invalid char
14648 - [MEDIUM] store a complete dump of request and response errors in proxies
14649 - [MEDIUM] implement error dump on unix socket with "show errors"
14650 - [DOC] document "show errors"
14651 - [MINOR] errors dump must use user-visible date, not internal date.
14652 - [MINOR] time: add __usec_to_1024th to convert usecs to 1024th of second
14653 - [MINOR] add curr_sec_ms and curr_sec_ms_scaled for current second.
14654 - [MEDIUM] measure and report session rate on frontend, backends and servers
14655 - [BUG] the "connslots" keyword was matched as "connlots"
14656 - [MINOR] acl: add 2 new verbs: fe_sess_rate and be_sess_rate
14657 - [MEDIUM] implement "rate-limit sessions" for the frontend
14658 - [BUG] interface binding: length must include the trailing zero
14659 - [BUG] typo in timeout error reporting : report *res and not *err
14660 - [OPTIM] maintain_proxies: only wake up when the frontend will be ready
14661 - [OPTIM] rate-limit: cleaner behaviour on low rates and reduce consumption
14662 - [BUG] switch server-side stream interface to close in case of abort
14663 - [CLEANUP] remove last references to term_trace
14664 - [OPTIM] freq_ctr: do not rotate the counters when reading
14665 - [BUG] disable any analysers for monitoring requests
14666 - [BUG] rate-limit in defaults section was ignored
14667 - [BUG] task: fix handling of duplicate keys
14668 - [OPTIM] task: don't unlink a task from a wait queue when waking it up
14669 - [OPTIM] displace tasks in the wait queue only if absolutely needed
14670 - [MEDIUM] minor update to the task api: let the scheduler queue itself
14671 - [BUG] event_accept() must always wake the task up, even in health mode
14672 - [CLEANUP] task: distinguish between clock ticks and timers
14673 - [OPTIM] task: reduce the number of calls to task_queue()
14674 - [OPTIM] do not re-check req buffer when only response has changed
14675 - [CLEANUP] don't enable kernel splicing when socket is closed
14676 - [CLEANUP] buffer_flush() was misleading, rename it as buffer_erase
14677 - [MINOR] buffers: implement buffer_flush()
14678 - [MEDIUM] rearrange forwarding condition to enable splice during analysis
14679 - [BUILD] build fixes for Solaris
14680 - [BUILD] proto_http did not build on gcc-2.95 (again)
14681 - [CONTRIB] halog: fast log parser for haproxy
14682 - [CONTRIB] halog: faster fgets() and add support for percentile reporting
14683
Willy Tarreau7b4c5ae2008-04-19 21:06:14 +0200146842008/04/19 : 1.3.15
14685 - [BUILD] Added support for 'make install'
14686 - [BUILD] Added 'install-man' make target for installing the man page
14687 - [BUILD] Added 'install-bin' make target
14688 - [BUILD] Added 'install-doc' make target
14689 - [BUILD] Removed "/" after '$(DESTDIR)' in install targets
14690 - [BUILD] Changed 'install' target to install the binaries first
14691 - [BUILD] Replace hardcoded 'LD = gcc' with 'LD = $(CC)'
14692 - [MEDIUM]: Inversion for options
14693 - [MEDIUM]: Count retries and redispatches also for servers, fix redistribute_pending, extend logs, %d->%u cleanup
14694 - [BUG]: Restore clearing t->logs.bytes
14695 - [MEDIUM]: rework checks handling
14696 - [DOC] Update a "contrib" file with a hint about a scheme used for formathing subjects
14697 - [MEDIUM] Implement "track [<backend>/]<server>"
14698 - [MINOR] Implement persistent id for proxies and servers
14699 - [BUG] Don't increment server connections too much + fix retries
14700 - [MEDIUM]: Prevent redispatcher from selecting the same server, version #3
14701 - [MAJOR] proto_uxst rework -> SNMP support
14702 - [BUG] appsession lookup in URL does not work
14703 - [BUG] transparent proxy address was ignored in backend
14704 - [BUG] hot reconfiguration failed because of a wrong error check
14705 - [DOC] big update to the configuration manual
14706 - [DOC] large update to the configuration manual
14707 - [DOC] document more options
14708 - [BUILD] major rework of the GNU Makefile
14709 - [STATS] add support for "show info" on the unix socket
14710 - [DOC] document options forwardfor to logasap
14711 - [MINOR] add support for the "backlog" parameter
14712 - [OPTIM] introduce global parameter "tune.maxaccept"
14713 - [MEDIUM] introduce "timeout http-request" in frontends
14714 - [MINOR] tarpit timeout is also allowed in backends
14715 - [BUG] increment server connections for each connect()
14716 - [MEDIUM] add a turn-around state of one second after a connection failure
14717 - [BUG] fix typo in redispatched connection
14718 - [DOC] document options nolinger to ssl-hello-chk
14719 - [DOC] added documentation for "option tcplog" to "use_backend"
14720 - [BUG] connect_server: server might not exist when sending error report
14721 - [MEDIUM] support fully transparent proxy on Linux (USE_LINUX_TPROXY)
14722 - [MEDIUM] add non-local bind to connect() on Linux
14723 - [MINOR] add transparent proxy support for balabit's Tproxy v4
14724 - [BUG] use backend's source and not server's source with tproxy
14725 - [BUG] fix overlapping server flags
14726 - [MEDIUM] fix server health checks source address selection
14727 - [BUG] build failed on CONFIG_HAP_LINUX_TPROXY without CONFIG_HAP_CTTPROXY
14728 - [DOC] added "server", "source" and "stats" keywords
14729 - [DOC] all server parameters have been documented
14730 - [DOC] document all req* and rsp* keywords.
14731 - [DOC] added documentation about HTTP header manipulations
14732 - [BUG] log response byte count, not request
14733 - [BUILD] code did not build in full debug mode
14734 - [BUG] fix truncated responses with sepoll
14735 - [MINOR] use s->frt_addr as the server's address in transparent proxy
14736 - [MINOR] fix configuration hint about timeouts
14737 - [DOC] minor cleanup of the doc and notice to contributors
14738 - [MINOR] report correct section type for unknown keywords.
14739 - [BUILD] update MacOS Makefile to build on newer versions
14740 - [DOC] fix erroneous "useallbackups" option in the doc
14741 - [DOC] applied small fixes from early readers
14742 - [MINOR] add configuration support for "redir" server keyword
14743 - [MEDIUM] completely implement the server redirection method
14744 - [TESTS] add a test case for the server redirection mechanism
14745 - [DOC] add a configuration entry for "server ... redir <prefix>"
14746 - [BUILD] backend.c and checks.c did not build without tproxy !
14747 - Revert "[BUILD] backend.c and checks.c did not build without tproxy !"
14748 - [BUILD] backend.c and checks.c did not build without tproxy !
14749 - [OPTIM] used unsigned ints for HTTP state and message offsets
14750 - [OPTIM] GCC4's builtin_expect() is suboptimal
14751 - [BUG] failed conns were sometimes incremented in the frontend!
14752 - [BUG] timeout.check was not pre-set to eternity
14753 - [TESTS] add test-pollers.cfg to easily report pollers in use
14754 - [BUG] do not apply timeout.connect in checks if unset
14755 - [BUILD] ensure that makefile understands USE_DLMALLOC=1
14756 - [MINOR] silent gcc for a wrong warning
14757 - [CLEANUP] update .gitignore to ignore more temporary files
14758 - [CLEANUP] report dlmalloc's source path only if explictly specified
14759 - [BUG] str2sun could leak a small buffer in case of error during parsing
14760 - [BUG] option allbackups was not working anymore in roundrobin mode
14761 - [MAJOR] implementation of the "leastconn" load balancing algorithm
14762 - [BUILD] ensure that users don't build without setting the target anymore.
14763 - [DOC] document the leastconn LB algo
14764 - [MEDIUM] fix stats socket limitation to 16 kB
14765 - [DOC] fix unescaped space in httpchk example.
14766 - [BUG] fix double-decrement of server connections
14767 - [TESTS] add a test case for port mapping
14768 - [TESTS] add a benchmark for integer hashing
14769 - [TESTS] add new methods in ip-hash test file
14770 - [MAJOR] implement parameter hashing for POST requests
14771
Willy Tarreaue5b77e82007-12-06 01:25:44 +0100147722007/12/06 : 1.3.14
14773 - New option http_proxy (Alexandre Cassen)
14774 - add support for "maxqueue" to limit server queue overload (Elijah Epifanov)
14775 - Check for duplicated conflicting proxies (Krzysztof Oledzki)
14776 - stats: report server and backend cumulated downtime (Krzysztof Oledzki)
14777 - use backends only with use_backend directive (Krzysztof Oledzki)
14778 - Handle long lines properly (Krzysztof Oledzki)
14779 - Implement and use generic findproxy and relax duplicated proxy check (Krzysztof Oledzki)
14780 - continous statistics (Krzysztof Oledzki)
14781 - add support for logging via a UNIX socket (Robert Tsai)
14782 - fix error checking in strl2ic/strl2uic()
14783 - fix calls to localtime()
14784 - provide easier-to-use ultoa_* functions
14785 - provide easy-to-use limit_r and LIM2A* macros
14786 - add a simple test for the status page
14787 - move error codes to common/errors.h
14788 - silent warning about LIST_* being redefined on OpenBSD
14789 - add socket address length to the protocols
14790 - group PR_O_BALANCE_* bits into a checkable value
14791 - externalize the "balance" option parser to backend.c
14792 - introduce the "url_param" balance method
14793 - make default_backend work in TCP mode too
14794 - disable warning about localtime_r on Solaris
14795 - adjust error messages about conflicting proxies
14796 - avoid calling some layer7 functions if not needed
14797 - simplify error path in event_accept()
14798 - add an options field to the listeners
14799 - added a new state to listeners
14800 - unbind_listener() must use fd_delete() and not close()
14801 - add a generic unbind_listener() primitive
14802 - add a generic delete_listener() primitive
14803 - add a generic unbind_all_listeners() primitive
14804 - create proto_tcp and move initialization of proxy listeners
14805 - stats: report numerical process ID, proxy ID and server ID
14806 - relative_pid was not initialized
14807 - missing header names in raw stats output
14808 - fix missing parenthesis in check_response_for_cacheability
14809 - small optimization on session_process_counters()
14810 - merge ebtree version 3.0
14811 - make ebtree headers multiple-include compatible
14812 - ebtree: include config.h for REGPRM*
14813 - differentiate between generic LB params and map-specific ones
14814 - add a weight divisor to the struct proxy
14815 - implement the Fast Weighted Round Robin (FWRR) algo
14816 - include filltab25.c to experiment on FWRR for dynamic weights
14817 - merge test-fwrr.cfg to validate dynamic weights
14818 - move the load balancing algorithm to be->lbprm.algo
14819 - change server check result to a bit field
14820 - implement "http-check disable-on-404" for graceful shutdown
14821 - secure the calling conditions of ->set_server_status_{up,down}
14822 - report disabled servers as "NOLB" when they are still UP
14823 - document the "http-check disable-on-404" option
14824 - http-check disable-on-404 is not limited to HTTP mode
14825 - add a test file for disable-on-404
14826 - use distinct bits per load-balancing algorithm type
14827 - implement the slowstart parameter for servers
14828 - document the server's slowstart parameter
14829 - stats: report the server warm up status in a "throttle" column
14830 - fix 2 minor issues on AIX
14831 - add the "nbsrv" ACL verb
14832 - add the "fail" condition to monitor requests
14833 - remove a warning from gcc due to htons() in standard.c
14834 - fwrr: ensure that we never overflow in placements
14835 - store the build options to report with -vv
14836 - fix the status return of the init script (R.I. Pienaar)
14837 - stats: real time monitoring script for unix socket (Prizee)
14838 - document "nbsrv" and "monitor fail"
14839 - restrict the set of allowed characters for identifiers
14840 - implement a time parsing function
14841 - add support for time units in the configuration
14842 - add a bit of documentation about timers
14843 - introduce separation between contimeout, and tarpit + queue
14844 - introduce the "timeout" keyword
14845 - grouped all timeouts in one structure
14846 - slowstart is in ms, not seconds
14847 - slowstart: ensure we don't start with a null weight
14848 - report the number of times each server was selected
14849 - fix build on AIX due to recent log changes
14850 - fix build on Solaris due to recent log changes
14851
Willy Tarreaue855f422007-10-18 22:38:22 +0200148522007/10/18 : 1.3.13
14853 - replace the code under O'Reilly license (Arnaud Cornet)
14854 - add a small man page (Arnaud Cornet)
14855 - stats: report haproxy's version by default (Krzysztof Oledzki)
14856 - stats: count server retries and redispatches (Krzysztof Oledzki)
14857 - core: added easy support for Doug Lea's malloc (dlmalloc)
14858 - core: fade out memory usage when stopping proxies
14859 - core: moved the sockaddr pointer to the fdtab structure
14860 - core: add generic protocol support
14861 - core: implement client-side support for PF_UNIX sockets
14862 - stats: implement the CSV output
14863 - stats: add a link to the CSV export HTML page
14864 - stats: implement the statistics output on a unix socket
14865 - config: introduce the "stats" keyword in global section
14866 - build: centralize version and date into one file for each
14867 - tests: added a new hash algorithm
14868
148692007/10/18 : 1.3.12.3
14870 - add the "nolinger" option to disable data lingering (Alexandre Cassen)
14871 - fix double-free during clean exit (Krzysztof Oledzki)
14872 - prevent the system from sending an RST when closing health-checks
14873 (Krzysztof Oledzki)
14874 - do not add a cache-control header when on non-cacheable responses
14875 (Krzysztof Oledzki)
14876 - spread health checks even more (Krzysztof Oledzki)
14877 - stats: scope "." must match the backend and not the frontend
14878 - fixed call to chroot() during startup
14879 - fix wrong timeout computation in event_accept()
14880 - remove condition for exit() under fork() failure
14881
148822007/09/20 : 1.3.12.2
14883 - fix configuration sanity checks for TCP listeners
14884 - set the log socket receive window to zero bytes
14885 - pre-initialize timeouts to infinity, not zero
14886 - fix the SIGHUP message not to alert on server-less proxies
14887 - timeouts and retries could be ignored when switching backend
14888 - added a file to check that "retries" works.
14889 - O'Reilly has clarified its license
14890
148912007/09/05 : 1.3.12.1
14892 - spec I/O: fix allocations of spec entries for an FD
14893 - ensure we never overflow in chunk_printf()
14894 - improve behaviour with large number of servers per proxy
14895 - add support for "stats refresh <interval>"
14896 - stats page: added links for 'refresh' and 'hide down'
14897 - fix backend's weight in the stats page.
14898 - the "stats" keyword is not allowed in a pure frontend.
14899 - provide a test configuration file for stats and checks
14900
Willy Tarreaub21152b2007-06-17 23:41:40 +0200149012007/06/17 : 1.3.12
14902 - fix segfault at exit when using captures
14903 - bug: negation in ACL conds was not cleared between terms
14904 - errorfile: use a local file to feed error messages
14905 - acl: support '-i' to ignore case when matching
14906 - acl: smarter integer comparison with operators eq,lt,gt,le,ge
14907 - acl: support maching on 'path' component
14908 - acl: implement matching on header values
14909 - acl: distinguish between request and response headers
14910 - acl: permit to return any header when no name specified
14911 - acl: provide default ACLs
14912 - added the 'use_backend' keyword for full content-switching
14913 - acl: specify the direction during fetches
14914 - acl: provide the argument length for fetch functions
14915 - acl: provide a reference to the expr to fetch()
14916 - improve memory freeing upon exit
14917 - str2net() must not change the const char *
14918 - shut warnings 'is*' macros from ctype.h on solaris
14919
Willy Tarreaua3503e02007-06-03 17:27:07 +0200149202007/06/03 : 1.3.11.4
14921 - do not re-arm read timeout in SHUTR state !
14922 - optimize I/O by detecting system starvation
14923 - the epoll FD must not be shared between processes
14924 - limit the number of events returned by *poll*
14925
Willy Tarreau3c6fc072007-05-14 14:40:25 +0200149262007/05/14 : 1.3.11.3
14927 - pre-initialize timeouts with tv_eternity during parsing
14928
Willy Tarreaufc273c22007-05-14 03:42:47 +0200149292007/05/14 : 1.3.11.2
14930 - fixed broken health-checks since switch to timeval
14931
Willy Tarreau3c5340c2007-05-14 03:18:43 +0200149322007/05/14 : 1.3.11.1
14933 - fixed ev_kqueue which was forgotten during the switch to timeval
14934 - allowed null timeouts for past events in select
14935
Willy Tarreau544eb402007-05-14 02:42:33 +0200149362007/05/14 : 1.3.11
14937 - fixed ev_sepoll again by rewriting the state machine
14938 - switched all timeouts to timevals instead of milliseconds
14939 - improved memory management using mempools v2.
14940 - several minor optimizations
14941
Willy Tarreau9ca931f2007-05-10 07:51:17 +0200149422007/05/09 : 1.3.10.2
14943 - fixed build on OpenBSD (missing types.h)
14944
Willy Tarreau13398d32007-05-09 22:58:28 +0200149452007/05/09 : 1.3.10.1
14946 - fixed sepoll transition matrix (two states were missing)
14947
Willy Tarreau61beedf2007-05-09 01:44:58 +0200149482007/05/08 : 1.3.10
14949 - several fixes in ev_sepoll
14950 - fixed some expiration dates on some tasks
14951 - fixed a bug in connection establishment detection due to speculative I/O
14952 - fixed rare bug occuring on TCP with early close (reported by Andy Smith)
14953 - implemented URI hashing algorithm (Guillaume Dallaire)
14954 - implemented SMTP health checks (Peter van Dijk)
14955 - replaced the rbtree with ul2tree from old scheduler project
14956 - new framework for generic ACL support
14957 - added the 'acl' and 'block' keywords to the config language
14958 - added several ACL criteria and matches (IP, port, URI, ...)
14959 - cleaned up and better modularization for some time functions
14960 - fixed list macros
14961 - fixed useless memory allocation in str2net()
14962 - store the original destination address in the session
14963
Willy Tarreau6e0433f2007-04-16 01:18:12 +0200149642007/04/15 : 1.3.9
14965 - modularized the polling mechanisms and use function pointers instead
14966 of macros at many places
14967 - implemented support for FreeBSD's kqueue() polling mechanism
14968 - fixed a warning on OpenBSD : MIN/MAX redefined
14969 - change socket registration order at startup to accomodate kqueue.
14970 - several makefile cleanups to support old shells
14971 - fix build with limits.h once for all
14972 - ev_epoll: do not rely on fd_sets anymore, use changes stacks instead.
14973 - fdtab now holds the results of polling
14974 - implemented support for speculative I/O processing with epoll()
14975 - remove useless calls to shutdown(SHUT_RD), resulting in small speed boost
14976 - auto-registering of pollers at load time
14977
Willy Tarreau42c76592007-04-03 20:30:13 +0200149782007/04/03 : 1.3.8.2
14979 - rewriting either the status line or request line could crash the
14980 process due to a pointer which ought to be reset before parsing.
14981 - rewriting the status line in the response did not work, it caused
14982 a 502 Bad Gateway due to an erroneous state during parsing
14983
Willy Tarreauef6d7612007-04-01 11:06:22 +0200149842007/04/01 : 1.3.8.1
14985 - fix reqadd when no option httpclose is used.
14986 - removed now unused fiprm and beprm from proxies
14987 - split logs into two versions : TCP and HTTP
14988 - added some docs about http headers storage and acls
14989 - added a VIM script for syntax color highlighting (Bruno Michel)
14990
Willy Tarreaud661cc02007-03-26 00:24:56 +0200149912007/03/25 : 1.3.8
14992 - fixed several bugs which might have caused a crash with bad configs
14993 - several optimizations in header processing
14994 - many progresses towards transaction-based processing
14995 - option forwardfor may be used in frontends
14996 - completed HTTP response processing
14997 - some code refactoring between request and response processing
14998 - new HTTP header manipulation functions
14999 - optimizations on the recv() patch to reduce CPU usage under very
15000 high data rates.
15001 - more user-friendly help about the 'usesrc' keyword (CTTPROXY)
15002 - username/groupname support from Marcus Rueckert
15003 - added the "except" keyword to the "forwardfor" option (Bryan German)
15004 - support for health-checks on other addresses (Fabrice Dulaunoy)
15005 - makefile for MacOS 10.4 / Darwin (Dan Zinngrabe)
15006 - do not insert "Connection: close" in HTTP/1.0 messages
15007
Willy Tarreau9cabf702007-01-26 23:49:01 +0100150082007/01/26 : 1.3.7
15009 - fix critical bug introduced with 1.3.6 : an empty request header
15010 may lead to a crash due to missing pointer assignment
15011 - hdr_idx might be left uninitialized in debug mode
15012 - fixed build on FreeBSD due to missing fd_set declaration
15013
Willy Tarreaue7a24382007-01-22 08:57:44 +0100150142007/01/22 : 1.3.6.1
15015 - change in the header chaining broke cookies and authentication
15016
Willy Tarreau49e1ee82007-01-22 00:56:46 +0100150172007/01/22 : 1.3.6
15018 - stats now support the HEAD method too
15019 - extracted http request from the session
15020 - huge rework of the HTTP parser which is now a 28-state FSM.
15021 - linux-style likely/unlikely macros for optimization hints
15022 - do not create a server socket when there's no server
15023 - imported lots of docs
15024
Willy Tarreau5871f8e2007-01-07 02:47:01 +0100150252007/01/07 : 1.3.5
15026 - stats: swap color sets for active and backup servers
15027 - try to guess server check port when unset
15028 - added complete support and doc for TCP Splicing
15029 - replace the wait-queue linked list with an rbtree.
15030 - a few bugfixes and cleanups
15031
Willy Tarreau85270da2007-01-02 00:59:39 +0100150322007/01/02 : 1.3.4
15033 - support for cttproxy on the server side to present the client
15034 address to the server.
15035 - added support for SO_REUSEPORT on Linux (needs kernel patch)
15036 - new RFC2616-compliant HTTP request parser with header indexing
15037 - split proxies in frontends, rulesets and backends
15038 - implemented the 'req[i]setbe' to select a backend depending
15039 on the contents
15040 - added the 'default_backend' keyword to select a default BE.
15041 - new stats page featuring FEs and BEs + bytes in both dirs
15042 - improved log format to indicate the backend and the time in ms.
15043 - lots of cleanups
15044
Willy Tarreau9c9fea42006-10-16 00:03:35 +0200150452006/10/15 : 1.3.3
15046 - fix broken redispatch option in case the connection has already
15047 been marked "in progress" (ie: nearly always).
15048 - support regparm on x86 to speed up some often called functions
15049 - removed a few useless calls to gettimeofday() in log functions.
15050 - lots of 'const char*' cleanups
15051 - turn every FD_* into functions which are faster on recent CPUs
15052
Willy Tarreau690f9aa2006-09-03 11:23:06 +0200150532006/09/03 : 1.3.2
15054 - started the changes towards I/O completion callbacks. stream_sock* have
15055 replaced event_*.
15056 - added the new "reqtarpit" and "reqitarpit" protection features
15057
Willy Tarreau8f2b8552006-07-09 17:11:39 +0200150582006/07/09 : 1.3.1 (1.2.15)
15059 - now, haproxy warns about missing timeout during startup to try to
15060 eliminate all those buggy configurations.
15061 - added "Content-Type: text/html" in responses wherever appropriate, as
15062 suggested by Cameron Simpson.
15063 - implemented "option ssl-hello-chk" to use SSLv3 CLIENT HELLO messages to
15064 test server's health
15065 - implemented "monitor-uri" so that haproxy can reply to a specific URI with
15066 an "HTTP/1.0 200 OK" response. This is useful to validate multiple proxies
15067 at once.
15068
Willy Tarreaub9e98b62006-07-03 10:32:46 +0200150692006/06/29 : 1.3.0
15070 - exploded the whole file into multiple .c and .h. No functionnal
Willy Tarreau8f2b8552006-07-09 17:11:39 +020015071 difference is expected at all.
15072 - fixed a bug by which neither stats nor error messages could be returned if
15073 'clitimeout' was missing.
Willy Tarreaub9e98b62006-07-03 10:32:46 +020015074
willy tarreau7e6328d2006-05-21 23:26:20 +0200150752006/05/21 : 1.2.14
15076 - new HTML status report with the 'stats' keyword.
15077 - added the 'abortonclose' option to better resist traffic surges
15078 - implemented dynamic traffic regulation with the 'minconn' option
15079 - show request time on denied requests
15080 - definitely fixed hot reconf on OpenBSD by the use of SO_REUSEPORT
15081 - now a proxy instance is allowed to run without servers, which is
15082 useful to dedicate one instance to stats
15083 - added lots of error counters
15084 - a missing parenthesis preventd matching of cacheable cookies
15085 - a missing parenthesis in poll_loop() might have caused missed events.
15086
Willy TARREAU4404b7e2006-05-14 10:00:09 +0200150872006/05/14 : 1.2.13.1
15088 - an uninitialized field in the struct session could cause a crash when
15089 the session was freed. This has been encountered on Solaris only.
15090 - Solaris and OpenBSD no not support shutdown() on listening socket. Let's
15091 be nice to them by performing a soft stop if pause fails.
15092
willy tarreauc3a2e072006-05-13 18:51:38 +0200150932006/05/13 : 1.2.13
15094 - 'maxconn' server parameter to do per-server session limitation
15095 - queueing to support non-blocking session limitation
15096 - fixed removal of cookies for cookie-less servers such as backup servers
15097 - two separate wait queues for expirable and non-expirable tasks provide
15098 better performance with lots of sessions.
15099 - some code cleanups and performance improvements
15100 - made state dumps a bit more verbose
15101 - fixed missing checks for NULL srv in dispatch mode
15102 - load balancing on backup servers was not possible in source hash mode.
15103 - two session flags shared the same bit, but fortunately they were not
15104 compatible.
15105
willy tarreauc0d4bbd2006-04-15 21:47:50 +0200151062006/04/15 : 1.2.12
15107 Very few changes preparing for more important changes to support per-server
15108 session limitations and queueing :
15109 - ignore leading empty lines in HTTP requests as suggested by RFC2616.
15110 - added the 'weight' parameter to the servers, limited to 1..256. It applies
15111 to roundrobin and source hash.
15112 - the optional '-s' option could clobber '-st' and '-sf' if compiled in.
15113
willy tarreaue0dd2692006-03-30 16:27:34 +0200151142006/03/30 : 1.2.11.1
15115 - under some conditions, it might have been possible that when the
15116 last dead server became available, it would not have been used
15117 till another one would have changed state. Could not be reproduced
15118 at all, however seems possible from the code.
15119
willy tarreaud2058dc2006-03-25 20:35:41 +0100151202006/03/25 : 1.2.11
15121 - added the '-db' command-line option to disable backgrounding.
15122 - added the -sf/-st command-line arguments which are used to specify
15123 a list of pids to send a FINISH or TERMINATE signal upon startup.
15124 They will also be asked to release their port if a bind fails.
15125 - reworked the startup mechanism to allow the sending of a signal to a list
15126 of old pids if a socket cannot be bound, with a retry for a limited amount
15127 of time (1 second by default).
15128 - added the ability to enforce limits on memory usage.
15129 - added the 'source' load-balancing algorithm which uses the source IP(v4|v6)
15130 - re-architectured the server round-robin mechanism to ease integration of
15131 other algorithms. It now relies on the number of active and backup servers.
15132 - added a counter for the number of active and backup servers, and report
15133 these numbers upon SIGHUP or state change.
15134
willy tarreaubfad5742006-03-23 14:19:11 +0100151352006/03/23 : 1.2.10.1
15136 - while fixing the backup server round-robin "feature", a new bug was
15137 introduced which could miss some backup servers.
15138 - the displayed proxy name was wrong when dumping upon SIGHUP.
15139
willy tarreauaaff30e2006-03-19 21:30:41 +0100151402006/03/19 : 1.2.10
15141 - assert.h is needed when DEBUG is defined.
15142 - ENORMOUS long standing bug affecting the epoll polling system :
15143 event_data is a union, not a structure !
15144 - Make fd management more robust and easier to debug. Also some
15145 micro-optimisations.
15146 - Limit the number of consecutive accept() in multi-process mode.
15147 This produces a more evenly distributed load across the processes and
15148 slightly improves performance by reducing bottlenecks.
15149 - Make health-checks be more regular, and faster to retry after a timeout.
15150 - Fixed some messages to ease parsing of alerts.
15151 - provided a patch to enable epoll on RHEL3 kernels.
15152 - Separated OpenBSD build from the main Makefile into a new one.
15153
willy tarreau50be0172006-03-15 19:41:19 +0100151542006/03/15 : 1.2.9
15155 - haproxy could not be stopped after being paused, it had to be woken up
15156 first. This has been fixed.
15157 - the 'ulimit-n' parameter is now optional and by default computed from
15158 maxconn + the number of listeners + the number of health-checks.
15159 - it is now possible to specify a maximum number of connections at build
15160 time with the SYSTEM_MAXCONN define. The value set in the configuration
15161 file will then be limited to this value, and only the command-line '-n'
15162 option will be able to bypass it. It will prevent against accidental
15163 high memory usage on small systems.
15164 - RFC2616 expects that any HTTP agent accepts multi-line headers. Earlier
15165 versions did not detect a line beginning with a space as the continuation
15166 of previous header. It is now correct.
15167 - health checks sent to servers configured with identical intervals were
15168 sent in perfect synchronisation because the initial time was the same
15169 for all. This could induce high load peaks when fragile servers were
15170 hosting tens of instances for the same application. Now the load is
15171 spread evenly across the smallest interval amongst a listener.
15172 - a new 'forceclose' option was added to make the proxy close the outgoing
15173 channel to the server once it has sent all its headers and the server
15174 starts responding. This helps some servers which don't close upon the
15175 'Connection: close' header. It implies 'option httpclose'.
15176 - there was a bug in the way the backup servers were handled. They were
15177 erroneously load-balanced while the doc said the opposite. Since
15178 load-balanced backup servers is one of the features some people have
15179 been asking for, the problem was fixed to reflect the documented
15180 behaviour and a new option 'allbackups' was introduced to provide the
15181 feature to those who need it.
15182 - a never ending connect() could lead to a fast select() loop if its
15183 timeout times the number of retransmits exceeded the server read or write
15184 timeout, because the later was used to compute select()'s timeout while
15185 the connection timeout was not reached.
15186 - now we initialize the libc's localtime structures very early so that even
15187 under OOM conditions, we can still send dated error messages without
15188 segfaulting.
15189 - the 'daemon' mode implies 'quiet' and disables 'verbose' because file
15190 descriptors are closed.
15191
willy tarreau065f1c02006-01-29 22:10:07 +0100151922006/01/29 : 1.2.8
15193 - fixed a nasty bug affecting poll/epoll which could return unmodified data
15194 from the server to the client, and sometimes lead to memory corruption
15195 crashing the process.
15196 - added the new pause/play mechanism with SIGTTOU/SIGTTIN for hot-reconf.
15197
151982005/12/18 : 1.2.7.1
15199 - the "retries" option was ignored because connect() could not return an
15200 error if the connection failed before the timeout.
15201 - TCP health-checks could not detect a connection refused in poll/epoll
15202 mode.
15203
willy tarreaua56eca72005-12-18 01:34:42 +0100152042005/11/13 : 1.2.7
willy tarreau77bc8542005-12-18 01:31:43 +010015205 - building with -DUSE_PCRE should include PCRE headers and not regex.h. At
15206 least on Solaris, this caused the libc's regex primitives to be used instead
15207 of PCRE, which caused trouble on group references. This is now fixed.
willy tarreaud0fb4652005-12-18 01:32:04 +010015208 - delayed the quiet mode during startup so that most of the startup alerts can
15209 be displayed even in quiet mode.
15210 - display an alert when a listener has no address, invalid or no port, or when
15211 there are no enabled listeners upon startup.
willy tarreau4373b962005-12-18 01:32:31 +010015212 - added "static-pcre" to the list of supported regex options in the Makefile.
willy tarreau77bc8542005-12-18 01:31:43 +010015213
willy tarreaub952e1d2005-12-18 01:31:20 +0100152142005/10/09 : 1.2.7rc (1.1.33rc)
15215 - second batch of socklen_t changes.
15216 - clean-ups from Cameron Simpson.
15217 - because tv_remain() does not know about eternity, using no timeout can
15218 make select() spin around a null time-out. Bug reported by Cameron Simpson.
15219 - client read timeout was not properly set to eternity initialized after an
15220 accept() if it was not set in the config. It remained undetected so long
15221 because eternity is 0 and newly allocated pages are zeroed by the system.
15222 - do not call get_original_dst() when not in transparent mode.
15223 - implemented a workaround for a bug in certain epoll() implementations on
15224 linux-2.4 kernels (epoll-lt <= 0.21).
15225 - implemented TCP keepalive with new options : tcpka, clitcpka, srvtcpka.
15226
willy tarreauc5f73ed2005-12-18 01:26:38 +0100152272005/08/07 : 1.2.6
15228 - clean-up patch from Alexander Lazic fixes build on Debian 3.1 (socklen_t).
15229
152302005/07/06 : 1.2.6-pre5 (1.1.32)
willy tarreau0fe39652005-12-18 01:25:24 +010015231 - added the number of active sessions (proxy/process) in the logs
15232
152332005/07/06 : 1.2.6-pre4 (1.1.32-pre4)
willy tarreaub1285d52005-12-18 01:20:14 +010015234 - the time-out fix introduced in 1.1.25 caused a corner case where it was
15235 possible for a client to keep a connection maintained regardless of the
15236 timeout if the server closed the connection during the HEADER phase,
15237 while the client ignored the close request while doing nothing in the
15238 other direction. This has been fixed now by ensuring that read timeouts
15239 are re-armed when switching to any SHUTW state.
15240
152412005/07/05 : 1.2.6-pre3 (1.1.32-pre3)
15242 - enhanced error reporting in the logs. Now the proxy will precisely detect
15243 various error conditions related to the system and/or process limits, and
15244 generate LOG_EMERG logs indicating that a resource has been exhausted.
15245 - logs will contain two new characters for the error cause : 'R' indicates
15246 a resource exhausted, and 'I' indicates an internal error, though this
15247 one should never happen.
15248 - server connection timeouts can now be reported in the logs (sC), as well
15249 as connections refused because of maxconn limitations (PC).
15250
152512005/07/05 : 1.2.6-pre2 (1.1.32-pre2)
15252 - new global configuration keyword "ulimit-n" may be used to raise the FD
15253 limit to usable values.
15254 - a warning is now displayed on startup if the FD limit is lower than the
15255 configured maximum number of sockets.
15256
152572005/07/05 : 1.2.6-pre1 (1.1.32-pre1)
15258 - new configuration keyword "monitor-net" makes it possible to be monitored
15259 by external devices which connect to the proxy without being logged nor
15260 forwarded to any server. Particularly useful on generic TCPv4 relays.
15261
willy tarreau5dffb602005-12-18 01:15:23 +0100152622005/06/21 : 1.2.5.2
15263 - fixed build on PPC where chars are unsigned by default
15264
willy tarreau08dedbe2005-12-18 01:13:48 +0100152652005/05/02 : 1.2.5.1
15266 - dirty hack to fix a bug introduced with epoll : if we close an FD and
15267 immediately reassign it to another session through a connect(), the
15268 Prev{Read,Write}Events are not updated, which causes trouble detecting
15269 changes, thus leading to many timeouts at high loads.
15270
willy tarreau64a3cc32005-12-18 01:13:11 +0100152712005/04/30 : 1.2.5 (1.1.31)
15272 - changed the runtime argument to disable epoll() to '-de'
15273 - changed the runtime argument to disable poll() to '-dp'
15274 - added global options 'nopoll' and 'noepoll' to do the same at the
15275 configuration level.
15276 - added a 'linux24e' target to the Makefile for Linux 2.4 systems patched to
15277 support epoll().
15278 - changed default FD_SETSIZE to 65536 on Solaris (default=1024)
15279 - conditionned signals redirection to #ifdef DEBUG_MEMORY
15280
willy tarreau1c2ad212005-12-18 01:11:29 +0100152812005/04/26 : 1.2.5-pre4
15282 - made epoll() support a compile-time option : ENABLE_EPOLL
15283 - provided a very little libc replacement for a possibly missing epoll()
15284 implementation which can be enabled by -DUSE_MY_EPOLL
15285 - implemented the poll() poller, which can be enabled with -DENABLE_POLL.
15286 The equivalent runtime argument becomes '-P'. A few tests show that it
15287 performs like select() with many fds, but slightly slower (certainly
15288 because of the higher amount of memory involved).
15289 - separated the 3 polling methods and the tasks scheduler into 4 distinct
15290 functions which makes the code a lot more modular.
15291 - moved some event tables to private static declarations inside the poller
15292 functions.
15293 - the poller functions can now initialize themselves, run, and cleanup.
15294 - changed the runtime argument to enable epoll() to '-E'.
15295 - removed buggy epoll_ctl() code in the client_retnclose() function. This
15296 function was never meant to remove anything.
15297 - fixed a typo which caused glibc to yell about a double free on exit.
15298 - removed error checking after epoll_ctl(DEL) because we can never know if
15299 the fd is still active or already closed.
15300 - added a few entries in the makefile
15301
willy tarreauad90a0c2005-12-18 01:09:15 +0100153022005/04/25 : 1.2.5-pre3
15303 - experimental epoll() support (use temporary '-e' argument)
15304
153052005/04/24 : 1.2.5-pre2
willy tarreauc1f47532005-12-18 01:08:26 +010015306 - implemented the HTTP 303 code for error redirection. This forces the
15307 browser to fetch the given URI with a GET request. The new keyword for
15308 this is 'errorloc303', and a new 'errorloc302' keyword has been created
15309 to make them easily distinguishable.
15310 - added more controls in the parser for valid use of '\x' sequence.
15311 - few fixes from Alex & Klaus
15312
willy tarreauad90a0c2005-12-18 01:09:15 +0100153132005/02/17 : 1.2.5-pre1
willy tarreauc1f47532005-12-18 01:08:26 +010015314 - fixed a few errors in the documentation
15315
153162005/02/13
15317 - do not pre-initialize unused file-descriptors before select() anymore.
15318
willy tarreau12350152005-12-18 01:03:27 +0100153192005/01/22 : 1.2.4
15320 - merged Alexander Lazic's and Klaus Wagner's work on application
15321 cookie-based persistence. Since this is the first merge, this version is
15322 not intended for general use and reports are more than welcome. Some
15323 documentation is really needed though.
15324
willy tarreau0174f312005-12-18 01:02:42 +0100153252005/01/22 : 1.2.3 (1.1.30)
15326 - add an architecture guide to the documentation
15327 - released without any changes
15328
153292004/12/26 : 1.2.3-pre1 (1.1.30-pre1)
15330 - increased default BUFSIZE to 16 kB to accept max headers of 8 kB which is
15331 compatible with Apache. This limit can be configured in the makefile now.
15332 Thanks to Eric Fehr for the checks.
15333 - added a per-server "source" option which now makes it possible to bind to
15334 a different source for each (potentially identical) server.
15335 - changed cookie-based server selection slightly to allow several servers to
15336 share a same cookie, thus making it possible to associate backup servers to
15337 live servers and ease soft-stop for maintenance periods. (Alexander Lazic)
15338 - added the cookie 'prefix' mode which makes it possible to use persistence
15339 with thin clients which support only one cookie. The server name is prefixed
15340 before the application cookie, and restore back.
15341 - fixed the order of servers within an instance to match documentation. Now
15342 the servers are *really* used in the order of their declaration. This is
15343 particularly important when multiple backup servers are in use.
15344
willy tarreau4302f492005-12-18 01:00:37 +0100153452004/10/18 : 1.2.2 (1.1.29)
15346 - fixed a bug where a TCP connection would be logged twice if the 'logasap'
15347 option was enabled without the 'tcplog' option.
15348 - encode_string() would use hdr_encode_map instead of the map argument.
15349
153502004/08/10 : (1.1.29-pre2)
15351 - the logged request is now encoded with '#XX' for unprintable characters
15352 - new keywords 'capture request header' and 'capture response header' enable
15353 logging of arbitrary HTTP headers in requests and responses
15354 - removed "-DSOLARIS" after replacing the last inet_aton() with inet_pton()
15355
willy tarreau982249e2005-12-18 00:57:06 +0100153562004/06/06 : 1.2.1 (1.1.28)
15357 - added the '-V' command line option to verbosely report errors even though
15358 the -q or 'quiet' options are specified. This is useful with '-c'.
15359 - added a Red Hat init script and a .spec from Simon Matter <simon.matter@invoca.ch>
willy tarreau036e1ce2005-12-17 13:46:33 +010015360
willy tarreau982249e2005-12-18 00:57:06 +0100153612004/06/05 :
15362 - added the "logasap" option which produces a log without waiting for the data
15363 to be transferred from the server to the client.
15364 - added the "httpclose" option which removes any "connection:" header and adds
15365 "Connection: close" in both direction.
willy tarreau97f58572005-12-18 00:53:44 +010015366 - added the 'checkcache' option which blocks cacheable responses containing
15367 dangerous headers, such as 'set-cookie'.
willy tarreau982249e2005-12-18 00:57:06 +010015368 - added 'rspdeny' and 'rspideny' to block certain responses to avoid sensible
15369 information leak from servers.
willy tarreau25c4ea52005-12-18 00:49:49 +010015370
153712004/04/18 :
willy tarreaudd07e972005-12-18 00:48:48 +010015372 - send an EMERG log when no server is available for a given proxy
15373 - added the '-c' command line option to syntactically check the
15374 configuration file without starting the service.
15375
willy tarreau8a86dbf2005-12-18 00:45:59 +0100153762003/11/09 : 1.2.0
15377 - the same as 1.1.27 + IPv6 support on the client side
15378
willy tarreaufe2c5c12005-12-17 14:14:34 +0100153792003/10/27 : 1.1.27
15380 - the configurable HTTP health check introduced in 1.1.23 revealed a shameful
15381 bug : the code still assumed that HTTP requests were the same size as the
15382 original ones (22 bytes), and failed if they were not.
15383 - added support for pidfiles.
15384
willy tarreauc58fc692005-12-17 14:13:08 +0100153852003/10/22 : 1.1.26
15386 - the fix introduced in 1.1.25 for client timeouts while waiting for servers
15387 broke almost all compatibility with POST requests, because the proxy
15388 stopped to read anything from the client as soon as it got all of its
15389 headers.
15390
willy tarreauc1cae632005-12-17 14:12:23 +0100153912003/10/15 : 1.1.25
15392 - added the 'tcplog' option, which provides enhanced, HTTP-like logs for
15393 generic TCP proxies, or lighter logs for HTTP proxies.
15394 - fixed a time-out condition wrongly reported as client time-out in data
15395 phase if the client timeout was lower than the connect timeout times the
15396 number of retries.
15397
willy tarreau197e8ec2005-12-17 14:10:59 +0100153982003/09/21 : 1.1.24
15399 - if a client sent a full request then shut its write connection down, then
15400 the request was aborted. This case was detected only when using haproxy
15401 both as health-check client and as a server.
15402 - if 'option httpchk' is used in a 'health' mode server, then responses will
15403 change from 'OK' to 'HTTP/1.0 200 OK'.
15404 - fixed a Linux-only bug in case of HTTP server health-checks, where a single
15405 server response followed by a close could be ignored, and the server seen
15406 as failed.
15407
willy tarreaueedaa9f2005-12-17 14:08:03 +0100154082003/09/19 : 1.1.23
15409 - fixed a stupid bug introduced in 1.1.22 which caused second and subsequent
15410 'default' sections to keep previous parameters, and not initialize logs
15411 correctly.
15412 - fixed a second stupid bug introduced in 1.1.22 which caused configurations
15413 relying on 'dispatch' mode to segfault at the first connection.
15414 - 'option httpchk' now supports method, HTTP version and a few headers.
15415 - now, 'option httpchk', 'cookie' and 'capture' can be specified in
15416 'defaults' section
15417
154182003/09/10 : 1.1.22
willy tarreaua41a8b42005-12-17 14:02:24 +010015419 - 'listen' now supports optionnal address:port-range lists
15420 - 'bind' introduced to add new listen addresses
15421 - fixed a bug which caused a session to be kept established on a server till
15422 it timed out if the client closed during the DATA phase.
15423 - the port part of each server address can now be empty to make the proxy
15424 connect to the server on the same port it was connected to, be an absolute
15425 unsigned number to reflect a single port (as in older versions), or an
15426 explicitly signed number (+N/-N) to indicate that this offset must be
15427 applied to the port the proxy was connected to, when connecting to the
15428 server.
15429 - the 'port' server option allows the user to specify a different
15430 health-check port than the service one. It is mandatory when only relative
15431 ports have been specified and check is required. By default, the checks are
15432 sent to the service port.
15433 - new 'defaults' section which is rather similar to 'listen' except that all
15434 values are only used as default values for future 'listen' sections, until
15435 a new 'defaults' resets them. At the moment, server options, regexes,
15436 cookie names and captures cannot be set in the 'defaults' section.
15437
willy tarreau2f6ba652005-12-17 13:57:42 +0100154382003/05/06 : 1.1.21
15439 - changed the debug output format so that it now includes the session unique
15440 ID followed by the instance name at the beginning of each line.
15441 - in debug mode, accept now shows the client's IP and port.
15442 - added one 3 small debugging scripts to search and pretty print debug output
15443 - changed the default health check request to "OPTIONS /" instead of
15444 "OPTIONS *" since not all servers implement the later one.
15445 - "option httpchk" now accepts an optional parameter allowing the user to
15446 specify and URI other than '/' during health-checks.
15447
willy tarreaub1ff9db2005-12-17 13:51:03 +0100154482003/04/21 : 1.1.20
15449 - fixed two problems with time-outs, one where a server would be logged as
15450 timed out during transfer that take longer to complete than the fixed
15451 time-out, and one where clients were logged as timed-out during the data
15452 phase because they didn't have anything to send. This sometimes caused
15453 slow client connections to close too early while in fact there was no
15454 problem. The proper fix would be to have a per-fd time-out with
15455 conditions depending on the state of the HTTP FSM.
15456
willy tarreau906b2682005-12-17 13:49:52 +0100154572003/04/16 : 1.1.19
15458 - haproxy was NOT RFC compliant because it was case-sensitive on HTTP
15459 "Cookie:" and "Set-Cookie:" headers. This caused JVM 1.4 to fail on
15460 cookie persistence because it uses "cookie:". Two memcmp() have been
15461 replaced with strncasecmp().
15462
willy tarreau036e1ce2005-12-17 13:46:33 +0100154632003/04/02 : 1.1.18
15464 - Haproxy can be compiled with PCRE regex instead of libc regex, by setting
15465 REGEX=pcre on the make command line.
15466 - HTTP health-checks now use "OPTIONS *" instead of "OPTIONS /".
15467 - when explicit source address binding is required, it is now also used for
15468 health-checks.
15469 - added 'reqpass' and 'reqipass' to allow certain headers but not the request
15470 itself.
15471 - factored several strings to reduce binary size by about 2 kB.
15472 - replaced setreuid() and setregid() with more standard setuid() and setgid().
15473 - added 4 status flags to the log line indicating who ended the connection
15474 first, the sessions state, the validity of the cookie, and action taken on
15475 the set-cookie header.
15476
154772002/10/18 : 1.1.17
15478 - add the notion of "backup" servers, which are used only when all other
15479 servers are down.
15480 - make Set-Cookie return "" instead of "(null)" when the server has no
15481 cookie assigned (useful for backup servers).
15482 - "log" now supports an optionnal level name (info, notice, err ...) above
15483 which nothing is sent.
15484 - replaced some strncmp() with memcmp() for better efficiency.
15485 - added "capture cookie" option which logs client and/or server cookies
15486 - cleaned up/down messages and dump servers states upon SIGHUP
15487 - added a redirection feature for errors : "errorloc <errnum> <url>"
15488 - now we won't insist on connecting to a dead server, even with a cookie,
15489 unless option "persist" is specified.
15490 - added HTTP/408 response for client request time-out and HTTP/50[234] for
15491 server reply time-out or errors.
15492
154932002/09/01 : 1.1.16
15494 - implement HTTP health checks when option "httpchk" is specified.
15495
154962002/08/07 : 1.1.15
15497 - replaced setpgid()/setpgrp() with setsid() for better portability, because
15498 setpgrp() doesn't have the same meaning under Solaris, Linux, and OpenBSD.
15499
155002002/07/20 : 1.1.14
15501 - added "postonly" cookie mode
15502
155032002/07/15 : 1.1.13
15504 - tv_diff used inverted parameters which led to negative times !
15505
155062002/07/13 : 1.1.12
15507 - fixed stats monitoring, and optimized some tv_* for most common cases.
15508 - replaced temporary 'newhdr' with 'trash' to reduce stack size
15509 - made HTTP errors more HTML-fiendly.
15510 - renamed strlcpy() to strlcpy2() because of a slightly difference between
15511 their behaviour (return value), to avoid confusion.
15512 - restricted HTTP messages to HTTP proxies only
15513 - added a 502 message when the connection has been refused by the server,
15514 to prevent clients from believing this is a zero-byte HTTP 0.9 reply.
15515 - changed 'Cache-control:' from 'no-cache="set-cookie"' to 'private' when
15516 inserting a cookie, because some caches (apache) don't understand it.
15517 - fixed processing of server headers when client is in SHUTR state
15518
155192002/07/04 :
15520 - automatically close fd's 0,1 and 2 when going daemon ; setpgrp() after
15521 setpgid()
15522
155232002/06/04 : 1.1.11
15524 - fixed multi-cookie handling in client request to allow clean deletion
15525 in insert+indirect mode. Now, only the server cookie is deleted and not
willy tarreau906b2682005-12-17 13:49:52 +010015526 all the header. Should now be compliant to RFC2965.
willy tarreau036e1ce2005-12-17 13:46:33 +010015527 - added a "nocache" option to "cookie" to specify that we explicitly want
15528 to add a "cache-control" header when we add a cookie.
15529 It is also possible to add an "Expires: <old-date>" to keep compatibility
15530 with old/broken caches.
15531
155322002/05/10 : 1.1.10
15533 - if a cookie is used in insert+indirect mode, it's desirable that the
15534 the servers don't see it. It was not possible to remove it correctly
15535 with regexps, so now it's removed automatically.
15536
155372002/04/19 : 1.1.9
15538 - don't use snprintf()'s return value as an end of message since it may
15539 be larger. This caused bus errors and segfaults in internal libc's
15540 getenv() during localtime() in send_log().
15541 - removed dead insecure send_syslog() function and all references to it.
15542 - fixed warnings on Solaris due to buggy implementation of isXXXX().
15543
155442002/04/18 : 1.1.8
15545 - option "dontlognull"
15546 - fixed "double space" bug in config parser
15547 - fixed an uninitialized server field in case of dispatch
15548 with no existing server which could cause a segfault during
15549 logging.
15550 - the pid logged was always the father's, which was wrong for daemons.
15551 - fixed wrong level "LOG_INFO" for message "proxy started".
15552
155532002/04/13 :
15554 - http logging is now complete :
15555 - ip:port, date, proxy, server
15556 - req_time, conn_time, hdr_time, tot_time
15557 - status, size, request
15558 - source address
15559
155602002/04/12 : 1.1.7
15561 - added option forwardfor
15562 - added reqirep, reqidel, reqiallow, reqideny, rspirep, rspidel
15563 - added "log global" in "listen" section.
15564
155652002/04/09 :
15566 - added a new "global" section :
15567 - logs
15568 - debug, quiet, daemon modes
15569 - uid, gid, chroot, nbproc, maxconn
15570
155712002/04/08 : 1.1.6
15572 - regex are now chained and not limited anymore.
15573 - unavailable server now returns HTTP/502.
15574 - increased per-line args limit to 40
15575 - added reqallow/reqdeny to block some request on matches
15576 - added HTTP 400/403 responses
15577
155782002/04/03 : 1.1.5
15579 - connection logging displayed incorrect source address.
15580 - added proxy start/stop and server up/down log events.
15581 - replaced log message short buffers with larger trash.
15582 - enlarged buffer to 8 kB and replace buffer to 4 kB.
15583
155842002/03/25 : 1.1.4
15585 - made rise/fall/interval time configurable
15586
155872002/03/22 : 1.1.3
15588 - fixed a bug : cr_expire and cw_expire were inverted in CL_STSHUT[WR]
15589 which could lead to loops.
15590
155912002/03/21 : 1.1.2
15592 - fixed a bug in buffer management where we could have a loop
15593 between event_read() and process_{cli|srv} if R==BUFSIZE-MAXREWRITE.
15594 => implemented an adjustable buffer limit.
15595 - fixed a bug : expiration of tasks in wait queue timeout is used again,
15596 and running tasks are skipped.
15597 - added some debug lines for accept events.
15598 - send warnings for servers up/down.
15599
156002002/03/12 : 1.1.1
15601 - fixed a bug in total failure handling
15602 - fixed a bug in timestamp comparison within same second (tv_cmp_ms)
15603
156042002/03/10 : 1.1.0
15605 - fixed a few timeout bugs
15606 - rearranged the task scheduler subsystem to improve performance,
15607 add new tasks, and make it easier to later port to librt ;
15608 - allow multiple accept() for one select() wake up ;
15609 - implemented internal load balancing with basic health-check ;
15610 - cookie insertion and header add/replace/delete, with better strings
15611 support.
15612
156132002/03/08
15614 - reworked buffer handling to fix a few rewrite bugs, and
15615 improve overall performance.
15616 - implement the "purge" option to delete server cookies in direct mode.
15617
156182002/03/07
15619 - fixed some error cases where the maxfd was not decreased.
15620
156212002/02/26
15622 - now supports transparent proxying, at least on linux 2.4.
15623
156242002/02/12
15625 - soft stop works again (fixed select timeout computation).
15626 - it seems that TCP proxies sometimes cannot timeout.
15627 - added a "quiet" mode.
15628 - enforce file descriptor limitation on socket() and accept().
15629
156302001/12/30 : release of version 1.0.2 : fixed a bug in header processing
156312001/12/19 : release of version 1.0.1 : no MSG_NOSIGNAL on solaris
156322001/12/16 : release of version 1.0.0.
156332001/12/16 : added syslog capability for each accepted connection.
156342001/11/19 : corrected premature end of files and occasional SIGPIPE.
156352001/10/31 : added health-check type servers (mode health) which replies OK then closes.
156362001/10/30 : added the ability to support standard TCP proxies and HTTP proxies
15637 with or without cookies (use keyword http for this).
156382001/09/01 : added client/server header replacing with regexps.
15639 eg:
15640 cliexp ^(Host:\ [^:]*).* Host:\ \1:80
15641 srvexp ^Server:\ .* Server:\ Apache
156422000/11/29 : first fully working release with complete FSMs and timeouts.
156432000/11/28 : major rewrite
156442000/11/26 : first write