blob: 90c4105822fe478fa2253d31bc2c02a5882c36ab [file] [log] [blame]
willy tarreau036e1ce2005-12-17 13:46:33 +01001ChangeLog :
2===========
willy tarreau4302f492005-12-18 01:00:37 +01003
Willy Tarreau8019ffa2009-03-22 23:46:12 +010042009/03/22 : 1.3.16
5 - [BUILD] Fixed Makefile for linking pcre
6 - [CONTRIB] selinux policy for haproxy
7 - [MINOR] show errors: encode backslash as well as non-ascii characters
8 - [MINOR] cfgparse: some cleanups in the consistency checks
9 - [MINOR] cfgparse: set backends to "balance roundrobin" by default
10 - [MINOR] tcp-inspect: permit the use of no-delay inspection
11 - [MEDIUM] reverse internal proxy declaration order to match configuration
12 - [CLEANUP] config: catch and report some possibly wrong rule ordering
13 - [BUG] connect timeout is in the stream interface, not the buffer
14 - [BUG] session: errors were not reported in termination flags in TCP mode
15 - [MINOR] tcp_request: let the caller take care of errors and timeouts
16 - [CLEANUP] http: remove some commented out obsolete code in process_response
17 - [MINOR] update ebtree to version 4.1
18 - [MEDIUM] scheduler: get rid of the 4 trees thanks and use ebtree v4.1
19 - [BUG] sched: don't leave 3 lasts tasks unprocessed when niced tasks are present
20 - [BUG] scheduler: fix improper handling of duplicates __task_queue()
21 - [MINOR] sched: permit a task to stay up between calls
22 - [MINOR] task: keep a task count and clean up task creators
23 - [MINOR] stats: report number of tasks (active and running)
24 - [BUG] server check intervals must not be null
25 - [OPTIM] stream_sock: don't retry to read after a large read
26 - [OPTIM] buffer: new BF_READ_DONTWAIT flag reduces EAGAIN rates
27 - [MEDIUM] session: don't resync FSMs on non-interesting changes
28 - [BUG] check for global.maxconn before doing accept()
29 - [OPTIM] sepoll: do not re-check whole list upon accepts
30
Willy Tarreau8185ced2009-03-09 22:45:53 +0100312009/03/09 : 1.3.16-rc2
32 - [BUG] stream_sock: write timeout must be updated when forwarding !
33
Willy Tarreauff63b432009-03-09 01:03:42 +0100342009/03/09 : 1.3.16-rc1
35 - appsessions: cleanup DEBUG_HASH and initialize request_counter
36 - [MINOR] acl: add new keyword "connslots"
37 - [MINOR] cfgparse: fix off-by 2 in error message size
38 - [BUILD] fix build with gcc 4.3
39 - [BUILD] fix MANDIR default location to match documentation
40 - [TESTS] add a debug patch to help trigger the stats bug
41 - [BUG] Flush buffers also where there are exactly 0 bytes left
42 - [MINOR] Allow to specify a domain for a cookie
43 - [BUG/CLEANUP] cookiedomain -> cookie_domain rename + free(p->cookie_domain)
44 - [MEDIUM] Fix memory freeing at exit
45 - [MEDIUM] Fix memory freeing at exit, part 2
46 - [BUG] Fix listen & more of 2 couples <ip>:<port>
47 - [DOC] remove buggy comment for use_backend
48 - [CRITICAL] fix server state tracking: it was O(n!) instead of O(n)
49 - [MEDIUM] add support for URI hash depth and length limits
50 - [MINOR] permit renaming of x-forwarded-for header
51 - [BUILD] fix Makefile.bsd and Makefile.osx for stream_interface
52 - [BUILD] Haproxy won't compile if DEBUG_FULL is defined
53 - [MEDIUM] upgrade to ebtree v4.0
54 - [DOC] update the README file with new build options
55 - [MEDIUM] reduce risk of event starvation in ev_sepoll
56 - [MEDIUM] detect streaming buffers and tag them as such
57 - [MEDIUM] add support for conditional HTTP redirection
58 - [BUILD] make install should depend on haproxy not "all"
59 - [DEBUG] add a TRACE macro to facilitate runtime data extraction
60 - [BUG] event pollers must not wait if a task exists in the run queue
61 - [BUG] queue management: wake oldest request in queues
62 - [BUG] log: reported queue position was offed-by-one
63 - [BUG] fix the dequeuing logic to ensure that all requests get served
64 - [DOC] documentation for the "retries" parameter was missing.
65 - [MEDIUM] implement a monotonic internal clock
66 - [MEDIUM] further improve monotonic clock by check forward jumps
67 - [OPTIM] add branch prediction hints in list manipulations
68 - [MAJOR] replace ultree with ebtree in wait-queues
69 - [BUG] we could segfault during exit while freeing uri_auths
70 - [BUG] wqueue: perform proper timeout comparisons with wrapping values
71 - [MINOR] introduce now_ms, the current date in milliseconds
72 - [BUG] disable buffer read timeout when reading stats
73 - [MEDIUM] rework the wait queue mechanism
74 - [BUILD] change declaration of base64tab to fix build with Intel C++
75 - [OPTIM] shrink wake_expired_tasks() by using task_wakeup()
76 - [MAJOR] use an ebtree instead of a list for the run queue
77 - [MEDIUM] introduce task->nice and boot access to statistics
78 - [OPTIM] task_queue: assume most consecutive timers are equal
79 - [BUILD] silent a warning in unlikely() with gcc 4.x
80 - [MAJOR] convert all expiration timers from timeval to ticks
81 - [BUG] use_backend would not correctly consider "unless"
82 - [TESTS] added test-acl.cfg to test some ACL combinations
83 - [MEDIUM] add support for configuration keyword registration
84 - [MEDIUM] modularize the global "stats" keyword configuration parser
85 - [MINOR] cfgparse: add support for warnings in external functions
86 - [MEDIUM] modularize the "timeout" keyword configuration parser
87 - [MAJOR] implement tcp request content inspection
88 - [MINOR] acl: add a new parsing function: parse_dotted_ver
89 - [MINOR] acl: add req_ssl_ver in TCP, to match an SSL version
90 - [CLEANUP] remove unused include/types/client.h
91 - [CLEANUP] remove many #include <types/xxx> from C files
92 - [CLEANUP] remove dependency on obsolete INTBITS macro
93 - [DOC] document the new "tcp-request" keyword and associated ACLs
94 - [MINOR] acl: add REQ_CONTENT to the list of default acls
95 - [MEDIUM] acl: permit fetch() functions to set the result themselves
96 - [MEDIUM] acl: get rid of dummy values in always_true/always_false
97 - [MINOR] acl: add the "wait_end" acl verb
98 - [MEDIUM] acl: enforce ACL type checking
99 - [MEDIUM] acl: set types on all currently known ACL verbs
100 - [MEDIUM] acl: when possible, report the name and requirements of ACLs in warnings
101 - [CLEANUP] remove 65 useless NULL checks before free
102 - [MEDIUM] memory: update pool_free2() to support NULL pointers
103 - [MEDIUM] buffers: ensure buffer_shut* are properly called upon shutdowns
104 - [MEDIUM] process_srv: rely on buffer flags for client shutdown
105 - [MEDIUM] process_srv: don't rely at all on client state
106 - [MEDIUM] process_cli: don't rely at all on server state
107 - [BUG] fix segfault with url_param + check_post
108 - [BUG] server timeout was not considered in some circumstances
109 - [BUG] client timeout incorrectly rearmed while waiting for server
110 - [MAJOR] kill CL_STINSPECT and CL_STHEADERS (step 1)
111 - [MAJOR] get rid of SV_STANALYZE (step 2)
112 - [MEDIUM] simplify and centralize request timeout cancellation and request forwarding
113 - [MAJOR] completely separate HTTP and TCP states on the request path
114 - [BUG] fix recently introduced loop when client closes early
115 - [MAJOR] get rid of the SV_STHEADERS state
116 - [MAJOR] better separation of response processing and server state
117 - [MAJOR] clearly separate HTTP response processing from TCP server state
118 - [MEDIUM] remove unused references to {CL|SV}_STSHUT*
119 - [MINOR] term_trace: add better instrumentations to trace the code
120 - [BUG] ev_sepoll: closed file descriptors could persist in the spec list
121 - [BUG] process_response must not enable the read FD
122 - [BUG] buffers: remove BF_MAY_CONNECT and fix forwarding issue
123 - [BUG] process_response: do not touch srv_state
124 - [BUG] maintain_proxies must not disable backends
125 - [CLEANUP] get rid of BF_SHUT*_PENDING
126 - [MEDIUM] buffers: add BF_EMPTY and BF_FULL to remove dependency on req/rep->l
127 - [MAJOR] process_session: rely only on buffer flags
128 - [MEDIUM] use buffer->wex instead of buffer->cex for connect timeout
129 - [MEDIUM] centralize buffer timeout checks at the top of process_session
130 - [MINOR] ensure the termination flags are set by process_xxx
131 - [MEDIUM] session: move the analysis bit field to the buffer
132 - [OPTIM] process_cli/process_srv: reduce the number of tests
133 - [BUG] regparm is broken on gcc < 3
134 - [BUILD] fix warning in proto_tcp.c with gcc >= 4
135 - [MEDIUM] merge inspect_exp and txn->exp into request buffer
136 - [BUG] process_cli/process_srv: don't call shutdown when already done
137 - [BUG] process_request: HTTP body analysis must return zero if missing data
138 - [TESTS] test-fsm: 22 regression tests for state machines
139 - [BUG] Fix empty X-Forwarded-For header name when set in defaults section
140 - [BUG] fix harmless but wrong fd insertion sequence
141 - [MEDIUM] make it possible for analysers to follow the whole session
142 - [MAJOR] rework of the server FSM
143 - [OPTIM] remove useless fd_set(read) upon shutdown(write)
144 - [MEDIUM] massive cleanup of process_srv()
145 - [MEDIUM] second level of code cleanup for process_srv_data
146 - [MEDIUM] third cleanup and optimization of process_srv_data()
147 - [MEDIUM] process_srv_data: ensure that we always correctly re-arm timeouts
148 - [MEDIUM] stream_sock_process_data moved to stream_sock.c
149 - [MAJOR] make the client side use stream_sock_process_data()
150 - [MEDIUM] split stream_sock_process_data
151 - [OPTIM] stream_sock_read must check for null-reads more often
152 - [MINOR] only call flow analysers when their read side is connected.
153 - [MEDIUM] reintroduce BF_HIJACK with produce_content
154 - [MINOR] re-arrange buffer flags and rename some of them
155 - [MINOR] do not check for BF_SHUTR when computing write timeout
156 - [OPTIM] ev_sepoll: detect newly created FDs and check them once
157 - [OPTIM] reduce the number of calls to task_wakeup()
158 - [OPTIM] force inlining of large functions with gcc >= 3
159 - [MEDIUM] indicate a reason for a task wakeup
160 - [MINOR] change type of fdtab[]->owner to void*
161 - [MAJOR] make stream sockets aware of the stream interface
162 - [MEDIUM] stream interface: add the ->shutw method as well as in and out buffers
163 - [MEDIUM] buffers: add BF_READ_ATTACHED and BF_ANA_TIMEOUT
164 - [MEDIUM] process_session: make use of the new buffer flags
165 - [CLEANUP] process_session: move debug outputs out of the critical loop
166 - [MEDIUM] move QUEUE and TAR timers to stream interfaces
167 - [OPTIM] add compiler hints in tick_is_expired()
168 - [MINOR] add buffer_check_timeouts() to check what timeouts have fired.
169 - [MEDIUM] use buffer_check_timeouts instead of stream_sock_check_timeouts()
170 - [MINOR] add an expiration flag to the stream_sock_interface
171 - [MAJOR] migrate the connection logic to stream interface
172 - [MAJOR] add a connection error state to the stream_interface
173 - [MEDIUM] add the SN_CURR_SESS flag to the session to track open sessions
174 - [MEDIUM] continue layering cleanups.
175 - [MEDIUM] stream_interface: added a DISconnected state between CON/EST and CLO
176 - [MEDIUM] remove stream_sock_update_data()
177 - [MINOR] maintain a global session list in order to ease debugging
178 - [BUG] shutw must imply close during a connect
179 - [MEDIUM] process shutw during connection attempt
180 - [MEDIUM] make the stream interface control the SHUT{R,W} bits
181 - [MAJOR] complete layer4/7 separation
182 - [CLEANUP] move the session-related functions to session.c
183 - [MINOR] call session->do_log() for logging
184 - [MINOR] replace the ambiguous client_return function by stream_int_return
185 - [MINOR] replace client_retnclose() with stream_int_retnclose()
186 - [MINOR] replace srv_close_with_err() with http_server_error()
187 - [MEDIUM] make the http server error function a pointer in the session
188 - [CLEANUP] session.c: removed some migration left-overs in sess_establish()
189 - [MINOR] stream_sock_data_finish() should not expose fd
190 - [MEDIUM] extract TCP request processing from HTTP
191 - [MEDIUM] extract the HTTP tarpit code from process_request().
192 - [MEDIUM] move the HTTP request body analyser out of process_request().
193 - [MEDIUM] rename process_request to http_process_request
194 - [BUG] fix forgotten server session counter
195 - [MINOR] declare process_session in session.h, not proto_http.h
196 - [MEDIUM] first pass of lifting to proto_uxst.c:uxst_event_accept()
197 - [MINOR] add an analyser code for UNIX stats request
198 - [MINOR] pre-set analyser flags on the listener at registration time
199 - [BUG] do not forward close from cons to prod with analysers
200 - [MEDIUM] ensure that sock->shutw() also closes read for init states
201 - [MINOR] add an analyser state in struct session
202 - [MAJOR] make unix sockets work again with stats
203 - [MEDIUM] remove cli_fd, srv_fd, cli_state and srv_state from the session
204 - [MINOR] move the listener reference from fd to session
205 - [MEDIUM] reference the current hijack function in the buffer itself
206 - [MINOR] slightly rebalance stats_dump_{raw,http}
207 - [MINOR] add a new back-reference type : struct bref
208 - [MINOR] add back-references to sessions for later use by a dumper.
209 - [MEDIUM] add support for "show sess" in unix stats socket
210 - [BUG] do not release the connection slot during a retry
211 - [BUG] dynamic connection throttling could return a max of zero conns
212 - [BUG] do not try to pause backends during reload
213 - [BUG] ensure that listeners from disabled proxies are correctly unbound.
214 - [BUG] acl-related keywords are not allowed in defaults sections
215 - [BUG] cookie capture is declared in the frontend but checked on the backend
216 - [BUG] critical errors should be reported even in daemon mode
217 - [MINOR] redirect: add support for the "drop-query" option
218 - [MINOR] redirect: add support for "set-cookie" and "clear-cookie"
219 - [MINOR] redirect: in prefix mode a "/" means not to change the URI
220 - [BUG] do not dequeue requests on a dead server
221 - [BUG] do not dequeue the backend's pending connections on a dead server
222 - [MINOR] stats: indicate if a task is running in "show sess"
223 - [BUG] check timeout must not be changed if timeout.check is not set
224 - [BUG] "option transparent" is for backend, not frontend !
225 - [MINOR] transfer errors were not reported anymore in data phase
226 - [MEDIUM] add a send limit to a buffer
227 - [MEDIUM] don't report buffer timeout when there is I/O activity
228 - [MEDIUM] indicate when we don't care about read timeout
229 - [MINOR] add flags to indicate when a stream interface is waiting for space/data
230 - [MEDIUM] enable inter-stream_interface wakeup calls
231 - [MAJOR] implement autonomous inter-socket forwarding
232 - [MINOR] add the splice_len member to the buffer struct in preparation of splice support
233 - [MEDIUM] stream_sock: factor out the return path in case of no-writes
234 - [MEDIUM] i/o: rework ->to_forward and ->send_max
235 - [OPTIM] stream_sock: do not ask for polling on EAGAIN if we have read
236 - [OPTIM] buffer: replace rlim by max_len
237 - [OPTIM] stream_sock: factor out the buffer full handling out of the loop
238 - [CLEANUP] replace a few occurrences of (flags & X) && !(flags & Y)
239 - [CLEANUP] stream_sock: move the write-nothing condition out of the loop
240 - [MEDIUM] split stream_sock_write() into callback and core functions
241 - [MEDIUM] stream_sock_read: call ->chk_snd whenever there are data pending
242 - [MINOR] stream_sock: fix a few wrong empty calculations
243 - [MEDIUM] stream_sock: try to send pending data on chk_snd()
244 - [MINOR] global.maxpipes: add the ability to reserve file descriptors for pipes
245 - [MEDIUM] splice: add configuration options and set global.maxpipes
246 - [MINOR] introduce structures required to support Linux kernel splicing
247 - [MEDIUM] add definitions for Linux kernel splicing
248 - [MAJOR] complete support for linux 2.6 kernel splicing
249 - [BUG] reserve some pipes for backends with splice enabled
250 - [MEDIUM] splice: add hints to support older buggy kernels
251 - [MEDIUM] introduce pipe pools
252 - [MEDIUM] splice: make use of pipe pools
253 - [STATS] report pipe usage in the statistics
254 - [OPTIM] make global.maxpipes default to global.maxconn/4 when not specified
255 - [BUILD] fix snapshot date extraction with negative timezones
256 - [MEDIUM] move global tuning options to the global structure
257 - [MEDIUM] splice: add the global "nosplice" option
258 - [BUILD] add USE_LINUX_SPLICE to enable LINUX_SPLICE on linux 2.6
259 - [BUG] we must not exit if protocol binding only returns a warning
260 - [MINOR] add support for bind interface name
261 - [BUG] inform the user when root is expected but not set
262 - [MEDIUM] add support for source interface binding
263 - [MEDIUM] add support for source interface binding at the server level
264 - [MEDIUM] implement bind-process to limit service presence by process
265 - [DOC] document maxpipes, nosplice, option splice-{auto,request,response}
266 - [DOC] filled the logging section of the configuration manual
267 - [DOC] document HTTP status codes
268 - [DOC] document a few missing info about errorfile
269 - [BUG] fix random memory corruption using "show sess"
270 - [BUG] fix unix socket processing of interrupted output
271 - [DOC] add diagrams of queuing and future ACL design
272 - [BUILD] proto_http did not build on gcc-2.95
273 - [BUG] the "source" keyword must first clear optional settings
274 - [BUG] global.tune.maxaccept must be limited even in mono-process mode
275 - [MINOR] ensure that http_msg_analyzer updates pointer to invalid char
276 - [MEDIUM] store a complete dump of request and response errors in proxies
277 - [MEDIUM] implement error dump on unix socket with "show errors"
278 - [DOC] document "show errors"
279 - [MINOR] errors dump must use user-visible date, not internal date.
280 - [MINOR] time: add __usec_to_1024th to convert usecs to 1024th of second
281 - [MINOR] add curr_sec_ms and curr_sec_ms_scaled for current second.
282 - [MEDIUM] measure and report session rate on frontend, backends and servers
283 - [BUG] the "connslots" keyword was matched as "connlots"
284 - [MINOR] acl: add 2 new verbs: fe_sess_rate and be_sess_rate
285 - [MEDIUM] implement "rate-limit sessions" for the frontend
286 - [BUG] interface binding: length must include the trailing zero
287 - [BUG] typo in timeout error reporting : report *res and not *err
288 - [OPTIM] maintain_proxies: only wake up when the frontend will be ready
289 - [OPTIM] rate-limit: cleaner behaviour on low rates and reduce consumption
290 - [BUG] switch server-side stream interface to close in case of abort
291 - [CLEANUP] remove last references to term_trace
292 - [OPTIM] freq_ctr: do not rotate the counters when reading
293 - [BUG] disable any analysers for monitoring requests
294 - [BUG] rate-limit in defaults section was ignored
295 - [BUG] task: fix handling of duplicate keys
296 - [OPTIM] task: don't unlink a task from a wait queue when waking it up
297 - [OPTIM] displace tasks in the wait queue only if absolutely needed
298 - [MEDIUM] minor update to the task api: let the scheduler queue itself
299 - [BUG] event_accept() must always wake the task up, even in health mode
300 - [CLEANUP] task: distinguish between clock ticks and timers
301 - [OPTIM] task: reduce the number of calls to task_queue()
302 - [OPTIM] do not re-check req buffer when only response has changed
303 - [CLEANUP] don't enable kernel splicing when socket is closed
304 - [CLEANUP] buffer_flush() was misleading, rename it as buffer_erase
305 - [MINOR] buffers: implement buffer_flush()
306 - [MEDIUM] rearrange forwarding condition to enable splice during analysis
307 - [BUILD] build fixes for Solaris
308 - [BUILD] proto_http did not build on gcc-2.95 (again)
309 - [CONTRIB] halog: fast log parser for haproxy
310 - [CONTRIB] halog: faster fgets() and add support for percentile reporting
311
Willy Tarreau7b4c5ae2008-04-19 21:06:14 +02003122008/04/19 : 1.3.15
313 - [BUILD] Added support for 'make install'
314 - [BUILD] Added 'install-man' make target for installing the man page
315 - [BUILD] Added 'install-bin' make target
316 - [BUILD] Added 'install-doc' make target
317 - [BUILD] Removed "/" after '$(DESTDIR)' in install targets
318 - [BUILD] Changed 'install' target to install the binaries first
319 - [BUILD] Replace hardcoded 'LD = gcc' with 'LD = $(CC)'
320 - [MEDIUM]: Inversion for options
321 - [MEDIUM]: Count retries and redispatches also for servers, fix redistribute_pending, extend logs, %d->%u cleanup
322 - [BUG]: Restore clearing t->logs.bytes
323 - [MEDIUM]: rework checks handling
324 - [DOC] Update a "contrib" file with a hint about a scheme used for formathing subjects
325 - [MEDIUM] Implement "track [<backend>/]<server>"
326 - [MINOR] Implement persistent id for proxies and servers
327 - [BUG] Don't increment server connections too much + fix retries
328 - [MEDIUM]: Prevent redispatcher from selecting the same server, version #3
329 - [MAJOR] proto_uxst rework -> SNMP support
330 - [BUG] appsession lookup in URL does not work
331 - [BUG] transparent proxy address was ignored in backend
332 - [BUG] hot reconfiguration failed because of a wrong error check
333 - [DOC] big update to the configuration manual
334 - [DOC] large update to the configuration manual
335 - [DOC] document more options
336 - [BUILD] major rework of the GNU Makefile
337 - [STATS] add support for "show info" on the unix socket
338 - [DOC] document options forwardfor to logasap
339 - [MINOR] add support for the "backlog" parameter
340 - [OPTIM] introduce global parameter "tune.maxaccept"
341 - [MEDIUM] introduce "timeout http-request" in frontends
342 - [MINOR] tarpit timeout is also allowed in backends
343 - [BUG] increment server connections for each connect()
344 - [MEDIUM] add a turn-around state of one second after a connection failure
345 - [BUG] fix typo in redispatched connection
346 - [DOC] document options nolinger to ssl-hello-chk
347 - [DOC] added documentation for "option tcplog" to "use_backend"
348 - [BUG] connect_server: server might not exist when sending error report
349 - [MEDIUM] support fully transparent proxy on Linux (USE_LINUX_TPROXY)
350 - [MEDIUM] add non-local bind to connect() on Linux
351 - [MINOR] add transparent proxy support for balabit's Tproxy v4
352 - [BUG] use backend's source and not server's source with tproxy
353 - [BUG] fix overlapping server flags
354 - [MEDIUM] fix server health checks source address selection
355 - [BUG] build failed on CONFIG_HAP_LINUX_TPROXY without CONFIG_HAP_CTTPROXY
356 - [DOC] added "server", "source" and "stats" keywords
357 - [DOC] all server parameters have been documented
358 - [DOC] document all req* and rsp* keywords.
359 - [DOC] added documentation about HTTP header manipulations
360 - [BUG] log response byte count, not request
361 - [BUILD] code did not build in full debug mode
362 - [BUG] fix truncated responses with sepoll
363 - [MINOR] use s->frt_addr as the server's address in transparent proxy
364 - [MINOR] fix configuration hint about timeouts
365 - [DOC] minor cleanup of the doc and notice to contributors
366 - [MINOR] report correct section type for unknown keywords.
367 - [BUILD] update MacOS Makefile to build on newer versions
368 - [DOC] fix erroneous "useallbackups" option in the doc
369 - [DOC] applied small fixes from early readers
370 - [MINOR] add configuration support for "redir" server keyword
371 - [MEDIUM] completely implement the server redirection method
372 - [TESTS] add a test case for the server redirection mechanism
373 - [DOC] add a configuration entry for "server ... redir <prefix>"
374 - [BUILD] backend.c and checks.c did not build without tproxy !
375 - Revert "[BUILD] backend.c and checks.c did not build without tproxy !"
376 - [BUILD] backend.c and checks.c did not build without tproxy !
377 - [OPTIM] used unsigned ints for HTTP state and message offsets
378 - [OPTIM] GCC4's builtin_expect() is suboptimal
379 - [BUG] failed conns were sometimes incremented in the frontend!
380 - [BUG] timeout.check was not pre-set to eternity
381 - [TESTS] add test-pollers.cfg to easily report pollers in use
382 - [BUG] do not apply timeout.connect in checks if unset
383 - [BUILD] ensure that makefile understands USE_DLMALLOC=1
384 - [MINOR] silent gcc for a wrong warning
385 - [CLEANUP] update .gitignore to ignore more temporary files
386 - [CLEANUP] report dlmalloc's source path only if explictly specified
387 - [BUG] str2sun could leak a small buffer in case of error during parsing
388 - [BUG] option allbackups was not working anymore in roundrobin mode
389 - [MAJOR] implementation of the "leastconn" load balancing algorithm
390 - [BUILD] ensure that users don't build without setting the target anymore.
391 - [DOC] document the leastconn LB algo
392 - [MEDIUM] fix stats socket limitation to 16 kB
393 - [DOC] fix unescaped space in httpchk example.
394 - [BUG] fix double-decrement of server connections
395 - [TESTS] add a test case for port mapping
396 - [TESTS] add a benchmark for integer hashing
397 - [TESTS] add new methods in ip-hash test file
398 - [MAJOR] implement parameter hashing for POST requests
399
Willy Tarreaue5b77e82007-12-06 01:25:44 +01004002007/12/06 : 1.3.14
401 - New option http_proxy (Alexandre Cassen)
402 - add support for "maxqueue" to limit server queue overload (Elijah Epifanov)
403 - Check for duplicated conflicting proxies (Krzysztof Oledzki)
404 - stats: report server and backend cumulated downtime (Krzysztof Oledzki)
405 - use backends only with use_backend directive (Krzysztof Oledzki)
406 - Handle long lines properly (Krzysztof Oledzki)
407 - Implement and use generic findproxy and relax duplicated proxy check (Krzysztof Oledzki)
408 - continous statistics (Krzysztof Oledzki)
409 - add support for logging via a UNIX socket (Robert Tsai)
410 - fix error checking in strl2ic/strl2uic()
411 - fix calls to localtime()
412 - provide easier-to-use ultoa_* functions
413 - provide easy-to-use limit_r and LIM2A* macros
414 - add a simple test for the status page
415 - move error codes to common/errors.h
416 - silent warning about LIST_* being redefined on OpenBSD
417 - add socket address length to the protocols
418 - group PR_O_BALANCE_* bits into a checkable value
419 - externalize the "balance" option parser to backend.c
420 - introduce the "url_param" balance method
421 - make default_backend work in TCP mode too
422 - disable warning about localtime_r on Solaris
423 - adjust error messages about conflicting proxies
424 - avoid calling some layer7 functions if not needed
425 - simplify error path in event_accept()
426 - add an options field to the listeners
427 - added a new state to listeners
428 - unbind_listener() must use fd_delete() and not close()
429 - add a generic unbind_listener() primitive
430 - add a generic delete_listener() primitive
431 - add a generic unbind_all_listeners() primitive
432 - create proto_tcp and move initialization of proxy listeners
433 - stats: report numerical process ID, proxy ID and server ID
434 - relative_pid was not initialized
435 - missing header names in raw stats output
436 - fix missing parenthesis in check_response_for_cacheability
437 - small optimization on session_process_counters()
438 - merge ebtree version 3.0
439 - make ebtree headers multiple-include compatible
440 - ebtree: include config.h for REGPRM*
441 - differentiate between generic LB params and map-specific ones
442 - add a weight divisor to the struct proxy
443 - implement the Fast Weighted Round Robin (FWRR) algo
444 - include filltab25.c to experiment on FWRR for dynamic weights
445 - merge test-fwrr.cfg to validate dynamic weights
446 - move the load balancing algorithm to be->lbprm.algo
447 - change server check result to a bit field
448 - implement "http-check disable-on-404" for graceful shutdown
449 - secure the calling conditions of ->set_server_status_{up,down}
450 - report disabled servers as "NOLB" when they are still UP
451 - document the "http-check disable-on-404" option
452 - http-check disable-on-404 is not limited to HTTP mode
453 - add a test file for disable-on-404
454 - use distinct bits per load-balancing algorithm type
455 - implement the slowstart parameter for servers
456 - document the server's slowstart parameter
457 - stats: report the server warm up status in a "throttle" column
458 - fix 2 minor issues on AIX
459 - add the "nbsrv" ACL verb
460 - add the "fail" condition to monitor requests
461 - remove a warning from gcc due to htons() in standard.c
462 - fwrr: ensure that we never overflow in placements
463 - store the build options to report with -vv
464 - fix the status return of the init script (R.I. Pienaar)
465 - stats: real time monitoring script for unix socket (Prizee)
466 - document "nbsrv" and "monitor fail"
467 - restrict the set of allowed characters for identifiers
468 - implement a time parsing function
469 - add support for time units in the configuration
470 - add a bit of documentation about timers
471 - introduce separation between contimeout, and tarpit + queue
472 - introduce the "timeout" keyword
473 - grouped all timeouts in one structure
474 - slowstart is in ms, not seconds
475 - slowstart: ensure we don't start with a null weight
476 - report the number of times each server was selected
477 - fix build on AIX due to recent log changes
478 - fix build on Solaris due to recent log changes
479
Willy Tarreaue855f422007-10-18 22:38:22 +02004802007/10/18 : 1.3.13
481 - replace the code under O'Reilly license (Arnaud Cornet)
482 - add a small man page (Arnaud Cornet)
483 - stats: report haproxy's version by default (Krzysztof Oledzki)
484 - stats: count server retries and redispatches (Krzysztof Oledzki)
485 - core: added easy support for Doug Lea's malloc (dlmalloc)
486 - core: fade out memory usage when stopping proxies
487 - core: moved the sockaddr pointer to the fdtab structure
488 - core: add generic protocol support
489 - core: implement client-side support for PF_UNIX sockets
490 - stats: implement the CSV output
491 - stats: add a link to the CSV export HTML page
492 - stats: implement the statistics output on a unix socket
493 - config: introduce the "stats" keyword in global section
494 - build: centralize version and date into one file for each
495 - tests: added a new hash algorithm
496
4972007/10/18 : 1.3.12.3
498 - add the "nolinger" option to disable data lingering (Alexandre Cassen)
499 - fix double-free during clean exit (Krzysztof Oledzki)
500 - prevent the system from sending an RST when closing health-checks
501 (Krzysztof Oledzki)
502 - do not add a cache-control header when on non-cacheable responses
503 (Krzysztof Oledzki)
504 - spread health checks even more (Krzysztof Oledzki)
505 - stats: scope "." must match the backend and not the frontend
506 - fixed call to chroot() during startup
507 - fix wrong timeout computation in event_accept()
508 - remove condition for exit() under fork() failure
509
5102007/09/20 : 1.3.12.2
511 - fix configuration sanity checks for TCP listeners
512 - set the log socket receive window to zero bytes
513 - pre-initialize timeouts to infinity, not zero
514 - fix the SIGHUP message not to alert on server-less proxies
515 - timeouts and retries could be ignored when switching backend
516 - added a file to check that "retries" works.
517 - O'Reilly has clarified its license
518
5192007/09/05 : 1.3.12.1
520 - spec I/O: fix allocations of spec entries for an FD
521 - ensure we never overflow in chunk_printf()
522 - improve behaviour with large number of servers per proxy
523 - add support for "stats refresh <interval>"
524 - stats page: added links for 'refresh' and 'hide down'
525 - fix backend's weight in the stats page.
526 - the "stats" keyword is not allowed in a pure frontend.
527 - provide a test configuration file for stats and checks
528
Willy Tarreaub21152b2007-06-17 23:41:40 +02005292007/06/17 : 1.3.12
530 - fix segfault at exit when using captures
531 - bug: negation in ACL conds was not cleared between terms
532 - errorfile: use a local file to feed error messages
533 - acl: support '-i' to ignore case when matching
534 - acl: smarter integer comparison with operators eq,lt,gt,le,ge
535 - acl: support maching on 'path' component
536 - acl: implement matching on header values
537 - acl: distinguish between request and response headers
538 - acl: permit to return any header when no name specified
539 - acl: provide default ACLs
540 - added the 'use_backend' keyword for full content-switching
541 - acl: specify the direction during fetches
542 - acl: provide the argument length for fetch functions
543 - acl: provide a reference to the expr to fetch()
544 - improve memory freeing upon exit
545 - str2net() must not change the const char *
546 - shut warnings 'is*' macros from ctype.h on solaris
547
Willy Tarreaua3503e02007-06-03 17:27:07 +02005482007/06/03 : 1.3.11.4
549 - do not re-arm read timeout in SHUTR state !
550 - optimize I/O by detecting system starvation
551 - the epoll FD must not be shared between processes
552 - limit the number of events returned by *poll*
553
Willy Tarreau3c6fc072007-05-14 14:40:25 +02005542007/05/14 : 1.3.11.3
555 - pre-initialize timeouts with tv_eternity during parsing
556
Willy Tarreaufc273c22007-05-14 03:42:47 +02005572007/05/14 : 1.3.11.2
558 - fixed broken health-checks since switch to timeval
559
Willy Tarreau3c5340c2007-05-14 03:18:43 +02005602007/05/14 : 1.3.11.1
561 - fixed ev_kqueue which was forgotten during the switch to timeval
562 - allowed null timeouts for past events in select
563
Willy Tarreau544eb402007-05-14 02:42:33 +02005642007/05/14 : 1.3.11
565 - fixed ev_sepoll again by rewriting the state machine
566 - switched all timeouts to timevals instead of milliseconds
567 - improved memory management using mempools v2.
568 - several minor optimizations
569
Willy Tarreau9ca931f2007-05-10 07:51:17 +02005702007/05/09 : 1.3.10.2
571 - fixed build on OpenBSD (missing types.h)
572
Willy Tarreau13398d32007-05-09 22:58:28 +02005732007/05/09 : 1.3.10.1
574 - fixed sepoll transition matrix (two states were missing)
575
Willy Tarreau61beedf2007-05-09 01:44:58 +02005762007/05/08 : 1.3.10
577 - several fixes in ev_sepoll
578 - fixed some expiration dates on some tasks
579 - fixed a bug in connection establishment detection due to speculative I/O
580 - fixed rare bug occuring on TCP with early close (reported by Andy Smith)
581 - implemented URI hashing algorithm (Guillaume Dallaire)
582 - implemented SMTP health checks (Peter van Dijk)
583 - replaced the rbtree with ul2tree from old scheduler project
584 - new framework for generic ACL support
585 - added the 'acl' and 'block' keywords to the config language
586 - added several ACL criteria and matches (IP, port, URI, ...)
587 - cleaned up and better modularization for some time functions
588 - fixed list macros
589 - fixed useless memory allocation in str2net()
590 - store the original destination address in the session
591
Willy Tarreau6e0433f2007-04-16 01:18:12 +02005922007/04/15 : 1.3.9
593 - modularized the polling mechanisms and use function pointers instead
594 of macros at many places
595 - implemented support for FreeBSD's kqueue() polling mechanism
596 - fixed a warning on OpenBSD : MIN/MAX redefined
597 - change socket registration order at startup to accomodate kqueue.
598 - several makefile cleanups to support old shells
599 - fix build with limits.h once for all
600 - ev_epoll: do not rely on fd_sets anymore, use changes stacks instead.
601 - fdtab now holds the results of polling
602 - implemented support for speculative I/O processing with epoll()
603 - remove useless calls to shutdown(SHUT_RD), resulting in small speed boost
604 - auto-registering of pollers at load time
605
Willy Tarreau42c76592007-04-03 20:30:13 +02006062007/04/03 : 1.3.8.2
607 - rewriting either the status line or request line could crash the
608 process due to a pointer which ought to be reset before parsing.
609 - rewriting the status line in the response did not work, it caused
610 a 502 Bad Gateway due to an erroneous state during parsing
611
Willy Tarreauef6d7612007-04-01 11:06:22 +02006122007/04/01 : 1.3.8.1
613 - fix reqadd when no option httpclose is used.
614 - removed now unused fiprm and beprm from proxies
615 - split logs into two versions : TCP and HTTP
616 - added some docs about http headers storage and acls
617 - added a VIM script for syntax color highlighting (Bruno Michel)
618
Willy Tarreaud661cc02007-03-26 00:24:56 +02006192007/03/25 : 1.3.8
620 - fixed several bugs which might have caused a crash with bad configs
621 - several optimizations in header processing
622 - many progresses towards transaction-based processing
623 - option forwardfor may be used in frontends
624 - completed HTTP response processing
625 - some code refactoring between request and response processing
626 - new HTTP header manipulation functions
627 - optimizations on the recv() patch to reduce CPU usage under very
628 high data rates.
629 - more user-friendly help about the 'usesrc' keyword (CTTPROXY)
630 - username/groupname support from Marcus Rueckert
631 - added the "except" keyword to the "forwardfor" option (Bryan German)
632 - support for health-checks on other addresses (Fabrice Dulaunoy)
633 - makefile for MacOS 10.4 / Darwin (Dan Zinngrabe)
634 - do not insert "Connection: close" in HTTP/1.0 messages
635
Willy Tarreau9cabf702007-01-26 23:49:01 +01006362007/01/26 : 1.3.7
637 - fix critical bug introduced with 1.3.6 : an empty request header
638 may lead to a crash due to missing pointer assignment
639 - hdr_idx might be left uninitialized in debug mode
640 - fixed build on FreeBSD due to missing fd_set declaration
641
Willy Tarreaue7a24382007-01-22 08:57:44 +01006422007/01/22 : 1.3.6.1
643 - change in the header chaining broke cookies and authentication
644
Willy Tarreau49e1ee82007-01-22 00:56:46 +01006452007/01/22 : 1.3.6
646 - stats now support the HEAD method too
647 - extracted http request from the session
648 - huge rework of the HTTP parser which is now a 28-state FSM.
649 - linux-style likely/unlikely macros for optimization hints
650 - do not create a server socket when there's no server
651 - imported lots of docs
652
Willy Tarreau5871f8e2007-01-07 02:47:01 +01006532007/01/07 : 1.3.5
654 - stats: swap color sets for active and backup servers
655 - try to guess server check port when unset
656 - added complete support and doc for TCP Splicing
657 - replace the wait-queue linked list with an rbtree.
658 - a few bugfixes and cleanups
659
Willy Tarreau85270da2007-01-02 00:59:39 +01006602007/01/02 : 1.3.4
661 - support for cttproxy on the server side to present the client
662 address to the server.
663 - added support for SO_REUSEPORT on Linux (needs kernel patch)
664 - new RFC2616-compliant HTTP request parser with header indexing
665 - split proxies in frontends, rulesets and backends
666 - implemented the 'req[i]setbe' to select a backend depending
667 on the contents
668 - added the 'default_backend' keyword to select a default BE.
669 - new stats page featuring FEs and BEs + bytes in both dirs
670 - improved log format to indicate the backend and the time in ms.
671 - lots of cleanups
672
Willy Tarreau9c9fea42006-10-16 00:03:35 +02006732006/10/15 : 1.3.3
674 - fix broken redispatch option in case the connection has already
675 been marked "in progress" (ie: nearly always).
676 - support regparm on x86 to speed up some often called functions
677 - removed a few useless calls to gettimeofday() in log functions.
678 - lots of 'const char*' cleanups
679 - turn every FD_* into functions which are faster on recent CPUs
680
Willy Tarreau690f9aa2006-09-03 11:23:06 +02006812006/09/03 : 1.3.2
682 - started the changes towards I/O completion callbacks. stream_sock* have
683 replaced event_*.
684 - added the new "reqtarpit" and "reqitarpit" protection features
685
Willy Tarreau8f2b8552006-07-09 17:11:39 +02006862006/07/09 : 1.3.1 (1.2.15)
687 - now, haproxy warns about missing timeout during startup to try to
688 eliminate all those buggy configurations.
689 - added "Content-Type: text/html" in responses wherever appropriate, as
690 suggested by Cameron Simpson.
691 - implemented "option ssl-hello-chk" to use SSLv3 CLIENT HELLO messages to
692 test server's health
693 - implemented "monitor-uri" so that haproxy can reply to a specific URI with
694 an "HTTP/1.0 200 OK" response. This is useful to validate multiple proxies
695 at once.
696
Willy Tarreaub9e98b62006-07-03 10:32:46 +02006972006/06/29 : 1.3.0
698 - exploded the whole file into multiple .c and .h. No functionnal
Willy Tarreau8f2b8552006-07-09 17:11:39 +0200699 difference is expected at all.
700 - fixed a bug by which neither stats nor error messages could be returned if
701 'clitimeout' was missing.
Willy Tarreaub9e98b62006-07-03 10:32:46 +0200702
willy tarreau7e6328d2006-05-21 23:26:20 +02007032006/05/21 : 1.2.14
704 - new HTML status report with the 'stats' keyword.
705 - added the 'abortonclose' option to better resist traffic surges
706 - implemented dynamic traffic regulation with the 'minconn' option
707 - show request time on denied requests
708 - definitely fixed hot reconf on OpenBSD by the use of SO_REUSEPORT
709 - now a proxy instance is allowed to run without servers, which is
710 useful to dedicate one instance to stats
711 - added lots of error counters
712 - a missing parenthesis preventd matching of cacheable cookies
713 - a missing parenthesis in poll_loop() might have caused missed events.
714
Willy TARREAU4404b7e2006-05-14 10:00:09 +02007152006/05/14 : 1.2.13.1
716 - an uninitialized field in the struct session could cause a crash when
717 the session was freed. This has been encountered on Solaris only.
718 - Solaris and OpenBSD no not support shutdown() on listening socket. Let's
719 be nice to them by performing a soft stop if pause fails.
720
willy tarreauc3a2e072006-05-13 18:51:38 +02007212006/05/13 : 1.2.13
722 - 'maxconn' server parameter to do per-server session limitation
723 - queueing to support non-blocking session limitation
724 - fixed removal of cookies for cookie-less servers such as backup servers
725 - two separate wait queues for expirable and non-expirable tasks provide
726 better performance with lots of sessions.
727 - some code cleanups and performance improvements
728 - made state dumps a bit more verbose
729 - fixed missing checks for NULL srv in dispatch mode
730 - load balancing on backup servers was not possible in source hash mode.
731 - two session flags shared the same bit, but fortunately they were not
732 compatible.
733
willy tarreauc0d4bbd2006-04-15 21:47:50 +02007342006/04/15 : 1.2.12
735 Very few changes preparing for more important changes to support per-server
736 session limitations and queueing :
737 - ignore leading empty lines in HTTP requests as suggested by RFC2616.
738 - added the 'weight' parameter to the servers, limited to 1..256. It applies
739 to roundrobin and source hash.
740 - the optional '-s' option could clobber '-st' and '-sf' if compiled in.
741
willy tarreaue0dd2692006-03-30 16:27:34 +02007422006/03/30 : 1.2.11.1
743 - under some conditions, it might have been possible that when the
744 last dead server became available, it would not have been used
745 till another one would have changed state. Could not be reproduced
746 at all, however seems possible from the code.
747
willy tarreaud2058dc2006-03-25 20:35:41 +01007482006/03/25 : 1.2.11
749 - added the '-db' command-line option to disable backgrounding.
750 - added the -sf/-st command-line arguments which are used to specify
751 a list of pids to send a FINISH or TERMINATE signal upon startup.
752 They will also be asked to release their port if a bind fails.
753 - reworked the startup mechanism to allow the sending of a signal to a list
754 of old pids if a socket cannot be bound, with a retry for a limited amount
755 of time (1 second by default).
756 - added the ability to enforce limits on memory usage.
757 - added the 'source' load-balancing algorithm which uses the source IP(v4|v6)
758 - re-architectured the server round-robin mechanism to ease integration of
759 other algorithms. It now relies on the number of active and backup servers.
760 - added a counter for the number of active and backup servers, and report
761 these numbers upon SIGHUP or state change.
762
willy tarreaubfad5742006-03-23 14:19:11 +01007632006/03/23 : 1.2.10.1
764 - while fixing the backup server round-robin "feature", a new bug was
765 introduced which could miss some backup servers.
766 - the displayed proxy name was wrong when dumping upon SIGHUP.
767
willy tarreauaaff30e2006-03-19 21:30:41 +01007682006/03/19 : 1.2.10
769 - assert.h is needed when DEBUG is defined.
770 - ENORMOUS long standing bug affecting the epoll polling system :
771 event_data is a union, not a structure !
772 - Make fd management more robust and easier to debug. Also some
773 micro-optimisations.
774 - Limit the number of consecutive accept() in multi-process mode.
775 This produces a more evenly distributed load across the processes and
776 slightly improves performance by reducing bottlenecks.
777 - Make health-checks be more regular, and faster to retry after a timeout.
778 - Fixed some messages to ease parsing of alerts.
779 - provided a patch to enable epoll on RHEL3 kernels.
780 - Separated OpenBSD build from the main Makefile into a new one.
781
willy tarreau50be0172006-03-15 19:41:19 +01007822006/03/15 : 1.2.9
783 - haproxy could not be stopped after being paused, it had to be woken up
784 first. This has been fixed.
785 - the 'ulimit-n' parameter is now optional and by default computed from
786 maxconn + the number of listeners + the number of health-checks.
787 - it is now possible to specify a maximum number of connections at build
788 time with the SYSTEM_MAXCONN define. The value set in the configuration
789 file will then be limited to this value, and only the command-line '-n'
790 option will be able to bypass it. It will prevent against accidental
791 high memory usage on small systems.
792 - RFC2616 expects that any HTTP agent accepts multi-line headers. Earlier
793 versions did not detect a line beginning with a space as the continuation
794 of previous header. It is now correct.
795 - health checks sent to servers configured with identical intervals were
796 sent in perfect synchronisation because the initial time was the same
797 for all. This could induce high load peaks when fragile servers were
798 hosting tens of instances for the same application. Now the load is
799 spread evenly across the smallest interval amongst a listener.
800 - a new 'forceclose' option was added to make the proxy close the outgoing
801 channel to the server once it has sent all its headers and the server
802 starts responding. This helps some servers which don't close upon the
803 'Connection: close' header. It implies 'option httpclose'.
804 - there was a bug in the way the backup servers were handled. They were
805 erroneously load-balanced while the doc said the opposite. Since
806 load-balanced backup servers is one of the features some people have
807 been asking for, the problem was fixed to reflect the documented
808 behaviour and a new option 'allbackups' was introduced to provide the
809 feature to those who need it.
810 - a never ending connect() could lead to a fast select() loop if its
811 timeout times the number of retransmits exceeded the server read or write
812 timeout, because the later was used to compute select()'s timeout while
813 the connection timeout was not reached.
814 - now we initialize the libc's localtime structures very early so that even
815 under OOM conditions, we can still send dated error messages without
816 segfaulting.
817 - the 'daemon' mode implies 'quiet' and disables 'verbose' because file
818 descriptors are closed.
819
willy tarreau065f1c02006-01-29 22:10:07 +01008202006/01/29 : 1.2.8
821 - fixed a nasty bug affecting poll/epoll which could return unmodified data
822 from the server to the client, and sometimes lead to memory corruption
823 crashing the process.
824 - added the new pause/play mechanism with SIGTTOU/SIGTTIN for hot-reconf.
825
8262005/12/18 : 1.2.7.1
827 - the "retries" option was ignored because connect() could not return an
828 error if the connection failed before the timeout.
829 - TCP health-checks could not detect a connection refused in poll/epoll
830 mode.
831
willy tarreaua56eca72005-12-18 01:34:42 +01008322005/11/13 : 1.2.7
willy tarreau77bc8542005-12-18 01:31:43 +0100833 - building with -DUSE_PCRE should include PCRE headers and not regex.h. At
834 least on Solaris, this caused the libc's regex primitives to be used instead
835 of PCRE, which caused trouble on group references. This is now fixed.
willy tarreaud0fb4652005-12-18 01:32:04 +0100836 - delayed the quiet mode during startup so that most of the startup alerts can
837 be displayed even in quiet mode.
838 - display an alert when a listener has no address, invalid or no port, or when
839 there are no enabled listeners upon startup.
willy tarreau4373b962005-12-18 01:32:31 +0100840 - added "static-pcre" to the list of supported regex options in the Makefile.
willy tarreau77bc8542005-12-18 01:31:43 +0100841
willy tarreaub952e1d2005-12-18 01:31:20 +01008422005/10/09 : 1.2.7rc (1.1.33rc)
843 - second batch of socklen_t changes.
844 - clean-ups from Cameron Simpson.
845 - because tv_remain() does not know about eternity, using no timeout can
846 make select() spin around a null time-out. Bug reported by Cameron Simpson.
847 - client read timeout was not properly set to eternity initialized after an
848 accept() if it was not set in the config. It remained undetected so long
849 because eternity is 0 and newly allocated pages are zeroed by the system.
850 - do not call get_original_dst() when not in transparent mode.
851 - implemented a workaround for a bug in certain epoll() implementations on
852 linux-2.4 kernels (epoll-lt <= 0.21).
853 - implemented TCP keepalive with new options : tcpka, clitcpka, srvtcpka.
854
willy tarreauc5f73ed2005-12-18 01:26:38 +01008552005/08/07 : 1.2.6
856 - clean-up patch from Alexander Lazic fixes build on Debian 3.1 (socklen_t).
857
8582005/07/06 : 1.2.6-pre5 (1.1.32)
willy tarreau0fe39652005-12-18 01:25:24 +0100859 - added the number of active sessions (proxy/process) in the logs
860
8612005/07/06 : 1.2.6-pre4 (1.1.32-pre4)
willy tarreaub1285d52005-12-18 01:20:14 +0100862 - the time-out fix introduced in 1.1.25 caused a corner case where it was
863 possible for a client to keep a connection maintained regardless of the
864 timeout if the server closed the connection during the HEADER phase,
865 while the client ignored the close request while doing nothing in the
866 other direction. This has been fixed now by ensuring that read timeouts
867 are re-armed when switching to any SHUTW state.
868
8692005/07/05 : 1.2.6-pre3 (1.1.32-pre3)
870 - enhanced error reporting in the logs. Now the proxy will precisely detect
871 various error conditions related to the system and/or process limits, and
872 generate LOG_EMERG logs indicating that a resource has been exhausted.
873 - logs will contain two new characters for the error cause : 'R' indicates
874 a resource exhausted, and 'I' indicates an internal error, though this
875 one should never happen.
876 - server connection timeouts can now be reported in the logs (sC), as well
877 as connections refused because of maxconn limitations (PC).
878
8792005/07/05 : 1.2.6-pre2 (1.1.32-pre2)
880 - new global configuration keyword "ulimit-n" may be used to raise the FD
881 limit to usable values.
882 - a warning is now displayed on startup if the FD limit is lower than the
883 configured maximum number of sockets.
884
8852005/07/05 : 1.2.6-pre1 (1.1.32-pre1)
886 - new configuration keyword "monitor-net" makes it possible to be monitored
887 by external devices which connect to the proxy without being logged nor
888 forwarded to any server. Particularly useful on generic TCPv4 relays.
889
willy tarreau5dffb602005-12-18 01:15:23 +01008902005/06/21 : 1.2.5.2
891 - fixed build on PPC where chars are unsigned by default
892
willy tarreau08dedbe2005-12-18 01:13:48 +01008932005/05/02 : 1.2.5.1
894 - dirty hack to fix a bug introduced with epoll : if we close an FD and
895 immediately reassign it to another session through a connect(), the
896 Prev{Read,Write}Events are not updated, which causes trouble detecting
897 changes, thus leading to many timeouts at high loads.
898
willy tarreau64a3cc32005-12-18 01:13:11 +01008992005/04/30 : 1.2.5 (1.1.31)
900 - changed the runtime argument to disable epoll() to '-de'
901 - changed the runtime argument to disable poll() to '-dp'
902 - added global options 'nopoll' and 'noepoll' to do the same at the
903 configuration level.
904 - added a 'linux24e' target to the Makefile for Linux 2.4 systems patched to
905 support epoll().
906 - changed default FD_SETSIZE to 65536 on Solaris (default=1024)
907 - conditionned signals redirection to #ifdef DEBUG_MEMORY
908
willy tarreau1c2ad212005-12-18 01:11:29 +01009092005/04/26 : 1.2.5-pre4
910 - made epoll() support a compile-time option : ENABLE_EPOLL
911 - provided a very little libc replacement for a possibly missing epoll()
912 implementation which can be enabled by -DUSE_MY_EPOLL
913 - implemented the poll() poller, which can be enabled with -DENABLE_POLL.
914 The equivalent runtime argument becomes '-P'. A few tests show that it
915 performs like select() with many fds, but slightly slower (certainly
916 because of the higher amount of memory involved).
917 - separated the 3 polling methods and the tasks scheduler into 4 distinct
918 functions which makes the code a lot more modular.
919 - moved some event tables to private static declarations inside the poller
920 functions.
921 - the poller functions can now initialize themselves, run, and cleanup.
922 - changed the runtime argument to enable epoll() to '-E'.
923 - removed buggy epoll_ctl() code in the client_retnclose() function. This
924 function was never meant to remove anything.
925 - fixed a typo which caused glibc to yell about a double free on exit.
926 - removed error checking after epoll_ctl(DEL) because we can never know if
927 the fd is still active or already closed.
928 - added a few entries in the makefile
929
willy tarreauad90a0c2005-12-18 01:09:15 +01009302005/04/25 : 1.2.5-pre3
931 - experimental epoll() support (use temporary '-e' argument)
932
9332005/04/24 : 1.2.5-pre2
willy tarreauc1f47532005-12-18 01:08:26 +0100934 - implemented the HTTP 303 code for error redirection. This forces the
935 browser to fetch the given URI with a GET request. The new keyword for
936 this is 'errorloc303', and a new 'errorloc302' keyword has been created
937 to make them easily distinguishable.
938 - added more controls in the parser for valid use of '\x' sequence.
939 - few fixes from Alex & Klaus
940
willy tarreauad90a0c2005-12-18 01:09:15 +01009412005/02/17 : 1.2.5-pre1
willy tarreauc1f47532005-12-18 01:08:26 +0100942 - fixed a few errors in the documentation
943
9442005/02/13
945 - do not pre-initialize unused file-descriptors before select() anymore.
946
willy tarreau12350152005-12-18 01:03:27 +01009472005/01/22 : 1.2.4
948 - merged Alexander Lazic's and Klaus Wagner's work on application
949 cookie-based persistence. Since this is the first merge, this version is
950 not intended for general use and reports are more than welcome. Some
951 documentation is really needed though.
952
willy tarreau0174f312005-12-18 01:02:42 +01009532005/01/22 : 1.2.3 (1.1.30)
954 - add an architecture guide to the documentation
955 - released without any changes
956
9572004/12/26 : 1.2.3-pre1 (1.1.30-pre1)
958 - increased default BUFSIZE to 16 kB to accept max headers of 8 kB which is
959 compatible with Apache. This limit can be configured in the makefile now.
960 Thanks to Eric Fehr for the checks.
961 - added a per-server "source" option which now makes it possible to bind to
962 a different source for each (potentially identical) server.
963 - changed cookie-based server selection slightly to allow several servers to
964 share a same cookie, thus making it possible to associate backup servers to
965 live servers and ease soft-stop for maintenance periods. (Alexander Lazic)
966 - added the cookie 'prefix' mode which makes it possible to use persistence
967 with thin clients which support only one cookie. The server name is prefixed
968 before the application cookie, and restore back.
969 - fixed the order of servers within an instance to match documentation. Now
970 the servers are *really* used in the order of their declaration. This is
971 particularly important when multiple backup servers are in use.
972
willy tarreau4302f492005-12-18 01:00:37 +01009732004/10/18 : 1.2.2 (1.1.29)
974 - fixed a bug where a TCP connection would be logged twice if the 'logasap'
975 option was enabled without the 'tcplog' option.
976 - encode_string() would use hdr_encode_map instead of the map argument.
977
9782004/08/10 : (1.1.29-pre2)
979 - the logged request is now encoded with '#XX' for unprintable characters
980 - new keywords 'capture request header' and 'capture response header' enable
981 logging of arbitrary HTTP headers in requests and responses
982 - removed "-DSOLARIS" after replacing the last inet_aton() with inet_pton()
983
willy tarreau982249e2005-12-18 00:57:06 +01009842004/06/06 : 1.2.1 (1.1.28)
985 - added the '-V' command line option to verbosely report errors even though
986 the -q or 'quiet' options are specified. This is useful with '-c'.
987 - added a Red Hat init script and a .spec from Simon Matter <simon.matter@invoca.ch>
willy tarreau036e1ce2005-12-17 13:46:33 +0100988
willy tarreau982249e2005-12-18 00:57:06 +01009892004/06/05 :
990 - added the "logasap" option which produces a log without waiting for the data
991 to be transferred from the server to the client.
992 - added the "httpclose" option which removes any "connection:" header and adds
993 "Connection: close" in both direction.
willy tarreau97f58572005-12-18 00:53:44 +0100994 - added the 'checkcache' option which blocks cacheable responses containing
995 dangerous headers, such as 'set-cookie'.
willy tarreau982249e2005-12-18 00:57:06 +0100996 - added 'rspdeny' and 'rspideny' to block certain responses to avoid sensible
997 information leak from servers.
willy tarreau25c4ea52005-12-18 00:49:49 +0100998
9992004/04/18 :
willy tarreaudd07e972005-12-18 00:48:48 +01001000 - send an EMERG log when no server is available for a given proxy
1001 - added the '-c' command line option to syntactically check the
1002 configuration file without starting the service.
1003
willy tarreau8a86dbf2005-12-18 00:45:59 +010010042003/11/09 : 1.2.0
1005 - the same as 1.1.27 + IPv6 support on the client side
1006
willy tarreaufe2c5c12005-12-17 14:14:34 +010010072003/10/27 : 1.1.27
1008 - the configurable HTTP health check introduced in 1.1.23 revealed a shameful
1009 bug : the code still assumed that HTTP requests were the same size as the
1010 original ones (22 bytes), and failed if they were not.
1011 - added support for pidfiles.
1012
willy tarreauc58fc692005-12-17 14:13:08 +010010132003/10/22 : 1.1.26
1014 - the fix introduced in 1.1.25 for client timeouts while waiting for servers
1015 broke almost all compatibility with POST requests, because the proxy
1016 stopped to read anything from the client as soon as it got all of its
1017 headers.
1018
willy tarreauc1cae632005-12-17 14:12:23 +010010192003/10/15 : 1.1.25
1020 - added the 'tcplog' option, which provides enhanced, HTTP-like logs for
1021 generic TCP proxies, or lighter logs for HTTP proxies.
1022 - fixed a time-out condition wrongly reported as client time-out in data
1023 phase if the client timeout was lower than the connect timeout times the
1024 number of retries.
1025
willy tarreau197e8ec2005-12-17 14:10:59 +010010262003/09/21 : 1.1.24
1027 - if a client sent a full request then shut its write connection down, then
1028 the request was aborted. This case was detected only when using haproxy
1029 both as health-check client and as a server.
1030 - if 'option httpchk' is used in a 'health' mode server, then responses will
1031 change from 'OK' to 'HTTP/1.0 200 OK'.
1032 - fixed a Linux-only bug in case of HTTP server health-checks, where a single
1033 server response followed by a close could be ignored, and the server seen
1034 as failed.
1035
willy tarreaueedaa9f2005-12-17 14:08:03 +010010362003/09/19 : 1.1.23
1037 - fixed a stupid bug introduced in 1.1.22 which caused second and subsequent
1038 'default' sections to keep previous parameters, and not initialize logs
1039 correctly.
1040 - fixed a second stupid bug introduced in 1.1.22 which caused configurations
1041 relying on 'dispatch' mode to segfault at the first connection.
1042 - 'option httpchk' now supports method, HTTP version and a few headers.
1043 - now, 'option httpchk', 'cookie' and 'capture' can be specified in
1044 'defaults' section
1045
10462003/09/10 : 1.1.22
willy tarreaua41a8b42005-12-17 14:02:24 +01001047 - 'listen' now supports optionnal address:port-range lists
1048 - 'bind' introduced to add new listen addresses
1049 - fixed a bug which caused a session to be kept established on a server till
1050 it timed out if the client closed during the DATA phase.
1051 - the port part of each server address can now be empty to make the proxy
1052 connect to the server on the same port it was connected to, be an absolute
1053 unsigned number to reflect a single port (as in older versions), or an
1054 explicitly signed number (+N/-N) to indicate that this offset must be
1055 applied to the port the proxy was connected to, when connecting to the
1056 server.
1057 - the 'port' server option allows the user to specify a different
1058 health-check port than the service one. It is mandatory when only relative
1059 ports have been specified and check is required. By default, the checks are
1060 sent to the service port.
1061 - new 'defaults' section which is rather similar to 'listen' except that all
1062 values are only used as default values for future 'listen' sections, until
1063 a new 'defaults' resets them. At the moment, server options, regexes,
1064 cookie names and captures cannot be set in the 'defaults' section.
1065
willy tarreau2f6ba652005-12-17 13:57:42 +010010662003/05/06 : 1.1.21
1067 - changed the debug output format so that it now includes the session unique
1068 ID followed by the instance name at the beginning of each line.
1069 - in debug mode, accept now shows the client's IP and port.
1070 - added one 3 small debugging scripts to search and pretty print debug output
1071 - changed the default health check request to "OPTIONS /" instead of
1072 "OPTIONS *" since not all servers implement the later one.
1073 - "option httpchk" now accepts an optional parameter allowing the user to
1074 specify and URI other than '/' during health-checks.
1075
willy tarreaub1ff9db2005-12-17 13:51:03 +010010762003/04/21 : 1.1.20
1077 - fixed two problems with time-outs, one where a server would be logged as
1078 timed out during transfer that take longer to complete than the fixed
1079 time-out, and one where clients were logged as timed-out during the data
1080 phase because they didn't have anything to send. This sometimes caused
1081 slow client connections to close too early while in fact there was no
1082 problem. The proper fix would be to have a per-fd time-out with
1083 conditions depending on the state of the HTTP FSM.
1084
willy tarreau906b2682005-12-17 13:49:52 +010010852003/04/16 : 1.1.19
1086 - haproxy was NOT RFC compliant because it was case-sensitive on HTTP
1087 "Cookie:" and "Set-Cookie:" headers. This caused JVM 1.4 to fail on
1088 cookie persistence because it uses "cookie:". Two memcmp() have been
1089 replaced with strncasecmp().
1090
willy tarreau036e1ce2005-12-17 13:46:33 +010010912003/04/02 : 1.1.18
1092 - Haproxy can be compiled with PCRE regex instead of libc regex, by setting
1093 REGEX=pcre on the make command line.
1094 - HTTP health-checks now use "OPTIONS *" instead of "OPTIONS /".
1095 - when explicit source address binding is required, it is now also used for
1096 health-checks.
1097 - added 'reqpass' and 'reqipass' to allow certain headers but not the request
1098 itself.
1099 - factored several strings to reduce binary size by about 2 kB.
1100 - replaced setreuid() and setregid() with more standard setuid() and setgid().
1101 - added 4 status flags to the log line indicating who ended the connection
1102 first, the sessions state, the validity of the cookie, and action taken on
1103 the set-cookie header.
1104
11052002/10/18 : 1.1.17
1106 - add the notion of "backup" servers, which are used only when all other
1107 servers are down.
1108 - make Set-Cookie return "" instead of "(null)" when the server has no
1109 cookie assigned (useful for backup servers).
1110 - "log" now supports an optionnal level name (info, notice, err ...) above
1111 which nothing is sent.
1112 - replaced some strncmp() with memcmp() for better efficiency.
1113 - added "capture cookie" option which logs client and/or server cookies
1114 - cleaned up/down messages and dump servers states upon SIGHUP
1115 - added a redirection feature for errors : "errorloc <errnum> <url>"
1116 - now we won't insist on connecting to a dead server, even with a cookie,
1117 unless option "persist" is specified.
1118 - added HTTP/408 response for client request time-out and HTTP/50[234] for
1119 server reply time-out or errors.
1120
11212002/09/01 : 1.1.16
1122 - implement HTTP health checks when option "httpchk" is specified.
1123
11242002/08/07 : 1.1.15
1125 - replaced setpgid()/setpgrp() with setsid() for better portability, because
1126 setpgrp() doesn't have the same meaning under Solaris, Linux, and OpenBSD.
1127
11282002/07/20 : 1.1.14
1129 - added "postonly" cookie mode
1130
11312002/07/15 : 1.1.13
1132 - tv_diff used inverted parameters which led to negative times !
1133
11342002/07/13 : 1.1.12
1135 - fixed stats monitoring, and optimized some tv_* for most common cases.
1136 - replaced temporary 'newhdr' with 'trash' to reduce stack size
1137 - made HTTP errors more HTML-fiendly.
1138 - renamed strlcpy() to strlcpy2() because of a slightly difference between
1139 their behaviour (return value), to avoid confusion.
1140 - restricted HTTP messages to HTTP proxies only
1141 - added a 502 message when the connection has been refused by the server,
1142 to prevent clients from believing this is a zero-byte HTTP 0.9 reply.
1143 - changed 'Cache-control:' from 'no-cache="set-cookie"' to 'private' when
1144 inserting a cookie, because some caches (apache) don't understand it.
1145 - fixed processing of server headers when client is in SHUTR state
1146
11472002/07/04 :
1148 - automatically close fd's 0,1 and 2 when going daemon ; setpgrp() after
1149 setpgid()
1150
11512002/06/04 : 1.1.11
1152 - fixed multi-cookie handling in client request to allow clean deletion
1153 in insert+indirect mode. Now, only the server cookie is deleted and not
willy tarreau906b2682005-12-17 13:49:52 +01001154 all the header. Should now be compliant to RFC2965.
willy tarreau036e1ce2005-12-17 13:46:33 +01001155 - added a "nocache" option to "cookie" to specify that we explicitly want
1156 to add a "cache-control" header when we add a cookie.
1157 It is also possible to add an "Expires: <old-date>" to keep compatibility
1158 with old/broken caches.
1159
11602002/05/10 : 1.1.10
1161 - if a cookie is used in insert+indirect mode, it's desirable that the
1162 the servers don't see it. It was not possible to remove it correctly
1163 with regexps, so now it's removed automatically.
1164
11652002/04/19 : 1.1.9
1166 - don't use snprintf()'s return value as an end of message since it may
1167 be larger. This caused bus errors and segfaults in internal libc's
1168 getenv() during localtime() in send_log().
1169 - removed dead insecure send_syslog() function and all references to it.
1170 - fixed warnings on Solaris due to buggy implementation of isXXXX().
1171
11722002/04/18 : 1.1.8
1173 - option "dontlognull"
1174 - fixed "double space" bug in config parser
1175 - fixed an uninitialized server field in case of dispatch
1176 with no existing server which could cause a segfault during
1177 logging.
1178 - the pid logged was always the father's, which was wrong for daemons.
1179 - fixed wrong level "LOG_INFO" for message "proxy started".
1180
11812002/04/13 :
1182 - http logging is now complete :
1183 - ip:port, date, proxy, server
1184 - req_time, conn_time, hdr_time, tot_time
1185 - status, size, request
1186 - source address
1187
11882002/04/12 : 1.1.7
1189 - added option forwardfor
1190 - added reqirep, reqidel, reqiallow, reqideny, rspirep, rspidel
1191 - added "log global" in "listen" section.
1192
11932002/04/09 :
1194 - added a new "global" section :
1195 - logs
1196 - debug, quiet, daemon modes
1197 - uid, gid, chroot, nbproc, maxconn
1198
11992002/04/08 : 1.1.6
1200 - regex are now chained and not limited anymore.
1201 - unavailable server now returns HTTP/502.
1202 - increased per-line args limit to 40
1203 - added reqallow/reqdeny to block some request on matches
1204 - added HTTP 400/403 responses
1205
12062002/04/03 : 1.1.5
1207 - connection logging displayed incorrect source address.
1208 - added proxy start/stop and server up/down log events.
1209 - replaced log message short buffers with larger trash.
1210 - enlarged buffer to 8 kB and replace buffer to 4 kB.
1211
12122002/03/25 : 1.1.4
1213 - made rise/fall/interval time configurable
1214
12152002/03/22 : 1.1.3
1216 - fixed a bug : cr_expire and cw_expire were inverted in CL_STSHUT[WR]
1217 which could lead to loops.
1218
12192002/03/21 : 1.1.2
1220 - fixed a bug in buffer management where we could have a loop
1221 between event_read() and process_{cli|srv} if R==BUFSIZE-MAXREWRITE.
1222 => implemented an adjustable buffer limit.
1223 - fixed a bug : expiration of tasks in wait queue timeout is used again,
1224 and running tasks are skipped.
1225 - added some debug lines for accept events.
1226 - send warnings for servers up/down.
1227
12282002/03/12 : 1.1.1
1229 - fixed a bug in total failure handling
1230 - fixed a bug in timestamp comparison within same second (tv_cmp_ms)
1231
12322002/03/10 : 1.1.0
1233 - fixed a few timeout bugs
1234 - rearranged the task scheduler subsystem to improve performance,
1235 add new tasks, and make it easier to later port to librt ;
1236 - allow multiple accept() for one select() wake up ;
1237 - implemented internal load balancing with basic health-check ;
1238 - cookie insertion and header add/replace/delete, with better strings
1239 support.
1240
12412002/03/08
1242 - reworked buffer handling to fix a few rewrite bugs, and
1243 improve overall performance.
1244 - implement the "purge" option to delete server cookies in direct mode.
1245
12462002/03/07
1247 - fixed some error cases where the maxfd was not decreased.
1248
12492002/02/26
1250 - now supports transparent proxying, at least on linux 2.4.
1251
12522002/02/12
1253 - soft stop works again (fixed select timeout computation).
1254 - it seems that TCP proxies sometimes cannot timeout.
1255 - added a "quiet" mode.
1256 - enforce file descriptor limitation on socket() and accept().
1257
12582001/12/30 : release of version 1.0.2 : fixed a bug in header processing
12592001/12/19 : release of version 1.0.1 : no MSG_NOSIGNAL on solaris
12602001/12/16 : release of version 1.0.0.
12612001/12/16 : added syslog capability for each accepted connection.
12622001/11/19 : corrected premature end of files and occasional SIGPIPE.
12632001/10/31 : added health-check type servers (mode health) which replies OK then closes.
12642001/10/30 : added the ability to support standard TCP proxies and HTTP proxies
1265 with or without cookies (use keyword http for this).
12662001/09/01 : added client/server header replacing with regexps.
1267 eg:
1268 cliexp ^(Host:\ [^:]*).* Host:\ \1:80
1269 srvexp ^Server:\ .* Server:\ Apache
12702000/11/29 : first fully working release with complete FSMs and timeouts.
12712000/11/28 : major rewrite
12722000/11/26 : first write