blob: 42abee85cd0bc05e25039de0ffb5ad111b760a5c [file] [log] [blame]
willy tarreau036e1ce2005-12-17 13:46:33 +01001ChangeLog :
2===========
willy tarreau4302f492005-12-18 01:00:37 +01003
Willy Tarreau4c7588d2023-03-28 13:58:56 +020042023/03/28 : 2.8-dev6
5 - BUG/MEDIUM: mux-pt: Set EOS on error on sending path if read0 was received
6 - MINOR: ssl: Change the ocsp update log-format
7 - MINOR: ssl: Use ocsp update task for "update ssl ocsp-response" command
8 - BUG/MINOR: ssl: Fix double free in ocsp update deinit
9 - MINOR: ssl: Accept certpath as param in "show ssl ocsp-response" CLI command
10 - MINOR: ssl: Add certificate path to 'show ssl ocsp-response' output
11 - BUG/MEDIUM: proxy: properly stop backends on soft-stop
12 - BUG/MEDIUM: resolvers: Properly stop server resolutions on soft-stop
13 - DEBUG: cli/show_fd: Display connection error code
14 - DEBUG: ssl-sock/show_fd: Display SSL error code
15 - BUG/MEDIUM: mux-h1: Don't block SE_FL_ERROR if EOS is not reported on H1C
16 - BUG/MINOR: tcp_sample: fix a bug in fc_dst_port and fc_dst_is_local sample fetches
17 - BUG/MINOR: quic: Missing STREAM frame length updates
18 - BUG/MEDIUM: connection: Preserve flags when a conn is removed from an idle list
19 - BUG/MINOR: mux-h2: make sure the h2c task exists before refreshing it
20 - MINOR: buffer: add br_count() to return the number of allocated bufs
21 - MINOR: buffer: add br_single() to check if a buffer ring has more than one buf
22 - BUG/MEDIUM: mux-h2: only restart sending when mux buffer is decongested
23 - BUG/MINOR: mux-h2: set CO_SFL_STREAMER when sending lots of data
24 - BUG/MINOR: quic: Missing STREAM frame data pointer updates
25 - MINOR: stick-table: add sc-add-gpc() to http-after-response
26 - MINOR: doc: missing entries for sc-add-gpc()
27 - BUG/MAJOR: qpack: fix possible read out of bounds in static table
28 - OPTIM: mux-h1: limit first read size to avoid wrapping
29 - MINOR: mux-h2: set CO_SFL_MSG_MORE when sending multiple buffers
30 - MINOR: ssl-sock: pass the CO_SFL_MSG_MORE info down the stack
31 - MINOR: quic: Stop stressing the acknowledgments process (RX ACK frames)
32 - BUG/MINOR: quic: Dysfunctional 01RTT packet number space probing
33 - BUG/MEDIUM: stream: do not try to free a failed stream-conn
34 - BUG/MEDIUM: mux-h2: do not try to free an unallocated h2s->sd
35 - BUG/MEDIUM: mux-h2: erase h2c->wait_event.tasklet on error path
36 - BUG/MEDIUM: stconn: don't set the type before allocation succeeds
37 - BUG/MINOR: stconn: fix sedesc memory leak on stream allocation failure
38 - MINOR: dynbuf: set POOL_F_NO_FAIL on buffer allocation
39 - MINOR: pools: preset the allocation failure rate to 1% with -dMfail
40 - BUG/MEDIUM: mux-h1: properly destroy a partially allocated h1s
41 - BUG/MEDIUM: applet: only set appctx->sedesc on successful allocation
42 - BUG/MINOR: quic: wake up MUX on probing only for 01RTT
43 - BUG/MINOR: quic: ignore congestion window on probing for MUX wakeup
44 - BUILD: thread: implement thread_harmless_end_sig() for threadless builds
45 - BUILD: thread: silence a build warning when threads are disabled
46 - MINOR: debug: support dumping the libs addresses when running in verbose mode
47 - BUG/MINOR: illegal use of the malloc_trim() function if jemalloc is used
48 - BUG/MINOR: trace: fix hardcoded level for TRACE_PRINTF
49 - BUG/MEDIUM: mux-quic: release data from conn flow-control on qcs reset
50 - MINOR: mux-quic: complete traces for qcs emission
51 - MINOR: mux-quic: adjust trace level for MAX_DATA/MAX_STREAM_DATA recv
52 - MINOR: mux-quic: add flow-control info to minimal trace level
53 - MINOR: pools: make sure 'no-memory-trimming' is always used
54 - MINOR: pools: intercept malloc_trim() instead of trying to plug holes
55 - MEDIUM: pools: move the compat code from trim_all_pools() to malloc_trim()
56 - MINOR: pools: export trim_all_pools()
57 - MINOR: pattern: use trim_all_pools() instead of a conditional malloc_trim()
58 - MINOR: tools: relax dlopen() on malloc/free checks
59 - MEDIUM: tools: further relax dlopen() checks too consider grouped symbols
60 - BUG/MINOR: pools: restore detection of built-in allocator
61 - MINOR: pools: report a replaced memory allocator instead of just malloc_trim()
62 - BUG/MINOR: h3: properly handle incomplete remote uni stream type
63 - BUG/MINOR: mux-quic: prevent CC status to be erased by shutdown
64 - MINOR: mux-quic: interrupt qcc_recv*() operations if CC scheduled
65 - MINOR: mux-quic: ensure CONNECTION_CLOSE is scheduled once per conn
66 - MINOR: mux-quic: close on qcs allocation failure
67 - MINOR: mux-quic: close on frame alloc failure
68 - BUG/MINOR: syslog: Request for more data if message was not fully received
69 - BUG/MEDIUM: stats: Consume the request except when parsing the POST payload
70 - DOC: config: set-var() dconv rendering issues
71 - BUG/MEDIUM: mux-h1: Wakeup H1C on shutw if there is no I/O subscription
72 - BUG/MINOR: applet/new: fix sedesc freeing logic
73 - BUG/MINOR: quic: Missing STREAM frame type updated
74 - BUILD: da: extends CFLAGS to support API v3 from 3.1.7 and onwards.
75 - BUG/MINOR: ssl: Stop leaking `err` in ssl_sock_load_ocsp()
76
Willy Tarreaufc0ad292023-03-10 16:28:37 +0100772023/03/10 : 2.8-dev5
78 - MINOR: ssl: rename confusing ssl_bind_kws
79 - BUG/MINOR: config: crt-list keywords mistaken for bind ssl keywords
80 - BUG/MEDIUM: http-ana: Detect closed SC on opposite side during body forwarding
81 - BUG/MEDIUM: stconn: Don't rearm the read expiration date if EOI was reached
82 - MINOR: global: Add an option to disable the data fast-forward
83 - MINOR: haproxy: Add an command option to disable data fast-forward
84 - REGTESTS: Remove unsupported feature command in http_splicing.vtc
85 - BUG/MEDIUM: wdt: fix wrong thread being checked for sleeping
86 - BUG/MINOR: sched: properly report long_rq when tasks remain in the queue
87 - BUG/MEDIUM: sched: allow a bit more TASK_HEAVY to be processed when needed
88 - MINOR: threads: add flags to know if a thread is started and/or running
89 - MINOR: h3/hq-interop: handle no data in decode_qcs() with FIN set
90 - BUG/MINOR: mux-quic: transfer FIN on empty STREAM frame
91 - BUG/MINOR: mworker: prevent incorrect values in uptime
92 - MINOR: h3: add traces on decode_qcs callback
93 - BUG/MINOR: quic: Possible unexpected counter incrementation on send*() errors
94 - MINOR: quic: Add new traces about by connection RX buffer handling
95 - MINOR: quic: Move code to wakeup the timer task to avoid anti-amplication deadlock
96 - BUG/MINOR: quic: Really cancel the connection timer from qc_set_timer()
97 - MINOR: quic: Simplication for qc_set_timer()
98 - MINOR: quic: Kill the connections on ICMP (port unreachable) packet receipt
99 - MINOR: quic: Add traces to qc_kill_conn()
100 - MINOR: quic: Make qc_dgrams_retransmit() return a status.
101 - BUG/MINOR: quic: Missing call to task_queue() in qc_idle_timer_do_rearm()
102 - MINOR: quic: Add a trace to identify connections which sent Initial packet.
103 - MINOR: quic: Add <pto_count> to the traces
104 - BUG/MINOR: quic: Do not probe with too little Initial packets
105 - BUG/MINOR: quic: Wrong initialization for io_cb_wakeup boolean
106 - BUG/MINOR: quic: Do not drop too small datagrams with Initial packets
107 - BUG/MINOR: quic: Missing padding for short packets
108 - MINOR: quic: adjust request reject when MUX is already freed
109 - BUG/MINOR: quic: also send RESET_STREAM if MUX released
110 - BUG/MINOR: quic: acknowledge STREAM frame even if MUX is released
111 - BUG/MINOR: h3: prevent hypothetical demux failure on int overflow
112 - MEDIUM: h3: enforce GOAWAY by resetting higher unhandled stream
113 - MINOR: mux-quic: define qc_shutdown()
114 - MINOR: mux-quic: define qc_process()
115 - MINOR: mux-quic: implement client-fin timeout
116 - MEDIUM: mux-quic: properly implement soft-stop
117 - MINOR: quic: mark quic-conn as jobs on socket allocation
118 - MEDIUM: quic: trigger fast connection closing on process stopping
119 - MINOR: mux-h2/traces: do not log h2s pointer for dummy streams
120 - MINOR: mux-h2/traces: add a missing TRACE_LEAVE() in h2s_frt_handle_headers()
121 - BUG/MEDIUM: quic: Missing TX buffer draining from qc_send_ppkts()
122 - DEBUG: stream: Add a BUG_ON to never exit process_stream with an expired task
123 - DOC: config: Fix description of options about HTTP connection modes
124 - MINOR: proxy: Only consider backend httpclose option for server connections
125 - BUG/MINOR: haproxy: Fix option to disable the fast-forward
126 - DOC: config: Add the missing tune.fail-alloc option from global listing
127 - MINOR: cfgcond: Implement strstr condition expression
128 - MINOR: cfgcond: Implement enabled condition expression
129 - REGTESTS: Skip http_splicing.vtc script if fast-forward is disabled
130 - REGTESTS: Fix ssl_errors.vtc script to wait for connections close
131 - BUG/MINOR: mworker: stop doing strtok directly from the env
132 - BUG/MEDIUM: mworker: prevent inconsistent reload when upgrading from old versions
133 - BUG/MEDIUM: mworker: don't register mworker_accept_wrapper() when master FD is wrong
134 - MINOR: startup: HAPROXY_STARTUP_VERSION contains the version used to start
135 - BUG/MINOR: cache: Cache response even if request has "no-cache" directive
136 - BUG/MINOR: cache: Check cache entry is complete in case of Vary
137 - MINOR: compiler: add a TOSTR() macro to turn a value into a string
138 - BUG/MINOR: lua/httpclient: missing free in hlua_httpclient_send()
139 - BUG/MEDIUM: httpclient/lua: fix a race between lua GC and hlua_ctx_destroy
140 - MEDIUM: channel: Remove CF_READ_NOEXP flag
141 - MAJOR: channel: Remove flags to report READ or WRITE errors
142 - DEBUG: stream/trace: Add sedesc flags in trace messages
143 - MINOR: channel/stconn: Move rto/wto from the channel to the stconn
144 - MEDIUM: channel/stconn: Move rex/wex timer from the channel to the sedesc
145 - MEDIUM: stconn: Don't requeue the stream's task after I/O
146 - MEDIUM: stconn: Replace read and write timeouts by a unique I/O timeout
147 - MEDIUM: stconn: Add two date to track successful reads and blocked sends
148 - MINOR: applet/stconn: Add a SE flag to specify an endpoint does not expect data
149 - MAJOR: stream: Use SE descriptor date to detect read/write timeouts
150 - MINOR: stream: Dump the task expiration date in trace messages
151 - MINOR: stream: Report rex/wex value using the sedesc date in trace messages
152 - MINOR: stream: Use relative expiration date in trace messages
153 - MINOR: stconn: Always report READ/WRITE event on shutr/shutw
154 - CLEANUP: stconn: Remove old read and write expiration dates
155 - MINOR: stconn: Set half-close timeout using proxy settings
156 - MINOR: stconn: Remove half-closed timeout
157 - REGTESTS: cache: Use rxresphdrs to only get headers for 304 responses
158 - MINOR: stconn: Add functions to set/clear SE_FL_EXP_NO_DATA flag from endpoint
159 - BUG/MINOR: proto_ux: report correct error when bind_listener fails
160 - BUG/MINOR: protocol: fix minor memory leak in protocol_bind_all()
161 - MINOR: proto_uxst: add resume method
162 - MINOR: listener/api: add lli hint to listener functions
163 - MINOR: listener: add relax_listener() function
164 - MINOR: listener: workaround for closing a tiny race between resume_listener() and stopping
165 - MINOR: listener: make sure we don't pause/resume bypassed listeners
166 - BUG/MEDIUM: listener: fix pause_listener() suspend return value handling
167 - BUG/MINOR: listener: fix resume_listener() resume return value handling
168 - BUG/MEDIUM: resume from LI_ASSIGNED in default_resume_listener()
169 - MINOR: listener: pause_listener() becomes suspend_listener()
170 - BUG/MEDIUM: listener/proxy: fix listeners notify for proxy resume
171 - BUG/MINOR: sock_unix: match finalname with tempname in sock_unix_addrcmp()
172 - MEDIUM: proto_ux: properly suspend named UNIX listeners
173 - MINOR: proto_ux: ability to dump ABNS names in error messages
174 - MINOR: haproxy: always protocol unbind on startup error path
175 - BUILD: quic: 32-bits compilation issue with %zu in quic_rx_pkts_del()
176 - BUG/MINOR: ring: do not realign ring contents on resize
177 - MEDIUM: ring: make the offset relative to the head/tail instead of absolute
178 - CLEANUP: ring: remove the now unused ring's offset
179 - MINOR: config: add HAPROXY_BRANCH environment variable
180 - BUILD: thead: Fix several 32 bits compilation issues with uint64_t variables
181 - BUG/MEDIUM: fd: avoid infinite loops in fd_add_to_fd_list and fd_rm_from_fd_list
182 - BUG/MEDIUM: h1-htx: Never copy more than the max data allowed during parsing
183 - BUG/MINOR: stream: Remove BUG_ON about the task expiration in process_stream()
184 - MINOR: stream: Handle stream's timeouts in a dedicated function
185 - MEDIUM: stream: Eventually handle stream timeouts when exiting process_stream()
186 - MINOR: stconn: Report a send activity when endpoint is willing to consume data
187 - BUG/MEDIUM: stconn: Report a blocked send if some output data are not consumed
188 - MEDIUM: mux-h1: Don't expect data from server as long as request is unfinished
189 - MEDIUM: mux-h2: Don't expect data from server as long as request is unfinished
190 - MEDIUM: mux-quic: Don't expect data from server as long as request is unfinished
191 - DOC: config: Clarify the meaning of 'hold' in the 'resolvers' section
192 - DOC: config: Replace TABs by spaces
193 - BUG/MINOR: fd: used the update list from the fd's group instead of tgid
194 - BUG/MEDIUM: fd: make fd_delete() support being called from a different group
195 - CLEANUP: listener: only store conn counts for local threads
196 - MINOR: tinfo: make thread_set functions return nth group/mask instead of first
197 - MEDIUM: quic: improve fatal error handling on send
198 - MINOR: quic: consider EBADF as critical on send()
199 - BUG/MEDIUM: connection: Clear flags when a conn is removed from an idle list
200 - BUG/MINOR: mux-h1: Don't report an error on an early response close
201 - BUG/MINOR: http-check: Don't set HTX_SL_F_BODYLESS flag with a log-format body
202 - BUG/MINOR: http-check: Skip C-L header for empty body when it's not mandatory
203 - BUG/MINOR: http-fetch: recognize IPv6 addresses in square brackets in req.hdr_ip()
204 - REGTEST: added tests covering smp_fetch_hdr_ip()
205 - MINOR: quic: simplify return path in send functions
206 - MINOR: quic: implement qc_notify_send()
207 - MINOR: quic: purge txbuf before preparing new packets
208 - MEDIUM: quic: implement poller subscribe on sendto error
209 - MINOR: quic: notify on send ready
210 - BUG/MINOR: http-ana: Don't increment conn_retries counter before the L7 retry
211 - BUG/MINOR: http-ana: Do a L7 retry on read error if there is no response
212 - BUG/MEDIUM: http-ana: Don't close request side when waiting for response
213 - BUG/MINOR: mxu-h1: Report a parsing error on abort with pending data
214 - MINOR: ssl: Destroy ocsp update http_client during cleanup
215 - MINOR: ssl: Reinsert ocsp update entries later in case of unknown error
216 - MINOR: ssl: Add ocsp update success/failure counters
217 - MINOR: ssl: Store specific ocsp update errors in response and update ctx
218 - MINOR: ssl: Add certificate's path to certificate_ocsp structure
219 - MINOR: ssl: Add 'show ssl ocsp-updates' CLI command
220 - MINOR: ssl: Add sample fetches related to OCSP update
221 - MINOR: ssl: Use dedicated proxy and log-format for OCSP update
222 - MINOR: ssl: Reorder struct certificate_ocsp members
223 - MINOR: ssl: Increment OCSP update replay delay in case of failure
224 - MINOR: ssl: Add way to dump ocsp response in base64
225 - MINOR: ssl: Add global options to modify ocsp update min/max delay
226 - REGTESTS: ssl: Fix ocsp update crt-lists
227 - REGTESTS: ssl: Add test for new ocsp update cli commands
228 - MINOR: ssl: Add ocsp-update information to "show ssl crt-list"
229 - BUG/MINOR: ssl: Fix ocsp-update when using "add ssl crt-list"
230 - MINOR: ssl: Replace now.tv_sec with date.tv_sec in ocsp update task
231 - BUG/MINOR: ssl: Use 'date' instead of 'now' in ocsp stapling callback
232 - BUG/MEDIUM: quic: properly handle duplicated STREAM frames
233 - BUG/MINOR: cli: fix CLI handler "set anon global-key" call
234 - MINOR: http_ext: adding some documentation, forgot to inline function
235 - BUG/MINOR: quic: Do not send too small datagrams (with Initial packets)
236 - MINOR: quic: Add a BUG_ON_HOT() call for too small datagrams
237 - BUG/MINOR: quic: Ensure to be able to build datagrams to be retransmitted
238 - BUG/MINOR: quic: v2 Initial packets decryption failed
239 - MINOR: quic: Add traces about QUIC TLS key update
240 - BUG/MINOR: quic: Remove force_ack for Initial,Handshake packets
241 - BUG/MINOR: quic: Ensure not to retransmit packets with no ack-eliciting frames
242 - BUG/MINOR: quic: Do not resend already acked frames
243 - BUG/MINOR: quic: Missing detections of amplification limit reached
244 - MINOR: quic: Send PING frames when probing Initial packet number space
245 - BUG/MEDIUM: quic: do not crash when handling STREAM on released MUX
246 - BUG/MAJOR: fd/thread: fix race between updates and closing FD
247 - BUG/MEDIUM: dns: ensure ring offset is properly reajusted to head
248 - BUG/MINOR: mux-quic: properly init STREAM frame as not duplicated
249 - MINOR: quic: Do not accept wrong active_connection_id_limit values
250 - MINOR: quic: Store the next connection IDs sequence number in the connection
251 - MINOR: quic: Typo fix for ACK_ECN frame
252 - MINOR: quic: RETIRE_CONNECTION_ID frame handling (RX)
253 - MINOR: quic: Useless TLS context allocations in qc_do_rm_hp()
254 - MINOR: quic: Add spin bit support
255 - MINOR: quic: Add transport parameters to "show quic"
256 - BUG/MEDIUM: sink/forwarder: ensure ring offset is properly readjusted to head
257 - BUG/MINOR: dns: fix ring offset calculation on first read
258 - BUG/MINOR: dns: fix ring offset calculation in dns_resolve_send()
259 - MINOR: jwt: Add support for RSA-PSS signatures (PS256 algorithm)
260 - MINOR: h3: add traces on h3_init_uni_stream() error paths
261 - MINOR: quic: create a global list dedicated for closing QUIC conns
262 - MINOR: quic: handle new closing list in show quic
263 - MEDIUM: quic: release closing connections on stopping
264 - BUG/MINOR: quic: Wrong RETIRE_CONNECTION_ID sequence number check
265 - MINOR: fd/cli: report the polling mask in "show fd"
266 - CLEANUP: sock: always perform last connection updates before wakeup
267 - MINOR: quic: Do not stress the peer during retransmissions of lost packets
268 - BUG/MINOR: init: properly detect NUMA bindings on large systems
269 - BUG/MINOR: thread: report thread and group counts in the correct order
270 - BUG/MAJOR: fd/threads: close a race on closing connections after takeover
271 - MINOR: debug: add random delay injection with "debug dev delay-inj"
272 - BUG/MINOR: mworker: use MASTER_MAXCONN as default maxconn value
273 - BUG/MINOR: quic: Missing listener accept queue tasklet wakeups
274 - MINOR: quic_sock: un-statify quic_conn_sock_fd_iocb()
275 - DOC: config: fix typo "dependeing" in bind thread description
276 - DOC/CLEANUP: fix typos
277
Willy Tarreauc80560b2023-02-14 16:55:17 +01002782023/02/14 : 2.8-dev4
279 - BUG/MINOR: stats: fix source buffer size for http dump
280 - BUG/MEDIUM: stats: fix resolvers dump
281 - BUG/MINOR: stats: fix ctx->field update in stats_dump_proxy_to_buffer()
282 - BUG/MINOR: stats: fix show stats field ctx for servers
283 - BUG/MINOR: stats: fix STAT_STARTED behavior with full htx
284 - MINOR: quic: Update version_information transport parameter to draft-14
285 - BUG/MINOR: stats: Prevent HTTP "other sessions" counter underflows
286 - BUG/MEDIUM: thread: fix extraneous shift in the thread_set parser
287 - BUG/MEDIUM: listener/thread: bypass shards setting on failed thread resolution
288 - BUG/MINOR: ssl/crt-list: warn when a line is malformated
289 - BUG/MEDIUM: stick-table: do not leave entries in end of window during purge
290 - BUG/MINOR: clock: do not mix wall-clock and monotonic time in uptime calculation
291 - BUG/MEDIUM: cache: use the correct time reference when comparing dates
292 - MEDIUM: clock: force internal time to wrap early after boot
293 - BUILD: ssl/ocsp: ssl_ocsp-t.h depends on ssl_sock-t.h
294 - MINOR: ssl/ocsp: add a function to check the OCSP update configuration
295 - MINOR: cfgparse/server: move (min/max)conn postparsing logic into dedicated function
296 - BUG/MINOR: server/add: ensure minconn/maxconn consistency when adding server
297 - BUG/MEDIUM: stconn: Schedule a shutw on shutr if data must be sent first
298 - BUG/MEDIUM: quic: fix crash when "option nolinger" is set in the frontend
299 - MINOR: quic: implement a basic "show quic" CLI handler
300 - MINOR: quic: display CIDs and state in "show quic"
301 - MINOR: quic: display socket info on "show quic"
302 - MINOR: quic: display infos about various encryption level on "show quic"
303 - MINOR: quic: display Tx stream info on "show quic"
304 - MINOR: quic: filter closing conn on "show quic"
305 - BUG/MINOR: quic: fix filtering of closing connections on "show quic"
306 - BUG/MEDIUM: stconn: Don't needlessly wake the stream on send during fast-forward
307 - BUG/MINOR: quic: fix type bug on "show quic" for 32-bits arch
308 - BUG/MINOR: mworker: fix uptime for master process
309 - BUG/MINOR: clock/stats: also use start_time not start_date in HTML info
310 - BUG/MEDIUM: stconn: stop to enable/disable reads from streams via si_update_rx
311 - BUG/MEDIUM: quic: Buffer overflow when looking through QUIC CLI keyword list
312 - DOC: proxy-protocol: fix wrong byte in provided example
313 - MINOR: ssl-ckch: Stop to test CF_WRITE_ERROR to commit CA/CRL file
314 - MINOR: bwlim: Remove useless test on CF_READ_ERROR to detect the last packet
315 - BUG/MINOR: http-ana: Fix condition to set LAST termination flag
316 - BUG/MINOR: mux-h1: Don't report an H1C error on client timeout
317 - BUG/MEDIUM: spoe: Don't set the default traget for the SPOE agent frontend
318 - BUG/MINOR: quic: Wrong datagram dispatch because of qc_check_dcid()
319 - BUG/CRITICAL: http: properly reject empty http header field names
320
Willy Tarreaue74d77b2023-02-04 10:51:05 +01003212023/02/04 : 2.8-dev3
322 - BUG/MINOR: sink: make sure to always properly unmap a file-backed ring
323 - DEV: haring: add a new option "-r" to automatically repair broken files
324 - BUG/MINOR: ssl: Fix leaks in 'update ssl ocsp-response' CLI command
325 - MINOR: ssl: Remove debug fprintf in 'update ssl ocsp-response' cli command
326 - MINOR: connection: add a BUG_ON() to detect destroying connection in idle list
327 - MINOR: mux-quic/h3: send SETTINGS as soon as transport is ready
328 - BUG/MINOR: h3: fix GOAWAY emission
329 - BUG/MEDIUM: mux-quic: fix crash on H3 SETTINGS emission
330 - BUG/MEDIUM: hpack: fix incorrect huffman decoding of some control chars
331 - BUG/MINOR: log: release global log servers on exit
332 - BUG/MINOR: ring: release the backing store name on exit
333 - BUG/MINOR: sink: free the forwarding task on exit
334 - CLEANUP: trace: remove the QUIC-specific ifdefs
335 - MINOR: trace: add a TRACE_ENABLED() macro to determine if a trace is active
336 - MINOR: trace: add a trace_no_cb() dummy callback for when to use no callback
337 - MINOR: trace: add the long awaited TRACE_PRINTF()
338 - MINOR: h2: add h2_phdr_to_ist() to make ISTs from pseudo headers
339 - MEDIUM: mux-h2/trace: add tracing support for headers
340 - CLEANUP: mux-h2/trace: shorten the name of the header enc/dec functions
341 - DEV: hpack: fix `trash` build regression
342 - MINOR: http_htx: add http_append_header() to append value to header
343 - MINOR: http_htx: add http_prepend_header() to prepend value to header
344 - MINOR: sample: add ARGC_OPT
345 - MINOR: proxy: introduce http only options
346 - MINOR: proxy/http_ext: introduce proxy forwarded option
347 - REGTEST: add ifnone-forwardfor test
348 - MINOR: proxy: move 'forwardfor' option to http_ext
349 - MINOR: proxy: move 'originalto' option to http_ext
350 - MINOR: http_ext: introduce http ext converters
351 - MINOR: http_ext: add rfc7239_is_valid converter
352 - MINOR: http_ext: add rfc7239_field converter
353 - MINOR: http_ext: add rfc7239_n2nn converter
354 - MINOR: http_ext: add rfc7239_n2np converter
355 - REGTEST: add RFC7239 forwarded header tests
356 - OPTIM: http_ext/7239: introduce c_mode to save some space
357 - MINOR: http_ext/7239: warn the user when fetch is not available
358 - MEDIUM: proxy/http_ext: implement dynamic http_ext
359 - MINOR: cfgparse/http_ext: move post-parsing http_ext steps to http_ext
360 - DOC: config: fix option spop-check proxy compatibility
361 - BUG/MINOR: fcgi-app: prevent 'use-fcgi-app' in default section
362 - DOC: config: 'http-send-name-header' option may be used in default section
363 - BUG/MINOR: mux-h2: Fix possible null pointer deref on h2c in _h2_trace_header()
364 - BUG/MINOR: http_ext/7239: ipv6 dumping relies on out of scope variables
365 - BUG/MEDIUM: h3: do not crash if no buf space for trailers
366 - OPTIM: h3: skip buf realign if no trailer to encode
367 - MINOR: mux-quic/h3: define stream close callback
368 - BUG/MEDIUM: h3: handle STOP_SENDING on control stream
369 - BUG/MINOR: h3: reject RESET_STREAM received for control stream
370 - MINOR: h3: add missing traces on closure
371 - BUG/MEDIUM: ssl: wrong eviction from the session cache tree
372 - BUG/MINOR: h3: fix crash due to h3 traces
373 - BUG/MINOR: h3: fix crash due to h3 traces
374 - BUG/MEDIUM: thread: consider secondary threads as idle+harmless during boot
375 - BUG/MINOR: stats: use proper buffer size for http dump
376 - BUILD: makefile: fix PCRE overriding specific lib path
377 - MINOR: quic: remove fin from quic_stream frame type
378 - MINOR: quic: ensure offset is properly set for STREAM frames
379 - MINOR: quic: define new functions for frame alloc
380 - MINOR: quic: refactor frame deallocation
381 - MEDIUM: quic: implement a retransmit limit per frame
382 - MINOR: quic: add config for retransmit limit
383 - OPTIM: htx: inline the most common memcpy(8)
384 - CLEANUP: quic: no need for atomics on packet refcnt
385 - MINOR: stats: add by HTTP version cumulated number of sessions and requests
386 - BUG/MINOR: quic: Possible stream truncations under heavy loss
387 - BUG/MINOR: quic: Too big PTO during handshakes
388 - MINOR: quic: Add a trace about variable states in qc_prep_fast_retrans()
389 - BUG/MINOR: quic: Do not ignore coalesced packets in qc_prep_fast_retrans()
390 - MINOR: quic: When probing Handshake packet number space, also probe the Initial one
391 - BUG/MAJOR: quic: Possible crash when processing 1-RTT during 0-RTT session
392 - MEDIUM: quic: Remove qc_conn_finalize() from the ClientHello TLS callbacks
393 - BUG/MINOR: quic: Unchecked source connection ID
394 - MEDIUM: listener: move the analysers mask to the bind_conf
395 - MINOR: listener: move maxseg and tcp_ut to bind_conf
396 - MINOR: listener: move maxaccept from listener to bind_conf
397 - MINOR: listener: move the backlog setting from listener to bind_conf
398 - MINOR: listener: move the maxconn parameter to the bind_conf
399 - MINOR: listener: move the ->accept callback to the bind_conf
400 - MINOR: listener: remove the useless ->default_target field
401 - MINOR: listener: move the nice field to the bind_conf
402 - MINOR: listener: move the NOLINGER option to the bind_conf
403 - MINOR: listener: move the NOQUICKACK option to the bind_conf
404 - MINOR: listener: move the DEF_ACCEPT option to the bind_conf
405 - MINOR: listener: move TCP_FO to bind_conf
406 - MINOR: listener: move the ACC_PROXY and ACC_CIP options to bind_conf
407 - MINOR: listener: move LI_O_UNLIMITED and LI_O_NOSTOP to bind_conf
408 - MINOR: listener: get rid of LI_O_TCP_L4_RULES and LI_O_TCP_L5_RULES
409 - CLEANUP: listener: remove the now unused options field
410 - MINOR: listener: remove the now useless LI_F_QUIC_LISTENER flag
411 - CLEANUP: config: remove test for impossible case regarding bind thread mask
412 - MINOR: thread: add a simple thread_set API
413 - MEDIUM: listener/config: make the "thread" parser rely on thread_sets
414 - CLEANUP: config: stop using bind_tgroup and bind_thread
415 - CLEANUP: listener/thread: remove now unused bind_conf's bind_tgroup/bind_thread
416 - CLEANUP: listener/config: remove the special case for shards==1
417 - MEDIUM: config: restrict shards, not bind_conf to one group each
418 - BUG/MEDIUM: quic: do not split STREAM frames if no space
419 - BUILD: thread: fix build warnings with older gcc compilers
420
Willy Tarreau0f29b342023-01-22 14:20:57 +01004212023/01/22 : 2.8-dev2
422 - CLEANUP: htx: fix a typo in an error message of http_str_to_htx
423 - DOC: config: added optional rst-ttl argument to silent-drop in action lists
424 - BUG/MINOR: ssl: Fix crash in 'update ssl ocsp-response' CLI command
425 - BUG/MINOR: ssl: Crash during cleanup because of ocsp structure pointer UAF
426 - MINOR: ssl: Create temp X509_STORE filled with cert chain when checking ocsp response
427 - MINOR: ssl: Only set ocsp->issuer if issuer not in cert chain
428 - MINOR: ssl: Release ssl_ocsp_task_ctx.cur_ocsp when destroying task
429 - MINOR: ssl: Detect more OCSP update inconsistencies
430 - BUG/MINOR: ssl: Fix OCSP_CERTID leak when same certificate is used multiple times
431 - MINOR: ssl: Limit ocsp_uri buffer size to minimum
432 - MINOR: ssl: Remove mention of ckch_store in error message of cli command
433 - MINOR: channel: Don't test CF_READ_NULL while CF_SHUTR is enough
434 - REORG: channel: Rename CF_READ_NULL to CF_READ_EVENT
435 - REORG: channel: Rename CF_WRITE_NULL to CF_WRITE_EVENT
436 - MEDIUM: channel: Use CF_READ_EVENT instead of CF_READ_PARTIAL
437 - MEDIUM: channel: Use CF_WRITE_EVENT instead of CF_WRITE_PARTIAL
438 - MINOR: channel: Remove CF_READ_ACTIVITY
439 - MINOR: channel: Remove CF_WRITE_ACTIVITY
440 - MINOR: channel: Remove CF_ANA_TIMEOUT and report CF_READ_EVENT instead
441 - MEDIUM: channel: Remove CF_READ_ATTACHED and report CF_READ_EVENT instead
442 - MINOR: channel: Stop to test CF_READ_ERROR flag if CF_SHUTR is enough
443 - MINOR: channel/applets: Stop to test CF_WRITE_ERROR flag if CF_SHUTW is enough
444 - DOC: management: add details on "Used" status
445 - DOC: management: add details about @system-ca in "show ssl ca-file"
446 - BUG/MINOR: mux-quic: fix transfer of empty HTTP response
447 - MINOR: mux-quic: add traces for flow-control limit reach
448 - MAJOR: mux-quic: rework stream sending priorization
449 - MEDIUM: h3: send SETTINGS before STREAM frames
450 - MINOR: mux-quic: use send-list for STOP_SENDING/RESET_STREAM emission
451 - MINOR: mux-quic: use send-list for immediate sending retry
452 - BUG/MINOR: h1-htx: Remove flags about protocol upgrade on non-101 responses
453 - BUG/MINOR: hlua: Fix Channel.line and Channel.data behavior regarding the doc
454 - BUG/MINOR: resolvers: Wait the resolution execution for a do_resolv action
455 - BUG/MINOR: ssl: Remove unneeded pointer check in ocsp cli release function
456 - BUG/MINOR: ssl: Missing ssl_conf pointer check when checking ocsp update inconsistencies
457 - DEV: tcploop: add minimal support for unix sockets
458 - BUG/MEDIUM: listener: duplicate inherited FDs if needed
459 - BUG/MINOR: ssl: OCSP minimum update threshold not properly set
460 - MINOR: ssl: Treat ocsp-update inconsistencies as fatal errors
461 - MINOR: ssl: Do not wake ocsp update task if update tree empty
462 - MINOR: ssl: Reinsert updated ocsp response later in tree in case of http error
463 - REGTEST: ssl: Add test for 'update ssl ocsp-response' CLI command
464 - OPTIM: global: move byte counts out of global and per-thread
465 - BUG/MEDIUM: peers: make "show peers" more careful about partial initialization
466 - BUG/MINOR: promex: Don't forget to consume the request on error
467 - MINOR: http-ana: Add a function to set HTTP termination flags
468 - MINOR: http-ana: Use http_set_term_flags() in most of HTTP analyzers
469 - BUG/MINOR: http-ana: Report SF_FINST_R flag on error waiting the request body
470 - MINOR: http-ana: Use http_set_term_flags() when waiting the request body
471 - BUG/MINOR: http-fetch: Don't block HTTP sample fetch eval in HTTP_MSG_ERROR state
472 - MAJOR: http-ana: Review error handling during HTTP payload forwarding
473 - CLEANUP: http-ana: Remove HTTP_MSG_ERROR state
474 - BUG/MEDIUM: mux-h2: Don't send CANCEL on shutw when response length is unkown
475 - MINOR: htx: Add an HTX value for the extra field is payload length is unknown
476 - BUG/MINOR: http-ana: make set-status also update txn->status
477 - BUG/MINOR: listeners: fix suspend/resume of inherited FDs
478 - DOC: config: fix wrong section number for "protocol prefixes"
479 - DOC: config: fix aliases for protocol prefixes "udp4@" and "udp6@"
480 - DOC: config: mention the missing "quic4@" and "quic6@" in protocol prefixes
481 - MINOR: listener: also support "quic+" as an address prefix
482 - CLEANUP: stconn: always use se_fl_set_error() to set the pending error
483 - BUG/MEDIUM: stconn: also consider SE_FL_EOI to switch to SE_FL_ERROR
484 - MINOR: quic: Useless test about datagram destination addresses
485 - MINOR: quic: Disable the active connection migrations
486 - MINOR: quic: Add "no-quic" global option
487 - MINOR: sample: Add "quic_enabled" sample fetch
488 - MINOR: quic: Replace v2 draft definitions by those of the final 2 version
489 - BUG/MINOR: mux-fcgi: Correctly set pathinfo
490 - DOC: config: fix "Address formats" chapter syntax
491 - BUG/MEDIUM: jwt: Properly process ecdsa signatures (concatenated R and S params)
492 - BUILD: ssl: add ECDSA_SIG_set0() for openssl < 1.1 or libressl < 2.7
493 - Revert "BUILD: ssl: add ECDSA_SIG_set0() for openssl < 1.1 or libressl < 2.7"
494 - BUG/MINOR: ssl: Fix compilation with OpenSSL 1.0.2 (missing ECDSA_SIG_set0)
495 - BUG/MINOR: listener: close tiny race between resume_listener() and stopping
496 - BUG/MINOR: h3: properly handle connection headers
497 - MINOR: h3: extend function for QUIC varint encoding
498 - MINOR: h3: implement TRAILERS encoding
499 - BUG/MINOR: bwlim: Check scope for period expr for set-bandwitdh-limit actions
500 - MEDIUM: bwlim: Support constants limit or period on set-bandwidth-limit actions
501 - BUG/MINOR: bwlim: Fix parameters check for set-bandwidth-limit actions
502 - MINOR: h3: implement TRAILERS decoding
503 - BUG/MEDIUM: fd/threads: fix again incorrect thread selection in wakeup broadcast
504 - BUG/MINOR: thread: always reload threads_enabled in loops
505 - MINOR: threads: add a thread_harmless_end() version that doesn't wait
506 - BUG/MEDIUM: debug/thread: make the debug handler not wait for !rdv_requests
507 - BUG/MINOR: mux-h2: make sure to produce a log on invalid requests
508 - BUG/MINOR: mux-h2: add missing traces on failed headers decoding
509 - BUILD: hpack: include global.h for the trash that is needed in debug mode
510 - BUG/MINOR: jwt: Wrong return value checked
511 - BUG/MINOR: quic: Do not request h3 clients to close its unidirection streams
512 - MEDIUM: quic-sock: fix udp source address for send on listener socket
513
Willy Tarreau40c88f92023-01-07 09:45:17 +01005142023/01/07 : 2.8-dev1
515 - MEDIUM: 51d: add support for 51Degrees V4 with Hash algorithm
516 - MINOR: debug: support pool filtering on "debug dev memstats"
517 - MINOR: debug: add a balance of alloc - free at the end of the memstats dump
518 - LICENSE: wurfl: clarify the dummy library license.
519 - MINOR: event_hdl: add event handler base api
520 - DOC/MINOR: api: add documentation for event_hdl feature
521 - MEDIUM: ssl: rename the struct "cert_key_and_chain" to "ckch_data"
522 - MINOR: quic: remove qc from quic_rx_packet
523 - MINOR: quic: complete traces in qc_rx_pkt_handle()
524 - MINOR: quic: extract datagram parsing code
525 - MINOR: tools: add port for ipcmp as optional criteria
526 - MINOR: quic: detect connection migration
527 - MINOR: quic: ignore address migration during handshake
528 - MINOR: quic: startup detect for quic-conn owned socket support
529 - MINOR: quic: test IP_PKTINFO support for quic-conn owned socket
530 - MINOR: quic: define config option for socket per conn
531 - MINOR: quic: allocate a socket per quic-conn
532 - MINOR: quic: use connection socket for emission
533 - MEDIUM: quic: use quic-conn socket for reception
534 - MEDIUM: quic: move receive out of FD handler to quic-conn io-cb
535 - MINOR: mux-quic: rename duplicate function names
536 - MEDIUM: quic: requeue datagrams received on wrong socket
537 - MINOR: quic: reconnect quic-conn socket on address migration
538 - MINOR: quic: activate socket per conn by default
539 - BUG/MINOR: ssl: initialize SSL error before parsing
540 - BUG/MINOR: ssl: initialize WolfSSL before parsing
541 - BUG/MINOR: quic: fix fd leak on startup check quic-conn owned socket
542 - BUG/MEDIIM: stconn: Flush output data before forwarding close to write side
543 - MINOR: server: add srv->rid (revision id) value
544 - MINOR: stats: add server revision id support
545 - MINOR: server/event_hdl: add support for SERVER_ADD and SERVER_DEL events
546 - MINOR: server/event_hdl: add support for SERVER_UP and SERVER_DOWN events
547 - BUG/MEDIUM: checks: do not reschedule a possibly running task on state change
548 - BUG/MINOR: checks: make sure fastinter is used even on forced transitions
549 - CLEANUP: assorted typo fixes in the code and comments
550 - MINOR: mworker: display an alert upon a wait-mode exit
551 - BUG/MEDIUM: mworker: fix segv in early failure of mworker mode with peers
552 - BUG/MEDIUM: mworker: create the mcli_reload socketpairs in case of upgrade
553 - BUG/MINOR: checks: restore legacy on-error fastinter behavior
554 - MINOR: check: use atomic for s->consecutive_errors
555 - MINOR: stats: properly handle ST_F_CHECK_DURATION metric
556 - MINOR: mworker: remove unused legacy code in mworker_cleanlisteners
557 - MINOR: peers: unused code path in process_peer_sync
558 - BUG/MINOR: init/threads: continue to limit default thread count to max per group
559 - CLEANUP: init: remove useless assignment of nbthread
560 - BUILD: atomic: atomic.h may need compiler.h on ARMv8.2-a
561 - BUILD: makefile/da: also clean Os/ in Device Atlas dummy lib dir
562 - BUG/MEDIUM: httpclient/lua: double LIST_DELETE on end of lua task
563 - CLEANUP: pools: move the write before free to the uaf-only function
564 - CLEANUP: pool: only include pool-os from pool.c not pool.h
565 - REORG: pool: move all the OS specific code to pool-os.h
566 - CLEANUP: pools: get rid of CONFIG_HAP_POOLS
567 - DEBUG: pool: show a few examples in -dMhelp
568 - MINOR: pools: make DEBUG_UAF a runtime setting
569 - BUG/MINOR: promex: create haproxy_backend_agg_server_status
570 - MINOR: promex: introduce haproxy_backend_agg_check_status
571 - DOC: promex: Add missing backend metrics
572 - BUG/MAJOR: fcgi: Fix uninitialized reserved bytes
573 - REGTESTS: fix the race conditions in iff.vtc
574 - CI: github: reintroduce openssl 1.1.1
575 - BUG/MINOR: quic: properly handle alloc failure in qc_new_conn()
576 - BUG/MINOR: quic: handle alloc failure on qc_new_conn() for owned socket
577 - CLEANUP: mux-quic: remove unused attribute on qcs_is_close_remote()
578 - BUG/MINOR: mux-quic: remove qcs from opening-list on free
579 - BUG/MINOR: mux-quic: handle properly alloc error in qcs_new()
580 - CI: github: split ssl lib selection based on git branch
581 - REGTESTS: startup: check maxconn computation
582 - BUG/MINOR: startup: don't use internal proxies to compute the maxconn
583 - REGTESTS: startup: change the expected maxconn to 11000
584 - CI: github: set ulimit -n to a greater value
585 - REGTESTS: startup: activate automatic_maxconn.vtc
586 - MINOR: sample: add param converter
587 - CLEANUP: ssl: remove check on srv->proxy
588 - BUG/MEDIUM: freq-ctr: Don't compute overshoot value for empty counters
589 - BUG/MEDIUM: resolvers: Use tick_first() to update the resolvers task timeout
590 - REGTESTS: startup: add alternatives values in automatic_maxconn.vtc
591 - BUG/MEDIUM: h3: reject request with invalid header name
592 - BUG/MEDIUM: h3: reject request with invalid pseudo header
593 - MINOR: http: extract content-length parsing from H2
594 - BUG/MEDIUM: h3: parse content-length and reject invalid messages
595 - CI: github: remove redundant ASAN loop
596 - CI: github: split matrix for development and stable branches
597 - BUG/MEDIUM: mux-h1: Don't release H1 stream upgraded from TCP on error
598 - BUG/MINOR: mux-h1: Fix test instead a BUG_ON() in h1_send_error()
599 - MINOR: http-htx: add BUG_ON to prevent API error on http_cookie_register
600 - BUG/MEDIUM: h3: fix cookie header parsing
601 - BUG/MINOR: h3: fix memleak on HEADERS parsing failure
602 - MINOR: h3: check return values of htx_add_* on headers parsing
603 - MINOR: ssl: Remove unneeded buffer allocation in show ocsp-response
604 - MINOR: ssl: Remove unnecessary alloc'ed trash chunk in show ocsp-response
605 - BUG/MINOR: ssl: Fix memory leak of find_chain in ssl_sock_load_cert_chain
606 - MINOR: stats: provide ctx for dumping functions
607 - MINOR: stats: introduce stats field ctx
608 - BUG/MINOR: stats: fix show stat json buffer limitation
609 - MINOR: stats: make show info json future-proof
610 - BUG/MINOR: quic: fix crash on PTO rearm if anti-amplification reset
611 - BUILD: 51d: fix build issue with recent compilers
612 - REGTESTS: startup: disable automatic_maxconn.vtc
613 - BUILD: peers: peers-t.h depends on stick-table-t.h
614 - BUG/MEDIUM: tests: use tmpdir to create UNIX socket
615 - BUG/MINOR: mux-h1: Report EOS on parsing/internal error for not running stream
616 - BUG/MINOR:: mux-h1: Never handle error at mux level for running connection
617 - BUG/MEDIUM: stats: Rely on a local trash buffer to dump the stats
618 - OPTIM: pool: split the read_mostly from read_write parts in pool_head
619 - MINOR: pool: make the thread-local hot cache size configurable
620 - MINOR: freq_ctr: add opportunistic versions of swrate_add()
621 - MINOR: pool: only use opportunistic versions of the swrate_add() functions
622 - REGTESTS: ssl: enable the ssl_reuse.vtc test for WolfSSL
623 - BUG/MEDIUM: mux-quic: fix double delete from qcc.opening_list
624 - BUG/MEDIUM: quic: properly take shards into account on bind lines
625 - BUG/MINOR: quic: do not allocate more rxbufs than necessary
626 - MINOR: ssl: Add a lock to the OCSP response tree
627 - MINOR: httpclient: Make the CLI flags public for future use
628 - MINOR: ssl: Add helper function that extracts an OCSP URI from a certificate
629 - MINOR: ssl: Add OCSP request helper function
630 - MINOR: ssl: Add helper function that checks the validity of an OCSP response
631 - MINOR: ssl: Add "update ssl ocsp-response" cli command
632 - MEDIUM: ssl: Add ocsp_certid in ckch structure and discard ocsp buffer early
633 - MINOR: ssl: Add ocsp_update_tree and helper functions
634 - MINOR: ssl: Add crt-list ocsp-update option
635 - MINOR: ssl: Store 'ocsp-update' mode in the ckch_data and check for inconsistencies
636 - MEDIUM: ssl: Insert ocsp responses in update tree when needed
637 - MEDIUM: ssl: Add ocsp update task main function
638 - MEDIUM: ssl: Start update task if at least one ocsp-update option is set to on
639 - DOC: ssl: Add documentation for ocsp-update option
640 - REGTESTS: ssl: Add tests for ocsp auto update mechanism
641 - MINOR: ssl: Move OCSP code to a dedicated source file
642 - BUG/MINOR: ssl/ocsp: check chunk_strcpy() in ssl_ocsp_get_uri_from_cert()
643 - CLEANUP: ssl/ocsp: add spaces around operators
644 - BUG/MEDIUM: mux-h2: Refuse interim responses with end-stream flag set
645 - BUG/MINOR: pool/stats: Use ullong to report total pool usage in bytes in stats
646 - BUG/MINOR: ssl/ocsp: httpclient blocked when doing a GET
647 - MINOR: httpclient: don't add body when istlen is empty
648 - MEDIUM: httpclient: change the default log format to skip duplicate proxy data
649 - BUG/MINOR: httpclient/log: free of invalid ptr with httpclient_log_format
650 - MEDIUM: mux-quic: implement shutw
651 - MINOR: mux-quic: do not count stream flow-control if already closed
652 - MINOR: mux-quic: handle RESET_STREAM reception
653 - MEDIUM: mux-quic: implement STOP_SENDING emission
654 - MINOR: h3: use stream error when needed instead of connection
655 - CI: github: enable github api authentication for OpenSSL tags read
656 - BUG/MINOR: mux-quic: ignore remote unidirectional stream close
657 - CI: github: use the GITHUB_TOKEN instead of a manually generated token
658 - BUILD: makefile: build the features list dynamically
659 - BUILD: makefile: move common options-oriented macros to include/make/options.mk
660 - BUILD: makefile: sort the features list
661 - BUILD: makefile: initialize all build options' variables at once
662 - BUILD: makefile: add a function to collect all options' CFLAGS/LDFLAGS
663 - BUILD: makefile: start to automatically collect CFLAGS/LDFLAGS
664 - BUILD: makefile: ensure that all USE_* handlers appear before CFLAGS are used
665 - BUILD: makefile: clean the wolfssl include and lib generation rules
666 - BUILD: makefile: make sure to also ignore SSL_INC when using wolfssl
667 - BUILD: makefile: reference libdl only once
668 - BUILD: makefile: make sure LUA_INC and LUA_LIB are always initialized
669 - BUILD: makefile: do not restrict Lua's prepend path to empty LUA_LIB_NAME
670 - BUILD: makefile: never force -latomic, set USE_LIBATOMIC instead
671 - BUILD: makefile: add an implicit USE_MATH variable for -lm
672 - BUILD: makefile: properly report USE_PCRE/USE_PCRE2 in features
673 - CLEANUP: makefile: properly indent ifeq/ifneq conditional blocks
674 - BUILD: makefile: rework 51D to split v3/v4
675 - BUILD: makefile: support LIBCRYPT_LDFLAGS
676 - BUILD: makefile: support RT_LDFLAGS
677 - BUILD: makefile: support THREAD_LDFLAGS
678 - BUILD: makefile: support BACKTRACE_LDFLAGS
679 - BUILD: makefile: support SYSTEMD_LDFLAGS
680 - BUILD: makefile: support ZLIB_CFLAGS and ZLIB_LDFLAGS
681 - BUILD: makefile: support ENGINE_CFLAGS
682 - BUILD: makefile: support OPENSSL_CFLAGS and OPENSSL_LDFLAGS
683 - BUILD: makefile: support WOLFSSL_CFLAGS and WOLFSSL_LDFLAGS
684 - BUILD: makefile: support LUA_CFLAGS and LUA_LDFLAGS
685 - BUILD: makefile: support DEVICEATLAS_CFLAGS and DEVICEATLAS_LDFLAGS
686 - BUILD: makefile: support PCRE[2]_CFLAGS and PCRE[2]_LDFLAGS
687 - BUILD: makefile: refactor support for 51DEGREES v3/v4
688 - BUILD: makefile: support WURFL_CFLAGS and WURFL_LDFLAGS
689 - BUILD: makefile: make all OpenSSL variants use the same settings
690 - BUILD: makefile: remove the special case of the SSL option
691 - BUILD: makefile: only consider settings from enabled options
692 - BUILD: makefile: also list per-option settings in 'make opts'
693 - BUG/MINOR: debug: don't mask the TH_FL_STUCK flag before dumping threads
694 - MINOR: cfgparse-ssl: avoid a possible crash on OOM in ssl_bind_parse_npn()
695 - BUG/MINOR: ssl: Missing goto in error path in ocsp update code
696 - BUG/MINOR: stick-table: report the correct action name in error message
697 - CI: Improve headline in matrix.py
698 - CI: Add in-memory cache for the latest OpenSSL/LibreSSL
699 - CI: Use proper `if` blocks instead of conditional expressions in matrix.py
700 - CI: Unify the `GITHUB_TOKEN` name across matrix.py and vtest.yml
701 - CI: Explicitly check environment variable against `None` in matrix.py
702 - CI: Reformat `matrix.py` using `black`
703 - MINOR: config: add environment variables for default log format
704 - REGTESTS: Remove REQUIRE_VERSION=1.9 from all tests
705 - REGTESTS: Remove REQUIRE_VERSION=2.0 from all tests
706 - REGTESTS: Remove tests with REQUIRE_VERSION_BELOW=1.9
707 - BUG/MINOR: http-fetch: Only fill txn status during prefetch if not already set
708 - BUG/MAJOR: buf: Fix copy of wrapping output data when a buffer is realigned
709 - DOC: config: fix alphabetical ordering of http-after-response rules
710 - MINOR: http-rules: Add missing actions in http-after-response ruleset
711 - DOC: config: remove duplicated "http-response sc-set-gpt0" directive
712 - BUG/MINOR: proxy: free orgto_hdr_name in free_proxy()
713 - REGTEST: fix the race conditions in json_query.vtc
714 - REGTEST: fix the race conditions in add_item.vtc
715 - REGTEST: fix the race conditions in digest.vtc
716 - REGTEST: fix the race conditions in hmac.vtc
717 - BUG/MINOR: fd: avoid bad tgid assertion in fd_delete() from deinit()
718 - BUG/MINOR: http: Memory leak of http redirect rules' format string
719 - MEDIUM: stick-table: set the track-sc limit at boottime via tune.stick-counters
720 - MINOR: stick-table: implement the sc-add-gpc() action
721
Willy Tarreaueaded982022-12-01 15:25:34 +01007222022/12/01 : 2.8-dev0
723 - MINOR: version: mention that it's development again
724
Willy Tarreau437fd282022-12-01 15:16:46 +01007252022/12/01 : 2.7.0
726 - MINOR: ssl: forgotten newline in error messages on ca-file
727 - BUG/MINOR: ssl: shut the ca-file errors emitted during httpclient init
728 - DOC: config: provide some configuration hints for "http-reuse"
729 - DOC: config: refer to section about quoting in the "add_item" converter
730 - DOC: halog: explain how to use -ac and -ad in the help message
731 - DOC: config: clarify the fact that SNI should not be used in HTTP scenarios
732 - DOC: config: mention that a single monitor-uri rule is supported
733 - DOC: config: explain how default matching method for ACL works
734 - DOC: config: clarify the fact that "retries" is not just for connections
735 - BUILD: halog: fix missing double-quote at end of help line
736 - DOC: config: clarify the -m dir and -m dom pattern matching methods
737 - MINOR: activity: report uptime in "show activity"
738 - REORG: activity/cli: move the "show activity" handler to activity.c
739 - DEV: poll: add support for epoll
740 - DEV: tcploop: centralize the polling code into wait_for_fd()
741 - DEV: tcploop: add support for POLLRDHUP when supported
742 - DEV: tcploop: do not report an error on POLLERR
743 - DEV: tcploop: add optional support for epoll
744 - SCRIPTS: announce-release: add a link to the data plane API
745 - CLEANUP: stick-table: fill alignment holes in the stktable struct
746 - MINOR: stick-table: store a per-table hash seed and use it
747 - MINOR: stick-table: show the shard number in each entry's "show table" output
748 - CLEANUP: ncbuf: remove ncb_blk args by value
749 - CLEANUP: ncbuf: inline small functions
750 - CLEANUP: ncbuf: use standard BUG_ON with DEBUG_STRICT
751 - BUG/MINOR: quic: Endless loop during retransmissions
752 - MINOR: mux-h2: add the expire task and its expiration date in "show fd"
753 - BUG/MINOR: peers: always initialize the stksess shard value
754 - REGTESTS: fix peers-related regtests regarding "show table"
755 - BUG/MEDIUM: mux-h1: Close client H1C on EOS when there is no output data
756 - MINOR: stick-table: change the API of the function used to calculate the shard
757 - CLEANUP: peers: factor out the key len calculation in received updates
758 - BUG/MINOR: peers: always update the stksess shard number on incoming updates
759 - CLEANUP: assorted typo fixes in the code and comments
760 - MINOR: mux-h1: add the expire task and its expiration date in "show fd"
761 - MINOR: debug: improve error handling on the memstats command parser
762 - BUILD: quic: allow build with USE_QUIC and USE_OPENSSL_WOLFSSL
763 - CLEANUP: anon: clarify the help message on "debug dev hash"
764 - MINOR: debug: relax access restrictions on "debug dev hash" and "memstats"
765 - SCRIPTS: run-regtests: add a version check
766 - MINOR: version: mention that it's stable now
767
Willy Tarreau0279df92022-11-24 17:13:05 +01007682022/11/24 : 2.7-dev10
769 - MEDIUM: tcp-act: add parameter rst-ttl to silent-drop
770 - BUG/MAJOR: quic: Crash upon retransmission of dgrams with several packets
771 - MINOR: cli: print parsed command when not found
772 - BUG/MAJOR: quic: Crash after discarding packet number spaces
773 - CLEANUP: quic: replace "choosen" with "chosen" all over the code
774 - MINOR: cli/pools: store "show pools" results into a temporary array
775 - MINOR: cli/pools: add sorting capabilities to "show pools"
776 - MINOR: cli/pools: add pool name filtering capability to "show pools"
777 - DOC: configuration: fix quic prefix typo
778 - MINOR: quic: report error if force-retry without cluster-secret
779 - MINOR: global: generate random cluster.secret if not defined
780 - BUG/MINOR: resolvers: do not run the timeout task when there's no resolution
781 - BUG/MINOR: server/idle: at least use atomic stores when updating max_used_conns
782 - MINOR: server/idle: make the next_takeover index per-tgroup
783 - BUILD: listener: fix build warning on global_listener_rwlock without threads
784 - BUG/MAJOR: sched: protect task during removal from wait queue
785 - BUILD: sched: fix build with DEBUG_THREAD with the previous commit
786 - DOC: quic: add note on performance issue with listener contention
787 - BUG/MINOR: cfgparse-listen: fix ebpt_next_dup pointer dereference on proxy "from" inheritance
788 - BUG/MINOR: log: fix parse_log_message rfc5424 size check
789 - CLEANUP: arg: remove extra check in make_arg_list arg escaping
790 - CLEANUP: tools: extra check in utoa_pad
791 - MINOR: h1: Consider empty port as invalid in authority for CONNECT
792 - MINOR: http: Considere empty ports as valid default ports
793 - BUG/MINOR: http-htx: Normalized absolute URIs with an empty port
794 - BUG/MINOR: h1: Replace authority validation to conform RFC3986
795 - REG-TESTS: http: Add more tests about authority/host matching
796 - BUG/MINOR: http-htx: Don't consider an URI as normalized after a set-uri action
797 - BUG/MEDIUM: mux-h1: Don't release H1C on timeout if there is a SC attached
798 - BUG/MEDIUM: mux-h1: Subscribe for reads on error on sending path
799 - BUILD: http-htx: Silent build error about a possible NULL start-line
800 - DOC: configuration.txt: add default_value for table_idle signature
801 - BUILD: ssl-sock: Silent error about NULL deref in ssl_sock_bind_verifycbk()
802 - BUG/MEDIUM: mux-h1: Remove H1C_F_WAIT_NEXT_REQ flag on a next request
803 - BUG/MINOR: mux-h1: Fix handling of 408-Request-Time-Out
804 - MINOR: mux-h1: Remove H1C_F_WAIT_NEXT_REQ in functions handling errors
805 - MINOR: mux-h1: Avoid useless call to h1_send() if no error is sent
806 - DOC: configuration.txt: fix typo in table_idle signature
807 - BUILD: stick-tables: fix build breakage in xxhash on older compilers
808 - BUILD: compiler: include compiler's definitions before ours
809 - BUILD: quic: global.h is needed in cfgparse-quic
810 - CLEANUP: tools: do not needlessly include xxhash nor cli from tools.h
811 - BUILD: flags: really restrict the cases where flags are exposed
812 - BUILD: makefile: minor reordering of objects by build time
813 - BUILD: quic: silence two invalid build warnings at -O1 with gcc-6.5
814 - BUILD: quic: use openssl-compat.h instead of openssl/ssl.h
815 - MEDIUM: ssl: add minimal WolfSSL support with OpenSSL compatibility mode
816 - MINOR: sample: make the rand() sample fetch function use the statistical_prng
817 - MINOR: auth: silence null dereference warning in check_user()
818 - CLEANUP: peers: fix format string for status messages (int signedness)
819 - CLEANUP: qpack: fix format string in debugging code (int signedness)
820 - CLEANUP: qpack: properly use the QPACK macros not HPACK ones in debug code
821 - BUG/MEDIUM: quic: fix datagram dropping on queueing failed
822
Willy Tarreaua0abec82022-11-18 17:48:49 +01008232022/11/18 : 2.7-dev9
824 - BUILD: quic: QUIC mux build fix for 32-bit build
825 - BUILD: scripts: disable tests build on QuicTLS build
826 - BUG/MEDIUM: httpclient: segfault when the httpclient parser fails
827 - BUILD: ssl_sock: fix null dereference for QUIC build
828 - BUILD: quic: Fix build for m68k cross-compilation
829 - BUG/MINOR: quic: fix buffer overflow on retry token generation
830 - MINOR: quic: add version field on quic_rx_packet
831 - MINOR: quic: extend pn_offset field from quic_rx_packet
832 - MINOR: quic: define first packet flag
833 - MINOR: quic: extract connection retrieval
834 - MINOR: quic: split and rename qc_lstnr_pkt_rcv()
835 - MINOR: quic: refactor packet drop on reception
836 - MINOR: quic: extend Retry token check function
837 - BUG/MINOR: log: Preserve message facility when the log target is a ring buffer
838 - BUG/MINOR: ring: Properly parse connect timeout
839 - BUG/MEDIUM: httpclient/lua: crash when the lua task timeout before the httpclient
840 - BUG/MEDIUM: httpclient: check if the httpclient was released in the IO handler
841 - REGTESTS: httpclient/lua: test the lua task timeout with the httpclient
842 - CI: github: dump the backtrace of coredumps in the alpine container
843 - BUILD: Makefile: add "USE_SHM_OPEN" on the linux-musl target
844 - DOC: lua: add a note about compression w/ httpclient
845 - CLEANUP: mworker/cli: rename the status function to loadstatus
846 - MINOR: mworker/cli: does no try to dump the startup-logs w/o USE_SHM_OPEN
847 - MINOR: list: fixing typo in MT_LIST_LOCK_ELT
848 - DOC/MINOR: list: fixing MT_LIST_LOCK_ELT macro documentation
849 - MINOR: list: adding MT_LIST_APPEND_LOCKED macro
850 - BUG/MINOR: mux-quic: complete flow-control for uni streams
851 - BUG/MEDIUM: compression: handle rewrite errors when updating response headers
852 - MINOR: quic: do not crash on unhandled sendto error
853 - MINOR: quic: display unknown error sendto counter on stat page
854 - MINOR: peers: Support for peer shards
855 - MINOR: peers: handle multiple resync requests using shards
856 - BUG/MINOR: sink: Only use backend capability for the sink proxies
857 - BUG/MINOR: sink: Set default connect/server timeout for implicit ring buffers
858 - MINOR: ssl: add the SSL error string when failing to load a certificate
859 - MINOR: ssl: add the SSL error string before the chain
860 - MEDIUM: ssl: be stricter about chain error
861 - BUG/MAJOR: stick-table: don't process store-response rules for applets
862 - MINOR: quic: remove unnecessary quic_session_accept()
863 - BUG/MINOR: quic: fix subscribe operation
864 - BUG/MINOR: log: fixing bug in tcp syslog_io_handler Octet-Counting
865 - MINOR: ssl: dump the SSL string error when SSL_CTX_use_PrivateKey() failed.
866 - MINOR: quic: add counter for interrupted reception
867 - BUG/MINOR: quic: fix race condition on datagram purging
868 - CI: add monthly gcc cross compile jobs
869 - CLEANUP: assorted typo fixes in the code and comments
870 - CLEANUP: ssl: remove dead code in ssl_sock_load_pem_into_ckch()
871 - BUG/MINOR: httpclient: fixed memory allocation for the SSL ca_file
872 - BUG/MINOR: ssl: Memory leak of DH BIGNUM fields
873 - BUG/MINOR: ssl: Memory leak of AUTHORITY_KEYID struct when loading issuer
874 - BUG/MINOR: ssl: ocsp structure not freed properly in case of error
875 - CI: switch to the "latest" LibreSSL
876 - CI: enable QUIC for LibreSSL builds
877 - BUG/MEDIUM: ssl: Verify error codes can exceed 63
878 - MEDIUM: ssl: {ca,crt}-ignore-err can now use error constant name
879 - MINOR: ssl: x509_v_err_str converter transforms an integer to a X509_V_ERR name
880 - CLEANUP: cli: rename dynamic error printing state
881 - MINOR: cli: define usermsgs print context
882 - MINOR: server: clear prefix on stderr logs after add server
883 - BUG/MINOR: ssl: bind_conf is uncorrectly accessed when using QUIC
884 - BUILD: ssl_utils: fix build on gcc versions before 8
885 - BUILD: debug: remove unnecessary quotes in HA_WEAK() calls
886 - CI: emit the compiler's version in the build reports
887 - IMPORT: xxhash: update xxHash to version 0.8.1
888 - IMPORT: slz: declare len to fix debug build when optimal match is enabled
889 - IMPORT: slz: mention the potential header in slz_finish()
890 - IMPORT: slz: define and use a __fallthrough statement for switch/case
891 - BUILD: compiler: add a macro to detect if another one is set and equals 1
892 - BUILD: compiler: add a default definition for __has_attribute()
893 - BUILD: compiler: define a __fallthrough statement for switch/case
894 - BUILD: sample: use __fallthrough in smp_is_rw() and smp_dup()
895 - BUILD: quic: use __fallthrough in quic_connect_server()
896 - BUILD: ssl/crt-list: use __fallthrough in cli_io_handler_add_crtlist()
897 - BUILD: ssl: use __fallthrough in cli_io_handler_commit_{cert,cafile_crlfile}()
898 - BUILD: ssl: use __fallthrough in cli_io_handler_tlskeys_files()
899 - BUILD: hlua: use __fallthrough in hlua_post_init_state()
900 - BUILD: stream: use __fallthrough in stats_dump_full_strm_to_buffer()
901 - BUILD: tcpcheck: use __fallthrough in check_proxy_tcpcheck()
902 - BUILD: stats: use __fallthrough in stats_dump_proxy_to_buffer()
903 - BUILD: peers: use __fallthrough in peer_io_handler()
904 - BUILD: hash: use __fallthrough in hash_djb2()
905 - BUILD: tools: use __fallthrough in url_decode()
906 - BUILD: args: use __fallthrough in make_arg_list()
907 - BUILD: acl: use __fallthrough in parse_acl_expr()
908 - BUILD: spoe: use __fallthrough in spoe_handle_appctx()
909 - BUILD: logs: use __fallthrough in build_log_header()
910 - BUILD: check: use __fallthrough in __health_adjust()
911 - BUILD: http_act: use __fallthrough in parse_http_del_header()
912 - BUILD: h1_htx: use __fallthrough in h1_parse_chunk()
913 - BUILD: vars: use __fallthrough in var_accounting_{diff,add}()
914 - BUILD: map: use __fallthrough in cli_io_handler_*()
915 - BUILD: compression: use __fallthrough in comp_http_payload()
916 - BUILD: stconn: use __fallthrough in various shutw() functions
917 - BUILD: prometheus: use __fallthrough in promex_dump_metrics() and IO handler()
918 - CLEANUP: ssl: remove printf in bind_parse_ignore_err
919 - BUG/MINOR: ssl: crt-ignore-err memory leak with 'all' parameter
920 - BUG/MINOR: ssl: Fix potential overflow
921 - CLEANUP: stick-table: remove the unused table->exp_next
922 - OPTIM: stick-table: avoid atomic ops in stktable_requeue_exp() when possible
923 - BUG/MEDIUM: stick-table: fix a race condition when updating the expiration task
924 - MEDIUM: http-ana: remove set-cookie2 support
925 - BUG/MEDIUM: wdt/clock: properly handle early task hangs
926 - MINOR: deinit: add a "quick-exit" option to bypass the deinit step
927 - OPTIM: ebtree: make ebmb_insert_prefix() keep a copy the new node's pfx
928 - OPTIM: ebtree: make ebmb_insert_prefix() keep a copy the new node's key
929 - MINOR: ssl: ssl_sock_load_cert_chain() display error strings
930 - MINOR: ssl: reintroduce ERR_GET_LIB(ret) == ERR_LIB_PEM in ssl_sock_load_pem_into_ckch()
931 - BUG/MINOR: http-htx: Fix error handling during parsing http replies
932 - BUG/MINOR: resolvers: Don't wait periodic resolution on healthcheck failure
933 - BUG/MINOR: resolvers: Set port before IP address when processing SRV records
934 - BUG/MINOR: mux-fcgi: Be sure to send empty STDING record in case of zero-copy
935 - BUG/MEDIUM: mux-fcgi: Avoid value length overflow when it doesn't fit at once
936 - BUG/MINOR: ssl: SSL_load_error_strings might not be defined
937 - MINOR: pool/debug: create a new pool_alloc_flag() macro
938 - MINOR: dynbuf: switch allocation and release to macros to better track users
939 - BUG/MINOR: mux-h1: Do not send a last null chunk on body-less answers
940 - REG-TESTS: cache: Remove T-E header for 304-Not-Modified responses
941 - DOC: config: fix alphabetical ordering of global section
942 - MINOR: trace: split the CLI "trace" parser in CLI vs statement
943 - MEDIUM: trace: create a new "trace" statement in the "global" section
944 - BUG/MEDIUM: ring: fix creation of server in uninitialized ring
945 - BUILD: quic: fix dubious 0-byte overflow on qc_release_lost_pkts
946 - BUILD: makefile: mark poll and tcploop targets as phony
947 - BUILD: makefile: properly pass CC to sub-projects
948 - BUILD: makefile: move default verbosity settings to include/make/verbose.mk
949 - BUILD: makefile: use $(cmd_MAKE) in quiet mode
950 - BUILD: makefile: move the compiler option detection stuff to compiler.mk
951 - DEV: poll: make the connect() step an action as well
952 - DEV: poll: strip the "do_" prefix from reported function names
953 - DEV: poll: indicate the FD's side in front of its value
954 - BUG/MINOR: pool/cli: use ullong to report total pool usage in bytes
955 - MINOR: mux-h1: Remove usless code inside shutr callback
956 - CLEANUP: mux-h1; Rename H1S_F_ERROR flag into H1S_F_ERROR_MASK
957 - REORG: mux-h1: Reorg the H1C structure
958 - CLEANUP: mux-h1: Rename H1C_F_ST_ERROR and H1C_F_ST_SILENT_SHUT flags
959 - MINOR: mux-h1: Add a dedicated enum to deal with H1 connection state
960 - MEDIUM: mux-h1: Handle H1C states via its state field instead of H1C_F_ST_*
961 - MINOR: mux-h1: Don't handle subscribe for reads in h1_process_demux()
962 - CLEANUP: mux-h1: Rename H1C_F_ERR_PENDING into H1C_F_ABRT_PENDING
963 - MINOR: mux-h1: Add flag on H1 stream to deal with internal errors
964 - MEDIUM: mux-h1: Rely on the H1C to deal with shutdown for reads
965 - CLEANUP: mux-h1: Reorder H1 connection flags to avoid holes
966 - MEDIUM: mux-h1: Don't report a final error whe a message is aborted
967 - MEDIUM: mux-pt: Don't always set a final error on SE on the sending path
968 - MEDIUM: mux-h2: Introduce flags to deal with connection read/write errors
969 - CLEANUP: mux-h2: Remove unused fields in h2c structures
970 - MEDIUM: mux-fcgi: Introduce flags to deal with connection read/write errors
971 - MINOR: sconn: Set SE_FL_ERROR only when there is no more data to read
972 - MINOR: mux-h1: Rely on a H1S flag to know a WS key was found or not
973 - DOC: lua-api: Remove warning about the lua filters
974 - BUG/MEDIUM: listener: Fix race condition when updating the global mngmt task
975 - CLEANUP: listener: Remove useless task_queue from manage_global_listener_queue
976 - BUG/MINOR: mux-h1: Fix error handling when H1S allocation failed on client side
977 - DOC: internal: commit notes about polling states and flags
978 - DOC: internal: commit notes about polling states and flags on connect()
979 - CLEANUP: mux-h1: Don't test h1c in h1_shutw_conn()
980 - BUG/MINOR: http_ana/txn: don't re-initialize txn and req var lists
981 - BUG/MEDIUM: raw-sock: Don't report connection error if something was received
982 - BUG/MINOR: ssl: don't initialize the keylog callback when not required
983 - BUILD: Makefile: enable USE_SHM_OPEN by default on freebsd
984 - BUG/MEDIUM: peers: messages about unkown tables not correctly ignored
985 - MINOR: cfgparse: Always check the section position
986 - MEDIUM: thread: Restric nbthread/thread-group(s) to very first global sections
987 - BUILD: peers: Remove unused variables
988 - MINOR: ncbuf: complete doc for ncb_advance()
989 - BUG/MEDIUM: quic: fix unsuccessful handshakes on ncb_advance error
990 - BUG/MEDIUM: quic: fix memleak for out-of-order crypto data
991 - MINOR: quic: complete traces/debug for handshake
992
Willy Tarreauea8aebe2022-10-14 20:45:23 +02009932022/10/14 : 2.7-dev8
994 - BUG/MINOR: checks: update pgsql regex on auth packet
995 - DOC: config: Fix pgsql-check documentation to make user param mandatory
996 - CLEANUP: mux-quic: remove usage of non-standard ull type
997 - CLEANUP: quic: remove global var definition in quic_tls header
998 - BUG/MINOR: quic: adjust quic_tls prototypes
999 - CLEANUP: quic: fix headers
1000 - CLEANUP: quic: remove unused function prototype
1001 - CLEANUP: quic: remove duplicated varint code from xprt_quic.h
1002 - CLEANUP: quic: create a dedicated quic_conn module
1003 - BUG/MINOR: mux-quic: ignore STOP_SENDING for locally closed stream
1004 - BUG/MEDIUM: lua: Don't crash in hlua_lua2arg_check on failure
1005 - BUG/MEDIUM: lua: handle stick table implicit arguments right.
1006 - BUILD: h1: silence an initiialized warning with gcc-4.7 and -Os
1007 - MINOR: fd: add a new function to only raise RLIMIT_NOFILE
1008 - MINOR: init: do not try to shrink existing RLIMIT_NOFIlE
1009 - BUG/MINOR: http-fetch: Update method after a prefetch in smp_fetch_meth()
1010 - BUILD: http_fetch: silence an uninitiialized warning with gcc-4/5/6 at -Os
1011 - BUG/MINOR: hlua: hlua_channel_insert_data() behavior conflicts with documentation
1012 - MINOR: quic: limit usage of ssl_sock_ctx in favor of quic_conn
1013 - MINOR: mux-quic: check quic-conn return code on Tx
1014 - CLEANUP: quic: fix indentation
1015 - MEDIUM: quic: retrieve frontend destination address
1016 - CLEANUP: Reapply ist.cocci (2)
1017 - CLEANUP: Reapply strcmp.cocci
1018 - CLEANUP: quic/receiver: remove the now unused tx_qring list
1019 - BUG/MINOR: quic: set IP_PKTINFO socket option for QUIC receivers only
1020 - MINOR: hlua: some luaL_checktype() calls were not guarded with MAY_LJMP
1021 - DOC: configuration: missing 'if' in tcp-request content example
1022 - MINOR: hlua: removing ambiguous lua_pushvalue with 0 index
1023 - BUG/MAJOR: stick-tables: do not try to index a server name for applets
1024 - MINOR: plock: support disabling exponential back-off
1025 - MINOR: freq_ctr: use the thread's local time whenever possible
1026 - MEDIUM: stick-table: switch the table lock to rwlock
1027 - MINOR: stick-table: do not take an exclusive lock when downing ref_cnt
1028 - MINOR: stick-table: move the write lock inside stktable_touch_with_exp()
1029 - MEDIUM: stick-table: only take the lock when needed in stktable_touch_with_exp()
1030 - MEDIUM: stick-table: make stksess_kill_if_expired() avoid the exclusive lock
1031 - MEDIUM: stick-table: return inserted entry in __stktable_store()
1032 - MEDIUM: stick-table: free newly allocated stkess if it couldn't be inserted
1033 - MEDIUM: stick-table: switch to rdlock in stktable_lookup() and lookup_key()
1034 - MEDIUM: stick-table: make stktable_get_entry() look up under a read lock
1035 - MEDIUM: stick-table: do not take a lock to update t->current anymore.
1036 - MEDIUM: stick-table: make stktable_set_entry() look up under a read lock
1037 - MEDIUM: stick-table: requeue the expiration task out of the exclusive lock
1038 - MINOR: stick-table: split stktable_store() between key and requeue
1039 - MEDIUM: stick-table: always use atomic ops to requeue the table's task
1040 - MEDIUM: stick-table: requeue the wakeup task out of the write lock
1041 - BUG/MINOR: stick-table: fix build with DEBUG_THREAD
1042 - REORG: mux-fcgi: Extract flags and enums into mux_fcgi-t.h
1043 - MINOR: flags/mux-fcgi: Decode FCGI connection and stream flags
1044 - BUG/MEDIUM: mux-h1: Add connection error handling when reading/sending on a pipe
1045 - BUG/MEDIUM: mux-h1: Handle abort with an incomplete message during parsing
1046 - BUG/MINOR: server: make sure "show servers state" hides private bits
1047 - MINOR: checks: use the lighter PRNG for spread checks
1048 - MEDIUM: checks: spread the checks load over random threads
1049 - CI: SSL: use proper version generating when "latest" semantic is used
1050 - CI: SSL: temporarily stick to LibreSSL=3.5.3
1051 - MINOR: quic: New quic_cstream object implementation
1052 - MINOR: quic: Extract CRYPTO frame parsing from qc_parse_pkt_frms()
1053 - MINOR: quic: Use a non-contiguous buffer for RX CRYPTO data
1054 - BUG/MINOR: quic: Stalled 0RTT connections with big ClientHello TLS message
1055 - MINOR: quic: Split the secrets key allocation in two parts
1056 - CLEANUP: quic: remove unused rxbufs member in receiver
1057 - CLEANUP: quic: improve naming for rxbuf/datagrams handling
1058 - MINOR: quic: implement datagram cleanup for quic_receiver_buf
1059 - MINOR: ring: ring_cast_from_area() cast from an allocated area
1060 - MINOR: buffers: split b_force_xfer() into b_cpy() and b_force_xfer()
1061 - MINOR: logs: startup-logs can use a shm for logging the reload
1062 - MINOR: mworker/cli: reload command displays the startup-logs
1063 - MEDIUM: quic: respect the threads assigned to a bind line
1064 - DOC: management: update the "reload" command of the master CLI
1065 - BUILD: ssl_sock: bind_conf uninitialized in ssl_sock_bind_verifycbk()
1066 - BUG/MEDIUM: httpclient: Don't set EOM flag on an empty HTX message
1067 - MINOR: httpclient/lua: Don't set req_payload callback if body is empty
1068 - DOC/CLEANUP: lua-api: some minor corrections
1069 - DOC: lua-api: updating toolbox link
1070 - DOC/CLEANUP: lua-api: removing duplicate core.proxies attribute
1071 - DOC: management: add forgotten "show startup-logs"
1072 - DOC: management: "show startup-logs" for master CLI
1073 - CI: Replace the deprecated `::set-output` command by writing to $GITHUB_OUTPUT in matrix.py
1074 - CI: Replace the deprecated `::set-output` command by writing to $GITHUB_OUTPUT in workflow definition
1075
Willy Tarreaudd4a2a62022-10-03 15:20:38 +020010762022/10/03 : 2.7-dev7
1077 - BUG/MEDIUM: mux-quic: fix nb_hreq decrement
1078 - CLEANUP: httpclient: deleted unused variables
1079 - MINOR: httpclient: enabled the use of SNI presets
1080 - OPTIM: hpack-huff: reduce the cache footprint of the huffman decoder
1081 - BUG/MINOR: mux-quic: do not keep detached qcs with empty Tx buffers
1082 - REORG: mux-quic: extract traces in a dedicated source file
1083 - REORG: mux-quic: export HTTP related function in a dedicated file
1084 - MINOR: mux-quic: refactor snd_buf
1085 - BUG/MEDIUM: mux-quic: properly trim HTX buffer on snd_buf reset
1086 - BUG/MINOR: mux-h1: Account consumed output data on synchronous connection error
1087 - BUG/MINOR: log: improper behavior when escaping log data
1088 - CLEANUP: tools: removing escape_chunk() function
1089 - MINOR: clock: split local and global date updates
1090 - MINOR: pollers: only update the local date during busy polling
1091 - MINOR: clock: do not update the global date too often
1092 - REGTESTS: 4be_1srv_smtpchk_httpchk_layer47errors: Return valid SMTP replies
1093 - MINOR: smtpchk: Update expect rule to fully match replies to EHLO commands
1094 - BUG/MINOR: smtpchk: SMTP Service check should gracefully close SMTP transaction
1095 - MINOR: list: documenting mt_list_for_each_entry_safe() macro
1096 - CLEANUP: list: Fix mt_list_for_each_entry_safe indentation
1097 - BUG/MINOR: hlua: Remove \n in Lua error message built with memprintf
1098 - MINOR: hlua: Allow argument on lua-lod(-per-thread) directives
1099 - BUG/MINOR: anon: memory illegal accesses in tools.c with hash_anon and hash_ipanon
1100 - MEDIUM: mworker/cli: keep the connection of the FD that ask for a reload
1101 - BUG/MINOR: hlua: fixing ambiguous sizeof in hlua_load_per_thread
1102 - MINOR: mworker/cli: replace close() by fd_delete()
1103 - MINOR: mworker: store and shows loading status
1104 - MINOR: mworker: mworker_cli_proxy_new_listener() returns a bind_conf
1105 - MINOR: mworker: stores the mcli_reload bind_conf
1106 - MINOR: mworker/cli: the mcli_reload bind_conf only send the reload status
1107 - DOC: management: describe the new reload command behavior
1108 - CLEANUP: list: fix again some style issues in the recent comments
1109 - BUG/MINOR: stream: Perform errors handling in right order in stream_new()
1110 - BUG/MEDIUM: stconn: Reset SE descriptor when we fail to create a stream
1111 - BUG/MEDIUM: resolvers: Remove aborted resolutions from query_ids tree
1112 - DOC: management: add timeout on the "reload" command
1113 - BUG/MINOR: ring: fix the size check in ring_make_from_area()
1114 - BUG/MINOR: config: don't count trailing spaces as empty arg
1115 - Revert "BUG/MINOR: config: don't count trailing spaces as empty arg"
1116 - BUG/MINOR: hlua: fixing hlua_http_msg_del_data behavior
1117 - BUG/MINOR: hlua: fixing hlua_http_msg_insert_data behavior
1118 - MINOR: cli: Add anonymization on a missed element for 'show sess all'
1119 - MINOR: cli: remove error message with 'set anon on|off'
1120 - MINOR: tools: modify hash_ipanon in order to use it in cli
1121 - MINOR: cli: use hash_ipanon to anonymized address
1122 - MINOR: cli: Add an anonymization on a missed element in 'show server state'
1123 - MINOR: config: correct errors about argument number in condition in cfgparse.c
1124 - MINOR: config: Add other keywords when dump the anonymized configuration file
1125 - MINOR: config: Add option line when the configuration file is dumped
1126 - MINOR: cli: correct commentary and replace 'set global-key' name
1127 - MINOR: tools: Impprove hash_ipanon to support dgram sockets and port offsets
1128 - MINOR: tools: Impprove hash_ipanon to not hash FD-based addresses
1129 - BUG/MINOR: hlua: _hlua_http_msg_delete incorrect behavior when offset is used
1130 - DOC: management: httpclient can resolve server names in URLs
1131 - BUG/MINOR: hlua: prevent crash when loading numerous arguments using lua-load(per-thread)
1132 - DOC/CLEANUP: lua-api: removing duplicate date functions doc
1133 - MINOR: hlua: ambiguous lua_pushvalue with 0 index
1134 - BUG/MINOR: config: don't count trailing spaces as empty arg (v2)
1135 - BUG/MEDIUM: config: count line arguments without dereferencing the output
1136 - BUG/MAJOR: conn-idle: fix hash indexing issues on idle conns
1137 - BUG/MINOR: config: insufficient syntax check of the global "maxconn" value
1138 - BUG/MINOR: backend: only enforce turn-around state when not redispatching
1139
Willy Tarreau4b10a5c2022-09-17 12:24:53 +020011402022/09/17 : 2.7-dev6
1141 - MINOR: Revert part of clarifying samples support per os commit
1142 - BUILD: makefile: enable crypt(3) for NetBSD
1143 - BUG/MINOR: quic: Retransmitted frames marked as acknowledged
1144 - BUG/MINOR: quic: Possible crash with "tls-ticket-keys" on QUIC bind lines
1145 - MINOR: http-check: Remove support for headers/body in "option httpchk" version
1146 - BUG/MINOR: h1: Support headers case adjustment for TCP proxies
1147 - BUG/MINOR: quic: Possible crash when verifying certificates
1148 - BUILD: quic: add some ifdef around the SSL_ERROR_* for libressl
1149 - BUILD: ssl: fix ssl_sock_switchtx_cbk when no client_hello_cb
1150 - BUILD: quic: temporarly ignore chacha20_poly1305 for libressl
1151 - BUILD: quic: enable early data only with >= openssl 1.1.1
1152 - BUILD: ssl: fix the ifdef mess in ssl_sock_initial_ctx
1153 - BUILD: quic: fix the #ifdef in ssl_quic_initial_ctx()
1154 - MINOR: quic: add QUIC support when no client_hello_cb
1155 - MINOR: quic: Add traces about sent or resent TX frames
1156 - MINOR: quic: No TRACE_LEAVE() in retrieve_qc_conn_from_cid()
1157 - BUG/MINOR: quic: Wrong connection ID to thread ID association
1158 - BUG/MINOR: task: always reset a new tasklet's call date
1159 - BUG/MINOR: task: make task_instant_wakeup() work on a task not a tasklet
1160 - MINOR: task: permanently enable latency measurement on tasklets
1161 - CLEANUP: task: rename ->call_date to ->wake_date
1162 - BUG/MINOR: sched: properly account for the CPU time of dying tasks
1163 - MINOR: sched: store the current profile entry in the thread context
1164 - BUG/MINOR: stream/sched: take into account CPU profiling for the last call
1165 - MINOR: tasks: do not keep cpu and latency times in struct task
1166 - MINOR: tools: add generic pointer hashing functions
1167 - CLEANUP: activity: make memprof use the generic ptr_hash() function
1168 - CLEANUP: activity: make taskprof use ptr_hash()
1169 - MINOR: debug: add struct ha_caller to describe a calling location
1170 - CLEANUP: debug: use struct ha_caller for memstat
1171 - DEBUG: task: define a series of wakeup types for tasks and tasklets
1172 - DEBUG: task: use struct ha_caller instead of arrays of file:line
1173 - DEBUG: applet: instrument appctx_wakeup() to log the caller's location
1174 - DEBUG: task: simplify the caller recording in DEBUG_TASK
1175 - CLEANUP: task: move tid and wake_date into the common part
1176 - CLEANUP: sched: remove duplicate code in run_tasks_from_list()
1177 - CLEANUP: activity: make the number of sched activity entries more configurable
1178 - DEBUG: resolvers: unstatify process_resolvers() to make it appear in profiling
1179 - DEBUG: quic: export the few task handlers that often appear in task dumps
1180 - MEDIUM: tasks/activity: combine the called function with the caller
1181 - MINOR: tasks/activity: improve the caller-callee activity hash
1182 - MINOR: activity/cli: support aggregating task profiling outputs
1183 - MINOR: activity/cli: support sorting task profiling by total CPU time
1184 - BUG/MINOR: signals/poller: set the poller timeout to 0 when there are signals
1185 - BUG/MINOR: quic: Speed up the handshake completion only one time
1186 - BUG/MINOR: quic: Trace fix about packet number space information.
1187 - BUG/MINOR: h3: Crash when h3 trace verbosity is "minimal"
1188 - MINOR: h3: Add the quic_conn object to h3 traces
1189 - MINOR: h3: Missing connection argument for a TRACE_LEAVE() argument
1190 - MINOR: h3: Send the h3 settings with others streams (requests)
1191 - MINOR: dev/udp: Apply the corruption to both directions
1192 - BUILD: udp-perturb: Add a make target for udp-perturb tool
1193 - BUG/MINOR: signals/poller: ensure wakeup from signals
1194 - CI: cirrus-ci: bump FreeBSD image to 13-1
1195 - DEV: flags: fix usage message to reflect available options
1196 - DEV: flags: add missing CO_FL_FDLESS connection flag
1197 - MINOR: flags: add a new file to host flag dumping macros
1198 - MINOR: flags: implement a macro used to dump enums inside masks
1199 - MINOR: flags/channel: use flag dumping for channel flags and analysers
1200 - MINOR: flags/connection: use flag dumping for connection flags
1201 - MINOR: flags/stconn: use flag dumping for stconn and sedesc flags
1202 - MINOR: flags/stream: use flag dumping for stream error type
1203 - MINOR: flags/stream: use flag dumping for stream flags
1204 - MINOR: flags/task: use flag dumping for task state
1205 - MINOR: flags/http_ana: use flag dumping for txn flags
1206 - DEV: flags: remove the now unused SHOW_FLAG() definition
1207 - DEV: flags: remove the now useless intermediary functions
1208 - MINOR: flags/htx: use flag dumping to show htx and start-line flags
1209 - MINOR: flags/http_ana: use flag dumping to show http msg states
1210 - BUG/MEDIUM: proxy: ensure pause_proxy() and resume_proxy() own PROXY_LOCK
1211 - MINOR: listener: small API change
1212 - MINOR: proxy/listener: support for additional PAUSED state
1213 - BUG/MINOR: stats: fixing stat shows disabled frontend status as 'OPEN'
1214 - BUILD: flags: fix build warning in some macros used by show_flags
1215 - BUILD: flags: fix the fallback macros for missing stdio
1216 - CLEANUP: pollers: remove dead code in the polling loop
1217 - BUG/MINOR: mux-h1: Increment open_streams counter when H1 stream is created
1218 - REGTESTS: healthcheckmail: Relax matching on the healthcheck log message
1219 - CLEANUP: listener: function comment typo in stop_listener()
1220 - BUG/MINOR: listener: null pointer dereference suspected by coverity
1221 - MINOR: flags/fd: decode FD flags states
1222 - REORG: mux-h2: extract flags and enums into mux_h2-t.h
1223 - MINOR: flags/mux-h2: decode H2C and H2S flags
1224 - REGTESTS: log: test the log-forward feature
1225 - BUG/MEDIUM: sink: bad init sequence on tcp sink from a ring.
1226 - REGTESTS: ssl/log: test the log-forward with SSL
1227 - MEDIUM: httpclient: httpclient_create_proxy() creates a proxy for httpclient
1228 - MEDIUM: httpclient: allow to use another proxy
1229 - DOC: fix TOC in starter guide for subsection 3.3.8. Statistics
1230 - MINOR: httpclient: export httpclient_create_proxy()
1231 - MEDIUM: quic: separate path for rx and tx with set_encryption_secrets
1232 - BUG/MEDIUM: mux-quic: fix crash on early app-ops release
1233 - REORG: mux-h1: extract flags and enums into mux_h1-t.h
1234 - MINOR: flags/mux-h1: decode H1C and H1S flags
1235 - CLEANUP: mux-quic: remove stconn usage in h3/hq
1236 - BUG/MINOR: mux-quic: do not remotely close stream too early
1237 - CLEANUP: exclude udp-perturb with .gitignore
1238 - BUG/MEDIUM: server: segv when adding server with hostname from CLI
1239 - CLEANUP: quic,ssl: fix tiny typos in C comments
1240 - BUG/MEDIUM: captures: free() an error capture out of the proxy lock
1241 - BUILD: fd: fix a build warning on the DWCAS
1242 - MINOR: anon: add new macros and functions to anonymize contents
1243 - MINOR: anon: store the anonymizing key in the global structure
1244 - MINOR: anon: store the anonymizing key in the CLI's appctx
1245 - MINOR: cli: anonymize commands 'show sess' and 'show sess all'
1246 - MINOR: cli: anonymize 'show servers state' and 'show servers conn'
1247 - MINOR: config: add command-line -dC to dump the configuration file
1248 - SCRIPTS: announce-release: update some URLs to https
1249
Willy Tarreau3bb2b5d2022-09-02 19:36:50 +020012502022/09/02 : 2.7-dev5
1251 - BUG/MINOR: mux-quic: Fix memleak on QUIC stream buffer for unacknowledged data
1252 - BUG/MEDIUM: cpu-map: fix thread 1's affinity affecting all threads
1253 - MINOR: cpu-map: remove obsolete diag warning about combined ranges
1254 - BUG/MAJOR: mworker: fix infinite loop on master with no proxies.
1255 - REGTESTS: launch http_reuse_always in mworker mode
1256 - BUG/MINOR: quix: Memleak for non in flight TX packets
1257 - BUG/MINOR: quic: Wrong list_for_each_entry() use when building packets from qc_do_build_pkt()
1258 - BUG/MINOR: quic: Safer QUIC frame builders
1259 - MINOR: quic: Replace MT_LISTs by LISTs for RX packets.
1260 - BUG/MEDIUM: applet: fix incorrect check for abnormal return condition from handler
1261 - BUG/MINOR: applet: make the call_rate only count the no-progress calls
1262 - MEDIUM: peers: limit the number of updates sent at once
1263 - BUILD: tcp_sample: fix build of get_tcp_info() on OpenBSD
1264 - BUG/MINOR: resolvers: return the correct value in resolvers_finalize_config()
1265 - BUG/MINOR: mworker: does not create the "default" resolvers in wait mode
1266 - BUG/MINOR: tcpcheck: Disable QUICKACK only if data should be sent after connect
1267 - REGTESTS: Fix prometheus script to perform HTTP health-checks
1268 - MINOR: resolvers: shut the warning when "default" resolvers is implicit
1269 - Revert "BUG/MINOR: quix: Memleak for non in flight TX packets"
1270 - BUG/MINOR: quic: Leak in qc_release_lost_pkts() for non in flight TX packets
1271 - BUG/MINOR: quic: Stalled connections (missing I/O handler wakeup)
1272 - CLEANUP: quic: No more use ->rx_list MT_LIST entry point (quic_rx_packet)
1273 - CLEANUP: quic: Remove a useless check in qc_lstnr_pkt_rcv()
1274 - MINOR: quic: Remove useless traces about references to TX packets
1275 - Revert "MINOR: quic: Remove useless traces about references to TX packets"
1276 - DOC: configuration: do-resolve doesn't work with a port in the string
1277 - MINOR: sample: add the host_only and port_only converters
1278 - BUG/MINOR: httpclient: fix resolution with port
1279 - DOC: configuration.txt: do-resolve must use host_only to remove its port.
1280 - BUG/MINOR: quic: Null packet dereferencing from qc_dup_pkt_frms() trace
1281 - BUG/MINOR: quic: Frames added to packets even if not built.
1282 - BUG/MEDIUM: spoe: Properly update streams waiting for a ACK in async mode
1283 - BUG/MEDIUM: peers: Add connect and server timeut to peers proxy
1284 - BUG/MEDIUM: peers: Don't use resync timer when local resync is in progress
1285 - BUG/MEDIUM: peers: Don't start resync on reload if local peer is not up-to-date
1286 - BUG/MINOR: hlua: Rely on CF_EOI to detect end of message in HTTP applets
1287 - BUG/MEDIUM: mux-h1: do not refrain from signaling errors after end of input
1288 - BUG/MINOR: epoll: do not actively poll for Rx after an error
1289 - MINOR: raw-sock: don't try to send if an error was already reported
1290 - BUG/MINOR: quic: Missing header protection AES cipher context initialisations (draft-v2)
1291 - MINOR: quic: Add a trace to distinguish the datagram from the packets inside
1292 - BUG/MINOR: ssl: fix deinit of the ca-file tree
1293 - BUG/MINOR: ssl: leak of ckch_inst_link in ckch_inst_free()
1294 - BUG/MINOR: tcpcheck: Disable QUICKACK for default tcp-check (with no rule)
1295 - BUG/MEDIUM: ssl: Fix a UAF when old ckch instances are released
1296 - BUG/MINOR: ssl: revert two wrong fixes with ckhi_link
1297 - BUG/MINOR: dev/udp: properly preset the rx address size
1298 - BUILD: debug: make sure debug macros are never empty
1299 - MINOR: quic: Move traces about RX/TX bytes from QUIC_EV_CONN_PRSAFRM event
1300 - BUG/MINOR: quic: TX frames memleak
1301 - BUG/MINOR: ssl: leak of ckch_inst_link in ckch_inst_free() v2
1302 - MINOR: sink/ring: rotate non-empty file-backed contents only
1303 - BUG/MINOR: regex: Properly handle PCRE2 lib compiled without JIT support
1304 - REGTESTS: http_request_buffer: Add a barrier to not mix up log messages
1305 - BUG/MEDIUM: mux-h1: always use RST to kill idle connections in pools
1306 - MINOR: backend: always satisfy the first req reuse rule with l7 retries
1307 - BUG/MINOR: quic: Do not ack when probing
1308 - MINOR: quic: Add TX frames addresses to traces to several trace events
1309 - MINOR: quic: Trace typo fix in qc_release_frm()
1310 - BUG/MINOR: quic: Frames leak during retransmissions
1311 - BUG/MINOR: h2: properly set the direction flag on HTX response
1312 - BUG/MEDIUM: httpclient: always detach the caller before self-killing
1313 - BUG/MINOR: httpclient: only ask for more room on failed writes
1314 - BUG/MINOR: httpclient: keep-alive was accidentely disabled
1315 - MEDIUM: httpclient: enable ALPN support on outgoing https connections
1316 - BUG/MINOR: mux-h2: fix the "show fd" dest buffer for the subscriber
1317 - BUG/MINOR: mux-h1: fix the "show fd" dest buffer for the subscriber
1318 - BUG/MINOR: mux-fcgi: fix the "show fd" dest buffer for the subscriber
1319 - DEBUG: stream: minor rearrangement of a few fields in struct stream.
1320 - MINOR: debug: report applet pointer and handler in crashes when known
1321 - MINOR: mux-h2: extract the stream dump function out of h2_show_fd()
1322 - MINOR: mux-h2: extract the connection dump function out of h2_show_fd()
1323 - MINOR: muxes: add a "show_sd" helper to complete "show sess" dumps
1324 - MINOR: mux-h2: provide a "show_sd" helper to output stream debugging info
1325 - MINOR: mux-h2: insert line breaks in "show sess all" output for legibility
1326 - MINOR: mux-quic: provide a "show_sd" helper to output stream debugging info
1327 - MINOR: mux-h1: split "show_fd" into connection and stream
1328 - MINOR: mux-h1: provide a "show_sd" helper to output stream debugging info
1329 - BUG/MINOR: http-act: initialize http fmt head earlier
1330
Willy Tarreauf5320192022-08-20 15:56:31 +020013312022/08/20 : 2.7-dev4
1332 - BUG/MEDIUM: quic: Wrong packet length check in qc_do_rm_hp()
1333 - MINOR: quic: Too much useless traces in qc_build_frms()
1334 - BUG/MEDIUM: quic: Missing AEAD TAG check after removing header protection
1335 - MINOR: quic: Replace pool_zalloc() by pool_malloc() for fake datagrams
1336 - MINOR: debug: make the mem_stats section aligned to void*
1337 - MINOR: debug: store and report the pool's name in struct mem_stats
1338 - MINOR: debug: also store the function name in struct mem_stats
1339 - MINOR: debug/memstats: automatically determine first column size
1340 - MINOR: debug/memstats: permit to pass the size to free()
1341 - CLEANUP: mux-quic: remove loop on sending frames
1342 - MINOR: quic: replace custom buf on Tx by default struct buffer
1343 - MINOR: quic: release Tx buffer on each send
1344 - MINOR: quic: refactor datagram commit in Tx buffer
1345 - MINOR: quic: skip sending if no frame to send in io-cb
1346 - BUG/MINOR: mux-quic: open stream on STOP_SENDING
1347 - BUG/MINOR: quic: fix crash on handshake io-cb for null next enc level
1348 - BUG/MEDIUM: quic: always remove the connection from the accept list on close
1349 - BUG/MEDIUM: poller: use fd_delete() to release the poller pipes
1350 - BUG/MEDIUM: task: relax one thread consistency check in task_unlink_wq()
1351 - MEDIUM: quic: xprt traces rework
1352 - BUILD: stconn: fix build warning at -O3 about possible null sc
1353 - MINOR: quic: Remove useless lock for RX packets
1354 - BUG/MINOR: quic: Possible infinite loop in quic_build_post_handshake_frames()
1355 - CLEANUP: quic: Remove trailing spaces
1356 - MINOR: mux-quic: adjust enter/leave traces
1357 - MINOR: mux-quic: define protocol error traces
1358 - CLEANUP: mux-quic: adjust traces level
1359 - MINOR: mux-quic: define new traces
1360 - BUG/MEDIUM: mux-quic: fix crash due to invalid trace arg
1361 - BUG/MEDIUM: quic: Possible use of uninitialized <odcid> variable in qc_lstnr_params_init()
1362 - BUG/MEDIUM: ring: fix too lax 'size' parser
1363 - BUG/MEDIUM: quic: Wrong use of <token_odcid> in qc_lsntr_pkt_rcv()
1364 - BUILD: ring: forward-declare struct appctx to avoid a build warning
1365 - MINOR: ring: support creating a ring from a linear area
1366 - MINOR: ring: add support for a backing-file
1367 - DEV: haring: add a simple utility to read file-backed rings
1368 - DEV: haring: support remapping LF in contents with CR VT
1369 - BUG/MINOR: quic: memleak on wrong datagram receipt
1370 - BUILD: sink: replace S_IRUSR, S_IWUSR with their octal value
1371 - MINOR: ring: archive a previous file-backed ring on startup
1372 - BUG/MINOR: mux-quic: fix crash with traces in qc_detach()
1373 - BUG/MINOR: quic: MIssing check when building TX packets
1374 - BUG/MINOR: quic: Wrong status returned by qc_pkt_decrypt()
1375 - MINOR: memprof: export the minimum definitions for memory profiling
1376 - MINOR: pool/memprof: report pool alloc/free in memory profiling
1377 - MINOR: pools/memprof: store and report the pool's name in each bin
1378 - MINOR: chunk: inline alloc_trash_chunk()
1379 - MINOR: stick-table: Add table_expire() and table_idle() new converters
1380 - CLEANUP: exclude haring with .gitignore
1381 - MINOR: quic: adjust quic_frame flag manipulation
1382 - MINOR: h3: report error on control stream close
1383 - MINOR: qpack: report error on enc/dec stream close
1384 - BUG/MEDIUM: mux-quic: reject uni stream ID exceeding flow control
1385 - MINOR: mux-quic: adjust traces on stream init
1386 - MINOR: mux-quic: add missing args on some traces
1387 - MINOR: quic: refactor application send
1388 - BUG/MINOR: quic: do not notify MUX on frame retransmit
1389 - BUG/MEDIUM: http-ana: fix crash or wrong header deletion by http-restrict-req-hdr-names
1390 - BUG/MINOR: quic: Missing initializations for ducplicated frames.
1391 - BUG/MEDIUM: quic: fix crash on MUX send notification
1392 - REORG: h2: extract cookies concat function in http_htx
1393 - REGTESTS: add test for HTTP/2 cookies concatenation
1394 - MEDIUM: h3: concatenate multiple cookie headers
1395 - MINOR: applet: add a function to reset the svcctx of an applet
1396 - BUG/MEDIUM: cli: always reset the service context between commands
1397 - BUG/MEDIUM: mux-h2: do not fiddle with ->dsi to indicate demux is idle
1398 - MINOR: mux-h2/traces: report transition to SETTINGS1 before not after
1399 - MINOR: mux-h2: make streams know if they need to send more data
1400 - BUG/MINOR: mux-h2: send a CANCEL instead of ES on truncated writes
1401 - BUG/MINOR: quic: Possible crashes when dereferencing ->pkt quic_frame struct member
1402 - MINOR: quic: Add frame addresses to QUIC_EV_CONN_PRSAFRM event traces
1403 - BUG/MINOR: quic: Wrong splitted duplicated frames handling
1404 - MINOR: quic: Add the QUIC connection to mux traces
1405 - MINOR: quic: Trace fix in qc_release_frm()
1406 - BUG/MAJOR: log-forward: Fix log-forward proxies not fully initialized
1407 - BUG/MAJOR: log-forward: Fix ssl layer not initialized on bind even if configured
1408 - MINOR: quic: Add reusable cipher contexts for header protection
1409 - BUG/MINOR: ssl/cli: error when the ca-file is empty
1410 - MINOR: ssl: handle ca-file appending in cafile_entry
1411 - MINOR: ssl/cli: implement "add ssl ca-file"
1412
Willy Tarreau87e95d32022-08-07 17:28:59 +020014132022/08/07 : 2.7-dev3
1414 - BUILD: makefile: Fix install(1) handling for OpenBSD/NetBSD/Solaris/AIX
1415 - BUG/MEDIUM: tools: avoid calling dlsym() in static builds (try 2)
1416 - MINOR: resolvers: resolvers_destroy() deinit and free a resolver
1417 - BUG/MINOR: resolvers: shut off the warning for the default resolvers
1418 - BUG/MINOR: ssl: allow duplicate certificates in ca-file directories
1419 - BUG/MINOR: tools: fix statistical_prng_range()'s output range
1420 - BUG/MINOR: quic: do not send CONNECTION_CLOSE_APP in initial/handshake
1421 - BUILD: debug: Add braces to if statement calling only CHECK_IF()
1422 - BUG/MINOR: fd: Properly init the fd state in fd_insert()
1423 - BUG/MEDIUM: fd/threads: fix incorrect thread selection in wakeup broadcast
1424 - MINOR: init: load OpenSSL error strings
1425 - MINOR: ssl: enhance ca-file error emitting
1426 - BUG/MINOR: mworker/cli: relative pid prefix not validated anymore
1427 - BUG/MAJOR: mux_quic: fix invalid PROTOCOL_VIOLATION on POST data overlap
1428 - BUG/MEDIUM: mworker: proc_self incorrectly set crashes upon reload
1429 - BUILD: add detection for unsupported compiler models
1430 - BUG/MEDIUM: stconn: Only reset connect expiration when processing backend side
1431 - BUG/MINOR: backend: Fallback on RR algo if balance on source is impossible
1432 - BUG/MEDIUM: master: force the thread count earlier
1433 - BUG/MAJOR: poller: drop FD's tgid when masks don't match
1434 - DEBUG: fd: detect possibly invalid tgid in fd_insert()
1435 - BUG/MINOR: sockpair: wrong return value for fd_send_uxst()
1436 - MINOR: sockpair: move send_fd_uxst() error message in caller
1437 - Revert "BUG/MINOR: peers: set the proxy's name to the peers section name"
1438 - DEBUG: fd: split the fd check
1439 - MEDIUM: resolvers: continue startup if network is unavailable
1440 - BUG/MINOR: fd: always remove late updates when freeing fd_updt[]
1441 - MINOR: cli: emit a warning when _getsocks was used more than once
1442 - BUG/MINOR: mworker: PROC_O_LEAVING used but not updated
1443 - Revert "MINOR: cli: emit a warning when _getsocks was used more than once"
1444 - MINOR: cli: warning on _getsocks when socket were closed
1445 - BUG/MEDIUM: mux-quic: fix missing EOI flag to prevent streams leaks
1446 - MINOR: quic: Congestion control architecture refactoring
1447 - MEDIUM: quic: Cubic congestion control algorithm implementation
1448 - MINOR: quic: New "quic-cc-algo" bind keyword
1449 - BUG/MINOR: quic: loss time limit variable computed but not used
1450 - MINOR: quic: Stop looking for packet loss asap
1451 - BUG/MAJOR: quic: Useless resource intensive loop qc_ackrng_pkts()
1452 - MINOR: quic: Send packets as much as possible from qc_send_app_pkts()
1453 - BUG/MEDIUM: queue/threads: limit the number of entries dequeued at once
1454 - MAJOR: threads/plock: update the embedded library
1455 - MINOR: thread: provide an alternative to pthread's rwlock
1456 - DEBUG: tools: provide a tree dump function for ebmbtrees as well
1457 - MINOR: ebtree: add ebmb_lookup_shorter() to pursue lookups
1458 - BUG/MEDIUM: pattern: only visit equivalent nodes when skipping versions
1459 - BUG/MINOR: mux-quic: prevent crash if conn released during IO callback
1460 - CLEANUP: mux-quic: remove useless app_ops is_active callback
1461 - BUG/MINOR: mux-quic: do not free conn if attached streams
1462 - MINOR: mux-quic: save proxy instance into qcc
1463 - MINOR: mux-quic: use timeout server for backend conns
1464 - MEDIUM: mux-quic: adjust timeout refresh
1465 - MINOR: mux-quic: count in-progress requests
1466 - MEDIUM: mux-quic: implement http-keep-alive timeout
1467 - MINOR: peers: Add a warning about incompatible SSL config for the local peer
1468 - MINOR: peers: Use a dedicated reconnect timeout when stopping the local peer
1469 - BUG/MEDIUM: peers: limit reconnect attempts of the old process on reload
1470 - BUG/MINOR: peers: Use right channel flag to consider the peer as connected
1471 - BUG/MEDIUM: dns: Properly initialize new DNS session
1472 - BUG/MINOR: backend: Don't increment conn_retries counter too early
1473 - MINOR: server: Constify source server to copy its settings
1474 - REORG: server: Export srv_settings_cpy() function
1475 - BUG/MEDIUM: proxy: Perform a custom copy for default server settings
1476 - BUG/MINOR: quic: Missing in flight ack eliciting packet counter decrement
1477 - BUG/MEDIUM: quic: Floating point exception in cubic_root()
1478 - MINOR: h3: support HTTP request framing state
1479 - MINOR: mux-quic: refresh timeout on frame decoding
1480 - MINOR: mux-quic: refactor refresh timeout function
1481 - MEDIUM: mux-quic: implement http-request timeout
1482 - BUG/MINOR: quic: Avoid sending truncated datagrams
1483 - BUG/MINOR: ring/cli: fix a race condition between the writer and the reader
1484 - BUG/MEDIUM: sink: Set the sink ref for forwarders created during ring parsing
1485 - BUG/MINOR: sink: fix a race condition between the writer and the reader
1486 - BUG/MINOR: quic: do not reject datagrams matching minimum permitted size
1487 - MINOR: quic: Add two new stats counters for sendto() errors
1488 - BUG/MINOR: quic: Missing Initial packet dropping case
1489 - MINOR: quic: explicitely ignore sendto error
1490 - BUG/MINOR: quic: adjust errno handling on sendto
1491 - BUG/MEDIUM: quic: break out of the loop in quic_lstnr_dghdlr
1492 - MINOR: threads: report the number of thread groups in build options
1493 - MINOR: config: automatically preset MAX_THREADS based on MAX_TGROUPS
1494 - BUILD: SSL: allow to pass additional configure args to QUICTLS
1495 - CI: enable weekly "m32" builds on x86_64
1496 - CLEANUP: assorted typo fixes in the code and comments
1497 - BUG/MEDIUM: fix DH length when EC key is used
1498 - REGTESTS: ssl: adopt tests to OpenSSL-3.0.N
1499 - REGTESTS: ssl: adopt tests to OpenSSL-3.0.N
1500 - REGTESTS: ssl: fix grep invocation to use extended regex in ssl_generate_certificate.vtc
1501 - BUILD: cfgparse: always defined _GNU_SOURCE for sched.h and crypt.h
1502
Willy Tarreau2200a9c2022-07-16 17:17:22 +020015032022/07/16 : 2.7-dev2
1504 - BUG/MINOR: qpack: fix build with QPACK_DEBUG
1505 - MINOR: h3: handle errors on HEADERS parsing/QPACK decoding
1506 - BUG/MINOR: qpack: abort on dynamic index field line decoding
1507 - MINOR: qpack: properly handle invalid dynamic table references
1508 - MINOR: task: Add tasklet_wakeup_after()
1509 - BUG/MINOR: quic: Dropped packets not counted (with RX buffers full)
1510 - MINOR: quic: Add new stats counter to diagnose RX buffer overrun
1511 - MINOR: quic: Duplicated QUIC_RX_BUFSZ definition
1512 - MINOR: quic: Improvements for the datagrams receipt
1513 - CLEANUP: h2: Typo fix in h2_unsubcribe() traces
1514 - MINOR: quic: Increase the QUIC connections RX buffer size (upto 64Kb)
1515 - CLEANUP: mux-quic: adjust comment on qcs_consume()
1516 - MINOR: ncbuf: implement ncb_is_fragmented()
1517 - BUG/MINOR: mux-quic: do not signal FIN if gap in buffer
1518 - MINOR: fd: add a new FD_DISOWN flag to prevent from closing a deleted FD
1519 - BUG/MEDIUM: ssl/fd: unexpected fd close using async engine
1520 - MINOR: tinfo: make tid temporarily still reflect global ID
1521 - CLEANUP: config: remove unused proc_mask()
1522 - MINOR: debug: remove mask support from "debug dev sched"
1523 - MEDIUM: task: add and preset a thread ID in the task struct
1524 - MEDIUM: task/debug: move the ->thread_mask integrity checks to ->tid
1525 - MAJOR: task: use t->tid instead of ffsl(t->thread_mask) to take the thread ID
1526 - MAJOR: task: replace t->thread_mask with 1<<t->tid when thread mask is needed
1527 - CLEANUP: task: remove thread_mask from the struct task
1528 - MEDIUM: applet: only keep appctx_new_*() and drop appctx_new()
1529 - MEDIUM: task: only keep task_new_*() and drop task_new()
1530 - MINOR: applet: always use task_new_on() on applet creation
1531 - MEDIUM: task: remove TASK_SHARED_WQ and only use t->tid
1532 - MINOR: task: replace task_set_affinity() with task_set_thread()
1533 - CLEANUP: task: remove the unused task_unlink_rq()
1534 - CLEANUP: task: remove the now unused TASK_GLOBAL flag
1535 - MINOR: task: make rqueue_ticks atomic
1536 - MEDIUM: task: move the shared runqueue to one per thread
1537 - MEDIUM: task: replace the global rq_lock with a per-rq one
1538 - MINOR: task: remove grq_total and use rq_total instead
1539 - MINOR: task: replace global_tasks_mask with a check for tree's emptiness
1540 - MEDIUM: task: use regular eb32 trees for the run queues
1541 - MEDIUM: queue: revert to regular inter-task wakeups
1542 - MINOR: thread: make wake_thread() take care of the sleeping threads mask
1543 - MINOR: thread: move the flags to the shared cache line
1544 - MINOR: thread: only use atomic ops to touch the flags
1545 - MINOR: poller: centralize poll return handling
1546 - MEDIUM: polling: make update_fd_polling() not care about sleeping threads
1547 - MINOR: poller: update_fd_polling: wake a random other thread
1548 - MEDIUM: thread: add a new per-thread flag TH_FL_NOTIFIED to remember wakeups
1549 - MEDIUM: tasks/fd: replace sleeping_thread_mask with a TH_FL_SLEEPING flag
1550 - MINOR: tinfo: add the tgid to the thread_info struct
1551 - MINOR: tinfo: replace the tgid with tgid_bit in tgroup_info
1552 - MINOR: tinfo: add the mask of enabled threads in each group
1553 - MINOR: debug: use ltid_bit in ha_thread_dump()
1554 - MINOR: wdt: use ltid_bit in wdt_handler()
1555 - MINOR: clock: use ltid_bit in clock_report_idle()
1556 - MINOR: thread: use ltid_bit in ha_tkillall()
1557 - MINOR: thread: add a new all_tgroups_mask variable to know about active tgroups
1558 - CLEANUP: thread: remove thread_sync_release() and thread_sync_mask
1559 - MEDIUM: tinfo: add a dynamic thread-group context
1560 - MEDIUM: thread: make stopping_threads per-group and add stopping_tgroups
1561 - MAJOR: threads: change thread_isolate to support inter-group synchronization
1562 - MINOR: thread: add is_thread_harmless() to know if a thread already is harmless
1563 - MINOR: debug: mark oneself harmless while waiting for threads to finish
1564 - MINOR: wdt: do not rely on threads_to_dump anymore
1565 - MEDIUM: debug: make the thread dumper not rely on a thread mask anymore
1566 - BUILD: debug: fix build issue on clang with previous commit
1567 - BUILD: debug: re-export thread_dump_state
1568 - BUG/MEDIUM: threads: fix incorrect thread group being used on soft-stop
1569 - BUG/MEDIUM: thread: check stopping thread against local bit and not global one
1570 - MINOR: proxy: use tg->threads_enabled in hard_stop() to detect stopped threads
1571 - BUILD: Makefile: Add Lua 5.4 autodetect
1572 - CI: re-enable gcc asan builds
1573 - MEDIUM: mworker: set the iocb of the socketpair without using fd_insert()
1574 - MINOR: fd: Add BUG_ON checks on fd_insert()
1575 - CLEANUP: mworker: rename mworker_pipe to mworker_sockpair
1576 - CLEANUP: mux-quic: do not export qc_get_ncbuf
1577 - REORG: mux-quic: reorganize flow-control fields
1578 - MINOR: mux-quic: implement accessor for sedesc
1579 - MEDIUM: mux-quic: refactor streams opening
1580 - MINOR: mux-quic: rename qcs flag FIN_RECV to SIZE_KNOWN
1581 - MINOR: mux-quic: emit FINAL_SIZE_ERROR on invalid STREAM size
1582 - BUG/MINOR: peers/config: always fill the bind_conf's argument
1583 - BUG/MEDIUM: peers/config: properly set the thread mask
1584 - CLEANUP: bwlim: Set pointers to NULL when memory is released
1585 - BUG/MINOR: http-check: Preserve headers if not redefined by an implicit rule
1586 - BUG/MINOR: http-act: Properly generate 103 responses when several rules are used
1587 - BUG/MEDIUM: thread: mask stopping_threads with threads_enabled when checking it
1588 - CLEANUP: thread: also remove a thread's bit from stopping_threads on stop
1589 - BUG/MINOR: peers: fix possible NULL dereferences at config parsing
1590 - BUG/MINOR: http-htx: Fix scheme based normalization for URIs wih userinfo
1591 - MINOR: http: Add function to get port part of a host
1592 - MINOR: http: Add function to detect default port
1593 - BUG/MEDIUM: h1: Improve authority validation for CONNCET request
1594 - MINOR: http-htx: Use new HTTP functions for the scheme based normalization
1595 - BUG/MEDIUM: http-fetch: Don't fetch the method if there is no stream
1596 - REGTEESTS: filters: Fix CONNECT request in random-forwarding script
1597 - MEDIUM: mworker/systemd: send STATUS over sd_notify
1598 - BUG/MINOR: mux-h1: Be sure to commit htx changes in the demux buffer
1599 - BUG/MEDIUM: http-ana: Don't wait to have an empty buf to switch in TUNNEL state
1600 - BUG/MEDIUM: mux-h1: Handle connection error after a synchronous send
1601 - MEDIUM: epoll: don't synchronously delete migrated FDs
1602 - BUILD: debug: silence warning on gcc-5
1603 - BUILD: http: silence an uninitialized warning affecting gcc-5
1604 - BUG/MEDIUM: mux-quic: fix server chunked encoding response
1605 - REORG: mux-quic: rename stream initialization function
1606 - MINOR: mux-quic: rename stream purge function
1607 - MINOR: mux-quic: add traces on frame parsing functions
1608 - MINOR: mux-quic: implement qcs_alert()
1609 - MINOR: mux-quic: filter send/receive-only streams on frame parsing
1610 - MINOR: mux-quic: do not ack STREAM frames on unrecoverable error
1611 - MINOR: mux-quic: support stream opening via MAX_STREAM_DATA
1612 - MINOR: mux-quic: define basic stream states
1613 - MINOR: mux-quic: use stream states to mark as detached
1614 - MEDIUM: mux-quic: implement RESET_STREAM emission
1615 - MEDIUM: mux-quic: implement STOP_SENDING handling
1616 - BUG/MEDIUM: debug: fix possible hang when multiple threads dump at once
1617 - BUG/MINOR: quic: fix closing state on NO_ERROR code sent
1618 - CLEANUP: quic: clean up include on quic_frame-t.h
1619 - MINOR: quic: define a generic QUIC error type
1620 - MINOR: mux-quic: support app graceful shutdown
1621 - MINOR: mux-quic/h3: prepare CONNECTION_CLOSE on release
1622 - MEDIUM: quic: send CONNECTION_CLOSE on released MUX
1623 - CLEANUP: mux-quic: move qc_release()
1624 - MINOR: mux-quic: send one last time before release
1625 - MINOR: h3: store control stream in h3c
1626 - MINOR: h3: implement graceful shutdown with GOAWAY
1627 - BUG/MINOR: threads: produce correct global mask for tgroup > 1
1628 - BUG/MEDIUM: cli/threads: make "show threads" more robust on applets
1629 - BUG/MINOR: thread: use the correct thread's group in ha_tkillall()
1630 - BUG/MINOR: debug: enter ha_panic() only once
1631 - BUG/MEDIUM: debug: fix parallel thread dumps again
1632 - MINOR: cli/streams: show a stream's tgid next to its thread ID
1633 - DEBUG: cli: add a new "debug dev deadlock" expert command
1634 - MINOR: cli/activity: add a thread number argument to "show activity"
1635 - CLEANUP: applet: remove the obsolete command context from the appctx
1636 - MEDIUM: config: remove deprecated "bind-process" directives from frontends
1637 - MEDIUM: config: remove the "process" keyword on "bind" lines
1638 - MINOR: listener/config: make "thread" always support up to LONGBITS
1639 - CLEANUP: fd: get rid of the __GET_{NEXT,PREV} macros
1640 - MEDIUM: debug/threads: make the lock debugging take tgroups into account
1641 - MEDIUM: proto: stop protocols under thread isolation during soft stop
1642 - MEDIUM: poller: program the update in fd_update_events() for a migrated FD
1643 - MEDIUM: poller: disable thread-groups for poll() and select()
1644 - MINOR: thread: remove MAX_THREADS limitation
1645 - MEDIUM: cpu-map: replace the process number with the thread group number
1646 - MINOR: mworker/threads: limit the mworker sockets to group 1
1647 - MINOR: cli/threads: always bind CLI to thread group 1
1648 - MINOR: fd/thread: get rid of thread_mask()
1649 - MEDIUM: task/thread: move the task shared wait queues per thread group
1650 - MINOR: task: move the niced_tasks counter to the thread group context
1651 - DOC: design: add some thoughts about how to handle the update_list
1652 - MEDIUM: conn: make conn_backend_get always scan the same group
1653 - MAJOR: fd: remove pending updates upon real close
1654 - MEDIUM: fd/poller: make the update-list per-group
1655 - MINOR: fd: delete unused updates on close()
1656 - MINOR: fd: make fd_insert() apply the thread mask itself
1657 - MEDIUM: fd: add the tgid to the fd and pass it to fd_insert()
1658 - MINOR: cli/fd: show fd's tgid and refcount in "show fd"
1659 - MINOR: fd: add functions to manipulate the FD's tgid
1660 - MINOR: fd: add fd_get_running() to atomically return the running mask
1661 - MAJOR: fd: grab the tgid before manipulating running
1662 - MEDIUM: fd/poller: turn polled_mask to group-local IDs
1663 - MEDIUM: fd/poller: turn update_mask to group-local IDs
1664 - MEDIUM: fd/poller: turn running_mask to group-local IDs
1665 - MINOR: fd: make fd_clr_running() return the previous value instead
1666 - MEDIUM: fd: make thread_mask now represent group-local IDs
1667 - MEDIUM: fd: make fd_insert() take local thread masks
1668 - MEDIUM: fd: make fd_insert/fd_delete atomically update fd.tgid
1669 - MEDIUM: fd: quit fd_update_events() when FD is closed
1670 - MEDIUM: thread: change thread_resolve_group_mask() to return group-local values
1671 - MEDIUM: listener: switch bind_thread from global to group-local
1672 - MINOR: fd: add fd_reregister_all() to deal with boot-time FDs
1673 - MEDIUM: fd: support stopping FDs during starting
1674 - MAJOR: pollers: rely on fd_reregister_all() at boot time
1675 - MAJOR: poller: only touch/inspect the update_mask under tgid protection
1676 - MEDIUM: fd: support broadcasting updates for foreign groups in updt_fd_polling
1677 - CLEANUP: threads: remove the now unused all_threads_mask and tid_bit
1678 - MINOR: config: change default MAX_TGROUPS to 16
1679 - BUG/MEDIUM: tools: avoid calling dlsym() in static builds
1680
Willy Tarreauf9de4e92022-06-24 22:09:05 +020016812022/06/24 : 2.7-dev1
1682 - BUG/MINOR: ssl_ckch: Free error msg if commit changes on a cert entry fails
1683 - BUG/MINOR: ssl_ckch: Free error msg if commit changes on a CA/CRL entry fails
1684 - BUG/MEDIUM: ssl_ckch: Don't delete a cert entry if it is being modified
1685 - BUG/MEDIUM: ssl_ckch: Don't delete CA/CRL entry if it is being modified
1686 - BUG/MINOR: ssl_ckch: Don't duplicate path when replacing a cert entry
1687 - BUG/MINOR: ssl_ckch: Don't duplicate path when replacing a CA/CRL entry
1688 - BUG/MEDIUM: ssl_ckch: Rework 'commit ssl cert' to handle full buffer cases
1689 - BUG/MEDIUM: ssl_ckch: Rework 'commit ssl ca-file' to handle full buffer cases
1690 - BUG/MEDIUM: ssl/crt-list: Rework 'add ssl crt-list' to handle full buffer cases
1691 - BUG/MEDIUM: httpclient: Don't remove HTX header blocks before duplicating them
1692 - BUG/MEDIUM: httpclient: Rework CLI I/O handler to handle full buffer cases
1693 - MEDIUM: httpclient: Don't close CLI applet at the end of a response
1694 - MEDIUM: http-ana: Always report rewrite failures as PRXCOND in logs
1695 - CLEANUP: Re-apply xalloc_size.cocci (2)
1696 - REGTESTS: abortonclose: Add a barrier to not mix up log messages
1697 - REGTESTS: http_request_buffer: Increase client timeout to wait "slow" clients
1698 - CLEANUP: ssl_ckch: Use corresponding enum for commit_cacrlfile_ctx.cafile_type
1699 - MINOR: ssl_ckch: Simplify I/O handler to commit changes on CA/CRL entry
1700 - BUG/MINOR: ssl_ckch: Use right type for old entry in show_crlfile_ctx
1701 - BUG/MINOR: ssl_ckch: Dump CRL transaction only once if show command yield
1702 - BUG/MINOR: ssl_ckch: Dump CA transaction only once if show command yield
1703 - BUG/MINOR: ssl_ckch: Dump cert transaction only once if show command yield
1704 - BUG/MINOR: ssl_ckch: Init right field when parsing "commit ssl crl-file" cmd
1705 - CLEANUP: ssl_ckch: Remove unused field in commit_cacrlfile_ctx structure
1706 - MINOR: ssl_ckch: Simplify structure used to commit changes on CA/CRL entries
1707 - MINOR: ssl_ckch: Remove service context for "set ssl cert" command
1708 - MINOR: ssl_ckch: Remove service context for "set ssl ca-file" command
1709 - MINOR: ssl_ckch: Remove service context for "set ssl crl-file" command
1710 - BUG/MINOR: ssl_ckch: Fix possible uninitialized value in show_cert I/O handler
1711 - BUG/MINOR: ssl_ckch: Fix possible uninitialized value in show_cafile I/O handler
1712 - BUG/MINOR: ssl_ckch: Fix possible uninitialized value in show_crlfile I/O handler
1713 - BUILD: ssl_ckch: Fix build error about a possible uninitialized value
1714 - BUG/MINOR: ssl_ckch: Fix another possible uninitialized value
1715 - REGTESTS: http_abortonclose: Extend supported versions
1716 - REGTESTS: restrict_req_hdr_names: Extend supported versions
1717 - MINOR: connection: support HTTP/3.0 for smp_*_http_major fetch
1718 - MINOR: h3: add h3c pointer into h3s instance
1719 - MINOR: mux-quic: simplify decode_qcs API
1720 - MINOR: mux-quic/h3: adjust demuxing function return values
1721 - BUG/MINOR: h3: fix return value on decode_qcs on error
1722 - BUILD: quic: fix anonymous union for gcc-4.4
1723 - BUILD: compiler: implement unreachable for older compilers too
1724 - DEV: tcploop: reorder options in the usage message
1725 - DEV: tcploop: make the current address the default address
1726 - DEV: tcploop: make it possible to change the target address of a connect()
1727 - DEV: tcploop: factor out the socket creation
1728 - DEV: tcploop: permit port 0 to ease handling of default options
1729 - DEV: tcploop: add a new "bind" command to bind to ip/port.
1730 - DEV: tcploop: add minimal UDP support
1731 - BUG/MINOR: trace: Test server existence for health-checks to get proxy
1732 - BUG/MINOR: checks: Properly handle email alerts in trace messages
1733 - BUG/MEDIUM: mailers: Set the object type for check attached to an email alert
1734 - REGTESTS: healthcheckmail: Update the test to be functionnal again
1735 - REGTESTS: healthcheckmail: Relax health-check failure condition
1736 - BUG/MINOR: h3: fix incorrect BUG_ON assert on SETTINGS parsing
1737 - MEDIUM: mux-h2: try to coalesce outgoing WINDOW_UPDATE frames
1738 - OPTIM: mux-h2: increase h2_settings_initial_window_size default to 64k
1739 - BUG/MINOR: h3: fix frame type definition
1740 - BUG/MEDIUM: h3: fix SETTINGS parsing
1741 - BUG/MINOR: cli/stats: add missing trailing LF after JSON outputs
1742 - BUG/MINOR: server: do not enable DNS resolution on disabled proxies
1743 - BUG/MINOR: cli/stats: add missing trailing LF after "show info json"
1744 - DOC: design: update the notes on thread groups
1745 - BUG/MEDIUM: mux-quic: fix flow control connection Tx level
1746 - MINOR: mux-quic: complete BUG_ON on TX flow-control enforcing
1747 - BUG/MINOR: mux-quic: fix memleak on frames rejected by transport
1748 - BUG/MINOR: tcp-rules: Make action call final on read error and delay expiration
1749 - CLEANUP: check: Remove useless tests on check's stream-connector
1750 - BUG/MEDIUM: stconn: Don't wakeup applet for send if it won't consume data
1751 - BUG/MEDIUM: cli: Notify cli applet won't consume data during request processing
1752 - BUG/MEDIUM: mux-quic: fix segfault on flow-control frame cleanup
1753 - MINOR: task: move profiling bit to per-thread
1754 - CLEANUP: quic: use task_new_on() for single-threaded tasks
1755 - MINOR: tinfo: remove the global thread ID bit (tid_bit)
1756 - CLEANUP: hlua: check for at least 2 threads on a task
1757 - MINOR: thread: get rid of MAX_THREADS_MASK
1758 - OPTIM: task: do not consult shared WQ when we're already full
1759 - DOC: design: update the task vs thread affinity requirements
1760 - MINOR: qpack: add comments and remove a useless trace
1761 - MINOR: qpack: reduce dependencies on other modules
1762 - BUG/MINOR: qpack: support header litteral name decoding
1763 - MINOR: qpack: add ABORT_NOW on unimplemented decoding
1764 - BUG/MINOR: h3/qpack: deal with too many headers
1765 - MINOR: qpack: improve decoding function
1766 - MINOR: qpack: implement standalone decoder tool
1767 - BUG/BUILD: h3: fix wrong label name
1768 - BUG/MINOR: quic: Stop hardcoding Retry packet Version field
1769 - MINOR: quic: Add several nonce and key definitions for Retry tag
1770 - BUG/MINOR: quic: Wrong PTO calculation
1771 - MINOR: quic: Parse long packet version from qc_parse_hd_form()
1772 - CLEANUP: quid: QUIC draft-28 no more supported
1773 - MEDIUM: quic: Add QUIC v2 draft support
1774 - MINOR: quic: Released QUIC TLS extension for QUIC v2 draft
1775 - MEDIUM: quic: Compatible version negotiation implementation (draft-08)
1776 - CLEANUP: quic: Remove any reference to boringssl
1777 - BUG/MINOR: task: fix thread assignment in tasklet_kill()
1778 - BUG/MEDIUM: stream: Properly handle destructive client connection upgrades
1779 - MINOR: stream: Rely on stconn flags to abort stream destructive upgrade
1780 - CLEANUP: stconn: Don't expect to have no sedesc on detach
1781 - BUG/MINOR: log: Properly test connection retries to fix dontlog-normal option
1782 - MINOR: hlua: don't dump empty entries in hlua_traceback()
1783 - MINOR: hlua: add a new hlua_show_current_location() function
1784 - MEDIUM: debug: add a tainted flag when a shared library is loaded
1785 - MEDIUM: debug: detect redefinition of symbols upon dlopen()
1786 - BUILD: quic: Wrong HKDF label constant variable initializations
1787 - BUG/MINOR: quic: Unexpected half open connection counter wrapping
1788 - BUG/MINOR: quic_stats: Duplicate "quic_streams_data_blocked_bidi" field name
1789 - BUG/MINOR: quic: purge conn Rx packet list on release
1790 - BUG/MINOR: quic: free rejected Rx packets
1791 - BUG/MINOR: qpack: abort on dynamic index field line decoding
1792 - BUG/MEDIUM: ssl/cli: crash when crt inserted into a crt-list
1793 - REGTESTS: ssl: add the same cert for client/server
1794 - BUG/MINOR: quic: Acknowledgement must be forced during handshake
1795 - MINOR: quic: Dump version_information transport parameter
1796 - BUG/MEDIUM: mworker: use default maxconn in wait mode
1797 - MINOR: intops: add a function to return a valid bit position from a mask
1798 - TESTS: add a unit test for one_among_mask()
1799 - BUILD: ssl_ckch: fix "maybe-uninitialized" build error on gcc-9.4 + ARM
1800 - BUG/MINOR: ssl: Do not look for key in extra files if already in pem
1801 - BUG/MINOR: quic: Missing acknowledgments for trailing packets
1802 - BUG/MINOR: http-ana: Set method to HTTP_METH_OTHER when an HTTP txn is created
1803 - BUG/MINOR: http-fetch: Use integer value when possible in "method" sample fetch
1804 - MINOR: freq_ctr: Add a function to get events excess over the current period
1805 - BUG/MINOR: stream: only free the req/res captures when set
1806 - CLEANUP: pool/tree-wide: remove suffix "_pool" from certain pool names
1807 - MEDIUM: debug: improve DEBUG_MEM_STATS to also report pool alloc/free
1808 - BUG/MINOR: quic: Wrong reuse of fulfilled dgram RX buffer
1809 - BUG/MAJOR: quic: Big RX dgrams leak when fulfilling a buffer
1810 - BUG/MAJOR: quic: Big RX dgrams leak with POST requests
1811 - BUILD: quic+h3: 32-bit compilation errors fixes
1812 - MEDIUM: bwlim: Add support of bandwith limitation at the stream level
1813
Willy Tarreau29698e32022-05-31 17:05:27 +020018142022/05/31 : 2.7-dev0
1815 - MINOR: version: it's development again
1816
Willy Tarreaua1efc042022-05-31 16:58:21 +020018172022/05/31 : 2.6.0
1818 - DOC: Fix formatting in configuration.txt to fix dconv
1819 - CLEANUP: tcpcheck: Remove useless test on the stream-connector in tcpcheck_main
1820 - CLEANUP: muxes: Consider stream's sd as defined in .show_fd callback functions
1821 - MINOR: quic: Ignore out of packet padding.
1822 - CLEANUP: quic: Useless QUIC_CONN_TX_BUF_SZ definition
1823 - CLEANUP: quic: No more used handshake output buffer
1824 - MINOR: quic: QUIC transport parameters split.
1825 - MINOR: quic: Transport parameters dump
1826 - DOC: quic: Update documentation for QUIC Retry
1827 - MINOR: quic: Tunable "max_idle_timeout" transport parameter
1828 - MINOR: quic: Tunable "initial_max_streams_bidi" transport parameter
1829 - MINOR: quic: Clarifications about transport parameters value
1830 - MINOIR: quic_stats: add QUIC connection errors counters
1831 - BUG/MINOR: quic: Largest RX packet numbers mixing
1832 - MINOR: quic_stats: Add transport new counters (lost, stateless reset, drop)
1833 - DOC: quic: Documentation update for QUIC
1834 - MINOR: quic: Connection TX buffer setting renaming.
1835 - MINOR: h3: Add a statistics module for h3
1836 - MINOR: quic: Send STOP_SENDING frames if mux is released
1837 - MINOR: quic: Do not drop packets with RESET_STREAM frames
1838 - BUG/MINOR: qpack: fix buffer API usage on prefix integer encoding
1839 - BUG/MINOR: qpack: support bigger prefix-integer encoding
1840 - BUG/MINOR: h3: do not report bug on unknown method
1841 - SCRIPTS: add make-releases-json to recreate a releases.json file in download dirs
1842 - SCRIPTS: make publish-release try to launch make-releases-json
1843 - MINOR: htx: add an unchecked version of htx_get_head_blk()
1844 - BUILD: htx: use the unchecked version of htx_get_head_blk() where needed
1845 - BUILD: quic: use inttypes.h instead of stdint.h
1846 - DOC: internal: remove totally outdated diagrams
1847 - DOC: remove the outdated ROADMAP file
1848 - DOC: add maintainers for QUIC and HTTP/3
1849 - MINOR: h3: define h3 trace module
1850 - MINOR: h3: add traces on frame recv
1851 - MINOR: h3: add traces on frame send
1852 - MINOR: h3: add traces on h3s init/end
1853 - EXAMPLES: remove completely outdated acl-content-sw.cfg
1854 - BUILD: makefile: reorder objects by build time
1855 - DOC: fix a few spelling mistakes in the docs
1856 - BUG/MEDIUM: peers/cli: fix "show peers" crash
1857 - CLEANUP: peers/cli: stop misusing the appctx local variable
1858 - CLEANUP: peers/cli: make peers_dump_peer() take an appctx instead of an stconn
1859 - BUG/MINOR: peers: set the proxy's name to the peers section name
1860 - MINOR: server: indicate when no address was expected for a server
1861 - BUG/MINOR: peers: detect and warn on init_addr/resolvers/check/agent-check
1862 - DOC: peers: indicate that some server settings are not usable
1863 - DOC: peers: clarify when entry expiration date is renewed.
1864 - DOC: peers: fix port number and addresses on new peers section format
1865 - DOC: gpc/gpt: add commments of gpc/gpt array definitions on stick tables.
1866 - DOC: install: update supported OpenSSL versions in the INSTALL doc
1867 - MINOR: ncbuf: adjust ncb_data with NCBUF_NULL
1868 - BUG/MINOR: h3: fix frame demuxing
1869 - BUG/MEDIUM: h3: fix H3_EXCESSIVE_LOAD when receiving H3 frame header only
1870 - BUG/MINOR: quic: Fix QUIC_EV_CONN_PRSAFRM event traces
1871 - CLEANUP: quic: remove useless check on local UNI stream reception
1872 - BUG/MINOR: qpack: do not consider empty enc/dec stream as error
1873 - DOC: intro: adjust the numbering of paragrams to keep the output ordered
1874 - MINOR: version: mention that it's LTS now.
1875
Willy Tarreau0edb9972022-05-27 19:49:31 +020018762022/05/27 : 2.6-dev12
1877 - CLEANUP: tools: Clean up non-QUIC error message handling in str2sa_range()
1878 - BUG/MEDIUM: tools: Fix `inet_ntop` usage in sa2str
1879 - CLEANUP: tools: Crash if inet_ntop fails due to ENOSPC in sa2str
1880 - BUG/MEDIUM: mux-quic: adjust buggy proxy closing support
1881 - Revert "MINOR: quic: activate QUIC traces at compilation"
1882 - Revert "MINOR: mux-quic: activate qmux traces on stdout via macro"
1883 - CLEANUP: init: address a coverity warning about possible multiply overflow
1884 - BUG/MEDIUM: http: Properly reject non-HTTP/1.x protocols
1885 - MEDIUM: h1: enlarge the scope of accepted version chars with accept-invalid-http-request
1886 - BUG/MEDIUM: resolvers: Don't defer resolutions release in deinit function
1887 - BUG/MEDIUM: peers: fix segfault using multiple bind on peers sections
1888 - BUG/MEDIUM: peers: prevent unitialized multiple listeners on peers section
1889 - BUG/MINOR: task: Don't defer tasks release when HAProxy is stopping
1890 - MINOR: h3: mark ncbuf as const on h3_b_dup
1891 - MINOR: mux-quic: do not alloc quic_stream_desc for uni remote stream
1892 - MINOR: mux-quic: delay cs_endpoint allocation
1893 - MINOR: mux-quic: add traces in qc_recv()
1894 - MINOR: mux-quic: adjust return value of decode_qcs
1895 - CLEANUP: h3: rename struct h3 -> h3c
1896 - CLEANUP: h3: rename uni stream type constants
1897 - BUG/MINOR: h3: prevent overflow when parsing SETTINGS
1898 - MINOR: h3: refactor h3_control_send()
1899 - MINOR: quic: support CONNECTION_CLOSE_APP emission
1900 - MINOR: mux-quic: disable read on CONNECTION_CLOSE emission
1901 - MINOR: h3: reject too big frames
1902 - MINOR: mux-quic: emit STREAM_STATE_ERROR in qcc_recv
1903 - BUG/MINOR: mux-quic: refactor uni streams TX/send H3 SETTINGS
1904 - MINOR: h3/qpack: use qcs as type in decode callbacks
1905 - MINOR: h3: define stream type
1906 - MINOR: h3: refactor uni streams initialization
1907 - MINOR: h3: check if frame is valid for stream type
1908 - MINOR: h3: define non-h3 generic parsing function
1909 - MEDIUM: quic: refactor uni streams RX
1910 - CLEANUP: h3: remove h3 uni tasklet
1911 - MINOR: h3: abort read on unknown uni stream
1912 - MINOR: h3: refactor SETTINGS parsing/error reporting
1913 - Revert "BUG/MINOR: task: Don't defer tasks release when HAProxy is stopping"
1914 - DOC: configuration: add a warning for @system-ca on bind
1915 - CLEANUP: init: address another coverity warning about a possible multiply overflow
1916 - BUG/MINOR: ssl/lua: use correctly cert_ext in CertCache.set()
1917 - BUG/MEDIUM: sample: Fix adjusting size in word converter
1918 - REGTESTS: Do not use REQUIRE_VERSION for HAProxy 2.5+ (2)
1919 - CLEANUP: conn_stream: remove unneeded exclusion of RX_WAIT_EP from RXBLK_ANY
1920 - CLEANUP: conn_stream: rename the cs_endpoint's context to "conn"
1921 - MINOR: conn_stream: add new sets of functions to set/get endpoint flags
1922 - DEV: coccinelle: add cs_endp_flags.cocci
1923 - CLEANUP: conn_stream: apply cs_endp_flags.cocci tree-wide
1924 - DEV: coccinelle: add endp_flags.cocci
1925 - CLEANUP: conn_stream: apply endp_flags.cocci tree-wide
1926 - CLEANUP: conn_stream: rename the stream endpoint flags CS_EP_* to SE_FL_*
1927 - CLEANUP: conn_stream: rename the cs_endpoint's target to "se"
1928 - CLEANUP: conn_stream: rename cs_endpoint to sedesc (stream endpoint descriptor)
1929 - CLEANUP: applet: rename the sedesc pointer from "endp" to "sedesc"
1930 - CLEANUP: conn_stream: rename the conn_stream's endp to sedesc
1931 - CLEANUP: conn_stream: rename cs_app_* to sc_app_*
1932 - CLEANUP: conn_stream: tree-wide rename to stconn (stream connector)
1933 - CLEANUP: mux-h1: add and use h1s_sc() to retrieve the stream connector
1934 - CLEANUP: mux-h2: add and use h2s_sc() to retrieve the stream connector
1935 - CLEANUP: mux-fcgi: add and use fcgi_strm_sc() to retrieve the stream connector
1936 - CLEANUP: mux-pt: add and use pt_sc() to retrieve the stream connector
1937 - CLEANUP: stdesc: rename the stream connector ->cs field to ->sc
1938 - CLEANUP: stream: rename "csf" and "csb" to "scf" and "scb"
1939 - CLEANUP: stconn: tree-wide rename stream connector flags CS_FL_* to SC_FL_*
1940 - CLEANUP: stconn: tree-wide rename stconn states CS_ST/SB_* to SC_ST/SB_*
1941 - MINOR: check: export wake_srv_chk()
1942 - MINOR: conn_stream: test the various ops functions before calling them
1943 - MEDIUM: stconn: merge the app_ops and the data_cb fields
1944 - MINOR: applet: add new wrappers to put chk/blk/str/chr to channel from appctx
1945 - CLEANUP: applet: use applet_put*() everywhere possible
1946 - CLEANUP: stconn: rename cs_{i,o}{b,c} to sc_{i,o}{b,c}
1947 - CLEANUP: stconn: rename cs_{check,strm,strm_task} to sc_strm_*
1948 - CLEANUP: stconn: rename cs_conn() to sc_conn()
1949 - CLEANUP: stconn: rename cs_mux() to sc_mux_strm()
1950 - CLEANUP: stconn: rename cs_conn_mux() to sc_mux_ops()
1951 - CLEANUP: stconn: rename cs_appctx() to sc_appctx()
1952 - CLEANUP: stconn: rename __cs_endp_target() to __sc_endp()
1953 - CLEANUP: stconn: rename cs_get_data_name() to sc_get_data_name()
1954 - CLEANUP: stconn: rename cs_conn_*() to sc_conn_*()
1955 - CLEANUP: stconn: rename cs_conn_get_first() to conn_get_first_sc()
1956 - CLEANUP: stconn: rename cs_ep_set_error() to se_fl_set_error()
1957 - CLEANUP: stconn: make a few functions take a const argument
1958 - CLEANUP: stconn: use a single function to know if SC may send to SE
1959 - MINOR: stconn: consider CF_SHUTW for sc_is_send_allowed()
1960 - MINOR: stconn: remove calls to cs_done_get()
1961 - MEDIUM: stconn: always rely on CF_SHUTR in addition to cs_rx_blocked()
1962 - MEDIUM: stconn: remove SE_FL_RXBLK_SHUT
1963 - MINOR: stconn: rename SE_FL_RXBLK_CONN to SE_FL_APPLET_NEED_CONN
1964 - MEDIUM: stconn: take SE_FL_APPLET_NEED_CONN out of the RXBLK_ANY flags
1965 - CLEANUP: stconn: rename cs_rx_room_{blk,rdy} to sc_{need,have}_room()
1966 - CLEANUP: stconn: rename cs_rx_chan_{blk,rdy} to sc_{wont,will}_read()
1967 - CLEANUP: stconn: rename cs_rx_buff_{blk,rdy} to sc_{need,have}_buff()
1968 - MINOR: stconn: start to rename cs_rx_endp_{more,done}() to se_have_{no_,}more_data()
1969 - MINOR: stconn: add sc_is_recv_allowed() to check for ability to receive
1970 - CLEANUP: stconn: rename SE_FL_RX_WAIT_EP to SE_FL_HAVE_NO_DATA
1971 - MEDIUM: stconn: move the RXBLK flags to the stream connector
1972 - CLEANUP: stconn: rename SE_FL_WANT_GET to SE_FL_WILL_CONSUME
1973 - CLEANUP: stconn: remove cs_tx_blocked() and cs_tx_endp_ready()
1974 - CLEANUP: stconn: rename cs_{want,stop}_get() to se_{will,wont}_consume()
1975 - CLEANUP: stconn: rename cs_cant_get() to se_need_more_data()
1976 - CLEANUP: stconn: rename cs_{new,create,free,destroy}_* to sc_*
1977 - CLEANUP: stconn: rename remaining management functions from cs_* to sc_*
1978 - CLEANUP: stconn: rename cs{,_get}_{src,dst} to sc_*
1979 - CLEANUP: stconn: rename cs_{shut,chk}* to sc_*
1980 - CLEANUP: stconn: rename final state manipulation functions from cs_* to sc_*
1981 - CLEANUP: quic: drop the name "conn_stream" from the pool variable names
1982 - REORG: rename cs_utils.h to sc_strm.h
1983 - REORG: stconn: rename conn_stream.{c,h} to stconn.{c,h}
1984 - CLEANUP: muxes: rename "get_first_cs" to "get_first_sc"
1985 - DEV: flags: use "sc" for stream conns instead of "cs"
1986 - CLEANUP: check: rename all occurrences of stconn "cs" to "sc"
1987 - CLEANUP: connection: rename all occurrences of stconn "cs" to "sc"
1988 - CLEANUP: stconn: rename all occurrences of stconn "cs" to "sc"
1989 - CLEANUP: quic/h3: rename all occurrences of stconn "cs" to "sc"
1990 - CLEANUP: stream: rename all occurrences of stconn "cs" to "sc"
1991 - CLEANUP: promex: rename all occurrences of stconn "cs" to "sc"
1992 - CLEANUP: stats: rename all occurrences of stconn "cs" to "sc"
1993 - CLEANUP: cli: rename all occurrences of stconn "cs" to "sc"
1994 - CLEANUP: applet: rename all occurrences of stconn "cs" to "sc"
1995 - CLEANUP: cache: rename all occurrences of stconn "cs" to "sc"
1996 - CLEANUP: dns: rename all occurrences of stconn "cs" to "sc"
1997 - CLEANUP: spoe: rename all occurrences of stconn "cs" to "sc"
1998 - CLEANUP: hlua: rename all occurrences of stconn "cs" to "sc"
1999 - CLEANUP: log-forward: rename all occurrences of stconn "cs" to "sc"
2000 - CLEANUP: http-client: rename all occurrences of stconn "cs" to "sc"
2001 - CLEANUP: mux-fcgi: rename all occurrences of stconn "cs" to "sc"
2002 - CLEANUP: mux-h1: rename all occurrences of stconn "cs" to "sc"
2003 - CLEANUP: mux-h2: rename all occurrences of stconn "cs" to "sc"
2004 - CLEANUP: mux-pt: rename all occurrences of stconn "cs" to "sc"
2005 - CLEANUP: peers: rename all occurrences of stconn "cs" to "sc"
2006 - CLEANUP: sink: rename all occurrences of stconn "cs" to "sc"
2007 - CLEANUP: sslsock: remove only occurrence of local variable "cs"
2008 - CLEANUP: applet: rename appctx_cs() to appctx_sc()
2009 - CLEANUP: stream: rename stream_upgrade_from_cs() to stream_upgrade_from_sc()
2010 - CLEANUP: obj_type: rename OBJ_TYPE_CS to OBJ_TYPE_SC
2011 - CLEANUP: stconn: replace a few remaining occurrences of CS in comments or traces
2012 - DOC: internal: update the muxes doc to mention the stconn
2013 - CLEANUP: mux-quic: rename the "endp" field to "sd"
2014 - CLEANUP: mux-h1: rename the "endp" field to "sd"
2015 - CLEANUP: mux-h2: rename the "endp" field to "sd"
2016 - CLEANUP: mux-fcgi: rename the "endp" field to "sd"
2017 - CLEANUP: mux-pt: rename the "endp" field to "sd"
2018 - CLEANUP: stconn: rename a few "endp" arguments and variables to "sd"
2019 - MINOR: stconn: turn SE_FL_WILL_CONSUME to SE_FL_WONT_CONSUME
2020 - CLEANUP: stream: remove unneeded test on appctx during initialization
2021 - CLEANUP: stconn: remove the new unneeded SE_FL_APP_MASK
2022 - DEV: flags: fix "siet" shortcut name
2023 - DEV: flags: rename the "endp" shortcut to "sd" for "stream descriptor"
2024 - DEV: flags: reorder a few SC/SE flags
2025 - DOC: internal: add a description of the stream connectors and descriptors
2026
Willy Tarreau137c8fd2022-05-20 23:31:51 +020020272022/05/20 : 2.6-dev11
2028 - CI: determine actual LibreSSL version dynamically
2029 - BUG/MEDIUM: ncbuf: fix null buffer usage
2030 - MINOR: ncbuf: fix warnings for testing build
2031 - MEDIUM: http-ana: Add a proxy option to restrict chars in request header names
2032 - MEDIUM: ssl: Delay random generator initialization after config parsing
2033 - MINOR: ssl: Add 'ssl-propquery' global option
2034 - MINOR: ssl: Add 'ssl-provider' global option
2035 - CLEANUP: Add missing header to ssl_utils.c
2036 - CLEANUP: Add missing header to hlua_fcn.c
2037 - CLEANUP: Remove unused function hlua_get_top_error_string
2038 - BUILD: fix build warning on solaris based systems with __maybe_unused.
2039 - MINOR: tools: add get_exec_path implementation for solaris based systems.
2040 - BUG/MINOR: ssl: Fix crash when no private key is found in pem
2041 - CLEANUP: conn-stream: Remove cs_applet_shut declaration from header file
2042 - MINOR: applet: Prepare appctx to own the session on frontend side
2043 - MINOR: applet: Let the frontend appctx release the session
2044 - MINOR: applet: Change return value for .init callback function
2045 - MINOR: stream: Export stream_free()
2046 - MINOR: applet: Add appctx_init() helper fnuction
2047 - MINOR: applet: Add a function to finalize frontend appctx startup
2048 - MINOR: applet: Add function to release appctx on error during init stage
2049 - MEDIUM: dns: Refactor dns appctx creation
2050 - MEDIUM: spoe: Refactor SPOE appctx creation
2051 - MEDIUM: lua: Refactor cosocket appctx creation
2052 - MEDIUM: httpclient: Refactor http-client appctx creation
2053 - MINOR: sink: Add a ref to sink in the sink_forward_target structure
2054 - MEDIUM: sink: Refactor sink forwarder appctx creation
2055 - MINOR: peers: Add a ref to peers section in the peer structure
2056 - MEDIUM: peers: Refactor peer appctx creation
2057 - MINOR: applet: Add API to start applet on a thread subset
2058 - MEDIUM: applet: Add support for async appctx startup on a thread subset
2059 - MINOR: peers: Track number of applets run by thread
2060 - MEDIUM: peers: Balance applets across threads
2061 - MINOR: conn-stream/applet: Stop setting appctx as the endpoint context
2062 - CLEANUP: proxy: Remove dead code when parsing "http-restrict-req-hdr-names" option
2063 - REGTESTS: abortonclose: Fix some race conditions
2064 - MINOR: ssl: Add 'ssl-provider-path' global option
2065 - CLEANUP: http_ana: Make use of the return value of stream_generate_unique_id()
2066 - BUG/MINOR: spoe: Fix error handling in spoe_init_appctx()
2067 - CLEANUP: peers: Remove unreachable code in peer_session_create()
2068 - CLEANUP: httpclient: Remove useless test on ss_dst in httpclient_applet_init()
2069 - BUG/MEDIUM: quic: fix Rx buffering
2070 - OPTIM: quic: realign empty Rx buffer
2071 - BUG/MINOR: ncbuf: fix ncb_is_empty()
2072 - MINOR: ncbuf: refactor ncb_advance()
2073 - BUG/MINOR: mux-quic: update session's idle delay before stream creation
2074 - MINOR: h3: do not wait a complete frame for demuxing
2075 - MINOR: h3: flag demux as full on HTX full
2076 - MEDIUM: mux-quic: implement recv on io-cb
2077 - MINOR: mux-quic: remove qcc_decode_qcs() call in XPRT
2078 - MINOR: mux-quic: reorganize flow-control frames emission
2079 - MINOR: mux-quic: implement MAX_STREAM_DATA emission
2080 - MINOR: mux-quic: implement MAX_DATA emission
2081 - BUG/MINOR: mux-quic: support nul buffer with qc_free_ncbuf()
2082 - MINOR: mux-quic: free RX buf if empty
2083 - BUG/MEDIUM: config: Reset outline buffer size on realloc error in readcfgfile()
2084 - BUG/MINOR: check: Reinit the buffer wait list at the end of a check
2085 - MEDIUM: check: No longer shutdown the connection in .wake callback function
2086 - REORG: check: Rename and export I/O callback function
2087 - MEDIUM: check: Use the CS to handle subscriptions for read/write events
2088 - BUG/MINOR: quic: break for error on sendto
2089 - MINOR: quic: abort on unlisted errno on sendto()
2090 - MINOR: quic: detect EBADF on sendto()
2091 - BUG/MEDIUM: quic: fix initialization for local/remote TPs
2092 - CLEANUP: quic: adjust comment/coding style for TPs init
2093 - BUG/MINOR: cfgparse: abort earlier in case of allocation error
2094 - MINOR: quic: Dump initial derived secrets
2095 - MINOR: quic_tls: Add quic_tls_derive_retry_token_secret()
2096 - MINOR: quic_tls: Add quic_tls_decrypt2() implementation
2097 - MINOR: quic: Retry implementation
2098 - MINOR: cfgparse: Update for "cluster-secret" keyword for QUIC Retry
2099 - MINOR: quic: Move quic_lstnr_dgram_dispatch() out of xprt_quic.c
2100 - BUILD: stats: Missing headers inclusions from stats.h
2101 - MINOR: quic_stats: Add a new stats module for QUIC
2102 - MINOR: quic: Attach proxy QUIC stats counters to the QUIC connection
2103 - BUG/MINOR: quic: Fix potential memory leak during QUIC connection allocations
2104 - MINOR: quic: QUIC stats counters handling
2105 - MINOR: quic: Add tune.quic.retry-threshold keyword
2106 - MINOR: quic: Dynamic Retry implementation
2107 - MINOR: quic/mux-quic: define CONNECTION_CLOSE send API
2108 - MINOR: mux-quic: emit FLOW_CONTROL_ERROR
2109 - MINOR: mux-quic: emit STREAM_LIMIT_ERROR
2110 - MINOR: mux-quic: close connection on error if different data at offset
2111 - BUG/MINOR: peers: fix error reporting of "bind" lines
2112 - CLEANUP: config: improve address parser error report for unmatched protocols
2113 - CLEANUP: config: provide cleare hints about unsupported QUIC addresses
2114 - MINOR: protocol: replace ctrl_type with xprt_type and clarify it
2115 - MINOR: listener: provide a function to process all of a bind_conf's arguments
2116 - MINOR: config: use the new bind_parse_args_list() to parse a "bind" line
2117 - CLEANUP: listener: add a comment about what the BC_SSL_O_* flags are for
2118 - MINOR: listener: add a new "options" entry in bind_conf
2119 - CLEANUP: listener: replace all uses of bind_conf->is_ssl with BC_O_USE_SSL
2120 - CLEANUP: listener: replace bind_conf->generate_cers with BC_O_GENERATE_CERTS
2121 - CLEANUP: listener: replace bind_conf->quic_force_retry with BC_O_QUIC_FORCE_RETRY
2122 - CLEANUP: listener: store stream vs dgram at the bind_conf level
2123 - MINOR: listener: detect stream vs dgram conflict during parsing
2124 - MINOR: listener: set the QUIC xprt layer immediately after parsing the args
2125 - MINOR: listener/ssl: set the SSL xprt layer only once the whole config is known
2126 - MINOR: connection: add flag MX_FL_FRAMED to mark muxes relying on framed xprt
2127 - MINOR: config: detect and report mux and transport incompatibilities
2128 - MINOR: listener: automatically select a QUIC mux with a QUIC transport
2129 - MINOR: listener: automatically enable SSL if a QUIC transport is found
2130 - BUG/MINOR: quic: Fixe a typo in qc_idle_timer_task()
2131 - BUG/MINOR: quic: Missing <conn_opening> stats counter decrementation
2132 - BUILD/MINOR: cpuset fix build for FreeBSD 13.1
2133 - CI: determine actual OpenSSL version dynamically
2134
Willy Tarreau37033252022-05-14 16:05:50 +020021352022/05/14 : 2.6-dev10
2136 - MINOR: ssl: ignore dotfiles when loading a dir w/ ca-file
2137 - MEDIUM: ssl: ignore dotfiles when loading a dir w/ crt
2138 - BUG/MINOR: ssl: Fix typos in crl-file related CLI commands
2139 - MINOR: compiler: add a new macro to set an attribute on an enum when possible
2140 - BUILD: stats: conditionally mark obsolete stats states as deprecated
2141 - BUILD: ssl: work around bogus warning in gcc 12's -Wformat-truncation
2142 - BUILD: debug: work around gcc-12 excessive -Warray-bounds warnings
2143 - BUILD: listener: shut report of possible null-deref in listener_accept()
2144 - BUG/MEDIUM: ssl: fix the gcc-12 broken fix :-(
2145 - DOC: install: update gcc version requirements
2146 - BUILD: makefile: add -Wfatal-errors to the default flags
2147 - BUG/MINOR: server: Make SRV_STATE_LINE_MAXLEN value from 512 to 2kB (2000 bytes).
2148 - BUG/MAJOR: dns: multi-thread concurrency issue on UDP socket
2149 - BUG/MINOR: mux-h2: mark the stream as open before processing it not after
2150 - MINOR: mux-h2: report a trace event when failing to create a new stream
2151 - DOC: configuration: add the httpclient keywords to the global keywords index
2152 - MINOR: quic: Add a debug counter for sendto() errors
2153 - BUG/MINOR: quic: Dropped peer transport parameters
2154 - BUG/MINOR: quic: Wrong unit for ack delay for incoming ACK frames
2155 - MINOR: quic: Congestion controller event trace fix (loss)
2156 - MINOR: quic: Add correct ack delay values to ACK frames
2157 - MINOR: config: Add "cluster-secret" new global keyword
2158 - MINOR: quic-tls: Add quic_hkdf_extract_and_expand() for HKDF
2159 - MINOR: quic: new_quic_cid() code moving
2160 - MINOR: quic: Initialize stateless reset tokens with HKDF secrets
2161 - MINOR: qc_new_conn() rework for stateless reset
2162 - MINOR: quic: Stateless reset token copy to transport parameters
2163 - MINOR: quic: Send stateless reset tokens
2164 - MINOR: quic: Short packets always embed a trailing AEAD TAG
2165 - CLEANUP: quic: wrong use of eb*entry() macro
2166 - CLEANUP: quic: Useless use of pointer for quic_hkdf_extract()
2167 - CLEANUP: quic_tls: QUIC_TLS_IV_LEN defined two times
2168 - MINOR: ncbuf: define non-contiguous buffer
2169 - MINOR: ncbuf: complete API and define block interal abstraction
2170 - MINOR: ncbuf: optimize storage for the last gap
2171 - MINOR: ncbuf: implement insertion
2172 - MINOR: ncbuf: define various insertion modes
2173 - MINOR: ncbuf: implement advance
2174 - MINOR: ncbuf: write unit tests
2175 - BUG/MEDIUM: lua: fix argument handling in data removal functions
2176 - DOC/MINOR: fix typos in the lua-api document
2177 - BUG/MEDIUM: wdt: don't trigger the watchdog when p is unitialized
2178 - MINOR: mux-h1: Add global option accpet payload for any HTTP/1.0 requests
2179 - CLEANUP: mux-h1: Fix comments and error messages for global options
2180 - MINOR: conn_stream: make cs_set_error() work on the endpoint instead
2181 - CLEANUP: mux-h1: always take the endp from the h1s not the cs
2182 - CLEANUP: mux-h2: always take the endp from the h2s not the cs
2183 - CLEANUP: mux-pt: always take the endp from the context not the cs
2184 - CLEANUP: mux-fcgi: always take the endp from the fstrm not the cs
2185 - CLEANUP: mux-quic: always take the endp from the qcs not the cs
2186 - CLEANUP: applet: use the appctx's endp instead of cs->endp
2187 - MINOR: conn_stream: add a pointer back to the cs from the endpoint
2188 - MINOR: mux-h1: remove the now unneeded h1s->cs
2189 - MINOR: mux-h2: make sure any h2s always has an endpoint
2190 - MINOR: mux-h2: remove the now unneeded conn_stream from the h2s
2191 - MINOR: mux-fcgi: make sure any stream always has an endpoint
2192 - MINOR: mux-fcgi: remove the now unneeded conn_stream from the fcgi_strm
2193 - MINOR: mux-quic: remove the now unneeded conn_stream from the qcs
2194 - MINOR: mux-pt: remove the now unneeded conn_stream from the context
2195 - CLEANUP: muxes: make mux->attach/detach take a conn_stream endpoint
2196 - MINOR: applet: replace cs_applet_shut() with appctx_shut()
2197 - MINOR: applet: add appctx_strm() and appctx_cs() to access common fields
2198 - CLEANUP: applet: remove the unneeded appctx->owner
2199 - CLEANUP: conn_stream: merge cs_new_from_{mux,applet} into cs_new_from_endp()
2200 - MINOR: ext-check: indicate the transport and protocol of a server
2201 - BUG/MEDIUM: mux-quic: fix a thinko in the latest cs/endpoint cleanup
2202 - MINOR: tools: improve error message accuracy in str2sa_range
2203 - MINOR: config: make sure never to mix dgram and stream protocols on a bind line
2204 - BUG/MINOR: ncbuf: fix coverity warning on uninit sz_data
2205 - MINOR: xprt_quic: adjust flow-control according to bufsize
2206 - MEDIUM: mux-quic/h3/hq-interop: use ncbuf for bidir streams
2207 - MEDIUM: mux-quic/h3/qpack: use ncbuf for uni streams
2208 - CLEANUP: mux-quic: remove unused fields for Rx
2209 - CLEANUP: quic: remove unused quic_rx_strm_frm
2210
Willy Tarreaue9797962022-05-08 11:44:15 +020022112022/05/08 : 2.6-dev9
2212 - MINOR: mux-quic: support full request channel buffer
2213 - BUG/MINOR: h3: fix parsing of unknown frame type with null length
2214 - CLEANUP: backend: make alloc_{bind,dst}_address() idempotent
2215 - MEDIUM: stream: remove the confusing SF_ADDR_SET flag
2216 - MINOR: conn_stream: remove the now unused CS_FL_ADDR_*_SET flags
2217 - CLEANUP: protocol: make sure the connect_* functions always receive a dst
2218 - MINOR: connection: get rid of the CO_FL_ADDR_*_SET flags
2219 - MINOR: session: get rid of the now unused SESS_FL_ADDR_*_SET flags
2220 - CLEANUP: mux: Useless xprt_quic-t.h inclusion
2221 - MINOR: quic: Make the quic_conn be aware of the number of streams
2222 - BUG/MINOR: quic: Dropped retransmitted STREAM frames
2223 - BUG/MINOR: mux_quic: Dropped packet upon retransmission for closed streams
2224 - MEDIUM: httpclient: remove url2sa to use a more flexible parser
2225 - MEDIUM: httpclient: http-request rules for resolving
2226 - MEDIUM: httpclient: allow address and port change for resolving
2227 - CLEANUP: httpclient: remove the comment about resolving
2228 - MINOR: httpclient: handle unix and other socket types in dst
2229 - MINOR: httpclient: rename dash by dot in global option
2230 - MINOR: init: exit() after pre-check upon error
2231 - MINOR: httpclient: cleanup the error handling in init
2232 - MEDIUM: httpclient: hard-error when SSL is configured
2233 - MINOR: httpclient: allow to configure the ca-file
2234 - MINOR: httpclient: configure the resolvers section to use
2235 - MINOR: httpclient: allow ipv4 or ipv6 preference for resolving
2236 - DOC: configuration: httpclient global option
2237 - MINOR: conn-stream: Add mask from flags set by endpoint or app layer
2238 - BUG/MEDIUM: conn-stream: Only keep app layer flags of the endpoint on reset
2239 - BUG/MEDIUM: mux-fcgi: Be sure to never set EOM flag on an empty HTX message
2240 - BUG/MEDIUM: mux-h1: Be able to handle trailers when C-L header was specified
2241 - DOC: config: Update doc for PR/PH session states to warn about rewrite failures
2242 - MINOR: resolvers: cleanup alert/warning in parse-resolve-conf
2243 - MINOR: resolvers: move the resolv.conf parser in parse_resolv_conf()
2244 - MINOR: resolvers: resolvers_new() create a resolvers with default values
2245 - BUILD: debug: unify the definition of ha_backtrace_to_stderr()
2246 - BUG/MINOR: tcp/http: release the expr of set-{src,dst}[-port]
2247 - MEDIUM: resolvers: create a "default" resolvers section at startup
2248 - DOC: resolvers: default resolvers section
2249 - BUG/MINOR: startup: usage() when no -cc arguments
2250 - BUG/MEDIUM: resolvers: make "show resolvers" properly yield
2251 - BUG/MEDIUM: cli: make "show cli sockets" really yield
2252 - BUG/MINOR: proxy/cli: don't enumerate internal proxies on "show backend"
2253 - BUG/MINOR: map/cli: protect the backref list during "show map" errors
2254 - BUG/MINOR: map/cli: make sure patterns don't vanish under "show map"'s init
2255 - BUG/MINOR: ssl/cli: fix "show ssl ca-file/crl-file" not to mix cli+ssl contexts
2256 - BUG/MINOR: ssl/cli: fix "show ssl ca-file <name>" not to mix cli+ssl contexts
2257 - BUG/MINOR: ssl/cli: fix "show ssl crl-file" not to mix cli+ssl contexts
2258 - BUG/MINOR: ssl/cli: fix "show ssl cert" not to mix cli+ssl contexts
2259 - CLEANUP: ssl/cli: do not loop on unknown states in "add ssl crt-list" handler
2260 - MINOR: applet: reserve some generic storage in the applet's context
2261 - CLEANUP: applet: make appctx_new() initialize the whole appctx
2262 - CLEANUP: stream/cli: take the "show sess" context definition out of the appctx
2263 - CLEANUP: stream/cli: stop using appctx->st2 for the dump state
2264 - CLEANUP: stream/cli: remove the unneeded init state from "show sess"
2265 - CLEANUP: stream/cli: remove the unneeded STATE_FIN state from "show sess"
2266 - CLEANUP: stream/cli: remove the now unneeded dump state from "show sess"
2267 - CLEANUP: proxy/cli: take the "show errors" context definition out of the appctx
2268 - CLEANUP: stick-table/cli: take the "show table" context definition out of the appctx
2269 - CLEANUP: stick-table/cli: stop using appctx->st2 for the dump state
2270 - CLEANUP: stick-table/cli: remove the unneeded STATE_INIT for "show table"
2271 - CLEANUP: map/cli: take the "show map" context definition out of the appctx
2272 - CLEANUP: map/cli: stop using cli.i0/i1 to store the generation numbers
2273 - CLEANUP: map/cli: stop using appctx->st2 for the dump state
2274 - CLEANUP: map/cli: always detach the backref from the list after "show map"
2275 - CLEANUP: peers/cli: take the "show peers" context definition out of the appctx
2276 - CLEANUP: peers/cli: stop using appctx->st2 for the dump state
2277 - CLEANUP: peers/cli: remove unneeded state STATE_INIT
2278 - CLEANUP: cli: initialize the whole appctx->ctx, not just the stats part
2279 - CLEANUP: promex: make the applet use its own context
2280 - CLEANUP: promex: stop using appctx->st2
2281 - CLEANUP: stats/cli: take the "show stat" context definition out of the appctx
2282 - CLEANUP: stats/cli: stop using appctx->st2
2283 - CLEANUP: hlua/cli: take the hlua_cli context definition out of the appctx
2284 - CLEANUP: ssl/cli: use a local context for "show cafile"
2285 - CLEANUP: ssl/cli: use a local context for "show crlfile"
2286 - CLEANUP: ssl/cli: use a local context for "show ssl cert"
2287 - CLEANUP: ssl/cli: use a local context for "commit ssl cert"
2288 - CLEANUP: ssl/cli: stop using appctx->st2 for "commit ssl cert"
2289 - CLEANUP: ssl/cli: use a local context for "set ssl cert"
2290 - CLEANUP: ssl/cli: use a local context for "set ssl cafile"
2291 - CLEANUP: ssl/cli: use a local context for "set ssl crlfile"
2292 - CLEANUP: ssl/cli: use a local context for "commit ssl {ca|crl}file"
2293 - CLEANUP: ssl/cli: stop using appctx->st2 for "commit ssl ca/crl"
2294 - CLEANUP: ssl/cli: stop using ctx.cli.i0/i1/p0 for "show tls-keys"
2295 - CLEANUP: ssl/cli: add a new "dump_entries" field to "show_keys_ref"
2296 - CLEANUP: ssl/cli: make "show tlskeys" not use appctx->st2 anymore
2297 - CLEANUP: ssl/cli: make "show ssl ocsp-response" not use cli.p0 anymore
2298 - CLEANUP: ssl/cli: make "{show|dump} ssl crtlist" use its own context
2299 - CLEANUP: ssl/cli: make "add ssl crtlist" use its own context
2300 - CLEANUP: ssl/cli: make "add ssl crtlist" not use st2 anymore
2301 - CLEANUP: dns: stop abusing the sink forwarder's context
2302 - CLEANUP: sink: use the generic context to store the forwarder's context
2303 - CLEANUP: activity/cli: make "show profiling" not use ctx.cli anymore
2304 - CLEANUP: debug/cli: make "debug dev fd" not use ctx.cli anymore
2305 - CLEANUP: debug/cli: make "debug dev memstats" not use ctx.cli anymore
2306 - CLEANUP: ring: pass the ring watch flags to ring_attach_cli(), not in ctx.cli
2307 - CLEANUP: ring/cli: use a locally-defined context instead of using ctx.cli
2308 - CLEANUP: resolvers/cli: make "show resolvers" use a locally-defined context
2309 - CLEANUP: resolvers/cli: remove the unneeded appctx->st2 from "show resolvers"
2310 - CLEANUP: cache/cli: make use of a locally defined context for "show cache"
2311 - CLEANUP: proxy/cli: make use of a locally defined context for "show servers"
2312 - CLEANUP: proxy/cli: get rid of appctx->st2 in "show servers"
2313 - CLEANUP: proxy/cli: make "show backend" only use the generic context
2314 - CLEANUP: cli: make "show fd" use its own context
2315 - CLEANUP: cli: make "show env" use its own context
2316 - CLEANUP: cli: simplify the "show cli sockets" I/O handler
2317 - CLEANUP: cli: make "show cli sockets" use its own context
2318 - CLEANUP: httpclient/cli: use a locally-defined context instead of ctx.cli
2319 - CLEANUP: httpclient: do not use the appctx.ctx anymore
2320 - CLEANUP: peers: do not use appctx.ctx anymore
2321 - CLEANUP: spoe: do not use appctx.ctx anymore
2322 - BUILD: applet: mark the CLI's generic variables as deprecated
2323 - BUILD: applet: mark the appctx's st2 variable as deprecated
2324 - CLEANUP: cache: take the context out of appctx.ctx
2325 - MEDIUM: lua: move the cosocket storage outside of appctx.ctx
2326 - MINOR: lua: move the tcp service storage outside of appctx.ctx
2327 - MINOR: lua: move the http service context out of appctx.ctx
2328 - CLEANUP: cli: move the status print context into its own context
2329 - CLEANUP: stats: rename the stats state values an mark the old ones deprecated
2330 - DOC: internal: document the new cleaner approach to the appctx
2331 - MINOR: tcp: socket translate TCP_KEEPIDLE for macOs equivalent
2332 - DOC: fix typo "ant" for "and" in INSTALL
2333 - CI: dynamically determine actual version of h2spec
2334
Willy Tarreau026fef92022-04-30 14:17:51 +020023352022/04/30 : 2.6-dev8
2336 - BUG/MINOR: quic: fix use-after-free with trace on ACK consume
2337 - BUG/MINOR: rules: Forbid captures in defaults section if used by a backend
2338 - BUG/MEDIUM: rules: Be able to use captures defined in defaults section
2339 - BUG/MINOR: rules: Fix check_capture() function to use the right rule arguments
2340 - BUG/MINOR: http-act: make release_http_redir() more robust
2341 - BUG/MINOR: sample: add missing use_backend/use-server contexts in smp_resolve_args
2342 - MINOR: sample: don't needlessly call c_none() in sample_fetch_as_type()
2343 - MINOR: sample: make the bool type cast to bin
2344 - MEDIUM: backend: add new "balance hash <expr>" algorithm
2345 - MINOR: init: add global setting "fd-hard-limit" to bound system limits
2346 - BUILD: pollers: use an initcall to register the pollers
2347 - BUILD: xprt: use an initcall to register the transport layers
2348 - BUILD: thread: use initcall instead of a constructor
2349 - BUILD: http: remove the two unused constructors in rules and ana
2350 - CLEANUP: compression: move the default setting of maxzlibmem to defaults
2351 - MINOR: tree-wide: always consider EWOULDBLOCK in addition to EAGAIN
2352 - BUG/MINOR: connection: "connection:close" header added despite 'close-spread-time'
2353 - MINOR: fd: add functions to set O_NONBLOCK and FD_CLOEXEC
2354 - CLEANUP: tree-wide: use fd_set_nonblock() and fd_set_cloexec()
2355 - CLEANUP: tree-wide: remove 25 occurrences of unneeded fcntl.h
2356 - REGTESTS: fix the race conditions in be2dec.vtc ad field.vtc
2357 - REGTESTS: webstats: remove unused stats socket in /tmp
2358 - MEDIUM: httpclient: disable SSL when the ca-file couldn't be loaded
2359 - BUG/MINOR: httpclient/lua: error when the httpclient_start() fails
2360 - BUG/MINOR: ssl: free the cafile entries on deinit
2361 - BUG/MINOR: ssl: memory leak when trying to load a directory with ca-file
2362 - MEDIUM: httpclient: re-enable the verify by default
2363 - BUG/MEDIUM: ssl/cli: fix yielding in show_cafile_detail
2364 - BUILD: compiler: properly distinguish weak and global symbols
2365 - MINOR: connection: Add way to disable active connection closing during soft-stop
2366 - BUG/MEDIUM: http-ana: Fix memleak in redirect rules with ignore-empty option
2367 - CLEANUP: Destroy `http_err_chunks` members during deinit
2368 - BUG/MINOR: resolvers: Fix memory leak in resolvers_deinit()
2369 - MINOR: Call deinit_and_exit(0) for `haproxy -vv`
2370 - BUILD: fd: disguise the fd_set_nonblock/cloexec result
2371 - BUG/MINOR: pools: make sure to also destroy shared pools in pool_destroy_all()
2372 - MINOR: ssl: add a new global option "tune.ssl.hard-maxrecord"
2373 - CLEANUP: errors: also call deinit_errors_buffers() on deinit()
2374 - CLEANUP: chunks: release trash also in deinit
2375 - CLEANUP: deinit: release the pre-check callbacks
2376 - CLEANUP: deinit: release the config postparsers
2377 - CLEANUP: listeners/deinit: release accept queue tasklets on deinit
2378 - CLEANUP: connections/deinit: destroy the idle_conns tasks
2379 - BUG/MINOR: mux-quic: fix build in release mode
2380 - MINOR: mux-quic: adjust comment on emission function
2381 - MINOR: mux-quic: remove unused bogus qcc_get_stream()
2382 - BUG/MINOR: mux-quic: fix leak if cs alloc failure
2383 - MINOR: mux-quic: count local flow-control stream limit on reception
2384 - BUG/MINOR: h3: fix incomplete POST requests
2385 - BUG/MEDIUM: h3: fix use-after-free on mux Rx buffer wrapping
2386 - MINOR: mux-quic: partially copy Rx frame if almost full buf
2387 - MINOR: h3: change frame demuxing API
2388 - MINOR: mux-quic: add a app-layer context in qcs
2389 - MINOR: h3: implement h3 stream context
2390 - MINOR: h3: support DATA demux if buffer full
2391 - MINOR: quic: decode as much STREAM as possible
2392 - MINOR: quic: Improve qc_prep_pkts() flexibility
2393 - MINOR: quic: Prepare quic_frame struct duplication
2394 - MINOR: quic: Do not retransmit frames from coalesced packets
2395 - MINOR: quic: Add traces about TX frame memory releasing
2396 - MINOR: quic: process_timer() rework
2397 - MEDIUM: quic: New functions for probing rework
2398 - MEDIUM: quic: Retransmission functions rework
2399 - MEDIUM: quic: qc_requeue_nacked_pkt_tx_frms() rework
2400 - MINOR: quic: old data distinction for qc_send_app_pkt()
2401 - MINOR: quic: Mark packets as probing with old data
2402 - MEDIUM: quic: Mark copies of acknowledged frames as acknowledged
2403 - MEDIUM: quic: Enable the new datagram probing process
2404 - MINOR: quic: Do not send ACK frames when probing
2405 - BUG/MINOR: quic: Wrong returned status by qc_build_frms()
2406 - BUG/MINOR: quic: Avoid sending useless PADDING frame
2407 - BUG/MINOR: quic: Traces fix about remaining frames upon packet build failure
2408 - MINOR: quic: Wake up the mux to probe with new data
2409 - BUG/MEDIUM: quic: Possible crash on STREAM frame loss
2410 - BUG/MINOR: quic: Missing Initial packet length check
2411 - CLEANUP: quic: Rely on the packet length set by qc_lstnr_pkt_rcv()
2412 - MINOR: quic: Drop 0-RTT packets if not allowed
2413 - BUG/MINOR: httpclient/ssl: use the correct verify constant
2414 - BUG/MEDIUM: conn-stream: Don't erase endpoint flags on reset
2415 - BUG/MEDIUM: httpclient: Fix loop consuming HTX blocks from the response channel
2416 - BUG/MINOR: httpclient: Count metadata in size to transfer via htx_xfer_blks()
2417 - MINOR: httpclient: Don't use co_set_data() to decrement output
2418 - BUG/MINOR: conn_stream: do not confirm a connection from the frontend path
2419 - MEDIUM: quic: do not ACK packet with STREAM if MUX not present
2420 - MEDIUM: quic: do not ack packet with invalid STREAM
2421 - MINOR: quic: Drop 0-RTT packets without secrets
2422 - CLEANUP: quic: Remaining fprintf() debug trace
2423 - MINOR: quic: moving code for QUIC loss detection
2424 - BUG/MINOR: quic: Missing time threshold multiplifier for loss delay computation
2425 - CI: github actions: update LibreSSL to 3.5.2
2426 - SCRIPTS: announce-release: add URL of dev packages
2427
Willy Tarreau3e69fcc2022-04-23 04:38:36 +020024282022/04/23 : 2.6-dev7
2429 - BUILD: calltrace: fix wrong include when building with TRACE=1
2430 - MINOR: ssl: Use DH parameters defined in RFC7919 instead of hard coded ones
2431 - MEDIUM: ssl: Disable DHE ciphers by default
2432 - BUILD: ssl: Fix compilation with OpenSSL 1.0.2
2433 - MINOR: mux-quic: split xfer and STREAM frames build
2434 - REORG: quic: use a dedicated module for qc_stream_desc
2435 - MINOR: quic-stream: use distinct tree nodes for quic stream and qcs
2436 - MINOR: quic-stream: add qc field
2437 - MEDIUM: quic: implement multi-buffered Tx streams
2438 - MINOR: quic-stream: refactor ack management
2439 - MINOR: quic: limit total stream buffers per connection
2440 - MINOR: mux-quic: implement immediate send retry
2441 - MINOR: cfg-quic: define tune.quic.conn-buf-limit
2442 - MINOR: ssl: Add 'show ssl providers' cli command and providers list in -vv option
2443 - REGTESTS: ssl: Update error messages that changed with OpenSSLv3.1.0-dev
2444 - BUG/MEDIUM: quic: Possible crash with released mux
2445 - BUG/MINOR: mux-quic: unsubscribe on release
2446 - BUG/MINOR: mux-quic: handle null timeout
2447 - BUG/MEDIUM: logs: fix http-client's log srv initialization
2448 - BUG/MINOR: mux-quic: remove dead code in qcs_xfer_data()
2449 - DEV: stream: Fix conn-streams dump in full stream message
2450 - CLEANUP: conn-stream: Rename cs_conn_close() and cs_conn_drain_and_close()
2451 - CLEANUP: conn-stream: Rename cs_applet_release()
2452 - MINOR: conn-stream: Rely on endpoint shutdown flags to shutdown an applet
2453 - BUG/MINOR: cache: Disable cache if applet creation fails
2454 - BUG/MINOR: backend: Don't allow to change backend applet
2455 - BUG/MEDIUM: conn-stream: Set back CS to RDY state when the appctx is created
2456 - MINOR: stream: Don't needlessly detach server endpoint on early client abort
2457 - MINOR: conn-stream: Make cs_detach_* private and use cs_destroy() from outside
2458 - MINOR: init: add the pre-check callback
2459 - MEDIUM: httpclient: change the init sequence
2460 - MEDIUM: httpclient/ssl: verify required
2461 - MINOR: httpclient/mworker: disable in the master process
2462 - MEDIUM: httpclient/ssl: verify is configurable and disabled by default
2463 - BUG/MAJOR: connection: Never remove connection from idle lists outside the lock
2464 - BUG/MEDIUM: mux-quic: fix stalled POST requets
2465 - BUG/MINOR: mux-quic: fix POST with abortonclose
2466 - MINOR: task: add a new task_instant_wakeup() function
2467 - MEDIUM: queue: use tasklet_instant_wakeup() to wake tasks
2468 - DOC: remove my name from the config doc
2469
Willy Tarreaua8b10652022-04-16 12:15:47 +020024702022/04/16 : 2.6-dev6
2471 - CLEANUP: connection: reduce the with of the mux dump output
2472 - CI: Update to actions/checkout@v3
2473 - CI: Update to actions/cache@v3
2474 - DOC: adjust QUIC instruction in INSTALL
2475 - BUG/MINOR: stats: define the description' background color in dark color scheme
2476 - BUILD: ssl: add USE_ENGINE and disable the openssl engine by default
2477 - BUILD: makefile: pass USE_ENGINE to cflags
2478 - BUILD: xprt-quic: replace ERR_func_error_string() with ERR_peek_error_func()
2479 - DOC: install: document the fact that SSL engines are not enabled by default
2480 - CI: github actions: disable -Wno-deprecated
2481 - BUILD: makefile: silence unbearable OpenSSL deprecation warnings
2482 - MINOR: sock: check configured limits at the sock layer, not the listener's
2483 - MINOR: connection: add a new flag CO_FL_FDLESS on fd-less connections
2484 - MINOR: connection: add conn_fd() to retrieve the FD only when it exists
2485 - MINOR: stream: only dump connections' FDs when they are valid
2486 - MINOR: connection: use conn_fd() when displaying connection errors
2487 - MINOR: connection: skip FD-based syscalls for FD-less connections
2488 - MEDIUM: connection: panic when calling FD-specific functions on FD-less conns
2489 - MINOR: mux-quic: properly set the flags and name fields
2490 - MINOR: connection: rearrange conn_get_src/dst to be a bit more extensible
2491 - MINOR: protocol: add get_src() and get_dst() at the protocol level
2492 - MINOR: quic-sock: provide a pair of get_src/get_dst functions
2493 - MEDIUM: ssl: improve retrieval of ssl_sock_ctx and SSL detection
2494 - MEDIUM: ssl: stop using conn->xprt_ctx to access the ssl_sock_ctx
2495 - MEDIUM: xprt-quic: implement get_ssl_sock_ctx()
2496 - MEDIUM: quic: move conn->qc into conn->handle
2497 - BUILD: ssl: fix build warning with previous changes to ssl_sock_ctx
2498 - BUILD: ssl: add an unchecked version of __conn_get_ssl_sock_ctx()
2499 - MINOR: ssl: refine the error testing for fc_err and fc_err_str
2500 - BUG/MINOR: sock: do not double-close the accepted socket on the error path
2501 - CI: cirrus: switch to FreeBSD-13.0
2502 - MINOR: log: add '~' to frontend when the transport layer provides SSL
2503 - BUILD/DEBUG: lru: fix printf format in debug code
2504 - BUILD: peers: adjust some printf format to silence cppcheck
2505 - BUILD/DEBUG: hpack-tbl: fix format string in standalone debug code
2506 - BUILD/DEBUG: hpack: use unsigned int in printf format in debug code
2507 - BUILD: halog: fix some incorrect signs in printf formats for integers
2508 - BUG/MINOR: h3: fix build with DEBUG_H3
2509 - BUG/MINOR: mux-h2: do not send GOAWAY if SETTINGS were not sent
2510 - BUG/MINOR: cache: do not display expired entries in "show cache"
2511 - BUG/MINOR: mux-h1: Don't release unallocated CS on error path
2512 - MINOR: applet: Make .init callback more generic
2513 - MINOR: conn-stream: Add flags to set the type of the endpoint
2514 - MEDIUM: applet: Set the appctx owner during allocation
2515 - MAJOR: conn-stream: Invert conn-stream endpoint and its context
2516 - REORG: Initialize the conn-stream by hand in cs_init()
2517 - MEDIUM: conn-stream: Add an endpoint structure in the conn-stream
2518 - MINOR: conn-stream: Move some CS flags to the endpoint
2519 - MEDIUM: conn-stream: Be able to pass endpoint to create a conn-stream
2520 - MEDIUM: conn-stream: Pre-allocate endpoint to create CS from muxes and applets
2521 - REORG: applet: Uninline appctx_new function
2522 - MAJOR: conn-stream: Share endpoint struct between the CS and the mux/applet
2523 - MEDIUM: conn-stream: Move remaning flags from CS to endpoint
2524 - MINOR: mux-pt: Rely on the endpoint instead of the conn-stream when possible
2525 - MINOR: conn-stream: Add ISBACK conn-stream flag
2526 - MINOR: conn-stream: Add header file with util functions related to conn-streams
2527 - MEDIUM: tree-wide: Use CS util functions instead of SI ones
2528 - MINOR: stream-int/txn: Move buffer for L7 retries in the HTTP transaction
2529 - CLEANUP: http-ana: Remove http_alloc_txn() function
2530 - MINOR: stream-int/stream: Move conn_retries counter in the stream
2531 - MINOR: stream: Simplify retries counter calculation
2532 - MEDIUM: stream-int/conn-stream: Move src/dst addresses in the conn-stream
2533 - MINOR: stream-int/conn-stream: Move half-close timeout in the conn-stream
2534 - MEDIUM: stream-int/stream: Use connect expiration instead of SI expiration
2535 - MINOR: stream-int/conn-stream: Report error to the CS instead of the SI
2536 - MEDIUM: conn-stream: Use endpoint error instead of conn-stream error
2537 - MINOR: channel: Use conn-streams as channel producer and consumer
2538 - MINOR: stream-int: Remove SI_FL_KILL_CON to rely on conn-stream endpoint only
2539 - MINOR: mux-h2/mux-fcgi: Fully rely on CS_EP_KILL_CONN
2540 - MINOR: stream-int: Remove SI_FL_NOLINGER/NOHALF to rely on CS flags instead
2541 - MINOR: stream-int: Remove SI_FL_DONT_WAKE to rely on CS flags instead
2542 - MINOR: stream-int: Remove SI_FL_INDEP_STR to rely on CS flags instead
2543 - MINOR: stream-int: Remove SI_FL_SRC_ADDR to rely on stream flags instead
2544 - CLEANUP: stream-int: Remove unused SI_FL_CLEAN_ABRT flag
2545 - MINOR: stream: Only save previous connection state for the server side
2546 - MEDIUM: stream-int: Move SI err_type in the stream
2547 - MEDIUM: stream-int/conn-stream: Move stream-interface state in the conn-stream
2548 - MINOR: stream-int/stream: Move si_retnclose() in the stream scope
2549 - MINOR: stream-int/backend: Move si_connect() in the backend scope
2550 - MINOR: stream-int/conn-stream: Move si_conn_ready() in the conn-stream scope
2551 - MINOR: conn-stream/connection: Move SHR/SHW modes in the connection scope
2552 - MEDIUM: conn-stream: Be prepared to fail to attach a cs to a mux
2553 - MEDIUM: stream-int/conn-stream: Handle I/O subscriptions in the conn-stream
2554 - MINOR: conn-stream: Rename CS functions dedicated to connections
2555 - MINOR: stream-int/conn-stream: Move si_shut* and si_chk* in conn-stream scope
2556 - MEDIUM: stream-int/conn-stream: Move si_ops in the conn-stream scope
2557 - MINOR: applet: Use the CS to register and release applets instead of SI
2558 - MINOR: connection: unconst mux's get_fist_cs() callback function
2559 - MINOR: stream-int/connection: Move conn_si_send_proxy() in the connection scope
2560 - REORG: stream-int: Export si_cs_recv(), si_cs_send() and si_cs_process()
2561 - REORG: stream-int: Move si_is_conn_error() in the header file
2562 - REORG: conn-stream: Move cs_shut* and cs_chk* in cs_utils
2563 - REORG: conn-stream: Move cs_app_ops in conn_stream.c
2564 - MINOR: stream-int-conn-stream: Move si_update_* in conn-stream scope
2565 - MINOR: stream-int/stream: Move si_update_both in stream scope
2566 - MEDIUM: conn-stream/applet: Add a data callback for applets
2567 - MINOR: stream-int/conn-stream: Move stream_int_read0() in the conn-stream scope
2568 - MINOR: stream-int/conn-stream: Move stream_int_notify() in the conn-stream scope
2569 - MINOR: stream-int/conn-stream: Move si_cs_io_cb() in the conn-stream scope
2570 - MINOR: stream-int/conn-stream: Move si_sync_recv/send() in conn-stream scope
2571 - MINOR: conn-stream: Move si_conn_cb in the conn-stream scope
2572 - MINOR: stream-int/conn-stream Move si_is_conn_error() in the conn-stream scope
2573 - MINOR: stream-int/conn-stream: Move si_alloc_ibuf() in the conn-stream scope
2574 - CLEANUP: stream-int: Remove unused SI functions
2575 - MEDIUM: stream-int/conn-stream: Move blocking flags from SI to CS
2576 - MEDIUM: stream-int/conn-stream: Move I/O functions to conn-stream
2577 - REORG: stream-int/conn-stream: Move remaining functions to conn-stream
2578 - MINOR: stream: Use conn-stream to report server error
2579 - MINOR: http-ana: Use CS to perform L7 retries
2580 - MEDIUM: stream: Don't use the stream-int anymore in process_stream()
2581 - MINOR: conn-stream: Remove the stream-interface from the conn-stream
2582 - DEV: flags: No longer dump SI flags
2583 - CLEANUP: tree-wide: Remove any ref to stream-interfaces
2584 - CLEANUP: conn-stream: Don't export internal functions
2585 - DOC: conn-stream: Add comments on functions of the new CS api
2586 - MEDIUM: check: Use a new conn-stream for each health-check run
2587 - CLEANUP: muxes: Remove MX_FL_CLEAN_ABRT flag
2588 - MINOR: conn-stream: Use a dedicated function to conditionally remove a CS
2589 - CLEANUP: conn-stream: rename cs_register_applet() to cs_applet_create()
2590 - MINOR: muxes: Improve show_fd callbacks to dump endpoint flags
2591 - MINOR: mux-h1: Rely on the endpoint instead of the conn-stream when possible
2592 - BUG/MINOR: quic: Avoid starting the mux if no ALPN sent by the client
2593 - BUILD: debug: mark the __start_mem_stats/__stop_mem_stats symbols as weak
2594 - BUILD: initcall: mark the __start_i_* symbols as weak, not global
2595 - BUG/MINOR: mux-h2: do not use timeout http-keep-alive on backend side
2596 - BUG/MINOR: mux-h2: use timeout http-request as a fallback for http-keep-alive
2597 - MINOR: muxes: Don't expect to have a mux without connection in destroy callback
2598 - MINOR: muxes: Don't handle proto upgrade for muxes not supporting it
2599 - MINOR: muxes: Don't expect to call release function with no mux defined
2600 - MINOR: conn-stream: Use unsafe functions to get conn/appctx in cs_detach_endp
2601 - BUG/MEDIUM: mux-h1: Don't request more room on partial trailers
2602 - BUILD: http-client: Avoid dead code when compiled without SSL support
2603 - BUG/MINOR: mux-quic: prevent a crash in session_free on mux.destroy
2604 - BUG/MINOR: quic-sock: do not double free session on conn init failure
2605 - BUG/MINOR: quic: fix return value for error in start
2606 - MINOR: quic: emit CONNECTION_CLOSE on app init error
2607 - BUILD: sched: workaround crazy and dangerous warning in Clang 14
2608 - BUILD: compiler: use a more portable set of asm(".weak") statements
2609 - BUG/MEDIUM: stream: do not abort connection setup too early
2610 - CLEANUP: extcheck: do not needlessly preset the server's address/port
2611 - MINOR: extcheck: fill in the server's UNIX socket address when known
2612 - BUG/MEDIUM: connection: Don't crush context pointer location if it is a CS
2613 - BUG/MEDIUM: quic: properly clean frames on stream free
2614 - BUG/MEDIUM: fcgi-app: Use http_msg flags to know if C-L header can be added
2615 - BUG/MEDIUM: compression: Don't forget to update htx_sl and http_msg flags
2616 - MINOR: tcp_sample: clarifying samples support per os, for further expansion.
2617 - MINOR: tcp_sample: extend support for get_tcp_info to macOs.
2618 - SCRIPTS: announce-release: update the doc's URL
2619 - DOC: lua: update a few doc URLs
2620 - SCRIPTS: announce-release: add shortened links to pending issues
2621
Willy Tarreaud3b4cd12022-04-09 11:31:40 +020026222022/04/09 : 2.6-dev5
2623 - DOC: reflect H2 timeout changes
2624 - BUG/MEDIUM: mux-fcgi: Properly handle return value of headers/trailers parsing
2625 - BUG/MEDIUM: mux-h1: Properly detect full buffer cases during message parsing
2626 - BUG/MINOR: log: Initialize the list element when allocating a new log server
2627 - BUG/MINOR: samples: add missing context names for sample fetch functions
2628 - MINOR: management: add some basic keyword dump infrastructure
2629 - MINOR: config: add a function to dump all known config keywords
2630 - MINOR: filters: extend flt_dump_kws() to dump to stdout
2631 - MINOR: services: extend list_services() to dump to stdout
2632 - MINOR: cli: add a new keyword dump function
2633 - MINOR: acl: add a function to dump the list of known ACL keywords
2634 - MINOR: samples: add a function to list register sample fetch keywords
2635 - MINOR: sample: list registered sample converter functions
2636 - MINOR: tools: add strordered() to check whether strings are ordered
2637 - MINOR: action: add a function to dump the list of actions for a ruleset
2638 - MINOR: config: alphanumerically sort config keywords output
2639 - MINOR: sample: alphanumerically sort sample & conv keyword dumps
2640 - MINOR: acl: alphanumerically sort the ACL dump
2641 - MINOR: cli: alphanumerically sort the dump of supported commands
2642 - MINOR: filters: alphabetically sort the list of filter names
2643 - MINOR: services: alphabetically sort service names
2644 - MEDIUM: httpclient/lua: be stricter with httpclient parameters
2645 - MINOR: ssl: split the cert commit io handler
2646 - MINOR: ssl: move the cert_exts and the CERT_TYPE enum
2647 - MINOR: ssl: simplify the certificate extensions array
2648 - MINOR: ssl: export ckch_inst_rebuild()
2649 - MINOR: ssl: add "crt" in the cert_exts array
2650 - MINOR: ssl/lua: CertCache.set() allows to update an SSL certificate file
2651 - BUILD: ssl/lua: CacheCert needs OpenSSL
2652 - DOC: lua: CertCache class documentation
2653 - BUG/MEDIUM: quic: do not use qcs from quic_stream on ACK parsing
2654 - MINOR: mux-quic: return qcs instance from qcc_get_qcs
2655 - MINOR: mux-quic: reorganize qcs free
2656 - MINOR: mux-quic: define release app-ops
2657 - BUG/MINOR: h3: release resources on close
2658 - BUG/MINOR: mux-quic: ensure to free all qcs on MUX release
2659 - CLEANUP: quic: complete comment on qcs_try_to_consume
2660 - MINOR: quic: implement stream descriptor for transport layer
2661 - MEDIUM: quic: move transport fields from qcs to qc_conn_stream
2662 - MEDIUM: mux-quic: remove qcs tree node
2663 - BUG/MINOR: cli/stream: fix "shutdown session" to iterate over all threads
2664 - DOC: management: add missing dot in 9.4.1
2665 - BUG/MAJOR: mux_pt: always report the connection error to the conn_stream
2666 - DOC: remove double blanks in configuration.txt
2667 - CI: github actions: update OpenSSL to 3.0.2
2668 - BUG/MEDIUM: quic: Possible crash in ha_quic_set_encryption_secrets()
2669 - CLEANUP: quic: Remove all atomic operations on quic_conn struct
2670 - CLEANUP: quic: Remove all atomic operations on packet number spaces
2671 - MEDIUM: quic: Send ACK frames asap
2672 - BUG/MINOR: quic: Missing probing packets when coalescing
2673 - BUG/MINOR: quic: Discard Initial packet number space only one time
2674 - MINOR: quic: Do not display any timer value from process_timer()
2675 - BUG/MINOR: quic: Do not probe from an already probing packet number space
2676 - BUG/MINOR: quic: Non duplicated frames upon fast retransmission
2677 - BUG/MINOR: quic: Too much prepared retransmissions due to anti-amplification
2678 - MINOR: quic: Useless call to SSL_CTX_set_default_verify_paths()
2679 - MINOR: quic: Add traces about list of frames
2680 - BUG/MINOR: h3: Missing wait event struct field initialization
2681 - BUG/MINOR: quic: QUIC TLS secrets memory leak
2682 - BUG/MINOR: quic: Missing ACK range deallocations
2683 - BUG/MINOR: quic: Missing TX packet deallocations
2684 - CLEANUP: hpack: be careful about integer promotion from uint8_t
2685 - OPTIM: hpack: read 32 bits at once when possible.
2686 - MEDIUM: ssl: allow loading of a directory with the ca-file directive
2687 - BUG/MINOR: ssl: continue upon error when opening a directory w/ ca-file
2688 - MINOR: ssl: ca-file @system-ca loads the system trusted CA
2689 - DOC: configuration: add the ca-file changes
2690 - MINOR: sample: converter: Add add_item convertor
2691 - BUG/MINOR: ssl: handle X509_get_default_cert_dir() returning NULL
2692 - BUG/MINOR: ssl/cli: Remove empty lines from CLI output
2693 - MINOR: httpclient: enable request buffering
2694 - MEDIUM: httpclient: enable l7-retry
2695 - BUG/MINOR: httpclient: end callback in applet release
2696 - MINOR: quic: Add draining connection state.
2697 - MINOR: quic: Add closing connection state
2698 - BUG/MEDIUM: quic: ensure quic-conn survives to the MUX
2699 - CLEANUP: quic: use static qualifer on quic_close
2700 - CLEANUP: mux-quic: remove unused QC_CF_CC_RECV
2701 - BUG/MINOR: fix memleak on quic-conn streams cleaning
2702 - MINOR: mux-quic: factorize conn-stream attach
2703 - MINOR: mux-quic: adjust timeout to accelerate closing
2704 - MINOR: mux-quic: define is_active app-ops
2705 - MINOR: mux-quic: centralize send operations in qc_send
2706 - MEDIUM: mux-quic: report CO_FL_ERROR on send
2707 - MEDIUM: mux-quic: report errors on conn-streams
2708 - MEDIUM: quic: report closing state for the MUX
2709 - BUG/MINOR: fcgi-app: Don't add C-L header on response to HEAD requests
2710 - BUG/MEDIUM: stats: Be sure to never set EOM flag on an empty HTX message
2711 - BUG/MEDIUM: hlua: Don't set EOM flag on an empty HTX message in HTTP applet
2712 - BUG/MEDIUM: promex: Be sure to never set EOM flag on an empty HTX message
2713 - BUG/MEDIUM: mux-h1: Set outgoing message to DONE when payload length is reached
2714 - BUG/MINOR: http_client: Don't add input data on an empty request buffer
2715 - BUG/MEDIUM: http-conv: Fix url_enc() to not crush const samples
2716 - BUG/MEDIUM: http-act: Don't replace URI if path is not found or invalid
2717 - CLEANUP: mux-quic: remove uneeded TODO in qc_detach
2718 - BUG/MEDIUM: mux-quic: properly release conn-stream on detach
2719 - BUG/MINOR: quic: set the source not the destination address on accept()
2720 - BUG/MEDIUM: quic: Possible crash from quic_free_arngs()
2721 - MINOR: quic_tls: Add reusable cipher contexts to QUIC TLS contexts
2722 - MINOR: quic_tls: Stop hardcoding cipher IV lengths
2723 - CLEANUP: quic: Do not set any cipher/group from ssl_quic_initial_ctx()
2724 - MINOR: quic: Add short packet key phase bit values to traces
2725 - MINOR: quic_tls: Make key update use of reusable cipher contexts
2726 - BUG/MINOR: opentracing: setting the return value in function flt_ot_var_set()
2727 - BUG/BUILD: opentracing: fixed OT_DEFINE variable setting
2728 - EXAMPLES: opentracing: refined shell scripts for testing filter performance
2729 - DOC: opentracing: corrected comments in function descriptions
2730 - CLEANUP: opentracing: removed unused function flt_ot_var_unset()
2731 - CLEANUP: opentracing: removed unused function flt_ot_var_get()
2732 - Revert "MINOR: opentracing: change the scope of the variable 'ot.uuid' from 'sess' to 'txn'"
2733 - MINOR: opentracing: only takes the variables lock on shared entries
2734 - CLEANUP: opentracing: added flt_ot_smp_init() function
2735 - CLEANUP: opentracing: added variable to store variable length
2736 - MINOR: opentracing: improved normalization of context variable names
2737 - DEBUG: opentracing: show return values of all functions in the debug output
2738 - CLEANUP: opentracing: added FLT_OT_PARSE_INVALID_enum enum
2739 - DEBUG: opentracing: display the contents of the err variable after setting
2740 - MAJOR: opentracing: reenable usage of vars to transmit opentracing context
2741 - Revert "BUILD: opentracing: display warning in case of using OT_USE_VARS at compile time"
2742 - MEDIUM: global: Add a "close-spread-time" option to spread soft-stop on time window
2743
Willy Tarreau0541c2b2022-03-26 08:31:33 +010027442022/03/26 : 2.6-dev4
2745 - BUG/MEDIUM: httpclient: don't consume data before it was analyzed
2746 - CLEANUP: htx: remove unused co_htx_remove_blk()
2747 - BUG/MINOR: httpclient: consume partly the blocks when necessary
2748 - BUG/MINOR: httpclient: remove the UNUSED block when parsing headers
2749 - BUG/MEDIUM: httpclient: must manipulate head, not first
2750 - REGTESTS: fix the race conditions in be2hex.vtc
2751 - BUG/MEDIUM: quic: Blocked STREAM when retransmitted
2752 - BUG/MAJOR: quic: Possible crash with full congestion control window
2753 - BUG/MINOR: httpclient/lua: stuck when closing without data
2754 - BUG/MEDIUM: applet: Don't call .release callback function twice
2755 - BUG/MEDIUM: cli/debug: Properly get the stream-int in all debug I/O handlers
2756 - BUG/MEDIUM: sink: Properly get the stream-int in appctx callback functions
2757 - DEV: udp: switch parser to getopt() instead of positional arguments
2758 - DEV: udp: add support for random packet corruption
2759 - MINOR: server: export server_parse_sni_expr() function
2760 - BUG/MINOR: httpclient: send the SNI using the host header
2761 - BUILD: httpclient: fix build without SSL
2762 - BUG/MINOR: server/ssl: free the SNI sample expression
2763 - BUG/MINOR: logs: fix logsrv leaks on clean exit
2764 - MINOR: actions: add new function free_act_rule() to free a single rule
2765 - BUG/MINOR: tcp-rules: completely free incorrect TCP rules on error
2766 - BUG/MINOR: http-rules: completely free incorrect TCP rules on error
2767 - BUG/MINOR: httpclient: only check co_data() instead of HTTP_MSG_DATA
2768 - BUG/MINOR: httpclient: process the response when received before the end of the request
2769 - BUG/MINOR: httpclient: CF_SHUTW_NOW should be tested with channel_is_empty()
2770 - CI: github actions: switch to LibreSSL-3.5.1
2771 - BUG/MEDIUM: mux-h1: only turn CO_FL_ERROR to CS_FL_ERROR with empty ibuf
2772 - BUG/MEDIUM: stream-int: do not rely on the connection error once established
2773 - BUG/MEDIUM: trace: avoid race condition when retrieving session from conn->owner
2774 - MEDIUM: mux-h2: slightly relax timeout management rules
2775 - BUG/MEDIUM: mux-h2: make use of http-request and keep-alive timeouts
2776 - BUG/MINOR: rules: Initialize the list element when allocating a new rule
2777 - BUG/MINOR: http-rules: Don't free new rule on allocation failure
2778 - DEV: coccinelle: Fix incorrect replacement in ist.cocci
2779 - CLEANUP: Reapply ist.cocci with `--include-headers-for-types --recursive-includes`
2780 - DEV: coccinelle: Add a new pattern to ist.cocci
2781 - CLEANUP: Reapply ist.cocci
2782 - REGTESTS: Do not use REQUIRE_VERSION for HAProxy 2.5+
2783 - MINOR: quic: Code factorization (TX buffer reuse)
2784 - CLEANUP: quic: "largest_acked_pn" pktns struc member moving
2785 - MEDIUM: quic: Limit the number of ACK ranges
2786 - MEDIUM: quic: Rework of the TX packets memory handling
2787 - BUG/MINOR: quic: Possible crash in parse_retry_token()
2788 - BUG/MINOR: quic: Possible leak in quic_build_post_handshake_frames()
2789 - BUG/MINOR: quic: Unsent frame because of qc_build_frms()
2790 - BUG/MINOR: mux-quic: Access to empty frame list from qc_send_frames()
2791 - BUG/MINOR: mux-quic: Missing I/O handler events initialization
2792 - BUG/MINOR: quic: Missing TX packet initializations
2793 - BUG/MINOR: quic: 1RTT packets ignored after mux was released
2794 - BUG/MINOR: quic: Incorrect peer address validation
2795 - BUG/MINOR: quic: Non initialized variable in quic_build_post_handshake_frames()
2796 - BUG/MINOR: quic: Wrong TX packet related counters handling
2797 - MEDIUM: mqtt: support mqtt_is_valid and mqtt_field_value converters for MQTTv3.1
2798 - DOC: config: Explictly add supported MQTT versions
2799 - MINOR: quic: Add traces about stream TX buffer consumption
2800 - MINOR: quic: Add traces in qc_set_timer() (scheduling)
2801 - CLEANUP: mux-quic: change comment style to not mess with git conflict
2802 - CLEANUP: mux-quic: adjust comment for coding-style
2803 - MINOR: mux-quic: complete trace when stream is not found
2804 - MINOR: mux-quic: add comments for send functions
2805 - MINOR: mux-quic: use shorter name for flow-control fields
2806 - MEDIUM: mux-quic: respect peer bidirectional stream data limit
2807 - MEDIUM: mux-quic: respect peer connection data limit
2808 - MINOR: mux-quic: support MAX_STREAM_DATA frame parsing
2809 - MINOR: mux-quic: support MAX_DATA frame parsing
2810 - BUILD: stream-int: avoid a build warning when DEBUG is empty
2811 - BUG/MINOR: quic: Wrong buffer length passed to generate_retry_token()
2812 - BUG/MINOR: tools: fix url2sa return value with IPv4
2813 - MINOR: mux-quic: convert fin on push-frame as boolean
2814 - BUILD: quic: add missing includes
2815 - REORG: quic: use a dedicated quic_loss.c
2816 - MINOR: mux-quic: declare the qmux trace module
2817 - MINOR: mux-quic: replace printfs by traces
2818 - MINOR: mux-quic: add trace event for frame sending
2819 - MINOR: mux-quic: add trace event for qcs_push_frame
2820 - MINOR: mux-quic: activate qmux traces on stdout via macro
2821 - BUILD: qpack: fix unused value when not using DEBUG_HPACK
2822 - CLEANUP: qpack: suppress by default stdout traces
2823 - CLEANUP: h3: suppress by default stdout traces
2824 - BUG/MINOR: tools: url2sa reads too far when no port nor path
2825
Willy Tarreaubc8b7a12022-03-11 18:09:24 +010028262022/03/11 : 2.6-dev3
2827 - DEBUG: rename WARN_ON_ONCE() to CHECK_IF()
2828 - DEBUG: improve BUG_ON output message accuracy
2829 - DEBUG: implement 4 levels of choices between warn and crash.
2830 - DEBUG: add two new macros to enable debugging in hot paths
2831 - DEBUG: buf: replace some sensitive BUG_ON() with BUG_ON_HOT()
2832 - DEBUG: buf: add BUG_ON_HOT() to most buffer management functions
2833 - MINOR: channel: don't use co_set_data() to decrement output
2834 - DEBUG: channel: add consistency checks using BUG_ON_HOT() in some key functions
2835 - MINOR: conn-stream: Improve API to have safe/unsafe accessors
2836 - MEDIUM: tree-wide: Use unsafe conn-stream API when it is relevant
2837 - CLEANUP: stream-int: Make si_cs_send() function static
2838 - REORG: stream-int: Uninline si_sync_recv() and make si_cs_recv() private
2839 - BUG/MEDIUM: mux-fcgi: Don't rely on SI src/dst addresses for FCGI health-checks
2840 - BUG/MEDIUM: htx: Fix a possible null derefs in htx_xfer_blks()
2841 - REGTESTS: fix the race conditions in normalize_uri.vtc
2842 - DEBUG: stream-int: Fix BUG_ON used to test appctx in si_applet_ops callbacks
2843 - BUILD: debug: fix build warning on older compilers around DEBUG_STRICT_ACTION
2844 - CLEANUP: connection: Indicate unreachability to the compiler in conn_recv_proxy
2845 - MINOR: connection: Transform safety check in PROXYv2 parsing into BUG_ON()
2846 - DOC: install: it's DEBUG_CFLAGS, not DEBUG, which is set to -g
2847 - DOC: install: describe the DEP variable
2848 - DOC: install: describe how to choose options used in the DEBUG variable
2849 - MINOR: queue: Replace if() + abort() with BUG_ON()
2850 - CLEANUP: adjust indentation in bidir STREAM handling function
2851 - MINOR: quic: simplify copy of STREAM frames to RX buffer
2852 - MINOR: quic: handle partially received buffered stream frame
2853 - MINOR: mux-quic: define flag for last received frame
2854 - BUG/MINOR: quic: support FIN on Rx-buffered STREAM frames
2855 - MEDIUM: quic: rearchitecture Rx path for bidirectional STREAM frames
2856 - REGTESTS: fix the race conditions in secure_memcmp.vtc
2857 - CLEANUP: stream: Remove useless tests on conn-stream in stream_dump()
2858 - BUILD: ssl: another build warning on LIBRESSL_VERSION_NUMBER
2859 - MINOR: quic: Ensure PTO timer is not set in the past
2860 - MINOR: quic: Post handshake I/O callback switching
2861 - MINOR: quic: Drop the packets of discarded packet number spaces
2862 - CLEANUP: quic: Useless tests in qc_try_rm_hp()
2863 - CLEANUP: quic: Indentation fix in qc_prep_pkts()
2864 - MINOR: quic: Assemble QUIC TLS flags at the same level
2865 - BUILD: conn_stream: avoid null-deref warnings on gcc 6
2866 - BUILD: connection: do not declare register_mux_proto() inline
2867 - BUILD: http_rules: do not declare http_*_keywords_registre() inline
2868 - BUILD: trace: do not declare trace_registre_source() inline
2869 - BUILD: tcpcheck: do not declare tcp_check_keywords_register() inline
2870 - DEBUG: reduce the footprint of BUG_ON() calls
2871 - BUG/MEDIUM: httpclient/lua: infinite appctx loop with POST
2872 - BUG/MINOR: pool: always align pool_heads to 64 bytes
2873 - DEV: udp: add a tiny UDP proxy for testing
2874 - DEV: udp: implement pseudo-random reordering/loss
2875 - DEV: udp: add an optional argument to set the prng seed
2876 - BUG/MINOR: quic: fix segfault on CC if mux uninitialized
2877 - BUG/MEDIUM: pools: fix ha_free() on area in the process of being freed
2878 - CLEANUP: tree-wide: remove a few rare non-ASCII chars
2879 - CI: coverity: simplify debugging options
2880 - CLEANUP: quic: complete ABORT_NOW with a TODO comment
2881 - MINOR: quic: qc_prep_app_pkts() implementation
2882 - MINOR: quic: Send short packet from a frame list
2883 - MINOR: quic: Make qc_build_frms() build ack-eliciting frames from a list
2884 - MINOR: quic: Export qc_send_app_pkts()
2885 - MINOR: mux-quic: refactor transport parameters init
2886 - MINOR: mux-quic: complete functions to detect stream type
2887 - MINOR: mux-quic: define new unions for flow-control fields
2888 - MEDIUM: mux-quic: use direct send transport API for STREAMs
2889 - MINOR: mux-quic: retry send opportunistically for remaining frames
2890 - MEDIUM: mux-quic: implement MAX_STREAMS emission for bidir streams
2891 - BUILD: fix kFreeBSD build.
2892 - MINOR: quic: Retry on qc_build_pkt() failures
2893 - BUG/MINOR: quic: Missing recovery start timer reset
2894 - CLEANUP: quic: Remove QUIC path manipulations out of the congestion controller
2895 - MINOR: quic: Add a "slow start" callback to congestion controller
2896 - MINOR: quic: Persistent congestion detection outside of controllers
2897 - CLEANUP: quic: Remove useless definitions from quic_cc_event struct
2898 - BUG/MINOR: quic: Confusion betwen "in_flight" and "prep_in_flight" in quic_path_prep_data()
2899 - MINOR: quic: More precise window update calculation
2900 - CLEANUP: quic: Remove window redundant variable from NewReno algorithm state struct
2901 - MINOR: quic: Add quic_max_int_by_size() function
2902 - BUG/MAJOR: quic: Wrong quic_max_available_room() returned value
2903 - MINOR: pools: add a new global option "no-memory-trimming"
2904 - BUG/MINOR: add missing modes in proxy_mode_str()
2905 - BUG/MINOR: cli: shows correct mode in "show sess"
2906 - BUG/MEDIUM: quic: do not drop packet on duplicate stream/decoding error
2907 - MINOR: stats: Add dark mode support for socket rows
2908 - BUILD: fix recent build breakage of freebsd caused by kFreeBSD build fix
2909 - BUG/MINOR: httpclient: Set conn-stream/channel EOI flags at the end of request
2910 - BUG/MINOR: hlua: Set conn-stream/channel EOI flags at the end of request
2911 - BUG/MINOR: stats: Set conn-stream/channel EOI flags at the end of request
2912 - BUG/MINOR: cache: Set conn-stream/channel EOI flags at the end of request
2913 - BUG/MINOR: promex: Set conn-stream/channel EOI flags at the end of request
2914 - BUG/MEDIUM: stream: Use the front analyzers for new listener-less streams
2915 - DEBUG: cache: Update underlying buffer when loading HTX message in cache applet
2916 - BUG/MEDIUM: mcli: Properly handle errors and timeouts during reponse processing
2917 - DEBUG: stream: Add the missing descriptions for stream trace events
2918 - DEBUG: stream: Fix stream trace message to print response buffer state
2919 - MINOR: proxy: Store monitor_uri as a `struct ist`
2920 - MINOR: proxy: Store fwdfor_hdr_name as a `struct ist`
2921 - MINOR: proxy: Store orgto_hdr_name as a `struct ist`
2922 - MEDIUM: proxy: Store server_id_hdr_name as a `struct ist`
2923 - CLEANUP: fcgi: Replace memcpy() on ist by istcat()
2924 - CLEANUP: fcgi: Use `istadv()` in `fcgi_strm_send_params`
2925 - BUG/MAJOR: mux-pt: Always destroy the backend connection on detach
2926 - DOC: sample fetch methods: move distcc_* to the right locations
2927 - MINOR: rules: record the last http/tcp rule that gave a final verdict
2928 - MINOR: stream: add "last_rule_file" and "last_rule_line" samples
2929 - BUG/MINOR: session: fix theoretical risk of memleak in session_accept_fd()
2930 - MINOR: quic: Add max_idle_timeout advertisement handling
2931 - MEDIUM: quic: Remove the QUIC connection reference counter
2932 - BUG/MINOR: quic: ACK_REQUIRED and ACK_RECEIVED flag collision
2933 - BUG/MINOR: quic: Missing check when setting the anti-amplification limit as reached
2934 - MINOR: quic: Add a function to compute the current PTO
2935 - MEDIUM: quic: Implement the idle timeout feature
2936 - BUG/MEDIUM: quic: qc_prep_app_pkts() retries on qc_build_pkt() failures
2937 - CLEANUP: quic: Comments fix for qc_prep_(app)pkts() functions
2938 - MINOR: mux-quic: prevent push frame for unidir streams
2939 - MINOR: mux-quic: improve opportunistic retry sending for STREAM frames
2940 - MINOR: quic: implement sending confirmation
2941 - MEDIUM: mux-quic: improve bidir STREAM frames sending
2942 - MEDIUM: check: do not auto configure SSL/PROXY for dynamic servers
2943 - REGTESTS: server: test SSL/PROXY with checks for dynamic servers
2944 - MEDIUM: server: remove experimental-mode for dynamic servers
2945 - BUG/MINOR: buffer: fix debugging condition in b_peek_varint()
2946
Willy Tarreau3b1d1902022-02-25 17:12:11 +010029472022/02/25 : 2.6-dev2
2948 - DOC: management: rework the Master CLI section
2949 - DOC: management: add expert and experimental mode in 9.4.1
2950 - CLEANUP: cleanup a commentary in pcli_parse_request()
2951 - BUG/MINOR: mworker/cli: don't display help on master applet
2952 - MINOR: mworker/cli: mcli-debug-mode enables every command
2953 - MINOR: mworker/cli: add flags in the prompt
2954 - BUG/MINOR: httpclient: Revisit HC request and response buffers allocation
2955 - BUG/MEDIUM: httpclient: Xfer the request when the stream is created
2956 - MINOR: httpclient: Don't limit data transfer to 1024 bytes
2957 - BUILD: ssl: adjust guard for X509_get_X509_PUBKEY(x)
2958 - REGTESTS: ssl: skip show_ssl_ocspresponse.vtc when BoringSSL is used
2959 - MINOR: quic: Do not modify a marked as consumed datagram
2960 - MINOR: quic: Wrong datagram buffer passed to quic_lstnr_dgram_dispatch()
2961 - MINOR: quic: Remove a useless test in quic_get_dgram_dcid()
2962 - BUG/MINOR: ssl: Remove empty lines from "show ssl ocsp-response <id>" output
2963 - CLEANUP: ssl: Remove unused ssl_sock_create_cert function
2964 - MINOR: ssl: Use high level OpenSSL APIs in sha2 converter
2965 - MINOR: ssl: Remove EC_KEY related calls when preparing SSL context
2966 - REGTESTS: ssl: Add test for "curves" and "ecdhe" SSL options
2967 - MINOR: ssl: Remove EC_KEY related calls when creating a certificate
2968 - REGTESTS: ssl: Add test for "generate-certificates" SSL option
2969 - MINOR: ssl: Remove call to SSL_CTX_set_tlsext_ticket_key_cb with OpenSSLv3
2970 - MINOR: ssl: Remove call to HMAC_Init_ex with OpenSSLv3
2971 - MINOR: h3: hardcode the stream id of control stream
2972 - MINOR: mux-quic: remove quic_transport_params_update
2973 - MINOR: quic: rename local tid variable
2974 - MINOR: quic: remove unused xprt rcv_buf operation
2975 - MINOR: quic: take out xprt snd_buf operation
2976 - CI: enable QUIC for Coverity scan
2977 - BUG/MINOR: mworker: does not erase the pidfile upon reload
2978 - MINOR: ssl: Remove call to ERR_func_error_string with OpenSSLv3
2979 - MINOR: ssl: Remove call to ERR_load_SSL_strings with OpenSSLv3
2980 - REGTESTS: ssl: Add tests for DH related options
2981 - MINOR: ssl: Create HASSL_DH wrapper structure
2982 - MINOR: ssl: Add ssl_sock_get_dh_from_bio helper function
2983 - MINOR: ssl: Factorize ssl_get_tmp_dh and append a cbk to its name
2984 - MINOR: ssl: Add ssl_sock_set_tmp_dh helper function
2985 - MINOR: ssl: Add ssl_sock_set_tmp_dh_from_pkey helper function
2986 - MINOR: ssl: Add ssl_new_dh_fromdata helper function
2987 - MINOR: ssl: Build local DH of right size when needed
2988 - MINOR: ssl: Set default dh size to 2048
2989 - MEDIUM: ssl: Replace all DH objects by EVP_PKEY on OpenSSLv3 (via HASSL_DH type)
2990 - MINOR: ssl: Remove calls to SSL_CTX_set_tmp_dh_callback on OpenSSLv3
2991 - MINOR: quic: Remove an RX buffer useless lock
2992 - MINOR: quic: Variable used before being checked in ha_quic_add_handshake_data()
2993 - MINOR: quic: EINTR error ignored
2994 - MINOR: quic: Potential overflow expression in qc_parse_frm()
2995 - MINOR: quic: Possible overflow in qpack_get_varint()
2996 - CLEANUP: h3: Unreachable target in h3_uqs_init()
2997 - MINOR: quic: Possible memleak in qc_new_conn()
2998 - MINOR: quic: Useless statement in quic_crypto_data_cpy()
2999 - BUG/MEDIUM: pools: ensure items are always large enough for the pool_cache_item
3000 - BUG/MINOR: pools: always flush pools about to be destroyed
3001 - CLEANUP: pools: don't needlessly set a call mark during refilling of caches
3002 - DEBUG: pools: add extra sanity checks when picking objects from a local cache
3003 - DEBUG: pools: let's add reverse mapping from cache heads to thread and pool
3004 - DEBUG: pools: replace the link pointer with the caller's address on pool_free()
3005 - BUG/MAJOR: sched: prevent rare concurrent wakeup of multi-threaded tasks
3006 - MINOR: quic: use a global dghlrs for each thread
3007 - BUG/MEDIUM: quic: fix crash on CC if mux not present
3008 - MINOR: qpack: fix typo in trace
3009 - BUG/MINOR: quic: fix FIN stream signaling
3010 - BUG/MINOR: h3: fix the header length for QPACK decoding
3011 - MINOR: h3: remove transfer-encoding header
3012 - MINOR: h3: add documentation on h3_decode_qcs
3013 - MINOR: h3: set properly HTX EOM/BODYLESS on HEADERS parsing
3014 - MINOR: mux-quic: implement rcv_buf
3015 - MINOR: mux-quic: set EOS on rcv_buf
3016 - MINOR: h3: set CS_FL_NOT_FIRST
3017 - MINOR: h3: report frames bigger than rx buffer
3018 - MINOR: h3: extract HEADERS parsing in a dedicated function
3019 - MINOR: h3: implement DATA parsing
3020 - MINOR: quic: Wrong smoothed rtt initialization
3021 - MINOR: quic: Wrong loss delay computation
3022 - MINOR: quic: Code never reached in qc_ssl_sess_init()
3023 - MINOR: quic: ha_quic_set_encryption_secrets without server specific code
3024 - MINOR: quic: Avoid warning about NULL pointer dereferences
3025 - MINOR: quic: Useless test in quic_lstnr_dghdlr()
3026 - MINOR: quic: Non checked returned value for cs_new() in hq_interop_decode_qcs()
3027 - MINOR: h3: Dead code in h3_uqs_init()
3028 - MINOR: quic: Non checked returned value for cs_new() in h3_decode_qcs()
3029 - MINOR: quic: Possible frame parsers array overrun
3030 - MINOR: quic: Do not retransmit too much packets.
3031 - MINOR: quic: Move quic_rxbuf_pool pool out of xprt part
3032 - MINOR: h3: report error on HEADERS/DATA parsing
3033 - BUG/MINOR: jwt: Double free in deinit function
3034 - BUG/MINOR: jwt: Missing pkey free during cleanup
3035 - BUG/MINOR: jwt: Memory leak if same key is used in multiple jwt_verify calls
3036 - BUG/MINOR: httpclient/cli: display junk characters in vsn
3037 - MINOR: h3: remove unused return value on decode_qcs
3038 - BUG/MAJOR: http/htx: prevent unbounded loop in http_manage_server_side_cookies
3039 - BUG/MAJOR: spoe: properly detach all agents when releasing the applet
3040 - REGTESTS: server: close an occasional race on dynamic_server_ssl.vtc
3041 - REGTESTS: peers: leave a bit more time to peers to synchronize
3042 - BUG/MEDIUM: h2/hpack: fix emission of HPACK DTSU after settings change
3043 - BUG/MINOR: mux-h2: update the session's idle delay before creating the stream
3044 - BUG/MINOR: httpclient: reinit flags in httpclient_start()
3045 - BUG/MINOR: mailers: negotiate SMTP, not ESMTP
3046 - MINOR: httpclient: sets an alternative destination
3047 - MINOR: httpclient/lua: add 'dst' optionnal field
3048 - BUG/MINOR: ssl: Add missing return value check in ssl_ocsp_response_print
3049 - BUG/MINOR: ssl: Fix leak in "show ssl ocsp-response" CLI command
3050 - BUG/MINOR: ssl: Missing return value check in ssl_ocsp_response_print
3051 - CLEANUP: httpclient/cli: fix indentation alignment of the help message
3052 - BUG/MINOR: tools: url2sa reads ipv4 too far
3053 - BUG/MEDIUM: httpclient: limit transfers to the maximum available room
3054 - DEBUG: buffer: check in __b_put_blk() whether the buffer room is respected
3055 - MINOR: mux-quic: fix a possible null dereference in qc_timeout_task
3056 - BUG/MEDIUM: htx: Be sure to have a buffer to perform a raw copy of a message
3057 - BUG/MEDIUM: mux-h1: Don't wake h1s if mux is blocked on lack of output buffer
3058 - BUG/MAJOR: mux-h2: Be sure to always report HTX parsing error to the app layer
3059 - DEBUG: stream-int: Check CS_FL_WANT_ROOM is not set with an empty input buffer
3060 - MINOR: quic: do not modify offset node if quic_rx_strm_frm in tree
3061 - MINOR: h3: fix compiler warning variable set but not used
3062 - MINOR: mux-quic: fix uninitialized return on qc_send
3063 - MINOR: quic: fix handling of out-of-order received STREAM frames
3064 - MINOR: pools: mark most static pool configuration variables as read-mostly
3065 - CLEANUP: pools: remove the now unused pool_is_crowded()
3066 - REGTESTS: fix the race conditions in 40be_2srv_odd_health_checks
3067 - BUG/MEDIUM: stream: Abort processing if response buffer allocation fails
3068 - MINOR: httpclient/lua: ability to set a server timeout
3069 - BUG/MINOR: httpclient/lua: missing pop for new timeout parameter
3070 - DOC: httpclient/lua: fix the type of the dst parameter
3071 - CLEANUP: httpclient: initialize the client in stage INIT not REGISTER
3072 - CLEANUP: muxes: do not use a dynamic trash in list_mux_protos()
3073 - CLEANUP: vars: move the per-process variables initialization to vars.c
3074 - CLEANUP: init: remove the ifdef on HAPROXY_MEMMAX
3075 - MINOR: pools: disable redundant poisonning on pool_free()
3076 - MINOR: pools: introduce a new pool_debugging global variable
3077 - MINOR: pools: switch the fail-alloc test to runtime only
3078 - MINOR: pools: switch DEBUG_DONT_SHARE_POOLS to runtime
3079 - MINOR: pools: add a new debugging flag POOL_DBG_COLD_FIRST
3080 - MINOR: pools: add a new debugging flag POOL_DBG_INTEGRITY
3081 - MINOR: pools: make the global pools a runtime option.
3082 - MEDIUM: pools: replace CONFIG_HAP_POOLS with a runtime "NO_CACHE" flag.
3083 - MINOR: pools: store the allocated size for each pool
3084 - MINOR: pools: get rid of POOL_EXTRA
3085 - MINOR: pools: replace DEBUG_POOL_TRACING with runtime POOL_DBG_CALLER
3086 - MINOR: pools: replace DEBUG_MEMORY_POOLS with runtime POOL_DBG_TAG
3087 - MINOR: pools: add a debugging flag for memory poisonning option
3088 - MEDIUM: initcall: move STG_REGISTER earlier
3089 - MEDIUM: init: split the early initialization in its own function
3090 - MINOR: init: extract args parsing to their own function
3091 - MEDIUM: init: handle arguments earlier
3092 - MINOR: pools: delegate parsing of command line option -dM to a new function
3093 - MINOR: pools: support setting debugging options using -dM
3094 - BUILD: makefile: enable both DEBUG_STRICT and DEBUG_MEMORY_POOLS by default
3095 - CI: github: enable pool debugging by default
3096 - DOC: Fix usage/examples of deprecated ACLs
3097 - DOC: internal: update the pools API to mention boot-time settings
3098 - DOC: design: add design thoughts for later simplification of the pools
3099 - DOC: design: commit the temporary design notes on thread groups
3100 - MINOR: stream-int: Handle appctx case first when releasing the endpoint
3101 - MINOR: connection: Be prepared to handle conn-stream with no connection
3102 - MINOR: stream: Handle appctx case first when creating a new stream
3103 - MINOR: connection: Add a function to detach a conn-stream from the connection
3104 - MINOR: stream-int: Add function to reset a SI endpoint
3105 - MINOR: stream-int: Add function to attach a connection to a SI
3106 - MINOR: stream-int: Be able to allocate a CS without connection
3107 - MEDIUM: stream: No longer release backend conn-stream on connection retry
3108 - MEDIUM: stream: Allocate backend CS when the stream is created
3109 - REORG: conn_stream: move conn-stream stuff in dedicated files
3110 - MEDIUM: conn-stream: No longer access connection field directly
3111 - MEDIUM: conn-stream: Be prepared to use an appctx as conn-stream endpoint
3112 - MAJOR: conn_stream/stream-int: move the appctx to the conn-stream
3113 - MEDIUM: applet: Set the conn-stream as appctx owner instead of the stream-int
3114 - MEDIUM: conn_stream: Add a pointer to the app object into the conn-stream
3115 - MINOR: stream: Add pointer to front/back conn-streams into stream struct
3116 - MINOR: stream: Slightly rework stream_new to separate CS/SI initialization
3117 - MINOR: stream-int: Always access the stream-int via the conn-stream
3118 - MINOR: backend: Always access the stream-int via the conn-stream
3119 - MINOR: stream: Always access the stream-int via the conn-stream
3120 - MINOR: http-ana: Always access the stream-int via the conn-stream
3121 - MINOR: cli: Always access the stream-int via the conn-stream
3122 - MINOR: log: Always access the stream-int via the conn-stream
3123 - MINOR: frontend: Always access the stream-int via the conn-stream
3124 - MINOR: proxy: Always access the stream-int via the conn-stream
3125 - MINOR: peers: Always access the stream-int via the conn-stream
3126 - MINOR: debug: Always access the stream-int via the conn-stream
3127 - MINOR: hlua: Always access the stream-int via the conn-stream
3128 - MINOR: cache: Always access the stream-int via the conn-stream
3129 - MINOR: dns: Always access the stream-int via the conn-stream
3130 - MINOR: http-act: Always access the stream-int via the conn-stream
3131 - MINOR: httpclient: Always access the stream-int via the conn-stream
3132 - MINOR: tcp-act: Always access the stream-int via the conn-stream
3133 - MINOR: sink: Always access the stream-int via the conn-stream
3134 - MINOR: conn-stream: Rename cs_detach() to cs_detach_endp()
3135 - CLEANUP: conn-stream: Don't export conn-stream pool
3136 - MAJOR: stream/conn_stream: Move the stream-interface into the conn-stream
3137 - CLEANUP: stream-int: rename si_reset() to si_init()
3138 - MINOR: conn-stream: Release a CS when both app and endp are detached
3139 - MINOR: stream: Don't destroy conn-streams but detach app and endp
3140 - MAJOR: check: Use a persistent conn-stream for health-checks
3141 - CLEANUP: conn-stream: Remove cs_destroy()
3142 - CLEANUP: backend: Don't export connect_server anymore
3143 - BUG/MINOR: h3/hq_interop: Fix CS and stream creation
3144 - BUILD: tree-wide: Avoid warnings about undefined entities retrieved from a CS
3145 - BUG/MINOR: proxy: preset the error message pointer to NULL in parse_new_proxy()
3146 - BUG/MEDIUM: quic: fix received ACK stream calculation
3147 - BUILD: stream: fix build warning with older compilers
3148 - BUG/MINOR: debug: fix get_tainted() to properly read an atomic value
3149 - DEBUG: move the tainted stuff to bug.h for easier inclusion
3150 - DEBUG: cleanup back trace generation
3151 - DEBUG: cleanup BUG_ON() configuration
3152 - DEBUG: mark ABORT_NOW() as unreachable
3153 - DBEUG: add a new WARN_ON() macro
3154 - DEBUG: make the _BUG_ON() macro return the condition
3155 - DEBUG: add a new WARN_ON_ONCE() macro
3156 - DEBUG: report BUG_ON() and WARN_ON() in the tainted flags
3157 - MINOR: quic: adjust buffer handling for STREAM transmission
3158 - MINOR: quic: liberate the TX stream buffer after ACK processing
3159 - MINOR: quic: add a TODO for a memleak frame on ACK consume
3160
Willy Tarreau2454d6e2022-02-01 18:06:59 +010031612022/02/01 : 2.6-dev1
3162 - BUG/MINOR: cache: Fix loop on cache entries in "show cache"
3163 - BUG/MINOR: httpclient: allow to replace the host header
3164 - BUG/MINOR: lua: don't expose internal proxies
3165 - MEDIUM: mworker: seamless reload use the internal sockpairs
3166 - BUG/MINOR: lua: remove loop initial declarations
3167 - BUG/MINOR: mworker: does not add the -sf in wait mode
3168 - BUG/MEDIUM: mworker: FD leak of the eventpoll in wait mode
3169 - MINOR: quic: do not reject PADDING followed by other frames
3170 - REORG: quic: add comment on rare thread concurrence during CID alloc
3171 - CLEANUP: quic: add comments on CID code
3172 - MEDIUM: quic: handle CIDs to rattach received packets to connection
3173 - MINOR: qpack: support litteral field line with non-huff name
3174 - MINOR: quic: activate QUIC traces at compilation
3175 - MINOR: quic: use more verbose QUIC traces set at compile-time
3176 - MEDIUM: pool: refactor malloc_trim/glibc and jemalloc api addition detections.
3177 - MEDIUM: pool: support purging jemalloc arenas in trim_all_pools()
3178 - BUG/MINOR: mworker: deinit of thread poller was called when not initialized
3179 - BUILD: pools: only detect link-time jemalloc on ELF platforms
3180 - CI: github actions: add the output of $CC -dM -E-
3181 - BUG/MEDIUM: cli: Properly set stream analyzers to process one command at a time
3182 - BUILD: evports: remove a leftover from the dead_fd cleanup
3183 - MINOR: quic: Set "no_application_protocol" alert
3184 - MINOR: quic: More accurate immediately close.
3185 - MINOR: quic: Immediately close if no transport parameters extension found
3186 - MINOR: quic: Rename qc_prep_hdshk_pkts() to qc_prep_pkts()
3187 - MINOR: quic: Possible crash when inspecting the xprt context
3188 - MINOR: quic: Dynamically allocate the secrete keys
3189 - MINOR: quic: Add a function to derive the key update secrets
3190 - MINOR: quic: Add structures to maintain key phase information
3191 - MINOR: quic: Optional header protection key for quic_tls_derive_keys()
3192 - MINOR: quic: Add quic_tls_key_update() function for Key Update
3193 - MINOR: quic: Enable the Key Update process
3194 - MINOR: quic: Delete the ODCIDs asap
3195 - BUG/MINOR: vars: Fix the set-var and unset-var converters
3196 - MEDIUM: pool: Following up on previous pool trimming update.
3197 - BUG/MEDIUM: mux-h1: Fix splicing by properly detecting end of message
3198 - BUG/MINOR: mux-h1: Fix splicing for messages with unknown length
3199 - MINOR: mux-h1: Improve H1 traces by adding info about http parsers
3200 - MINOR: mux-h1: register a stats module
3201 - MINOR: mux-h1: add counters instance to h1c
3202 - MINOR: mux-h1: count open connections/streams on stats
3203 - MINOR: mux-h1: add stat for total count of connections/streams
3204 - MINOR: mux-h1: add stat for total amount of bytes received and sent
3205 - REGTESTS: h1: Add a script to validate H1 splicing support
3206 - BUG/MINOR: server: Don't rely on last default-server to init server SSL context
3207 - BUG/MEDIUM: resolvers: Detach query item on response error
3208 - MEDIUM: resolvers: No longer store query items in a list into the response
3209 - BUG/MAJOR: segfault using multiple log forward sections.
3210 - BUG/MEDIUM: h1: Properly reset h1m flags when headers parsing is restarted
3211 - BUG/MINOR: resolvers: Don't overwrite the error for invalid query domain name
3212 - BUILD: bug: Fix error when compiling with -DDEBUG_STRICT_NOCRASH
3213 - BUG/MEDIUM: sample: Fix memory leak in sample_conv_jwt_member_query
3214 - DOC: spoe: Clarify use of the event directive in spoe-message section
3215 - DOC: config: Specify %Ta is only available in HTTP mode
3216 - BUILD: tree-wide: avoid warnings caused by redundant checks of obj_types
3217 - IMPORT: slz: use the correct CRC32 instruction when running in 32-bit mode
3218 - MINOR: quic: fix segfault on CONNECTION_CLOSE parsing
3219 - MINOR: h3: add BUG_ON on control receive function
3220 - MEDIUM: xprt-quic: finalize app layer initialization after ALPN nego
3221 - MINOR: h3: remove duplicated FIN flag position
3222 - MAJOR: mux-quic: implement a simplified mux version
3223 - MEDIUM: mux-quic: implement release mux operation
3224 - MEDIUM: quic: detect the stream FIN
3225 - MINOR: mux-quic: implement subscribe on stream
3226 - MEDIUM: mux-quic: subscribe on xprt if remaining data after send
3227 - MEDIUM: mux-quic: wake up xprt on data transferred
3228 - MEDIUM: mux-quic: handle when sending buffer is full
3229 - MINOR: quic: RX buffer full due to wrong CRYPTO data handling
3230 - MINOR: quic: Race issue when consuming RX packets buffer
3231 - MINOR: quic: QUIC encryption level RX packets race issue
3232 - MINOR: quic: Delete remaining RX handshake packets
3233 - MINOR: quic: Remove QUIC TX packet length evaluation function
3234 - MINOR: hq-interop: fix tx buffering
3235 - MINOR: mux-quic: remove uneeded code to check fin on TX
3236 - MINOR: quic: add HTX EOM on request end
3237 - BUILD: mux-quic: fix compilation with DEBUG_MEM_STATS
3238 - MINOR: http-rules: Add capture action to http-after-response ruleset
3239 - BUG/MINOR: cli/server: Don't crash when a server is added with a custom id
3240 - MINOR: mux-quic: do not release qcs if there is remaining data to send
3241 - MINOR: quic: notify the mux on CONNECTION_CLOSE
3242 - BUG/MINOR: mux-quic: properly initialize flow control
3243 - MINOR: quic: Compilation fix for quic_rx_packet_refinc()
3244 - MINOR: h3: fix possible invalid dereference on htx parsing
3245 - DOC: config: retry-on list is space-delimited
3246 - DOC: config: fix error-log-format example
3247 - BUG/MEDIUM: mworker/cli: crash when trying to access an old PID in prompt mode
3248 - MINOR: hq-interop: refix tx buffering
3249 - REGTESTS: ssl: use X509_V_ERR_UNABLE_TO_GET_ISSUER_CERT_LOCALLY for cert check
3250 - MINOR: cli: "show version" displays the current process version
3251 - CLEANUP: cfgparse: modify preprocessor guards around numa detection code
3252 - MEDIUM: cfgparse: numa detect topology on FreeBSD.
3253 - BUILD: ssl: unbreak the build with newer libressl
3254 - MINOR: vars: Move UPDATEONLY flag test to vars_set_ifexist
3255 - MINOR: vars: Set variable type to ANY upon creation
3256 - MINOR: vars: Delay variable content freeing in var_set function
3257 - MINOR: vars: Parse optional conditions passed to the set-var converter
3258 - MINOR: vars: Parse optional conditions passed to the set-var actions
3259 - MEDIUM: vars: Enable optional conditions to set-var converter and actions
3260 - DOC: vars: Add documentation about the set-var conditions
3261 - REGTESTS: vars: Add new test for conditional set-var
3262 - MINOR: quic: Attach timer task to thread for the connection.
3263 - CLEANUP: quic_frame: Remove a useless suffix to STOP_SENDING
3264 - MINOR: quic: Add traces for STOP_SENDING frame and modify others
3265 - CLEANUP: quic: Remove cdata_len from quic_tx_packet struct
3266 - MINOR: quic: Enable TLS 0-RTT if needed
3267 - MINOR: quic: No TX secret at EARLY_DATA encryption level
3268 - MINOR: quic: Add quic_set_app_ops() function
3269 - MINOR: ssl_sock: Set the QUIC application from ssl_sock_advertise_alpn_protos.
3270 - MINOR: quic: Make xprt support 0-RTT.
3271 - MINOR: qpack: Missing check for truncated QPACK fields
3272 - CLEANUP: quic: Comment fix for qc_strm_cpy()
3273 - MINOR: hq_interop: Stop BUG_ON() truncated streams
3274 - MINOR: quic: Do not mix packet number space and connection flags
3275 - CLEANUP: quic: Shorten a litte bit the traces in lstnr_rcv_pkt()
3276 - MINOR: mux-quic: fix trace on stream creation
3277 - CLEANUP: quic: fix spelling mistake in a trace
3278 - CLEANUP: quic: rename quic_conn conn to qc in quic_conn_free
3279 - MINOR: quic: add missing lock on cid tree
3280 - MINOR: quic: rename constant for haproxy CIDs length
3281 - MINOR: quic: refactor concat DCID with address for Initial packets
3282 - MINOR: quic: compare coalesced packets by DCID
3283 - MINOR: quic: refactor DCID lookup
3284 - MINOR: quic: simplify the removal from ODCID tree
3285 - REGTESTS: vars: Remove useless ssl tunes from conditional set-var test
3286 - MINOR: ssl: Remove empty lines from "show ssl ocsp-response" output
3287 - MINOR: quic: Increase the RX buffer for each connection
3288 - MINOR: quic: Add a function to list remaining RX packets by encryption level
3289 - MINOR: quic: Stop emptying the RX buffer asap.
3290 - MINOR: quic: Do not expect to receive only one O-RTT packet
3291 - MINOR: quic: Do not forget STREAM frames received in disorder
3292 - MINOR: quic: Wrong packet refcount handling in qc_pkt_insert()
3293 - DOC: fix misspelled keyword "resolve_retries" in resolvers
3294 - CLEANUP: quic: rename quic_conn instances to qc
3295 - REORG: quic: move mux function outside of xprt
3296 - MINOR: quic: add reference to quic_conn in ssl context
3297 - MINOR: quic: add const qualifier for traces function
3298 - MINOR: trace: add quic_conn argument definition
3299 - MINOR: quic: use quic_conn as argument to traces
3300 - MINOR: quic: add quic_conn instance in traces for qc_new_conn
3301 - MINOR: quic: Add stream IDs to qcs_push_frame() traces
3302 - MINOR: quic: unchecked qc_retrieve_conn_from_cid() returned value
3303 - MINOR: quic: Wrong dropped packet skipping
3304 - MINOR: quic: Handle the cases of overlapping STREAM frames
3305 - MINOR: quic: xprt traces fixes
3306 - MINOR: quic: Drop asap Retry or Version Negotiation packets
3307 - MINOR: pools: work around possibly slow malloc_trim() during gc
3308 - DEBUG: ssl: make sure we never change a servername on established connections
3309 - MINOR: quic: Add traces for RX frames (flow control related)
3310 - MINOR: quic: Add CONNECTION_CLOSE phrase to trace
3311 - REORG: quic: remove qc_ prefix on functions which not used it directly
3312 - BUG/MINOR: quic: upgrade rdlock to wrlock for ODCID removal
3313 - MINOR: quic: remove unnecessary call to free_quic_conn_cids()
3314 - MINOR: quic: store ssl_sock_ctx reference into quic_conn
3315 - MINOR: quic: remove unnecessary if in qc_pkt_may_rm_hp()
3316 - MINOR: quic: replace usage of ssl_sock_ctx by quic_conn
3317 - MINOR: quic: delete timer task on quic_close()
3318 - MEDIUM: quic: implement refcount for quic_conn
3319 - BUG/MINOR: quic: fix potential null dereference
3320 - BUG/MINOR: quic: fix potential use of uninit pointer
3321 - BUG/MEDIUM: backend: fix possible sockaddr leak on redispatch
3322 - BUG/MEDIUM: peers: properly skip conn_cur from incoming messages
3323 - CI: Github Actions: do not show VTest failures if build failed
3324 - BUILD: opentracing: display warning in case of using OT_USE_VARS at compile time
3325 - MINOR: compat: detect support for dl_iterate_phdr()
3326 - MINOR: debug: add ability to dump loaded shared libraries
3327 - MINOR: debug: add support for -dL to dump library names at boot
3328 - BUG/MEDIUM: ssl: initialize correctly ssl w/ default-server
3329 - REGTESTS: ssl: fix ssl_default_server.vtc
3330 - BUG/MINOR: ssl: free the fields in srv->ssl_ctx
3331 - BUG/MEDIUM: ssl: free the ckch instance linked to a server
3332 - REGTESTS: ssl: update of a crt with server deletion
3333 - BUILD/MINOR: cpuset FreeBSD 14 build fix.
3334 - MINOR: pools: always evict oldest objects first in pool_evict_from_local_cache()
3335 - DOC: pool: document the purpose of various structures in the code
3336 - CLEANUP: pools: do not use the extra pointer to link shared elements
3337 - CLEANUP: pools: get rid of the POOL_LINK macro
3338 - MINOR: pool: allocate from the shared cache through the local caches
3339 - CLEANUP: pools: group list updates in pool_get_from_cache()
3340 - MINOR: pool: rely on pool_free_nocache() in pool_put_to_shared_cache()
3341 - MINOR: pool: make pool_is_crowded() always true when no shared pools are used
3342 - MINOR: pool: check for pool's fullness outside of pool_put_to_shared_cache()
3343 - MINOR: pool: introduce pool_item to represent shared pool items
3344 - MINOR: pool: add a function to estimate how many may be released at once
3345 - MEDIUM: pool: compute the number of evictable entries once per pool
3346 - MINOR: pools: prepare pool_item to support chained clusters
3347 - MINOR: pools: pass the objects count to pool_put_to_shared_cache()
3348 - MEDIUM: pools: centralize cache eviction in a common function
3349 - MEDIUM: pools: start to batch eviction from local caches
3350 - MEDIUM: pools: release cached objects in batches
3351 - OPTIM: pools: reduce local pool cache size to 512kB
3352 - CLEANUP: assorted typo fixes in the code and comments This is 29th iteration of typo fixes
3353 - CI: github actions: update OpenSSL to 3.0.1
3354 - BUILD/MINOR: tools: solaris build fix on dladdr.
3355 - BUG/MINOR: cli: fix _getsocks with musl libc
3356 - BUG/MEDIUM: http-ana: Preserve response's FLT_END analyser on L7 retry
3357 - MINOR: quic: Wrong traces after rework
3358 - MINOR: quic: Add trace about in flight bytes by packet number space
3359 - MINOR: quic: Wrong first packet number space computation
3360 - MINOR: quic: Wrong packet number space computation for PTO
3361 - MINOR: quic: Wrong loss time computation in qc_packet_loss_lookup()
3362 - MINOR: quic: Wrong ack_delay compution before calling quic_loss_srtt_update()
3363 - MINOR: quic: Remove nb_pto_dgrams quic_conn struct member
3364 - MINOR: quic: Wrong packet number space trace in qc_prep_pkts()
3365 - MINOR: quic: Useless test in qc_prep_pkts()
3366 - MINOR: quic: qc_prep_pkts() code moving
3367 - MINOR: quic: Speeding up Handshake Completion
3368 - MINOR: quic: Probe Initial packet number space more often
3369 - MINOR: quic: Probe several packet number space upon timer expiration
3370 - MINOR: quic: Comment fix.
3371 - MINOR: quic: Improve qc_prep_pkts() flexibility
3372 - MINOR: quic: Do not drop secret key but drop the CRYPTO data
3373 - MINOR: quic: Prepare Handshake packets asap after completed handshake
3374 - MINOR: quic: Flag asap the connection having reached the anti-amplification limit
3375 - MINOR: quic: PTO timer too often reset
3376 - MINOR: quic: Re-arm the PTO timer upon datagram receipt
3377 - MINOR: proxy: add option idle-close-on-response
3378 - MINOR: cpuset: switch to sched_setaffinity for FreeBSD 14 and above.
3379 - CI: refactor spelling check
3380 - CLEANUP: assorted typo fixes in the code and comments
3381 - BUILD: makefile: add -Wno-atomic-alignment to work around clang abusive warning
3382 - MINOR: quic: Only one CRYPTO frame by encryption level
3383 - MINOR: quic: Missing retransmission from qc_prep_fast_retrans()
3384 - MINOR: quic: Non-optimal use of a TX buffer
3385 - BUG/MEDIUM: mworker: don't use _getsocks in wait mode
3386 - BUG/MINOR: ssl: Store client SNI in SSL context in case of ClientHello error
3387 - BUG/MAJOR: mux-h1: Don't decrement .curr_len for unsent data
3388 - DOC: internals: document the pools architecture and API
3389 - CI: github actions: clean default step conditions
3390 - BUILD: cpuset: fix build issue on macos introduced by previous change
3391 - MINOR: quic: Remaining TRACEs with connection as firt arg
3392 - MINOR: quic: Reset ->conn quic_conn struct member when calling qc_release()
3393 - MINOR: quic: Flag the connection as being attached to a listener
3394 - MINOR: quic: Wrong CRYPTO frame concatenation
3395 - MINOR: quid: Add traces quic_close() and quic_conn_io_cb()
3396 - REGTESTS: ssl: Fix ssl_errors regtest with OpenSSL 1.0.2
3397 - MINOR: quic: Do not dereference ->conn quic_conn struct member
3398 - MINOR: quic: fix return of quic_dgram_read
3399 - MINOR: quic: add config parse source file
3400 - MINOR: quic: implement Retry TLS AEAD tag generation
3401 - MEDIUM: quic: implement Initial token parsing
3402 - MINOR: quic: define retry_source_connection_id TP
3403 - MEDIUM: quic: implement Retry emission
3404 - MINOR: quic: free xprt tasklet on its thread
3405 - BUG/MEDIUM: connection: properly leave stopping list on error
3406 - MINOR: pools: enable pools with DEBUG_FAIL_ALLOC as well
3407 - MINOR: quic: As server, skip 0-RTT packet number space
3408 - MINOR: quic: Do not wakeup the I/O handler before the mux is started
3409 - BUG/MEDIUM: htx: Adjust length to add DATA block in an empty HTX buffer
3410 - CI: github actions: use cache for OpenTracing
3411 - BUG/MINOR: httpclient: don't send an empty body
3412 - BUG/MINOR: httpclient: set default Accept and User-Agent headers
3413 - BUG/MINOR: httpclient/lua: don't pop the lua stack when getting headers
3414 - BUILD/MINOR: fix solaris build with clang.
3415 - BUG/MEDIUM: server: avoid changing healthcheck ctx with set server ssl
3416 - CI: refactor OpenTracing build script
3417 - DOC: management: mark "set server ssl" as deprecated
3418 - MEDIUM: cli: yield between each pipelined command
3419 - MINOR: channel: add new function co_getdelim() to support multiple delimiters
3420 - BUG/MINOR: cli: avoid O(bufsize) parsing cost on pipelined commands
3421 - MEDIUM: h2/hpack: emit a Dynamic Table Size Update after settings change
3422 - MINOR: quic: Retransmit the TX frames in the same order
3423 - MINOR: quic: Remove the packet number space TX MT_LIST
3424 - MINOR: quic: Splice the frames which could not be added to packets
3425 - MINOR: quic: Add the number of TX bytes to traces
3426 - CLEANUP: quic: Replace <nb_pto_dgrams> by <probe>
3427 - MINOR: quic: Send two ack-eliciting packets when probing packet number spaces
3428 - MINOR: quic: Probe regardless of the congestion control
3429 - MINOR: quic: Speeding up handshake completion
3430 - MINOR: quic: Release RX Initial packets asap
3431 - MINOR: quic: Release asap TX frames to be transmitted
3432 - MINOR: quic: Probe even if coalescing
3433 - BUG/MEDIUM: cli: Never wait for more data on client shutdown
3434 - BUG/MEDIUM: mcli: do not try to parse empty buffers
3435 - BUG/MEDIUM: mcli: always realign wrapping buffers before parsing them
3436 - BUG/MINOR: stream: make the call_rate only count the no-progress calls
3437 - MINOR: quic: do not use quic_conn after dropping it
3438 - MINOR: quic: adjust quic_conn refcount decrement
3439 - MINOR: quic: fix race-condition on xprt tasklet free
3440 - MINOR: quic: free SSL context on quic_conn free
3441 - MINOR: quic: Add QUIC_FT_RETIRE_CONNECTION_ID parsing case
3442 - MINOR: quic: Wrong packet number space selection
3443 - DEBUG: pools: add new build option DEBUG_POOL_INTEGRITY
3444 - MINOR: quic: add missing include in quic_sock
3445 - MINOR: quic: fix indentation in qc_send_ppkts
3446 - MINOR: quic: remove dereferencement of connection when possible
3447 - MINOR: quic: set listener accept cb on parsing
3448 - MEDIUM: quic/ssl: add new ex data for quic_conn
3449 - MINOR: quic: initialize ssl_sock_ctx alongside the quic_conn
3450 - MINOR: ssl: fix build in release mode
3451 - MINOR: pools: partially uninline pool_free()
3452 - MINOR: pools: partially uninline pool_alloc()
3453 - MINOR: pools: prepare POOL_EXTRA to be split into multiple extra fields
3454 - MINOR: pools: extend pool_cache API to pass a pointer to a caller
3455 - DEBUG: pools: add new build option DEBUG_POOL_TRACING
3456 - DEBUG: cli: add a new "debug dev fd" expert command
3457 - MINOR: fd: register the write side of the poller pipe as well
3458 - CI: github actions: use cache for SSL libs
3459 - BUILD: debug/cli: condition test of O_ASYNC to its existence
3460 - BUILD: pools: fix build error on DEBUG_POOL_TRACING
3461 - MINOR: quic: refactor header protection removal
3462 - MINOR: quic: handle app data according to mux/connection layer status
3463 - MINOR: quic: refactor app-ops initialization
3464 - MINOR: receiver: define a flag for local accept
3465 - MEDIUM: quic: flag listener for local accept
3466 - MINOR: quic: do not manage connection in xprt snd_buf
3467 - MINOR: quic: remove wait handshake/L6 flags on init connection
3468 - MINOR: listener: add flags field
3469 - MINOR: quic: define QUIC flag on listener
3470 - MINOR: quic: create accept queue for QUIC connections
3471 - MINOR: listener: define per-thr struct
3472 - MAJOR: quic: implement accept queue
3473 - CLEANUP: mworker: simplify mworker_free_child()
3474 - BUILD/DEBUG: lru: update the standalone code to support the revision
3475 - DEBUG: lru: use a xorshift generator in the testing code
3476 - BUG/MAJOR: compiler: relax alignment constraints on certain structures
3477 - BUG/MEDIUM: fd: always align fdtab[] to 64 bytes
3478 - MINOR: quic: No DCID length for datagram context
3479 - MINOR: quic: Comment fix about the token found in Initial packets
3480 - MINOR: quic: Get rid of a struct buffer in quic_lstnr_dgram_read()
3481 - MINOR: quic: Remove the QUIC haproxy server packet parser
3482 - MINOR: quic: Add new defintion about DCIDs offsets
3483 - MINOR: quic: Add a list to QUIC sock I/O handler RX buffer
3484 - MINOR: quic: Allocate QUIC datagrams from sock I/O handler
3485 - MINOR: proto_quic: Allocate datagram handlers
3486 - MINOR: quic: Pass CID as a buffer to quic_get_cid_tid()
3487 - MINOR: quic: Convert quic_dgram_read() into a task
3488 - CLEANUP: quic: Remove useless definition
3489 - MINOR: proto_quic: Wrong allocations for TX rings and RX bufs
3490 - MINOR: quic: Do not consume the RX buffer on QUIC sock i/o handler side
3491 - MINOR: quic: Do not reset a full RX buffer
3492 - MINOR: quic: Attach all the CIDs to the same connection
3493 - MINOR: quic: Make usage of by datagram handler trees
3494 - MEDIUM: da: new optional data file download scheduler service.
3495 - MEDIUM: da: update doc and build for new scheduler mode service.
3496 - MEDIUM: da: update module to handle schedule mode.
3497 - MINOR: quic: Drop Initial packets with wrong ODCID
3498 - MINOR: quic: Wrong RX buffer tail handling when no more contiguous data
3499 - MINOR: quic: Iterate over all received datagrams
3500 - MINOR: quic: refactor quic CID association with threads
3501 - BUG/MEDIUM: resolvers: Really ignore trailing dot in domain names
3502 - DEV: flags: Add missing flags
3503 - BUG/MINOR: sink: Use the right field in appctx context in release callback
3504 - MINOR: sock: move the unused socket cleaning code into its own function
3505 - BUG/MEDIUM: mworker: close unused transferred FDs on load failure
3506 - BUILD: atomic: make the old HA_ATOMIC_LOAD() support const pointers
3507 - BUILD: cpuset: do not use const on the source of CPU_AND/CPU_ASSIGN
3508 - BUILD: checks: fix inlining issue on set_srv_agent_[addr,port}
3509 - BUILD: vars: avoid overlapping field initialization
3510 - BUILD: server-state: avoid using not-so-portable isblank()
3511 - BUILD: mux_fcgi: avoid aliasing of a const struct in traces
3512 - BUILD: tree-wide: mark a few numeric constants as explicitly long long
3513 - BUILD: tools: fix warning about incorrect cast with dladdr1()
3514 - BUILD: task: use list_to_mt_list() instead of casting list to mt_list
3515 - BUILD: mworker: include tools.h for platforms without unsetenv()
3516 - BUG/MINOR: mworker: fix a FD leak of a sockpair upon a failed reload
3517 - MINOR: mworker: set the master side of ipc_fd in the worker to -1
3518 - MINOR: mworker: allocate and initialize a mworker_proc
3519 - CI: Consistently use actions/checkout@v2
3520 - REGTESTS: Remove REQUIRE_VERSION=1.8 from all tests
3521 - MINOR: mworker: sets used or closed worker FDs to -1
3522 - MINOR: quic: Try to accept 0-RTT connections
3523 - MINOR: quic: Do not try to treat 0-RTT packets without started mux
3524 - MINOR: quic: Do not try to accept a connection more than one time
3525 - MINOR: quic: Initialize the connection timer asap
3526 - MINOR: quic: Do not use connection struct xprt_ctx too soon
3527 - Revert "MINOR: mworker: sets used or closed worker FDs to -1"
3528 - BUILD: makefile: avoid testing all -Wno-* options when not needed
3529 - BUILD: makefile: validate support for extra warnings by batches
3530 - BUILD: makefile: only compute alternative options if required
3531 - DEBUG: fd: make sure we never try to insert/delete an impossible FD number
3532 - MINOR: mux-quic: add comment
3533 - MINOR: mux-quic: properly initialize qcc flags
3534 - MINOR: mux-quic: do not consider CONNECTION_CLOSE for the moment
3535 - MINOR: mux-quic: create a timeout task
3536 - MEDIUM: mux-quic: delay the closing with the timeout
3537 - MINOR: mux-quic: release idle conns on process stopping
3538 - MINOR: listener: replace the listener's spinlock with an rwlock
3539 - BUG/MEDIUM: listener: read-lock the listener during accept()
3540 - MINOR: mworker/cli: set expert/experimental mode from the CLI
3541
Willy Tarreau73dec762021-11-23 15:50:11 +010035422021/11/23 : 2.6-dev0
3543 - MINOR: version: it's development again
3544
Willy Tarreauf2e08332021-11-23 15:40:21 +010035452021/11/23 : 2.5.0
3546 - BUILD: SSL: add quictls build to scripts/build-ssl.sh
3547 - BUILD: SSL: add QUICTLS to build matrix
3548 - CLEANUP: sock: Wrap `accept4_broken = 1` into additional parenthesis
3549 - BUILD: cli: clear a maybe-unused warning on some older compilers
3550 - BUG/MEDIUM: cli: make sure we can report a warning from a bind keyword
3551 - BUG/MINOR: ssl: make SSL counters atomic
3552 - CLEANUP: assorted typo fixes in the code and comments
3553 - BUG/MINOR: ssl: free correctly the sni in the backend SSL cache
3554 - MINOR: version: mention that it's stable now
3555
Willy Tarreaua99cdfb2021-11-19 19:30:04 +010035562021/11/19 : 2.5-dev15
3557 - BUG/MINOR: stick-table/cli: Check for invalid ipv6 key
3558 - CLEANUP: peers: Remove useless test on peer variable in peer_trace()
3559 - DOC: log: Add comments to specify when session's listener is defined or not
3560 - BUG/MEDIUM: mux-h1: Handle delayed silent shut in h1_process() to release H1C
3561 - REGTESTS: ssl_crt-list_filters: feature cmd incorrectly set
3562 - DOC: internals: document the list API
3563 - BUG/MINOR: h3: ignore unknown frame types
3564 - MINOR: quic: redirect app_ops snd_buf through mux
3565 - MEDIUM: quic: inspect ALPN to install app_ops
3566 - MINOR: quic: support hq-interop
3567 - MEDIUM: quic: send version negotiation packet on unknown version
3568 - BUG/MEDIUM: mworker: cleanup the listeners when reexecuting
3569 - DOC: internals: document the scheduler API
3570 - BUG/MINOR: quic: fix version negotiation packet generation
3571 - CLEANUP: ssl: fix wrong #else commentary
3572 - MINOR: config: support default values for environment variables
3573 - SCRIPTS: run-regtests: reduce the number of processes needed to check options
3574 - SCRIPT: run-regtests: avoid several calls to grep to test for features
3575 - SCRIPT: run-regtests: avoid calling awk to compute the version
3576 - REGTEST: set retries count to zero for all tests that expect at 503
3577 - REGTESTS: make tcp-check_min-recv fail fast
3578 - REGTESTS: extend the default I/O timeouts and make them overridable
3579 - BUG/MEDIUM: ssl: backend TLS resumption with sni and TLSv1.3
3580 - BUG/MEDIUM: ssl: abort with the correct SSL error when SNI not found
3581 - REGTESTS: ssl: test the TLS resumption
3582 - BUILD: makefile: stop opening sub-shells for each and every command
3583 - BUILD: makefile: reorder objects by build time
3584 - BUG/MEDIUM: mux-h2: always process a pending shut read
3585 - MINOR: quic_sock: missing CO_FL_ADDR_TO_SET flag
3586 - MINOR: quic: Possible wrong connection identification
3587 - MINOR: quic: Correctly pad UDP datagrams
3588 - MINOR: quic: Support transport parameters draft TLS extension
3589 - MINOR: quic: Anti-amplification implementation
3590 - MINOR: quic: Wrong Initial packet connection initialization
3591 - MINOR: quic: Wrong ACK range building
3592 - MINOR: quic: Update some QUIC protocol errors
3593 - MINOR: quic: Send CONNECTION_CLOSE frame upon TLS alert
3594 - MINOR: quic: Wrong largest acked packet number parsing
3595 - MINOR: quic: Add minimalistic support for stream flow control frames
3596 - MINOR: quic: Wrong value for version negotiation packet 'Unused' field
3597 - MINOR: quic: Support draft-29 QUIC version
3598 - BUG/MINOR: quic: fix segfault on trace for version negotiation
3599 - BUG/MINOR: hq-interop: fix potential NULL dereference
3600 - BUILD: quic: fix potential NULL dereference on xprt_quic
3601 - DOC: lua: documentation about the httpclient API
3602 - BUG/MEDIUM: cache/cli: make "show cache" thread-safe
3603 - BUG/MEDIUM: shctx: leave the block allocator when enough blocks are found
3604 - BUG/MINOR: shctx: do not look for available blocks when the first one is enough
3605 - MINOR: shctx: add a few BUG_ON() for consistency checks
3606
Willy Tarreaud83f6e62021-11-14 16:04:57 +010036072021/11/14 : 2.5-dev14
3608 - DEV: coccinelle: Remove unused `expression e`
3609 - DEV: coccinelle: Add rule to use `istend()` where possible
3610 - CLEANUP: Apply ist.cocci
3611 - CLEANUP: Re-apply xalloc_size.cocci
3612 - CLEANUP: halog: make the default usage message fit in small screens
3613 - MINOR: h3/qpack: fix gcc11 warnings
3614 - MINOR: mux-quic: fix gcc11 warning
3615 - MINOR: h3: fix potential NULL dereference
3616 - MINOR: quic: Fix potential null pointer dereference
3617 - CLEANUP: halog: remove unused strl2ui()
3618 - OPTIM: halog: improve field parser speed for modern compilers
3619 - OPTIM: halog: skip fields 64 bits at a time when supported
3620 - DEV: coccinelle: Add rule to use `isttrim()` where possible
3621 - CLEANUP: Apply ist.cocci
3622 - DEV: coccinelle: Add rule to use `chunk_istcat()` instead of `chunk_memcat()`
3623 - DEV: coccinelle: Add rule to use `chunk_istcat()` instead of `chunk_strncat()`
3624 - CLEANUP: Apply ist.cocci
3625 - CLEANUP: chunk: Remove duplicated chunk_Xcat implementation
3626 - CLEANUP: chunk: remove misleading chunk_strncat() function
3627 - BUG/MINOR: cache: properly ignore unparsable max-age in quotes
3628 - Revert "DEV: coccinelle: Add rule to use `chunk_istcat()` instead of `chunk_strncat()`"
3629 - DOC: stats: fix location of the text representation
3630 - DOC: internals: document the IST API
3631 - BUG/MINOR: httpclient/lua: rcv freeze when no request payload
3632 - BUG/MEDIUM: httpclient: channel_add_input() must use htx->data
3633 - MINOR: promex: backend aggregated server check status
3634 - DOC: config: Fix typo in ssl_fc_unique_id description
3635 - BUG/MINOR: http-ana: Apply stop to the current section for http-response rules
3636 - Revert "BUG/MINOR: http-ana: Don't eval front after-response rules if stopped on back"
3637 - DOC: config: Be more explicit in "allow" actions description
3638 - DOC: lua: Be explicit with the Reply object limits
3639 - MINOR: mux-h1: Slightly Improve H1 traces
3640 - BUG/MEDIUM: conn-stream: Don't reset CS flags on close
3641 - CLEANUP: mworker: remove any relative PID reference
3642 - MEDIUM: mworker: reexec in waitpid mode after successful loading
3643 - MINOR: mworker: clarify starting/failure messages
3644 - MINOR: mworker: only increment the number of reload in wait mode
3645 - MINOR: mworker: implement a reload failure counter
3646 - MINOR: mworker: ReloadFailed shown depending on failedreload
3647 - MINOR: mworker: change the way we set PROC_O_LEAVING
3648 - BUG/MINOR: mworker: doesn't launch the program postparser
3649 - DOC: management: edit the "show proc" example to show the current output
3650 - BUG/MEDIUM: httpclient/cli: free of unallocated hc->req.uri
3651 - REGTESTS: httpclient/lua: add greater body values
3652 - BUG/MINOR: mux-h2: Fix H2_CF_DEM_SHORT_READ value
3653 - BUG/MINOR: pools: don't mark ourselves as harmless in DEBUG_UAF mode
3654 - BUG/MEDIUM: connection: make cs_shutr/cs_shutw//cs_close() idempotent
3655 - BUILD: makefile: simplify detection of libatomic
3656
Willy Tarreau08d32202021-11-06 09:25:57 +010036572021/11/06 : 2.5-dev13
3658 - SCRIPTS: git-show-backports: re-enable file-based filtering
3659 - MINOR: jwt: Make invalid static JWT algorithms an error in `jwt_verify` converter
3660 - MINOR: mux-h2: add trace on extended connect usage
3661 - BUG/MEDIUM: mux-h2: reject upgrade if no RFC8441 support
3662 - MINOR: stream/mux: implement websocket stream flag
3663 - MINOR: connection: implement function to update ALPN
3664 - MINOR: connection: add alternative mux_ops param for conn_install_mux_be
3665 - MEDIUM: server/backend: implement websocket protocol selection
3666 - MINOR: server: add ws keyword
3667 - BUG/MINOR: resolvers: fix sent messages were counted twice
3668 - BUG/MINOR: resolvers: throw log message if trash not large enough for query
3669 - MINOR: resolvers/dns: split dns and resolver counters in dns_counter struct
3670 - MEDIUM: resolvers: rename dns extra counters to resolvers extra counters
3671 - BUG/MINOR: jwt: Fix jwt_parse_alg incorrectly returning JWS_ALG_NONE
3672 - DOC: add QUIC instruction in INSTALL
3673 - CLEANUP: halog: Remove dead stores
3674 - DEV: coccinelle: Add ha_free.cocci
3675 - CLEANUP: Apply ha_free.cocci
3676 - DEV: coccinelle: Add rule to use `istnext()` where possible
3677 - CLEANUP: Apply ist.cocci
3678 - REGTESTS: Use `feature cmd` for 2.5+ tests (2)
3679 - DOC: internals: move some API definitions to an "api" subdirectory
3680 - MINOR: quic: Allocate listener RX buffers
3681 - CLEANUP: quic: Remove useless code
3682 - MINOR: quic: Enhance the listener RX buffering part
3683 - MINOR: quic: Remove a useless lock for CRYPTO frames
3684 - MINOR: quic: Use QUIC_LOCK QUIC specific lock label.
3685 - MINOR: backend: Get client dst address to set the server's one only if needful
3686 - MINOR: compression: Warn for 'compression offload' in defaults sections
3687 - MEDIUM: connection: rename fc_conn_err and bc_conn_err to fc_err and bc_err
3688 - DOC: configuration: move the default log formats to their own section
3689 - MINOR: ssl: make the ssl_fc_sni() sample-fetch function always available
3690 - MEDIUM: log: add the client's SNI to the default HTTPS log format
3691 - DOC: config: add an example of reasonably complete error-log-format
3692 - DOC: config: move error-log-format before custom log format
3693
Willy Tarreau35dc13f2021-11-02 18:05:41 +010036942021/11/02 : 2.5-dev12
3695 - MINOR: httpclient: support payload within a buffer
3696 - MINOR: httpclient/lua: support more HTTP methods
3697 - MINOR: httpclient/lua: return an error when it can't generate the request
3698 - CLEANUP: lua: Remove any ambiguities about lua txn execution context flags
3699 - BUG/MEDIUM: lua: fix invalid return types in hlua_http_msg_get_body
3700 - CLEANUP: connection: No longer export make_proxy_line_v1/v2 functions
3701 - CLEANUP: tools: Use const address for get_net_port() and get_host_port()
3702 - CLEANUP: lua: Use a const address to retrieve info about a connection
3703 - MINOR: connection: Add function to get src/dst without updating the connection
3704 - MINOR: session: Add src and dst addresses to the session
3705 - MINOR: stream-int: Add src and dst addresses to the stream-interface
3706 - MINOR: frontend: Rely on client src and dst addresses at stream level
3707 - MINOR: log: Rely on client addresses at the appropriate level to log messages
3708 - MINOR: session: Rely on client source address at session level to log error
3709 - MINOR: http-ana: Rely on addresses at stream level to set xff and xot headers
3710 - MINOR: http-fetch: Rely on addresses at stream level in HTTP sample fetches
3711 - MINOR: mux-fcgi: Rely on client addresses at stream level to set default params
3712 - MEDIUM: tcp-sample: Rely on addresses at the appropriate level in tcp samples
3713 - MEDIUM: connection: Rely on addresses at stream level to make proxy line
3714 - MEDIUM: backend: Rely on addresses at stream level to init server connection
3715 - MEDIUM: connection: Assign session addresses when PROXY line is received
3716 - MEDIUM: connection: Assign session addresses when NetScaler CIP proto is parsed
3717 - MEDIUM: tcp-act: Set addresses at the apprioriate level in set-(src/dst) actions
3718 - MINOR: tcp-act: Add set-src/set-src-port for "tcp-request content" rules
3719 - DOC: config: Fix alphabetical order of fc_* samples
3720 - MINOR: tcp-sample: Add samples to get original info about client connection
3721 - REGTESTS: Add script to test client src/dst manipulation at different levels
3722 - MINOR: stream: Use backend stream-interface dst address instead of target_addr
3723 - BUILD: log: Fix compilation without SSL support
3724 - DEBUG: protocol: yell loudly during registration of invalid sock_domain
3725 - MINOR: protocols: add a new protocol type selector
3726 - MINOR: protocols: make use of the protocol type to select the protocol
3727 - MINOR: protocols: replace protocol_by_family() with protocol_lookup()
3728 - MINOR: halog: Add -qry parameter allowing to preserve the query string in -uX
3729 - CLEANUP: jwt: Remove the use of a trash buffer in jwt_jwsverify_hmac()
3730 - CLEANUP: jwt: Remove the use of a trash buffer in jwt_jwsverify_rsa_ecdsa()
3731 - DEV: coccinelle: Add realloc_leak.cocci
3732 - CLEANUP: hlua: Remove obsolete branch in `hlua_alloc()`
3733 - BUILD: atomic: prefer __atomic_compare_exchange_n() for __ha_cas_dw()
3734 - BUILD: atomic: fix build on mac/arm64
3735 - MINOR: atomic: remove the memcpy() call and dependency on string.h
3736 - MINOR: httpclient: request streaming with a callback
3737 - MINOR: httpclient/lua: handle the streaming into the lua applet
3738 - REGTESTS: lua: test httpclient with body streaming
3739 - DOC: halog: Move the `-qry` parameter into the correct section in help text
3740 - MINOR: halog: Rename -qry to -query
3741 - CLEANUP: halog: Use consistent indentation in help()
3742 - BUG/MINOR: halog: Add missing newlines in die() messages
3743 - MINOR: halog: Add support for extracting captures using -hdr
3744 - DOC: Typo fixed "it" should be "is"
3745 - BUG/MINOR: mux-h1: Save shutdown mode if the shutdown is delayed
3746 - BUG/MEDIUM: mux-h1: Perform a connection shutdown when the h1c is released
3747 - BUG/MEDIUM: resolvers: Don't recursively perform requester unlink
3748 - BUG/MEDIUM: http-ana: Drain request data waiting the tarpit timeout expiration
3749 - BUG/MINOR: http: Authorization value can have multiple spaces after the scheme
3750 - BUG/MINOR: http: http_auth_bearer fetch does not work on custom header name
3751 - BUG/MINOR: httpclient/lua: misplaced luaL_buffinit()
3752 - BUILD/MINOR: cpuset freebsd build fix
3753 - BUG/MINOR: httpclient: use a placeholder value for Host header
3754 - BUG/MEDIUM: stream-int: Block reads if channel cannot receive more data
3755 - BUG/MEDIUM: resolvers: Track api calls with a counter to free resolutions
3756 - MINOR: stream: Improve dump of bogus streams
3757 - DOC/peers: some grammar fixes for peers 2.1 spec
3758 - MEDIUM: vars: make the var() sample fetch function really return type ANY
3759 - MINOR: vars: add "set-var" for "tcp-request connection" rules.
3760
Willy Tarreaub4d0cd02021-10-22 19:40:44 +020037612021/10/22 : 2.5-dev11
3762 - DEV: coccinelle: Add strcmp.cocci
3763 - CLEANUP: Apply strcmp.cocci
3764 - CI: Add `permissions` to GitHub Actions
3765 - CI: Clean up formatting in GitHub Action definitions
3766 - MINOR: add ::1 to predefined LOCALHOST acl
3767 - CLEANUP: assorted typo fixes in the code and comments
3768 - CLEANUP: Consistently `unsigned int` for bitfields
3769 - MEDIUM: resolvers: lower-case labels when converting from/to DNS names
3770 - MEDIUM: resolvers: replace bogus resolv_hostname_cmp() with memcmp()
3771 - MINOR: jwt: Empty the certificate tree during deinit
3772 - MINOR: jwt: jwt_verify returns negative values in case of error
3773 - MINOR: jwt: Do not rely on enum order anymore
3774 - BUG/MEDIUM: stream: Keep FLT_END analyzers if a stream detects a channel error
3775 - MINOR: httpclient/cli: access should be only done from expert mode
3776 - DOC: management: doc about the CLI httpclient
3777 - BUG/MEDIUM: tcpcheck: Properly catch early HTTP parsing errors
3778 - BUG/MAJOR: dns: tcp session can remain attached to a list after a free
3779 - BUG/MAJOR: dns: attempt to lock globaly for msg waiter list instead of use barrier
3780 - CLEANUP: dns: always detach the appctx from the dns session on release
3781 - DEBUG: dns: add a few more BUG_ON at sensitive places
3782 - BUG/MAJOR: resolvers: add other missing references during resolution removal
3783 - CLEANUP: resolvers: do not export resolv_purge_resolution_answer_records()
3784 - BUILD: resolvers: avoid a possible warning on null-deref
3785 - BUG/MEDIUM: resolvers: always check a valid item in query_list
3786 - CLEANUP: always initialize the answer_list
3787 - CLEANUP: resolvers: simplify resolv_link_resolution() regarding requesters
3788 - CLEANUP: resolvers: replace all LIST_DELETE with LIST_DEL_INIT
3789 - MEDIUM: resolvers: use a kill list to preserve the list consistency
3790 - MEDIUM: resolvers: remove the last occurrences of the "safe" argument
3791 - BUG/MEDIUM: checks: fix the starting thread for external checks
3792 - MEDIUM: resolvers: replace the answer_list with a (flat) tree
3793 - MEDIUM: resolvers: hash the records before inserting them into the tree
3794 - BUG/MAJOR: buf: fix varint API post- vs pre- increment
3795 - OPTIM: resolvers: move the eb32 node before the data in the answer_item
3796 - MINOR: list: add new macro LIST_INLIST_ATOMIC()
3797 - OPTIM: dns: use an atomic check for the list membership
3798 - BUG/MINOR: task: do not set TASK_F_USR1 for no reason
3799 - BUG/MINOR: mux-h2: do not prevent from sending a final GOAWAY frame
3800 - MINOR: connection: add a new CO_FL_WANT_DRAIN flag to force drain on close
3801 - MINOR: mux-h2: perform a full cycle shutdown+drain on close
3802 - CLEANUP: resolvers: get rid of single-iteration loop in resolv_get_ip_from_response()
3803 - MINOR: quic: Increase the size of handshake RX UDP datagrams
3804 - BUG/MEDIUM: lua: fix memory leaks with realloc() on non-glibc systems
3805 - MINOR: memprof: report the delta between alloc and free on realloc()
3806 - MINOR: memprof: add one pointer size to the size of allocations
3807 - BUILD: fix compilation on NetBSD
3808 - MINOR: backend: add traces for idle connections reuse
3809 - BUG/MINOR: backend: fix improper insert in avail tree for always reuse
3810 - MINOR: backend: improve perf with tcp proxies skipping idle conns
3811 - MINOR: connection: remove unneeded memset 0 for idle conns
3812
Willy Tarreauf2b1b4d2021-10-16 15:24:22 +020038132021/10/16 : 2.5-dev10
3814 - MINOR: initcall: Rename __GLOBL and __GLOBL1.
3815 - MINOR: rules: add a new function new_act_rule() to allocate act_rules
3816 - MINOR: rules: add a file name and line number to act_rules
3817 - MINOR: stream: report the current rule in "show sess all" when known
3818 - MINOR: stream: report the current filter in "show sess all" when known
3819 - CLEANUP: stream: Properly indent current_rule line in "show sess all"
3820 - BUG/MINOR: lua: Fix lua error handling in `hlua_config_prepend_path()`
3821 - CI: github: switch to OpenSSL 3.0.0
3822 - REGTESTS: ssl: Fix references to removed option in test description
3823 - MINOR: ssl: Add ssllib_name_startswith precondition
3824 - REGTESTS: ssl: Fix ssl_errors test for OpenSSL v3
3825 - REGTESTS: ssl: Reenable ssl_errors test for OpenSSL only
3826 - REGTESTS: ssl: Use mostly TLSv1.2 in ssl_errors test
3827 - MEDIUM: mux-quic: rationalize tx buffers between qcc/qcs
3828 - MEDIUM: h3: properly manage tx buffers for large data
3829 - MINOR: mux-quic: standardize h3 settings sending
3830 - CLEANUP: h3: remove dead code
3831 - MINOR: mux-quic: implement standard method to detect if qcc is dead
3832 - MEDIUM: mux-quic: defer stream shut if remaining tx data
3833 - MINOR: mux: remove last occurences of qcc ring buffer
3834 - MINOR: quic: handle CONNECTION_CLOSE frame
3835 - REGTESTS: ssl: re-enable set_ssl_cert_bundle.vtc
3836 - MINOR: ssl: add ssl_fc_is_resumed to "option httpslog"
3837 - MINOR: http: Add http_auth_bearer sample fetch
3838 - MINOR: jwt: Parse JWT alg field
3839 - MINOR: jwt: JWT tokenizing helper function
3840 - MINOR: jwt: Insert public certificates into dedicated JWT tree
3841 - MINOR: jwt: jwt_header_query and jwt_payload_query converters
3842 - MEDIUM: jwt: Add jwt_verify converter to verify JWT integrity
3843 - REGTESTS: jwt: Add tests for the jwt_verify converter
3844 - BUILD: jwt: fix declaration of EVP_KEY in jwt-h.h
3845 - MINOR: proto_tcp: use chunk_appendf() to ouput socket setup errors
3846 - MINOR: proto_tcp: also report the attempted MSS values in error message
3847 - MINOR: inet: report the faulty interface name in "bind" errors
3848 - MINOR: protocol: report the file and line number for binding/listening errors
3849 - MINOR: protocol: uniformize protocol errors
3850 - MINOR: resolvers: fix the resolv_str_to_dn_label() API about trailing zero
3851 - BUG/MEDIUM: resolver: make sure to always use the correct hostname length
3852 - BUG/MINOR: resolvers: do not reject host names of length 255 in SRV records
3853 - MINOR: resolvers: fix the resolv_dn_label_to_str() API about trailing zero
3854 - MEDIUM: listeners: split the thread mask between receiver and bind_conf
3855 - MINOR: listeners: add clone_listener() to duplicate listeners at boot time
3856 - MEDIUM: listener: add the "shards" bind keyword
3857 - BUG/MEDIUM: resolvers: use correct storage for the target address
3858 - MINOR: resolvers: merge address and target into a union "data"
3859 - BUG/MEDIUM: resolvers: fix truncated TLD consecutive to the API fix
3860 - BUG/MEDIUM: jwt: fix base64 decoding error detection
3861 - BUG/MINOR: jwt: use CRYPTO_memcmp() to compare HMACs
3862 - DOC: jwt: fix a typo in the jwt_verify() keyword description
3863 - BUG/MEDIUM: sample/jwt: fix another instance of base64 error detection
3864 - BUG/MINOR: http-ana: Don't eval front after-response rules if stopped on back
3865 - BUG/MINOR: sample: Fix 'fix_tag_value' sample when waiting for more data
3866 - DOC: config: Move 'tcp-response content' at the right place
3867 - BUG/MINOR: proxy: Use .disabled field as a bitfield as documented
3868 - MINOR: proxy: Introduce proxy flags to replace disabled bitfield
3869 - MINOR: sample/arg: Be able to resolve args found in defaults sections
3870 - MEDIUM: proxy: Warn about ambiguous use of named defaults sections
3871 - MINOR: proxy: Be able to reference the defaults section used by a proxy
3872 - MINOR: proxy: Add PR_FL_READY flag on fully configured and usable proxies
3873 - MINOR: config: Finish configuration for referenced default proxies
3874 - MINOR: config: No longer remove previous anonymous defaults section
3875 - MINOR: tcpcheck: Support 2-steps args resolution in defaults sections
3876 - MEDIUM: rules/acl: Parse TCP/HTTP rules and acls defined in defaults sections
3877 - MEDIUM: tcp-rules: Eval TCP rules defined in defaults sections
3878 - MEDIUM: http-ana: Eval HTTP rules defined in defaults sections
3879 - BUG/MEDIUM: sample: Cumulate frontend and backend sample validity flags
3880 - REGTESTS: Add scripts to test support of TCP/HTTP rules in defaults sections
3881 - DOC: config: Add documentation about TCP/HTTP rules in defaults section
3882 - DOC: config: Rework and uniformize how TCP/HTTP rules are documented
3883 - BUG/MINOR: proxy: Release ACLs and TCP/HTTP rules of default proxies
3884 - BUG/MEDIUM: cpuset: fix cpuset size for FreeBSD
3885 - BUG/MINOR: sample: fix backend direction flags consecutive to last fix
3886 - BUG/MINOR: listener: fix incorrect return on out-of-memory
3887 - BUG/MINOR: listener: add an error check for unallocatable trash
3888 - CLEANUP: listeners: remove unreachable code in clone_listener()
3889
Willy Tarreau4c67bd62021-10-08 18:22:24 +020038902021/10/08 : 2.5-dev9
3891 - head-truc
3892 - REGTESTS: lua: test the httpclient:get() feature
3893 - Revert "head-truc"
3894 - BUG/MEDIUM: httpclient: replace ist0 by istptr
3895 - MINOR: config: use a standard parser for the "nbthread" keyword
3896 - CLEANUP: init: remove useless test against MAX_THREADS in affinity loop
3897 - MEDIUM: init: de-uglify the per-thread affinity setting
3898 - MINOR: init: extract the setup and end of threads to their own functions
3899 - MINOR: log: Try to get the status code when MUX_EXIT_STATUS is retrieved
3900 - MINOR: mux-h1: Set error code if possible when MUX_EXIT_STATUS is returned
3901 - MINOR: mux-h1: Be able to set custom status code on parsing error
3902 - MEDIUM: mux-h1: Reject HTTP/1.0 GET/HEAD/DELETE requests with a payload
3903 - MEDIUM: h1: Force close mode for invalid uses of T-E header
3904 - BUG/MINOR: mux-h1/mux-fcgi: Sanitize TE header to only send "trailers"
3905 - MINOR: http: Add 422-Unprocessable-Content error message
3906 - MINOR: h1: Change T-E header parsing to fail if chunked encoding is found twice
3907 - BUG/MEDIUM: mux-h1/mux-fcgi: Reject messages with unknown transfer encoding
3908 - REGTESTS: Add script to validate T-E header parsing
3909 - REORG: pools: move default settings to defaults.h
3910 - DOC: peers: fix doc "enable" statement on "peers" sections
3911 - MINOR: Makefile: add MEMORY_POOLS to the list of DEBUG_xxx options
3912 - MINOR: ssl: Set connection error code in case of SSL read or write fatal failure
3913 - MINOR: ssl: Rename ssl_bc_hsk_err to ssl_bc_err
3914 - MINOR: ssl: Store the last SSL error code in case of read or write failure
3915 - REGTESTS: ssl: enable show_ssl_ocspresponse.vtc again
3916 - REGTESTS: ssl: enable ssl_crt-list_filters.vtc again
3917 - BUG/MEDIUM: lua: fix wakeup condition from sleep()
3918 - BUG/MAJOR: lua: use task_wakeup() to properly run a task once
3919 - MINOR: arg: Be able to forbid unresolved args when building an argument list
3920 - BUG/MINOR: tcpcheck: Don't use arg list for default proxies during parsing
3921 - BUG/MINOR: tcp-rules: Stop content rules eval on read error and end-of-input
3922 - MINOR: tasks: catch TICK_ETERNITY with BUG_ON() in __task_queue()
3923 - REGTESTS: ssl: show_ssl_ocspresponse w/ freebsd won't use base64
3924 - REGTESTS: ssl: wrong feature cmd in show_ssl_ocspresponse.vtc
3925 - CLEANUP: tasks: remove the long-unused work_lists
3926 - MINOR: task: provide 3 task_new_* wrappers to simplify the API
3927 - MINOR: time: uninline report_idle() and move it to task.c
3928 - REORG: sched: move idle time calculation from time.h to task.h
3929 - REORG: sched: move the stolen CPU time detection to sched_entering_poll()
3930 - BUG/MEDIUM: filters: Fix a typo when a filter is attached blocking the release
3931 - BUG/MEDIUM: http-ana: Clear request analyzers when applying redirect rule
3932 - MINOR: httpclient: destroy() must free the headers and the ists
3933 - MINOR: httpclient: set HTTPCLIENT_F_ENDED only in release
3934 - MINOR: httpclient: stop_and_destroy() ask the applet to autokill
3935 - MINOR: httpclient: test if started during stop_and_destroy()
3936 - MINOR: httpclient/lua: implement garbage collection
3937 - BUG/MEDIUM: httpclient/lua: crash because of b_xfer and get_trash_chunk()
3938 - MINOR: httpclient: destroy checks if a client was started but not stopped
3939 - BUG/MINOR: httpclient/lua: does not process headers when failed
3940 - MINOR: httpclient/lua: supports headers via named arguments
3941 - CLEANUP: server: always include the storage for SSL settings
3942 - CLEANUP: sample: rename sample_conv_var2smp() to *_sint
3943 - CLEANUP: sample: uninline sample_conv_var2smp_str()
3944 - MINOR: sample: provide a generic var-to-sample conversion function
3945 - BUG/MEDIUM: sample: properly verify that variables cast to sample
3946 - BUILD: action: add the relevant structures for function arguments
3947 - BUILD: extcheck: needs to include stream-t.h
3948 - BUILD: hlua: needs to include stream-t.h
3949 - BUILD: stats: define several missing structures in stats.h
3950 - BUILD: resolvers: define missing types in resolvers.h
3951 - BUILD: httpclient: include missing ssl_sock-t
3952 - BUILD: sample: include openssl-compat
3953 - BUILD: http_ana: need to include proxy-t to get redirect_rule
3954 - BUILD: http_rules: requires http_ana-t.h for REDIRECT_*
3955 - BUILD: vars: need to include xxhash
3956 - BUILD: peers: need to include eb{32/mb/pt}tree.h
3957 - BUILD: ssl_ckch: include ebpttree.h in ssl_ckch.c
3958 - BUILD: compiler: add the container_of() and container_of_safe() macros
3959 - BUILD: idleconns: include missing ebmbtree.h at several places
3960 - BUILD: connection: connection.h needs list.h and server.h
3961 - BUILD: tree-wide: add missing http_ana.h from many places
3962 - BUILD: cfgparse-ssl: add missing errors.h
3963 - BUILD: tcp_sample: include missing errors.h and session-t.h
3964 - BUILD: mworker: mworker-prog needs time.h for the 'now' variable
3965 - BUILD: tree-wide: add several missing activity.h
3966 - BUILD: compat: fix -Wundef on SO_REUSEADDR
3967 - CLEANUP: pools: pools-t.h doesn't need to include thread-t.h
3968 - REORG: pools: uninline the UAF allocator and force-inline the rest
3969 - REORG: thread: uninline the lock-debugging code
3970 - MINOR: thread/debug: replace nsec_now() with now_mono_time()
3971 - CLEANUP: remove some unneeded includes from applet-t.h
3972 - REORG: listener: move bind_conf_alloc() and listener_state_str() to listener.c
3973 - CLEANUP: listeners: do not include openssl-compat
3974 - CLEANUP: servers: do not include openssl-compat
3975 - REORG: ssl: move ssl_sock_is_ssl() to connection.h and rename it
3976 - CLEANUP: mux_fcgi: remove dependency on ssl_sock
3977 - CLEANUP: ssl/server: move ssl_sock_set_srv() to srv_set_ssl() in server.c
3978 - REORG: ssl-sock: move the sslconns/totalsslconns counters to global
3979 - REORG: sample: move the crypto samples to ssl_sample.c
3980 - REORG: sched: moved samp_time and idle_time to task.c as well
3981 - REORG: time/ticks: move now_ms and global_now_ms definitions to ticks.h
3982 - CLEANUP: tree-wide: remove unneeded include time.h in ~20 files
3983 - REORG: activity: uninline activity_count_runtime()
3984 - REORG: acitvity: uninline sched_activity_entry()
3985 - CLEANUP: stream: remove many unneeded includes from stream-t.h
3986 - CLEANUP: stick-table: no need to include socket nor in.h
3987 - MINOR: connection: use uint64_t for the hashes
3988 - REORG: connection: move the hash-related stuff to connection.c
3989 - REORG: connection: uninline conn_notify_mux() and conn_delete_from_tree()
3990 - REORG: server: uninline the idle conns management functions
3991 - REORG: ebtree: split structures into their own file ebtree-t.h
3992 - CLEANUP: tree-wide: only include ebtree-t from type files
3993 - REORG: connection: move the largest inlines from connection.h to connection.c
3994 - CLEANUP: connection: do not include http_ana!
3995 - CLEANUP: connection: remove unneeded tcpcheck-t.h and use only session-t.h
3996 - REORG: connection: uninline the rest of the alloc/free stuff
3997 - REORG: task: uninline the loop time measurement code
3998 - CLEANUP: time: move a few configurable defines to defaults.h
3999 - CLEANUP: fd: do not include time.h
4000 - REORG: fd: uninline compute_poll_timeout()
4001 - CLENAUP: wdt: use ha_tkill() instead of accessing pthread directly
4002 - REORG: thread: move the thread init/affinity/stop to thread.c
4003 - REORG: thread: move ha_get_pthread_id() to thread.c
4004 - MINOR: thread: use a dedicated static pthread_t array in thread.c
4005 - CLEANUP: thread: uninline ha_tkill/ha_tkillall/ha_cpu_relax()
4006 - DOC: configuration: add clarification on escaping in keyword arguments
4007 - BUG/MINOR: task: fix missing include with DEBUG_TASK
4008 - MINOR: pools: report the amount used by thread caches in "show pools"
4009 - MINOR: quic: Distinguish packet and SSL read enc. level in traces
4010 - MINOR: quic: Add a function to dump SSL stack errors
4011 - MINOR: quic: BUG_ON() SSL errors.
4012 - MINOR: quic: Fix SSL error issues (do not use ssl_bio_and_sess_init())
4013 - BUG/MEDIUM: mux-quic: reinsert all streams in by_id tree
4014 - BUG/MAJOR: xprt-quic: do not queue qc timer if not set
4015 - MINOR: mux-quic: release connection if no more bidir streams
4016 - BUG/MAJOR: quic: remove qc from receiver cids tree on free
4017 - BUG/MEDIUM: mux_h2: Handle others remaining read0 cases on partial frames
4018 - MINOR: qpack: do not encode invalid http status code
4019 - MINOR: qpack: support non-indexed http status code encoding
4020 - MINOR: qpack: fix memory leak on huffman decoding
4021 - CLEANUP: mux-quic: remove unused code
4022 - BUG/MINOR: quic: fix includes for compilation
4023 - BUILD: connection: avoid a build warning on FreeBSD with SO_USER_COOKIE
4024 - BUILD: init: avoid a build warning on FreeBSD with USE_PROCCTL
4025 - REORG: time: move time-keeping code and variables to clock.c
4026 - REORG: clock: move the updates of cpu/mono time to clock.c
4027 - MINOR: activity: get the run_time from the clock updates
4028 - CLEANUP: clock: stop exporting before_poll and after_poll
4029 - REORG: clock: move the clock_id initialization to clock.c
4030 - REORG: clock/wdt: move wdt timer initialization to clock.c
4031 - MINOR: clock: move the clock_ids to clock.c
4032 - MINOR: wdt: move wd_timer to wdt.c
4033 - CLEANUP: wdt: do not remap SI_TKILL to SI_LWP, test the values directly
4034 - REORG: thread/sched: move the task_per_thread stuff to thread_ctx
4035 - REORG: thread/clock: move the clock parts of thread_info to thread_ctx
4036 - REORG: thread/sched: move the thread_info flags to the thread_ctx
4037 - REORG: thread/sched: move the last dynamic thread_info to thread_ctx
4038 - MINOR: thread: make "ti" a const pointer and clean up thread_info a bit
4039 - MINOR: threads: introduce a minimalistic notion of thread-group
4040 - MINOR: global: add a new "thread-groups" directive
4041 - MINOR: global: add a new "thread-group" directive
4042 - MINOR: threads: make tg point to the current thread's group
4043 - MEDIUM: threads: automatically assign threads to groups
4044 - MINOR: threads: set the group ID and its bit in the thread group
4045 - MINOR: threads: set the tid, ltid and their bit in thread_cfg
4046 - MEDIUM: threads: replace ha_set_tid() with ha_set_thread()
4047 - MINOR: threads: add the current group ID in thread-local "tgid" variable
4048 - MINOR: debug: report the group and thread ID in the thread dumps
4049 - MEDIUM: listeners: support the definition of thread groups on bind lines
4050 - MINOR: threads: add a new function to resolve config groups and masks
4051 - MEDIUM: config: resolve relative threads on bind lines to absolute ones
4052 - MEDIUM: stick-table: never learn the "conn_cur" value from peers
4053
Willy Tarreau538f3e02021-09-24 15:52:17 +020040542021/09/24 : 2.5-dev8
4055 - BUILD: compiler: fixed a missing test on defined(__GNUC__)
4056 - BUILD: halog: fix a -Wundef warning on non-glibc systems
4057 - BUILD: threads: fix -Wundef for _POSIX_PRIORITY_SCHEDULING on libmusl
4058 - BUG/MINOR: compat: make sure __WORDSIZE is always defined
4059 - BUILD: sample: fix format warning on 32-bit archs in sample_conv_be2dec_check()
4060 - CLEANUP: pools: factor all malloc_trim() calls into trim_all_pools()
4061 - MINOR: pools: automatically disable malloc_trim() with external allocators
4062 - MINOR: pools: report it when malloc_trim() is enabled
4063 - DOC: Add .mailmap
4064 - CLEANUP: tree-wide: fix prototypes for functions taking no arguments.
4065 - CLEANUP: Remove prototype for non-existent thread_get_default_count()
4066 - CLEANUP: acl: Remove unused variable when releasing an acl expression
4067 - BUG/MAJOR: mux-h1: Don't eval input data if an error was reported
4068 - DOC: update Tim's address in .mailmap
4069 - MINOR: pools: use mallinfo2() when available instead of mallinfo()
4070 - BUG/MINOR: tcpcheck: Improve LDAP response parsing to fix LDAP check
4071 - DOC: management: certificate files must be sanitized before injection
4072 - BUG/MINOR: connection: prevent null deref on mux cleanup task allocation
4073 - BUILD: ist: prevent gcc11 maybe-uninitialized warning on istalloc
4074 - BUG/MINOR: cli/payload: do not search for args inside payload
4075 - BUILD: sockpair: do not set unused flag
4076 - BUILD: proto_uxst: do not set unused flag
4077 - BUILD: fd: remove unused variable totlen in fd_write_frag_line()
4078 - MINOR: applet: remove the thread mask from appctx_new()
4079 - REORG: threads: move ha_get_pthread_id() to tinfo.h
4080 - CLEANUP: Apply ist.cocci
4081 - DEV: coccinelle: Add ist.cocci
4082 - CLEANUP: Apply bug_on.cocci
4083 - DEV: coccinelle: Add xalloc_size.cocci
4084 - DEV: coccinelle: Add bug_on.cocci
4085 - CLEANUP: Apply xalloc_size.cocci
4086 - DEV: coccinelle: Add xalloc_cast.cocci
4087 - BUG/MINOR: flt-trace: fix an infinite loop when random-parsing is set
4088 - MINOR: httpclient: add the EOH when no headers where provided
4089 - CLEANUP: Include check.h in flt_spoe.c
4090 - CLEANUP: Remove unreachable `break` from parse_time_err()
4091 - BUG/MINOR: server: allow 'enable health' only if check configured
4092 - BUG/MINOR: server: alloc dynamic srv ssl ctx if proxy uses ssl chk rule
4093 - MINOR: server: enable more keywords for ssl checks for dynamic servers
4094 - MINOR: server: enable more check related keywords for dynamic servers
4095 - REORG: server: move slowstart init outside of checks
4096 - MINOR: server: enable slowstart for dynamic server
4097 - MEDIUM: listener: deprecate "process" in favor of "thread" on bind lines
4098 - BUG/MEDIUM: leastconn: fix rare possibility of divide by zero
4099 - BUG/MINOR: quic: Possible NULL pointer dereferencing when dumping streams.
4100 - MINOR: quic: Move transport parmaters to anynomous struct.
4101 - MINOR: mux_quic: Add QUIC mux layer.
4102 - MINOR: connection: Add callbacks definitions for QUIC.
4103 - MINOR: quic: Attach QUIC mux connection objet to QUIC connection.
4104 - MINOR: quic: Add a new definition to store STREAM frames.
4105 - MINOR: h3: Add HTTP/3 definitions.
4106 - MINOR: qpack: Add QPACK compression.
4107 - MINOR: quic_sock: Finalize the QUIC connections.
4108 - MINOR: quic: Disable the action of ->rcv_buf() xprt callback
4109 - MINOR: quic: Add callbacks for (un)scribing to QUIC xprt.
4110 - MINOR: quic: Variable-length integer encoding/decoding into/from buffer struct.
4111 - BUG/MINOR: quic: Wrong ->accept() error handling
4112 - MINOR: quic: Add a wrapper function to update transport parameters.
4113 - MINOR: quic: Update the streams transport parameters.
4114 - MINOR: quic: Avoid header collisions
4115 - MINOR: quic: Replace max_packet_size by max_udp_payload size.
4116 - MINOR: quic: Enable some quic, h3 and qpack modules compilation.
4117 - MINOR: quic: Move an SSL func call from QUIC I/O handler to the xprt init.
4118 - MINOR: quic: Initialize the session before starting the xprt.
4119 - BUG/MINOR: quic: Do not check the acception of a new conn from I/O handler.
4120 - MINOR: quic: QUIC conn initialization from I/O handler
4121 - MINOR: quic: Remove header protection for conn with context
4122 - MINOR: quic: Derive the initial secrets asap
4123 - MINOR: quic: Remove header protection also for Initial packets
4124 - BUG/MINOR: quic: Wrong memory free in quic_update_ack_ranges_list()
4125 - MINOR: quic: quic_update_ack_ranges_list() code factorization
4126 - MINOR: quic: Useless test in quic_update_ack_ranges_list()
4127 - MINOR: quic: Remove a useless variable in quic_update_ack_ranges_list()
4128 - BUG/MINOR: quic: Missing cases treatement when updating ACK ranges
4129 - CLEAUNUP: quic: Usage of a useless variable in qc_treat_rx_pkts()
4130 - BUG/MINOR: quic: Wrong RX packet reference counter usage
4131 - MINOR: quic: Do not stop the packet parsing too early in qc_treat_rx_packets()
4132 - MINOR: quic: Add a lock for RX packets
4133 - MINOR: quic: Move the connection state
4134 - MINOR: quic: Replace quic_conn_ctx struct by ssl_sock_ctx struct
4135 - MINOR: quic: Replace the RX list of packet by a thread safety one.
4136 - MINOR: quic: Replace the RX unprotected packet list by a thread safety one.
4137 - MINOR: quic: Add useful traces for I/O dgram handler
4138 - MINOR: quic: Do not wakeup the xprt task on ACK receipt
4139 - MINOR: quic: Connection allocations rework
4140 - MINOR: quic: Move conn_prepare() to ->accept_conn() callback
4141 - MINOR: quic: Make qc_lstnr_pkt_rcv() be thread safe.
4142 - MINOR: quic: Add a ring buffer implementation for QUIC
4143 - MINOR: quic: Prefer x25519 as ECDH preferred parametes.
4144 - MINOR: quic: Add the QUIC v1 initial salt.
4145 - BUG/MINOR: quic: Too much reduced computed space to build handshake packets
4146 - MINOR: net_helper: add functions for pointers
4147 - MINOR: quic: Add ring buffer definition (struct qring) for QUIC
4148 - MINOR: proto_quic: Allocate TX ring buffers for listeners
4149 - MINOR: quic: Initialize pointers to TX ring buffer list
4150 - MINOR: quic: Make use of TX ring buffers to send QUIC packets
4151 - MINOR: quic_tls: Make use of the QUIC V1 salt.
4152 - MINOR: quic: Remove old TX buffer implementation
4153 - MINOR: Add function for TX packets reference counting
4154 - MINOR: quic: Add TX packets at the very last time to their tree.
4155 - MINOR: quic: Unitialized mux context upon Client Hello message receipt.
4156 - MINOR: quic: Missing encryption level rx.crypto member initialization and lock.
4157 - MINOR: quic: Rename ->rx.rwlock of quic_enc_level struct to ->rx.pkts_rwlock
4158 - MINOR: quic: Make qc_treat_rx_pkts() be thread safe.
4159 - MINOR: quic: Make ->tx.frms quic_pktns struct member be thread safe
4160 - MINOR: quic: Replace quic_tx_frm struct by quic_frame struct
4161 - MINOR: quic: Add a mask for TX frame builders and their authorized packet types
4162 - MINOR: quic: Add a useful function to compute any frame length.
4163 - MINOR: quic: Add the QUIC connection state to traces
4164 - MINOR: quic: Store post handshake frame in ->pktns.tx.frms MT_LIST
4165 - MINOR: quic: Add the packet type to quic_tx_packet struct
4166 - MINOR: quic: Modify qc_do_build_hdshk_pkt() to accept any packet type
4167 - MINOR: quic: Atomically handle packet number space ->largest_acked_pn variable
4168 - MINOR: quic: Modify qc_build_cfrms() to support any frame
4169 - MINOR: quic: quic_conn_io_cb() task rework
4170 - MINOR: quic: Make qc_build_hdshk_pkt() atomically consume a packet number
4171 - MINOR: quic: qc_do_build_hdshk_pkt() does not need to pass a copy of CRYPTO frame
4172 - MINOR: quic: Remove Application level related functions
4173 - MINOR: quic: Rename functions which do not build only Handshake packets
4174 - MINOR: quic: Make circular buffer internal buffers be variable-sized.
4175 - MINOR: quic: Add a pool for TX ring buffer internal buffer
4176 - MINOR: quic: Make use of the last cbuf API when initializing TX ring buffers
4177 - MINOR: quic: Missing acks encoded size updates.
4178 - MINOR: quic: Evaluate the packet lengths in advance
4179 - MINOR: quic: Update the TLS extension for QUIC transport parameters
4180 - MINOR: quic: Fix handshake state debug strings
4181 - MINOR: quic: Atomically get/set the connection state
4182 - MINOR: quic: Missing QUIC encryption level for qc_build_pkt()
4183 - MINOR: quic: Coalesce Application level packets with Handshake packets.
4184 - MINOR: quic: Wrong flags handling for acks
4185 - MINOR: quic: Missing case when discarding HANDSHAKE secrets
4186 - MINOR: quic: Post handshake packet building improvements
4187 - MINOR: quic: Prepare Application level packet asap.
4188 - MINOR: h3: Send h3 settings asap
4189 - MINOR: quic: Wrong STREAM frame length computing
4190 - MINOR: quic: Wrong short packet minimum length
4191 - MINOR: quic: Prepare STREAM frames to fill QUIC packets
4192 - MINOR: h3: change default settings
4193 - MINOR: quic-enc: fix varint encoding
4194 - MINOR: qpack: fix wrong comment
4195 - MINOR: qpack: generate headers list on decoder
4196 - MINOR: h3: parse headers to htx
4197 - MINOR: h3: allocate stream on headers
4198 - MEDIUM: mux-quic: implement ring buffer on stream tx
4199 - MINOR: mux-quic: send SETTINGS on uni stream
4200 - MINOR: h3: define snd_buf callback and divert mux ops
4201 - MINOR: mux-quic: define FIN stream flag
4202 - MINOR: qpack: create qpack-enc module
4203 - MINOR: qpack: encode headers functions
4204 - MINOR: h3: encode htx headers to QPACK
4205 - MINOR: h3: send htx data
4206 - MINOR: h3/mux: detect fin on last h3 frame of the stream
4207 - MINOR: quic: Shorten some handshakes
4208 - MINOR: quic: Make QUIC-TLS support at least two initial salts
4209 - MINOR: quic: Attach the QUIC connection to a thread.
4210 - MINOR: quic: Missing active_connection_id_limit default value
4211 - MINOR: quic_sock: Do not flag QUIC connections as being set
4212 - MINOR: buf: Add b_force_xfer() function
4213 - MINOR: quic: Make use of buffer structs to handle STREAM frames
4214 - MINOR: mux_quic: move qc_process() code to qc_send()
4215 - MINOR: quic: Add a typedef for unsigned long long
4216 - MINOR: quic: Confusion between TX/RX for the frame builders
4217 - MINOR: quic: Wrong packet flags settings during frame building
4218 - MINOR: quic: Constantness fixes for frame builders/parsers.
4219 - MINOR: quic_tls: Client/serveur state reordering
4220 - MINOR: quic: Wrong packet loss detection due to wrong pktns order
4221 - MINOR: quic: Wrong packet number space selection in quic_loss_pktns()
4222 - MINOR: quic: Initial packet number spaced not discarded
4223 - MINOR: quic: Add useful trace about pktns discarding
4224 - MINOR: mux_quic: Export the mux related flags
4225 - MINOR: quic: Implement quic_conn_subscribe()
4226 - MINOR: quic: Wake up the mux upon ACK receipt
4227 - MINOR: quic: Stream FIN bit fix in qcs_push_frame()
4228 - MINOR: quic: Implement qc_process_mux()
4229 - MINOR: quic: Wake up the xprt from mux
4230 - CLEANUP: quic: Remove useless inline functions
4231 - MINOR: quic: RX packets memory leak
4232 - MINOR: quic: Possible endless loop in qc_treat_rx_pkts()
4233 - MINOR: quic: Crash upon too big packets receipt
4234 - MINOR: quic: define close handler
4235 - MEDIUM: quic: implement mux release/conn free
4236 - MINOR: quic: fix qcc subs initialization
4237 - BUG/MINOR: h1-htx: Fix a typo when request parser is reset
4238 - BUG/MEDIUM: mux-h1: Adjust conditions to ask more space in the channel buffer
4239 - BUG/MEDIUM: stream-int: Notify stream that the mux wants more room to xfer data
4240 - BUG/MEDIUM: stream: Stop waiting for more data if SI is blocked on RXBLK_ROOM
4241 - MINOR: stream-int: Set CO_RFL transient/persistent flags apart in si_cs_rcv()
4242 - MINOR: htx: Add an HTX flag to know when a message is fragmented
4243 - MINOR: htx: Add a function to know if the free space wraps
4244 - BUG/MEDIUM: stream-int: Defrag HTX message in si_cs_recv() if necessary
4245 - MINOR: stream-int: Notify mux when the buffer is not stuck when calling rcv_buf
4246 - BUG/MINOR: http-ana: increment internal_errors counter on response error
4247 - MINOR: stats: Enable dark mode on stat web page
4248 - CLEANUP: stats: Fix some alignment mistakes
4249 - MINOR: httpclient: httpclient_data() returns the available data
4250 - MINOR: httpclient: httpclient_ended() returns 1 if the client ended
4251 - MINOR: httpclient/lua: httpclient:get() API in lua
4252 - MINOR: httpclient/lua: implement the headers in the response object
4253 - BUG/MINOR: httpclient/lua: return an error on argument check
4254 - CLEANUP: slz: Mark `reset_refs` as static
4255
Willy Tarreau4b3a9fe2021-09-12 11:36:38 +020042562021/09/12 : 2.5-dev7
4257 - BUG/MINOR: config: reject configs using HTTP with bufsize >= 256 MB
4258 - CLEANUP: htx: remove comments about "must be < 256 MB"
4259 - BUG/MAJOR: htx: fix missing header name length check in htx_add_header/trailer
4260 - Revert "BUG/MINOR: stream-int: Don't block reads in si_update_rx() if chn may receive"
4261 - MINOR: proxy: add a global "grace" directive to postpone soft-stop
4262 - MINOR: vars: rename vars_init() to vars_init_head()
4263 - CLEANUP: vars: rename sample_clear_stream() to var_unset()
4264 - REORG: vars: remerge sample_store{,_stream}() into var_set()
4265 - MEDIUM: vars: make the ifexist variant of set-var only apply to the proc scope
4266 - MINOR: vars: add a VF_CREATEONLY flag for creation
4267 - MINOR: vars: support storing empty sample data with a variable
4268 - MINOR: vars: store flags into variables and add VF_PERMANENT
4269 - MEDIUM: vars: make var_clear() only reset VF_PERMANENT variables
4270 - MEDIUM: vars: pre-create parsed SCOPE_PROC variables as permanent ones
4271 - MINOR: vars: preset a random seed to hash variables names
4272 - MEDIUM: vars: replace the global name index with a hash
4273 - CLEANUP: vars: remove the now unused var_names array
4274 - MINOR: vars: centralize the lock/unlock into static inlines
4275 - OPTIM: vars: only takes the variables lock on shared entries
4276 - OPTIM: vars: remove internal bookkeeping for vars_global_size
4277 - OPTIM: vars: do not keep variables usage stats if no limit is set
4278 - BUILD: fix dragonfly build again on __read_mostly
4279 - CI: Github Actions: temporarily disable Opentracing
4280 - BUG/MEDIUM: mux-h1: Remove "Upgrade:" header for requests with payload
4281 - MINOR: htx: Skip headers with no value when adding a header list to a message
4282 - CLEANUP: mux-h1: Remove condition rejecting upgrade requests with payload
4283 - BUG/MEDIUM: stream-int: Don't block SI on a channel policy if EOI is reached
4284 - BUG/MEDIUM: http-ana: Reset channels analysers when returning an error
4285 - BUG/MINOR: filters: Set right FLT_END analyser depending on channel
4286 - CLEANUP: Add haproxy/xxhash.h to avoid modifying import/xxhash.h
4287 - CLEANUP: ebmbtree: Replace always-taken elseif by else
4288 - CLEANUP: Move XXH3 macro from haproxy/compat.h to haproxy/xxhash.h
4289 - BUILD: opentracing: exclude the use of haproxy variables for the OpenTracing context
4290 - BUG/MINOR: opentracing: enable the use of http headers without a set value
4291 - CLEANUP: opentracing: use the haproxy function to generate uuid
4292 - MINOR: opentracing: change the scope of the variable 'ot.uuid' from 'sess' to 'txn'
4293 - CI: Github Actions: re-enable Opentracing
4294 - CLEANUP: opentracing: simplify the condition on the empty header
4295 - BUG/MEDIUM lua: Add missing call to RESET_SAFE_LJMP in hlua_filter_new()
4296
Willy Tarreauf653e832021-09-03 15:19:56 +020042972021/09/03 : 2.5-dev6
4298 - BUG/MINOR threads: Use get_(local|gm)time instead of (local|gm)time
4299 - BUG/MINOR: tools: Fix loop condition in dump_text()
4300 - BUILD: ssl: next round of build warnings on LIBRESSL_VERSION_NUMBER
4301 - BUILD: ssl: fix two remaining occurrences of #if USE_OPENSSL
4302 - BUILD: tools: properly guard __GLIBC__ with defined()
4303 - BUILD: globally enable -Wundef
4304 - MINOR: log: Remove log-error-via-logformat option
4305 - MINOR: log: Add new "error-log-format" option
4306 - BUG/MAJOR: queue: better protect a pendconn being picked from the proxy
4307 - CLEANUP: Add missing include guard to signal.h
4308 - MINOR: ssl: Add new ssl_bc_hsk_err sample fetch
4309 - MINOR: connection: Add a connection error code sample fetch for backend side
4310 - REGTESTS: ssl: Add tests for bc_conn_err and ssl_bc_hsk_err sample fetches
4311 - MINOR: http-rules: add a new "ignore-empty" option to redirects.
4312 - CI: Github Actions: temporarily disable BoringSSL builds
4313 - BUG/MINOR: vars: fix set-var/unset-var exclusivity in the keyword parser
4314 - BUG/MINOR: vars: improve accuracy of the rules used to check expression validity
4315 - MINOR: sample: add missing ARGC_ entries
4316 - BUG/MINOR: vars: properly set the argument parsing context in the expression
4317 - DOC: configuration: remove wrong tcp-request examples in tcp-response
4318 - MEDIUM: vars: add a new "set-var-fmt" action
4319 - BUG/MEDIUM: vars: run over the correct list in release_store_rules()
4320 - BUG/MINOR: vars: truncate the variable name in error reports about scope.
4321 - BUG/MINOR: vars: do not talk about global section in CLI errors for set-var
4322 - CLEANUP: vars: name the temporary proxy "CFG" instead of "CLI" for global vars
4323 - MINOR: log: make log-format expressions completely usable outside of req/resp
4324 - MINOR: vars: add a "set-var-fmt" directive to the global section
4325 - MEDIUM: vars: also support format strings in CLI's "set var" command
4326 - CLEANUP: vars: factor out common code from vars_get_by_{desc,name}
4327 - MINOR: vars: make vars_get_by_* support an optional default value
4328 - MINOR: vars: make the vars() sample fetch function support a default value
4329 - BUILD: ot: add argument for default value to vars_get_by_name()
4330
Willy Tarreau446344c2021-08-28 13:46:11 +020043312021/08/28 : 2.5-dev5
4332 - MINOR: httpclient: initialize the proxy
4333 - MINOR: httpclient: implement a simple HTTP Client API
4334 - MINOR: httpclient/cli: implement a simple client over the CLI
4335 - MINOR: httpclient/cli: change the User-Agent to "HAProxy"
4336 - MEDIUM: ssl: Keep a reference to the client's certificate for use in logs
4337 - BUG/MEDIUM: h2: match absolute-path not path-absolute for :path
4338 - BUILD/MINOR: ssl: Fix compilation with OpenSSL 1.0.2
4339 - MINOR: server: check if srv is NULL in free_server()
4340 - MINOR: proxy: check if p is NULL in free_proxy()
4341 - BUG/MEDIUM: cfgparse: do not allocate IDs to automatic internal proxies
4342 - BUG/MINOR: http_client: make sure to preset the proxy's default settings
4343 - REGTESTS: http_upgrade: fix incorrect expectation on TCP->H1->H2
4344 - REGTESTS: abortonclose: after retries, 503 is expected, not close
4345 - REGTESTS: server: fix agent-check syntax and expectation
4346 - BUG/MINOR: httpclient: fix uninitialized sl variable
4347 - BUG/MINOR: httpclient/cli: change the appctx test in the callbacks
4348 - BUG/MINOR: httpclient: check if hdr_num is not 0
4349 - MINOR: httpclient: cleanup the include files
4350 - MINOR: hlua: take the global Lua lock inside a global function
4351 - MINOR: tools: add FreeBSD support to get_exec_path()
4352 - BUG/MINOR: systemd: ExecStartPre must use -Ws
4353 - MINOR: systemd: remove the ExecStartPre line in the unit file
4354 - MINOR: ssl: add an openssl version string parser
4355 - MINOR: cfgcond: implements openssl_version_atleast and openssl_version_before
4356 - CLEANUP: ssl: remove useless check on p in openssl_version_parser()
4357 - BUG/MINOR: stick-table: fix the sc-set-gpt* parser when using expressions
4358 - BUG/MINOR: httpclient: remove deinit of the httpclient
4359 - BUG/MEDIUM: base64: check output boundaries within base64{dec,urldec}
4360 - MINOR: httpclient: set verify none on the https server
4361 - MINOR: httpclient: add the server to the proxy
4362 - BUG/MINOR: httpclient: fix Host header
4363 - BUILD: httpclient: fix build without OpenSSL
4364 - CI: github-actions: remove obsolete options
4365 - CLEANUP: assorted typo fixes in the code and comments
4366 - MINOR: proc: setting the process to produce a core dump on FreeBSD.
4367 - BUILD: adopt script/build-ssl.sh for OpenSSL-3.0.0beta2
4368 - MINOR: server: return the next srv instance on free_server
4369 - BUG/MINOR: stats: use refcount to protect dynamic server on dump
4370 - MEDIUM: server: extend refcount for all servers
4371 - MINOR: server: define non purgeable server flag
4372 - MINOR: server: mark referenced servers as non purgeable
4373 - MINOR: server: mark servers referenced by LUA script as non purgeable
4374 - MEDIUM: server: allow to remove servers at runtime except non purgeable
4375 - BUG/MINOR: base64: base64urldec() ignores padding in output size check
4376 - REGTEST: add missing lua requirements on server removal test
4377 - REGTEST: fix haproxy required version for server removal test
4378 - BUG/MINOR: proxy: don't dump servers of internal proxies
4379 - REGTESTS: Use `feature cmd` for 2.5+ tests
4380 - REGTESTS: Remove REQUIRE_VERSION=1.5 from all tests
4381 - BUG/MINOR: resolvers: mark servers with name-resolution as non purgeable
4382 - MINOR: compiler: implement an ONLY_ONCE() macro
4383 - BUG/MINOR: lua: use strlcpy2() not strncpy() to copy sample keywords
4384 - MEDIUM: ssl: Capture more info from Client Hello
4385 - MINOR: sample: Expose SSL captures using new fetchers
4386 - MINOR: sample: Add be2dec converter
4387 - MINOR: sample: Add be2hex converter
4388 - MEDIUM: config: Deprecate tune.ssl.capture-cipherlist-size
4389 - BUG/MINOR: time: fix idle time computation for long sleeps
4390 - MINOR: time: add report_idle() to report process-wide idle time
4391 - BUG/MINOR: ebtree: remove dependency on incorrect macro for bits per long
4392 - BUILD: activity: use #ifdef not #if on USE_MEMORY_PROFILING
4393 - BUILD/MINOR: defaults: eliminate warning on MAXHOSTNAMELEN with -Wundef
4394 - BUILD/MINOR: ssl: avoid a build warning on LIBRESSL_VERSION with -Wundef
4395 - IMPORT: slz: silence a build warning with -Wundef
4396 - BUILD/MINOR: regex: avoid a build warning on USE_PCRE2 with -Wundef
4397
Willy Tarreau08d0f232021-08-17 14:08:55 +020043982021/08/17 : 2.5-dev4
4399 - MINOR: log: rename 'dontloglegacyconnerr' to 'log-error-via-logformat'
4400 - MINOR: doc: rename conn_status in `option httsplog`
4401 - MINOR: proxy: disabled takes a stopping and a disabled state
4402 - MINOR: stats: shows proxy in a stopped state
4403 - BUG/MINOR: server: fix race on error path of 'add server' CLI if track
4404 - CLEANUP: thread: fix fantaisist indentation of thread_harmless_till_end()
4405 - MINOR: threads: make thread_release() not wait for other ones to complete
4406 - MEDIUM: threads: add a stronger thread_isolate_full() call
4407 - MEDIUM: servers: make the server deletion code run under full thread isolation
4408 - BUG/MINOR: server: remove srv from px list on CLI 'add server' error
4409 - MINOR: activity/fd: remove the dead_fd counter
4410 - MAJOR: fd: get rid of the DWCAS when setting the running_mask
4411 - CLEANUP: fd: remove the now unused fd_set_running()
4412 - CLEANUP: fd: remove the now unneeded fd_mig_lock
4413 - BUG/MINOR: server: update last_change on maint->ready transitions too
4414 - MINOR: spoe: Add a pointer on the filter config in the spoe_agent structure
4415 - BUG/MEDIUM: spoe: Create a SPOE applet if necessary when the last one is released
4416 - BUG/MEDIUM: spoe: Fix policy to close applets when SPOE connections are queued
4417 - MINOR: server: unmark deprecated on enable health/agent cli
4418 - MEDIUM: task: implement tasklet kill
4419 - MINOR: server: initialize fields for dynamic server check
4420 - MINOR: check: allocate default check ruleset for every backends
4421 - MINOR: check: export check init functions
4422 - MINOR: check: do not increment global maxsock at runtime
4423 - MINOR: server: implement a refcount for dynamic servers
4424 - MEDIUM: check: implement check deletion for dynamic servers
4425 - MINOR: check: enable safe keywords for dynamic servers
4426 - MEDIUM: server: implement check for dynamic servers
4427 - MEDIUM: server: implement agent check for dynamic servers
4428 - REGTESTS: server: add dynamic check server test
4429 - MINOR: doc: specify ulimit-n usage for dynamic servers
4430 - REGTESTS: server: fix dynamic server with checks test
4431 - CI: travis-ci: temporarily disable arm64 builds
4432 - BUG/MINOR: check: test if server is not null in purge
4433 - MINOR: global: define MODE_STOPPING
4434 - BUG/MINOR: server: do not use refcount in free_server in stopping mode
4435 - ADMIN: dyncookie: implement a simple dynamic cookie calculator
4436 - BUG/MINOR: check: do not reset check flags on purge
4437 - BUG/MINOR: check: fix leak on add dynamic server with agent-check error
4438 - BUG/MEDIUM: check: fix leak on agent-check purge
4439 - BUG/MEDIUM: server: support both check/agent-check on a dynamic instance
4440 - BUG/MINOR: buffer: fix buffer_dump() formatting
4441 - MINOR: channel: remove an htx block from a channel
4442 - BUG/MINOR: tcpcheck: Properly detect pending HTTP data in output buffer
4443 - BUG/MINOR: stream: Don't release a stream if FLT_END is still registered
4444 - MINOR: lua: Add a flag on lua context to know the yield capability at run time
4445 - BUG/MINOR: lua: Yield in channel functions only if lua context can yield
4446 - BUG/MINOR: lua: Don't yield in channel.append() and channel.set()
4447 - MINOR: filters/lua: Release filters before the lua context
4448 - MINOR: lua: Add a function to get a reference on a table in the stack
4449 - MEDIUM: lua: Process buffer data using an offset and a length
4450 - MEDIUM: lua: Improve/revisit the lua api to manipulate channels
4451 - DOC: Improve the lua documentation
4452 - MEDIUM: filters/lua: Add support for dummy filters written in lua
4453 - MINOR: lua: Add a function to get a filter attached to a channel class
4454 - MINOR: lua: Add flags on the lua TXN to know the execution context
4455 - MEDIUM: filters/lua: Be prepared to filter TCP payloads
4456 - MEDIUM: filters/lua: Support declaration of some filter callback functions in lua
4457 - MEDIUM: filters/lua: Add HTTPMessage class to help HTTP filtering
4458 - MINOR: filters/lua: Add request and response HTTP messages in the lua TXN
4459 - MINOR: filters/lua: Support the HTTP filtering from filters written in lua
4460 - DOC: config: Fix 'http-response send-spoe-group' documentation
4461 - BUG/MINOR: lua: Properly check negative offset in Channel/HttpMessage functions
4462 - BUG/MINOR: lua: Properly catch alloc errors when parsing lua filter directives
4463 - BUG/MEDIUM: cfgcheck: verify existing log-forward listeners during config check
4464 - MINOR: cli: delare the CLI frontend as an internal proxy
4465 - MINOR: proxy: disable warnings for internal proxies
4466 - BUG/MINOR: filters: Always set FLT_END analyser when CF_FLT_ANALYZE flag is set
4467 - BUG/MINOR: lua/filters: Return right code when txn:done() is called
4468 - DOC: lua-api: Add documentation about lua filters
4469 - CI: Remove obsolete USE_SLZ=1 CI job
4470 - CLEANUP: assorted typo fixes in the code and comments
4471 - CI: github actions: relax OpenSSL-3.0.0 version comparision
4472 - BUILD: tools: get the absolute path of the current binary on NetBSD.
4473 - DOC: Minor typo fix - 'question mark' -> 'exclamation mark'
4474 - DOC/MINOR: fix typo in management document
4475 - MINOR: http: add a new function http_validate_scheme() to validate a scheme
4476 - BUG/MAJOR: h2: verify early that non-http/https schemes match the valid syntax
4477 - BUG/MAJOR: h2: verify that :path starts with a '/' before concatenating it
4478 - BUG/MAJOR: h2: enforce stricter syntax checks on the :method pseudo-header
4479 - BUG/MEDIUM: h2: give :authority precedence over Host
4480 - REGTESTS: add a test to prevent h2 desync attacks
4481
Willy Tarreau8441deb2021-08-01 18:19:51 +020044822021/08/01 : 2.5-dev3
4483 - BUG/MINOR: arg: free all args on make_arg_list()'s error path
4484 - BUG/MINOR: cfgcond: revisit the condition freeing mechanism to avoid a leak
4485 - MEDIUM: proxy: remove long-broken 'option http_proxy'
4486 - CLEANUP: http_ana: Remove now unused label from http_process_request()
4487 - MINOR: deinit: always deinit the init_mutex on failed initialization
4488 - BUG/MEDIUM: cfgcond: limit recursion level in the condition expression parser
4489 - BUG/MEDIUM: mworker: do not register an exit handler if exit is expected
4490 - BUG/MINOR: mworker: do not export HAPROXY_MWORKER_REEXEC across programs
4491 - BUILD/MINOR: memprof fix macOs build.
4492 - BUG/MEDIUM: ssl_sample: fix segfault for srv samples on invalid request
4493 - BUG/MINOR: stats: Add missing agent stats on servers
4494 - BUG/MINOR: check: fix the condition to validate a port-less server
4495 - BUILD: threads: fix pthread_mutex_unlock when !USE_THREAD
4496 - BUG/MINOR: resolvers: Use a null-terminated string to lookup in servers tree
4497 - MINOR: ssl: use __objt_* variant when retrieving counters
4498 - BUG/MINOR: systemd: must check the configuration using -Ws
4499 - BUG/MINOR: mux-h1: Obey dontlognull option for empty requests
4500 - BUG/MINOR: mux-h2: Obey dontlognull option during the preface
4501 - BUG/MINOR: mux-h1: Be sure to swap H1C to splice mode when rcv_pipe() is called
4502 - BUG/MEDIUM: mux-h2: Handle remaining read0 cases on partial frames
4503 - MINOR: proxy: rename PR_CAP_LUA to PR_CAP_INT
4504 - MINOR: mworker: the mworker CLI proxy is internal
4505 - MINOR: stats: don't output internal proxies (PR_CAP_INT)
4506 - CLEANUP: mworker: use the proxy helper functions in mworker_cli_proxy_create()
4507 - CLEANUP: mworker: PR_CAP already initialized with alloc_new_proxy()
4508 - BUG/MINOR: connection: Add missing error labels to conn_err_code_str
4509 - MINOR: connection: Add a connection error code sample fetch
4510 - MINOR: ssl: Enable error fetches in case of handshake error
4511 - MINOR: ssl: Add new ssl_fc_hsk_err sample fetch
4512 - MINOR: ssl: Define a default https log format
4513 - MEDIUM: connection: Add option to disable legacy error log
4514 - REGTESTS: ssl: Add tests for the connection and SSL error fetches
4515 - REGTESTS: ssl: ssl_errors.vtc does not work with old openssl version
4516 - BUG/MEDIUM: connection: close a rare race between idle conn close and takeover
4517 - BUG/MEDIUM: pollers: clear the sleeping bit after waking up, not before
4518 - BUG/MINOR: select: fix excess number of dead/skip reported
4519 - BUG/MINOR: poll: fix abnormally high skip_fd counter
4520 - BUG/MINOR: pollers: always program an update for migrated FDs
4521 - BUG/MINOR: fd: protect fd state harder against a concurrent takeover
4522 - DOC: internals: document the FD takeover process
4523 - MINOR: fd: update flags only once in fd_update_events()
4524 - MINOR: poll/epoll: move detection of RDHUP support earlier
4525 - REORG: fd: uninline fd_update_events()
4526 - MEDIUM: fd: rely more on fd_update_events() to detect changes
4527 - BUG/MINOR: freq_ctr: use stricter barriers between updates and readings
4528 - MEDIUM: atomic: simplify the atomic load/store/exchange operations
4529 - MEDIUM: atomic: relax the load/store barriers on x86_64
4530 - BUILD: opentracing: fixed build when using pkg-config utility
4531
Willy Tarreaubccc91d2021-07-17 12:35:11 +020045322021/07/17 : 2.5-dev2
4533 - BUILD/MEDIUM: tcp: set-mark support for OpenBSD
4534 - DOC: config: use CREATE USER for mysql-check
4535 - BUG/MINOR: stick-table: fix several printf sign errors dumping tables
4536 - BUG/MINOR: peers: fix data_type bit computation more than 32 data_types
4537 - MINOR: stick-table: make skttable_data_cast to use only std types
4538 - MEDIUM: stick-table: handle arrays of standard types into stick-tables
4539 - MEDIUM: peers: handle arrays of std types in peers protocol
4540 - DOC: stick-table: add missing documentation about gpt0 stored type
4541 - MEDIUM: stick-table: add the new array of gpt data_type
4542 - MEDIUM: stick-table: make the use of 'gpt' excluding the use of 'gpt0'
4543 - MEDIUM: stick-table: add the new arrays of gpc and gpc_rate
4544 - MEDIUM: stick-table: make the use of 'gpc' excluding the use of 'gpc0/1''
4545 - BUG/MEDIUM: sock: make sure to never miss early connection failures
4546 - BUG/MINOR: cli: fix server name output in "show fd"
4547 - Revert "MINOR: tcp-act: Add set-src/set-src-port for "tcp-request content" rules"
4548 - MEDIUM: stats: include disabled proxies that hold active sessions to stats
4549 - BUILD: stick-table: shut up invalid "uninitialized" warning in gcc 8.3
4550 - MINOR: http: implement http_get_scheme
4551 - MEDIUM: http: implement scheme-based normalization
4552 - MEDIUM: h1-htx: apply scheme-based normalization on h1 requests
4553 - MEDIUM: h2: apply scheme-based normalization on h2 requests
4554 - REGTESTS: add http scheme-based normalization test
4555 - BUILD: http_htx: fix ci compilation error with isdigit for Windows
4556 - MINOR: http: implement http uri parser
4557 - MINOR: http: use http uri parser for scheme
4558 - MINOR: http: use http uri parser for authority
4559 - REORG: http_ana: split conditions for monitor-uri in wait for request
4560 - MINOR: http: use http uri parser for path
4561 - BUG/MEDIUM: http_ana: fix crash for http_proxy mode during uri rewrite
4562 - MINOR: mux_h2: define config to disable h2 websocket support
4563 - CLEANUP: applet: remove unused thread_mask
4564 - BUG/MINOR: ssl: Default-server configuration ignored by server
4565 - BUILD: add detection of missing important CFLAGS
4566 - BUILD: lua: silence a build warning with TCC
4567 - MINOR: srv: extract tracking server config function
4568 - MINOR: srv: do not allow to track a dynamic server
4569 - MEDIUM: server: support track keyword for dynamic servers
4570 - REGTESTS: test track support for dynamic servers
4571 - MINOR: init: verify that there is a single word on "-cc"
4572 - MINOR: init: make -cc support environment variables expansion
4573 - MINOR: arg: add a free_args() function to free an args array
4574 - CLEANUP: config: use free_args() to release args array in cfg_eval_condition()
4575 - CLEANUP: hlua: use free_args() to release args arrays
4576 - REORG: config: move the condition preprocessing code to its own file
4577 - MINOR: cfgcond: start to split the condition parser to introduce terms
4578 - MEDIUM: cfgcond: report invalid trailing chars after expressions
4579 - MINOR: cfgcond: remerge all arguments into a single line
4580 - MINOR: cfgcond: support negating conditional expressions
4581 - MINOR: cfgcond: make the conditional term parser automatically allocate nodes
4582 - MINOR: cfgcond: insert an expression between the condition and the term
4583 - MINOR: cfgcond: support terms made of parenthesis around expressions
4584 - REGTEST: make check_condition.vtc fail as soon as possible
4585 - REGTESTS: add more complex check conditions to check_conditions.vtc
4586 - BUG/MEDIUM: init: restore behavior of command-line "-m" for memory limitation
4587
Willy Tarreau96a2f502021-06-30 16:16:14 +020045882021/06/30 : 2.5-dev1
4589 - CLEANUP: ssl: Move ssl_store related code to ssl_ckch.c
4590 - MINOR: ssl: Allow duplicated entries in the cafile_tree
4591 - MEDIUM: ssl: Chain ckch instances in ca-file entries
4592 - MINOR: ssl: Add reference to default ckch instance in bind_conf
4593 - MINOR: ssl: Add helper functions to create/delete cafile entries
4594 - MEDIUM: ssl: Add a way to load a ca-file content from memory
4595 - MINOR: ssl: Add helper function to add cafile entries
4596 - MINOR: ssl: Ckch instance rebuild and cleanup factorization in CLI handler
4597 - MEDIUM: ssl: Add "set+commit ssl ca-file" CLI commands
4598 - REGTESTS: ssl: Add new ca-file update tests
4599 - MINOR: ssl: Add "abort ssl ca-file" CLI command
4600 - MINOR: ssl: Add a cafile_entry type field
4601 - MINOR: ssl: Refactorize the "show certificate details" code
4602 - MEDIUM: ssl: Add "show ssl ca-file" CLI command
4603 - MEDIUM: ssl: Add "new ssl ca-file" CLI command
4604 - MINOR: ssl: Add "del ssl ca-file" CLI command
4605 - REGTESTS: ssl: Add "new/del ssl ca-file" tests
4606 - DOC: ssl: Add documentation about CA file hot update commands
4607 - DOC: internals: update the SSL architecture schema
4608 - MINOR: ssl: Chain instances in ca-file entries
4609 - MEDIUM: ssl: Add "set+commit ssl crl-file" CLI commands
4610 - MEDIUM: ssl: Add "new+del crl-file" CLI commands
4611 - MINOR: ssl: Add "abort ssl crl-file" CLI command
4612 - MEDIUM: ssl: Add "show ssl crl-file" CLI command
4613 - REGTESTS: ssl: Add "new/del ssl crl-file" tests
4614 - REGTESTS: ssl: Add "set/commit ssl crl-file" test
4615 - DOC: ssl: Add documentation about CRL file hot update commands
4616 - BUILD/MINOR: ssl: Fix compilation with SSL enabled
4617 - BUILD/MINOR: ssl: Fix compilation with OpenSSL 1.0.2
4618 - CI: introduce scripts/build-vtest.sh for installing VTest
4619 - CLEANUP: ssl: Fix coverity issues found in CA file hot update code
4620 - CI: github actions: add OpenTracing builds
4621 - BUG/MEDIUM: ebtree: Invalid read when looking for dup entry
4622 - BUG/MAJOR: server: prevent deadlock when using 'set maxconn server'
4623 - BUILD/MINOR: opentracing: fixed build when using clang
4624 - BUG/MEDIUM: filters: Exec pre/post analysers only one time per filter
4625 - BUG/MINOR: http-comp: Preserve HTTP_MSGF_COMPRESSIONG flag on the response
4626 - MINOR: map/acl: print the count of all the map/acl entries in "show map/acl"
4627 - CLEANUP: pattern: remove export of non-existent function pattern_delete()
4628 - MINOR: h1-htx: Update h1 parsing functions to return result as a size_t
4629 - MEDIUM: h1-htx: Adapt H1 data parsing to copy wrapping data in one call
4630 - MINOR: mux-h1/mux-fcgi: Don't needlessly loop on data parsing
4631 - MINOR: h1-htx: Move HTTP chunks parsing into a dedicated function
4632 - MEDIUM: h1-htx: Split function to parse a chunk and the loop on the buffer
4633 - MEDIUM: h1-htx: Add a function to parse contiguous small chunks
4634 - MINOR: h1-htx: Use a correlation table to speed-up small chunks parsing
4635 - MINOR: buf: Add function to realign a buffer with a specific head position
4636 - MINOR: muxes/h1-htx: Realign input buffer using b_slow_realign_ofs()
4637 - CLEANUP: mux-h1: Rename functions parsing input buf and filling output buf
4638 - Revert "MEDIUM: http-ana: Deal with L7 retries in HTTP analysers"
4639 - BUG/MINOR: http-ana: Send the right error if max retries is reached on L7 retry
4640 - BUG/MINOR: http-ana: Handle L7 retries on refused early data before K/A aborts
4641 - MINOR: http-ana: Perform L7 retries because of status codes in response analyser
4642 - MINOR: cfgparse: Fail when encountering extra arguments in macro
4643 - DOC: intro: Fix typo in starter guide
4644 - BUG/MINOR: server: Missing calloc return value check in srv_parse_source
4645 - BUG/MINOR: peers: Missing calloc return value check in peers_register_table
4646 - BUG/MINOR: ssl: Missing calloc return value check in ssl_init_single_engine
4647 - BUG/MINOR: http: Missing calloc return value check in parse_http_req_capture
4648 - BUG/MINOR: proxy: Missing calloc return value check in proxy_parse_declare
4649 - BUG/MINOR: proxy: Missing calloc return value check in proxy_defproxy_cpy
4650 - BUG/MINOR: http: Missing calloc return value check while parsing tcp-request/tcp-response
4651 - BUG/MINOR: http: Missing calloc return value check while parsing tcp-request rule
4652 - BUG/MINOR: compression: Missing calloc return value check in comp_append_type/algo
4653 - BUG/MINOR: worker: Missing calloc return value check in mworker_env_to_proc_list
4654 - BUG/MINOR: http: Missing calloc return value check while parsing redirect rule
4655 - BUG/MINOR: http: Missing calloc return value check in make_arg_list
4656 - BUG/MINOR: proxy: Missing calloc return value check in chash_init_server_tree
4657 - CLEANUP: http-ana: Remove useless if statement about L7 retries
4658 - BUG/MAJOR: stream-int: Release SI endpoint on server side ASAP on retry
4659 - MINOR: backend: Don't release SI endpoint anymore in connect_server()
4660 - BUG/MINOR: vars: Be sure to have a session to get checks variables
4661 - DOC/MINOR: move uuid in the configuration to the right alphabetical order
4662 - CLEANUP: mux-fcgi: Don't needlessly store result of data/trailers parsing
4663 - BUILD: fix compilation for OpenSSL-3.0.0-alpha17
4664 - MINOR: http-ana: Use -1 status for client aborts during queuing and connect
4665 - REGTESTS: Fix http_abortonclose.vtc to support -1 status for some client aborts
4666 - CLEANUP: backend: fix incorrect comments on locking conditions for lb functions
4667 - CLEANUP: reg-tests: Remove obsolete no-htx parameter for reg-tests
4668 - CI: github actions: add OpenSSL-3.0.0 builds
4669 - CI: github actions: -Wno-deprecated-declarations with OpenSSL 3.0.0
4670 - MINOR: errors: allow empty va_args for diag variadic macro
4671 - REORG: errors: split errors reporting function from log.c
4672 - CLEANUP: server: fix cosmetic of error message on sni parsing
4673 - MEDIUM: errors: implement user messages buffer
4674 - MINOR: log: do not discard stderr when starting is over
4675 - MEDIUM: errors: implement parsing context type
4676 - MINOR: errors: use user messages context in print_message
4677 - MINOR: log: display exec path on first warning
4678 - MINOR: errors: specify prefix "config" for parsing output
4679 - MINOR: log: define server user message format
4680 - REORG: server: use parsing ctx for server parsing
4681 - REORG: config: use parsing ctx for server config check
4682 - MINOR: server: use parsing ctx for server init addr
4683 - MINOR: server: use ha_alert in server parsing functions
4684 - DOC: use the req.ssl_sni in examples
4685 - CLEANUP: cfgparse: Remove duplication of `MAX_LINE_ARGS + 1`
4686 - CLEANUP: tools: Make errptr const in `parse_line()`
4687 - MINOR: haproxy: Add `-cc` argument
4688 - BUG: errors: remove printf positional args for user messages context
4689 - CI: Make matrix.py executable and add shebang
4690 - BUILD: make tune.ssl.keylog available again
4691 - BUG/MINOR: ssl: OCSP stapling does not work if expire too far in the future
4692 - Revert "BUG/MINOR: opentracing: initialization after establishing daemon mode"
4693 - BUG/MEDIUM: opentracing: initialization before establishing daemon and/or chroot mode
4694 - SCRIPTS: opentracing: enable parallel builds in build-ot.sh
4695 - BUG/MEDIUM: compression: Fix loop skipping unused blocks to get the next block
4696 - BUG/MEDIUM: compression: Properly get the next block to iterate on payload
4697 - BUG/MEDIUM: compression: Add a flag to know the filter is still processing data
4698 - MINOR: ssl: Keep the actual key length in the certificate_ocsp structure
4699 - MINOR: ssl: Add new "show ssl ocsp-response" CLI command
4700 - MINOR: ssl: Add the OCSP entry key when displaying the details of a certificate
4701 - MINOR: ssl: Add the "show ssl cert foo.pem.ocsp" CLI command
4702 - REGTESTS: ssl: Add "show ssl ocsp-response" test
4703 - BUG/MINOR: server: explicitly set "none" init-addr for dynamic servers
4704 - BUG/MINOR: pools: fix a possible memory leak in the lockless pool_flush()
4705 - BUG/MINOR: pools: make DEBUG_UAF always write to the to-be-freed location
4706 - MINOR: pools: do not maintain the lock during pool_flush()
4707 - MINOR: pools: call malloc_trim() under thread isolation
4708 - MEDIUM: pools: use a single pool_gc() function for locked and lockless
4709 - BUG/MAJOR: pools: fix possible race with free() in the lockless variant
4710 - CLEANUP: pools: remove now unused seq and pool_free_list
4711 - MEDIUM: pools: remove the locked pools implementation
4712 - BUILD: ssl: Fix compilation with BoringSSL
4713 - BUG/MEDIUM: errors: include missing obj_type file
4714 - REGTESTS: ssl: show_ssl_ocspresponce.vtc is broken with BoringSSL
4715 - BUG/MAJOR: htx: Fix htx_defrag() when an HTX block is expanded
4716 - BUG/MINOR: mux-fcgi: Expose SERVER_SOFTWARE parameter by default
4717 - BUG/MINOR: h1-htx: Fix a signess bug with char data type when parsing chunk size
4718 - CLEANUP: l7-retries: do not test the buffer before calling b_alloc()
4719 - BUG/MINOR: resolvers: answser item list was randomly purged or errors
4720 - MEDIUM: resolvers: add a ref on server to the used A/AAAA answer item
4721 - MEDIUM: resolvers: add a ref between servers and srv request or used SRV record
4722 - BUG/MINOR: server-state: load SRV resolution only if params match the config
4723 - MINOR: config: remove support for deprecated option "tune.chksize"
4724 - MINOR: config: completely remove support for "no option http-use-htx"
4725 - MINOR: log: remove the long-deprecated early log-format tags
4726 - MINOR: http: remove the long deprecated "set-cookie()" sample fetch function
4727 - MINOR: config: reject long-deprecated "option forceclose"
4728 - MINOR: config: remove deprecated option "http-tunnel"
4729 - MEDIUM: proxy: remove the deprecated "grace" keyword
4730 - MAJOR: config: remove parsing of the global "nbproc" directive
4731 - BUILD: init: remove initialization of multi-process thread mappings
4732 - BUILD: log: remove unused fmt_directive()
4733 - REGTESTS: Remove REQUIRE_VERSION=1.6 from all tests
4734 - REGTESTS: Remove REQUIRE_VERSION=1.7 from all tests
4735 - CI: github actions: enable alpine/musl builds
4736 - BUG/MAJOR: resolvers: segfault using server template without SRV RECORDs
4737 - DOC: lua: Add a warning about buffers modification in HTTP
4738 - MINOR: ssl: Use OpenSSL's ASN1_TIME convertor when available
4739 - BUG/MINOR: stick-table: insert srv in used_name tree even with fixed id
4740 - BUG/MEDIUM: server: extend thread-isolate over much of CLI 'add server'
4741 - BUG/MEDIUM: server: clear dynamic srv on delete from proxy id/name trees
4742 - BUG/MEDIUM: server: do not forget to generate the dynamic servers ids
4743 - BUG/MINOR: server: do not keep an invalid dynamic server in px ids tree
4744 - BUG/MEDIUM: server: do not auto insert a dynamic server in px addr_node
4745 - BUG/MEDIUM: shctx: use at least thread-based locking on USE_PRIVATE_CACHE
4746 - BUG/MINOR: ssl: use atomic ops to update global shctx stats
4747 - BUG/MINOR: mworker: fix typo in chroot error message
4748 - CLEANUP: global: remove unused definition of stopping_task[]
4749 - MEDIUM: init: remove the loop over processes during init
4750 - MINOR: mworker: remove the initialization loop over processes
4751 - CLEANUP: global: remove the nbproc field from the global structure
4752 - CLEANUP: global: remove pid_bit and all_proc_mask
4753 - MEDIUM: global: remove dead code from nbproc/bind_proc removal
4754 - MEDIUM: config: simplify cpu-map handling
4755 - MEDIUM: cpu-set: make the proc a single bit field and not an array
4756 - CLEANUP: global: remove unused definition of MAX_PROCS
4757 - MEDIUM: global: remove the relative_pid from global and mworker
4758 - DOC: update references to process numbers in cpu-map and bind-process
4759 - MEDIUM: config: warn about "bind-process" deprecation
4760 - CLEANUP: shctx: remove the different inter-process locking techniques
4761 - BUG/MAJOR: queue: set SF_ASSIGNED when setting strm->target on dequeue
4762 - MINOR: backend: only skip LB when there are actual connections
4763 - BUG/MINOR: mux-h1: do not skip the error response on bad requests
4764 - MINOR: connection: add helper conn_append_debug_info()
4765 - MINOR: mux-h2/trace: report a few connection-level info during h2_init()
4766 - CLEANUP: mux-h2/traces: better align user messages
4767 - BUG/MINOR: stats: make "show stat typed desc" work again
4768 - MINOR: mux-h2: obey http-ignore-probes during the preface
4769 - BUG/MINOR: mux-h2/traces: bring back the lost "rcvd H2 REQ" trace
4770 - BUG/MINOR: mux-h2/traces: bring back the lost "sent H2 REQ/RES" traces
4771 - CLEANUP: assorted typo fixes in the code and comments
4772 - CI: Replace the requirement for 'sudo' with a call to 'ulimit -n'
4773 - REGTESTS: Replace REQUIRE_VERSION=2.5 with 'haproxy -cc'
4774 - REGTESTS: Replace REQUIRE_OPTIONS with 'haproxy -cc' for 2.5+ tests
4775 - REGTESTS: Replace REQUIRE_BINARIES with 'command -v'
4776 - REGTESTS: Remove support for REQUIRE_BINARIES
4777 - CI: ssl: enable parallel builds for OpenSSL on Linux
4778 - CI: ssl: do not needlessly build the OpenSSL docs
4779 - CI: ssl: keep the old method for ancient OpenSSL versions
4780 - CLEANUP: server: a separate function for initializing the per_thr field
4781 - BUG/MINOR: server: Forbid to set fqdn on the CLI if SRV resolution is enabled
4782 - BUG/MEDIUM: server/cli: Fix ABBA deadlock when fqdn is set from the CLI
4783 - MINOR: resolvers: Clean server in a dedicated function when removing a SRV item
4784 - MINOR: resolvers: Remove server from named_servers tree when removing a SRV item
4785 - BUG/MEDIUM: resolvers: Add a task on servers to check SRV resolution status
4786 - BUG/MINOR: backend: restore the SF_SRV_REUSED flag original purpose
4787 - BUG/MINOR: backend: do not set sni on connection reuse
4788 - BUG/MINOR: resolvers: Use resolver's lock in resolv_srvrq_expire_task()
4789 - BUG/MINOR: server/cli: Fix locking in function processing "set server" command
4790 - BUG/MINOR: cache: Correctly handle existing-but-empty 'accept-encoding' header
4791 - MINOR: ssl: fix typo in usage for 'new ssl ca-file'
4792 - MINOR: ssl: always initialize random generator
4793 - MINOR: ssl: check allocation in ssl_sock_init_srv
4794 - MINOR: ssl: check allocation in parse ciphers/ciphersuites/verifyhost
4795 - MINOR: ssl: check allocation in parse npn/sni
4796 - MINOR: server: disable CLI 'set server ssl' for dynamic servers
4797 - MINOR: ssl: render file-access optional on server crt loading
4798 - MINOR: ssl: split parse functions for alpn/check-alpn
4799 - MINOR: ssl: support ca-file arg for dynamic servers
4800 - MINOR: ssl: support crt arg for dynamic servers
4801 - MINOR: ssl: support crl arg for dynamic servers
4802 - MINOR: ssl: enable a series of ssl keywords for dynamic servers
4803 - MINOR: ssl: support ssl keyword for dynamic servers
4804 - REGTESTS: server: test ssl support for dynamic servers
4805 - MINOR: queue: update the stream's pend_pos before queuing it
4806 - CLEANUP: Prevent channel-t.h from being detected as C++ by GitHub
4807 - BUG/MAJOR: server: fix deadlock when changing maxconn via agent-check
4808 - REGTESTS: fix maxconn update with agent-check
4809 - MEDIUM: queue: make pendconn_process_next_strm() only return the pendconn
4810 - MINOR: queue: update proxy->served once out of the loop
4811 - MEDIUM: queue: refine the locking in process_srv_queue()
4812 - MINOR: lb/api: remove the locked argument from take_conn/drop_conn
4813 - MINOR: queue: create a new structure type "queue"
4814 - MINOR: proxy: replace the pendconns-related stuff with a struct queue
4815 - MINOR: server: replace the pendconns-related stuff with a struct queue
4816 - MEDIUM: queue: use a dedicated lock for the queues
4817 - MEDIUM: queue: simplify again the process_srv_queue() API
4818 - MINOR: queue: factor out the proxy/server queuing code
4819 - MINOR: queue: use atomic-ops to update the queue's index
4820 - MEDIUM: queue: determine in process_srv_queue() if the proxy is usable
4821 - MEDIUM: queue: move the queue lock manipulation to pendconn_process_next_strm()
4822 - MEDIUM: queue: unlock as soon as possible
4823 - MINOR: queue: make pendconn_first() take the lock by itself
4824 - CLEANUP: backend: remove impossible case of round-robin + consistent hash
4825 - MINOR: tcp-act: Add set-src/set-src-port for "tcp-request content" rules
4826 - DOC: config: Add missing actions in "tcp-request session" documentation
4827 - CLEANUP: dns: Remove a forgotten debug message
4828 - DOC: Replace issue templates by issue forms
4829 - Revert "MINOR: queue: make pendconn_first() take the lock by itself"
4830 - Revert "MEDIUM: queue: unlock as soon as possible"
4831 - Revert "MEDIUM: queue: move the queue lock manipulation to pendconn_process_next_strm()"
4832 - Revert "MEDIUM: queue: determine in process_srv_queue() if the proxy is usable"
4833 - Revert "MINOR: queue: use atomic-ops to update the queue's index"
4834 - Revert "MINOR: queue: factor out the proxy/server queuing code"
4835 - Revert "MEDIUM: queue: simplify again the process_srv_queue() API"
4836 - Revert "MEDIUM: queue: use a dedicated lock for the queues"
4837 - Revert "MEDIUM: queue: refine the locking in process_srv_queue()"
4838 - Revert "MINOR: queue: update proxy->served once out of the loop"
4839 - Revert "MEDIUM: queue: make pendconn_process_next_strm() only return the pendconn"
4840 - MEDIUM: queue: update px->served and lb's take_conn once per loop
4841 - MEDIUM: queue: use a dedicated lock for the queues (v2)
4842 - MEDIUM: queue: simplify again the process_srv_queue() API (v2)
4843 - MEDIUM: queue: determine in process_srv_queue() if the proxy is usable (v2)
4844 - MINOR: queue: factor out the proxy/server queuing code (v2)
4845 - MINOR: queue: use atomic-ops to update the queue's index (v2)
4846 - MEDIUM: queue: take the proxy lock only during the px queue accesses
4847 - MEDIUM: queue: use a trylock on the server's queue
4848 - MINOR: queue: add queue_init() to initialize a queue
4849 - MINOR: queue: add a pointer to the server and the proxy in the queue
4850 - MINOR: queue: store a pointer to the queue into the pendconn
4851 - MINOR: queue: remove the px/srv fields from pendconn
4852 - MINOR: queue: simplify pendconn_unlink() regarding srv vs px
4853 - BUG: backend: stop looking for queued connections once there's no more
4854 - BUG/MINOR: queue/debug: use the correct lock labels on the queue lock
4855 - BUG/MINOR: resolvers: Always attach server on matching record on resolution
4856 - BUG/MINOR: resolvers: Reset server IP when no ip is found in the response
4857 - MINOR: resolvers: Reset server IP on error in resolv_get_ip_from_response()
4858 - BUG/MINOR: checks: return correct error code for srv_parse_agent_check
4859 - BUILD: Makefile: fix linkage for Haiku.
4860 - BUG/MINOR: tcpcheck: Fix numbering of implicit HTTP send/expect rules
4861 - MINOR: http-act/tcp-act: Add "set-log-level" for tcp content rules
4862 - MINOR: http-act/tcp-act: Add "set-nice" for tcp content rules
4863 - MINOR: http-act/tcp-act: Add "set-mark" and "set-tos" for tcp content rules
4864 - CLEANUP: tcp-act: Sort action lists
4865 - BUILD/MEDIUM: tcp: set-mark setting support for FreeBSD.
4866 - BUILD: tcp-act: avoid warning when set-mark / set-tos are not supported
4867 - BUG/MINOR: mqtt: Fix parser for string with more than 127 characters
4868 - BUG/MINOR: mqtt: Support empty client ID in CONNECT message
4869 - BUG/MEDIUM: resolvers: Make 1st server of a template take part to SRV resolution
4870 - CLEANUP: peers: re-write intdecode function comment.
4871
Willy Tarreau1f973062021-05-14 09:36:37 +020048722021/05/14 : 2.5-dev0
4873 - MINOR: version: it's development again
4874
Willy Tarreau6cbbecf2021-05-14 09:03:30 +020048752021/05/14 : 2.4.0
4876 - BUG/MINOR: http_fetch: fix possible uninit sockaddr in fetch_url_ip/port
4877 - CLEANUP: cli/activity: Remove double spacing in set profiling command
4878 - CI: Build VTest with clang
4879 - CI: extend spellchecker whitelist, add "ists" as well
4880 - CLEANUP: assorted typo fixes in the code and comments
4881 - BUG/MINOR: memprof: properly account for differences for realloc()
4882 - MINOR: memprof: also report the method used by each call
4883 - MINOR: memprof: also report the totals and delta alloc-free
4884 - CLEANUP: pattern: remove the unused and dangerous pat_ref_reload()
4885 - BUG/MINOR: http_act: Fix normalizer names in error messages
4886 - MINOR: uri_normalizer: Add `fragment-strip` normalizer
4887 - MINOR: uri_normalizer: Add `fragment-encode` normalizer
4888 - IMPORT: slz: use the generic function for the last bytes of the crc32
4889 - IMPORT: slz: do not produce the crc32_fast table when CRC is natively supported
4890 - BUILD/MINOR: opentracing: fixed compilation with filter enabled
4891 - BUILD: makefile: add a few popular ARMv8 CPU targets
4892 - BUG/MEDIUM: stick_table: fix crash when using tcp smp_fetch_src
4893 - REGTESTS: stick-table: add src_conn_rate test
4894 - CLEANUP: stick-table: remove a leftover of an old keyword declaration
4895 - BUG/MINOR: stats: fix lastchk metric that got accidently lost
4896 - EXAMPLES: add a "basic-config-edge" example config
4897 - EXAMPLES: add a trivial config for quick testing
4898 - DOC: management: Correct example reload command in the document
4899 - Revert "CI: Build VTest with clang"
4900 - MINOR: activity/cli: optionally support sorting by address on "show profiling"
4901 - DEBUG: ssl: export ssl_sock_close() to see its symbol resolved in profiling
4902 - BUG/MINOR: lua/vars: prevent get_var() from allocating a new name
4903 - DOC: config: Fix configuration example for mqtt
4904 - BUG/MAJOR: config: properly initialize cpu_map.thread[] up to MAX_THREADS
4905 - BUILD: config: avoid a build warning on numa_detect_topology() without threads
4906 - DOC: update min requirements in INSTALL
4907 - IMPORT: slz: use inttypes.h instead of stdint.h
4908 - BUILD: sample: use strtoll() instead of atoll()
4909 - MINOR: version: mention that it's LTS now.
4910
Willy Tarreau46b93af2021-05-10 07:50:26 +020049112021/05/10 : 2.4-dev19
4912 - BUG/MINOR: hlua: Don't rely on top of the stack when using Lua buffers
4913 - BUG/MEDIUM: cli: prevent memory leak on write errors
4914 - BUG/MINOR: ssl/cli: fix a lock leak when no memory available
4915 - MINOR: debug: add a new "debug dev sym" command in expert mode
4916 - MINOR: pools/debug: slightly relax DEBUG_DONT_SHARE_POOLS
4917 - CI: Github Actions: switch to LibreSSL-3.3.3
4918 - MINOR: srv: close all idle connections on shutdown
4919 - MINOR: connection: move session_list member in a union
4920 - MEDIUM: mux_h1: release idling frontend conns on soft-stop
4921 - MEDIUM: connection: close front idling connection on soft-stop
4922 - MINOR: tools: add functions to retrieve the address of a symbol
4923 - CLEANUP: activity: mark the profiling and task_profiling_mask __read_mostly
4924 - MINOR: activity: add a "memory" entry to "profiling"
4925 - MINOR: activity: declare the storage for memory usage statistics
4926 - MEDIUM: activity: collect memory allocator statistics with USE_MEMORY_PROFILING
4927 - MINOR: activity: clean up the show profiling io_handler a little bit
4928 - MINOR: activity: make "show profiling" support a few arguments
4929 - MINOR: activity: make "show profiling" also dump the memoery usage
4930 - MINOR: activity: add the profiling.memory global setting
4931 - BUILD: makefile: add new option USE_MEMORY_PROFILING
4932 - MINOR: channel: Rely on HTX version if appropriate in channel_may_recv()
4933 - BUG/MINOR: stream-int: Don't block reads in si_update_rx() if chn may receive
4934 - MINOR: conn-stream: Force mux to wait for read events if abortonclose is set
4935 - MEDIUM: mux-h1: Don't block reads when waiting for the other side
4936 - BUG/MEDIUM: mux-h1: Properly report client close if abortonclose option is set
4937 - REGTESTS: Add script to test abortonclose option
4938 - MINOR: mux-h1: clean up conditions to enabled and disabled splicing
4939 - MINOR: mux-h1: Subscribe for sends if output buffer is not empty in h1_snd_pipe
4940 - MINOR: mux-h1: Always subscribe for reads when splicing is disabled
4941 - MEDIUM: mux-h1: Wake H1 stream when both sides a synchronized
4942 - CLEANUP: mux-h1: rename WAIT_INPUT/WAIT_OUTPUT flags
4943 - MINOR: mux-h1: Manage processing blocking flags on the H1 stream
4944 - BUG/MINOR: stream: Decrement server current session counter on L7 retry
4945 - BUG/MINOR: config: fix uninitialized initial state in ".if" block evaluator
4946 - BUG/MINOR: config: add a missing "ELIF_TAKE" test for ".elif" condition evaluator
4947 - BUG/MINOR: config: .if/.elif should also accept negative integers
4948 - MINOR: config: centralize the ".if"/".elif" condition parser and evaluator
4949 - MINOR: config: keep up-to-date current file/line/section in the global struct
4950 - MINOR: config: support some pseudo-variables for file/line/section
4951 - BUILD: activity: do not include malloc.h
4952 - MINOR: arg: improve the error message on missing closing parenthesis
4953 - MINOR: global: export the build features string list
4954 - MINOR: global: add version comparison functions
4955 - MINOR: config: improve .if condition error reporting
4956 - MINOR: config: make cfg_eval_condition() support predicates with arguments
4957 - MINOR: config: add predicate "defined()" to conditional expression blocks
4958 - MINOR: config: add predicates "streq()" and "strneq()" to conditional expressions
4959 - MINOR: config: add predicate "feature" to detect certain built-in features
4960 - MINOR: config: add predicates "version_atleast" and "version_before" to cond blocks
4961 - BUG/MINOR: activity: use the new pointer to calculate the new size in realloc()
4962 - BUG/MINOR: stream: properly clear the previous error mask on L7 retries
4963 - MEDIUM: log: slightly refine the output format of alerts/warnings/etc
4964 - MINOR: config: add a new message directive: .diag
4965 - CLEANUP: cli/tree-wide: properly re-align the CLI commands' help messages
4966 - BUG/MINOR: stream: Reset stream final state and si error type on L7 retry
4967 - BUG/MINOR: checks: Handle synchronous connect when a tcpcheck is started
4968 - BUG/MINOR: checks: Reschedule check on observe mode only if fastinter is set
4969 - MINOR: global: define tainted flag
4970 - MINOR: cfgparse: add a new field flags in cfg_keyword
4971 - MINOR: cfgparse: implement experimental config keywords
4972 - MINOR: action: replace match_pfx by a keyword flags field
4973 - MINOR: action: implement experimental actions
4974 - MINOR: cli: set tainted when using CLI expert/experimental mode
4975 - MINOR: stats: report tainted on show info
4976 - MINOR: http_act: mark normalize-uri as experimental
4977 - BUILD: fix usage of ha_alert without format string
4978 - MINOR: proxy: define PR_CAP_LB
4979 - BUG/MINOR: server: do not report diag for peer servers with null weight
4980 - DOC: ssl: Extra files loading now works for backends too
4981 - ADDONS: make addons/ discoverable by git via .gitignore
4982 - DOC: ssl: Add information about crl-file option
4983 - MINOR: sample: improve error reporting on missing arg to strcmp() converter
4984 - DOC: management: mention that some fields may be emitted as floats
4985 - MINOR: tools: implement trimming of floating point numbers
4986 - MINOR: tools: add a float-to-ascii conversion function
4987 - MINOR: freq_ctr: add new functions to report float measurements
4988 - MINOR: stats: avoid excessive padding of float values with trailing zeroes
4989 - MINOR: stats: add the HTML conversion for float types
4990 - MINOR: stats: pass the appctx flags to stats_fill_info()
4991 - MINOR: stats: support an optional "float" option to "show info"
4992 - MINOR: stats: use tv_remain() to precisely compute the uptime
4993 - MINOR: stats: report uptime and start time as floats with subsecond resolution
4994 - MINOR: stats: make "show info" able to report rates as floats when asked
4995 - MINOR: config: mark tune.fd.edge-triggered as experimental
4996 - REORG: vars: move the "proc" scope variables out of the global struct
4997 - REORG: threads: move all_thread_mask() to thread.h
4998 - BUILD: wdt: include signal-t.h
4999 - BUILD: auth: include missing list.h
5000 - REORG: mworker: move proc_self from global to mworker
5001 - BUILD: ssl: ssl_utils requires chunk.h
5002 - BUILD: config: cfgparse-ssl.c needs tools.h
5003 - BUILD: wurfl: wurfl.c needs tools.h
5004 - BUILD: spoe: flt_spoe.c needs tools.h
5005 - BUILD: promex: service-prometheus.c needs tools.h
5006 - BUILD: resolvers: include tools.h
5007 - BUILD: config: include tools.h in cfgparse-listen.c
5008 - BUILD: htx: include tools.h in http_htx.c
5009 - BUILD: proxy: include tools.h in proxy.c
5010 - BUILD: session: include tools.h in session.c
5011 - BUILD: cache: include tools.h in cache.c
5012 - BUILD: sink: include tools.h in sink.c
5013 - BUILD: connection: include tools.h in connection.c
5014 - BUILD: server-state: include tools.h from server_state.c
5015 - BUILD: dns: include tools.h in dns.c
5016 - BUILD: payload: include tools.h in payload.c
5017 - BUILD: vars: include tools.h in vars.c
5018 - BUILD: compression: include tools.h in compression.c
5019 - BUILD: mworker: include tools.h from mworker.c
5020 - BUILD: queue: include tools.h from queue.c
5021 - BUILD: udp: include tools.h from proto_udp.c
5022 - BUILD: stick-table: include freq_ctr.h from stick_table.h
5023 - BUILD: server: include tools.h from server.c
5024 - BUILD: server: include missing proxy.h in server.c
5025 - BUILD: sink: include proxy.h in sink.c
5026 - BUILD: mworker: include proxy.h in mworker.c
5027 - BUILD: filters: include proxy.h in filters.c
5028 - BUILD: fcgi-app: include proxy.h in fcgi-app.c
5029 - BUILD: connection: move list_mux_proto() to connection.c
5030 - REORG: stick-table: uninline stktable_alloc_data_type()
5031 - REORG: stick-table: move composite address functions to stick_table.h
5032 - REORG: config: uninline warnifnotcap() and failifnotcap()
5033 - BUILD: task: remove unused includes from task.c
5034 - MINOR: task: stop including stream.h from task.c
5035 - BUILD: connection: stop including listener-t.h
5036 - BUILD: hlua: include proxy.h from hlua.c
5037 - BUILD: mux-h1: include proxy.h from mux-h1.c
5038 - BUILD: mux-fcgi: include proxy.h from mux-fcgi.c
5039 - BUILD: listener: include proxy.h from listener.c
5040 - BUILD: http-rules: include proxy.h from http_rules.c
5041 - BUILD: thread: include log.h from thread.c
5042 - BUILD: comp: include proxy.h from flt_http_comp.c
5043 - BUILD: fd: include log.h from fd.c
5044 - BUILD: config: do not include proxy.h nor errors.h anymore in cfgparse.h
5045 - BUILD: makefile: reorder object files by build time
5046 - DOC: Fix a few grammar/spelling issues and casing of HAProxy
5047 - REGTESTS: run-regtests: match both "HAProxy" and "HA-Proxy" in the version
5048 - MINOR: version: report "HAProxy" not "HA-Proxy" in the version output
5049 - DOC: remove last occurrences of "HA-Proxy" syntax
5050 - DOC: peers: fix the protocol tag name in the doc
5051 - ADMIN: netsnmp: report "HAProxy" and not "Haproxy" in output descriptions
5052 - MEDIUM: mailers: use "HAProxy" nor "HAproxy" in the subject of messages
5053 - DOC: fix a few remainig cases of "Haproxy" and "HAproxy" in doc and comments
5054 - MINOR: tools/rnd: compute the result outside of the CAS loop
5055 - BUILD: http_fetch: address a few aliasing warnings with older compilers
5056 - BUILD: ssl: define HAVE_CRYPTO_memcmp() based on the library version
5057 - BUILD: errors: include stdarg in errors.h
5058 - REGTESTS: disable inter-thread idle connection sharing on sensitive tests
5059 - MINOR: cli: make "help" support a command in argument
5060 - MINOR: cli: sort the output of the "help" keywords
5061 - CLEANUP: cli/mworker: properly align the help messages
5062 - BUILD: memprof: make the old caller pointer a const in get_prof_bin()
5063 - BUILD: compat: include malloc_np.h for USE_MEMORY_PROFILING on FreeBSD
5064 - CI: Github Actions: enable USE_QUIC=1 for BoringSSL builds
5065 - BUG/MEDIUM: quic: fix null deref on error path in qc_conn_init()
5066 - BUILD: cli: appease a null-deref warning in cli_gen_usage_msg()
5067
Willy Tarreau080347f2021-05-01 08:25:15 +020050682021/05/01 : 2.4-dev18
5069 - DOC: Fix indentation for `path-strip-dot` normalizer
5070 - DOC: Fix RFC reference for the percent-to-uppercase normalizer
5071 - DOC: Add RFC references for the path-strip-dot(dot)? normalizers
5072 - MINOR: uri_normalizer: Add a `percent-decode-unreserved` normalizer
5073 - BUG/MINOR: mux-fcgi: Don't send normalized uri to FCGI application
5074 - REORG: htx: Inline htx functions to add HTX blocks in a message
5075 - CLEANUP: assorted typo fixes in the code and comments
5076 - DOC: general: fix white spaces for HTML converter
5077 - BUG/MINOR: ssl: ssl_sock_prepare_ssl_ctx does not return an error code
5078 - BUG/MINOR: cpuset: move include guard at the very beginning
5079 - BUG/MAJOR: fix build on musl with cpu_set_t support
5080 - BUG/MEDIUM: cpuset: fix build on MacOS
5081 - BUG/MINOR: htx: Preserve HTX flags when draining data from an HTX message
5082 - MEDIUM: htx: Refactor htx_xfer_blks() to not rely on hdrs_bytes field
5083 - CLEANUP: htx: Remove unsued hdrs_bytes field from the HTX start-line
5084 - BUG/MINOR: mux-h2: Don't encroach on the reserve when decoding headers
5085 - MEDIUM: http-ana: handle read error on server side if waiting for response
5086 - MINOR: htx: Limit length of headers name/value when a HTX message is dumped
5087 - BUG/MINOR: applet: Notify the other side if data were consumed by an applet
5088 - BUG/MINOR: hlua: Don't consume headers when starting an HTTP lua service
5089 - BUG/MEDIUM: mux-h2: Handle EOM flag when sending a DATA frame with zero-copy
5090 - CLEANUP: channel: No longer notify the producer in co_skip()/co_htx_skip()
5091 - DOC: general: fix example in set-timeout
5092 - CLEANUP: cfgparse: de-uglify early file error handling in readcfgfile()
5093 - MINOR: config: add a new "default-path" global directive
5094 - BUG/MEDIUM: peers: initialize resync timer to get an initial full resync
5095 - BUG/MEDIUM: peers: register last acked value as origin receiving a resync req
5096 - BUG/MEDIUM: peers: stop considering ack messages teaching a full resync
5097 - BUG/MEDIUM: peers: reset starting point if peers appears longly disconnected
5098 - BUG/MEDIUM: peers: reset commitupdate value in new conns
5099 - BUG/MEDIUM: peers: re-work updates lookup during the sync on the fly
5100 - BUG/MEDIUM: peers: reset tables stage flags stages on new conns
5101 - MINOR: peers: add informative flags about resync process for debugging
5102 - BUG/MEDIUM: time: fix updating of global_now upon clock drift
5103 - CLEANUP: freq_ctr: make arguments of freq_ctr_total() const
5104 - CLEANUP: hlua: rename hlua_appctx* appctx to luactx
5105 - MINOR: server: fix doc/trace on lb algo for dynamic server creation
5106 - REGTESTS: server: fix cli_add_server due to previous trace update
5107 - REGTESTS: add minimal CLI "add map" tests
5108 - DOC: management: move "set var" to the proper place
5109 - CLEANUP: map: slightly reorder the add map function
5110 - MINOR: map: get rid of map_add_key_value()
5111 - MINOR: map: show the current and next pattern version in "show map"
5112 - MINOR: map/acl: add the possibility to specify the version in "show map/acl"
5113 - MINOR: pattern: support purging arbitrary ranges of generations
5114 - MINOR: map/acl: add the possibility to specify the version in "clear map/acl"
5115 - MINOR: map/acl: add the "prepare map/acl" CLI command
5116 - MINOR: map/acl: add the "commit map/acl" CLI command
5117 - MINOR: map/acl: make "add map/acl" support an optional version number
5118 - CLEANUP: map/cli: properly align the map/acl help
5119 - BUILD: compiler: do not use already defined __read_mostly on dragonfly
5120
Willy Tarreaubfd19d62021-04-23 19:11:10 +020051212021/04/23 : 2.4-dev17
5122 - MINOIR: mux-pt/trace: Register a new trace source with its events
5123 - BUG/MINOR: mux-pt: Fix a possible UAF because of traces in mux_pt_io_cb
5124 - CI: travis: Drastically clean up .travis.yml
5125 - CLEANUP: pattern: make all pattern tables read-only
5126 - MINOR: trace: replace the trace() inline function with an equivalent macro
5127 - MINOR: initcall: uniformize the section names between MacOS and other unixes
5128 - CLEANUP: initcall: rename HA_SECTION to HA_INIT_SECTION
5129 - MINOR: compiler: add macros to declare section names
5130 - CLEANUP: initcall: rely on HA_SECTION_* instead of defining its own
5131 - MINOR: global: declare a read_mostly section
5132 - MINOR: fd: move a few read-mostly variables to their own section
5133 - MINOR: epoll: move epoll_fd to read_mostly
5134 - MINOR: kqueue: move kqueue_fd to read_mostly
5135 - MINOR: pool: move pool declarations to read_mostly
5136 - MINOR: threads: mark all_threads_mask as read_mostly
5137 - MINOR: server: move idle_conn_task to read_mostly
5138 - MINOR: protocol: move __protocol_by_family to read_mostly
5139 - MINOR: pattern: make the pat_lru_seed read_mostly
5140 - MINOR: trace: make trace sources read_mostly
5141 - MINOR: freq_ctr: add a generic function to report the total value
5142 - MEDIUM: freq_ctr: make read_freq_ctr_period() use freq_ctr_total()
5143 - MEDIUM: freq_ctr: reimplement freq_ctr_remain_period() from freq_ctr_total()
5144 - MINOR: freq_ctr: add the missing next_event_delay_period()
5145 - MINOR: freq_ctr: unify freq_ctr and freq_ctr_period into freq_ctr
5146 - MEDIUM: freq_ctr: replace the per-second counters with the generic ones
5147 - MINOR: freq_ctr: add cpu_relax in the rotation loop of update_freq_ctr_period()
5148 - MINOR: freq_ctr: simplify and improve the update function
5149 - CLEANUP: time: remove the now unused ms_left_scaled
5150 - MINOR: time: move the time initialization out of tv_update_date()
5151 - MINOR: time: remove useless variable copies in tv_update_date()
5152 - MINOR: time: change the global timeval and the the global tick at once
5153 - MEDIUM: time: make the clock offset global and no per-thread
5154 - MINOR: atomic: reimplement the relaxed version of x86 BTS/BTR
5155 - MINOR: trace: Add the checks as a possible trace source
5156 - MINOIR: checks/trace: Register a new trace source with its events
5157 - MINOR: hlua: Add function to release a lua function
5158 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a task
5159 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a converter
5160 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a fetch
5161 - BUG/MINOR: hlua: Fix memory leaks on error path when parsing a lua action
5162 - BUG/MINOR: hlua: Fix memory leaks on error path when registering an action
5163 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a service
5164 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a cli keyword
5165 - BUG/MINOR: cfgparse/proxy: Fix some leaks during proxy section parsing
5166 - BUG/MINOR: listener: Handle allocation error when allocating a new bind_conf
5167 - BUG/MINOR: cfgparse/proxy: Hande allocation errors during proxy section parsing
5168 - MINOR: cfgparse/proxy: Group alloc error handling during proxy section parsing
5169 - DOC: internals: update the SSL architecture schema
5170 - BUG/MEDIUM: sample: Fix adjusting size in field converter
5171 - MINOR: sample: add ub64dec and ub64enc converters
5172 - CLEANUP: sample: align samples list in sample.c
5173 - MINOR: ist: Add `istclear(struct ist*)`
5174 - CI: cirrus: install "pcre" package
5175 - MINOR: opentracing: correct calculation of the number of arguments in the args[]
5176 - MINOR: opentracing: transfer of context names without prefix
5177 - MINOR: sample: converter: Add mjson library.
5178 - MINOR: sample: converter: Add json_query converter
5179 - CI: travis-ci: enable weekly graviton2 builds
5180 - DOC: ssl: Certificate hot update only works on fronted certificates
5181 - DOC: ssl: Certificate hot update works on server certificates
5182 - BUG/MEDIUM: threads: Ignore current thread to end its harmless period
5183 - MINOR: threads: Only consider running threads to end a thread harmeless period
5184 - BUG/MINOR: checks: Set missing id to the dummy checks frontend
5185 - MINOR: logs: Add support of checks as session origin to format lf strings
5186 - BUG/MINOR: connection: Fix fc_http_major and bc_http_major for TCP connections
5187 - MINOR: connection: Make bc_http_major compatible with tcp-checks
5188 - BUG/MINOR: ssl-samples: Fix ssl_bc_* samples when called from a health-check
5189 - BUG/MINOR: http-fetch: Make method smp safe if headers were already forwarded
5190 - MINOR: tcp_samples: Add samples to get src/dst info of the backend connection
5191 - MINOR: tcp_samples: Be able to call bc_src/bc_dst from the health-checks
5192 - BUG/MINOR: http_htx: Remove BUG_ON() from http_get_stline() function
5193 - BUG/MINOR: logs: Report the true number of retries if there was no connection
5194 - BUILD: makefile: Redirect stderr to /dev/null when probing options
5195 - MINOR: uri_normalizer: Add uri_normalizer module
5196 - MINOR: uri_normalizer: Add `enum uri_normalizer_err`
5197 - MINOR: uri_normalizer: Add `http-request normalize-uri`
5198 - MINOR: uri_normalizer: Add a `merge-slashes` normalizer to http-request normalize-uri
5199 - MINOR: uri_normalizer: Add a `dotdot` normalizer to http-request normalize-uri
5200 - MINOR: uri_normalizer: Add support for supressing leading `../` for dotdot normalizer
5201 - MINOR: uri_normalizer: Add a `sort-query` normalizer
5202 - MINOR: uri_normalizer: Add a `percent-upper` normalizer
5203 - MEDIUM: http_act: Rename uri-normalizers
5204 - DOC: Add introduction to http-request normalize-uri
5205 - DOC: Note that URI normalization is experimental
5206 - BUG/MINOR: pools: maintain consistent ->allocated count on alloc failures
5207 - BUG/MINOR: pools/buffers: make sure to always reserve the required buffers
5208 - MINOR: pools: drop the unused static history of artificially failed allocs
5209 - CLEANUP: pools: remove unused arguments to pool_evict_from_cache()
5210 - MEDIUM: pools: move the cache into the pool header
5211 - MINOR: pool: remove the size field from pool_cache_head
5212 - MINOR: pools: rename CONFIG_HAP_LOCAL_POOLS to CONFIG_HAP_POOLS
5213 - MINOR: pools: enable the fault injector in all allocation modes
5214 - MINOR: pools: make the basic pool_refill_alloc()/pool_free() update needed_avg
5215 - MEDIUM: pools: unify pool_refill_alloc() across all models
5216 - CLEANUP: pools: re-merge pool_refill_alloc() and __pool_refill_alloc()
5217 - MINOR: pools: call pool_alloc_nocache() out of the pool's lock
5218 - CLEANUP: pools: move the lock to the only __pool_get_first() that needs it
5219 - CLEANUP: pools: rename __pool_get_first() to pool_get_from_shared_cache()
5220 - CLEANUP: pools: rename pool_*_{from,to}_cache() to *_local_cache()
5221 - CLEANUP: pools: rename __pool_free() to pool_put_to_shared_cache()
5222 - MINOR: tools: add statistical_prng_range() to get a random number over a range
5223 - MINOR: pools: use cheaper randoms for fault injections
5224 - MINOR: pools: move the fault injector to __pool_alloc()
5225 - MINOR: pools: split the OS-based allocator in two
5226 - MINOR: pools: always use atomic ops to maintain counters
5227 - MINOR: pools: move pool_free_area() out of the lock in the locked version
5228 - MINOR: pools: factor the release code into pool_put_to_os()
5229 - MEDIUM: pools: make CONFIG_HAP_POOLS control both local and shared pools
5230 - MINOR: pools: create unified pool_{get_from,put_to}_cache()
5231 - MINOR: pools: evict excess objects using pool_evict_from_local_cache()
5232 - MEDIUM: pools: make pool_put_to_cache() always call pool_put_to_local_cache()
5233 - CLEANUP: pools: make the local cache allocator fall back to the shared cache
5234 - CLEANUP: pools: merge pool_{get_from,put_to}_local_caches with generic ones
5235 - CLEANUP: pools: uninline pool_put_to_cache()
5236 - CLEANUP: pools: declare dummy pool functions to remove some ifdefs
5237 - BUILD: pools: fix build with DEBUG_FAIL_ALLOC
5238 - BUG/MINOR: server: make srv_alloc_lb() allocate lb_nodes for consistent hash
5239 - CONTRIB: mod_defender: import the minimal number of includes
5240 - CONTRIB: mod_defender: make the code build with the embedded includes
5241 - CONTRIB: modsecurity: import the minimal number of includes
5242 - CONTRIB: modsecurity: make the code build with the embedded includes
5243 - CLEANUP: sample: Improve local variables in sample_conv_json_query
5244 - CLEANUP: sample: Explicitly handle all possible enum values from mjson
5245 - CLEANUP: sample: Use explicit return for successful `json_query`s
5246 - CLEANUP: lists/tree-wide: rename some list operations to avoid some confusion
5247 - CONTRIB: move spoa_example out of the tree
5248 - BUG/MINOR: server: free srv.lb_nodes in free_server
5249 - BUG/MINOR: logs: free logsrv.conf.file on exit
5250 - BUG/MEDIUM: server: ensure thread-safety of server runtime creation
5251 - MINOR: server: add log on dynamic server creation
5252 - MINOR: server: implement delete server cli command
5253 - CONTRIB: move spoa_server out of the tree
5254 - CONTRIB: move modsecurity out of the tree
5255 - BUG/MINOR: server: fix potential null gcc error in delete server
5256 - BUG/MAJOR: mux-h2: Properly detect too large frames when decoding headers
5257 - BUG/MEDIUM: mux-h2: Fix dfl calculation when merging CONTINUATION frames
5258 - BUG/MINOR: uri_normalizer: Use delim parameter when building the sorted query in uri_normalizer_query_sort
5259 - CLEANUP: uri_normalizer: Remove trailing whitespace
5260 - MINOR: uri_normalizer: Add a `strip-dot` normalizer
5261 - CONTRIB: move mod_defender out of the tree
5262 - CLEANUP: contrib: remove the last references to the now dead contrib/ directory
5263 - BUG/MEDIUM: config: fix cpu-map notation with both process and threads
5264 - MINOR: config: add a diag for invalid cpu-map statement
5265 - BUG/MINOR: mworker/init: don't reset nb_oldpids in non-mworker cases
5266 - BUG/MINOR: mworker: don't use oldpids[] anymore for reload
5267 - BUILD: makefile: fix the "make clean" target on strict bourne shells
5268 - IMPORT: slz: import slz into the tree
5269 - BUILD: compression: switch SLZ from out-of-tree to in-tree
5270 - CI: github: do not build libslz any more
5271 - CLEANUP: compression: remove calls to SLZ init functions
5272 - BUG/MEDIUM: mux-h2: Properly handle shutdowns when received with data
5273 - MINOR: cpuset: define a platform-independent cpuset type
5274 - MINOR: cfgparse: use hap_cpuset for parse_cpu_set
5275 - MEDIUM: config: use platform independent type hap_cpuset for cpu-map
5276 - MINOR: thread: implement the detection of forced cpu affinity
5277 - MINOR: cfgparse: support the comma separator on parse_cpu_set
5278 - MEDIUM: cfgparse: detect numa and set affinity if needed
5279 - MINOR: global: add option to disable numa detection
5280 - BUG/MINOR: haproxy: fix compilation on macOS
5281 - BUG/MINOR: cpuset: fix compilation on platform without cpu affinity
5282 - MINOR: time: avoid unneeded updates to now_offset
5283 - MINOR: time: avoid overwriting the same values of global_now
5284 - CLEANUP: time: use __tv_to_ms() in tv_update_date() instead of open-coding
5285 - MINOR: time: avoid u64 needlessly expensive computations for the 32-bit now_ms
5286 - BUG/MINOR: peers: remove useless table check if initial resync is finished
5287 - BUG/MEDIUM: peers: re-work connection to new process during reload.
5288 - BUG/MEDIUM: peers: re-work refcnt on table to protect against flush
5289 - BUG/MEDIUM: config: fix missing initialization in numa_detect_topology()
5290
Willy Tarreau86512dd2021-04-09 17:10:39 +020052912021/04/09 : 2.4-dev16
5292 - CLEANUP: dev/flags: remove useless test in the stdin number parser
5293 - MINOR: No longer rely on deprecated sample fetches for predefined ACLs
5294 - MINOR: acl: Add HTTP_2.0 predefined macro
5295 - BUG/MINOR: hlua: Detect end of request when reading data for an HTTP applet
5296 - BUG/MINOR: tools: fix parsing "us" unit for timers
5297 - MINOR: server/bind: add support of new prefixes for addresses.
5298 - MINOR: log: register config file and line number on log servers.
5299 - MEDIUM: log: support tcp or stream addresses on log lines.
5300 - BUG/MEDIUM: log: fix config parse error logging on stdout/stderr or any raw fd
5301 - CLEANUP: fd: remove FD_POLL_DATA and FD_POLL_STICKY
5302 - MEDIUM: fd: prepare FD_POLL_* to move to bits 8-15
5303 - MEDIUM: fd: merge fdtab[].ev and state for FD_EV_* and FD_POLL_* into state
5304 - MINOR: fd: move .linger_risk into fdtab[].state
5305 - MINOR: fd: move .cloned into fdtab[].state
5306 - MINOR: fd: move .initialized into fdtab[].state
5307 - MINOR: fd: move .et_possible into fdtab[].state
5308 - MINOR: fd: move .exported into fdtab[].state
5309 - MINOR: fd: implement an exclusive syscall bit to remove the ugly "log" lock
5310 - MINOR: cli/show-fd: slightly reorganize the FD status flags
5311 - MINOR: atomic/arm64: detect and use builtins for the double-word CAS
5312 - CLEANUP: atomic: add an explicit _FETCH variant for add/sub/and/or
5313 - CLEANUP: atomic: make all standard add/or/and/sub operations return void
5314 - CLEANUP: atomic: add a fetch-and-xxx variant for common operations
5315 - CLEANUP: atomic: add HA_ATOMIC_INC/DEC for unit increments
5316 - CLEANUP: atomic/tree-wide: replace single increments/decrements with inc/dec
5317 - CLEANUP: atomic: use the __atomic variant of BTS/BTR on modern compilers
5318 - MINOR: atomic: implement native BTS/BTR for x86
5319 - MINOR: ist: Add `istappend(struct ist, char)`
5320 - MINOR: ist: Add `istshift(struct ist*)`
5321 - MINOR: ist: Add `istsplit(struct ist*, char)`
5322 - BUG/MAJOR: fd: switch temp values to uint in fd_stop_both()
5323 - MINOR: opentracing: register config file and line number on log servers
5324 - MEDIUM: resolvers: add support of tcp address on nameserver line.
5325 - MINOR: ist: Rename istappend() to __istappend()
5326 - CLEANUP: htx: Make http_get_stline take a `const struct`
5327 - CLEANUP: ist: Remove unused `count` argument from `ist2str*`
5328 - CLEANUP: Remove useless malloc() casts
5329
Willy Tarreau59fa1d12021-04-02 19:16:32 +020053302021/04/02 : 2.4-dev15
5331 - BUG/MINOR: payload: Wait for more data if buffer is empty in payload/payload_lv
5332 - BUG/MINOR: stats: Apply proper styles in HTML status page.
5333 - BUG/MEDIUM: time: make sure to always initialize the global tick
5334 - BUG/MINOR: tcp: fix silent-drop workaround for IPv6
5335 - BUILD: tcp: use IPPROTO_IPV6 instead of SOL_IPV6 on FreeBSD/MacOS
5336 - CLEANUP: socket: replace SOL_IP/IPV6/TCP with IPPROTO_IP/IPV6/TCP
5337 - BUG/MINOR: http_fetch: make hdr_ip() resistant to empty fields
5338 - BUG/MINOR: mux-h2: Don't emit log twice if an error occurred on the preface
5339 - MINOR: stream: Don't trigger errors on destructive HTTP upgrades
5340 - MINOR: frontend: Create HTTP txn for HTX streams
5341 - MINOR: stream: Be sure to set HTTP analysers when creating an HTX stream
5342 - BUG/MINOR: stream: Properly handle TCP>H1>H2 upgrades in http_wait_for_request
5343 - BUG/MINOR: config: Add warning for http-after-response rules in TCP mode
5344 - MINOR: muxes: Add a flag to notify a mux does not support any upgrade
5345 - MINOR: mux-h1: Don't perform implicit HTTP/2 upgrade if not supported by mux
5346 - MINOR: mux-pt: Don't perform implicit HTTP upgrade if not supported by mux
5347 - MEDIUM: mux-h1: Expose h1 in the list of supported mux protocols
5348 - MEDIUM: mux-pt: Expose passthrough in the list of supported mux protocols
5349 - MINOR: muxes: Show muxes flags when the mux list is displayed
5350 - DOC: config: Improve documentation about proto/check-proto keywords
5351 - MINOR: stream: Use stream type instead of proxy mode when appropriate
5352 - MINOR: filters/http-ana: Decide to filter HTTP headers in HTTP analysers
5353 - MINOR: http-ana: Simplify creation/destruction of HTTP transactions
5354 - MINOR: stream: Handle stream HTTP upgrade in a dedicated function
5355 - MEDIUM: Add tcp-request switch-mode action to perform HTTP upgrade
5356 - MINOR: config/proxy: Don't warn for HTTP rules in TCP if 'switch-mode http' set
5357 - MINOR: config/proxy: Warn if a TCP proxy without backend is upgradable to HTTP
5358 - DOC: config: Add documentation about TCP to HTTP upgrades
5359 - REGTESTS: Add script to tests TCP to HTTP upgrades
5360 - BUG/MINOR: payload/htx: Ingore L6 sample fetches for HTX streams/checks
5361 - MINOR: htx: Make internal.strm.is_htx an internal sample fetch
5362 - MINOR: action: Use a generic function to check validity of an action rule list
5363 - MINOR: payload/config: Warn if a L6 sample fetch is used from an HTTP proxy
5364 - MEDIUM: http-rules: Add wait-for-body action on request and response side
5365 - REGTESTS: Add script to tests the wait-for-body HTTP action
5366 - BUG/MINOR: http-fetch: Fix test on message state to capture the version
5367 - CLEANUP: vars: always pre-initialize smp in vars_parse_cli_get_var()
5368 - MINOR: global: define diagnostic mode of execution
5369 - MINOR: cfgparse: diag for multiple nbthread statements
5370 - MINOR: server: diag for 0 weight server
5371 - MINOR: diag: create cfgdiag module
5372 - MINOR: diag: diag if servers use the same cookie value
5373 - MINOR: config: diag if global section after non-global
5374 - TESTS: slightly reorganize the code in the tests/ directory
5375 - TESTS: move tests/*.cfg to tests/config
5376 - REGTESTS: ssl: "set ssl cert" and multi-certificates bundle
5377 - REGTESTS: ssl: mark set_ssl_cert_bundle.vtc as broken
5378 - CONTRIB: halog: fix issue with array of type char
5379 - CONTRIB: tcploop: add a shutr command
5380 - CONTRIB: debug: add the show-fd-to-flags script
5381 - CONTRIB: debug: split poll from flags
5382 - CONTRIB: move some dev-specific tools to dev/
5383 - BUILD: makefile: always build the flags utility
5384 - DEV: flags: replace the unneeded makefile with a README
5385 - BUILD: makefile: integrate the hpack tools
5386 - CONTRIB: merge ip6range with iprange
5387 - CONTRIB: move some admin-related sub-projects to admin/
5388 - CONTRIB: move halog to admin/
5389 - ADMIN: halog: automatically enable USE_MEMCHR on the right glibc version
5390 - BUILD: makefile: build halog with the correct flags
5391 - BUILD: makefile: add a "USE_PROMEX" variable to ease building prometheus-exporter
5392 - CONTRIB: move prometheus-exporter to addons/promex
5393 - DOC: add a few words about USE_* and the addons directory
5394 - CONTRIB: move 51Degrees to addons/51degrees
5395 - CONTRIB: move src/da.c and contrib/deviceatlas to addons/deviceatlas
5396 - CONTRIB: move src/wurfl.c and contrib/wurfl to addons/wurfl
5397 - CONTRIB: move contrib/opentracing to addons/ot
5398 - BUG/MINOR: opentracing: initialization after establishing daemon mode
5399 - DOC: clarify that compression works for HTTP/2
5400
Willy Tarreauaf6d88b2021-03-27 09:42:09 +010054012021/03/27 : 2.4-dev14
5402 - MEDIUM: quic: Fix build.
5403 - MEDIUM: quic: Fix build.
5404 - CI: codespell: whitelist "Dragan Dosen"
5405 - CLEANUP: assorted typo fixes in the code and comments
5406 - CI: github actions: update LibreSSL to 3.2.5
5407 - REGTESTS: revert workaround for a crash with recent libressl on http-reuse sni
5408 - CLEANUP: mark defproxy as const on parse tune.fail-alloc
5409 - REGTESTS: remove unneeded experimental-mode in cli add server test
5410 - REGTESTS: wait for proper return of enable server in cli add server test
5411 - MINOR: compression: use pool_alloc(), not pool_alloc_dirty()
5412 - MINOR: spoe: use pool_alloc(), not pool_alloc_dirty()
5413 - MINOR: fcgi-app: use pool_alloc(), not pool_alloc_dirty()
5414 - MINOR: cache: use pool_alloc(), not pool_alloc_dirty()
5415 - MINOR: ssl: use pool_alloc(), not pool_alloc_dirty()
5416 - MINOR: opentracing: use pool_alloc(), not pool_alloc_dirty()
5417 - MINOR: dynbuf: make b_alloc() always check if the buffer is allocated
5418 - CLEANUP: compression: do not test for buffer before calling b_alloc()
5419 - CLEANUP: l7-retries: do not test the buffer before calling b_alloc()
5420 - MINOR: channel: simplify the channel's buffer allocation
5421 - MEDIUM: dynbuf: remove last usages of b_alloc_margin()
5422 - CLEANUP: dynbuf: remove b_alloc_margin()
5423 - CLEANUP: dynbuf: remove the unused b_alloc_fast() function
5424 - CLEANUP: pools: remove the unused pool_get_first() function
5425 - MINOR: pools: make the pool allocator support a few flags
5426 - MINOR: pools: add pool_zalloc() to return a zeroed area
5427 - CLEANUP: connection: use pool_zalloc() in conn_alloc_hash_node()
5428 - CLEANUP: filters: use pool_zalloc() in flt_stream_add_filter()
5429 - CLEANUP: spoe: use pool_zalloc() instead of pool_alloc+memset
5430 - CLEANUP: frontend: use pool_zalloc() in frontend_accept()
5431 - CLEANUP: mailers: use pool_zalloc() in enqueue_one_email_alert()
5432 - CLEANUP: resolvers: use pool_zalloc() in resolv_link_resolution()
5433 - CLEANUP: ssl: use pool_zalloc() in ssl_init_keylog()
5434 - CLEANUP: tcpcheck: use pool_zalloc() instead of pool_alloc+memset
5435 - CLEANUP: quic: use pool_zalloc() instead of pool_alloc+memset
5436 - MINOR: time: also provide a global, monotonic global_now_ms timer
5437 - BUG/MEDIUM: freq_ctr/threads: use the global_now_ms variable
5438 - MINOR: tools: introduce new option PA_O_DEFAULT_DGRAM on str2sa_range.
5439 - BUILD: tools: fix build error with new PA_O_DEFAULT_DGRAM
5440 - BUG/MINOR: ssl: Prevent disk access when using "add ssl crt-list"
5441 - CLEANUP: ssl: remove unused definitions
5442 - BUILD: ssl: guard ecdh functions with SSL_CTX_set_tmp_ecdh macro
5443 - MINOR: lua: Slightly improve function dumping the lua traceback
5444 - BUG/MEDIUM: debug/lua: Use internal hlua function to dump the lua traceback
5445 - BUG/MEDIUM: lua: Always init the lua stack before referencing the context
5446 - MINOR: fd: make fd_clr_running() return the remaining running mask
5447 - MINOR: fd: remove the unneeded running bit from fd_insert()
5448 - BUG/MEDIUM: fd: do not wait on FD removal in fd_delete()
5449 - CLEANUP: fd: remove unused fd_set_running_excl()
5450 - CLEANUP: fd: slightly simplify up _fd_delete_orphan()
5451 - BUG/MEDIUM: fd: Take the fd_mig_lock when closing if no DWCAS is available.
5452 - BUG/MEDIUM: release lock on idle conn killing on reached pool high count
5453 - BUG/MEDIUM: thread: Fix a deadlock if an isolated thread is marked as harmless
5454 - MINOR: tools: make url2ipv4 return the exact number of bytes parsed
5455 - BUG/MINOR: http_fetch: make hdr_ip() reject trailing characters
5456 - BUG/MEDIUM: mux-h1: make h1_shutw_conn() idempotent
5457 - BUG/MINOR: ssl: Fix update of default certificate
5458 - BUG/MINOR: ssl: Prevent removal of crt-list line if the instance is a default one
5459 - BUILD: ssl: introduce fine guard for ssl random extraction functions
5460 - REORG: global: move initcall register code in a dedicated file
5461 - REORG: global: move free acl/action in their related source files
5462 - REORG: split proxy allocation functions
5463 - MINOR: proxy: implement a free_proxy function
5464 - MINOR: proxy: define cap PR_CAP_LUA
5465 - MINOR: lua: properly allocate the lua Socket proxy
5466 - MINOR: lua: properly allocate the lua Socket servers
5467 - MINOR: vars: make get_vars() allow the session to be null
5468 - MINOR: vars: make the var() sample fetch keyword depend on nothing
5469 - CLEANUP: sample: remove duplicate "stopping" sample fetch keyword
5470 - MINOR: sample: make smp_resolve_args() return an allocate error message
5471 - MINOR: sample: add a new SMP_SRC_CONST sample capability
5472 - MINOR: sample: mark the truly constant sample fetch keywords as such
5473 - MINOR: sample: add a new CFG_PARSER context for samples
5474 - MINOR: action: add a new ACT_F_CFG_PARSER origin designation
5475 - MEDIUM: vars: add support for a "set-var" global directive
5476 - REGTESTS: add a basic reg-test for some "set-var" commands
5477 - MINOR: sample: add a new CLI_PARSER context for samples
5478 - MINOR: action: add a new ACT_F_CLI_PARSER origin designation
5479 - MINOR: vars/cli: add a "get var" CLI command to retrieve global variables
5480 - MEDIUM: cli: add a new experimental "set var" command
5481 - MINOR: compat: add short aliases for a few very commonly used types
5482 - BUILD: ssl: use EVP_CIPH_GCM_MODE macro instead of HA_OPENSSL_VERSION
5483 - MEDIUM: backend: use a trylock to grab a connection on high FD counts as well
5484
Willy Tarreau09cc6692021-03-19 17:16:18 +010054852021/03/19 : 2.4-dev13
5486 - BUG/MEDIUM: cli: fix "help" crashing since recent spelling fixes
5487 - BUG/MINOR: cfgparse: use the GLOBAL not LISTEN keywords list for spell checking
5488 - MINOR: tools: improve word fingerprinting by counting presence
5489 - MINOR: tools: do not sum squares of differences for word fingerprints
5490 - MINOR: cli: improve fuzzy matching to work on all remaining words at once
5491 - MINOR: cli: sort the suggestions by order of relevance
5492 - MINOR: cli: limit spelling suggestions to 5
5493 - MINOR: cfgparse/proxy: also support spelling fixes on options
5494 - BUG/MINOR: resolvers: Add missing case-insensitive comparisons of DNS hostnames
5495 - MINOR: time: export the global_now variable
5496 - BUG/MINOR: freq_ctr/threads: make use of the last updated global time
5497 - MINOR: freq_ctr/threads: relax when failing to update a sliding window value
5498 - MINOR/BUG: mworker/cli: do not use the unix_bind prefix for the master CLI socket
5499 - MINOR: mworker/cli: alert the user if we enabled a master CLI but not the master-worker mode
5500 - MINOR: cli: implement experimental-mode
5501 - REORG: server: add a free server function
5502 - MINOR: cfgparse: always alloc idle conns task
5503 - REORG: server: move keywords in srv_kws
5504 - MINOR: server: remove fastinter from mistyped kw list
5505 - REORG: server: split parse_server
5506 - REORG: server: move alert traces in parse_server
5507 - REORG: server: rename internal functions from parse_server
5508 - REORG: server: attach servers in parse_server
5509 - REORG: server: use flags for parse_server
5510 - MINOR: server: prepare parsing for dynamic servers
5511 - MINOR: stats: export function to allocate extra proxy counters
5512 - MEDIUM: server: implement 'add server' cli command
5513 - REGTESTS: implement test for 'add server' cli
5514 - MINOR: server: enable standard options for dynamic servers
5515 - MINOR: server: support keyword proto in 'add server' cli
5516 - BUG/MINOR: protocol: add missing support of dgram unix socket.
5517 - CLEANUP: Fix a typo in fix_is_valid description
5518 - MINOR: raw_sock: Add a close method.
5519 - MEDIUM: connections: Introduce a new XPRT method, start().
5520 - MEDIUM: connections: Implement a start() method for xprt_handshake.
5521 - MEDIUM: connections: Implement a start() method in ssl_sock.
5522 - MINOR: muxes: garbage collect the reset() method.
5523 - CLEANUP: tcp-rules: Fix a typo in error messages about expect-netscaler-cip
5524 - MEDIUM: lua: Use a per-thread counter to track some non-reentrant parts of lua
5525 - BUG/MEDIUM: debug/lua: Don't dump the lua stack if not dumpable
5526
Willy Tarreauacdd47d2021-03-13 11:48:28 +010055272021/03/13 : 2.4-dev12
5528 - CLEANUP: connection: Use `VAR_ARRAY` in `struct tlv` definition
5529 - CLEANUP: connection: Remove useless test for NULL before calling `pool_free()`
5530 - CLEANUP: connection: Use istptr / istlen for proxy_unique_id
5531 - MINOR: connection: Use a `struct ist` to store proxy_authority
5532 - CLEANUP: connection: Consistently use `struct ist` to process all TLV types
5533 - BUILD: task: fix build at -O0 with threads disabled
5534 - BUILD: bug: refine HA_LINK_ERROR() to only be used on gcc and derivatives
5535 - CLEANUP: config: make the cfg_keyword parsers take a const for the defproxy
5536 - BUILD: connection: do not use VAR_ARRAY in struct tlv
5537 - BUG/MEDIUM: session: NULL dereference possible when accessing the listener
5538 - MINOR: build: force CC to set a return code when probing options
5539 - CLEANUP: stream: rename a few remaining occurrences of "stream *sess"
5540 - BUG/MEDIUM: resolvers: handle huge responses over tcp servers.
5541 - CLEANUP: config: also address the cfg_keyword API change in the compression code
5542 - BUG/MEDIUM: ssl: properly remove the TASK_HEAVY flag at end of handshake
5543 - BUG/MINOR: sample: Rename SenderComID/TargetComID to SenderCompID/TargetCompID
5544 - MINOR: task: give the scheduler a bit more flexibility in the runqueue size
5545 - OPTIM: task: automatically adjust the default runqueue-depth to the threads
5546 - BUG/MINOR: connection: Missing QUIC initialization
5547 - BUG/MEDIUM: stick-tables: fix ref counter in table entry using multiple http tracksc.
5548 - BUILD: atomic/arm64: force the register pairs to use in __ha_cas_dw()
5549 - BUG/MEDIUM: filters: Set CF_FL_ANALYZE on channels when filters are attached
5550 - BUG/MINOR: tcpcheck: Update .health threshold of agent inside an agent-check
5551 - BUG/MINOR: proxy/session: Be sure to have a listener to increment its counters
5552 - BUG/MINOR: tcpcheck: Fix double free on error path when parsing tcp/http-check
5553 - BUG/MINOR: server-state: properly handle the case where the base is not set
5554 - BUG/MINOR: server-state: use the argument, not the global state
5555 - CLEANUP: tcp-rules: add missing actions in the tcp-request error message
5556 - CLEANUP: vars: make the error message clearer on missing arguments for set-var
5557 - CLEANUP: http-rules: remove the unexpected comma before the list of action keywords
5558 - CLEANUP: actions: the keyword must always be const from the rule
5559 - MINOR: tools: add simple word fingerprinting to find similar-looking words
5560 - MINOR: cfgparse: add cfg_find_best_match() to suggest an existing word
5561 - MINOR: cfgparse: suggest correct spelling for unknown words in proxy sections
5562 - MINOR: cfgparse: suggest correct spelling for unknown words in global section
5563 - MINOR: cfgparse/server: try to fix spelling mistakes on server lines
5564 - MINOR: cfgparse/bind: suggest correct spelling for unknown bind keywords
5565 - MINOR: actions: add a function to suggest an action ressembling a given word
5566 - MINOR: http-rules: suggest approaching action names on mismatch
5567 - MINOR: tcp-rules: suggest approaching action names on mismatch
5568 - BUG/MINOR: cfgparse/server: increment the extra keyword counter one at a time
5569 - Revert "BUG/MINOR: resolvers: Only renew TTL for SRV records with an additional record"
5570 - BUG/MINOR: resolvers: Consider server to have no IP on DNS resolution error
5571 - BUG/MINOR: resolvers: Reset server address on DNS error only on status change
5572 - BUG/MINOR: resolvers: Unlink DNS resolution to set RMAINT on SRV resolution
5573 - BUG/MEDIUM: resolvers: Don't set an address-less server as UP
5574 - BUG/MEDIUM: resolvers: Fix the loop looking for an existing ADD item
5575 - MINOR: resolvers: new function find_srvrq_answer_record()
5576 - BUG/MINOR; resolvers: Ignore DNS resolution for expired SRV item
5577 - BUG/MEDIUM: resolvers: Trigger a DNS resolution if an ADD item is obsolete
5578 - MINOR: resolvers: Use a function to remove answers attached to a resolution
5579 - MINOR: resolvers: Purge answer items when a SRV resolution triggers an error
5580 - MINOR: resolvers: Add function to change the srv status based on SRV resolution
5581 - MINOR: resolvers: Directly call srvrq_update_srv_state() when possible
5582 - BUG/MEDIUM: resolvers: Don't release resolution from a requester callbacks
5583 - BUG/MEDIUM: resolvers: Skip DNS resolution at startup if SRV resolution is set
5584 - MINOR: resolvers: Use milliseconds for cached items in resolver responses
5585 - MINOR: resolvers: Don't try to match immediatly renewed ADD items
5586 - CLEANUP: resolvers: Use ha_free() in srvrq_resolution_error_cb()
5587 - CLEANUP: resolvers: Perform unsafe loop on requester list when possible
5588 - BUG/MINOR: cli: make sure "help", "prompt", "quit" are enabled at master level
5589 - CLEANUP: cli: fix misleading comment and better indent the access level flags
5590 - MINOR: cli: set the ACCESS_MASTER* bits on the master bind_conf
5591 - MINOR: cli: test the appctx level for master access instead of comparing pointers
5592 - MINOR: cli: print the error message in the parser function itself
5593 - MINOR: cli: filter the list of commands to the matching part
5594 - MEDIUM: cli: apply spelling fixes for known commands before listing them
5595 - MINOR: tools: add the ability to update a word fingerprint
5596 - MINOR: cli: apply the fuzzy matching on the whole command instead of words
5597 - CLEANUP: cli: rename MAX_STATS_ARGS to MAX_CLI_ARGS
5598 - CLEANUP: cli: rename the last few "stats_" to "cli_"
5599 - CLEANUP: task: make sure tasklet handlers always indicate their statuses
5600 - CLEANUP: assorted typo fixes in the code and comments
5601
Willy Tarreau7bbc6c92021-03-05 21:24:23 +010056022021/03/05 : 2.4-dev11
5603 - CI: codespell: skip Makefile for spell check
5604 - CLEANUP: assorted typo fixes in the code and comments
5605 - BUG/MINOR: tcp-act: Don't forget to set the original port for IPv4 set-dst rule
5606 - BUG/MINOR: connection: Use the client's dst family for adressless servers
5607 - BUG/MEDIUM: spoe: Kill applets if there are pending connections and nbthread > 1
5608 - CLEANUP: Use ist2(const void*, size_t) whenever possible
5609 - CLEANUP: Use IST_NULL whenever possible
5610 - BUILD: proxy: Missing header inclusion for quic_transport_params_init()
5611 - BUILD: quic: Implicit conversion between SSL related enums.
5612 - DOC: spoe: Add a note about fragmentation support in HAProxy
5613 - MINOR: contrib: add support for heartbeat control messages.
5614 - MINOR: contrib: Enhance peers dissector heuristic.
5615 - BUG/MINOR: mux-h2: Fix typo in scheme adjustment
5616 - CLEANUP: Reapply the ist2() replacement patch
5617 - CLEANUP: Use istadv(const struct ist, const size_t) whenever possible
5618 - CLEANUP: Use isttest(const struct ist) whenever possible
5619 - Revert "CI: Pin VTest to a known good commit"
5620 - CLEANUP: backend: fix a wrong comment
5621 - BUG/MINOR: backend: free allocated bind_addr if reuse conn
5622 - MINOR: backend: handle reuse for conns with no server as target
5623 - REGTESTS: test http-reuse if no server target
5624 - BUG/MINOR: hlua: Don't strip last non-LWS char in hlua_pushstrippedstring()
5625 - BUG/MINOR: server-state: Don't load server-state file for disabled backends
5626 - CLEANUP: dns: Use DISGUISE() on a never-failing ring_attach() call
5627 - CLEANUP: dns: Remove useless test on ns->dgram in dns_connect_nameserver()
5628 - DOC: fix originalto except clause on destination address
5629 - CLEANUP: Use the ist() macro whenever possible
5630 - CLEANUP: Replace for loop with only a condition by while
5631 - REORG: atomic: reimplement pl_cpu_relax() from atomic-ops.h
5632 - BUG/MINOR: mt-list: always perform a cpu_relax call on failure
5633 - MINOR: atomic: add armv8.1-a atomics variant for cas-dw
5634 - MINOR: atomic: implement a more efficient arm64 __ha_cas_dw() using pairs
5635 - BUG/MINOR: ssl: don't truncate the file descriptor to 16 bits in debug mode
5636 - MEDIUM: pools: add CONFIG_HAP_NO_GLOBAL_POOLS and CONFIG_HAP_GLOBAL_POOLS
5637 - MINOR: pools: double the local pool cache size to 1 MB
5638 - MINOR: stream: use ABORT_NOW() and not abort() in stream_dump_and_crash()
5639 - CLEANUP: stream: explain why we queue the stream at the head of the server list
5640 - MEDIUM: backend: use a trylock when trying to grab an idle connection
5641 - REORG: tools: promote the debug PRNG to more general use as a statistical one
5642 - OPTIM: lb-random: use a cheaper PRNG to pick a server
5643 - MINOR: task: stop abusing the nice field to detect a tasklet
5644 - MINOR: task: move the nice field to the struct task only
5645 - MEDIUM: task: extend the state field to 32 bits
5646 - MINOR: task: add an application specific flag to the state: TASK_F_USR1
5647 - MEDIUM: muxes: mark idle conns tasklets with TASK_F_USR1
5648 - MINOR: xprt: add new xprt_set_idle and xprt_set_used methods
5649 - MEDIUM: ssl: implement xprt_set_used and xprt_set_idle to relax context checks
5650 - MINOR: server: don't read curr_used_conns multiple times
5651 - CLEANUP: global: reorder some fields to respect cache lines
5652 - CLEANUP: sockpair: silence a coverity check about fcntl()
5653 - CLEANUP: lua: set a dummy file name and line number on the dummy servers
5654 - MINOR: server: add a global list of all known servers
5655 - MINOR: cfgparse: finish to set up servers outside of the proxy setup loop
5656 - MINOR: server: allocate a per-thread struct for the per-thread connections stuff
5657 - MINOR: server: move actconns to the per-thread structure
5658 - CLEANUP: server: reorder some fields in the server struct to respect cache lines
5659 - MINOR: backend: add a BUG_ON if conn mux NULL in connect_server
5660 - BUG/MINOR: backend: fix condition for reuse on mode HTTP
5661 - BUILD: Fix build when using clang without optimizing.
5662 - CLEANUP: assorted typo fixes in the code and comments
5663
Willy Tarreau8ab65c22021-02-26 22:49:10 +010056642021/02/26 : 2.4-dev10
5665 - BUILD: SSL: introduce fine guard for RAND_keep_random_devices_open
5666 - MINOR: Configure the `cpp` userdiff driver for *.[ch] in .gitattributes
5667 - BUG/MINOR: ssl/cli: potential null pointer dereference in "set ssl cert"
5668 - BUG/MINOR: sample: secure convs that accept base64 string and var name as args
5669 - BUG/MEDIUM: vars: make functions vars_get_by_{name,desc} thread-safe
5670 - CLEANUP: vars: make smp_fetch_var() to reuse vars_get_by_desc()
5671 - DOC: muxes: add a diagram of the exchanges between muxes and outer world
5672 - BUG/MEDIUM: proxy: use thread-safe stream killing on hard-stop
5673 - BUG/MEDIUM: cli/shutdown sessions: make it thread-safe
5674 - BUG/MINOR: proxy: wake up all threads when sending the hard-stop signal
5675 - MINOR: stream: add an "epoch" to figure which streams appeared when
5676 - MINOR: cli/streams: make "show sess" dump all streams till the new epoch
5677 - MINOR: streams: use one list per stream instead of a global one
5678 - MEDIUM: streams: do not use the streams lock anymore
5679 - BUILD: dns: avoid a build warning when threads are disabled (dss unused)
5680 - MEDIUM: task: remove the tasks_run_queue counter and have one per thread
5681 - MINOR: tasks: do not maintain the rqueue_size counter anymore
5682 - CLEANUP: tasks: use a less confusing name for task_list_size
5683 - CLEANUP: task: move the tree root detection from __task_wakeup() to task_wakeup()
5684 - MINOR: task: limit the remote thread wakeup to the global runqueue only
5685 - MINOR: task: move the allocated tasks counter to the per-thread struct
5686 - CLEANUP: task: split the large tasklet_wakeup_on() function in two
5687 - BUG/MINOR: fd: properly wait for !running_mask in fd_set_running_excl()
5688 - BUG/MINOR: resolvers: Fix condition to release received ARs if not assigned
5689 - BUG/MINOR: resolvers: Only renew TTL for SRV records with an additional record
5690 - BUG/MINOR: resolvers: new callback to properly handle SRV record errors
5691 - BUG/MEDIUM: resolvers: Reset server address and port for obselete SRV records
5692 - BUG/MEDIUM: resolvers: Reset address for unresolved servers
5693 - DOC: Update the module list in MAINTAINERS file
5694 - MINOR: htx: Add function to reserve the max possible size for an HTX DATA block
5695 - DOC: Update the HTX API documentation
5696 - DOC: Update the filters guide
5697 - BUG/MEDIUM: contrib/prometheus-exporter: fix segfault in listener name dump
5698 - MINOR: task: split the counts of local and global tasks picked
5699 - MINOR: task: do not use __task_unlink_rq() from process_runnable_tasks()
5700 - MINOR: task: don't decrement then increment the local run queue
5701 - CLEANUP: task: re-merge __task_unlink_rq() with task_unlink_rq()
5702 - MINOR: task: make grq_total atomic to move it outside of the grq_lock
5703 - MINOR: tasks: also compute the tasklet latency when DEBUG_TASK is set
5704 - MINOR: task: make tasklet wakeup latency measurements more accurate
5705 - MINOR: server: Be more strict on the server-state line parsing
5706 - MINOR: server: Only fill one array when parsing a server-state line
5707 - MEDIUM: server: Refactor apply_server_state() to make it more readable
5708 - CLEANUP: server: Rename state_line node to node instead of name_name
5709 - CLEANUP: server: Rename state_line structure into server_state_line
5710 - CLEANUP: server: Use a local eb-tree to store lines of the global server-state file
5711 - MINOR: server: Be more strict when reading the version of a server-state file
5712 - MEDIUM: server: Store parsed params of a server-state line in the tree
5713 - MINOR: server: Remove cached line from global server-state tree when found
5714 - MINOR: server: Move loading state of servers in a dedicated function
5715 - MEDIUM: server: Use a tree to store local server-state lines
5716 - MINOR: server: Parse and store server-state lines in a dedicated function
5717 - MEDIUM: server: Don't load server-state file if a line is corrupted
5718 - REORG: server: Export and rename some functions updating server info
5719 - REORG: server-state: Move functions to deal with server-state in its own file
5720 - MINOR: server-state: Don't load server-state file for serverless proxies
5721 - CLEANUP: muxes: Remove useless if condition in show_fd function
5722 - BUG/MINOR: stats: fix compare of no-maint url suffix
5723 - MINOR: task: limit the number of subsequent heavy tasks with flag TASK_HEAVY
5724 - MINOR: ssl: mark the SSL handshake tasklet as heavy
5725 - CLEANUP: server: rename srv_cleanup_{idle,toremove}_connections()
5726 - BUG/MINOR: ssl: potential null pointer dereference in ckchs_dup()
5727 - MINOR: task: add one extra tasklet class: TL_HEAVY
5728 - MINOR: task: place the heavy elements in TL_HEAVY
5729 - MINOR: task: only limit TL_HEAVY tasks but not others
5730 - BUG/MINOR: http-ana: Only consider dst address to process originalto option
5731 - MINOR: tools: Add net_addr structure describing a network addess
5732 - MINOR: tools: Add function to compare an address to a network address
5733 - MEDIUM: http-ana: Add IPv6 support for forwardfor and orignialto options
5734 - CLEANUP: hlua: Use net_addr structure internally to parse and compare addresses
5735 - REGTESTS: Add script to test except param for fowardedfor/originalto options
5736 - DOC: scheduler: add a diagram showing the different queues and their usages
5737 - CLEANUP: tree-wide: replace free(x);x=NULL with ha_free(&x)
5738 - CLEANUP: config: replace a few free() with ha_free()
5739 - CLEANUP: vars: always zero the pointers after a free()
5740 - CLEANUP: ssl: remove a useless "if" before freeing an error message
5741 - CLEANUP: ssl: make ssl_sock_free_srv_ctx() zero the pointers after free
5742 - CLEANUP: ssl: use realloc() instead of free()+malloc()
5743
Willy Tarreau31dd3932021-02-20 13:30:31 +010057442021/02/20 : 2.4-dev9
5745 - BUG/MINOR: server: Remove RMAINT from admin state when loading server state
5746 - CLEANUP: check: fix get_check_status_info declaration
5747 - CLEANUP: contrib/prometheus-exporter: align for with srv status case
5748 - MEDIUM: stats: allow to select one field in `stats_fill_li_stats`
5749 - MINOR: stats: add helper to get status string
5750 - MEDIUM: contrib/prometheus-exporter: add listen stats
5751 - BUG/MINOR: dns: add test on result getting value from buffer into ring.
5752 - BUG/MINOR: dns: dns_connect_server must return -1 unsupported nameserver's type
5753 - BUG/MINOR: dns: missing test writing in output channel in session handler
5754 - BUG/MINOR: dns: fix ring attach control on dns_session_new
5755 - BUG/MEDIUM: dns: fix multiple double close on fd in dns.c
5756 - BUG/MAJOR: connection: prevent double free if conn selected for removal
5757 - BUG/MINOR: session: atomically increment the tracked sessions counter
5758 - REGTESTS: fix http_reuse_conn_hash proxy test
5759 - BUG/MINOR: backend: do not call smp_make_safe for sni conn hash
5760 - MINOR: connection: remove pointers for prehash in conn_hash_params
5761 - BUG/MINOR: checks: properly handle wrapping time in __health_adjust()
5762 - BUG/MEDIUM: checks: don't needlessly take the server lock in health_adjust()
5763 - DEBUG: thread: add 5 extra lock labels for statistics and debugging
5764 - OPTIM: server: switch the actconn list to an mt-list
5765 - Revert "MINOR: threads: change lock_t to an unsigned int"
5766 - MINOR: lb/api: let callers of take_conn/drop_conn tell if they have the lock
5767 - OPTIM: lb-first: do not take the server lock on take_conn/drop_conn
5768 - OPTIM: lb-leastconn: do not take the server lock on take_conn/drop_conn
5769 - OPTIM: lb-leastconn: do not unlink the server if it did not change
5770 - MINOR: tasks: add DEBUG_TASK to report caller info in a task
5771 - MINOR: tasks/debug: add some extra controls of use-after-free in DEBUG_TASK
5772 - BUG/MINOR: sample: Always consider zero size string samples as unsafe
5773 - MINOR: cli: add missing agent commands for set server
5774 - BUILD/MEDIUM: da Adding pcre2 support.
5775 - BUILD: ssl: introduce fine guard for OpenSSL specific SCTL functions
5776 - REGTESTS: reorder reuse conn proxy protocol test
5777 - DOC: explain the relation between pool-low-conn and tune.idle-pool.shared
5778 - MINOR: tasks: refine the default run queue depth
5779 - MINOR: listener: refine the default MAX_ACCEPT from 64 to 4
5780 - MINOR: mux_h2: do not try to remove front conn from idle trees
5781 - REGTESTS: workaround for a crash with recent libressl on http-reuse sni
5782 - BUG/MEDIUM: lists: Avoid an infinite loop in MT_LIST_TRY_ADDQ().
5783 - MINOR: connection: allocate dynamically hash node for backend conns
5784 - DOC: DeviceAtlas documentation typo fix.
5785 - BUG/MEDIUM: spoe: Resolve the sink if a SPOE logs in a ring buffer
5786 - BUG/MINOR: http-rules: Always replace the response status on a return action
5787 - BUG/MINOR: server: Init params before parsing a new server-state line
5788 - BUG/MINOR: server: Be sure to cut the last parsed field of a server-state line
5789 - MEDIUM: server: Don't introduce a new server-state file version
5790 - DOC: contrib/prometheus-exporter: remove htx reference
5791 - REGTESTS: contrib/prometheus-exporter: test NaN values
5792 - REGTESTS: contrib/prometheus-exporter: test well known labels
5793 - CI: github actions: switch to stable LibreSSL release
5794 - BUG/MINOR: server: Fix test on number of fields allowed in a server-state line
5795 - MINOR: dynbuf: make the buffer wait queue per thread
5796 - MINOR: dynbuf: use regular lists instead of mt_lists for buffer_wait
5797 - MINOR: dynbuf: pass offer_buffers() the number of buffers instead of a threshold
5798 - MINOR: sched: have one runqueue ticks counter per thread
5799
Willy Tarreaudc626ec2021-02-13 10:17:27 +010058002021/02/13 : 2.4-dev8
5801 - BUILD: ssl: fix typo in HAVE_SSL_CTX_ADD_SERVER_CUSTOM_EXT macro
5802 - BUILD: ssl: guard SSL_CTX_add_server_custom_ext with special macro
5803 - BUG/MINOR: mux-h1: Don't emit extra CRLF for empty chunked messages
5804 - MINOR: contrib/prometheus-exporter: use stats desc when possible followup
5805 - MEDIUM: contrib/prometheus-exporter: export base stick table stats
5806 - CLEANUP: assorted typo fixes in the code and comments
5807 - CLEANUP: check: fix some typo in comments
5808 - CLEANUP: tools: typo in `strl2irc` mention
5809 - BUILD: ssl: guard SSL_CTX_set_msg_callback with SSL_CTRL_SET_MSG_CALLBACK macro
5810 - MEDIUM: ssl: add a rwlock for SSL server session cache
5811 - BUG/MINOR: intops: fix mul32hi()'s off-by-one
5812 - BUG/MINOR: freq_ctr: fix a wrong delay calculation in next_event_delay()
5813 - MINOR: stick-tables/counters: add http_fail_cnt and http_fail_rate data types
5814 - MINOR: ssl: add SSL_SERVER_LOCK label in threads.h
5815 - BUG/MINOR: mux-h1: Don't increment HTTP error counter for 408/500/501 errors
5816 - BUG/MINOR: http-ana: Don't increment HTTP error counter on internal errors
5817 - BUG/MEDIUM: mux-h1: Always set CS_FL_EOI for response in MSG_DONE state
5818 - BUG/MINOR: mux-h1: Fix data skipping for bodyless responses
5819 - BUG/MINOR: mux-h1: Don't blindly skip EOT block for non-chunked messages
5820 - BUG/MEDIUM: mux-h2: Add EOT block when EOM flag is set on an empty HTX message
5821 - MINOR: mux-h1: Be sure EOM flag is set when processing end of outgoing message
5822 - REGTESTS: Add a script to test payload skipping for bodyless HTTP responses
5823 - BUG/MINOR: server: re-align state file fields number
5824 - CLEANUP: muxes: Remove useless calls to b_realign_if_empty()
5825 - BUG/MINOR: tools: Fix a memory leak on error path in parse_dotted_uints()
5826 - CLEANUP: remove unused variable assigned found by Coverity
5827 - CLEANUP: queue: Remove useless tests on p or pp in pendconn_process_next_strm()
5828 - BUG/MINOR: backend: hold correctly lock when killing idle conn
5829 - MEDIUM: connection: protect idle conn lists with locks
5830 - MEDIUM: connection: replace idle conn lists by eb trees
5831 - MINOR: backend: search conn in idle/safe trees after available
5832 - MINOR: backend: search conn in idle tree after safe on always reuse
5833 - MINOR: connection: prepare hash calcul for server conns
5834 - MINOR: connection: use the srv pointer for the srv conn hash
5835 - MINOR: backend: compare conn hash for session conn reuse
5836 - MINOR: connection: use sni as parameter for srv conn hash
5837 - MINOR: reg-tests: test http-reuse with sni
5838 - MINOR: backend: rewrite alloc of stream target address
5839 - MINOR: connection: use dst addr as parameter for srv conn hash
5840 - MINOR: reg-test: test http-reuse with specific dst addr
5841 - MINOR: backend: rewrite alloc of connection src address
5842 - MINOR: connection: use src addr as parameter for srv conn hash
5843 - MINOR: connection: use proxy protocol as parameter for srv conn hash
5844 - MINOR: reg-tests: test http-reuse with proxy protocol
5845 - MINOR: doc: update http reuse for new eligilible connections
5846 - BUG/MINOR: backend: fix compilation without ssl
5847 - REGTESTS: adjust http_reuse_conn_hash requirements
5848 - REGTESTS: deactivate a failed test on CI in http_reuse_conn_hash
5849 - REGTESTS: fix sni used in http_reuse_conn_hash for libressl 3.3.0
5850 - CI: cirrus: update FreeBSD image to 12.2
5851 - MEDIUM: cli: add check-addr command
5852 - MEDIUM: cli: add agent-port command
5853 - MEDIUM: server: add server-states version 2
5854 - MEDIUM: server: support {check,agent}_addr, agent_port in server state
5855 - MINOR: server: enhance error precision when applying server state
5856 - BUG/MINOR: server: Fix server-state-file-name directive
5857 - CLEANUP: deinit: release global and per-proxy server-state variables on deinit
5858 - BUG/MEDIUM: config: don't pick unset values from last defaults section
5859 - BUG/MINOR: stats: revert the change on ST_CONVDONE
5860 - BUG/MINOR: cfgparse: do not mention "addr:port" as supported on proxy lines
5861 - BUG/MINOR: http-htx: defpx must be a const in proxy_dup_default_conf_errors()
5862 - BUG/MINOR: tcpheck: the source list must be a const in dup_tcpcheck_var()
5863 - BUILD: proxy: add missing compression-t.h to proxy-t.h
5864 - REORG: move init_default_instance() to proxy.c and pass it the defproxy pointer
5865 - REORG: proxy: centralize the proxy allocation code into alloc_new_proxy()
5866 - MEDIUM: proxy: only take defaults when a default proxy is passed.
5867 - MINOR: proxy: move the defproxy freeing code to proxy.c
5868 - MINOR: proxy: always properly reset the just freed default instance pointers
5869 - BUG/MINOR: extcheck: proxy_parse_extcheck() must take a const for the defproxy
5870 - BUG/MINOR: tcpcheck: proxy_parse_*check*() must take a const for the defproxy
5871 - BUG/MINOR: server: parse_server() must take a const for the defproxy
5872 - MINOR: cfgparse: move defproxy to cfgparse-listen as a static
5873 - MINOR: proxy: add a new capability PR_CAP_DEF
5874 - MINOR: cfgparse: check PR_CAP_DEF instead of comparing poiner against defproxy
5875 - MINOR: cfgparse: use a pointer to the current default proxy
5876 - MINOR: proxy: also store the name for a defaults section
5877 - MINOR: proxy: support storing defaults sections into their own tree
5878 - MEDIUM: proxy: store the default proxies in a tree by name
5879 - MEDIUM: cfgparse: allow a proxy to designate the defaults section to use
5880 - MINOR: http: add baseq sample fetch
5881 - CLEANUP: tcpcheck: Remove a useless test on port variable
5882 - BUG/MINOR: server: Don't call fopen() with server-state filepath set to NULL
5883 - CLEANUP: server: Remove useless "filepath" variable in apply_server_state()
5884 - MINOR: peers/cli: do not dump the peers dictionaries by default on "show peers"
5885 - MINOR: cfgparse: implement a simple if/elif/else/endif macro block handler
5886 - DOC: tune: explain the origin of block size for ssl.cachesize
5887 - MINOR: tcp: add support for defer-accept on FreeBSD.
5888 - MINOR: ring: adds new ring_init function.
5889 - CLEANUP: channel: fix comment in ci_putblk.
5890 - BUG/MINOR: dns: add missing sent counter and parent id to dns counters.
5891 - BUG/MINOR: resolvers: fix attribute packed struct for dns
5892 - MINOR: resolvers: renames some resolvers internal types and removes dns prefix
5893 - MINOR: resolvers: renames type dns_resolvers to resolvers.
5894 - MINOR: resolvers: renames some resolvers specific types to not use dns prefix
5895 - MINOR: resolvers: renames some dns prefixed types using resolv prefix.
5896 - MINOR: resolvers: renames resolvers DNS_RESP_* errcodes RSLV_RESP_*
5897 - MINOR: resolvers: renames resolvers DNS_UPD_* returncodes to RSLV_UPD_*
5898 - MINOR: resolvers: rework prototype suffixes to split resolving and dns.
5899 - MEDIUM: resolvers: move resolvers section parsing from cfgparse.c to dns.c
5900 - MINOR: resolvers: replace nameserver's resolver ref by generic parent pointer
5901 - MINOR: resolvers: rework dns stats prototype because specific to resolvers
5902 - MEDIUM: resolvers: split resolving and dns message exchange layers.
5903 - MEDIUM: resolvers/dns: split dns.c into dns.c and resolvers.c
5904 - MEDIUM: dns: adds code to support pipelined DNS requests over TCP.
5905 - MEDIUM: resolvers: add supports of TCP nameservers in resolvers.
5906
Willy Tarreau5d46fbd2021-02-05 15:17:33 +010059072021/02/05 : 2.4-dev7
5908 - BUG/MINOR: stats: Continue to fill frontend stats on unimplemented metric
5909 - BUILD: ssl: guard Client Hello callbacks with HAVE_SSL_CLIENT_HELLO_CB macro instead of openssl version
5910 - BUG/MINOR: stats: Init the metric variable when frontend stats are filled
5911 - MINOR: contrib/prometheus-exporter: better output of Not-a-Number
5912 - CLEANUP: stats: improve field selection for frontend http fields
5913 - CLEANUP: assorted typo fixes in the code and comments
5914 - DOC: Improve documentation of the various hdr() fetches
5915 - MEDIUM: stats: allow to select one field in `stats_fill_be_stats`
5916 - MINOR: contrib/prometheus-exporter: use fill_be_stats for backend dump
5917 - MEDIUM: stats: allow to select one field in `stats_fill_sv_stats`
5918 - MINOR: contrib/prometheus-exporter: use fill_sv_stats for server dump
5919 - MINOR: abort() on my_unreachable() when DEBUG_USE_ABORT is set.
5920 - BUG/MEDIUM: filters/htx: Fix data forwarding when payload length is unknown
5921 - BUG/MINOR: config: fix leak on proxy.conn_src.bind_hdr_name
5922 - MINOR: reg-tests: add http-reuse test
5923 - CLEANUP: srv: fix comment for pool-max-conn
5924 - CLEANUP: backend: remove an obsolete comment on conn_backend_get
5925 - REORG: backend: simplify conn_backend_get
5926 - MINOR: ssl: Server ssl context prepare function refactoring
5927 - MINOR: ssl: Certificate chain loading refactorization
5928 - MEDIUM: ssl: Load client certificates in a ckch for backend servers
5929 - MEDIUM: ssl: Enable backend certificate hot update
5930 - MINOR: ssl: Remove client_crt member of the server's ssl context
5931 - CLEANUP: ssl/cli: rework free in cli_io_handler_commit_cert()
5932 - CLEANUP: ssl: remove SSL_CTX function parameter
5933 - CLEANUP: ssl: make load_srv_{ckchs,cert} match their bind counterpart
5934 - BUILD: Include stdlib.h in compiler.h if DEBUG_USE_ABORT is set
5935 - CI: Fix DEBUG_STRICT definition for Coverity
5936 - BUG/MINOR: stats: Remove a break preventing ST_F_QCUR to be set for servers
5937 - BUG/MINOR: stats: Add a break after filling ST_F_MODE field for servers
5938 - CLEANUP: ssl: remove dead code in ckch_inst_new_load_srv_store()
5939 - BUG/MINOR: ssl: init tmp chunk correctly in ssl_sock_load_sctl_from_file()
5940 - BUG/MEDIUM: session: only retrieve ready idle conn from session
5941 - BUG/MEDIUM: backend: never reuse a connection for tcp mode
5942 - REGTESTS: set_ssl_server_cert.vtc: remove the abort command
5943 - REGTESTS: set_ssl_server_cert.vtc: check the Sha1 Fingerprint
5944 - REGTESTS: set_ssl_server_cert.vtc: check the sha1 from the server
5945 - MEDIUM: stream-int: Take care of EOS if the SI wake callback function
5946 - MINOR: mux-h1: Try to wake up data layer first before calling its wake callback
5947 - MINOR: mux-h1: Wake up H1C after its creation if input buffer is not empty
5948 - MEDIUM: mux-h1: Add ST_READY state for the H1 connections
5949 - MINOR: stream: Add a function to validate TCP to H1 upgrades
5950 - MEDIUM: http-ana: Do nothing in wait-for-request analyzer if not htx
5951 - BUG/MEDIUM: stream: Don't immediatly ack the TCP to H1 upgrades
5952 - BUG/MAJOR: mux-h1: Properly handle TCP to H1 upgrades
5953 - MINOR: htx/http-ana: Save info about Upgrade option in the Connection header
5954 - MEDIUM: http-ana: Refuse invalid 101-switching-protocols responses
5955 - BUG/MINOR: h2/mux-h2: Reject 101 responses with a PROTOCOL_ERROR h2s error
5956 - MINOR: mux-h1/mux-fcgi: Don't set TUNNEL mode if payload length is unknown
5957 - MINOR: mux-h1: Split H1C_F_WAIT_OPPOSITE flag to separate input/output sides
5958 - MINOR: mux-h2: Add 2 flags to help to properly handle tunnel mode
5959 - MEDIUM: mux-h2: Block client data on server side waiting tunnel establishment
5960 - MEDIUM: mux-h2: Close streams when processing data for an aborted tunnel
5961 - MEDIUM: mux-h1: Properly handle tunnel establishments and aborts
5962 - BUG/MAJOR: mux-h1/mux-h2/htx: Fix HTTP tunnel management at the mux level
5963 - MINOR: htx: Rename HTX_FL_EOI flag into HTX_FL_EOM
5964 - REGTESTS: Don't run http_msg_full_on_eom script on the 2.4 anymore
5965 - MINOR: htx: Add a function to know if a block is the only one in a message
5966 - MAJOR: htx: Remove the EOM block type and use HTX_FL_EOM instead
5967 - MINOR: mux-h1: Add a flag on H1 streams with a response known to be bodyless
5968 - MEDIUM: mux-h1: Don't emit any payload for bodyless responses
5969 - MINOR: mux-h1: Don't emit C-L and T-E headers for 204 and 1xx responses
5970 - MINOR: mux-h1: Don't add Connection close/keep-alive header for 1xx messages
5971 - MINOR: h2/mux-h2: Add flags to notify the response is known to have no body
5972 - MEDIUM: mux-h2: Don't emit DATA frame for bodyless responses
5973 - MEDIUM: http-ana: Deal with L7 retries in HTTP analysers
5974 - MINOR: h1: reject websocket handshake if missing key
5975 - MEDIUM: h1: generate WebSocket key on response if needed
5976 - MINOR: mux_h2: define H2_SF_EXT_CONNECT_SENT stream flag
5977 - MEDIUM: h2: parse Extended CONNECT reponse to htx
5978 - MEDIUM: mux_h2: generate Extended CONNECT from htx upgrade
5979 - MEDIUM: h1: add a WebSocket key on handshake if needed
5980 - MEDIUM: mux_h2: generate Extended CONNECT response
5981 - MEDIUM: h2: parse Extended CONNECT request to htx
5982 - MEDIUM: h2: send connect protocol h2 settings
5983 - MINOR: vtc: add test for h1/h2 protocol upgrade translation
5984 - MINOR: vtc: add websocket test
5985 - REGTESTS: Fix required versions for several scripts
5986 - REGTEST: Don't use the websocket to validate http-check
5987 - MINOR: mux-h1/trace: add traces at level ERROR for all kind of errors
5988 - MINOR: mux-fcgi/trace: add traces at level ERROR for all kind of errors
5989 - MINOR: h1: Raise the chunk size limit up to (2^52 - 1)
5990 - BUG/MEDIUM: listener: do not accept connections faster than we can process them
5991 - REGTESTS: set_ssl_server_cert.vtc: set as broken
5992 - Revert "BUG/MEDIUM: listener: do not accept connections faster than we can process them"
5993 - BUG/MINOR: backend: check available list allocation for reuse
5994 - CI: Fix the coverity builds
5995 - DOC: management: fix "show resolvers" alphabetical ordering
5996 - MINOR: tools: add print_time_short() to print a condensed duration value
5997 - MINOR: activity: make profiling more manageable
5998 - MINOR: activity: declare a new structure to collect per-function activity
5999 - MEDIUM: tasks/activity: collect per-task statistics when profiling is enabled
6000 - MINOR: activity: also report collected tasks stats in "show profiling"
6001 - MINOR: activity: flush scheduler stats on "set profiling tasks on"
6002 - MINOR: activity: add a new "show tasks" command to list currently active tasks
6003 - MINOR: listener: export accept_queue_process
6004 - MINOR: session: export session_expire_embryonic()
6005 - MINOR: muxes: export the timeout and shutr task handlers
6006 - MINOR: checks: export a few functions that appear often in trace dumps
6007 - MINOR: peers: export process_peer_sync() to improve traces
6008 - MINOR: stick-tables: export process_table_expire()
6009 - MINOR: mux-h1: Remove first useless test on count in h1_process_output()
6010 - BUG/MINOR: stick-table: Always call smp_fetch_src() with a valid arg list
6011 - MINOR: http-fetch: Don't check if argument list is set in sample fetches
6012 - MINOR: http-conv: Don't check if argument list is set in sample converters
6013 - MINOR: sample: Don't check if argument list is set in sample fetches
6014 - MINOR: ssl-sample: Don't check if argument list is set in sample fetches
6015 - MINOR: mux-h2: Don't tests the start-line when sending HEADERS frame
6016 - MINOR: mux-h2: Slightly improve request HEADERS frames sending
6017 - MINOR: contrib/prometheus-exporter: declare states for objects
6018 - MAJOR: contrib/prometheus-exporter: move ftd/bkd/srv states to labels
6019 - MEDIUM: contrib/prometheus-exporter: Use dynamic labels instead of static ones
6020 - MINOR: listener: export manage_global_listener_queue()
6021 - BUG/MINOR: activity: take care of late wakeups in "show tasks"
6022 - REGTESTS: set_ssl_server_cert.vtc: remove SSL caching and set as working
6023 - REGTESTS: set_ssl_server_cert: cleanup the SSL caching option
6024 - MINOR: checks: Add function to get the result code corresponding to a status
6025 - MAJOR: contrib/prometheus-exporter: move health check status to labels
6026 - MINOR: contrib/prometheus-exporter: improve service status description field
6027 - MINOR: stats: improve pending connections description
6028 - MINOR: stats: improve max stats descriptions
6029 - MINOR: contrib/prometheus-exporter: use stats desc when possible
6030 - MINOR: contrib/prometheus-exporter: add uweight field
6031 - MINOR: contrib/prometheus-exporter: add recv logs_logs_total field
6032 - CLEANUP: contrib/prometheus-exporter: remove unused includes
6033 - CLEANUP: contrib/prometheus-exporter: align and reorder fields
6034 - CLEANUP: contrib/prometheus-exporter: remove description in README
6035 - DOC: contrib/prometheus-exporter: Add missing metrics in README
6036 - BUG/MINOR: contrib/prometheus-exporter: Add missing label for ST_F_HRSP_1XX
6037 - BUG/MINOR: contrib/prometheus-exporter: Restart labels dump at the right pos
6038 - BUG/MEDIUM: ssl/cli: abort ssl cert is freeing the old store
6039 - BUG/MEDIUM: ssl: check a connection's status before computing a handshake
6040 - BUG/MINOR: mux_h2: fix incorrect stat titles
6041 - MINOR: ssl/cli: flush the server session cache upon 'commit ssl cert'
6042 - BUG/MINOR: cli: fix set server addr/port coherency with health checks
6043 - MINOR: server: Don't set the check port during the update from a state file
6044 - MINOR: dns: Don't set the check port during a server dns resolution
6045 - MEDIUM: check: remove checkport checkaddr flag
6046 - MEDIUM: server: adding support for check_port in server state
6047 - BUG/MINOR: check: consitent way to set agentaddr
6048 - MEDIUM: check: align agentaddr and agentport behaviour
6049 - DOC: server: Add missing params in comment of the server state line parsing
6050 - BUG/MINOR: xxhash: make sure armv6 uses memcpy()
6051 - REGTESTS: mark http-check-send.vtc as 2.4-only
6052 - REGTESTS: mark sample_fetches/hashes.vtc as 2.4-only
6053 - BUG/MINOR: ssl: do not try to use early data if not configured
6054 - REGTESTS: unbreak http-check-send.vtc
6055 - MINOR: cli/show_fd: report local and report ports when known
6056 - BUILD: Makefile: move REGTESTST_TYPE default setting
6057 - BUG/MEDIUM: mux-h2: handle remaining read0 cases
6058 - CLEANUP: http-htx: Set buffer area to NULL instead of malloc(0)
6059 - BUG/MINOR: sock: Unclosed fd in case of connection allocation failure
6060 - BUG/MEDIUM: mux-h2: do not quit the demux loop before setting END_REACHED
6061
Willy Tarreau24c41d52021-01-22 16:19:46 +010060622021/01/22 : 2.4-dev6
6063 - MINOR: converter: adding support for url_enc
6064 - BUILD: SSL: guard TLS13 ciphersuites with HAVE_SSL_CTX_SET_CIPHERSUITES
6065 - BUILD: ssl: guard EVP_PKEY_get_default_digest_nid with ASN1_PKEY_CTRL_DEFAULT_MD_NID
6066 - BUILD: ssl: guard openssl specific with SSL_READ_EARLY_DATA_SUCCESS
6067 - BUILD: Makefile: exclude broken tests by default
6068 - CLEANUP: cfgparse: replace "realloc" with "my_realloc2" to fix to memory leak on error
6069 - BUG/MINOR: hlua: Fix memory leak in hlua_alloc
6070 - MINOR: contrib/prometheus-exporter: export build_info
6071 - DOC: fix some spelling issues over multiple files
6072 - CLEANUP: Fix spelling errors in comments
6073 - SCRIPTS: announce-release: fix typo in help message
6074 - CI: github: add a few more words to the codespell ignore list
6075 - DOC: Add maintainers for the Prometheus exporter
6076 - BUG/MINOR: sample: fix concat() converter's corruption with non-string variables
6077 - BUG/MINOR: server: Memory leak of proxy.used_server_addr during deinit
6078 - CLEANUP: sample: remove uneeded check in json validation
6079 - MINOR: reg-tests: add a way to add service dependency
6080 - BUG/MINOR: sample: check alloc_trash_chunk return value in concat()
6081 - BUG/MINOR: reg-tests: fix service dependency script
6082 - MINOR: reg-tests: add base prometheus test
6083 - Revert "BUG/MINOR: dns: SRV records ignores duplicated AR records"
6084 - BUG/MINOR: sample: Memory leak of sample_expr structure in case of error
6085 - BUG/MINOR: check: Don't perform any check on servers defined in a frontend
6086 - BUG/MINOR: init: enforce strict-limits when using master-worker
6087 - MINOR: contrib/prometheus-exporter: avoid connection close header
6088 - MINOR: contrib/prometheus-exporter: use fill_info for process dump
6089 - BUG/MINOR: init: Use a dynamic buffer to set HAPROXY_CFGFILES env variable
6090 - MINOR: config: Add failifnotcap() to emit an alert on proxy capabilities
6091 - MINOR: server: Forbid server definitions in frontend sections
6092 - BUG/MINOR: threads: Fixes the number of possible cpus report for Mac.
6093 - CLEANUP: pattern: rename pat_ref_commit() to pat_ref_commit_elt()
6094 - MINOR: pattern: add the missing generation ID manipulation functions
6095 - MINOR: peers: Add traces for peer control messages.
6096 - BUG/MINOR: dns: SRV records ignores duplicated AR records (v2)
6097 - BUILD: peers: fix build warning about unused variable
6098 - BUG/MEDIUM: stats: add missing INF_BUILD_INFO definition
6099 - MINOR: cache: Do not store responses with an unknown encoding
6100 - BUG/MINOR: peers: Possible appctx pointer dereference.
6101 - MINOR: build: discard echoing in help target
6102 - MINOR: cache: Remove the `hash` part of the accept-encoding secondary key
6103 - CLEANUP: cache: Use proper data types in secondary_key_cmp()
6104 - CLEANUP: Rename accept_encoding_hash_cmp to accept_encoding_bitmap_cmp
6105 - BUG/MINOR: peers: Wrong "new_conn" value for "show peers" CLI command.
6106 - MINOR: contrib: Make the wireshark peers dissector compile for more distribs.
6107 - BUG/MINOR: mux_h2: missing space between "st" and ".flg" in the "show fd" helper
6108 - CLEANUP: tools: make resolve_sym_name() take a const pointer
6109 - CLEANUP: cli: make "show fd" use a const connection to access other fields
6110 - MINOR: cli: make "show fd" also report the xprt and xprt_ctx
6111 - MINOR: xprt: add a new show_fd() helper to complete some "show fd" dumps.
6112 - MINOR: ssl: provide a "show fd" helper to report important SSL information
6113 - MINOR: xprt/mux: export all *_io_cb functions so that "show fd" resolves them
6114 - MINOR: mux-h2: make the "show fd" helper also decode the h2s subscriber when known
6115 - MINOR: mux-h1: make the "show fd" helper also decode the h1s subscriber when known
6116 - MINOR: mux-fcgi: make the "show fd" helper also decode the fstrm subscriber when known
6117 - CI: Pin VTest to a known good commit
6118 - MINOR: cli: give the show_fd helpers the ability to report a suspicious entry
6119 - MINOR: cli/show_fd: report some easily detectable suspicious states
6120 - MINOR: ssl/show_fd: report some FDs as suspicious when possible
6121 - MINOR: mux-h2/show_fd: report as suspicious an entry with too many calls
6122 - MINOR: mux-h1/show_fd: report as suspicious an entry with too many calls
6123 - BUG/MINOR: mworker: define _GNU_SOURCE for strsignal()
6124 - BUG/MEDIUM: tcpcheck: Don't destroy connection in the wake callback context
6125 - BUG/MEDIUM: mux-h2: Xfer rxbuf to the upper layer when creating a front stream
6126 - MINOR: http: Add HTTP 501-not-implemented error message
6127 - MINOR: muxes: Add exit status for errors about not implemented features
6128 - MINOR: mux-h1: Be prepared to return 501-not-implemented error during parsing
6129 - MEDIUM: mux-h1: Return a 501-not-implemented for upgrade requests with a body
6130 - DOC: Remove space after comma in converter signature
6131 - DOC: Rename '<var name>' to '<var>' in converter signature
6132 - MINOR: stats: duplicate 3 fields in bytes in info
6133 - MINOR: stats: add new start time field
6134 - MINOR: contrib/prometheus-exporter: merge info description from stats
6135 - MEDIUM: stats: allow to select one field in `stats_fill_fe_stats`
6136 - MINOR: contrib/prometheus-exporter: use fill_fe_stats for frontend dump
6137 - MINOR: contrib/prometheus-exporter: Don't needlessly set empty label for metrics
6138 - MINOR: contrib/prometheus-exporter: Split the PROMEX_FL_STATS_METRIC flag
6139 - MINOR: contrib/prometheus-exporter: Add promex_metric struct defining a metric
6140 - MEDIUM: contrib/prometheus-exporter: Rework matrices defining Promex metrics
6141 - BUG/MINOR: stream: Don't update counters when TCP to H2 upgrades are performed
6142 - BUG/MEDIUM: mux-h2: fix read0 handling on partial frames
6143 - MINOR: debug: always export the my_backtrace function
6144 - MINOR: debug: extract the backtrace dumping code to its own function
6145 - MINOR: debug: create ha_backtrace_to_stderr() to dump an instant backtrace
6146 - MEDIUM: debug: now always print a backtrace on CRASH_NOW() and friends
6147 - MINOR: debug: let ha_dump_backtrace() dump a bit further for some callers
6148 - BUILD: debug: fix build warning by consuming the write() result
6149 - MINOR: lua: remove unused variable
6150 - BUILD/MINOR: lua: define _GNU_SOURCE for LLONG_MAX
6151
Willy Tarreau421ed392021-01-06 17:41:32 +010061522021/01/06 : 2.4-dev5
6153 - BUG/MEDIUM: mux_h2: Add missing braces in h2_snd_buf()around trace+wakeup
6154 - BUILD: hpack: hpack-tbl-t.h uses VAR_ARRAY but does not include compiler.h
6155 - MINOR: time: increase the minimum wakeup interval to 60s
6156 - MINOR: check: do not ignore a connection header for http-check send
6157 - REGTESTS: complete http-check test
6158 - CI: travis-ci: drop coverity scan builds
6159 - MINOR: atomic: don't use ; to separate instruction on aarch64.
6160 - IMPORT: xxhash: update to v0.8.0 that introduces stable XXH3 variant
6161 - MEDIUM: xxhash: use the XXH3 functions to generate 64-bit hashes
6162 - MEDIUM: xxhash: use the XXH_INLINE_ALL macro to inline all functions
6163 - CLEANUP: xxhash: remove the unused src/xxhash.c
6164 - MINOR: sample: add the xxh3 converter
6165 - REGTESTS: add tests for the xxh3 converter
6166 - MINOR: protocol: Create proto_quic QUIC protocol layer.
6167 - MINOR: connection: Attach a "quic_conn" struct to "connection" struct.
6168 - MINOR: quic: Redefine control layer callbacks which are QUIC specific.
6169 - MINOR: ssl_sock: Initialize BIO and SSL objects outside of ssl_sock_init()
6170 - MINOR: connection: Add a new xprt to connection.
6171 - MINOR: ssl: Export definitions required by QUIC.
6172 - MINOR: cfgparse: Do not modify the QUIC xprt when parsing "ssl".
6173 - MINOR: tools: Add support for QUIC addresses parsing.
6174 - MINOR: quic: Add definitions for QUIC protocol.
6175 - MINOR: quic: Import C source code files for QUIC protocol.
6176 - MINOR: listener: Add QUIC info to listeners and receivers.
6177 - MINOR: server: Add QUIC definitions to servers.
6178 - MINOR: ssl: SSL CTX initialization modifications for QUIC.
6179 - MINOR: ssl: QUIC transport parameters parsing.
6180 - MINOR: quic: QUIC socket management finalization.
6181 - MINOR: cfgparse: QUIC default server transport parameters init.
6182 - MINOR: quic: Enable the compilation of QUIC modules.
6183 - MAJOR: quic: Make usage of ebtrees to store QUIC ACK ranges.
6184 - MINOR: quic: Attempt to make trace more readable
6185 - MINOR: quic: Make usage of the congestion control window.
6186 - MINOR: quic: Flag RX packet as ack-eliciting from the generic parser.
6187 - MINOR: quic: Code reordering to help in reviewing/modifying.
6188 - MINOR: quic: Add traces to congestion avoidance NewReno callback.
6189 - MINOR: quic: Display the SSL alert in ->ssl_send_alert() callback.
6190 - MINOR: quic: Update the initial salt to that of draft-29.
6191 - MINOR: quic: Add traces for in flght ack-eliciting packet counter.
6192 - MINOR: quic: make a packet build fails when qc_build_frm() fails.
6193 - MINOR: quic: Add traces for quic_packet_encrypt().
6194 - MINOR: cache: Refactoring of secondary_key building functions
6195 - MINOR: cache: Avoid storing responses whose secondary key was not correctly calculated
6196 - BUG/MINOR: cache: Manage multiple headers in accept-encoding normalization
6197 - MINOR: cache: Add specific secondary key comparison mechanism
6198 - MINOR: http: Add helper functions to trim spaces and tabs
6199 - MEDIUM: cache: Manage a subset of encodings in accept-encoding normalizer
6200 - REGTESTS: cache: Simplify vary.vtc file
6201 - REGTESTS: cache: Add a specific test for the accept-encoding normalizer
6202 - MINOR: cache: Remove redundant test in http_action_req_cache_use
6203 - MINOR: cache: Replace the "process-vary" option's expected values
6204 - CI: GitHub Actions: enable daily Coverity scan
6205 - BUG/MEDIUM: cache: Fix hash collision in `accept-encoding` handling for `Vary`
6206 - MEDIUM: stick-tables: Add srvkey option to stick-table
6207 - REGTESTS: add test for stickiness using "srvkey addr"
6208 - BUILD: Makefile: disable -Warray-bounds until it's fixed in gcc 11
6209 - BUG/MINOR: sink: Return an allocation failure in __sink_new if strdup() fails
6210 - BUG/MINOR: lua: Fix memory leak error cases in hlua_config_prepend_path
6211 - MINOR: lua: Use consistent error message 'memory allocation failed'
6212 - CLEANUP: Compare the return value of `XXXcmp()` functions with zero
6213 - CLEANUP: Apply the coccinelle patch for `XXXcmp()` on include/
6214 - CLEANUP: Apply the coccinelle patch for `XXXcmp()` on contrib/
6215 - MINOR: qpack: Add static header table definitions for QPACK.
6216 - CLEANUP: qpack: Wrong comment about the draft for QPACK static header table.
6217 - CLEANUP: quic: Remove useless QUIC event trace definitions.
6218 - BUG/MINOR: quic: Possible CRYPTO frame building errors.
6219 - MINOR: quic: Pass quic_conn struct to frame parsers.
6220 - BUG/MINOR: quic: Wrong STREAM frames parsing.
6221 - MINOR: quic: Drop packets with STREAM frames with wrong direction.
6222 - CLEANUP: ssl: Remove useless loop in tlskeys_list_get_next()
6223 - CLEANUP: ssl: Remove useless local variable in tlskeys_list_get_next()
6224 - MINOR: ssl: make tlskeys_list_get_next() take a list element
6225 - Revert "BUILD: Makefile: disable -Warray-bounds until it's fixed in gcc 11"
6226 - BUG/MINOR: cfgparse: Fail if the strdup() for `rule->be.name` for `use_backend` fails
6227 - CLEANUP: mworker: remove duplicate pointer tests in cfg_parse_program()
6228 - CLEANUP: Reduce scope of `header_name` in http_action_store_cache()
6229 - CLEANUP: Reduce scope of `hdr_age` in http_action_store_cache()
6230 - CLEANUP: spoe: fix typo on `var_check_arg` comment
6231 - BUG/MINOR: tcpcheck: Report a L7OK if the last evaluated rule is a send rule
6232 - CI: github actions: build several popular "contrib" tools
6233 - DOC: Improve the message printed when running `make` w/o `TARGET`
6234 - BUG/MEDIUM: server: srv_set_addr_desc() crashes when a server has no address
6235 - REGTESTS: add unresolvable servers to srvkey-addr
6236 - BUG/MINOR: stats: Make stat_l variable used to dump a stat line thread local
6237 - BUG/MINOR: quic: NULL pointer dereferences when building post handshake frames.
6238 - SCRIPTS: improve announce-release to support different tag and versions
6239 - SCRIPTS: make announce release support preparing announces before tag exists
6240 - CLEANUP: assorted typo fixes in the code and comments
6241 - BUG/MINOR: srv: do not init address if backend is disabled
6242 - BUG/MINOR: srv: do not cleanup idle conns if pool max is null
6243 - CLEANUP: assorted typo fixes in the code and comments
6244 - CLEANUP: few extra typo and fixes over last one ("ot" -> "to")
6245
Willy Tarreau4d711762020-12-21 11:54:56 +010062462020/12/21 : 2.4-dev4
6247 - BUG/MEDIUM: lb-leastconn: Reposition a server using the right eweight
6248 - BUG/MEDIUM: mux-h1: Fix a deadlock when a 408 error is pending for a client
6249 - BUG/MEDIUM: ssl/crt-list: bad behavior with "commit ssl cert"
6250 - BUG/MAJOR: cache: Crash because of disabled entry not removed from the tree
6251 - BUILD: SSL: fine guard for SSL_CTX_add_server_custom_ext call
6252 - MEDIUM: cache: Add a secondary entry counter and insertion limitation
6253 - MEDIUM: cache: Avoid going over duplicates lists too often
6254 - MINOR: cache: Add a max-secondary-entries cache option
6255 - CI: cirrus: drop CentOS 6 builds
6256 - BUILD: Makefile: have "make clean" destroy .o/.a/.s in contrib subdirs as well
6257 - MINOR: vars: replace static functions with global ones
6258 - MINOR: opentracing: add ARGC_OT enum
6259 - CONTRIB: opentracing: add the OpenTracing filter
6260 - DOC: opentracing: add the OpenTracing filter section
6261 - REGTESTS: make use of HAPROXY_ARGS and pass -dM by default
6262 - BUG/MINOR: http: Establish a tunnel for all 2xx responses to a CONNECT
6263 - BUG/MINOR: mux-h1: Don't set CS_FL_EOI too early for protocol upgrade requests
6264 - BUG/MEDIUM: http-ana: Never for sending data in TUNNEL mode
6265 - CLEANUP: mux-h2: Rename h2s_frt_make_resp_data() to be generic
6266 - CLEANUP: mux-h2: Rename h2c_frt_handle_data() to be generic
6267 - BUG/MEDIUM: mux-h1: Handle h1_process() failures on a pipelined request
6268 - CLEANUP: debug: mark the RNG's seed as unsigned
6269 - CONTRIB: halog: fix build issue caused by %L printf format
6270 - CONTRIB: halog: mark the has_zero* functions unused
6271 - CONTRIB: halog: fix signed/unsigned build warnings on counts and timestamps
6272 - CONTRIB: debug: address "poll" utility build on non-linux platforms
6273 - BUILD: plock: remove dead code that causes a warning in gcc 11
6274 - BUILD: ssl: fine guard for SSL_CTX_get0_privatekey call
6275 - BUG/MINOR: dns: SRV records ignores duplicated AR records
6276 - DOC: fix "smp_size" vs "sample_size" in "log" directive arguments
6277 - CLEANUP: assorted typo fixes in the code and comments
6278 - DOC: assorted typo fixes in the documentation
6279 - CI: codespell: whitelist "te" and "nd" words
6280
Willy Tarreaua786c412020-12-11 17:22:51 +010062812020/12/11 : 2.4-dev3
6282 - MINOR: log: Logging HTTP path only with %HPO
6283 - BUG/MINOR: mux-h2/stats: make stream/connection proto errors more accurate
6284 - MINOR: traces: add a new level "error" below the "user" level
6285 - MINOR: mux-h2/trace: add traces at level ERROR for protocol errors
6286 - BUG/MINOR: mux-h2/stats: not all GOAWAY frames are errors
6287 - BUG/MINOR: lua: missing "\n" in error message
6288 - BUG/MINOR: lua: lua-load doesn't check its parameters
6289 - BUG/MINOR: lua: Post init register function are not executed beyond the first one
6290 - BUG/MINOR: lua: Some lua init operation are processed unsafe
6291 - MINOR: actions: Export actions lookup functions
6292 - MINOR: actions: add a function returning a service pointer from its name
6293 - MINOR: cli: add a function to look up a CLI service description
6294 - BUG/MINOR: lua: warn when registering action, conv, sf, cli or applet multiple times
6295 - MINOR: cache: Improve accept_encoding_normalizer
6296 - MINOR: cache: Add entry to the tree as soon as possible
6297 - BUG/MINOR: trace: Wrong displayed trace level
6298 - BUG/MAJOR: ring: tcp forward on ring can break the reader counter.
6299 - MINOR: lua: simplify hlua_alloc() to only rely on realloc()
6300 - MEDIUM: lua-thread: use atomics for memory accounting
6301 - MINOR: lua-thread: remove struct hlua from function hlua_prepend_path()
6302 - MEDIUM: lua-thread: make hlua_post_init() no longer use the runtime execution function
6303 - MINOR: lua-thread: hlua_ctx_renew() is never called with main gL lua state
6304 - MINOR: lua-thread: Use NULL context for main lua state
6305 - MINOR: lua-thread: Stop usage of struct hlua for the global lua state
6306 - MINOR: lua-thread: Replace embedded struct hlua_function by a pointer
6307 - MINOR: lua-thread: Split hlua_init() function in two parts
6308 - MINOR: lua-thread: make hlua_ctx_init() get L from its caller
6309 - MINOR: lua-thread: Split hlua_load function in two parts
6310 - MINOR: lua-thread: Split hlua_post_init() function in two parts
6311 - MINOR: lua-thread: Add the "thread" core variable
6312 - MEDIUM: lua-thread: No longer use locked context in initialization parts
6313 - MEDIUM: lua-thread: Apply lock only if the parent state is the main thread
6314 - MINOR: lua-thread: Replace global gL var with an array of states
6315 - MINOR: lua-thread: Replace "struct hlua_function" allocation by dedicated function
6316 - MINOR: lua-thread: Replace state_from by state_id
6317 - MINOR: lua-thread: Store each function reference and init reference in array
6318 - MEDIUM: lua-thread: Add the lua-load-per-thread directive
6319 - MINOR: lua-thread: Add verbosity in errors
6320 - REGTESTS: add a test for the threaded Lua code
6321 - BUILD/MINOR: haproxy DragonFlyBSD affinity build update.
6322 - DOC/MINOR: Fix formatting in Management Guide
6323 - MINOR: cache: Do not store stale entry
6324 - MINOR: cache: Add extra "cache-control" value checks
6325 - MEDIUM: cache: Remove cache entry in case of POST on the same resource
6326 - MINOR: cache: Consider invalid Age values as stale
6327 - BUG/MEDIUM: lua-thread: some parts must be initialized once
6328 - BUG/MINOR: lua-thread: close all states on deinit
6329 - BUG/MINOR: listener: use sockaddr_in6 for IPv6
6330 - BUG/MINOR: mux-h1: Handle keep-alive timeout for idle frontend connections
6331 - MINOR: session: Add the idle duration field into the session
6332 - MINOR: mux-h1: Update session idle duration when data are received
6333 - MINOR: mux-h1: Reset session dates and durations info when the CS is detached
6334 - MINOR: logs: Use session idle duration when no stream is provided
6335 - MINOR: stream: Always get idle duration from the session
6336 - MINOR: stream: Don't retrieve anymore timing info from the mux csinfo
6337 - MINOR: mux-h1: Don't provide anymore timing info using cs_info structure
6338 - MINOR: muxes: Remove get_cs_info callback function now useless
6339 - MINOR: stream: Pass an optional input buffer when a stream is created
6340 - MINOR: mux-h1: Add a flag to disable reads to wait opposite side
6341 - MEDIUM: mux-h1: Use a h1c flag to block reads when splicing is in-progress
6342 - MINOR: mux-h1: Introduce H1C_F_IS_BACK flag on the H1 connection
6343 - MINOR: mux-h1: Separate parsing and formatting errors at H1 stream level
6344 - MINOR: mux-h1: Split front/back h1 stream creation in 2 functions
6345 - MINOR: mux-h1: Add a rxbuf into the H1 stream
6346 - MINOR: mux-h1: Don't set CS flags in internal parsing functions
6347 - MINOR: mux-h1: Add embryonic and attached states on the H1 connection
6348 - MINOR: mux-h1: rework the h1_timeout_task() function
6349 - MINOR: mux-h1: Reset more H1C flags when a H1 stream is destroyed
6350 - MINOR: mux-h1: Disable reads if an error was reported on the H1 stream
6351 - MINOR: mux-h1: Rework how shutdowns are handled
6352 - MINOR: mux-h1: Rework h1_refresh_timeout to be easier to read
6353 - MINOR: mux-h1: Process next request for IDLE connection only
6354 - MINOR: mux-h1: Add a idle expiration date on the H1 connection
6355 - MINOR: stick-tables: Add functions to update some values of a tracked counter
6356 - MINOR: session: Add functions to increase http values of tracked counters
6357 - MINOR: mux: Add a ctl parameter to get the exit status of the multiplexers
6358 - MINOR: logs: Get the multiplexer exist status when no stream is provided
6359 - MINOR: mux-h1: Add functions to send HTTP errors from the mux
6360 - MAJOR: mux-h1: Create the client stream as later as possible
6361 - DOC: config: Add notes about errors emitted by H1 mux
6362 - CLEANUP: mux-h1: Rename H1C_F_CS_* flags and reorder H1C flags
6363 - MINOR: http-ana: Remove useless update of t_idle duration of the stream
6364 - CLEANUP: htx: Remove HTX_FL_UPGRADE unsued flag
6365 - MEDIUM: http-ana: Don't process partial or empty request anymore
6366 - CLEANUP: http-ana: Remove TX_WAIT_NEXT_RQ unsued flag
6367 - CLEANUP: connection: Remove CS_FL_READ_PARTIAL flag
6368 - REGTESTS: Fix proxy_protocol_tlv_validation
6369 - MINOR: http-ana: Properly set message flags from the start-line flags
6370 - MINOR: h1-htx/http-ana: Set BODYLESS flag on message in TUNNEL state
6371 - MINOR: protocol: add a ->set_port() helper to address families
6372 - MINOR: listener: automatically set the port when creating listeners
6373 - MINOR: listener: now use a generic add_listener() function
6374 - MEDIUM: ssl: fatal error with bundle + openssl < 1.1.1
6375 - BUG/MEDIUM: stream: Xfer the input buffer to a fully created stream
6376 - BUG/MINOR: stream: Don't use input buffer after the ownership xfer
6377 - MINOR: protocol: remove the redundant ->sock_domain field
6378 - MINOR: protocol: export protocol definitions
6379 - CLEANUP: protocol: group protocol struct members by usage
6380 - MINOR: protocol: add a set of ctrl_init/ctrl_close methods for setup/teardown
6381 - MINOR: connection: use the control layer's init/close
6382 - MINOR: udp: export udp_suspend_receiver() and udp_resume_receiver()
6383 - BUG/MAJOR: spoa/python: Fixing return None
6384 - DOC: spoa/python: Fixing typo in IP related error messages
6385 - DOC: spoa/python: Rephrasing memory related error messages
6386 - DOC: spoa/python: Fixing typos in comments
6387 - BUG/MINOR: spoa/python: Cleanup references for failed Module Addobject operations
6388 - BUG/MINOR: spoa/python: Cleanup ipaddress objects if initialization fails
6389 - BUG/MEDIUM: spoa/python: Fixing PyObject_Call positional arguments
6390 - BUG/MEDIUM: spoa/python: Fixing references to None
6391 - DOC: email change of the DeviceAtlas maintainer
6392 - MINOR: cache: Dump secondary entries in "show cache"
6393 - CLEANUP: connection: use fd_stop_both() instead of conn_stop_polling()
6394 - MINOR: stream-int: don't touch polling anymore on shutdown
6395 - MINOR: connection: implement cs_drain_and_close()
6396 - MINOR: mux-pt: take care of CS_SHR_DRAIN in shutr()
6397 - MINOR: checks: use cs_drain_and_close() instead of draining the connection
6398 - MINOR: checks: don't call conn_cond_update_polling() anymore
6399 - CLEANUP: connection: open-code conn_cond_update_polling() and update the comment
6400 - CLEANUP: connection: remove the unused conn_{stop,cond_update}_polling()
6401 - BUG/MINOR: http-check: Use right condition to consider HTX message as full
6402 - BUG/MINOR: tcpcheck: Don't rearm the check timeout on each read
6403 - MINOR: tcpcheck: Only wait for more payload data on HTTP expect rules
6404 - BUG/MINOR: tools: make parse_time_err() more strict on the timer validity
6405 - BUG/MINOR: tools: Reject size format not starting by a digit
6406 - MINOR: action: define enum for timeout type of the set-timeout rule
6407 - MINOR: stream: prepare the hot refresh of timeouts
6408 - MEDIUM: stream: support a dynamic server timeout
6409 - MEDIUM: stream: support a dynamic tunnel timeout
6410 - MEDIUM: http_act: define set-timeout server/tunnel action
6411 - MINOR: frontend: add client timeout sample fetch
6412 - MINOR: backend: add timeout sample fetches
6413 - MINOR: stream: add sample fetches
6414 - MINOR: stream: add timeout sample fetches
6415 - REGTESTS: add regtest for http-request set-timeout
6416 - CLEANUP: remove the unused fd_stop_send() in conn_xprt_shutw{,_hard}()
6417 - CLEANUP: connection: remove the unneeded fd_stop_{recv,send} on read0/shutw
6418 - MINOR: connection: remove sock-specific code from conn_sock_send()
6419 - REORG: connection: move the socket iocb (conn_fd_handler) to sock.c
6420 - MINOR: protocol: add a ->drain() function at the connection control layer
6421 - MINOR: connection: make conn_sock_drain() use the control layer's ->drain()
6422 - MINOR: protocol: add a pair of check_events/ignore_events functions at the ctrl layer
6423 - MEDIUM: connection: make use of the control layer check_events/ignore_events
6424
Willy Tarreauc94431b2020-12-01 08:15:26 +010064252020/12/01 : 2.4-dev2
6426 - BUILD: Make DEBUG part of .build_opts
6427 - BUILD: Show the value of DEBUG= in haproxy -vv
6428 - CI: Set DEBUG=-DDEBUG_STRICT=1 in GitHub Actions
6429 - MINOR: stream: Add level 7 retries on http error 401, 403
6430 - CLEANUP: remove unused function "ssl_sock_is_ckch_valid"
6431 - BUILD: SSL: add BoringSSL guarding to "RAND_keep_random_devices_open"
6432 - BUILD: SSL: do not "update" BoringSSL version equivalent anymore
6433 - BUG/MEDIUM: http_act: Restore init of log-format list
6434 - DOC: better describes how to configure a fallback crt
6435 - BUG/MAJOR: filters: Always keep all offsets up to date during data filtering
6436 - MINOR: cache: Prepare helper functions for Vary support
6437 - MEDIUM: cache: Add the Vary header support
6438 - MINOR: cache: Add a process-vary option that can enable/disable Vary processing
6439 - BUG/CRITICAL: cache: Fix trivial crash by sending accept-encoding header
6440 - BUG/MAJOR: peers: fix partial message decoding
6441 - DOC: cache: Add new caching limitation information
6442 - DOC: cache: Add information about Vary support
6443 - DOC: better document the config file format and escaping/quoting rules
6444 - DOC: Clarify %HP description in log-format
6445 - CI: github actions: update LibreSSL to 3.3.0
6446 - CI: github actions: enable 51degrees feature
6447 - MINOR: fd/threads: silence a build warning with threads disabled
6448 - BUG/MINOR: tcpcheck: Don't forget to reset tcp-check flags on new kind of check
6449 - MINOR: tcpcheck: Don't handle anymore in-progress send rules in tcpcheck_main
6450 - BUG/MAJOR: tcpcheck: Allocate input and output buffers from the buffer pool
6451 - MINOR: tcpcheck: Don't handle anymore in-progress connect rules in tcpcheck_main
6452 - MINOR: config: Deprecate and ignore tune.chksize global option
6453 - MINOR: config: Add a warning if tune.chksize is used
6454 - REORG: tcpcheck: Move check option parsing functions based on tcp-check
6455 - MINOR: check: Always increment check health counter on CONPASS
6456 - MINOR: tcpcheck: Add support of L7OKC on expect rules error-status argument
6457 - DOC: config: Make disable-on-404 option clearer on transition conditions
6458 - DOC: config: Move req.hdrs and req.hdrs_bin in L7 samples fetches section
6459 - BUG/MINOR: http-fetch: Fix smp_fetch_body() when called from a health-check
6460 - MINOR: plock: use an ARMv8 instruction barrier for the pause instruction
6461 - MINOR: debug: add "debug dev sched" to stress the scheduler.
6462 - MINOR: debug: add a trivial PRNG for scheduler stress-tests
6463 - BUG/MEDIUM: lists: Lock the element while we check if it is in a list.
6464 - MINOR: task: remove tasklet_insert_into_tasklet_list()
6465 - MINOR: task: perform atomic counter increments only once per wakeup
6466 - MINOR: task: remove __tasklet_remove_from_tasklet_list()
6467 - BUG/MEDIUM: task: close a possible data race condition on a tasklet's list link
6468 - BUG/MEDIUM: local log format regression.
6469
Willy Tarreau1a38ffc2020-11-21 16:00:40 +010064702020/11/21 : 2.4-dev1
6471 - MINOR: ist: Add istend() function to return a pointer to the end of the string
6472 - MINOR: sample: Add converters to parse FIX messages
6473 - REGTEST: converter: Add a regtest for fix converters
6474 - MINOR: sample: Add converts to parses MQTT messages
6475 - REGTEST: converter: Add a regtest for MQTT converters
6476 - MINOR: compat: automatically include malloc.h on glibc
6477 - MEDIUM: pools: call malloc_trim() from pool_gc()
6478 - MEDIUM: pattern: call malloc_trim() on pat_ref_reload()
6479 - MINOR: pattern: move the update revision to the pat_ref, not the expression
6480 - CLEANUP: pattern: delete the back refs at once during pat_ref_reload()
6481 - MINOR: pattern: new sflag PAT_SF_REGFREE indicates regex_free() is needed
6482 - MINOR: pattern: make the delete and prune functions more generic
6483 - MEDIUM: pattern: link all final elements from the reference
6484 - MEDIUM: pattern: change the pat_del_* functions to delete from the references
6485 - MINOR: pattern: remerge the list and tree deletion functions
6486 - MINOR: pattern: perform a single call to pat_delete_gen() under the expression
6487 - CLEANUP: acl: don't reference the generic pattern deletion function anymore
6488 - CLEANUP: pattern: remove pat_delete_fcts[] and pattern_head->delete()
6489 - MINOR: pattern: introduce pat_ref_delete_by_ptr() to delete a valid reference
6490 - MINOR: pattern: store a generation number in the reference patterns
6491 - MEDIUM: pattern: only match patterns that match the current generation
6492 - MINOR: pattern: add pat_ref_commit() to commit a previously inserted element
6493 - MINOR: pattern: implement pat_ref_load() to load a pattern at a given generation
6494 - MINOR: pattern: add pat_ref_purge_older() to purge old entries
6495 - MEDIUM: pattern: make pat_ref_prune() rely on pat_ref_purge_older()
6496 - MINOR: pattern: during reload, delete elements frem the ref, not the expression
6497 - MINOR: pattern: prepare removal of a pattern from the list head
6498 - MEDIUM: pattern: turn the pattern chaining to single-linked list
6499 - CLEANUP: cfgparse: remove duplicate registration for transparent build options
6500 - BUG/MINOR: ssl: don't report 1024 bits DH param load error when it's higher
6501 - MINOR: http-htx: Add understandable errors for the errorfiles parsing
6502 - MINOR: ssl: instantiate stats module
6503 - MINOR: ssl: count client hello for stats
6504 - MINOR: ssl: add counters for ssl sessions
6505 - DOC: config: Fix a typo on ssl_c_chain_der
6506 - MINOR: server: remove idle lock in srv_cleanup_connections
6507 - BUILD: ssl: silence build warning on uninitialised counters
6508 - BUILD: http-htx: fix build warning regarding long type in printf
6509 - REGTEST: ssl: test wildcard and multi-type + exclusions
6510 - BUG/MEDIUM: ssl/crt-list: correctly insert crt-list line if crt already loaded
6511 - CI: Expand use of GitHub Actions for CI
6512 - REGTEST: ssl: mark reg-tests/ssl/ssl_crt-list_filters.vtc as broken
6513 - BUG/MINOR: pattern: a sample marked as const could be written
6514 - BUG/MINOR: lua: set buffer size during map lookups
6515 - MEDIUM: cache: Change caching conditions
6516 - BUG/MINOR: stats: free dynamically stats fields/lines on shutdown
6517 - BUG/MEDIUM: stats: prevent crash if counters not alloc with dummy one
6518 - MINOR: peers: Add traces to peer_treat_updatemsg().
6519 - BUG/MINOR: peers: Do not ignore a protocol error for dictionary entries.
6520 - BUG/MINOR: peers: Missing TX cache entries reset.
6521 - BUG/MEDIUM: peers: fix decoding of multi-byte length in stick-table messages
6522 - BUG/MINOR: http-fetch: Extract cookie value even when no cookie name
6523 - BUG/MINOR: http-fetch: Fix calls w/o parentheses of the cookie sample fetches
6524 - BUG/MEDIUM: check: reuse srv proto only if using same mode
6525 - MINOR: check: report error on incompatible proto
6526 - MINOR: check: report error on incompatible connect proto
6527 - BUG/MINOR: http-htx: Handle warnings when parsing http-error and http-errors
6528 - BUG/MAJOR: spoe: Be sure to remove all references on a released spoe applet
6529 - MINOR: spoe: Don't close connection in sync mode on processing timeout
6530 - BUG/MINOR: tcpcheck: Don't warn on unused rules if check option is after
6531 - MINOR: init: Fix the prototype for per-thread free callbacks
6532 - MINOR: config/mux-h2: Return ERR_ flags from init_h2() instead of a status
6533 - CLEANUP: config: Return ERR_NONE from config callbacks instead of 0
6534 - MINOR: cfgparse: tighten the scope of newnameserver variable, free it on error.
6535 - REGTEST: make ssl_client_samples and ssl_server_samples require to 2.2
6536 - REGTESTS: Add sample_fetches/cook.vtc
6537 - BUG/MEDIUM: filters: Forward all filtered data at the end of http filtering
6538 - BUG/MINOR: http-ana: Don't wait for the body of CONNECT requests
6539 - CLEANUP: flt-trace: Remove unused random-parsing option
6540 - MINOR: flt-trace: Add an option to inhibits trace messages
6541 - MINOR: flt-trace: Use a bitfield for the trace options
6542 - REGTESTS: Add a script to test the random forwarding with several filters
6543 - REGTESTS: mark the abns test as broken again
6544 - REGTESTS: converter: add url_dec test
6545 - CI: Stop hijacking the hosts file
6546 - CI: Make the h2spec workflow more consistent with the VTest workflow
6547 - CI: travis-ci: remove amd64, osx builds
6548 - CI: travis-ci: arm64 are not allowed to fail anymore
6549 - DOC: add missing 3.10 in the summary
6550 - MINOR: ssl: remove client hello counters
6551 - MEDIUM: stats: add counters for failed handshake
6552 - MINOR: ssl: create common ssl_ctx init
6553 - MEDIUM: cli/ssl: configure ssl on server at runtime
6554 - REGTEST: server/cli_set_ssl.vtc requires OpenSSL
6555 - DOC: coding-style: update a few rules about pointers
6556 - BUG/MINOR: ssl: segv on startup when AKID but no keyid
6557 - BUILD: ssl: use SSL_MODE_ASYNC macro instead of OPENSSL_VERSION
6558 - BUG/MEDIUM: http-ana: Don't eval http-after-response ruleset on empty messages
6559 - BUG/MEDIUM: ssl/crt-list: bundle support broken in crt-list
6560 - BUG/MEDIUM: ssl: error when no certificate are found
6561 - BUG/MINOR: ssl/crt-list: load bundle in crt-list only if activated
6562 - BUG/MEDIUM: ssl/crt-list: fix error when no file found
6563 - CI: Github Actions: enable prometheus exporter
6564 - CI: Github Actions: remove LibreSSL-3.0.2 builds
6565 - CI: Github Actions: enable BoringSSL builds
6566 - CI: travis-ci: remove builds migrated to GH actions
6567 - BUILD: makefile: enable crypt(3) for OpenBSD
6568 - CI: Github Action: run "apt-get update" before packages restore
6569 - BUILD: SSL: guard TLS13 ciphersuites with HAVE_SSL_CTX_SET_CIPHERSUITES
6570 - CI: Pass the github.event_name to matrix.py
6571 - CI: Clean up Windows CI
6572 - DOC: clarify how to create a fallback crt
6573 - CLEANUP: connection: do not use conn->owner when the session is known
6574 - BUG/MAJOR: connection: reset conn->owner when detaching from session list
6575 - REGTESTS: mark proxy_protocol_random_fail as broken
6576 - BUG/MINOR: http_htx: Fix searching headers by substring
6577 - MINOR: http_act: Add -m flag for del-header name matching method
6578
Willy Tarreau1db55792020-11-05 17:20:35 +010065792020/11/05 : 2.4-dev0
6580 - MINOR: version: it's development again.
6581 - DOC: mention in INSTALL that it's development again
6582
Willy Tarreau1c0a7222020-11-05 17:04:53 +010065832020/11/05 : 2.3.0
6584 - CLEANUP: pattern: remove unused entry "tree" in pattern.val
6585 - BUILD: ssl: use SSL_CTRL_GET_RAW_CIPHERLIST instead of OpenSSL versions
6586 - BUG/MEDIUM: filters: Don't try to init filters for disabled proxies
6587 - BUG/MINOR: proxy/server: Skip per-proxy/server post-check for disabled proxies
6588 - BUG/MINOR: checks: Report a socket error before any connection attempt
6589 - BUG/MINOR: server: Set server without addr but with dns in RMAINT on startup
6590 - MINOR: server: Copy configuration file and line for server templates
6591 - BUG/MEDIUM: mux-pt: Release the tasklet during an HTTP upgrade
6592 - BUILD: ssl: use HAVE_OPENSSL_KEYLOG instead of OpenSSL versions
6593 - MINOR: debug: don't count free(NULL) in memstats
6594 - BUG/MINOR: filters: Skip disabled proxies during startup only
6595 - MINOR: mux_h2: capitalize frame type in stats
6596 - MINOR: mux_h2: add stat for total count of connections/streams
6597 - MINOR: stats: do not display empty stat module title on html
6598 - BUG/MEDIUM: stick-table: limit the time spent purging old entries
6599 - BUG/MEDIUM: listener: only enable a listening listener if needed
6600 - BUG/MEDIUM: listener: never suspend inherited sockets
6601 - BUG/MEDIUM: listener: make the master also keep workers' inherited FDs
6602 - MINOR: fd: add fd_want_recv_safe()
6603 - MEDIUM: listeners: make use of fd_want_recv_safe() to enable early receivers
6604 - REGTESTS: mark abns_socket as working now
6605 - CLEANUP: mux-h2: Remove the h1 parser state from the h2 stream
6606 - MINOR: sock: add a check against cross worker<->master socket activities
6607 - CI: github actions: limit OpenSSL no-deprecated builds to "default,bug,devel" reg-tests
6608 - BUG/MEDIUM: server: make it possible to kill last idle connections
6609 - MINOR: mworker/cli: the master CLI use its own applet
6610 - MINOR: ssl: define SSL_CTX_set1_curves_list to itself on BoringSSL
6611 - BUILD: ssl: use feature macros for detecting ec curves manipulation support
6612 - DOC: Add dns as an available domain to show stat
6613 - BUILD: makefile: usual reorder of objects for faster builds
6614 - DOC: update INSTALL to mention that TCC is supported
6615 - DOC: mention in INSTALL that haproxy 2.3 is a stable version
6616 - MINOR: version: mention that it's stable now
6617
Willy Tarreaubd703e52020-10-31 13:17:06 +010066182020/10/31 : 2.3-dev9
6619 - CLEANUP: http_ana: remove unused assignation of `att_beg`
6620 - BUG/MEDIUM: ssl: OCSP must work with BoringSSL
6621 - BUG/MINOR: log: fix memory leak on logsrv parse error
6622 - BUG/MINOR: log: fix risk of null deref on error path
6623 - BUILD: ssl: more elegant OpenSSL early data support check
6624 - CI: github actions: update h2spec to 2.6.0
6625 - BUG/MINOR: cache: Check the return value of http_replace_res_status
6626 - MINOR: cache: Store the "Last-Modified" date in the cache_entry
6627 - MINOR: cache: Process the If-Modified-Since header in conditional requests
6628 - MINOR: cache: Create res.cache_hit and res.cache_name sample fetches
6629 - MINOR: mux-h2: register a stats module
6630 - MINOR: mux-h2: add counters instance to h2c
6631 - MINOR: mux-h2: add stats for received frame types
6632 - MINOR: mux-h2: report detected error on stats
6633 - MINOR: mux-h2: count open connections/streams on stats
6634 - BUG/MINOR: server: fix srv downtime calcul on starting
6635 - BUG/MINOR: server: fix down_time report for stats
6636 - BUG/MINOR: lua: initialize sample before using it
6637 - MINOR: cache: Add Expires header value parsing
6638 - MINOR: ist: Add a case insensitive istmatch function
6639 - BUG/MINOR: cache: Manage multiple values in cache-control header value
6640 - BUG/MINOR: cache: Inverted variables in http_calc_maxage function
6641 - MINOR: pattern: make pat_ref_append() return the newly added element
6642 - MINOR: pattern: make pat_ref_add() rely on pat_ref_append()
6643 - MINOR: pattern: export pat_ref_push()
6644 - CLEANUP: pattern: use calloc() rather than malloc for structures
6645 - CLEANUP: pattern: fix spelling/grammatical/copy-paste in comments
6646
Willy Tarreaufb1b9e32020-10-24 13:14:31 +020066472020/10/24 : 2.3-dev8
6648 - MINOR: backend: replace the lbprm lock with an rwlock
6649 - MINOR: lb/map: use seek lock and read locks where appropriate
6650 - MINOR: lb/leastconn: only take a read lock in fwlc_get_next_server()
6651 - MINOR: lb/first: use a read lock in fas_get_next_server()
6652 - MINOR: lb/chash: use a read lock in chash_get_server_hash()
6653 - BUG/MINOR: disable dynamic OCSP load with BoringSSL
6654 - BUILD: ssl: make BoringSSL use its own version numbers
6655 - CLEANUP: threads: don't register an initcall when not debugging
6656 - MINOR: threads: change lock_t to an unsigned int
6657 - CLEANUP: tree-wide: reorder a few structures to plug some holes around locks
6658 - CLEANUP: task: remove the unused and mishandled global_rqueue_size
6659 - BUG/MEDIUM: connection: Never cleanup server lists when freeing private conns
6660 - MEDIUM: config: report that "nbproc" is deprecated
6661 - BUG/MINOR: listener: close before free in `listener_accept`
6662 - MINOR: ssl: 'ssl-load-extra-del-ext' removes the certificate extension
6663 - BUG/MINOR: queue: properly report redistributed connections
6664 - CONTRIB: tcploop: remove unused local variables in tcp_pause()
6665 - BUILD: makefile: add entries to build common debugging tools
6666 - BUG/MEDIUM: server: support changing the slowstart value from state-file
6667 - MINOR: http: Add `enum etag_type http_get_etag_type(const struct ist)`
6668 - MINOR: http: Add etag comparison function
6669 - MEDIUM: cache: Store the ETag information in the cache_entry
6670 - MEDIUM: cache: Add support for 'If-None-Match' request header
6671 - REGTEST: cache: Add if-none-match test case
6672 - CLEANUP: compression: Make use of http_get_etag_type()
6673 - BUG/MINOR: http-ana: Don't send payload for internal responses to HEAD requests
6674 - BUG/MAJOR: mux-h2: Don't try to send data if we know it is no longer possible
6675 - MINOR: threads/debug: only report used lock stats
6676 - MINOR: threads/debug: only report lock stats for used operations
6677 - MINOR: proxy; replace the spinlock with an rwlock
6678 - MINOR: server: read-lock the cookie during srv_set_dyncookie()
6679 - MINOR: proxy/cli: only take a read lock in "show errors"
6680 - OPTIM: queue: don't call pendconn_unlink() when the pendconn is not queued
6681 - MINOR: queue: split __pendconn_unlink() in per-srv and per-prx
6682 - MINOR: queue: reduce the locked area in pendconn_add()
6683 - OPTIM: queue: make the nbpend counters atomic
6684 - OPTIM: queue: decrement the nbpend and totpend counters outside of the lock
6685 - MINOR: leastconn: take the queue length into account when queuing servers
6686 - MEDIUM: fwlc: re-enable per-server queuing up to maxqueue
6687 - Revert "OPTIM: queue: don't call pendconn_unlink() when the pendconn is not queued"
6688 - MINOR: stats: support the "up" output modifier for "show stat"
6689 - MINOR: stats: also support a "no-maint" show stat modifier
6690 - MINOR: stats: indicate the number of servers in a backend's status
6691 - MEDIUM: ssl: ssl-load-extra-del-ext work only with .crt
6692 - REGTEST: ssl: test "set ssl cert" with separate key / crt
6693 - DOC: management: apply the "show stat" modifiers to "show stat", not "show info"
6694 - MINOR: stats: report server's user-configured weight next to effective weight
6695 - CI: travis-ci: switch to Ubuntu 20.04
6696 - CONTRIB: release-estimator: Add release estimating tool
6697 - BUG/MEDIUM: queue: fix unsafe proxy pointer when counting nbpend
6698 - BUG/MINOR: extcheck: add missing checks on extchk_setenv()
6699
Willy Tarreau9d58c9b2020-10-17 10:31:50 +020067002020/10/17 : 2.3-dev7
6701 - CI: travis-ci: replace not defined SSL_LIB, SSL_INC for BotringSSL builds
6702 - BUG/MINOR: init: only keep rlim_fd_cur if max is unlimited
6703 - BUG/MINOR: mux-h2: do not stop outgoing connections on stopping
6704 - MINOR: fd: report an error message when failing initial allocations
6705 - MINOR: proto-tcp: make use of connect(AF_UNSPEC) for the pause
6706 - MINOR: sock: add sock_accept_conn() to test a listening socket
6707 - MINOR: protocol: make proto_tcp & proto_uxst report listening sockets
6708 - MINOR: sockpair: implement the .rx_listening function
6709 - CLEANUP: tcp: make use of sock_accept_conn() where relevant
6710 - CLEANUP: unix: make use of sock_accept_conn() where relevant
6711 - BUG/MINOR: listener: detect and handle shared sockets stopped in other processes
6712 - CONTRIB: tcploop: implement a disconnect operation 'D'
6713 - CLEANUP: protocol: intitialize all of the sockaddr when disconnecting
6714 - BUG/MEDIUM: deinit: check fdtab before fdtab[fd].owner
6715 - BUG/MINOR: connection: fix loop iter on connection takeover
6716 - BUG/MEDIUM: connection: fix srv idle count on conn takeover
6717 - MINOR: connection: improve list api usage
6718 - MINOR: mux/connection: add a new mux flag for HOL risk
6719 - MINOR: connection: don't check priv flag on free
6720 - MEDIUM: backend: add new conn to session if mux marked as HOL blocking
6721 - MEDIUM: backend: add reused conn to sess if mux marked as HOL blocking
6722 - MEDIUM: h2: remove conn from session on detach
6723 - MEDIUM: fcgi: remove conn from session on detach
6724 - DOC: Describe reuse safe for HOL handling
6725 - MEDIUM: proxy: remove obsolete "mode health"
6726 - MEDIUM: proxy: remove obsolete "monitor-net"
6727 - CLEANUP: protocol: remove the ->drain() function
6728 - CLEANUP: fd: finally get rid of fd_done_recv()
6729 - MINOR: connection: make sockaddr_alloc() take the address to be copied
6730 - MEDIUM: listener: allocate the connection before queuing a new connection
6731 - MINOR: session: simplify error path in session_accept_fd()
6732 - MINOR: connection: add new error codes for accept_conn()
6733 - MINOR: sock: rename sock_accept_conn() to sock_accepting_conn()
6734 - MINOR: protocol: add a new function accept_conn()
6735 - MINOR: sock: implement sock_accept_conn() to accept a connection
6736 - MINOR: sockpair: implement sockpair_accept_conn() to accept a connection
6737 - MEDIUM: listener: use protocol->accept_conn() to accept a connection
6738 - MEDIUM: listener: remove the second pass of fd manipulation at the end
6739 - MINOR: protocol: add a default I/O callback and put it into the receiver
6740 - MINOR: log: set the UDP receiver's I/O handler in the receiver
6741 - MINOR: protocol: register the receiver's I/O handler and not the protocol's
6742 - CLEANUP: protocol: remove the now unused <handler> field of proto_fam->bind()
6743 - DOC: improve the documentation for "option nolinger"
6744 - BUG/MEDIUM: proxy: properly stop backends
6745 - BUG/MEDIUM: task: bound the number of tasks picked from the wait queue at once
6746 - MINOR: threads: augment rwlock debugging stats to report seek lock stats
6747 - MINOR: threads: add the transitions to/from the seek state
6748 - MEDIUM: task: use an upgradable seek lock when scanning the wait queue
6749 - BUILD: listener: avoir a build warning when threads are disabled
6750 - BUG/MINOR: peers: Possible unexpected peer seesion reset after collisions.
6751 - MINOR: ssl: add volatile flags to ssl samples
6752 - MEDIUM: backend: reuse connection if using a static sni
6753 - BUG/MEDIUM: spoe: Unset variable instead of set it if no data provided
6754 - BUG/MEDIUM: mux-h1: Get the session from the H1S when capturing bad messages
6755 - BUG/MEDIUM: lb: Always lock the server when calling server_{take,drop}_conn
6756 - DOC: fix typo in MAX_SESS_STKCTR
6757
Willy Tarreaub7ffe192020-10-10 10:45:13 +020067582020/10/10 : 2.3-dev6
6759 - REGTESTS: use "command" instead of "which" for better POSIX compatibility
6760 - BUILD: makefile: Update feature flags for OpenBSD
6761 - DOC: agent-check: fix typo in "fail" word expected reply
6762 - DOC: crt: advise to move away from cert bundle
6763 - BUG/MINOR: ssl/crt-list: exit on warning out of crtlist_parse_line()
6764 - REGTEST: fix host part in balance-uri-path-only.vtc
6765 - REGTEST: make ssl_client_samples and ssl_server_samples requiret to 2.3
6766 - REGTEST: the iif converter test requires 2.3
6767 - REGTEST: make agent-check.vtc require 1.8
6768 - REGTEST: make abns_socket.vtc require 1.8
6769 - REGTEST: make map_regm_with_backref require 1.7
6770 - BUILD: makefile: Update feature flags for FreeBSD
6771 - OPTIM: backend/random: never queue on the server, always on the backend
6772 - OPTIM: backend: skip LB when we know the backend is full
6773 - BUILD: makefile: Fix building with closefrom() support enabled
6774 - BUILD: makefile: add an EXTRAVERSION variable to ease local naming
6775 - MINOR: tools: support for word expansion of environment in parse_line
6776 - BUILD: tools: fix minor build issue on isspace()
6777 - BUILD: makefile: Enable closefrom() support on Solaris
6778 - CLEANUP: ssl: Use structured format for error line report during crt-list parsing
6779 - MINOR: ssl: Add error if a crt-list might be truncated
6780 - MINOR: ssl: remove uneeded check in crtlist_parse_file
6781 - BUG/MINOR: Fix several leaks of 'log_tag' in init().
6782 - DOC: tcp-rules: Refresh details about L7 matching for tcp-request content rules
6783 - MEDIUM: tcp-rules: Warn if a track-sc* content rule doesn't depend on content
6784 - BUG/MINOR: tcpcheck: Set socks4 and send-proxy flags before the connect call
6785 - DOC: ssl: new "cert bundle" behavior
6786 - BUG/MEDIUM: queue: make pendconn_cond_unlink() really thread-safe
6787 - CLEANUP: ssl: "bundle" is not an OpenSSL wording
6788 - MINOR: counters: fix a typo in comment
6789 - BUG/MINOR: stats: fix validity of the json schema
6790 - REORG: stats: export some functions
6791 - MINOR: stats: add stats size as a parameter for csv/json dump
6792 - MINOR: stats: hide px/sv/li fields in applet struct
6793 - REORG: stats: extract proxy json dump
6794 - REORG: stats: extract proxies dump loop in a function
6795 - MINOR: hlua: Display debug messages on stderr only in debug mode
6796 - MINOR: stats: define the concept of domain for statistics
6797 - MINOR: stats: define additional flag px cap on domain
6798 - MEDIUM: stats: add delimiter for static proxy stats on csv
6799 - MEDIUM: stats: define an API to register stat modules
6800 - MEDIUM: stats: add abstract type to store counters
6801 - MEDIUM: stats: integrate static proxies stats in new stats
6802 - MINOR: stats: support clear counters for dynamic stats
6803 - MINOR: stats: display extra proxy stats on the html page
6804 - MINOR: stats: add config "stats show modules"
6805 - MINOR: dns/stats: integrate dns counters in stats
6806 - MINOR: stats: remove for loop declaration
6807 - DOC: ssl: fix typo about ocsp files
6808 - BUG/MINOR: peers: Inconsistency when dumping peer status codes.
6809 - DOC: update INSTALL with supported OpenBSD / FreeBSD versions
6810 - BUG/MINOR: proto_tcp: Report warning messages when listeners are bound
6811 - CLEANUP: cache: Fix leak of cconf->c.name during config check
6812 - CLEANUP: ssl: Release cached SSL sessions on deinit
6813 - BUG/MINOR: mux-h1: Be sure to only set CO_RFL_READ_ONCE for the first read
6814 - BUG/MINOR: mux-h1: Always set the session on frontend h1 stream
6815 - MINOR: mux-h1: Don't wakeup the H1C when output buffer become available
6816 - CLEANUP: sock-unix: Remove an unreachable goto clause
6817 - BUG/MINOR: proxy: inc req counter on new syslog messages.
6818 - BUG/MEDIUM: log: old processes with log foward section don't die on soft stop.
6819 - MINOR: stats: inc req counter on listeners.
6820 - MINOR: channel: new getword and getchar functions on channel.
6821 - MEDIUM: log: syslog TCP support on log forward section.
6822 - BUG/MINOR: proxy/log: frontend/backend and log forward names must differ
6823 - DOC: re-work log forward bind statement documentation.
6824 - DOC: fix a confusing typo on a regsub example
6825 - BUILD: Add a DragonFlyBSD target
6826 - BUG/MINOR: makefile: fix a tiny typo in the target list
6827 - BUILD: makefile: Update feature flags for NetBSD
6828 - CI: travis-ci: help Coverity to detect BUG_ON() as a real stop
6829 - DOC: Add missing stats fields in the management doc
6830 - BUG/MEDIUM: mux-fcgi: Don't handle pending read0 too early on streams
6831 - BUG/MEDIUM: mux-h2: Don't handle pending read0 too early on streams
6832 - DOC: Fix typos in configuration.txt
6833 - BUG/MINOR: http: Fix content-length of the default 500 error
6834 - BUG/MINOR: http-htx: Expect no body for 204/304 internal HTTP responses
6835 - REGTESTS: mark abns_socket as broken
6836 - MEDIUM: fd: always wake up one thread when enabling a foreing FD
6837 - MEDIUM: listeners: don't bounce listeners management between queues
6838 - MEDIUM: init: stop disabled proxies after initializing fdtab
6839 - MEDIUM: listeners: make unbind_listener() converge if needed
6840 - MEDIUM: deinit: close all receivers/listeners before scanning proxies
6841 - MEDIUM: listeners: remove the now unused ZOMBIE state
6842 - MINOR: listeners: do not uselessly try to close zombie listeners in soft_stop()
6843 - CLEANUP: proxy: remove the first_to_listen hack in zombify_proxy()
6844 - MINOR: listeners: introduce listener_set_state()
6845 - MINOR: proxy: maintain per-state counters of listeners
6846 - MEDIUM: proxy: remove the unused PR_STFULL state
6847 - MEDIUM: proxy: remove the PR_STERROR state
6848 - MEDIUM: proxy: remove state PR_STPAUSED
6849 - MINOR: startup: don't rely on PR_STNEW to check for listeners
6850 - CLEANUP: peers: don't use the PR_ST* states to mark enabled/disabled
6851 - MEDIUM: proxy: replace proxy->state with proxy->disabled
6852 - MEDIUM: proxy: remove start_proxies()
6853 - MEDIUM: proxy: merge zombify_proxy() with stop_proxy()
6854 - MINOR: listeners: check the current listener state in pause_listener()
6855 - MINOR: listeners: check the current listener earlier state in resume_listener()
6856 - MEDIUM: listener/proxy: make the listeners notify about proxy pause/resume
6857 - MINOR: protocol: introduce protocol_{pause,resume}_all()
6858 - MAJOR: signals: use protocol_pause_all() and protocol_resume_all()
6859 - CLEANUP: proxy: remove the now unused pause_proxies() and resume_proxies()
6860 - MEDIUM: proto_tcp: make the pause() more robust in multi-process
6861 - BUG/MEDIUM: listeners: correctly report pause() errors
6862 - MINOR: listeners: move fd_stop_recv() to the receiver's socket code
6863 - CLEANUP: protocol: remove the ->disable_all method
6864 - CLEANUP: listeners: remove unused disable_listener and disable_all_listeners
6865 - MINOR: listeners: export enable_listener()
6866 - MINOR: protocol: directly call enable_listener() from protocol_enable_all()
6867 - CLEANUP: protocol: remove the ->enable_all method
6868 - CLEANUP: listeners: remove the now unused enable_all_listeners()
6869 - MINOR: protocol: rename the ->listeners field to ->receivers
6870 - MINOR: protocol: replace ->pause(listener) with ->rx_suspend(receiver)
6871 - MINOR: protocol: implement an ->rx_resume() method
6872 - MINOR: listener: use the protocol's ->rx_resume() method when available
6873 - MINOR: sock: provide a set of generic enable/disable functions
6874 - MINOR: protocol: add a new pair of rx_enable/rx_disable methods
6875 - MINOR: protocol: add a new pair of enable/disable methods for listeners
6876 - MEDIUM: listeners: now use the listener's ->enable/disable
6877 - MINOR: listeners: split delete_listener() in two versions
6878 - MINOR: listeners: count unstoppable jobs on creation, not deletion
6879 - MINOR: listeners: add a new stop_listener() function
6880 - MEDIUM: proxy: make stop_proxy() now use stop_listener()
6881 - MEDIUM: proxy: add mode PR_MODE_PEERS to flag peers frontends
6882 - MEDIUM: proxy: centralize proxy status update and reporting
6883 - MINOR: protocol: add protocol_stop_now() to instant-stop listeners
6884 - MEDIUM: proxy: make soft_stop() stop most listeners using protocol_stop_now()
6885 - MEDIUM: udp: implement udp_suspend() and udp_resume()
6886 - MINOR: listener: add a few BUG_ON() statements to detect inconsistencies
6887 - MEDIUM: listeners: always close master vs worker listeners
6888 - BROKEN/MEDIUM: listeners: rework the unbind logic to make it idempotent
6889 - MEDIUM: listener: let do_unbind_listener() decide whether to close or not
6890 - CLEANUP: listeners: remove the do_close argument to unbind_listener()
6891 - MINOR: listeners: move the LI_O_MWORKER flag to the receiver
6892 - MEDIUM: receivers: add an rx_unbind() method in the protocols
6893 - MINOR: listeners: split do_unbind_listener() in two
6894 - MEDIUM: listeners: implement protocol level ->suspend/resume() calls
6895 - MEDIUM: config: mark "grace" as deprecated
6896 - MEDIUM: config: remove the deprecated and dangerous global "debug" directive
6897 - BUG/MINOR: proxy: respect the proper format string in sig_pause/sig_listen
6898 - MINOR: peers: heartbeat, collisions and handshake information for "show peers" command.
6899 - BUILD: makefile: Enable getaddrinfo() on OS/X
6900
Christopher Faulet05f01882020-09-25 18:40:47 +020069012020/09/25 : 2.3-dev5
6902 - DOC: Fix typo in iif() example
6903 - CLEANUP: Update .gitignore
6904 - BUILD: introduce possibility to define ABORT_NOW() conditionally
6905 - CI: travis-ci: help Coverity to recognize abort()
6906 - BUG/MINOR: Fix type passed of sizeof() for calloc()
6907 - CLEANUP: Do not use a fixed type for 'sizeof' in 'calloc'
6908 - CLEANUP: tree-wide: use VAR_ARRAY instead of [0] in various definitions
6909 - BUILD: connection: fix build on clang after the VAR_ARRAY cleanup
6910 - BUG/MINOR: ssl: verifyhost is case sensitive
6911 - BUILD: makefile: change default value of CC from gcc to cc
6912 - CI: travis-ci: split asan step out of running tests
6913 - BUG/MINOR: server: report correct error message for invalid port on "socks4"
6914 - BUG/MEDIUM: ssl: Don't call ssl_sock_io_cb() directly.
6915 - BUG/MINOR: ssl/crt-list: crt-list could end without a \n
6916 - BUG/MINOR: log-forward: fail on unknown keywords
6917 - MEDIUM: log-forward: use "dgram-bind" instead of "bind" for the listener
6918 - BUG/MEDIUM: log-forward: always quit on parsing errors
6919 - MEDIUM: ssl: remove bundle support in crt-list and directories
6920 - MEDIUM: ssl/cli: remove support for multi certificates bundle
6921 - MINOR: ssl: crtlist_dup_ssl_conf() duplicates a ssl_bind_conf
6922 - MINOR: ssl: crtlist_entry_dup() duplicates a crtlist_entry
6923 - MEDIUM: ssl: emulates the multi-cert bundles in the crtlist
6924 - MEDIUM: ssl: emulate multi-cert bundles loading in standard loading
6925 - CLEANUP: ssl: remove test on "multi" variable in ckch functions
6926 - CLEANUP: ssl/cli: remove test on 'multi' variable in CLI functions
6927 - CLEANUP: ssl: remove utility functions for bundle
6928 - DOC: explain bundle emulation in configuration.txt
6929 - BUILD: fix build with openssl < 1.0.2 since bundle removal
6930 - BUG/MINOR: log: gracefully handle the "udp@" address format for log servers
6931 - BUG/MINOR: dns: gracefully handle the "udp@" address format for nameservers
6932 - MINOR: listener: create a new struct "settings" in bind_conf
6933 - MINOR: listener: move bind_proc and bind_thread to struct settings
6934 - MINOR: listener: move the interface to the struct settings
6935 - MINOR: listener: move the network namespace to the struct settings
6936 - REORG: listener: create a new struct receiver
6937 - REORG: listener: move the listening address to a struct receiver
6938 - REORG: listener: move the receiving FD to struct receiver
6939 - REORG: listener: move the listener's proto to the receiver
6940 - MINOR: listener: make sock_find_compatible_fd() check the socket type
6941 - REORG: listener: move the receiver part to a new file
6942 - MINOR: receiver: link the receiver to its settings
6943 - MINOR: receiver: link the receiver to its owner
6944 - MINOR: listener: prefer to retrieve the socket's settings via the receiver
6945 - MINOR: receiver: add a receiver-specific flag to indicate the socket is bound
6946 - MINOR: listener: move the INHERITED flag down to the receiver
6947 - MINOR: receiver: move the FOREIGN and V6ONLY options from listener to settings
6948 - MINOR: sock: make sock_find_compatible_fd() only take a receiver
6949 - MINOR: protocol: rename the ->bind field to ->listen
6950 - MINOR: protocol: add a new ->bind() entry to bind the receiver
6951 - MEDIUM: sock_inet: implement sock_inet_bind_receiver()
6952 - MEDIUM: tcp: make use of sock_inet_bind_receiver()
6953 - MEDIUM: udp: make use of sock_inet_bind_receiver()
6954 - MEDIUM: sock_unix: implement sock_unix_bind_receiver()
6955 - MEDIUM: uxst: make use of sock_unix_bind_receiver()
6956 - MEDIUM: sockpair: implement sockpair_bind_receiver()
6957 - MEDIUM: proto_sockpair: make use of sockpair_bind_receiver()
6958 - MEDIUM: protocol: explicitly start the receiver before the listener
6959 - MEDIUM: protocol: do not call proto->bind() anymore from bind_listener()
6960 - MINOR: protocol: add a new proto_fam structure for protocol families
6961 - MINOR: protocol: retrieve the family-specific fields from the family
6962 - CLEANUP: protocol: remove family-specific fields from struct protocol
6963 - MINOR: protocol: add a real family for existing FDs
6964 - CLEANUP: tools: make str2sa_range() less awful for fd@ and sockpair@
6965 - MINOR: tools: make str2sa_range() take more options than just resolve
6966 - MINOR: tools: add several PA_O_PORT_* flags in str2sa_range() callers
6967 - MEDIUM: tools: make str2sa_range() validate callers' port specifications
6968 - MEDIUM: config: remove all checks for missing/invalid ports/ranges
6969 - MINOR: tools: add several PA_O_* flags in str2sa_range() callers
6970 - MINOR: listener: remove the inherited arg to create_listener()
6971 - MINOR: tools: make str2sa_range() optionally return the fd
6972 - MINOR: log: detect LOG_TARGET_FD from the fd and not from the syntax
6973 - MEDIUM: tools: make str2sa_range() resolve pre-bound listeners
6974 - MINOR: config: do not test an inherited socket again
6975 - MEDIUM: tools: make str2sa_range() check for the sockpair's FD usability
6976 - MINOR: tools: start to distinguish stream and dgram in str2sa_range()
6977 - MEDIUM: tools: make str2sa_range() only report AF_CUST_UDP on listeners
6978 - MINOR: tools: remove the central test for "udp" in str2sa_range()
6979 - MINOR: cfgparse: add str2receiver() to parse dgram receivers
6980 - MINOR: log-forward: use str2receiver() to parse the dgram-bind address
6981 - MEDIUM: config: make str2listener() not accept datagram sockets anymore
6982 - MINOR: listener: pass the chosen protocol to create_listeners()
6983 - MINOR: tools: make str2sa_range() directly return the protocol
6984 - MEDIUM: tools: make str2sa_range() check that the protocol has ->connect()
6985 - MINOR: protocol: add the control layer type in the protocol struct
6986 - MEDIUM: protocol: store the socket and control type in the protocol array
6987 - MEDIUM: tools: make str2sa_range() use protocol_lookup()
6988 - MEDIUM: proto_udp: replace last AF_CUST_UDP* with AF_INET*
6989 - MINOR: tools: drop listener detection hack from str2sa_range()
6990 - BUILD: sock_unix: add missing errno.h
6991 - MINOR: sock_inet: report the errno string in binding errors
6992 - MINOR: sock_unix: report the errno string in binding errors
6993 - BUILD: sock_inet: include errno.h
6994 - MINOR: h2/trace: also display the remaining frame length in traces
6995 - BUG/MINOR: h2/trace: do not display "stream error" after a frame ACK
6996 - BUG/MEDIUM: h2: report frame bits only for handled types
6997 - BUG/MINOR: http-fetch: Don't set the sample type during the htx prefetch
6998 - BUG/MINOR: Fix memory leaks cfg_parse_peers
6999 - BUG/MINOR: config: Fix memory leak on config parse listen
7000 - MINOR: backend: make the "whole" option of balance uri take only one bit
7001 - MINOR: backend: add a new "path-only" option to "balance uri"
7002 - REGTESTS: add a few load balancing tests
7003 - BUG/MEDIUM: listeners: do not pause foreign listeners
7004 - BUG/MINOR: listeners: properly close listener FDs
7005 - BUILD: trace: include tools.h
7006
Willy Tarreau253c4dc2020-09-11 17:05:59 +020070072020/09/11 : 2.3-dev4
7008 - MINOR: hlua: Add error message relative to the Channel manipulation and HTTP mode
7009 - BUG/MEDIUM: ssl: crt-list negative filters don't work
7010 - DOC: overhauling github issue templates
7011 - MEDIUM: cfgparse: Emit hard error on truncated lines
7012 - DOC: cache: Use '<name>' instead of '<id>' in error message
7013 - MINOR: cache: Reject duplicate cache names
7014 - REGTEST: remove stray leading spaces in converteers_ref_cnt_never_dec.vtc
7015 - MINOR: stats: prevent favicon.ico requests for stats page
7016 - BUILD: tools: include auxv a bit later
7017 - BUILD: task: work around a bogus warning in gcc 4.7/4.8 at -O1
7018 - MEDIUM: ssl: Support certificate chaining for certificate generation
7019 - MINOR: ssl: Support SAN extension for certificate generation
7020 - MINOR: tcp: don't try to set/clear v6only on inherited sockets
7021 - BUG/MINOR: reload: detect the OS's v6only status before choosing an old socket
7022 - MINOR: reload: determine the foreing binding status from the socket
7023 - MEDIUM: reload: stop passing listener options along with FDs
7024 - BUG/MEDIUM: ssl: fix ssl_bind_conf double free w/ wildcards
7025 - MEDIUM: fd: replace usages of fd_remove() with fd_stop_both()
7026 - CLEANUP: fd: remove fd_remove() and rename fd_dodelete() to fd_delete()
7027 - MINOR: fd: add a new "exported" flag and use it for all regular listeners
7028 - MEDIUM: reload: pass all exportable FDs, not just listeners
7029 - DOC: add description of pidfile in master-worker mode
7030 - BUG/MINOR: reload: do not fail when no socket is sent
7031 - REORG: tcp: move TCP actions from proto_tcp.c to tcp_act.c
7032 - CLEANUP: tcp: stop exporting smp_fetch_src()
7033 - REORG: tcp: move TCP sample fetches from proto_tcp.c to tcp_sample.c
7034 - REORG: tcp: move TCP bind/server keywords from proto_tcp.c to cfgparse-tcp.c
7035 - REORG: unix: move UNIX bind/server keywords from proto_uxst.c to cfgparse-unix.c
7036 - REORG: sock: start to move some generic socket code to sock.c
7037 - MINOR: sock: introduce sock_inet and sock_unix
7038 - MINOR: tcp/udp/unix: make use of proto->addrcmp() to compare addresses
7039 - MINOR: sock_inet: implement sock_inet_get_dst()
7040 - REORG: inet: replace tcp_is_foreign() with sock_inet_is_foreign()
7041 - REORG: sock_inet: move v6only_default from proto_tcp.c to sock_inet.c
7042 - REORG: sock_inet: move default_tcp_maxseg from proto_tcp.c
7043 - REORG: listener: move xfer_sock_list to sock.{c,h}.
7044 - MINOR: sock: add interface and namespace length to xfer_sock_list
7045 - MINOR: sock: implement sock_find_compatible_fd()
7046 - MINOR: sock_inet: move the IPv4/v6 transparent mode code to sock_inet
7047 - REORG: sock: move get_old_sockets() from haproxy.c
7048 - MINOR: sock: do not use LI_O_* in xfer_sock_list anymore
7049 - MINOR: sock: distinguish dgram from stream types when retrieving old sockets
7050 - BUILD: sock_unix: fix build issue with isdigit()
7051 - BUG/MEDIUM: http-ana: Don't wait to send 1xx responses received from servers
7052 - MINOR: http-htx: Add an option to eval query-string when the path is replaced
7053 - BUG/MINOR: http-rules: Replace path and query-string in "replace-path" action
7054 - MINOR: http-htx: Handle an optional reason when replacing the response status
7055 - MINOR: contrib/spoa-server: allow MAX_FRAME_SIZE override
7056 - BUG/MAJOR: contrib/spoa-server: Fix unhandled python call leading to memory leak
7057 - BUG/MINOR: contrib/spoa-server: Ensure ip address references are freed
7058 - BUG/MINOR: contrib/spoa-server: Do not free reference to NULL
7059 - BUG/MINOR: contrib/spoa-server: Updating references to free in case of failure
7060 - BUG/MEDIUM: contrib/spoa-server: Fix ipv4_address used instead of ipv6_address
7061 - CLEANUP: http: silence a cppcheck warning in get_http_auth()
7062 - REGTEST: increase some short timeouts to make tests more reliable
7063 - BUG/MINOR: threads: work around a libgcc_s issue with chrooting
7064 - BUILD: thread: limit the libgcc_s workaround to glibc only
7065 - MINOR: protocol: do not call proto->bind_all() anymore
7066 - MINOR: protocol: do not call proto->unbind_all() anymore
7067 - CLEANUP: protocol: remove all ->bind_all() and ->unbind_all() functions
7068 - MAJOR: init: start all listeners via protocols and not via proxies anymore
7069 - BUG/MINOR: startup: haproxy -s cause 100% cpu
7070 - Revert "BUG/MINOR: http-rules: Replace path and query-string in "replace-path" action"
7071 - BUG/MEDIUM: doc: Fix replace-path action description
7072 - MINOR: http-rules: Add set-pathq and replace-pathq actions
7073 - MINOR: http-fetch: Add pathq sample fetch
7074 - REGTEST: Add a test for request path manipulations, with and without the QS
7075 - MINOR: Commit .gitattributes
7076 - CLEANUP: Update .gitignore
7077 - BUG/MEDIUM: dns: Don't store additional records in a linked-list
7078 - BUG/MEDIUM: dns: Be sure to renew IP address for already known servers
7079 - MINOR: server: Improve log message sent when server address is updated
7080 - DOC: ssl-load-extra-files only applies to certificates on bind lines
7081 - BUG/MINOR: auth: report valid crypto(3) support depending on build options
7082 - BUG/MEDIUM: mux-h1: always apply the timeout on half-closed connections
7083 - BUILD: threads: better workaround for late loading of libgcc_s
7084 - BUILD: compiler: reserve the gcc version checks to the gcc compiler
7085 - BUILD: compiler: workaround a glibc madness around __attribute__()
7086 - BUILD: intops: on x86_64, the bswap instruction is called bswapq
7087 - BUILD: trace: always have an argument before variadic args in macros
7088 - BUILD: traces: don't pass an empty argument for missing ones
7089 - BUG/MINOR: haproxy: Free uri_auth->scope during deinit
7090 - CLEANUP: Free old_argv on deinit
7091 - CLEANUP: haproxy: Free post_proxy_check_list in deinit()
7092 - CLEANUP: haproxy: Free per_thread_*_list in deinit()
7093 - CLEANUP: haproxy: Free post_check_list in deinit()
7094 - BUG/MEDIUM: pattern: Renew the pattern expression revision when it is pruned
7095 - REORG: tools: move PARSE_OPT_* from tools.h to tools-t.h
7096 - MINOR: sample: Add iif(<true>,<false>) converter
7097
Willy Tarreauf104b532020-08-14 18:54:05 +020070982020/08/14 : 2.3-dev3
7099 - SCRIPTS: git-show-backports: make -m most only show the left branch
7100 - SCRIPTS: git-show-backports: emit the shell command to backport a commit
7101 - BUILD: Makefile: require SSL_LIB, SSL_INC to be explicitly set
7102 - CI: travis-ci: specify SLZ_LIB, SLZ_INC for travis builds
7103 - BUG/MEDIUM: mux-h1: Refresh H1 connection timeout after a synchronous send
7104 - CLEANUP: dns: typo in reported error message
7105 - BUG/MAJOR: dns: disabled servers through SRV records never recover
7106 - BUG/MINOR: spoa-server: fix size_t format printing
7107 - DOC: spoa-server: fix false friends `actually`
7108 - BUG/MINOR: ssl: fix memory leak at OCSP loading
7109 - BUG/MEDIUM: ssl: memory leak of ocsp data at SSL_CTX_free()
7110 - BUG/MEDIUM: map/lua: Return an error if a map is loaded during runtime
7111 - MINOR: arg: Add an argument type to keep a reference on opaque data
7112 - BUG/MINOR: converters: Store the sink in an arg pointer for debug() converter
7113 - BUG/MINOR: lua: Duplicate map name to load it when a new Map object is created
7114 - BUG/MINOR: arg: Fix leaks during arguments validation for fetches/converters
7115 - BUG/MINOR: lua: Check argument type to convert it to IPv4/IPv6 arg validation
7116 - BUG/MINOR: lua: Check argument type to convert it to IP mask in arg validation
7117 - MINOR: hlua: Don't needlessly copy lua strings in trash during args validation
7118 - BUG/MINOR: lua: Duplicate lua strings in sample fetches/converters arg array
7119 - MEDIUM: lua: Don't filter exported fetches and converters
7120 - MINOR: lua: Add support for userlist as fetches and converters arguments
7121 - MINOR: lua: Add support for regex as fetches and converters arguments
7122 - MINOR: arg: Use chunk_destroy() to release string arguments
7123 - BUG/MINOR: snapshots: leak of snapshots on deinit()
7124 - CLEANUP: ssl: ssl_sock_crt2der semicolon and spaces
7125 - MINOR: ssl: add ssl_{c,s}_chain_der fetch methods
7126 - CLEANUP: fix all duplicated semicolons
7127 - BUG/MEDIUM: ssl: fix the ssl-skip-self-issued-ca option
7128 - BUG/MINOR: ssl: ssl-skip-self-issued-ca requires >= 1.0.2
7129 - BUG/MINOR: stats: use strncmp() instead of memcmp() on health states
7130 - BUILD: makefile: don't disable -Wstringop-overflow anymore
7131 - BUG/MINOR: ssl: double free w/ smp_fetch_ssl_x_chain_der()
7132 - BUG/MEDIUM: htx: smp_prefetch_htx() must always validate the direction
7133 - BUG/MEDIUM: ssl: never generates the chain from the verify store
7134 - OPTIM: regex: PCRE2 use JIT match when JIT optimisation occured.
7135 - BUG/MEDIUM: ssl: does not look for all SNIs before chosing a certificate
7136 - CLEANUP: ssl: remove poorly readable nested ternary
7137
Willy Tarreau3f3cc8c2020-07-31 14:48:32 +020071382020/07/31 : 2.3-dev2
7139 - DOC: ssl: req_ssl_sni needs implicit TLS
7140 - BUG/MEDIUM: arg: empty args list must be dropped
7141 - BUG/MEDIUM: resolve: fix init resolving for ring and peers section.
7142 - BUG/MAJOR: tasks: don't requeue global tasks into the local queue
7143 - MINOR: tasks/debug: make the thread affinity BUG_ON check a bit stricter
7144 - MINOR: tasks/debug: add a few BUG_ON() to detect use of wrong timer queue
7145 - MINOR: tasks/debug: add a BUG_ON() check to detect requeued task on free
7146 - BUG/MAJOR: dns: Make the do-resolve action thread-safe
7147 - BUG/MEDIUM: dns: Release answer items when a DNS resolution is freed
7148 - MEDIUM: htx: Add a flag on a HTX message when no more data are expected
7149 - BUG/MEDIUM: stream-int: Don't set MSG_MORE flag if no more data are expected
7150 - BUG/MEDIUM: http-ana: Only set CF_EXPECT_MORE flag on data filtering
7151 - CLEANUP: dns: remove 45 "return" statements from dns_validate_dns_response()
7152 - BUG/MINOR: htx: add two missing HTX_FL_EOI and remove an unexpected one
7153 - BUG/MINOR: mux-fcgi: Don't url-decode the QUERY_STRING parameter anymore
7154 - BUILD: tools: fix build with static only toolchains
7155 - DOC: Use gender neutral language
7156 - BUG/MINOR: debug: Don't dump the lua stack if it is not initialized
7157 - BUG/MAJOR: dns: fix null pointer dereference in snr_update_srv_status
7158 - BUG/MAJOR: dns: don't treat Authority records as an error
7159 - CI : travis-ci : prepare for using stock OpenSSL
7160 - CI: travis-ci : switch to stock openssl when openssl-1.1.1 is used
7161 - MEDIUM: lua: Add support for the Lua 5.4
7162 - BUG/MEDIUM: dns: Don't yield in do-resolve action on a final evaluation
7163 - BUG/MINOR: lua: Abort execution of actions that yield on a final evaluation
7164 - MINOR: tcp-rules: Return an internal error if an action yields on a final eval
7165 - BUG/MINOR: tcp-rules: Preserve the right filter analyser on content eval abort
7166 - BUG/MINOR: tcp-rules: Set the inspect-delay when a tcp-response action yields
7167 - MEDIUM: tcp-rules: Use a dedicated expiration date for tcp ruleset
7168 - MEDIUM: lua: Set the analyse expiration date with smaller wake_time only
7169 - BUG/MEDIUM: connection: Be sure to always install a mux for sync connect
7170 - MINOR: connection: Preinstall the mux for non-ssl connect
7171 - MINOR: stream-int: Be sure to have a mux to do sends and receives
7172 - BUG/MINOR: lua: Fix a possible null pointer deref on lua ctx
7173 - SCRIPTS: announce-release: add the link to the wiki in the announce messages
7174 - CI: travis-ci: use better name for Coverity scan job
7175 - CI: travis-ci: use proper linking flags for SLZ build
7176 - BUG/MEDIUM: backend: always attach the transport before installing the mux
7177 - BUG/MEDIUM: tcp-checks: always attach the transport before installing the mux
7178 - MINOR: connection: avoid a useless recvfrom() on outgoing connections
7179 - MINOR: mux-h1: do not even try to receive if the connection is not fully set up
7180 - MINOR: mux-h1: do not try to receive on backend before sending a request
7181 - CLEANUP: assorted typo fixes in the code and comments
7182 - BUG/MEDIUM: ssl: check OCSP calloc in ssl_sock_load_ocsp()
7183
Willy Tarreaue732cbd2020-07-17 15:13:19 +020071842020/07/17 : 2.3-dev1
7185 - MINOR: config: make strict limits enabled by default
7186 - BUG/MINOR: acl: Fix freeing of expr->smp in prune_acl_expr
7187 - BUG/MINOR: sample: Fix freeing of conv_exprs in release_sample_expr
7188 - BUG/MINOR: haproxy: Free proxy->format_unique_id during deinit
7189 - BUG/MINOR: haproxy: Add missing free of server->(hostname|resolvers_id)
7190 - BUG/MINOR: haproxy: Free proxy->unique_id_header during deinit
7191 - BUG/MINOR: haproxy: Free srule->file during deinit
7192 - BUG/MINOR: haproxy: Free srule->expr during deinit
7193 - BUG/MINOR: sample: Free str.area in smp_check_const_bool
7194 - BUG/MINOR: sample: Free str.area in smp_check_const_meth
7195 - CLEANUP: haproxy: Free proxy_deinit_list in deinit()
7196 - CLEANUP: haproxy: Free post_deinit_list in deinit()
7197 - CLEANUP: haproxy: Free server_deinit_list in deinit()
7198 - CLEANUP: haproxy: Free post_server_check_list in deinit()
7199 - CLEANUP: Add static void vars_deinit()
7200 - CLEANUP: Add static void hlua_deinit()
7201 - CLEANUP: contrib/prometheus-exporter: typo fixes for ssl reuse metric
7202 - BUG/MEDIUM: lists: add missing store barrier on MT_LIST_BEHEAD()
7203 - BUG/MEDIUM: lists: add missing store barrier in MT_LIST_ADD/MT_LIST_ADDQ
7204 - MINOR: tcp: Support TCP keepalive parameters customization
7205 - BUILD: tcp: condition TCP keepalive settings to platforms providing them
7206 - MINOR: lists: rename some MT_LIST operations to clarify them
7207 - MINOR: buffer: use MT_LIST_ADDQ() for buffer_wait lists additions
7208 - MINOR: connection: use MT_LIST_ADDQ() to add connections to idle lists
7209 - MINOR: tasks: use MT_LIST_ADDQ() when killing tasks.
7210 - CONTRIB: da: fix memory leak in dummy function da_atlas_open()
7211 - CI: travis-ci: speed up osx build by running brew scripted, switch to latest osx image
7212 - BUG/MEDIUM: mux-h2: Don't add private connections in available connection list
7213 - BUG/MEDIUM: mux-fcgi: Don't add private connections in available connection list
7214 - MINOR: connection: Set the SNI on server connections before installing the mux
7215 - MINOR: connection: Set new connection as private on reuse never
7216 - MINOR: connection: Add a wrapper to mark a connection as private
7217 - MEDIUM: connection: Add private connections synchronously in session server list
7218 - MINOR: connection: Use a dedicated function to look for a session's connection
7219 - MINOR: connection: Set the conncetion target during its initialisation
7220 - MINOR: session: Take care to decrement idle_conns counter in session_unown_conn
7221 - MINOR: server: Factorize code to deal with reuse of server idle connections
7222 - MINOR: server: Factorize code to deal with connections removed from an idle list
7223 - CLEANUP: connection: remove unused field idle_time from the connection struct
7224 - BUG/MEDIUM: mux-h1: Continue to process request when switching in tunnel mode
7225 - MINOR: raw_sock: Report the number of bytes emitted using the splicing
7226 - MINOR: contrib/prometheus-exporter: Add missing global and per-server metrics
7227 - MINOR: backend: Add sample fetches to get the server's weight
7228 - BUG/MINOR: mux-fcgi: Handle empty STDERR record
7229 - BUG/MINOR: mux-fcgi: Set conn state to RECORD_P when skipping the record padding
7230 - BUG/MINOR: mux-fcgi: Set flags on the right stream field for empty FCGI_STDOUT
7231 - BUG/MINOR: backend: fix potential null deref on srv_conn
7232 - BUG/MEDIUM: log: issue mixing sampled to not sampled log servers.
7233 - MEDIUM: udp: adds minimal proto udp support for message listeners.
7234 - MEDIUM: log/sink: re-work and merge of build message API.
7235 - MINOR: log: adds syslog udp message handler and parsing.
7236 - MEDIUM: log: adds log forwarding section.
7237 - MINOR: log: adds counters on received syslog messages.
7238 - BUG/MEDIUM: fcgi-app: fix memory leak in fcgi_flt_http_headers
7239 - BUG/MEDIUM: server: resolve state file handle leak on reload
7240 - BUG/MEDIUM: server: fix possibly uninitialized state file on close
7241 - BUG/MEDIUM: channel: Be aware of SHUTW_NOW flag when output data are peeked
7242 - BUILD: config: address build warning on raspbian+rpi4
7243 - BUG/MAJOR: tasks: make sure to always lock the shared wait queue if needed
7244 - BUILD: config: fix again bugs gcc warnings on calloc
7245
Willy Tarreau33205c22020-07-07 16:35:28 +020072462020/07/07 : 2.3-dev0
Willy Tarreau848dbdf2020-07-07 16:39:18 +02007247 - [RELEASE] Released version 2.3-dev0
7248 - MINOR: version: back to development, update status message
7249
72502020/07/07 : 2.3-dev0
Willy Tarreau33205c22020-07-07 16:35:28 +02007251 - exact copy of 2.2.0
7252
Willy Tarreau3a00c912020-07-07 16:33:14 +020072532020/07/07 : 2.2.0
7254 - BUILD: mux-h2: fix typo breaking build when using DEBUG_LOCK
7255 - CLEANUP: makefile: update the outdated list of DEBUG_xxx options
7256 - BUILD: tools: make resolve_sym_name() return a const
7257 - CLEANUP: auth: fix useless self-include of auth-t.h
7258 - BUILD: tree-wide: cast arguments to tolower/toupper to unsigned char
7259 - CLEANUP: assorted typo fixes in the code and comments
7260 - WIP/MINOR: ssl: add sample fetches for keylog in frontend
7261 - DOC: fix tune.ssl.keylog sample fetches array
7262 - BUG/MINOR: ssl: check conn in keylog sample fetch
7263 - DOC: configuration: various typo fixes
7264 - MINOR: log: Remove unused case statement during the log-format string parsing
7265 - BUG/MINOR: mux-h1: Fix the splicing in TUNNEL mode
7266 - BUG/MINOR: mux-h1: Don't read data from a pipe if the mux is unable to receive
7267 - BUG/MINOR: mux-h1: Disable splicing only if input data was processed
7268 - BUG/MEDIUM: mux-h1: Disable splicing for the conn-stream if read0 is received
7269 - MINOR: mux-h1: Improve traces about the splicing
7270 - BUG/MINOR: backend: Remove CO_FL_SESS_IDLE if a client remains on the last server
7271 - BUG/MEDIUM: connection: Don't consider new private connections as available
7272 - BUG/MINOR: connection: See new connection as available only on reuse always
7273 - DOC: configuration: remove obsolete mentions of H2 being converted to HTTP/1.x
7274 - CLEANUP: ssl: remove unrelevant comment in smp_fetch_ssl_x_keylog()
7275 - DOC: update INSTALL with new compiler versions
7276 - DOC: minor update to coding style file
7277 - MINOR: version: mention that it's an LTS release now
7278
Willy Tarreau62f11a52020-07-04 07:10:24 +020072792020/07/04 : 2.2-dev12
7280 - BUG/MINOR: mux_h2: don't lose the leaving trace in h2_io_cb()
7281 - MINOR: cli: make "show sess" stop at the last known session
7282 - CLEANUP: buffers: remove unused buffer_wq_lock lock
7283 - BUG/MEDIUM: buffers: always allocate from the local cache first
7284 - MINOR: connection: align toremove_{lock,connections} and cleanup into idle_conns
7285 - CONTRIB: debug: add missing flags SI_FL_L7_RETRY & SI_FL_D_L7_RETRY
7286 - BUG/MEDIUM: connections: Don't increase curr_used_conns for shared connections.
7287 - BUG/MEDIUM: checks: Increment the server's curr_used_conns
7288 - REORG: buffer: rename buffer.c to dynbuf.c
7289 - REORG: includes: create tinfo.h for the thread_info struct
7290 - CLEANUP: pool: only include the type files from types
7291 - MINOR: pools: move the LRU cache heads to thread_info
7292 - BUG/MINOR: debug: fix "show fd" null-deref when built with DEBUG_FD
7293 - MINOR: stats: add 3 new output values for the per-server idle conn state
7294 - MINOR: activity: add per-thread statistics on FD takeover
7295 - BUG/MINOR: server: start cleaning idle connections from various points
7296 - MEDIUM: server: improve estimate of the need for idle connections
7297 - MINOR: stats: add the estimated need of concurrent connections per server
7298 - BUG/MINOR: threads: Don't forget to init each thread toremove_lock.
7299 - BUG/MEDIUM: lists: Lock the element while we check if it is in a list.
7300 - Revert "BUG/MEDIUM: lists: Lock the element while we check if it is in a list."
7301 - BUG/MINOR: haproxy: don't wake already stopping threads on exit
7302 - BUG/MINOR: server: always count one idle slot for current thread
7303 - MEDIUM: server: use the two thresholds for the connection release algorithm
7304 - BUG/MINOR: http-rules: Fix ACLs parsing for http deny rules
7305 - BUG/MINOR: sched: properly cover for a rare MT_LIST_ADDQ() race
7306 - MINOR: mux-h1: avoid taking the toremove_lock in on dying tasks
7307 - MINOR: mux-h2: avoid taking the toremove_lock in on dying tasks
7308 - MINOR: mux-fcgi: avoid taking the toremove_lock in on dying tasks
7309 - MINOR: pools: increase MAX_BASE_POOLS to 64
7310 - DOC: ssl: add "allow-0rtt" and "ciphersuites" in crt-list
7311 - BUG/MEDIUM: pattern: Add a trailing \0 to match strings only if possible
7312 - BUG/MEDIUM: log-format: fix possible endless loop in parse_logformat_string()
7313 - BUG/MINOR: proxy: fix dump_server_state()'s misuse of the trash
7314 - BUG/MINOR: proxy: always initialize the trash in show servers state
7315 - MINOR: cli/proxy: add a new "show servers conn" command
7316 - MINOR: server: skip servers with no idle conns earlier
7317 - BUG/MINOR: server: fix the connection release logic regarding nearly full conditions
7318 - MEDIUM: server: add a new pool-low-conn server setting
7319 - BUG/MEDIUM: backend: always search in the safe list after failing on the idle one
7320 - MINOR: backend: don't always takeover from the same threads
7321 - MINOR: sched: make sched->task_list_size atomic
7322 - MEDIUM: sched: create a new TASK_KILLED task flag
7323 - MEDIUM: sched: implement task_kill() to kill a task
7324 - MEDIUM: mux-h1: use task_kill() during h1_takeover() instead of task_wakeup()
7325 - MEDIUM: mux-h2: use task_kill() during h2_takeover() instead of task_wakeup()
7326 - MEDIUM: mux-fcgi: use task_kill() during fcgi_takeover() instead of task_wakeup()
7327 - MINOR: list: Add MT_LIST_DEL_SAFE_NOINIT() and MT_LIST_ADDQ_NOCHECK()
7328 - CLEANUP: connections: rename the toremove_lock to takeover_lock
7329 - MEDIUM: connections: Don't use a lock when moving connections to remove.
7330 - DOC: configuration: add missing index entries for tune.pool-{low,high}-fd-ratio
7331 - DOC: configuration: fix alphabetical ordering for tune.pool-{high,low}-fd-ratio
7332 - MINOR: config: add a new tune.idle-pool.shared global setting.
7333 - MINOR: 51d: silence a warning about null pointer dereference
7334 - MINOR: debug: add a new "debug dev memstats" command
7335 - MINOR: log-format: allow to preserve spacing in log format strings
7336 - BUILD: debug: avoid build warnings with DEBUG_MEM_STATS
7337 - BUG/MAJOR: sched: make sure task_kill() always queues the task
7338 - BUG/MEDIUM: muxes: Make sure nobody stole the connection before using it.
7339 - BUG/MEDIUM: cli/proxy: don't try to dump idle connection state if there's none
7340 - BUILD: haproxy: fix build error when RLIMIT_AS is not set
7341 - BUG/MAJOR: sched: make it work also when not building with DEBUG_STRICT
7342 - MINOR: log: add time second fraction field to rfc5424 log timestamp.
7343 - BUG/MINOR: log: missing timezone on iso dates.
7344 - BUG/MEDIUM: server: don't kill all idle conns when there are not enough
7345 - MINOR: sched: split tasklet_wakeup() into tasklet_wakeup_on()
7346 - BUG/MEDIUM: connections: Set the tid for the old tasklet on takeover.
7347 - BUG/MEDIUM: connections: Let the xprt layer know a takeover happened.
7348 - BUG/MINOR: http_act: don't check capture id in backend (2)
7349 - BUILD: makefile: disable threads by default on OpenBSD
7350 - BUILD: peers: fix build warning with gcc 4.2.1
7351 - CI: cirrus-ci: exclude slow reg-tests
7352
Willy Tarreau4462af82020-06-26 22:01:04 +020073532020/06/26 : 2.2-dev11
7354 - REGTEST: Add a simple script to tests errorfile directives in proxy sections
7355 - BUG/MEDIUM: fcgi-app: Resolve the sink if a fcgi-app logs in a ring buffer
7356 - BUG/MINOR: spoe: correction of setting bits for analyzer
7357 - BUG/MINOR: cfgparse: Support configurations without newline at EOF
7358 - MINOR: cfgparse: Warn on truncated lines / files
7359 - BUG/MINOR: http_ana: clarify connection pointer check on L7 retry
7360 - MINOR: debug: add a new DEBUG_FD build option
7361 - BUG/MINOR: tasks: make sure never to exceed max_processed
7362 - MINOR: task: add a new pointer to current tasklet queue
7363 - BUG/MEDIUM: task: be careful not to run too many tasks at TL_URGENT
7364 - BUG/MINOR: cfgparse: Fix argument reference in PARSE_ERR_TOOMANY message
7365 - BUG/MINOR: cfgparse: Fix calculation of position for PARSE_ERR_TOOMANY message
7366 - BUG/MEDIUM: ssl: fix ssl_bind_conf double free
7367 - MINOR: ssl: free bind_conf_node in crtlist_free()
7368 - MINOR: ssl: free the crtlist and the ckch during the deinit()
7369 - BUG/MINOR: ssl: fix build with ckch_deinit() and crtlist_deinit()
7370 - BUG/MINOR: ssl/cli: certs added from the CLI can't be deleted
7371 - MINOR: ssl: move the ckch/crtlist deinit to ssl_sock.c
7372 - MEDIUM: tasks: apply a fair CPU distribution between tasklet classes
7373 - MINOR: tasks: make current_queue an index instead of a pointer
7374 - MINOR: tasks: add a mask of the queues with active tasklets
7375 - MINOR: tasks: pass the queue index to run_task_from_list()
7376 - MINOR: tasks: make run_tasks_from_lists() scan the queues itself
7377 - MEDIUM: tasks: add a tune.sched.low-latency option
7378 - BUG/MEDIUM: ssl/cli: 'commit ssl cert' crashes when no private key
7379 - BUG/MINOR: cfgparse: don't increment linenum on incomplete lines
7380 - MINOR: tools: make parse_line() always terminate the args list
7381 - BUG/MINOR: cfgparse: report extraneous args *after* the string is allocated
7382 - MINOR: cfgparse: sanitize the output a little bit
7383 - MINOR: cli/ssl: handle trailing slashes in crt-list commands
7384 - MINOR: ssl: add the ssl_s_* sample fetches for server side certificate
7385 - BUG/MEDIUM: http-ana: Don't loop trying to generate a malformed 500 response
7386 - BUG/MINOR: stream-int: Don't wait to send truncated HTTP messages
7387 - BUG/MINOR: http-ana: Set CF_EOI on response channel for generated responses
7388 - BUG/MINOR: http-ana: Don't wait to send 1xx responses generated by HAProxy
7389 - MINOR: spoe: Don't systematically create new applets if processing rate is low
7390 - DOC: fix some typos in the ssl_s_{s|i}_dn documentation
7391 - BUILD: fix ssl_sample.c when building against BoringSSL
7392 - CI: travis-ci: switch BoringSSL builds to ninja
7393 - CI: extend spellchecker whitelist
7394 - DOC: assorted typo fixes in the documentation
7395 - CLEANUP: assorted typo fixes in the code and comments
7396 - MINOR: http: Add support for http 413 status
7397 - REGTEST: ssl: tests the ssl_f_* sample fetches
7398 - REGTEST: ssl: add some ssl_c_* sample fetches test
7399 - DOC: ssl: update the documentation of "commit ssl cert"
7400 - BUG/MINOR: cfgparse: correctly deal with empty lines
7401 - BUG/MEDIUM: fetch: Fix hdr_ip misparsing IPv4 addresses due to missing NUL
7402
Willy Tarreaudc0936c2020-06-19 21:43:26 +020074032020/06/19 : 2.2-dev10
7404 - BUILD: include: add sys/types before netinet/tcp.h
7405 - BUG/MEDIUM: log: don't hold the log lock during writev() on a file descriptor
7406 - BUILD: Remove nowarn for warnings that do not trigger
7407 - BUG/MEDIUM: pattern: fix thread safety of pattern matching
7408 - BUILD: Re-enable -Wimplicit-fallthrough
7409 - BUG/MINOR: ssl: fix ssl-{min,max}-ver with openssl < 1.1.0
7410 - BUILD: thread: add parenthesis around values of locking macros
7411 - BUILD: proto_uxst: shut up yet another gcc's absurd warning
7412 - BUG/MEDIUM: checks: Fix off-by-one in allocation of SMTP greeting cmd
7413 - CI: travis-ci: use "-O1" for clang builds
7414 - MINOR: haproxy: Add void deinit_and_exit(int)
7415 - MINOR: haproxy: Make use of deinit_and_exit() for clean exits
7416 - BUG/MINOR: haproxy: Free rule->arg.vars.expr during deinit_act_rules
7417 - BUILD: compression: make gcc 10 happy with free_zlib()
7418 - BUILD: atomic: add string.h for memcpy() on ARM64
7419 - BUG/MINOR: http: make smp_fetch_body() report that the contents may change
7420 - BUG/MINOR: tcp-rules: tcp-response must check the buffer's fullness
7421 - BUILD: haproxy: mark deinit_and_exit() as noreturn
7422 - BUG/MAJOR: vars: Fix bogus free() during deinit() for http-request rules
7423 - BUG/MEDIUM: ebtree: use a byte-per-byte memcmp() to compare memory blocks
7424 - MINOR: tools: add a new configurable line parse, parse_line()
7425 - BUG/MEDIUM: cfgparse: use parse_line() to expand/unquote/unescape config lines
7426 - BUG/MEDIUM: cfgparse: stop after a reasonable amount of fatal error
7427 - MINOR: http: do not close connections anymore after internal responses
7428 - BUG/MINOR: cfgparse: Add missing fatal++ in PARSE_ERR_HEX case
7429 - BUG/MINOR: spoe: add missing key length check before checking key names
7430 - MINOR: version: put the compiler version output into version.c not haproxy.c
7431 - MINOR: compiler: always define __has_feature()
7432 - MINOR: version: report the presence of the compiler's address sanitizer
7433 - BUILD: Fix build by including haproxy/global.h
7434 - BUG/MAJOR: connection: always disable ready events once reported
7435 - CLEANUP: activity: remove unused counter fd_lock
7436 - DOC: fd: make it clear that some fields ordering must absolutely be respected
7437 - MINOR: activity: report the number of times poll() reports I/O
7438 - MINOR: activity: rename confusing poll_* fields in the output
7439 - MINOR: fd: Fix a typo in a coment.
7440 - BUG/MEDIUM: fd: Don't fd_stop_recv() a fd we don't own.
7441 - BUG/MEDIUM: fd: Call fd_stop_recv() when we just got a fd.
7442 - MINOR: activity: group the per-loop counters at the top
7443 - MINOR: activity: rename the "stream" field to "stream_calls"
7444 - MEDIUM: fd: refine the fd_takeover() migration lock
7445 - MINOR: fd: slightly optimize the fd_takeover double-CAS loop
7446 - MINOR: fd: factorize the fd_takeover() exit path to make it safer
7447 - MINOR: peers: do not use localpeer as an array anymore
7448 - MEDIUM: peers: add the "localpeer" global option
7449 - MEDIUM: fd: add experimental support for edge-triggered polling
7450 - CONTRIB: debug: add the missing flags CO_FL_SAFE_LIST and CO_FL_IDLE_LIST
7451 - MINOR: haproxy: process signals before runnable tasks
7452 - MEDIUM: tasks: clean up the front side of the wait queue in wake_expired_tasks()
7453 - MEDIUM: tasks: also process late wakeups in process_runnable_tasks()
7454 - BUG/MINOR: cli: allow space escaping on the CLI
7455 - BUG/MINOR: mworker/cli: fix the escaping in the master CLI
7456 - BUG/MINOR: mworker/cli: fix semicolon escaping in master CLI
7457 - REGTEST: http-rules: test spaces in ACLs
7458 - REGTEST: http-rules: test spaces in ACLs with master CLI
7459 - BUG/MAJOR: init: properly compute the default global.maxpipes value
7460 - MEDIUM: map: make the "clear map" operation yield
7461 - BUG/MEDIUM: stream-int: fix loss of CO_SFL_MSG_MORE flag in forwarding
7462 - MINOR: mux_h1: Set H1_F_CO_MSG_MORE if we know we have more to send.
7463 - BUG/MINOR: systemd: Wait for network to be online
7464 - DOC: configuration: Unindent non-code sentences in the protobuf example
7465 - DOC: configuration: http-check send was missing from matrix
7466
Willy Tarreau1385c882020-06-11 10:22:10 +020074672020/06/11 : 2.2-dev9
7468 - BUG/MINOR: http-htx: Don't forget to release the http reply in release function
7469 - BUG/MINOR: http-htx: Fix a leak on error path during http reply parsing
7470 - MINOR: checks: Remove dead code from process_chk_conn()
7471 - REGTESTS: checks: Fix tls_health_checks when IPv6 addresses are used
7472 - REGTESTS: Add missing OPENSSL to REQUIRE_OPTIONS for lua/txn_get_priv
7473 - MINOR: lua: Use vars_unset_by_name_ifexist()
7474 - CLEANUP: vars: Remove void vars_unset_by_name(const char*, size_t, struct sample*)
7475 - MINOR: vars: Make vars_(un|)set_by_name(_ifexist|) return a success value
7476 - MINOR: lua: Make `set_var()` and `unset_var()` return success
7477 - MEDIUM: lua: Add `ifexist` parameter to `set_var`
7478 - MEDIUM: ring: new section ring to declare custom ring buffers.
7479 - REGTESTS: Add missing OPENSSL to REQUIRE_OPTIONS for compression/lua_validation
7480 - REGTESTS: Require the version 2.2 to execute lua/set_var
7481 - BUG/MEDIUM: checks: Refresh the conn-stream and the connection after a connect
7482 - MINOR: checks: Remove useless tests on the connection and conn-stream
7483 - BUG/MEDIUM: contrib/spoa: do not register python3.8 if --embed fail
7484 - BUG/MEDIUM: connection: Ignore PP2 unique ID for stream-less connections
7485 - BUG/MINOR: connection: Always get the stream when available to send PP2 line
7486 - BUG/MEDIUM: backend: set the connection owner to the session when using alpn.
7487 - MINOR: pools: compute an estimate of each pool's average needed objects
7488 - MEDIUM: pools: directly free objects when pools are too much crowded
7489 - REGTEST: Add connection/proxy_protocol_send_unique_id_alpn
7490 - MINOR: http-ana: Make the function http_reply_to_htx() public
7491 - MINOR: http-ana: Use proxy's error replies to emit 401/407 responses
7492 - MINOR: http-rules: Use an action function to eval http-request auth rules
7493 - CLEANUP: http: Remove unused HTTP message templates
7494 - BUG/MEDIUM: checks: Don't blindly subscribe for receive if waiting for connect
7495 - MINOR: checks: I/O callback function only rely on the data layer wake callback
7496 - BUG/MINOR: lua: Add missing string length for lua sticktable lookup
7497 - BUG/MEDIUM: logs: fix trailing zeros on log message.
7498 - CI: cirrus-ci: skip reg-tests/connection/proxy_protocol_send_unique_id_alpn.vtc on CentOS 6
7499 - BUG/MINOR: nameservers: fix error handling in parsing of resolv.conf
7500 - BUG/MEDIUM: checks: Don't add a tcpcheck ruleset twice in the shared tree
7501 - MEDIUM: ssl: use TLSv1.2 as the minimum default on bind lines
7502 - CLEANUP: pools: use the regular lock for the flush operation on lockless pools
7503 - SCRIPTS: publish-release: pass -n to gzip to remove timestamp
7504 - MINOR: ring: re-work ring attach generic API.
7505 - BUG/MINOR: error on unknown statement in ring section.
7506 - MEDIUM: ring: add server statement to forward messages from a ring
7507 - MEDIUM: ring: add new srv statement to support octet counting forward
7508 - MINOR: ssl: set ssl-min-ver in ambiguous configurations
7509 - CLEANUP: ssl: remove comment from dump_crtlist_sslconf()
7510 - BUILD: sink: address build warning on 32-bit architectures
7511 - BUG/MINOR: peers: fix internal/network key type mapping.
7512 - CLEANUP: regex: remove outdated support for regex actions
7513 - Revert "MINOR: ssl: rework add cert chain to CTX to be libssl independent"
7514 - MINOR: mux-h1/proxy: Add a proxy option to disable clear h2 upgrade
7515 - BUG/MEDIUM: lua: Reset analyse expiration timeout before executing a lua action
7516 - DOC: add a line about comments in crt-list
7517 - BUG/MEDIUM: hlua: Lock pattern references to perform set/add/del operations
7518 - BUG/MINOR: checks: Fix test on http-check rulesets during config validity check
7519 - BUG/MEDIUM: contrib/prometheus-exporter: Properly set flags to dump metrics
7520 - BUG/MEDIUM: mworker: fix the copy of options in copy_argv()
7521 - BUG/MINOR: init: -x can have a parameter starting with a dash
7522 - BUG/MINOR: init: -S can have a parameter starting with a dash
7523 - BUG/MEDIUM: mworker: fix the reload with an -- option
7524 - BUG/MINOR: ssl: fix a trash buffer leak in some error cases
7525 - BUG/MINOR: mworker: fix a memleak when execvp() failed
7526 - MINOR: sample: Add secure_memcmp converter
7527 - REORG: ebtree: move the C files from ebtree/ to src/
7528 - REORG: ebtree: move the include files from ebtree to include/import/
7529 - REORG: ebtree: clean up remains of the ebtree/ directory
7530 - REORG: include: create new file haproxy/api-t.h
7531 - REORG: include: create new file haproxy/api.h
7532 - REORG: include: update all files to use haproxy/api.h or api-t.h if needed
7533 - CLEANUP: include: remove common/config.h
7534 - CLEANUP: include: remove unused template.h
7535 - REORG: include: move MIN/MAX from tools.h to compat.h
7536 - REORG: include: move SWAP/MID_RANGE/MAX_RANGE from tools.h to standard.h
7537 - CLEANUP: include: remove unused common/tools.h
7538 - REORG: include: move the base files from common/ to haproxy/
7539 - REORG: include: move version.h to haproxy/
7540 - REORG: include: move base64.h, errors.h and hash.h from common to to haproxy/
7541 - REORG: include: move openssl-compat.h from common/ to haproxy/
7542 - REORG: include: move ist.h from common/ to import/
7543 - REORG: include: move the BUG_ON() code to haproxy/bug.h
7544 - REORG: include: move debug.h from common/ to haproxy/
7545 - CLEANUP: debug: drop unused function p_malloc()
7546 - REORG: include: split buf.h into haproxy/buf-t.h and haproxy/buf.h
7547 - REORG: include: move istbuf.h to haproxy/
7548 - REORG: include: split mini-clist into haproxy/list and list-t.h
7549 - REORG: threads: extract atomic ops from hathreads.h
7550 - CLEANUP: threads: remove a few needless includes of hathreads.h
7551 - REORG: include: split hathreads into haproxy/thread.h and haproxy/thread-t.h
7552 - CLEANUP: thread: rename __decl_hathreads() to __decl_thread()
7553 - REORG: include: move time.h from common/ to haproxy/
7554 - REORG: include: move integer manipulation functions from standard.h to intops.h
7555 - CLEANUP: include: remove excessive includes of common/standard.h
7556 - REORG: include: move freq_ctr to haproxy/
7557 - CLEANUP: pool: include freq_ctr.h and remove locally duplicated functions
7558 - REORG: memory: move the pool type definitions to haproxy/pool-t.h
7559 - REORG: memory: move the OS-level allocator to haproxy/pool-os.h
7560 - MINOR: memory: don't let __pool_get_first() pick from the cache
7561 - MEDIUM: memory: don't let pool_put_to_cache() free the objects itself
7562 - MINOR: memory: move pool-specific path of the locked pool_free() to __pool_free()
7563 - MEDIUM: memory: make local pools independent on lockless pools
7564 - REORG: include: move common/memory.h to haproxy/pool.h
7565 - REORG: include: move common/chunk.h to haproxy/chunk.h
7566 - REORG: include: move activity to haproxy/
7567 - REORG: include: move common/buffer.h to haproxy/dynbuf{,-t}.h
7568 - REORG: include: move common/net_helper.h to haproxy/net_helper.h
7569 - REORG: include: move common/namespace.h to haproxy/namespace{,-t}.h
7570 - REORG: include: split common/regex.h into haproxy/regex{,-t}.h
7571 - REORG: include: split common/xref.h into haproxy/xref{,-t}.h
7572 - REORG: include: move common/ticks.h to haproxy/ticks.h
7573 - REORG: include: split common/http.h into haproxy/http{,-t}.h
7574 - REORG: include: split common/http-hdr.h into haproxy/http-hdr{,-t}.h
7575 - REORG: include: move common/h1.h to haproxy/h1.h
7576 - REORG: include: split common/htx.h into haproxy/htx{,-t}.h
7577 - REORG: include: move hpack*.h to haproxy/ and split hpack-tbl
7578 - REORG: include: move common/h2.h to haproxy/h2.h
7579 - REORG: include: move common/fcgi.h to haproxy/
7580 - REORG: include: move protocol.h to haproxy/protocol{,-t}.h
7581 - REORG: tools: split common/standard.h into haproxy/tools{,-t}.h
7582 - REORG: include: move dict.h to hparoxy/dict{,-t}.h
7583 - REORG: include: move shctx to haproxy/shctx{,-t}.h
7584 - REORG: include: move port_range.h to haproxy/port_range{,-t}.h
7585 - REORG: include: move fd.h to haproxy/fd{,-t}.h
7586 - REORG: include: move ring to haproxy/ring{,-t}.h
7587 - REORG: include: move sink.h to haproxy/sink{,-t}.h
7588 - REORG: include: move pipe.h to haproxy/pipe{,-t}.h
7589 - CLEANUP: include: remove empty raw_sock.h
7590 - REORG: include: move proto_udp.h to haproxy/proto_udp{,-t}.h
7591 - REORG: include: move proto/proto_sockpair.h to haproxy/proto_sockpair.h
7592 - REORG: include: move compression.h to haproxy/compression{,-t}.h
7593 - REORG: include: move h1_htx.h to haproxy/h1_htx.h
7594 - REORG: include: move http_htx.h to haproxy/http_htx{,-t}.h
7595 - REORG: include: move hlua.h to haproxy/hlua{,-t}.h
7596 - REORG: include: move hlua_fcn.h to haproxy/hlua_fcn.h
7597 - REORG: include: move action.h to haproxy/action{,-t}.h
7598 - REORG: include: move arg.h to haproxy/arg{,-t}.h
7599 - REORG: include: move auth.h to haproxy/auth{,-t}.h
7600 - REORG: include: move dns.h to haproxy/dns{,-t}.h
7601 - REORG: include: move flt_http_comp.h to haproxy/
7602 - REORG: include: move counters.h to haproxy/counters-t.h
7603 - REORG: include: split mailers.h into haproxy/mailers{,-t}.h
7604 - REORG: include: move capture.h to haproxy/capture{,-t}.h
7605 - REORG: include: move frontend.h to haproxy/frontend.h
7606 - REORG: include: move obj_type.h to haproxy/obj_type{,-t}.h
7607 - REORG: include: move http_rules.h to haproxy/http_rules.h
7608 - CLEANUP: include: remove unused mux_pt.h
7609 - REORG: include: move mworker.h to haproxy/mworker{,-t}.h
7610 - REORG: include: move ssl_utils.h to haproxy/ssl_utils.h
7611 - REORG: include: move ssl_ckch.h to haproxy/ssl_ckch{,-t}.h
7612 - REORG: move ssl_crtlist.h to haproxy/ssl_crtlist{,-t}.h
7613 - REORG: include: move lb_chash.h to haproxy/lb_chash{,-t}.h
7614 - REORG: include: move lb_fas.h to haproxy/lb_fas{,-t}.h
7615 - REORG: include: move lb_fwlc.h to haproxy/lb_fwlc{,-t}.h
7616 - REORG: include: move lb_fwrr.h to haproxy/lb_fwrr{,-t}.h
7617 - REORG: include: move listener.h to haproxy/listener{,-t}.h
7618 - REORG: include: move pattern.h to haproxy/pattern{,-t}.h
7619 - REORG: include: move map to haproxy/map{,-t}.h
7620 - REORG: include: move payload.h to haproxy/payload.h
7621 - REORG: include: move sample.h to haproxy/sample{,-t}.h
7622 - REORG: include: move protocol_buffers.h to haproxy/protobuf{,-t}.h
7623 - REORG: include: move vars.h to haproxy/vars{,-t}.h
7624 - REORG: include: split global.h into haproxy/global{,-t}.h
7625 - REORG: include: move task.h to haproxy/task{,-t}.h
7626 - REORG: include: move proto_tcp.h to haproxy/proto_tcp.h
7627 - REORG: include: move signal.h to haproxy/signal{,-t}.h
7628 - REORG: include: move tcp_rules.h to haproxy/tcp_rules.h
7629 - REORG: include: move connection.h to haproxy/connection{,-t}.h
7630 - REORG: include: move checks.h to haproxy/check{,-t}.h
7631 - REORG: include: move http_fetch.h to haproxy/http_fetch.h
7632 - REORG: include: move peers.h to haproxy/peers{,-t}.h
7633 - REORG: include: move stick_table.h to haproxy/stick_table{,-t}.h
7634 - REORG: include: move session.h to haproxy/session{,-t}.h
7635 - REORG: include: move trace.h to haproxy/trace{,-t}.h
7636 - REORG: include: move acl.h to haproxy/acl.h{,-t}.h
7637 - REORG: include: split common/uri_auth.h into haproxy/uri_auth{,-t}.h
7638 - REORG: move applet.h to haproxy/applet{,-t}.h
7639 - REORG: include: move stats.h to haproxy/stats{,-t}.h
7640 - REORG: include: move cli.h to haproxy/cli{,-t}.h
7641 - REORG: include: move lb_map.h to haproxy/lb_map{,-t}.h
7642 - REORG: include: move ssl_sock.h to haproxy/ssl_sock{,-t}.h
7643 - REORG: include: move stream_interface.h to haproxy/stream_interface{,-t}.h
7644 - REORG: include: move channel.h to haproxy/channel{,-t}.h
7645 - REORG: include: move http_ana.h to haproxy/http_ana{,-t}.h
7646 - REORG: include: move filters.h to haproxy/filters{,-t}.h
7647 - REORG: include: move fcgi-app.h to haproxy/fcgi-app{,-t}.h
7648 - REORG: include: move log.h to haproxy/log{,-t}.h
7649 - REORG: include: move proxy.h to haproxy/proxy{,-t}.h
7650 - REORG: include: move spoe.h to haproxy/spoe{,-t}.h
7651 - REORG: include: move backend.h to haproxy/backend{,-t}.h
7652 - REORG: include: move queue.h to haproxy/queue{,-t}.h
7653 - REORG: include: move server.h to haproxy/server{,-t}.h
7654 - REORG: include: move stream.h to haproxy/stream{,-t}.h
7655 - REORG: include: move cfgparse.h to haproxy/cfgparse.h
7656 - CLEANUP: hpack: export debug functions and move inlines to .h
7657 - REORG: check: move the e-mail alerting code to mailers.c
7658 - REORG: check: move tcpchecks away from check.c
7659 - REORG: check: move email_alert* from proxy-t.h to mailers-t.h
7660 - REORG: check: extract the external checks from check.{c,h}
7661 - CLEANUP: include: don't include stddef.h directly
7662 - CLEANUP: include: don't include proxy-t.h in global-t.h
7663 - CLEANUP: include: move sample_data out of sample-t.h
7664 - REORG: include: move the error reporting functions to from log.h to errors.h
7665 - BUILD: reorder objects in the Makefile for faster builds
7666 - CLEANUP: compiler: add a THREAD_ALIGNED macro and use it where appropriate
7667 - CLEANUP: include: make atomic.h part of the base API
7668 - REORG: include: move MAX_THREADS to defaults.h
7669 - REORG: include: move THREAD_LOCAL and __decl_thread() to compiler.h
7670 - CLEANUP: include: tree-wide alphabetical sort of include files
7671 - REORG: include: make list-t.h part of the base API
7672 - REORG: dgram: rename proto_udp to dgram
7673
Willy Tarreau73b943b2020-05-22 16:19:04 +020076742020/05/22 : 2.2-dev8
7675 - MINOR: checks: Improve report of unexpected errors for expect rules
7676 - MEDIUM: checks: Add matching on log-format string for expect rules
7677 - DOC: Fix req.body and co documentation to be accurate
7678 - MEDIUM: checks: Remove dedicated sample fetches and use response ones instead
7679 - CLEANUP: checks: sort and rename tcpcheck_expect_type types
7680 - MINOR: checks: Use dedicated actions to send log-format strings in send rules
7681 - MINOR: checks: Simplify matching on HTTP headers in HTTP expect rules
7682 - MINOR: checks/sample: Remove unnecessary tests on the sample session
7683 - REGTEST: checks: Adapt SSL error message reported when connection is rejected
7684 - MINOR: mworker: replace ha_alert by ha_warning when exiting successfuly
7685 - MINOR: checks: Support log-format string to set the URI for HTTP send rules
7686 - MINOR: checks: Support log-format string to set the body for HTTP send rules
7687 - DOC: Be more explicit about configurable check ok/error/timeout status
7688 - MINOR: checks: Make matching on HTTP headers for expect rules less obscure
7689 - BUG/MEDIUM: lua: Fix dumping of stick table entries for STD_T_DICT
7690 - BUG/MINOR: config: Make use_backend and use-server post-parsing less obscur
7691 - REGTESTS: make the http-check-send test require version 2.2
7692 - BUG/MINOR: http-ana: fix NTLM response parsing again
7693 - BUG/MEDIUM: http_ana: make the detection of NTLM variants safer
7694 - BUG/MINOR: cfgparse: Abort parsing the current line if an invalid \x sequence is encountered
7695 - MINOR: cfgparse: Improve error message for invalid \x sequences
7696 - CI: travis-ci: enable arm64 builds again
7697 - MEDIUM: ssl: increase default-dh-param to 2048
7698 - CI: travis-ci: skip pcre2 on arm64 build
7699 - CI: travis-ci: extend the build time for SSL to 60 minutes
7700 - CLEANUP: config: drop unused setting CONFIG_HAP_MEM_OPTIM
7701 - CLEANUP: config: drop unused setting CONFIG_HAP_INLINE_FD_SET
7702 - CLENAUP: config: move CONFIG_HAP_LOCKLESS_POOLS out of config.h
7703 - CLEANUP: remove THREAD_LOCAL from config.h
7704 - CI: travis-ci: upgrade LibreSSL versions
7705 - DOC: assorted typo fixes in the documentation
7706 - CI: extend spellchecker whitelist
7707 - CLEANUP: assorted typo fixes in the code and comments
7708 - MAJOR: contrib: porting spoa_server to support python3
7709 - BUG/MEDIUM: checks: Subscribe to I/O events on an unfinished connect
7710 - BUG/MINOR: checks: Don't subscribe to I/O events if it is already done
7711 - BUG/MINOR: checks: Rely on next I/O oriented rule when waiting for a connection
7712 - MINOR: checks: Don't try to send outgoing data if waiting to be able to send
7713 - MINOR: sample: Move aes_gcm_dec implementation into sample.c
7714 - MINOR: sample: Add digest and hmac converters
7715 - BUG/MEDIUM: checks: Subscribe to I/O events only if a mux was installed
7716 - BUG/MINOR: sample/ssl: Fix digest converter for openssl < 1.1.0
7717 - BUG/MINOR: pools: use %u not %d to report pool stats in "show pools"
7718 - BUG/MINOR: pollers: remove uneeded free in global init
7719 - CLEANUP: select: enhance readability in init
7720 - BUG/MINOR: soft-stop: always wake up waiting threads on stopping
7721 - MINOR: soft-stop: let the first stopper only signal other threads
7722 - BUILD: select: only declare existing local labels to appease clang
7723 - BUG/MEDIUM: streams: Remove SF_ADDR_SET if we're retrying due to L7 retry.
7724 - BUG/MEDIUM: stream: Only allow L7 retries when using HTTP.
7725 - DOC: retry-on can only be used with mode http
7726 - MEDIUM: ssl: allow to register callbacks for SSL/TLS protocol messages
7727 - MEDIUM: ssl: split ssl_sock_msgcbk() and use a new callback mechanism
7728 - MINOR: ssl: add a new function ssl_sock_get_ssl_object()
7729 - MEDIUM: ssl: use ssl_sock_get_ssl_object() in fetchers where appropriate
7730 - REORG: ssl: move macros and structure definitions to ssl_sock.h
7731 - CLEANUP: ssl: remove the shsess_* macros
7732 - REORG: move the crt-list structures in their own .h
7733 - REORG: ssl: move the ckch structures to types/ssl_ckch.h
7734 - CLEANUP: ssl: add ckch prototypes in proto/ssl_ckch.h
7735 - REORG: ssl: move crtlist functions to src/ssl_crtlist.c
7736 - CLEANUP: ssl: avoid circular dependencies in ssl_crtlist.h
7737 - REORG: ssl: move the ckch_store related functions to src/ssl_ckch.c
7738 - REORG: ssl: move ckch_inst functions to src/ssl_ckch.c
7739 - REORG: ssl: move the crt-list CLI functions in src/ssl_crtlist.c
7740 - REORG: ssl: move the CLI 'cert' functions to src/ssl_ckch.c
7741 - REORG: ssl: move ssl configuration to cfgparse-ssl.c
7742 - MINOR: ssl: remove static keyword in some SSL utility functions
7743 - REORG: ssl: move ssl_sock_ctx and fix cross-dependencies issues
7744 - REORG: ssl: move sample fetches to src/ssl_sample.c
7745 - REORG: ssl: move utility functions to src/ssl_utils.c
7746 - DOC: ssl: update MAINTAINERS file
7747 - CI: travis-ci: switch arm64 builds to use openssl from distro
7748 - MINOR: stats: Prepare for more accurate moving averages
7749 - MINOR: stats: Expose native cum_req metric for a server
7750 - MEDIUM: stats: Enable more accurate moving average calculation for stats
7751 - BUILD: ssl: include buffer common headers for ssl_sock_ctx
7752 - BUILD: ssl: include errno.h in ssl_crtlist.c
7753 - CLEANUP: acl: remove unused assignment
7754 - DOC/MINOR: halog: Add long help info for ic flag
7755 - BUILD: ssl: fix build without OPENSSL_NO_ENGINE
7756 - DOC: SPOE is no longer experimental
7757 - BUG/MINOR: cache: Don't needlessly test "cache" keyword in parse_cache_flt()
7758 - MINOR: config: Don't dump keywords if argument is NULL
7759 - MEDIUM: checks: Make post-41 the default mode for mysql checks
7760 - BUG/MINOR: logs: prevent double line returns in some events.
7761 - MEDIUM: sink: build header in sink_write for log formats
7762 - MEDIUM: logs: buffer targets now rely on new sink_write
7763 - MEDIUM: sink: add global statement to create a new ring (sink buffer)
7764 - MEDIUM: hpack: use a pool for the hpack table
7765 - BUG/MAJOR: mux-fcgi: Stop sending loop if FCGI stream is blocked for any reason
7766 - BUG/MEDIUM: ring: write-lock the ring while attaching/detaching
7767 - MINOR: applet: adopt the wait list entry from the CLI
7768 - MINOR: ring: make the applet code not depend on the CLI
7769 - Revert "MEDIUM: sink: add global statement to create a new ring (sink buffer)"
7770 - CI: travis-ci: fix libslz download URL
7771 - MINOR: ssl: split config and runtime variable for ssl-{min,max}-ver
7772 - CLEANUP: http_ana: Remove unused TXN flags
7773 - BUG/MINOR: http-rules: Mark http return rules as final
7774 - MINOR: http-htx: Add http_reply type based on what is used for http return rules
7775 - CLEANUP: http-htx: Rename http_error structure into http_error_msg
7776 - MINOR: http-rules: Use http_reply structure for http return rules
7777 - MINOR: http-htx: Use a dedicated function to release http_reply objects
7778 - MINOR: http-htx: Use a dedicated function to parse http reply arguments
7779 - MINOR: http-htx: Use a dedicated function to check http reply validity
7780 - MINOR: http-ana: Use a dedicated function to send a response from an http reply
7781 - MEDIUM: http-rules: Rely on http reply for http deny/tarpit rules
7782 - MINOR: http-htx: Store default error messages in a global http reply array
7783 - MINOR: http-htx: Store messages of an http-errors section in a http reply array
7784 - MINOR: http-htx: Store errorloc/errorfile messages in http replies
7785 - MINOR: proxy: Add references on http replies for proxy error messages
7786 - MINOR: http-htx: Use http reply from the http-errors section
7787 - MINOR: http-ana: Use a TXN flag to prevent after-response ruleset evaluation
7788 - MEDIUM: http-ana: Use http replies for HTTP error messages
7789 - CLEANUP: http-htx: Remove unused storage of error messages in buffers
7790 - MINOR: htx: Add a function to copy a buffer in an HTX message
7791 - CLEANUP: channel: Remove channel_htx_copy_msg() function
7792 - MINOR: http-ana: Add a function to write an http reply in an HTX message
7793 - MINOR: http-htx/proxy: Add http-error directive using http return syntax
7794 - DOC: Fix "errorfile" description in the configuration manual
7795 - BUG/MINOR: checks: Respect check-ssl param when a port or an addr is specified
7796 - BUILD: hpack: make sure the hpack table can still be built standalone
7797 - CONTRIB: hpack: make use of the simplified standalone HPACK API
7798 - MINOR: connection: add pp2-never-send-local to support old PP2 behavior
7799
Willy Tarreaufc0b8f32020-05-05 21:49:10 +020078002020/05/05 : 2.2-dev7
7801 - MINOR: version: Show uname output in display_version()
7802 - CI: run weekly OpenSSL "no-deprecated" builds
7803 - CLEANUP: log: fix comment of parse_logformat_string()
7804 - DOC: Improve documentation on http-request set-src
7805 - MINOR: ssl/cli: disallow SSL options for directory in 'add ssl crt-list'
7806 - MINOR: ssl/cli: restrain certificate path when inserting into a directory
7807 - MINOR: ssl: add ssl-skip-self-issued-ca global option
7808 - BUG/MINOR: ssl: default settings for ssl server options are not used
7809 - MINOR: config: add a global directive to set default SSL curves
7810 - BUG/MEDIUM: http-ana: Handle NTLM messages correctly.
7811 - DOC: internals: update the SSL architecture schema
7812 - BUG/MINOR: tools: fix the i386 version of the div64_32 function
7813 - BUG/MINOR: mux-fcgi/trace: fix wrong set of trace flags in fcgi_strm_add_eom()
7814 - BUG/MINOR: http: make url_decode() optionally convert '+' to SP
7815 - DOC: option logasap does not depend on mode
7816 - MEDIUM: memory: make pool_gc() run under thread isolation
7817 - MINOR: contrib: make the peers wireshark dissector a plugin
7818 - BUG/MINOR: http-ana: Throw a 500 error if after-response ruleset fails on errors
7819 - BUG/MINOR: check: Update server address and port to execute an external check
7820 - MINOR: mini-clist: Add functions to iterate backward on a list
7821 - MINOR: checks: Add a way to send custom headers and payload during http chekcs
7822 - MINOR: server: respect warning and alert semantic
7823 - BUG/MINOR: checks: Respect the no-check-ssl option
7824 - BUG/MEDIUM: server/checks: Init server check during config validity check
7825 - CLEANUP: checks: Don't export anymore init_check and srv_check_healthcheck_port
7826 - BUG/MINOR: checks: chained expect will not properly wait for enough data
7827 - BUG/MINOR: checks: Forbid tcp-check lines in default section as documented
7828 - MINOR: checks: Use an enum to describe the tcp-check rule type
7829 - MINOR: checks: Simplify connection flag parsing in tcp-check connect
7830 - MEDIUM: checks: rewind to the first inverse expect rule of a chain on new data
7831 - MINOR: checks: simplify tcp expect config parser
7832 - MINOR: checks: add min-recv tcp-check expect option
7833 - MINOR: checks: add linger option to tcp connect
7834 - MINOR: checks: define a tcp expect type
7835 - MEDIUM: checks: rewrite tcp-check expect block
7836 - MINOR: checks: Stop xform buffers to null-terminated string for tcp-check rules
7837 - MINOR: checks: add rbinary expect match type
7838 - MINOR: checks: Simplify functions to get step id and comment
7839 - MEDIUM: checks: capture groups in expect regexes
7840 - MINOR: checks: Don't use a static tcp rule list head
7841 - MEDIUM: checks: Use a non-comment rule iterator to get next rule
7842 - MEDIUM: proxy/checks: Register a keyword to parse tcp-check rules
7843 - MINOR: checks: Set the tcp-check rule index during parsing
7844 - MINOR: checks: define tcp-check send type
7845 - MINOR: checks: define a tcp-check connect type
7846 - MEDIUM: checks: Add implicit tcp-check connect rule
7847 - MAJOR: checks: Refactor and simplify the tcp-check loop
7848 - MEDIUM: checks: Associate a session to each tcp-check healthcheck
7849 - MINOR: checks/vars: Add a check scope for variables
7850 - MEDIUM: checks: Parse custom action rules in tcp-checks
7851 - MINOR: checks: Add support to set-var and unset-var rules in tcp-checks
7852 - MINOR: checks: Add the sni option for tcp-check connect rules
7853 - MINOR: checks: Add the via-socks4 option for tcp-check connect rules
7854 - MINOR: checks: Add the alpn option for tcp-check connect rules
7855 - MINOR: ssl: Export a generic function to parse an alpn string
7856 - MINOR: checks: Add the default option for tcp-check connect rules
7857 - MINOR: checks: Add the addr option for tcp-check connect rule
7858 - MEDIUM: checks: Support expression to set the port
7859 - MEDIUM: checks: Support log-format strings for tcp-check send rules
7860 - MINOR: log: Don't depends on a stream to process samples in log-format string
7861 - MINOR: log: Don't systematically set LW_REQ when a sample expr is added
7862 - MEDIUM: checks: Add a shared list of tcp-check rules
7863 - MINOR: sample: add htonl converter
7864 - MINOR: sample: add cut_crlf converter
7865 - MINOR: sample: add ltrim converter
7866 - MINOR: sample: add rtrim converter
7867 - MINOR: checks: Use a name for the healthcheck status enum
7868 - MINOR: checks: Add option to tcp-check expect rules to customize error status
7869 - MINOR: checks: Merge tcp-check comment rules with the others at config parsing
7870 - MINOR: checks: Add a sample fetch to extract a block from the input check buffer
7871 - MEDIUM: checks: Add on-error/on-success option on tcp-check expect rules
7872 - MEDIUM: checks: Add status-code sample expression on tcp-check expect rules
7873 - MINOR: checks: Relax the default option for tcp-check connect rules
7874 - MEDIUM: checks: Add a list of vars to set before executing a tpc-check ruleset
7875 - MINOR: checks: Export the tcpcheck_eval_ret enum
7876 - MINOR: checks: Use dedicated function to handle onsuccess/onerror messages
7877 - MINOR: checks: Support custom functions to eval a tcp-check expect rules
7878 - MEDIUM: checks: Implement redis check using tcp-check rules
7879 - MEDIUM: checks: Implement ssl-hello check using tcp-check rules
7880 - MEDIUM: checks: Implement smtp check using tcp-check rules
7881 - MEDIUM: checks: Implement postgres check using tcp-check rules
7882 - MEDIUM: checks: Implement MySQL check using tcp-check rules
7883 - MEDIUM: checks: Implement LDAP check using tcp-check rules
7884 - MEDIUM: checks: Implement SPOP check using tcp-check rules
7885 - MINOR: server/checks: Move parsing of agent keywords in checks.c
7886 - MINOR: server/checks: Move parsing of server check keywords in checks.c
7887 - MEDIUM: checks: Implement agent check using tcp-check rules
7888 - REGTEST: Adapt regtests about checks to recent changes
7889 - MINOR: Produce tcp-check info message for pure tcp-check rules only
7890 - MINOR: checks: Add an option to set success status of tcp-check expect rules
7891 - MINOR: checks: Improve log message of tcp-checks on success
7892 - MINOR: proxy/checks: Move parsing of httpchk option in checks.c
7893 - MINOR: proxy/checks: Move parsing of tcp-check option in checks.c
7894 - MINOR: proxy/checks: Register a keyword to parse http-check rules
7895 - MINOR: proxy/checks: Move parsing of external-check option in checks.c
7896 - MINOR: proxy/checks: Register a keyword to parse external-check rules
7897 - MEDIUM: checks: Use a shared ruleset to store tcp-check rules
7898 - MINOR: checks: Use an indirect string to represent the expect matching string
7899 - MINOR: checks: Introduce flags to configure in tcp-check expect rules
7900 - MINOR: standard: Add my_memspn and my_memcspn
7901 - MINOR: checks: Add a reverse non-comment rule iterator to get last rule
7902 - MAJOR: checks: Implement HTTP check using tcp-check rules
7903 - MINOR: checks: Make resume conditions more explicit in tcpcheck_main()
7904 - MINOR: connection: Add macros to know if a conn or a cs uses an HTX mux
7905 - MEDIUM: checks: Refactor how data are received in tcpcheck_main()
7906 - MINOR: checks/obj_type: Add a new object type for checks
7907 - BUG/MINOR: obj_type: Handle stream object in obj_base_ptr() function
7908 - MINOR: checks: Use the check as origin when a session is created
7909 - MINOR: checks: Add a mux proto to health-check and tcp-check connect rule
7910 - MINOR: connection: Add a function to install a mux for a health-check
7911 - MAJOR: checks: Use the best mux depending on the protocol for health checks
7912 - MEDIUM: checks: Implement default TCP check using tcp-check rules
7913 - MINOR: checks: Remove unused code about pure TCP checks
7914 - CLEANUP: checks: Reorg checks.c file to be more readable
7915 - REGTEST: Fix reg-tests about health-checks to adapt them to recent changes
7916 - MINOR: ist: Add a function to retrieve the ist pointer
7917 - MINOR: checks: Use ist API as far as possible
7918 - BUG/MEDIUM: checks: Be sure to subscribe for sends if outgoing data remains
7919 - MINOR: checks: Use a tree instead of a list to store tcp-check rulesets
7920 - BUG/MINOR: checks: Send the right amount of outgoing data for HTTP checks
7921 - REGTEST: Add scripts to test based tcp-check health-checks
7922 - Revert "MEDIUM: checks: capture groups in expect regexes"
7923 - DOC: Add documentation about comments for tcp-check and http-check directives
7924 - DOC: Fix the tcp-check and http-check directives layout
7925 - BUG/MEDIUM: checks: Use the mux protocol specified on the server line
7926 - MINOR: checks: Support mux protocol definition for tcp and http health checks
7927 - BUG/MINOR: mux-fcgi: Be sure to have a connection as session's origin to use it
7928 - MINOR: checks: Support list of status codes on http-check expect rules
7929 - BUG/MEDIUM: checks: Unsubscribe to mux events when a conn-stream is destroyed
7930 - REGTEST: Add a script to validate agent checks
7931 - BUG/MINOR: server: Fix server_finalize_init() to avoid unused variable
7932 - BUG/MEDIUM: checks: unsubscribe for events on the old conn-stream on connect
7933 - BUG/MINOR: checks: Only use ssl_sock_is_ssl() if compiled with SSL support
7934 - BUG/MINOR: checks/server: use_ssl member must be signed
7935 - BUG/MEDIUM: sessions: Always pass the mux context as argument to destroy a mux
7936 - BUG/MEDIUM: checks: Destroy the conn-stream before the session
7937 - BUG/MINOR: checks: Fix PostgreSQL regex on the authentication packet
7938 - CI: cirrus-ci: remove reg-tests/checks/tcp-check-ssl.vtc on CentOS 6
7939 - MINOR: checks: Support HTTP/2 version (without '.0') for http-check send rules
7940 - MINOR: checks: Use ver keyword to specify the HTTP version for http checks
7941 - BUG/MINOR: checks: Remove wrong variable redeclaration
7942 - BUG/MINOR: checks: Properly handle truncated mysql server messages
7943 - CLEANUP: checks: Remove unused code when ldap server message is parsed
7944 - MINOR: checks: Make the use of the check's server more explicit on connect
7945 - BUG/MINOR: checks: Avoid incompatible cast when a binary string is parsed
7946 - BUG/MINOR: checks: Remove bad call to free() when an expect rule is parsed
7947 - BUG/MINOR: checks: Don't lose warning on proxy capability
7948 - MINOR: log: Add "Tu" timer
7949 - BUG/MINOR: checks: Set the output buffer length before calling parse_binary()
7950 - BUG/MEDIUM: mux-h1: make sure we always have a timeout on front connections
7951 - REGTEST: ssl: test the client certificate authentication
7952 - DOC: give a more accurate description of what check does
7953 - BUG/MEDIUM: capture: capture-req/capture-res converters crash without a stream
7954 - BUG/MEDIUM: capture: capture.{req,res}.* crash without a stream
7955 - BUG/MEDIUM: http: the "http_first_req" sample fetch could crash without a steeam
7956 - BUG/MEDIUM: http: the "unique-id" sample fetch could crash without a steeam
7957 - CLEANUP: http: add a few comments on certain functions' assumptions about streams
7958 - BUG/MEDIUM: sample: make the CPU and latency sample fetches check for a stream
7959 - MINOR: http-htx: Export functions to update message authority and host
7960 - MINOR: checks: Don't support multiple host header for http-check send rule
7961 - MINOR: checks: Skip some headers for http-check send rules
7962 - MINOR: checks: Keep the Host header and the request uri synchronized
7963 - CLEANUP: checks: Fix checks includes
7964 - DOC: Fix send rules in the http-check connect example
7965 - DOC: Add more info about request formatting in http-check send description
7966 - REGTEST: http-rules: Require PCRE or PCRE2 option to run map_redirect script
7967 - REGTEST: ssl: remove curl from the "add ssl crt-list" test
7968 - REGTEST: ssl: improve the "set ssl cert" test
7969 - CLEANUP: ssl: silence a build warning when threads are disabled
7970 - BUG/MEDIUM: listener: mark the thread as not stuck inside the loop
7971 - MINOR: threads: export the POSIX thread ID in panic dumps
7972 - BUG/MINOR: debug: properly use long long instead of long for the thread ID
7973 - BUG/MEDIUM: shctx: really check the lock's value while waiting
7974 - BUG/MEDIUM: shctx: bound the number of loops that can happen around the lock
7975 - MINOR: stream: report the list of active filters on stream crashes
7976 - BUG/MEDIUM: mux-fcgi: Return from detach if server don't keep the connection
7977 - BUG/MEDIUM: mux_fcgi: Free the FCGI connection at the end of fcgi_release()
7978 - BUG/MEDIUM: mux-fcgi: Fix wrong test on FCGI_CF_KEEP_CONN in fcgi_detach()
7979 - BUG/MEDIUM: connections: force connections cleanup on server changes
7980 - BUG/MEDIUM: h1: Don't compare host and authority if only h1 headers are parsed
7981 - BUG/MEDIUM: ssl: fix the id length check within smp_fetch_ssl_fc_session_id()
7982 - CLEANUP: connections: align function declaration
7983 - BUG/MINOR: sample: Set the correct type when a binary is converted to a string
7984 - MEDIUM: checks/http-fetch: Support htx prefetch from a check for HTTP samples
7985 - DOC: Document the log-format parameter for tcp-check send/send-binary rules
7986 - MINOR: checks: Add support of payload-based sample fetches
7987 - MINOR: checks: Add support of be_id, be_name, srv_id and srv_name sample fetches
7988 - MINOR: checks: Add support of server side ssl sample fetches
7989 - MINOR: checks: Add support of HTTP response sample fetches
7990 - MINOR: http-htx: Support different methods to look for header names
7991 - MINOR: checks: Set by default expect rule status to UNKNOWN during parsing
7992 - BUG/MINOR: checks: Support multiple HTTP expect rules
7993 - REGTEST: checks: Fix sync condition for agent-check
7994 - MEDIUM: checks: Support matching on headers for http-check expect rules
7995 - MINOR: lua: allow changing port with set_addr
7996 - BUG/MINOR: da: Fix HTX message prefetch
7997 - BUG/MINOR: wurfl: Fix HTX message prefetch
7998 - BUG/MINOR: 51d: Fix HTX message prefetch
7999 - MINOR: ist: add istadv() function
8000 - MINOR: ist: add istissame() function
8001 - MINOR: istbuf: add ist2buf() function
8002 - BUG/MINOR: threads: fix multiple use of argument inside HA_ATOMIC_CAS()
8003 - BUG/MINOR: threads: fix multiple use of argument inside HA_ATOMIC_UPDATE_{MIN,MAX}()
8004 - DOC: update intro.txt for 2.2
8005 - DOC: intro: add a contacts section
8006
Willy Tarreaud0089302020-04-17 14:19:38 +020080072020/04/17 : 2.2-dev6
8008 - BUG/MINOR: ssl: memory leak when find_chain is NULL
8009 - CLEANUP: ssl: rename ssl_get_issuer_chain to ssl_get0_issuer_chain
8010 - MINOR: ssl: rework add cert chain to CTX to be libssl independent
8011 - BUG/MINOR: peers: init bind_proc to 1 if it wasn't initialized
8012 - BUG/MINOR: peers: avoid an infinite loop with peers_fe is NULL
8013 - BUG/MINOR: peers: Use after free of "peers" section.
8014 - CI: github actions: add weekly h2spec test
8015 - BUG/MEDIUM: mux_h1: Process a new request if we already received it.
8016 - MINOR: build: Fix build in mux_h1
8017 - CLEANUP: remove obsolete comments
8018 - BUG/MEDIUM: dns: improper parsing of aditional records
8019 - MINOR: ssl: skip self issued CA in cert chain for ssl_ctx
8020 - MINOR: listener: add so_name sample fetch
8021 - MEDIUM: stream: support use-server rules with dynamic names
8022 - MINOR: servers: Add a counter for the number of currently used connections.
8023 - MEDIUM: connections: Revamp the way idle connections are killed
8024 - MINOR: cli: add a general purpose pointer in the CLI struct
8025 - MINOR: ssl: add a list of bind_conf in struct crtlist
8026 - REORG: ssl: move SETCERT enum to ssl_sock.h
8027 - BUG/MINOR: ssl: ckch_inst wrongly inserted in crtlist_entry
8028 - REORG: ssl: move some functions above crtlist_load_cert_dir()
8029 - MINOR: ssl: use crtlist_free() upon error in directory loading
8030 - MINOR: ssl: add a list of crtlist_entry in ckch_store
8031 - MINOR: ssl: store a ptr to crtlist in crtlist_entry
8032 - MINOR: ssl/cli: update pointer to store in 'commit ssl cert'
8033 - MEDIUM: ssl/cli: 'add ssl crt-list' command
8034 - REGTEST: ssl/cli: test the 'add ssl crt-list' command
8035 - BUG/MINOR: ssl: entry->ckch_inst not initialized
8036 - REGTEST: ssl/cli: change test type to devel
8037 - REGTEST: make the PROXY TLV validation depend on version 2.2
8038 - CLEANUP: assorted typo fixes in the code and comments
8039 - BUG/MINOR: stats: Fix color of draining servers on stats page
8040 - DOC: internals: Fix spelling errors in filters.txt
8041 - MINOR: connections: Don't mark conn flags 0x00000001 and 0x00000002 as unused.
8042 - REGTEST: make the unique-id test depend on version 2.0
8043 - BUG/MEDIUM: dns: Consider the fact that dns answers are case-insensitive
8044 - MINOR: ssl: split the line parsing of the crt-list
8045 - MINOR: ssl/cli: support filters and options in add ssl crt-list
8046 - MINOR: ssl: add a comment above the ssl_bind_conf keywords
8047 - REGTEST: ssl/cli: tests options and filters w/ add ssl crt-list
8048 - REGTEST: ssl: pollute the crt-list file
8049 - BUG/CRITICAL: hpack: never index a header into the headroom after wrapping
8050 - BUG/MINOR: protocol_buffer: Wrong maximum shifting.
8051 - CLEANUP: src/fd.c: mask setsockopt with DISGUISE
8052 - BUG/MINOR: ssl/cli: initialize fcount int crtlist_entry
8053 - REGTEST: ssl/cli: add other cases of 'add ssl crt-list'
8054 - CLEANUP: assorted typo fixes in the code and comments
8055 - DOC: management: add the new crt-list CLI commands
8056 - BUG/MINOR: ssl/cli: fix spaces in 'show ssl crt-list'
8057 - MINOR: ssl/cli: 'del ssl crt-list' delete an entry
8058 - MINOR: ssl/cli: replace dump/show ssl crt-list by '-n' option
8059 - CI: use better SSL library definition
8060 - CI: travis-ci: enable DEBUG_STRICT=1 for CI builds
8061 - CI: travis-ci: upgrade openssl to 1.1.1f
8062 - MINOR: ssl: improve the errors when a crt can't be open
8063 - CI: cirrus-ci: rename openssl package after it is renamed in FreeBSD
8064 - CI: adopt openssl download script to download all versions
8065 - BUG/MINOR: ssl/cli: lock the ckch structures during crt-list delete
8066 - MINOR: ssl/cli: improve error for bundle in add/del ssl crt-list
8067 - MINOR: ssl/cli: 'del ssl cert' deletes a certificate
8068 - BUG/MINOR: ssl: trailing slashes in directory names wrongly cached
8069 - BUG/MINOR: ssl/cli: memory leak in 'set ssl cert'
8070 - CLEANUP: ssl: use the refcount for the SSL_CTX'
8071 - CLEANUP: ssl/cli: use the list of filters in the crtlist_entry
8072 - BUG/MINOR: ssl: memleak of the struct cert_key_and_chain
8073 - CLEANUP: ssl: remove a commentary in struct ckch_inst
8074 - MINOR: ssl: initialize all list in ckch_inst_new()
8075 - MINOR: ssl: free instances and SNIs with ckch_inst_free()
8076 - MINOR: ssl: replace ckchs_free() by ckch_store_free()
8077 - BUG/MEDIUM: ssl/cli: trying to access to free'd memory
8078 - MINOR: ssl: ckch_store_new() alloc and init a ckch_store
8079 - MINOR: ssl: crtlist_new() alloc and initialize a struct crtlist
8080 - REORG: ssl: move some free/new functions
8081 - MINOR: ssl: crtlist_entry_{new, free}
8082 - BUG/MINOR: ssl: ssl_conf always set to NULL on crt-list parsing
8083 - MINOR: ssl: don't alloc ssl_conf if no option found
8084 - BUG/MINOR: connection: always send address-less LOCAL PROXY connections
8085 - BUG/MINOR: peers: Incomplete peers sections should be validated.
8086 - MINOR: init: report in "haproxy -c" whether there were warnings or not
8087 - MINOR: init: add -dW and "zero-warning" to reject configs with warnings
8088 - MINOR: init: report the compiler version in haproxy -vv
8089 - CLEANUP: assorted typo fixes in the code and comments
8090 - MINOR: init: report the haproxy version and executable path once on errors
8091 - DOC: Make how "option redispatch" works more explicit
8092 - BUILD: Makefile: add linux-musl to TARGET
8093 - CLEANUP: assorted typo fixes in the code and comments
8094 - CLEANUP: http: Fixed small typo in parse_http_return
8095 - DOC: hashing: update link to hashing functions
8096
Willy Tarreau3328f182020-03-23 09:43:45 +010080972020/03/23 : 2.2-dev5
8098 - CLEANUP: ssl: is_default is a bit in ckch_inst
8099 - BUG/MINOR: ssl/cli: sni_ctx' mustn't always be used as filters
8100 - DOC: ssl: clarify security implications of TLS tickets
8101 - CLEANUP: remove support for Linux i686 vsyscalls
8102 - CLEANUP: drop support for USE_MY_ACCEPT4
8103 - CLEANUP: remove support for USE_MY_EPOLL
8104 - CLEANUP: remove support for USE_MY_SPLICE
8105 - CLEANUP: remove the now unused common/syscall.h
8106 - BUILD: make dladdr1 depend on glibc version and not __USE_GNU
8107 - BUILD: wdt: only test for SI_TKILL when compiled with thread support
8108 - BUILD: Makefile: the compiler-specific flags should all be in SPEC_CFLAGS
8109 - CLEANUP: ssl: separate the directory loading in a new function
8110 - BUG/MINOR: buffers: MT_LIST_DEL_SAFE() expects the temporary pointer.
8111 - BUG/MEDIUM: mt_lists: Make sure we set the deleted element to NULL;
8112 - MINOR: init: move the maxsock calculation code to compute_ideal_maxsock()
8113 - MEDIUM: init: always try to push the FD limit when maxconn is set from -m
8114 - BUG/MAJOR: list: fix invalid element address calculation
8115 - BUILD: stream-int: fix a few includes dependencies
8116 - MINOR: mt_lists: Appease gcc.
8117 - MINOR: lists: Implement function to convert list => mt_list and mt_list => list
8118 - MINOR: servers: Kill priv_conns.
8119 - MINOR: lists: fix indentation.
8120 - BUG/MEDIUM: random: align the state on 2*64 bits for ARM64
8121 - BUG/MEDIUM: connections: Don't assume the connection has a valid session.
8122 - BUG/MEDIUM: pools: Always update free_list in pool_gc().
8123 - BUG/MINOR: haproxy: always initialize sleeping_thread_mask
8124 - BUG/MINOR: listener/mq: do not dispatch connections to remote threads when stopping
8125 - BUG/MINOR: haproxy/threads: try to make all threads leave together
8126 - Revert "BUILD: travis-ci: enable s390x builds"
8127 - BUILD: travis-ci: enable regular s390x builds
8128 - DOC: proxy_protocol: Reserve TLV type 0x05 as PP2_TYPE_UNIQUE_ID
8129 - MINOR: proxy_protocol: Ingest PP2_TYPE_UNIQUE_ID on incoming connections
8130 - MEDIUM: proxy_protocol: Support sending unique IDs using PPv2
8131 - CLEANUP: connection: Add blank line after declarations in PP handling
8132 - CLEANUP: assorted typo fixes in the code and comments
8133 - CI: add spellcheck github action
8134 - DOC: correct typo in alert message about rspirep
8135 - CI: travis: switch linux builds to clang-9
8136 - MINOR: debug: add a new DISGUISE() macro to pass a value as identity
8137 - MINOR: debug: consume the write() result in BUG_ON() to silence a warning
8138 - MINOR: use DISGUISE() everywhere we deliberately want to ignore a result
8139 - BUILD: pools: silence build warnings with DEBUG_MEMORY_POOLS and DEBUG_UAF
8140 - CLEANUP: connection: Stop directly setting an ist's .ptr
8141 - CI: travis: revert to clang-7 for BoringSSL tests
8142 - BUILD: on ARM, must be linked to libatomic.
8143 - BUILD: makefile: fix regex syntax in ARM platform detection
8144 - BUG/MEDIUM: peers: resync ended with RESYNC_PARTIAL in wrong cases.
8145 - REORG: ssl: move ssl_sock_load_cert()
8146 - MINOR: ssl: pass ckch_inst to ssl_sock_load_ckchs()
8147 - MEDIUM: ssl: allow crt-list caching
8148 - MINOR: ssl: directories are loaded like crt-list
8149 - BUG/MINOR: ssl: can't open directories anymore
8150 - BUG/MEDIUM: spoe: dup agent's engine_id string from trash.area
8151 - MINOR: fd: Use a separate lock for logs instead of abusing the fd lock.
8152 - MINOR: mux_pt: Don't try to remove the connection from the idle list.
8153 - MINOR: ssl/cli: show/dump ssl crt-list
8154 - BUG/MINOR: ssl/cli: free the trash chunk in dump_crtlist
8155 - MEDIUM: fd: Introduce a running mask, and use it instead of the spinlock.
8156 - BUG/MINOR: ssl: memory leak in crtlist_parse_file()
8157 - MINOR: tasks: Provide the tasklet to the callback.
8158 - BUG/MINOR: ssl: memleak of struct crtlist_entry
8159 - BUG/MINOR: pattern: Do not pass len = 0 to calloc()
8160 - BUILD: makefile: fix expression again to detect ARM platform
8161 - CI: travis: re-enable ASAN on clang
8162 - CI: travis: proper group output redirection together with travis_wait
8163 - DOC: assorted typo fixes in the documentation
8164 - MINOR: wdt: Move the definitions of WDTSIG and DEBUGSIG into types/signal.h.
8165 - BUG/MEDIUM: wdt: Don't ignore WDTSIG and DEBUGSIG in __signal_process_queue().
8166 - MINOR: memory: Change the flush_lock to a spinlock, and don't get it in alloc.
8167 - MINOR: ssl/cli: 'new ssl cert' command
8168 - MINOR: ssl/cli: show certificate status in 'show ssl cert'
8169 - MEDIUM: sessions: Don't be responsible for connections anymore.
8170 - MEDIUM: servers: Split the connections into idle, safe, and available.
8171 - MINOR: fd: Implement fd_takeover().
8172 - MINOR: connections: Add a new mux method, "takeover".
8173 - MINOR: connections: Make the "list" element a struct mt_list instead of list.
8174 - MINOR: connections: Add a flag to know if we're in the safe or idle list.
8175 - MEDIUM: connections: Attempt to get idle connections from other threads.
8176 - MEDIUM: mux_h1: Implement the takeover() method.
8177 - MEDIUM: mux_h2: Implement the takeover() method.
8178 - MEDIUM: mux_fcgi: Implement the takeover() method.
8179 - MEDIUM: connections: Kill connections even if we are reusing one.
8180 - BUG/MEDIUM: connections: Don't forget to decrement idle connection counters.
8181 - BUG/MINOR: ssl: Do not free garbage pointers on memory allocation failure
8182 - BUG/MINOR: ssl: Correctly add the 1 for the sentinel to the number of elements
8183 - BUG/MINOR: ssl: crtlist_dup_filters() must return NULL with fcount == 0
8184 - BUG/MEDIUM: build: Fix compilation by spelling decl correctly.
8185 - BUILD/MEDIUM: fd: Declare fd_mig_lock as extern.
8186 - CI: run travis-ci builds on push only, skip pull requests
8187 - CI: temporarily disable unstable travis arm64 builds
8188 - BUG/MINOR: ssl/cli: free BIO upon error in 'show ssl cert'
8189 - BUG/MINOR: connections: Make sure we free the connection on failure.
8190 - BUG/MINOR: ssl/cli: fix a potential NULL dereference
8191 - BUG/MEDIUM: h1: Make sure we subscribe before going into idle list.
8192 - BUG/MINOR: connections: Set idle_time before adding to idle list.
8193 - MINOR: muxes: Note that we can't usee a connection when added to the srv idle.
8194 - REGTEST: increase timeouts on the seamless-reload test
8195 - BUG/MINOR: haproxy/threads: close a possible race in soft-stop detection
8196 - CLEANUP: haproxy/threads: don't check global_tasks_mask twice
8197
Willy Tarreau5a753bd2020-03-09 14:57:20 +010081982020/03/09 : 2.2-dev4
8199 - MEDIUM: buffer: remove the buffer_wq lock
8200 - MINOR: ssl: move find certificate chain code to its own function
8201 - MINOR: ssl: resolve issuers chain later
8202 - MINOR: ssl: resolve ocsp_issuer later
8203 - MINOR: ssl/cli: "show ssl cert" command should print the "Chain Filename:"
8204 - BUG/MINOR: h2: reject again empty :path pseudo-headers
8205 - MINOR: wdt: always clear sigev_value to make valgrind happy
8206 - MINOR: epoll: always initialize all of epoll_event to please valgrind
8207 - BUG/MINOR: sample: Make sure to return stable IDs in the unique-id fetch
8208 - BUG/MEDIUM: ssl: chain must be initialized with sk_X509_new_null()
8209 - BUILD: cirrus-ci: suppress OS version check when installing packages
8210 - BUG/MINOR: http_ana: make sure redirect flags don't have overlapping bits
8211 - CLEANUP: fd: remove the FD_EV_STATUS aggregate
8212 - CLEANUP: fd: remove some unneeded definitions of FD_EV_* flags
8213 - MINOR: fd: merge the read and write error bits into RW error
8214 - BUG/MINOR: dns: ignore trailing dot
8215 - MINOR: contrib/prometheus-exporter: Add the last heathcheck duration metric
8216 - BUG/MINOR: http-htx: Do case-insensive comparisons on Host header name
8217 - MINOR: mux-h1: Remove useless case-insensitive comparisons
8218 - MINOR: rawsock: always mark the FD not ready when we're certain it happens
8219 - MEDIUM: connection: make the subscribe() call able to wakeup if ready
8220 - MEDIUM: connection: don't stop receiving events in the FD handler
8221 - MEDIUM: mux-h1: do not blindly wake up the tasklet at end of request anymore
8222 - BUG/MINOR: arg: don't reject missing optional args
8223 - MINOR: tools: make sure to correctly check the returned 'ms' in date2std_log
8224 - MINOR: debug: report the task handler's pointer relative to main
8225 - BUG/MEDIUM: debug: make the debug_handler check for the thread in threads_to_dump
8226 - MINOR: haproxy: export main to ease access from debugger
8227 - MINOR: haproxy: export run_poll_loop
8228 - MINOR: task: export run_tasks_from_list
8229 - BUILD: tools: remove obsolete and conflicting trace() from standard.c
8230 - MINOR: tools: add new function dump_addr_and_bytes()
8231 - MINOR: tools: add resolve_sym_name() to resolve function pointers
8232 - MINOR: debug: use resolve_sym_name() to dump task handlers
8233 - MINOR: cli: make "show fd" rely on resolve_sym_name()
8234 - MEDIUM: debug: add support for dumping backtraces of stuck threads
8235 - MINOR: debug: call backtrace() once upon startup
8236 - MINOR: ssl: add "ca-verify-file" directive
8237 - BUG/MINOR: wdt: do not return an error when the watchdog couldn't be enabled
8238 - BUILD: Makefile: include librt before libpthread
8239 - MEDIUM: wdt: fall back to CLOCK_REALTIME if CLOCK_THREAD_CPUTIME is not available
8240 - MINOR: wdt: do not depend on USE_THREAD
8241 - MINOR: debug: report the number of entries in the backtrace
8242 - MINOR: debug: improve backtrace() on aarch64 and possibly other systems
8243 - MINOR: debug: use our own backtrace function on clang+x86_64
8244 - MINOR: debug: dump the whole trace if we can't spot the starting point
8245 - BUILD: tools: unbreak resolve_sym_name() on non-GNU platforms
8246 - BUILD: tools: rely on __ELF__ not USE_DL to enable use of dladdr()
8247 - CLEANUP: contrib/spoa_example: Fix several typos
8248 - BUILD: makefile: do not modify the build options during make reg-tests
8249 - BUG/MEDIUM: connection: stop polling for sending when the event is ready
8250 - MEDIUM: stream-int: make sure to try to immediately validate the connection
8251 - MINOR: tcp/uxst/sockpair: only ask for I/O when really waiting for a connect()
8252 - MEDIUM: connection: only call ->wake() for connect() without I/O
8253 - OPTIM: connection: disable receiving on disabled events when the run queue is too high
8254 - OPTIM: mux-h1: subscribe rather than waking up at a few other places
8255 - REGTEST: Add unique-id reg-test
8256 - MINOR: stream: Add stream_generate_unique_id function
8257 - MINOR: stream: Use stream_generate_unique_id
8258 - BUG/MINOR: connection/debug: do not enforce !event_type on subscribe() anymore
8259 - MINOR: ssl/cli: support crt-list filters
8260 - MINOR: ssl: reach a ckch_store from a sni_ctx
8261 - DOC: fix incorrect indentation of http_auth_*
8262 - BUG/MINOR: ssl-sock: do not return an uninitialized pointer in ckch_inst_sni_ctx_to_sni_filters
8263 - MINOR: debug: add CLI command "debug dev write" to write an arbitrary size
8264 - MINOR: ist: Add `IST_NULL` macro
8265 - MINOR: ist: Add `int isttest(const struct ist)`
8266 - MINOR: ist: Add `struct ist istalloc(size_t)` and `void istfree(struct ist*)`
8267 - CLEANUP: Use `isttest()` and `istfree()`
8268 - MINOR: ist: Add `struct ist istdup(const struct ist)`
8269 - MINOR: proxy: Make `header_unique_id` a `struct ist`
8270 - MEDIUM: stream: Make the `unique_id` member of `struct stream` a `struct ist`
8271 - OPTIM: startup: fast unique_id allocation for acl.
8272 - DOC: configuration.txt: fix various typos
8273 - DOC: assorted typo fixes in the documentation and Makefile
8274 - BUG/MINOR: init: make the automatic maxconn consider the max of soft/hard limits
8275 - BUG/MAJOR: proxy_protocol: Properly validate TLV lengths
8276 - CLEANUP: proxy_protocol: Use `size_t` when parsing TLVs
8277 - MINOR: buf: Add function to insert a string at an absolute offset in a buffer
8278 - MINOR: htx: Add a function to return a block at a specific offset
8279 - MINOR: htx: Use htx_find_offset() to truncate an HTX message
8280 - MINOR: flt_trace: Use htx_find_offset() to get the available payload length
8281 - BUG/MINOR: filters: Use filter offset to decude the amount of forwarded data
8282 - BUG/MINOR: filters: Forward everything if no data filters are called
8283 - BUG/MEDIUM: cache/filters: Fix loop on HTX blocks caching the response payload
8284 - BUG/MEDIUM: compression/filters: Fix loop on HTX blocks compressing the payload
8285 - BUG/MINOR: http-ana: Reset request analysers on a response side error
8286 - BUG/MINOR: lua: Abort when txn:done() is called from a Lua action
8287 - BUG/MINOR: lua: Ignore the reserve to know if a channel is full or not
8288 - MINOR: lua: Add function to know if a channel is a response one
8289 - MINOR: lua: Stop using the lua txn in hlua_http_get_headers()
8290 - MINOR: lua: Stop using the lua txn in hlua_http_rep_hdr()
8291 - MINOR: lua: Stop using lua txn in hlua_http_del_hdr() and hlua_http_add_hdr()
8292 - MINOR: lua: Remove the flag HLUA_TXN_HTTP_RDY
8293 - MINOR: lua: Rename hlua_action_wake_time() to hlua_set_wake_time()
8294 - BUG/MINOR: lua: Init the lua wake_time value before calling a lua function
8295 - BUG/MINOR: http-rules: Return ACT_RET_ABRT to abort a transaction
8296 - BUG/MINOR: http-rules: Preserve FLT_END analyzers on reject action
8297 - BUG/MINOR: http-rules: Fix a typo in the reject action function
8298 - MINOR: cache/filters: Initialize the cache filter when stream is created
8299 - MINOR: compression/filters: Initialize the comp filter when stream is created
8300 - BUG/MINOR: rules: Preserve FLT_END analyzers on silent-drop action
8301 - BUG/MINOR: rules: Return ACT_RET_ABRT when a silent-drop action is executed
8302 - BUG/MINOR: rules: Increment be_counters if backend is assigned for a silent-drop
8303 - BUG/MINOR: http-rules: Abort transaction when a redirect is applied on response
8304 - BUILD: buffer: types/{ring.h,checks.h} should include buf.h, not buffer.h
8305 - BUILD: ssl: include mini-clist.h
8306 - BUILD: global: must not include common/standard.h but only types/freq_ctr.h
8307 - BUILD: freq_ctr: proto/freq_ctr needs to include common/standard.h
8308 - BUILD: listener: types/listener.h must not include standard.h
8309 - BUG/MEDIUM: random: initialize the random pool a bit better
8310 - BUG/MEDIUM: random: implement per-thread and per-process random sequences
8311 - Revert "BUG/MEDIUM: random: implement per-thread and per-process random sequences"
8312 - BUILD: cirrus-ci: get rid of unstable freebsd images
8313 - MINOR: tools: add 64-bit rotate operators
8314 - BUG/MEDIUM: random: implement a thread-safe and process-safe PRNG
8315 - MINOR: backend: use a single call to ha_random32() for the random LB algo
8316 - BUG/MINOR: checks/threads: use ha_random() and not rand()
8317 - MINOR: sample: make all bits random on the rand() sample fetch
8318 - MINOR: tools: add a generic function to generate UUIDs
8319 - DOC: fix typo about no-tls-tickets
8320 - DOC: improve description of no-tls-tickets
8321 - DOC: assorted typo fixes in the documentation
8322 - CLEANUP: remove unused code in 'my_ffsl/my_flsl' functions
8323
Willy Tarreau32bf97f2020-02-25 18:14:02 +010083242020/02/25 : 2.2-dev3
8325 - SCRIPTS: announce-release: place the send command in the mail's header
8326 - SCRIPTS: announce-release: allow the user to force to overwrite old files
8327 - SCRIPTS: backport: fix the master branch detection
8328 - BUG/MINOR: http-act: Set stream error flag before returning an error
8329 - BUG/MINOR: http-act: Fix bugs on error path during parsing of return actions
8330 - BUG/MEDIUM: ssl/cli: 'commit ssl cert' wrong SSL_CTX init
8331 - BUG/MEDIUM: tcp-rules: Fix track-sc* actions for L4/L5 TCP rules
8332 - DOC: schematic of the SSL certificates architecture
8333 - BUG/MAJOR: mux-h2: don't wake streams after connection was destroyed
8334 - BUG/MINOR: unix: better catch situations where the unix socket path length is close to the limit
8335 - BUILD: cirrus-ci: switch to "snap" images to unify openssl naming
8336 - BUILD: cirrus-ci: workaround "pkg install" bug
8337 - BUILD: cirrus-ci: add ERR=1 to freebsd builds
8338 - BUG/MINOR: connection: correctly retry I/O on signals
8339 - CLEANUP: mini-clist: simplify nested do { while(1) {} } while (0)
8340 - BUILD: http_act: cast file sizes when reporting file size error
8341 - BUG/MEDIUM: listener: only consider running threads when resuming listeners
8342 - BUG/MINOR: listener: enforce all_threads_mask on bind_thread on init
8343 - BUG/MINOR: tcp: avoid closing fd when socket failed in tcp_bind_listener
8344 - MINOR: build: add aix72-gcc build TARGET and power{8,9} CPUs
8345 - BUILD: travis-ci: no more allowed failures for openssl-1.0.2
8346 - BUILD: travis-ci: harden builds, add ERR=1 (warning ought to be errors)
8347 - BUILD: scripts/build-ssl.sh: use "uname" instead of ${TRAVIS_OS_NAME}
8348 - BUG/MINOR: tcp: don't try to set defaultmss when value is negative
8349 - SCRIPTS: make announce-release executable again
8350 - BUG/MINOR: namespace: avoid closing fd when socket failed in my_socketat
8351 - BUG/MEDIUM: muxes: Use the right argument when calling the destroy method.
8352 - BUG/MINOR: mux-fcgi: Forbid special characters when matching PATH_INFO param
8353 - CLEANUP: ssl: remove unused functions in openssl-compat.h
8354 - MINOR: mux-fcgi: Make the capture of the path-info optional in pathinfo regex
8355 - MINOR: tools: add is_idchar() to tell if a char may belong to an identifier
8356 - MINOR: chunk: implement chunk_strncpy() to copy partial strings
8357 - MINOR: sample/acl: use is_idchar() to locate the fetch/conv name
8358 - MEDIUM: arg: make make_arg_list() stop after its own arguments
8359 - MEDIUM: arg: copy parsed arguments into the trash instead of allocating them
8360 - MEDIUM: arg: make make_arg_list() support quotes in arguments
8361 - MINOR: sample: make sample_parse_expr() able to return an end pointer
8362 - MEDIUM: log-format: make the LF parser aware of sample expressions' end
8363 - BUG/MINOR: arg: report an error if an argument is larger than bufsize
8364 - SCRIPTS: announce-release: use mutt -H instead of -i to include the draft
8365 - BUILD: enable ERR=1 in github cygwin builds
8366 - BUG/MINOR: arg: fix again incorrect argument length check
8367 - MINOR: sample: regsub now supports backreferences
8368 - BUG/MINOR: tools: also accept '+' as a valid character in an identifier
8369 - MINOR: http-htx: Add a function to retrieve the headers size of an HTX message
8370 - MINOR: filters: Forward data only if the last filter forwards something
8371 - BUG/MINOR: filters: Count HTTP headers as filtered data but don't forward them
8372 - BUG/MINOR: http-htx: Don't return error if authority is updated without changes
8373 - BUG/MINOR: stream: Don't incr frontend cum_req counter when stream is closed
8374 - BUG/MINOR: sample: exit regsub() in case of trash allocation error
8375 - MINOR: ssl: add "issuers-chain-path" directive.
8376 - REGTESTS: use "command -v" instead of "which"
8377 - BUG/MINOR: http-ana: Matching on monitor-uri should be case-sensitive
8378 - MINOR: http-ana: Match on the path if the monitor-uri starts by a /
8379 - BUG/MINOR: ssl: Stop passing dynamic strings as format arguments
8380 - BUG/MAJOR: http-ana: Always abort the request when a tarpit is triggered
8381 - BUG/MINOR: mux: do not call conn_xprt_stop_recv() on buffer shortage
8382 - MINOR: checks: do not call conn_xprt_stop_send() anymore
8383 - CLEANUP: epoll: place the struct epoll_event in the stack
8384 - MEDIUM: connection: remove the intermediary polling state from the connection
8385 - MINOR: raw_sock: directly call fd_stop_send() and not conn_xprt_stop_send()
8386 - MINOR: tcp/uxst/sockpair: use fd_want_send() instead of conn_xprt_want_send()
8387 - MINOR: connection: remove the last calls to conn_xprt_{want,stop}_*
8388 - CLEANUP: connection: remove the definitions of conn_xprt_{stop,want}_{send,recv}
8389 - MINOR: connection: introduce a new receive flag: CO_RFL_READ_ONCE
8390 - MINOR: mux-h1: pass CO_RFL_READ_ONCE to the lower layers when relevant
8391 - MINOR: ist: add an iststop() function
8392 - BUG/MINOR: http: http-request replace-path duplicates the query string
8393 - CLEANUP: sample: use iststop instead of a for loop
8394 - BUG/MEDIUM: shctx: make sure to keep all blocks aligned
8395 - MINOR: compiler: move CPU capabilities definition from config.h and complete them
8396 - BUG/MEDIUM: ebtree: don't set attribute packed without unaligned access support
8397 - CLEANUP: http/h1: rely on HA_UNALIGNED_LE instead of checking for CPU families
8398 - BUILD: fix recent build failure on unaligned archs
8399 - MINOR: ssl: load the key from a dedicated file
8400 - BUG/MINOR: ssl: load .key in a directory only after PEM
8401 - MINOR: compiler: drop special cases of likely/unlikely for older compilers
8402 - CLEANUP: conn: Do not pass a pointer to likely
8403 - CLEANUP: net_helper: Do not negate the result of unlikely
8404 - BUILD: remove obsolete support for -mregparm / USE_REGPARM
8405 - CLEANUP: cfgparse: Fix type of second calloc() parameter
8406 - BUILD: ssl: only pass unsigned chars to isspace()
8407 - BUILD: general: always pass unsigned chars to is* functions
8408 - BUG/MINOR: sample: fix the json converter's endian-sensitivity
8409 - BUG/MEDIUM: ssl: fix several bad pointer aliases in a few sample fetch functions
8410 - CLEANUP: fd: use a union in fd_rm_from_fd_list() to shut aliasing warnings
8411 - CLEANUP: cache: use read_u32/write_u32 to access the cache entry's hash
8412 - CLEANUP: stick-tables: use read_u32() to display a node's key
8413 - CLEANUP: sample: use read_u64() in ipmask() to apply an IPv6 mask
8414 - MINOR: pattern: fix all remaining strict aliasing issues
8415 - CLEANUP: lua: fix aliasing issues in the address matching code
8416 - CLEANUP: connection: use read_u32() instead of a cast in the netscaler parser
8417 - BUILD: makefile: re-enable strict aliasing
8418 - BUG/MINOR: connection: make sure to correctly tag local PROXY connections
8419 - MINOR: compiler: add new alignment macros
8420 - BUILD: ebtree: improve architecture-specific alignment
8421 - MINOR: config: mark global.debug as deprecated
8422 - BUILD: travis-ci: enable s390x builds
8423 - MINOR: ssl/cli: 'show ssl cert' displays the chain
8424 - MINOR: ssl/cli: 'show ssl cert'displays the issuer in the chain
8425 - MINOR: ssl/cli: reorder 'show ssl cert' output
8426 - CLEANUP: ssl: move issuer_chain tree and definition
8427 - DOC: proxy-protocol: clarify IPv6 address representation in the spec
8428
Willy Tarreau4c47d912020-02-07 04:12:19 +010084292020/02/07 : 2.2-dev2
8430 - BUILD: CI: temporarily mark openssl-1.0.2 as allowed failure
8431 - MEDIUM: cli: Allow multiple filter entries for "show table"
8432 - BUG/MEDIUM: netscaler: Don't forget to allocate storage for conn->src/dst.
8433 - BUG/MINOR: ssl: ssl_sock_load_pem_into_ckch is not consistent
8434 - BUILD: stick-table: fix build errors introduced by last stick-table change
8435 - BUG/MINOR: cli: Missing arg offset for filter data values.
8436 - MEDIUM: streams: Always create a conn_stream in connect_server().
8437 - MEDIUM: connections: Get ride of the xprt_done callback.
8438 - CLEANUP: changelog: remove the duplicate entry for 2.2-dev1
8439 - BUILD: CI: move cygwin builds to Github Actions
8440 - MINOR: cli: Report location of errors or any extra data for "show table"
8441 - BUG/MINOR: ssl/cli: free the previous ckch content once a PEM is loaded
8442 - CLEANUP: backend: remove useless test for inexistent connection
8443 - CLEANUP: backend: shut another false null-deref in back_handle_st_con()
8444 - CLEANUP: stats: shut up a wrong null-deref warning from gcc 9.2
8445 - BUG/MINOR: ssl: increment issuer refcount if in chain
8446 - BUG/MINOR: ssl: memory leak w/ the ocsp_issuer
8447 - BUG/MINOR: ssl: typo in previous patch
8448 - BUG/MEDIUM: connections: Set CO_FL_CONNECTED in conn_complete_session().
8449 - BUG/MINOR: ssl/cli: ocsp_issuer must be set w/ "set ssl cert"
8450 - MEDIUM: connection: remove CO_FL_CONNECTED and only rely on CO_FL_WAIT_*
8451 - BUG/MEDIUM: 0rtt: Only consider the SSL handshake.
8452 - MINOR: stream-int: always report received shutdowns
8453 - MINOR: connection: remove CO_FL_SSL_WAIT_HS from CO_FL_HANDSHAKE
8454 - MEDIUM: connection: use CO_FL_WAIT_XPRT more consistently than L4/L6/HANDSHAKE
8455 - MINOR: connection: remove checks for CO_FL_HANDSHAKE before I/O
8456 - MINOR: connection: do not check for CO_FL_SOCK_RD_SH too early
8457 - MINOR: connection: don't check for CO_FL_SOCK_WR_SH too early in handshakes
8458 - MINOR: raw-sock: always check for CO_FL_SOCK_WR_SH before sending
8459 - MINOR: connection: remove some unneeded checks for CO_FL_SOCK_WR_SH
8460 - BUG/MINOR: stktable: report the current proxy name in error messages
8461 - BUG/MEDIUM: mux-h2: make sure we don't emit TE headers with anything but "trailers"
8462 - MINOR: lua: Add hlua_prepend_path function
8463 - MINOR: lua: Add lua-prepend-path configuration option
8464 - MINOR: lua: Add HLUA_PREPEND_C?PATH build option
8465 - BUILD: cfgparse: silence a bogus gcc warning on 32-bit machines
8466 - BUG/MINOR: http-ana: Increment the backend counters on the backend
8467 - BUG/MINOR: stream: Be sure to have a listener to increment its counters
8468 - BUG/MEDIUM: streams: Move the conn_stream allocation outside #IF USE_OPENSSL.
8469 - REGTESTS: make the set_ssl_cert test require version 2.2
8470 - BUG/MINOR: ssl: Possible memleak when allowing the 0RTT data buffer.
8471 - MINOR: ssl: Remove dead code.
8472 - BUG/MEDIUM: ssl: Don't forget to free ctx->ssl on failure.
8473 - BUG/MEDIUM: stream: Don't install the mux in back_handle_st_con().
8474 - MEDIUM: streams: Don't close the connection in back_handle_st_con().
8475 - MEDIUM: streams: Don't close the connection in back_handle_st_rdy().
8476 - BUILD: CI: disable slow regtests on Travis
8477 - BUG/MINOR: tcpchecks: fix the connect() flags regarding delayed ack
8478 - BUG/MINOR: http-rules: Always init log-format expr for common HTTP actions
8479 - BUG/MINOR: connection: fix ip6 dst_port copy in make_proxy_line_v2
8480 - BUG/MINOR: dns: allow 63 char in hostname
8481 - MINOR: proxy: clarify number of connections log when stopping
8482 - DOC: word converter ignores delimiters at the start or end of input string
8483 - MEDIUM: raw-sock: remove obsolete calls to fd_{cant,cond,done}_{send,recv}
8484 - BUG/MINOR: ssl/cli: fix unused variable with openssl < 1.0.2
8485 - MEDIUM: pipe/thread: reduce the locking overhead
8486 - MEDIUM: pipe/thread: maintain a per-thread local cache of recently used pipes
8487 - BUG/MEDIUM: pipe/thread: fix atomicity of pipe counters
8488 - MINOR: tasks: move the list walking code to its own function
8489 - MEDIUM: tasks: implement 3 different tasklet classes with their own queues
8490 - MEDIUM: tasks: automatically requeue into the bulk queue an already running tasklet
8491 - OPTIM: task: refine task classes default CPU bandwidth ratios
8492 - BUG/MEDIUM: connections: Don't forget to unlock when killing a connection.
8493 - MINOR: task: permanently flag tasklets waking themselves up
8494 - MINOR: task: make sched->current also reflect tasklets
8495 - MINOR: task: detect self-wakeups on tl==sched->current instead of TASK_RUNNING
8496 - OPTIM: task: readjust CPU bandwidth distribution since last update
8497 - MINOR: task: don't set TASK_RUNNING on tasklets
8498 - BUG/MEDIUM: memory_pool: Update the seq number in pool_flush().
8499 - MINOR: memory: Only init the pool spinlock once.
8500 - BUG/MEDIUM: memory: Add a rwlock before freeing memory.
8501 - BUG/MAJOR: memory: Don't forget to unlock the rwlock if the pool is empty.
8502 - MINOR: ssl: ssl-load-extra-files configure loading of files
8503 - SCRIPTS: add a new "backport" script to simplify long series of backports
8504 - BUG/MINOR: ssl: we may only ignore the first 64 errors
8505 - SCRIPTS: use /usr/bin/env bash instead of /bin/bash for scripts
8506 - BUG/MINOR: ssl: clear the SSL errors on DH loading failure
8507 - CLEANUP: hpack: remove a redundant test in the decoder
8508 - CLEANUP: peers: Remove unused static function `free_dcache`
8509 - CLEANUP: peers: Remove unused static function `free_dcache_tx`
8510 - CONTRIB: debug: add missing flags SF_HTX and SF_MUX
8511 - CONTRIB: debug: add the possibility to decode the value as certain types only
8512 - CONTRIB: debug: support reporting multiple values at once
8513 - BUG/MINOR: http-act: Use the good message to test strict rewritting mode
8514 - MINOR: global: Set default tune.maxrewrite value during global structure init
8515 - MINOR: http-rules: Set SF_ERR_PRXCOND termination flag when a header rewrite fails
8516 - MINOR: http-htx: Emit a warning if an error file runs over the buffer's reserve
8517 - MINOR: htx: Add a function to append an HTX message to another one
8518 - MINOR: htx/channel: Add a function to copy an HTX message in a channel's buffer
8519 - BUG/MINOR: http-ana: Don't overwrite outgoing data when an error is reported
8520 - MINOR: dns: Dynamically allocate dns options to reduce the act_rule size
8521 - MINOR: dns: Add function to release memory allocated for a do-resolve rule
8522 - BUG/MINOR: http-ana: Reset HTX first index when HAPRoxy sends a response
8523 - BUG/MINOR: http-ana: Set HTX_FL_PROXY_RESP flag if a server perform a redirect
8524 - MINOR: http-rules: Add a flag on redirect rules to know the rule direction
8525 - MINOR: http-rules: Handle the rule direction when a redirect is evaluated
8526 - MINOR: http-ana: Rely on http_reply_and_close() to handle server error
8527 - MINOR: http-ana: Add a function for forward internal responses
8528 - MINOR: http-ana/http-rules: Use dedicated function to forward internal responses
8529 - MEDIUM: http: Add a ruleset evaluated on all responses just before forwarding
8530 - MEDIUM: http-rules: Add the return action to HTTP rules
8531 - MEDIUM: http-rules: Support extra headers for HTTP return actions
8532 - CLEANUP: lua: Remove consistency check for sample fetches and actions
8533 - BUG/MINOR: http-ana: Increment failed_resp counters on invalid response
8534 - MINOR: lua: Get the action return code on the stack when an action finishes
8535 - MINOR: lua: Create the global 'act' object to register all action return codes
8536 - MINOR: lua: Add act:wake_time() function to set a timeout when an action yields
8537 - MEDIUM: lua: Add ability for actions to intercept HTTP messages
8538 - REGTESTS: Add reg tests for the HTTP return action
8539 - REGTESTS: Add a reg test for http-after-response rulesets
8540 - BUILD: lua: silence a warning on systems where longjmp is not marked as noreturn
8541 - MINOR: acl: Warn when an ACL is named 'or'
8542 - CONTRIB: debug: also support reading values from stdin
8543 - SCRIPTS: backport: use short revs and resolve the initial commit
8544 - BUG/MINOR: acl: Fix type of log message when an acl is named 'or'
8545
Willy Tarreau71f95fa2020-01-22 10:34:58 +010085462020/01/22 : 2.2-dev1
8547 - DOC: this is development again
8548 - MINOR: version: this is development again, update the status
8549 - SCRIPTS: update create-release to fix the changelog on new branches
8550 - CLEANUP: ssl: Clean up error handling
8551 - BUG/MINOR: contrib/prometheus-exporter: decode parameter and value only
8552 - BUG/MINOR: h1: Don't test the host header during response parsing
8553 - BUILD/MINOR: trace: fix use of long type in a few printf format strings
8554 - DOC: Clarify behavior of server maxconn in HTTP mode
8555 - MINOR: ssl: deduplicate ca-file
8556 - MINOR: ssl: compute ca-list from deduplicate ca-file
8557 - MINOR: ssl: deduplicate crl-file
8558 - CLEANUP: dns: resolution can never be null
8559 - BUG/MINOR: http-htx: Don't make http_find_header() fail if the value is empty
8560 - DOC: ssl/cli: set/commit/abort ssl cert
8561 - BUG/MINOR: ssl: fix SSL_CTX_set1_chain compatibility for openssl < 1.0.2
8562 - BUG/MINOR: fcgi-app: Make the directive pass-header case insensitive
8563 - BUG/MINOR: stats: Fix HTML output for the frontends heading
8564 - BUG/MINOR: ssl: fix X509 compatibility for openssl < 1.1.0
8565 - DOC: clarify matching strings on binary fetches
8566 - DOC: Fix ordered list in summary
8567 - DOC: move the "group" keyword at the right place
8568 - MEDIUM: init: prevent process and thread creation at runtime
8569 - BUG/MINOR: ssl/cli: 'ssl cert' cmd only usable w/ admin rights
8570 - BUG/MEDIUM: stream-int: don't subscribed for recv when we're trying to flush data
8571 - BUG/MINOR: stream-int: avoid calling rcv_buf() when splicing is still possible
8572 - BUG/MINOR: ssl/cli: don't overwrite the filters variable
8573 - BUG/MEDIUM: listener/thread: fix a race when pausing a listener
8574 - BUG/MINOR: ssl: certificate choice can be unexpected with openssl >= 1.1.1
8575 - BUG/MEDIUM: mux-h1: Never reuse H1 connection if a shutw is pending
8576 - BUG/MINOR: mux-h1: Don't rely on CO_FL_SOCK_RD_SH to set H1C_F_CS_SHUTDOWN
8577 - BUG/MINOR: mux-h1: Fix conditions to know whether or not we may receive data
8578 - BUG/MEDIUM: tasks: Make sure we switch wait queues in task_set_affinity().
8579 - BUG/MEDIUM: checks: Make sure we set the task affinity just before connecting.
8580 - MINOR: debug: replace popen() with pipe+fork() in "debug dev exec"
8581 - MEDIUM: init: set NO_NEW_PRIVS by default when supported
8582 - BUG/MINOR: mux-h1: Be sure to set CS_FL_WANT_ROOM when EOM can't be added
8583 - BUG/MEDIUM: mux-fcgi: Handle cases where the HTX EOM block cannot be inserted
8584 - BUG/MINOR: proxy: make soft_stop() also close FDs in LI_PAUSED state
8585 - BUG/MINOR: listener/threads: always use atomic ops to clear the FD events
8586 - BUG/MINOR: listener: also clear the error flag on a paused listener
8587 - BUG/MEDIUM: listener/threads: fix a remaining race in the listener's accept()
8588 - MINOR: listener: make the wait paths cleaner and more reliable
8589 - MINOR: listener: split dequeue_all_listener() in two
8590 - REORG: listener: move the global listener queue code to listener.c
8591 - DOC: document the listener state transitions
8592 - BUG/MEDIUM: kqueue: Make sure we report read events even when no data.
8593 - BUG/MAJOR: dns: add minimalist error processing on the Rx path
8594 - BUG/MEDIUM: proto_udp/threads: recv() and send() must not be exclusive.
8595 - DOC: listeners: add a few missing transitions
8596 - BUG/MINOR: tasks: only requeue a task if it was already in the queue
8597 - MINOR: tasks: split wake_expired_tasks() in two parts to avoid useless wakeups
8598 - DOC: proxies: HAProxy only supports 3 connection modes
8599 - DOC: remove references to the outdated architecture.txt
8600 - BUG/MINOR: log: fix minor resource leaks on logformat error path
8601 - BUG/MINOR: mworker: properly pass SIGTTOU/SIGTTIN to workers
8602 - BUG/MINOR: listener: do not immediately resume on transient error
8603 - BUG/MINOR: server: make "agent-addr" work on default-server line
8604 - BUG/MINOR: listener: fix off-by-one in state name check
8605 - BUILD/MINOR: unix sockets: silence an absurd gcc warning about strncpy()
8606 - MEDIUM: h1-htx: Add HTX EOM block when the message is in H1_MSG_DONE state
8607 - MINOR: http-htx: Add some htx sample fetches for debugging purpose
8608 - REGTEST: Add an HTX reg-test to check an edge case
8609 - DOC: clarify the fact that replace-uri works on a full URI
8610 - BUG/MINOR: sample: fix the closing bracket and LF in the debug converter
8611 - BUG/MINOR: sample: always check converters' arguments
8612 - MINOR: sample: Validate the number of bits for the sha2 converter
8613 - BUG/MEDIUM: ssl: Don't set the max early data we can receive too early.
8614 - MINOR: ssl/cli: 'show ssl cert' give information on the certificates
8615 - BUG/MINOR: ssl/cli: fix build for openssl < 1.0.2
8616 - MINOR: debug: support logging to various sinks
8617 - MINOR: http: add a new "replace-path" action
8618 - REGTEST: ssl: test the "set ssl cert" CLI command
8619 - REGTEST: run-regtests: implement #REQUIRE_BINARIES
8620 - MINOR: task: only check TASK_WOKEN_ANY to decide to requeue a task
8621 - BUG/MAJOR: task: add a new TASK_SHARED_WQ flag to fix foreing requeuing
8622 - BUG/MEDIUM: ssl: Revamp the way early data are handled.
8623 - MINOR: fd/threads: make _GET_NEXT()/_GET_PREV() use the volatile attribute
8624 - BUG/MEDIUM: fd/threads: fix a concurrency issue between add and rm on the same fd
8625 - REGTEST: make the "set ssl cert" require version 2.1
8626 - BUG/MINOR: ssl: openssl-compat: Fix getm_ defines
8627 - BUG/MEDIUM: state-file: do not allocate a full buffer for each server entry
8628 - BUG/MINOR: state-file: do not store duplicates in the global tree
8629 - BUG/MINOR: state-file: do not leak memory on parse errors
8630 - BUG/MAJOR: mux-h1: Don't pretend the input channel's buffer is full if empty
8631 - BUG/MEDIUM: stream: Be sure to never assign a TCP backend to an HTX stream
8632 - BUILD: ssl: improve SSL_CTX_set_ecdh_auto compatibility
8633 - BUILD: travis-ci: link with ssl libraries using rpath instead of LD_LIBRARY_PATH/DYLD_LIBRARY_PATH
8634 - BUILD: travis-ci: reenable address sanitizer for clang builds
8635 - BUG/MINOR: checks: refine which errno values are really errors.
8636 - BUG/MINOR: connection: only wake send/recv callbacks if the FD is active
8637 - CLEANUP: connection: conn->xprt is never NULL
8638 - MINOR: pollers: add a new flag to indicate pollers reporting ERR & HUP
8639 - MEDIUM: tcp: make tcp_connect_probe() consider ERR/HUP
8640 - REORG: connection: move tcp_connect_probe() to conn_fd_check()
8641 - MINOR: connection: check for connection validation earlier
8642 - MINOR: connection: remove the double test on xprt_done_cb()
8643 - CLEANUP: connection: merge CO_FL_NOTIFY_DATA and CO_FL_NOTIFY_DONE
8644 - MINOR: poller: do not call the IO handler if the FD is not active
8645 - OPTIM: epoll: always poll for recv if neither active nor ready
8646 - OPTIM: polling: do not create update entries for FD removal
8647 - BUG/MEDIUM: checks: Only attempt to do handshakes if the connection is ready.
8648 - BUG/MEDIUM: connections: Hold the lock when wanting to kill a connection.
8649 - BUILD: CI: modernize cirrus-ci
8650 - MINOR: config: disable busy polling on old processes
8651 - MINOR: ssl: Remove unused variable "need_out".
8652 - BUG/MINOR: h1: Report the right error position when a header value is invalid
8653 - BUG/MINOR: proxy: Fix input data copy when an error is captured
8654 - BUG/MEDIUM: http-ana: Truncate the response when a redirect rule is applied
8655 - BUG/MINOR: channel: inject output data at the end of output
8656 - BUG/MEDIUM: session: do not report a failure when rejecting a session
8657 - MEDIUM: dns: implement synchronous send
8658 - MINOR: raw_sock: make sure to disable polling once everything is sent
8659 - MINOR: http: Add 410 to http-request deny
8660 - MINOR: http: Add 404 to http-request deny
8661 - CLEANUP: mux-h2: remove unused goto "out_free_h2s"
8662 - BUILD: cirrus-ci: choose proper openssl package name
8663 - BUG/MAJOR: listener: do not schedule a task-less proxy
8664 - CLEANUP: server: remove unused err section in server_finalize_init
8665 - REGTEST: set_ssl_cert.vtc: replace "echo" with "printf"
8666 - BUG/MINOR: stream-int: Don't trigger L7 retry if max retries is already reached
8667 - BUG/MEDIUM: tasks: Use the MT macros in tasklet_free().
8668 - BUG/MINOR: mux-h2: use a safe list_for_each_entry in h2_send()
8669 - BUG/MEDIUM: mux-h2: fix missing test on sending_list in previous patch
8670 - CLEANUP: ssl: remove opendir call in ssl_sock_load_cert
8671 - MEDIUM: lua: don't call the GC as often when dealing with outgoing connections
8672 - BUG/MEDIUM: mux-h2: don't stop sending when crossing a buffer boundary
8673 - BUG/MINOR: cli/mworker: can't start haproxy with 2 programs
8674 - REGTEST: mcli/mcli_start_progs: start 2 programs
8675 - BUG/MEDIUM: mworker: remain in mworker mode during reload
8676 - DOC: clarify crt-base usage
8677 - CLEANUP: compression: remove unused deinit_comp_ctx section
8678 - BUG/MEDIUM: mux_h1: Don't call h1_send if we subscribed().
8679 - BUG/MEDIUM: raw_sock: Make sur the fd and conn are sync.
8680 - CLEANUP: proxy: simplify proxy_parse_rate_limit proxy checks
8681 - BUG/MAJOR: hashes: fix the signedness of the hash inputs
8682 - REGTEST: add sample_fetches/hashes.vtc to validate hashes
8683 - BUG/MEDIUM: cli: _getsocks must send the peers sockets
8684 - CLEANUP: cli: deduplicate the code in _getsocks
8685 - BUG/MINOR: stream: don't mistake match rules for store-request rules
8686 - BUG/MEDIUM: connection: add a mux flag to indicate splice usability
8687 - BUG/MINOR: pattern: handle errors from fgets when trying to load patterns
8688 - MINOR: connection: move the CO_FL_WAIT_ROOM cleanup to the reader only
8689 - MINOR: stream-int: remove dependency on CO_FL_WAIT_ROOM for rcv_buf()
8690 - MEDIUM: connection: get rid of CO_FL_CURR_* flags
8691 - BUILD: pattern: include errno.h
8692 - MEDIUM: mux-h2: do not try to stop sending streams on blocked mux
8693 - MEDIUM: mux-fcgi: do not try to stop sending streams on blocked mux
8694 - MEDIUM: mux-h2: do not make an h2s subscribe to itself on deferred shut
8695 - MEDIUM: mux-fcgi: do not make an fstrm subscribe to itself on deferred shut
8696 - REORG: stream/backend: move backend-specific stuff to backend.c
8697 - MEDIUM: backend: move the connection finalization step to back_handle_st_con()
8698 - MEDIUM: connection: merge the send_wait and recv_wait entries
8699 - MEDIUM: xprt: merge recv_wait and send_wait in xprt_handshake
8700 - MEDIUM: ssl: merge recv_wait and send_wait in ssl_sock
8701 - MEDIUM: mux-h1: merge recv_wait and send_wait
8702 - MEDIUM: mux-h2: merge recv_wait and send_wait event notifications
8703 - MEDIUM: mux-fcgi: merge recv_wait and send_wait event notifications
8704 - MINOR: connection: make the last arg of subscribe() a struct wait_event*
8705 - MINOR: ssl: Add support for returning the dn samples from ssl_(c|f)_(i|s)_dn in LDAP v3 (RFC2253) format.
8706 - DOC: Fix copy and paste mistake in http-response replace-value doc
8707 - BUG/MINOR: cache: Fix leak of cache name in error path
8708 - BUG/MINOR: dns: Make dns_query_id_seed unsigned
8709 - BUG/MINOR: 51d: Fix bug when HTX is enabled
8710 - MINOR: http-htx: Move htx sample fetches in the scope "internal"
8711 - MINOR: http-htx: Rename 'internal.htx_blk.val' to 'internal.htx_blk.data'
8712 - MINOR: http-htx: Make 'internal.htx_blk_data' return a binary string
8713 - DOC: Add a section to document the internal sample fetches
8714 - MINOR: mux-h1: Inherit send flags from the upper layer
8715 - MINOR: contrib/prometheus-exporter: Add heathcheck status/code in server metrics
8716 - BUG/MINOR: http-ana/filters: Wait end of the http_end callback for all filters
8717 - BUG/MINOR: http-rules: Remove buggy deinit functions for HTTP rules
8718 - BUG/MINOR: stick-table: Use MAX_SESS_STKCTR as the max track ID during parsing
8719 - MEDIUM: http-rules: Register an action keyword for all http rules
8720 - MINOR: tcp-rules: Always set from which ruleset a rule comes from
8721 - MINOR: actions: Use ACT_RET_CONT code to ignore an error from a custom action
8722 - MINOR: tcp-rules: Kill connections when custom actions return ACT_RET_ERR
8723 - MINOR: http-rules: Return an error when custom actions return ACT_RET_ERR
8724 - MINOR: counters: Add a counter to report internal processing errors
8725 - MEDIUM: http-ana: Properly handle internal processing errors
8726 - MINOR: http-rules: Add a rule result to report internal error
8727 - MINOR: http-rules: Handle internal errors during HTTP rules evaluation
8728 - MINOR: http-rules: Add more return codes to let custom actions act as normal ones
8729 - MINOR: tcp-rules: Handle denied/aborted/invalid connections from TCP rules
8730 - MINOR: http-rules: Handle denied/aborted/invalid connections from HTTP rules
8731 - MINOR: stats: Report internal errors in the proxies/listeners/servers stats
8732 - MINOR: contrib/prometheus-exporter: Export internal errors per proxy/server
8733 - MINOR: counters: Remove failed_secu counter and use denied_resp instead
8734 - MINOR: counters: Review conditions to increment counters from analysers
8735 - MINOR: http-ana: Add a txn flag to support soft/strict message rewrites
8736 - MINOR: http-rules: Handle all message rewrites the same way
8737 - MINOR: http-rules: Add a rule to enable or disable the strict rewriting mode
8738 - MEDIUM: http-rules: Enable the strict rewriting mode by default
8739 - REGTEST: Fix format of set-uri HTTP request rule in h1or2_to_h1c.vtc
8740 - MINOR: actions: Add a function pointer to release args used by actions
8741 - MINOR: actions: Regroup some info about HTTP rules in the same struct
8742 - MINOR: http-rules/tcp-rules: Call the defined action function first if defined
8743 - MINOR: actions: Rename the act_flag enum into act_opt
8744 - MINOR: actions: Add flags to configure the action behaviour
8745 - MINOR: actions: Use an integer to set the action type
8746 - MINOR: http-rules: Use a specific action type for some custom HTTP actions
8747 - MINOR: http-rules: Make replace-header and replace-value custom actions
8748 - MINOR: http-rules: Make set-header and add-header custom actions
8749 - MINOR: http-rules: Make set/del-map and add/del-acl custom actions
8750 - MINOR: http-rules: Group all processing of early-hint rule in its case clause
8751 - MEDIUM: http-rules: Make early-hint custom actions
8752 - MINOR: http-rule/tcp-rules: Make track-sc* custom actions
8753 - MINOR: tcp-rules: Make tcp-request capture a custom action
8754 - MINOR: http-rules: Add release functions for existing HTTP actions
8755 - BUG/MINOR: http-rules: Fix memory releases on error path during action parsing
8756 - MINOR: tcp-rules: Add release functions for existing TCP actions
8757 - BUG/MINOR: tcp-rules: Fix memory releases on error path during action parsing
8758 - MINOR: http-htx: Add functions to read a raw error file and convert it in HTX
8759 - MINOR: http-htx: Add functions to create HTX redirect message
8760 - MINOR: config: Use dedicated function to parse proxy's errorfiles
8761 - MINOR: config: Use dedicated function to parse proxy's errorloc
8762 - MEDIUM: http-htx/proxy: Use a global and centralized storage for HTTP error messages
8763 - MINOR: proxy: Register keywords to parse errorfile and errorloc directives
8764 - MINOR: http-htx: Add a new section to create groups of custom HTTP errors
8765 - MEDIUM: proxy: Add a directive to reference an http-errors section in a proxy
8766 - MINOR: http-rules: Update txn flags and status when a deny rule is executed
8767 - MINOR: http-rules: Support an optional status on deny rules for http reponses
8768 - MINOR: http-rules: Use same function to parse request and response deny actions
8769 - MINOR: http-ana: Add an error message in the txn and send it when defined
8770 - MEDIUM: http-rules: Support an optional error message in http deny rules
8771 - REGTEST: Add a strict rewriting mode reg test
8772 - REGEST: Add reg tests about error files
8773 - MINOR: ssl: accept 'verify' bind option with 'set ssl cert'
8774 - BUG/MINOR: ssl: ssl_sock_load_ocsp_response_from_file memory leak
8775 - BUG/MINOR: ssl: ssl_sock_load_issuer_file_into_ckch memory leak
8776 - BUG/MINOR: ssl: ssl_sock_load_sctl_from_file memory leak
8777 - BUG/MINOR: http_htx: Fix some leaks on error path when error files are loaded
8778 - CLEANUP: http-ana: Remove useless test on txn when the error message is retrieved
8779 - BUILD: CI: introduce ARM64 builds
8780 - BUILD: ssl: more elegant anti-replay feature presence check
8781 - MINOR: proxy/http-ana: Add support of extra attributes for the cookie directive
8782 - MEDIUM: dns: use Additional records from SRV responses
8783 - CLEANUP: Consistently `unsigned int` for bitfields
8784 - CLEANUP: pattern: remove the pat_time definition
8785 - BUG/MINOR: http_act: don't check capture id in backend
8786 - BUG/MINOR: ssl: fix build on development versions of openssl-1.1.x
8787
Willy Tarreau2e077f82019-11-25 20:36:16 +010087882019/11/25 : 2.2-dev0
8789 - exact copy of 2.1.0
8790
Willy Tarreaue54b43a2019-11-25 19:47:40 +010087912019/11/25 : 2.1.0
8792 - BUG/MINOR: init: fix set-dumpable when using uid/gid
8793 - MINOR: init: avoid code duplication while setting identify
8794 - BUG/MINOR: ssl: ssl_pkey_info_index ex_data can store a dereferenced pointer
8795 - BUG/MINOR: ssl: fix crt-list neg filter for openssl < 1.1.1
8796 - MINOR: peers: Alway show the table info for disconnected peers.
8797 - MINOR: peers: Add TX/RX heartbeat counters.
8798 - MINOR: peers: Add debugging information to "show peers".
8799 - BUG/MINOR: peers: Wrong null "server_name" data field handling.
8800 - MINOR: ssl/cli: 'abort ssl cert' deletes an on-going transaction
8801 - BUG/MEDIUM: mworker: don't fill the -sf argument with -1 during the reexec
8802 - BUG/MINOR: peers: "peer alive" flag not reset when deconnecting.
8803 - BUILD/MINOR: ssl: fix compiler warning about useless statement
8804 - BUG/MEDIUM: stream-int: Don't loose events on the CS when an EOS is reported
8805 - MINOR: contrib/prometheus-exporter: filter exported metrics by scope
8806 - MINOR: contrib/prometheus-exporter: Add a param to ignore servers in maintenance
8807 - BUILD: debug: Avoid warnings in dev mode with -02 because of some BUG_ON tests
8808 - BUG/MINOR: mux-h1: Fix tunnel mode detection on the response path
8809 - BUG/MINOR: http-ana: Properly catch aborts during the payload forwarding
8810 - DOC: Update http-buffer-request description to remove the part about chunks
8811 - BUG/MINOR: stream-int: Fix si_cs_recv() return value
8812 - DOC: internal: document the init calls
8813 - MEDIUM: dns: Add resolve-opts "ignore-weight"
8814 - MINOR: ssl: ssl_sock_prepare_ctx() return an error code
8815 - MEDIUM: ssl/cli: apply SSL configuration on SSL_CTX during commit
8816 - MINOR: ssl/cli: display warning during 'commit ssl cert'
8817 - MINOR: version: report the version status in "haproxy -v"
8818 - MINOR: version: emit the link to the known bugs in output of "haproxy -v"
8819 - DOC: Add documentation about the use-service action
8820 - MINOR: ssl: fix possible null dereference in error handling
8821 - BUG/MINOR: ssl: fix curve setup with LibreSSL
8822 - BUG/MINOR: ssl: Stop passing dynamic strings as format arguments
8823 - CLEANUP: ssl: check if a transaction exists once before setting it
8824 - BUG/MINOR: cli: fix out of bounds in -S parser
8825 - MINOR: ist: add ist_find_ctl()
8826 - BUG/MAJOR: h2: reject header values containing invalid chars
8827 - BUG/MAJOR: h2: make header field name filtering stronger
8828 - BUG/MAJOR: mux-h2: don't try to decode a response HEADERS frame in idle state
8829 - MINOR: h2: add a function to report H2 error codes as strings
8830 - MINOR: mux-h2/trace: report the connection and/or stream error code
8831 - SCRIPTS: create-release: show the correct origin name in suggested commands
8832 - SCRIPTS: git-show-backports: add "-s" to proposed cherry-pick commands
8833 - BUG/MEDIUM: trace: fix a typo causing an incorrect startup error
8834 - BUILD: reorder the objects in the makefile
8835 - DOC: mention in INSTALL haproxy 2.1 is a stable stable version
8836 - MINOR: version: indicate that this version is stable
8837
Willy Tarreau84681322019-11-15 18:49:37 +010088382019/11/15 : 2.1-dev5
8839 - BUG/MEDIUM: ssl/cli: don't alloc path when cert not found
8840 - BUG/MINOR: ssl/cli: unable to update a certificate without bundle extension
8841 - BUG/MINOR: ssl/cli: fix an error when a file is not found
8842 - MINOR: ssl/cli: replace the default_ctx during 'commit ssl cert'
8843 - DOC: fix date and http_date keywords syntax
8844 - MINOR: peers: Add "log" directive to "peers" section.
8845 - BUG/MEDIUM: mux-h1: Disable splicing for chunked messages
8846 - BUG/MEDIUM: stream: Be sure to support splicing at the mux level to enable it
8847 - MINOR: flt_trace: Rename macros to print trace messages
8848 - MINOR: trace: Add a set of macros to trace events if HA is compiled with debug
8849 - MEDIUM: stream/trace: Register a new trace source with its events
8850 - MINOR: doc: http-reuse connection pool fix
8851 - BUG/MEDIUM: stream: Be sure to release allocated captures for TCP streams
8852 - MINOR: http-ana: Remove the unused function http_reset_txn()
8853 - BUG/MINOR: action: do-resolve now use cached response
8854 - BUG: dns: timeout resolve not applied for valid resolutions
8855 - DOC: management: fix typo on "cache_lookups" stats output
8856 - BUG/MINOR: stream: init variables when the list is empty
8857 - BUG/MEDIUM: tasks: Make tasklet_remove_from_tasklet_list() no matter the tasklet.
8858 - BUG/MINOR: queue/threads: make the queue unlinking atomic
8859 - BUG/MEDIUM: Make sure we leave the session list in session_free().
8860 - CLEANUP: session: slightly simplify idle connection cleanup logic
8861 - MINOR: memory: also poison the area on freeing
8862 - CLEANUP: cli: use srv_shutdown_streams() instead of open-coding it
8863 - CLEANUP: stats: use srv_shutdown_streams() instead of open-coding it
8864 - BUG/MEDIUM: listeners: always pause a listener on out-of-resource condition
8865 - BUILD: contrib/da: remove an "unused" warning
8866 - BUG/MEDIUM: filters: Don't call TCP callbacks for HTX streams
8867 - MEDIUM: filters: Adapt filters API to allow again TCP filtering on HTX streams
8868 - MINOR: freq_ctr: Make the sliding window sums thread-safe
8869 - MINOR: stream: Remove the lock on the proxy to update time stats
8870 - MINOR: counters: Add fields to store the max observed for {q,c,d,t}_time
8871 - MINOR: stats: Report max times in addition of the averages for sessions
8872 - MINOR: contrib/prometheus-exporter: Report metrics about max times for sessions
8873 - BUG/MINOR: contrib/prometheus-exporter: Rename some metrics
8874 - MINOR: contrib/prometheus-exporter: report the number of idle conns per server
8875 - DOC: Add missing stats fields in the management manual
8876 - BUG/MINOR: mux-h1: Properly catch parsing errors on payload and trailers
8877 - BUG/MINOR: mux-h1: Don't set CS_FL_EOS on a read0 when receiving data to pipe
8878 - MINOR: mux-h1: Set EOI on the conn-stream when EOS is reported in TUNNEL state
8879 - MINOR: sink: Set the default max length for a message to BUFSIZE
8880 - MINOR: ring: make the parse function automatically set the handler/release
8881 - BUG/MINOR: log: make "show startup-log" use a ring buffer instead
8882 - MINOR: stick-table: allow sc-set-gpt0 to set value from an expression
8883
Willy Tarreau1753cb52019-11-03 15:43:10 +010088842019/11/03 : 2.1-dev4
8885 - BUG/MINOR: cli: don't call the kw->io_release if kw->parse failed
8886 - BUG/MINOR: mux-h2: Don't pretend mux buffers aren't full anymore if nothing sent
8887 - BUG/MAJOR: stream-int: Don't receive data from mux until SI_ST_EST is reached
8888 - DOC: remove obsolete section about header manipulation
8889 - BUG/MINOR: ssl/cli: cleanup on cli_parse_set_cert error
8890 - MINOR: ssl/cli: rework the 'set ssl cert' IO handler
8891 - BUILD: CI: comment out cygwin build, upgrade various ssl libraries
8892 - DOC: Improve documentation of http-re(quest|sponse) replace-(header|value|uri)
8893 - BUILD/MINOR: tools: shut up the format truncation warning in get_gmt_offset()
8894 - BUG/MINOR: spoe: fix off-by-one length in UUID format string
8895 - BUILD/MINOR: ssl: shut up a build warning about format truncation
8896 - BUILD: do not disable -Wformat-truncation anymore
8897 - MINOR: chunk: add chunk_istcat() to concatenate an ist after a chunk
8898 - Revert "MINOR: istbuf: add b_fromist() to make a buffer from an ist"
8899 - MINOR: mux: Add a new method to get informations about a mux.
8900 - BUG/MEDIUM: stream_interface: Only use SI_ST_RDY when the mux is ready.
8901 - BUG/MEDIUM: servers: Only set SF_SRV_REUSED if the connection if fully ready.
8902 - MINOR: doc: fix busy-polling performance reference
8903 - MINOR: config: allow no set-dumpable config option
8904 - MINOR: init: always fail when setrlimit fails
8905 - MINOR: ssl/cli: rework 'set ssl cert' as 'set/commit'
8906 - CLEANUP: ssl/cli: remove leftovers of bundle/certs (it < 2)
8907 - REGTEST: vtest can now enable mcli with its own flag
8908 - BUG/MINOR: config: Update cookie domain warn to RFC6265
8909 - MINOR: sample: add us/ms support to date/http_date
8910 - BUG/MINOR: ssl/cli: check trash allocation in cli_io_handler_commit_cert()
8911 - BUG/MEDIUM: mux-h2: report no available stream on a connection having errors
8912 - BUG/MEDIUM: mux-h2: immediately remove a failed connection from the idle list
8913 - BUG/MEDIUM: mux-h2: immediately report connection errors on streams
8914 - BUG/MINOR: stats: properly check the path and not the whole URI
8915 - BUG/MINOR: ssl: segfault in cli_parse_set_cert with old openssl/boringssl
8916 - BUG/MINOR: ssl: ckch->chain must be initialized
8917 - BUG/MINOR: ssl: double free on error for ckch->{key,cert}
8918 - MINOR: ssl: BoringSSL ocsp_response does not need issuer
8919 - BUG/MEDIUM: ssl/cli: fix dot research in cli_parse_set_cert
8920 - MINOR: backend: Add srv_name sample fetche
8921 - DOC: Add GitHub issue config.yml
8922
Willy Tarreauc70df532019-10-25 15:48:53 +020089232019/10/25 : 2.1-dev3
8924 - MINOR: mux-h2/trace: missing conn pointer in demux full message
8925 - MINOR: mux-h2: add a per-connection list of blocked streams
8926 - BUILD: ebtree: make eb_is_empty() and eb_is_dup() take a const
8927 - BUG/MEDIUM: mux-h2: do not enforce timeout on long connections
8928 - BUG/MEDIUM: tasks: Don't forget to decrement tasks_run_queue.
8929 - BUG/MINOR: peers: crash on reload without local peer.
8930 - BUG/MINOR: mux-h2/trace: Fix traces on h2c initialization
8931 - MINOR: h1-htx: Update h1_copy_msg_data() to ease the traces in the mux-h1
8932 - MINOR: htx: Adapt htx_dump() to be used from traces
8933 - MINOR: mux-h1/trace: register a new trace source with its events
8934 - MINOR: proxy: Store http-send-name-header in lower case
8935 - MINOR: http: Remove headers matching the name of http-send-name-header option
8936 - BUG/MINOR: mux-h1: Adjust header case when the server name is add to a request
8937 - BUG/MINOR: mux-h1: Adjust header case when chunked encoding is add to a message
8938 - MINOR: mux-h1: Try to wakeup the stream on output buffer allocation
8939 - MINOR: fcgi: Add function to get the string representation of a record type
8940 - MINOR: mux-fcgi/trace: Register a new trace source with its events
8941 - BUG/MEDIUM: cache: make sure not to cache requests with absolute-uri
8942 - DOC: clarify some points around http-send-name-header's behavior
8943 - MEDIUM: mux-h2: support emitting CONTINUATION frames after HEADERS
8944 - BUG/MINOR: mux-h1/mux-fcgi/trace: Fix position of the 4th arg in some traces
8945 - DOC: fix typo in Prometheus exporter doc
8946 - MINOR: h2: clarify the rules for how to convert an H2 request to HTX
8947 - MINOR: htx: Add 2 flags on the start-line to have more info about the uri
8948 - MINOR: http: Add a function to get the authority into a URI
8949 - MINOR: h1-htx: Set the flag HTX_SL_F_HAS_AUTHORITY during the request parsing
8950 - MEDIUM: http-htx: Keep the Host header and the request start-line synchronized
8951 - MINOR: h1-htx: Only use the path of a normalized URI to format a request line
8952 - MEDIUM: h2: make the request parser rebuild a complete URI
8953 - MINOR: h2: report in the HTX flags when the request has an authority
8954 - MEDIUM: mux-h2: do not map Host to :authority on output
8955 - MEDIUM: h2: use the normalized URI encoding for absolute form requests
8956 - MINOR: stats: mention in the help message support for "json" and "typed"
8957 - MINOR: stats: get rid of the ST_CONVDONE flag
8958 - MINOR: stats: replace the ST_* uri_auth flags with STAT_*
8959 - MINOR: stats: always merge the uri_auth flags into the appctx flags
8960 - MINOR: stats: set the appctx flags when initializing the applet only
8961 - MINOR: stats: get rid of the STAT_SHOWADMIN flag
8962 - MINOR: stats: make stats_dump_fields_json() directly take flags
8963 - MINOR: stats: uniformize the calling convention of the dump functions
8964 - MINOR: stats: support the "desc" output format modifier for info and stat
8965 - MINOR: stats: prepare to add a description with each stat/info field
8966 - MINOR: stats: make "show stat" and "show info"
8967 - MINOR: stats: fill all the descriptions for "show info" and "show stat"
8968 - BUG/MEDIUM: applet: always check a fast running applet's activity before killing
8969 - BUILD: stats: fix missing '=' sign in array declaration
8970 - MINOR: lists: add new macro LIST_SPLICE_END_DETACHED
8971 - MINOR: list: add new macro MT_LIST_BEHEAD
8972 - MEDIUM: task: Split the tasklet list into two lists.
8973 - MINOR: h2: Document traps to be avoided on multithread.
8974 - MINOR: lists: Try to use local variables instead of macro arguments.
8975 - MINOR: lists: Fix alignement of \ when relevant.
8976 - MINOR: mux-h2: also support emitting CONTINUATION on trailers
8977 - MINOR: ssl: crt-list do ckchn_lookup
8978 - REORG: ssl: rename ckch_node to ckch_store
8979 - REORG: ssl: move structures to ssl_sock.h
8980 - MINOR: ssl: initialize the sni_keytypes_map as EB_ROOT
8981 - MINOR: ssl: initialize explicitly the sni_ctx trees
8982 - BUG/MINOR: ssl: abort on sni allocation failure
8983 - BUG/MINOR: ssl: free the sni_keytype nodes
8984 - BUG/MINOR: ssl: abort on sni_keytypes allocation failure
8985 - MEDIUM: ssl: introduce the ckch instance structure
8986 - MEDIUM: ssl: split ssl_sock_add_cert_sni()
8987 - MINOR: ssl: ssl_sock_load_ckchn() can properly fail
8988 - MINOR: ssl: ssl_sock_load_multi_ckchs() can properly fail
8989 - MEDIUM: ssl: ssl_sock_load_ckchs() alloc a ckch_inst
8990 - MINOR: ssl: ssl_sock_load_crt_file_into_ckch() is filling from a BIO
8991 - MEDIUM: ssl/cli: 'set ssl cert' updates a certificate from the CLI
8992 - MINOR: ssl: load the sctl in/from the ckch
8993 - MINOR: ssl: load the ocsp in/from the ckch
8994 - BUG/MEDIUM: ssl: NULL dereference in ssl_sock_load_cert_sni()
8995 - BUG/MINOR: ssl: fix build without SSL
8996 - BUG/MINOR: ssl: fix build without multi-cert bundles
8997 - BUILD: ssl: wrong #ifdef for SSL engines code
8998 - BUG/MINOR: ssl: fix OCSP build with BoringSSL
8999 - BUG/MEDIUM: htx: Catch chunk_memcat() failures when HTX data are formatted to h1
9000 - BUG/MINOR: chunk: Fix tests on the chunk size in functions copying data
9001 - BUG/MINOR: mux-h1: Mark the output buffer as full when the xfer is interrupted
9002 - MINOR: mux-h1: Xfer as much payload data as possible during output processing
9003 - CLEANUP: h1-htx: Move htx-to-h1 formatting functions from htx.c to h1_htx.c
9004 - BUG/MINOR: mux-h1: Capture ignored parsing errors
9005 - MINOR: h1: Reject requests with different occurrences of the header host
9006 - MINOR: h1: Reject requests if the authority does not match the header host
9007 - REGTESTS: Send valid URIs in peers reg-tests and fix HA config to avoid warnings
9008 - REGTESTS: Adapt proxy_protocol_random_fail.vtc to match normalized URI too
9009 - BUG/MINOR: WURFL: fix send_log() function arguments
9010 - BUG/MINOR: ssl: fix error messages for OCSP loading
9011 - BUG/MINOR: ssl: can't load ocsp files
9012 - MINOR: version: make the version strings variables, not constants
9013 - BUG/MINOR: http-htx: Properly set htx flags on error files to support keep-alive
9014 - MINOR: htx: Add a flag on HTX to known when a response was generated by HAProxy
9015 - MINOR: mux-h1: Force close mode for proxy responses with an unfinished request
9016 - BUILD: travis-ci: limit build to branches "master" and "next"
9017 - BUILD/MEDIUM: threads: rename thread_info struct to ha_thread_info
9018 - BUILD/SMALL: threads: enable threads on osx
9019 - BUILD/MEDIUM: threads: enable cpu_affinity on osx
9020 - MINOR: istbuf: add b_fromist() to make a buffer from an ist
9021 - BUG/MINOR: cache: also cache absolute URIs
9022 - BUG/MINOR: mworker/ssl: close openssl FDs unconditionally
9023 - BUG/MINOR: tcp: Don't alter counters returned by tcp info fetchers
9024 - BUG/MEDIUM: lists: Handle 1-element-lists in MT_LIST_BEHEAD().
9025 - BUG/MEDIUM: mux_pt: Make sure we don't have a conn_stream before freeing.
9026 - BUG/MEDIUM: tasklet: properly compute the sleeping threads mask in tasklet_wakeup()
9027 - BUG/MAJOR: idle conns: schedule the cleanup task on the correct threads
9028 - BUG/MEDIUM: task: make tasklets either local or shared but not both at once
9029 - Revert e8826ded5fea3593d89da2be5c2d81c522070995.
9030 - BUG/MEDIUM: mux_pt: Don't destroy the connection if we have a stream attached.
9031 - BUG/MEDIUM: mux_pt: Only call the wake emthod if nobody subscribed to receive.
9032 - REGTEST: mcli/mcli_show_info: launch a 'show info' on the master CLI
9033 - CLEANUP: ssl: make ssl_sock_load_cert*() return real error codes
9034 - CLEANUP: ssl: make ssl_sock_load_ckchs() return a set of ERR_*
9035 - CLEANUP: ssl: make cli_parse_set_cert handle errcode and warnings.
9036 - CLEANUP: ssl: make ckch_inst_new_load_(multi_)store handle errcode/warn
9037 - CLEANUP: ssl: make ssl_sock_put_ckch_into_ctx handle errcode/warn
9038 - CLEANUP: ssl: make ssl_sock_load_dh_params handle errcode/warn
9039 - CLEANUP: bind: handle warning label on bind keywords parsing.
9040 - BUG/MEDIUM: ssl: 'tune.ssl.default-dh-param' value ignored with openssl > 1.1.1
9041 - BUG/MINOR: mworker/cli: reload fail with inherited FD
9042 - BUG/MINOR: ssl: Fix fd leak on error path when a TLS ticket keys file is parsed
9043 - BUG/MINOR: stick-table: Never exceed (MAX_SESS_STKCTR-1) when fetching a stkctr
9044 - BUG/MINOR: cache: alloc shctx after check config
9045 - BUG/MINOR: sample: Make the `field` converter compatible with `-m found`
9046 - BUG/MINOR: server: check return value of fopen() in apply_server_state()
9047 - REGTESTS: make seamless-reload depend on 1.9 and above
9048 - REGTESTS: server/cli_set_fqdn requires version 1.8 minimum
9049 - BUG/MINOR: dns: allow srv record weight set to 0
9050 - BUG/MINOR: ssl: fix memcpy overlap without consequences.
9051 - BUG/MINOR: stick-table: fix an incorrect 32 to 64 bit key conversion
9052 - BUG/MEDIUM: pattern: make the pattern LRU cache thread-local and lockless
9053 - BUG/MINOR: mux-h2: do not emit logs on backend connections
9054 - CLEANUP: ssl: remove old TODO commentary
9055 - CLEANUP: ssl: fix SNI/CKCH lock labels
9056 - MINOR: ssl: OCSP functions can load from file or buffer
9057 - MINOR: ssl: load sctl from buf OR from a file
9058 - MINOR: ssl: load issuer from file or from buffer
9059 - MINOR: ssl: split ssl_sock_load_crt_file_into_ckch()
9060 - BUG/MINOR: ssl/cli: fix looking up for a bundle
9061 - MINOR: ssl/cli: update ocsp/issuer/sctl file from the CLI
9062 - MINOR: ssl: update ssl_sock_free_cert_key_and_chain_contents
9063 - MINOR: ssl: copy a ckch from src to dst
9064 - MINOR: ssl: new functions duplicate and free a ckch_store
9065 - MINOR: ssl/cli: assignate a new ckch_store
9066 - MEDIUM: cli/ssl: handle the creation of SSL_CTX in an IO handler
9067 - BUG/MINOR: ssl/cli: fix build of SCTL and OCSP
9068 - BUG/MINOR: ssl/cli: out of bounds when built without ocsp/sctl
9069 - BUG/MINOR: ssl: fix build with openssl < 1.1.0
9070 - BUG/MINOR: ssl: fix build of X509_chain_up_ref() w/ libreSSL
9071 - MINOR: tcp: avoid confusion in time parsing init
9072 - MINOR: debug: add a new "debug dev stream" command
9073 - MINOR: cli/debug: validate addresses using may_access() in "debug dev stream"
9074 - REORG: move CLI access level definitions to cli.h
9075 - MINOR: cli: add an expert mode to hide dangerous commands
9076 - MINOR: debug: make most debug CLI commands accessible in expert mode
9077 - MINOR: stats/debug: maintain a counter of debug commands issued
9078 - BUG/MEDIUM: debug: address a possible null pointer dereference in "debug dev stream"
9079
Willy Tarreaucb8f03f2019-10-01 18:13:09 +020090802019/10/01 : 2.1-dev2
9081 - DOC: management: document reuse and connect counters in the CSV format
9082 - DOC: management: document cache_hits and cache_lookups in the CSV format
9083 - BUG/MINOR: dns: remove irrelevant dependency on a client connection
9084 - MINOR: applet: make appctx use their own pool
9085 - BUG/MEDIUM: checks: Don't attempt to receive data if we already subscribed.
9086 - BUG/MEDIUM: http/htx: unbreak option http_proxy
9087 - BUG/MINOR: backend: do not try to install a mux when the connection failed
9088 - MINOR: mux-h2: Don't adjust anymore the amount of data sent in h2_snd_buf()
9089 - BUG/MINOR: http_fetch: Fix http_auth/http_auth_group when called from TCP rules
9090 - BUG/MINOR: http_htx: Initialize HTX error messages for TCP proxies
9091 - BUG/MINOR: cache/htx: Make maxage calculation HTX aware
9092 - BUG/MINOR: hlua: Make the function txn:done() HTX aware
9093 - MINOR: proto_htx: Directly call htx_check_response_for_cacheability()
9094 - MINOR: proto_htx: Rely on the HTX function to apply a redirect rules
9095 - MINOR: proto_htx: Add the function htx_return_srv_error()
9096 - MINOR: backend/htx: Don't rewind output data to set the sni on a srv connection
9097 - MINOR: proto_htx: Don't stop forwarding when there is a post-connect processing
9098 - DOC: htx: Update comments in HTX files
9099 - CLEANUP: htx: Remove the unsued function htx_add_blk_type_size()
9100 - MINOR: htx: Deduce the number of used blocks from tail and head values
9101 - MINOR: htx: Use an array of char to store HTX blocks
9102 - MINOR: htx: Slightly update htx_dump() to report better messages
9103 - DOC: htx: Add internal documentation about the HTX
9104 - MAJOR: http: Deprecate and ignore the option "http-use-htx"
9105 - MEDIUM: mux-h2: Remove support of the legacy HTTP mode
9106 - CLEANUP: h2: Remove functions converting h2 requests to raw HTTP/1.1 ones
9107 - MINOR: connection: Remove the multiplexer protocol PROTO_MODE_HTX
9108 - MINOR: stream: Rely on HTX analyzers instead of legacy HTTP ones
9109 - MEDIUM: http_fetch: Remove code relying on HTTP legacy mode
9110 - MINOR: config: Remove tests on the option 'http-use-htx'
9111 - MINOR: stream: Remove tests on the option 'http-use-htx' in stream_new()
9112 - MINOR: proxy: Remove tests on the option 'http-use-htx' during H1 upgrade
9113 - MINOR: hlua: Remove tests on the option 'http-use-htx' to reject TCP applets
9114 - MINOR: cache: Remove tests on the option 'http-use-htx'
9115 - MINOR: contrib/prometheus-exporter: Remove tests on the option 'http-use-htx'
9116 - CLEANUP: proxy: Remove the flag PR_O2_USE_HTX
9117 - MINOR: proxy: Don't adjust connection mode of HTTP proxies anymore
9118 - MEDIUM: backend: Remove code relying on the HTTP legacy mode
9119 - MEDIUM: hlua: Remove code relying on the legacy HTTP mode
9120 - MINOR: http_act: Remove code relying on the legacy HTTP mode
9121 - MEDIUM: cache: Remove code relying on the legacy HTTP mode
9122 - MEDIUM: compression: Remove code relying on the legacy HTTP mode
9123 - MINOR: flt_trace: Remove code relying on the legacy HTTP mode
9124 - MINOR: stats: Remove code relying on the legacy HTTP mode
9125 - MAJOR: filters: Remove code relying on the legacy HTTP mode
9126 - MINOR: stream: Remove code relying on the legacy HTTP mode
9127 - MAJOR: http: Remove the HTTP legacy code
9128 - MINOR: hlua: Remove useless test on TX_CON_WANT_* flags
9129 - MINOR: proto_http: Remove unused http txn flags
9130 - MINOR: proto_http: Remove the unused flag HTTP_MSGF_WAIT_CONN
9131 - CLEANUP: proto_http: Group remaining flags of the HTTP transaction
9132 - CLEANUP: channel: Remove the unused flag CF_WAKE_CONNECT
9133 - CLEANUP: proto_http: Remove unecessary includes and comments
9134 - CLEANUP: proto_http: Move remaining code from proto_http.c to proto_htx.c
9135 - REORG: proto_htx: Move HTX analyzers & co to http_ana.{c,h} files
9136 - BUG/MINOR: debug: Remove flags CO_FL_SOCK_WR_ENA/CO_FL_SOCK_RD_ENA
9137 - MINOR: proxy: Remove support of the option 'http-tunnel'
9138 - DOC: config: Update as a result of the legacy HTTP removal
9139 - MEDIUM: config: Remove parsing of req* and rsp* directives
9140 - MINOR: proxy: Remove the unused list of block rules
9141 - MINOR: proxy/http_ana: Remove unused req_exp/rsp_exp and req_add/rsp_add lists
9142 - DOC: config: Remove unsupported req* and rsp* keywords
9143 - MINOR: global: Preset tune.max_http_hdr to its default value
9144 - MINOR: http: Don't store raw HTTP errors in chunks anymore
9145 - BUG/MINOR: session: Emit an HTTP error if accept fails only for H1 connection
9146 - BUG/MINOR: session: Send a default HTTP error if accept fails for a H1 socket
9147 - CLEANUP: mux-h2: Remove unused flags H2_SF_CHNK_*
9148 - BUG/MINOR: checks: do not exit tcp-checks from the middle of the loop
9149 - MINOR: config: Warn only if the option http-use-htx is used with "no" prefix
9150 - BUG/MEDIUM: mux-h1: Trim excess server data at the end of a transaction
9151 - MINOR: connection: add conn_get_src() and conn_get_dst()
9152 - MINOR: frontend: switch to conn_get_{src,dst}() for logging and debugging
9153 - MINOR: backend: switch to conn_get_{src,dst}() for port and address mapping
9154 - MINOR: ssl: switch to conn_get_dst() to retrieve the destination address
9155 - MINOR: tcp: replace various calls to conn_get_{from,to}_addr with conn_get_{src,dst}
9156 - MINOR: stream-int: use conn_get_{src,dst} in conn_si_send_proxy()
9157 - MINOR: stream/cli: use conn_get_{src,dst} in "show sess" and "show peers" output
9158 - MINOR: log: use conn_get_{dst,src}() to retrieve the cli/frt/bck/srv/ addresses
9159 - MINOR: http/htx: use conn_get_dst() to retrieve the destination address
9160 - MINOR: lua: use conn_get_{src,dst} to retrieve connection addresses
9161 - MINOR: http: check the source address via conn_get_src() in sample fetch functions
9162 - CLEANUP: connection: remove the now unused conn_get_{from,to}_addr()
9163 - MINOR: connection: add new src and dst fields
9164 - MINOR: connection: use conn->{src,dst} instead of &conn->addr.{from,to}
9165 - MINOR: ssl-sock: use conn->dst instead of &conn->addr.to
9166 - MINOR: lua: switch to conn->dst for a connection's target address
9167 - MINOR: peers: use conn->dst for the peer's target address
9168 - MINOR: htx: switch from conn->addr.{from,to} to conn->{src,dst}
9169 - MINOR: stream: switch from conn->addr.{from,to} to conn->{src,dst}
9170 - MINOR: proxy: switch to conn->src in error snapshots
9171 - MINOR: session: use conn->src instead of conn->addr.from
9172 - MINOR: tcp: replace conn->addr.{from,to} with conn->{src,dst}
9173 - MINOR: unix: use conn->dst for the target address in ->connect()
9174 - MINOR: sockpair: use conn->dst for the target address in ->connect()
9175 - MINOR: log: use conn->{src,dst} instead of conn->addr.{from,to}
9176 - MINOR: checks: replace conn->addr.to with conn->dst
9177 - MINOR: frontend: switch from conn->addr.{from,to} to conn->{src,dst}
9178 - MINOR: http: convert conn->addr.from to conn->src in sample fetches
9179 - MEDIUM: backend: turn all conn->addr.{from,to} to conn->{src,dst}
9180 - MINOR: connection: create a new pool for struct sockaddr_storage
9181 - MEDIUM: connection: make sure all address producers allocate their address
9182 - MAJOR: connection: remove the addr field
9183 - MINOR: connection: don't use clear_addr() anymore, just release the address
9184 - MINOR: stream: add a new target_addr entry in the stream structure
9185 - MAJOR: stream: store the target address into s->target_addr
9186 - MINOR: peers: now remove the remote connection setup code
9187 - MEDIUM: lua: do not allocate the remote connection anymore
9188 - MEDIUM: backend: always release any existing prior connection in connect_server()
9189 - MEDIUM: backend: remove impossible cases from connect_server()
9190 - BUG/MINOR: mux-h1: Close server connection if input data remains in h1_detach()
9191 - BUG/MEDIUM: tcp-checks: do not dereference inexisting conn_stream
9192 - BUG/MINOR: http_ana: Be sure to have an allocated buffer to generate an error
9193 - BUG/MINOR: http_htx: Support empty errorfiles
9194 - BUG/CRITICAL: http_ana: Fix parsing of malformed cookies which start by a delimiter
9195 - BUG/MEDIUM: protocols: add a global lock for the init/deinit stuff
9196 - BUG/MINOR: proxy: always lock stop_proxy()
9197 - MEDIUM: mux-h1: Add the support of headers adjustment for bogus HTTP/1 apps
9198 - BUILD: threads: add the definition of PROTO_LOCK
9199 - BUG/MEDIUM: lb-chash: Fix the realloc() when the number of nodes is increased
9200 - BUG/MEDIUM: streams: Don't switch the SI to SI_ST_DIS if we have data to send.
9201 - BUG/MINOR: log: make sure writev() is not interrupted on a file output
9202 - DOC: improve the wording in CONTRIBUTING about how to document a bug fix
9203 - MEDIUM: h1: Don't try to subscribe if we managed to read data.
9204 - MEDIUM: h1: Don't wake the H1 tasklet if we got the whole request.
9205 - REGTESTS: checks: exclude freebsd target for tcp-check_multiple_ports.vtc
9206 - BUG/MINOR: hlua/htx: Reset channels analyzers when txn:done() is called
9207 - BUG/MEDIUM: hlua: Check the calling direction in lua functions of the HTTP class
9208 - MINOR: hlua: Don't set request analyzers on response channel for lua actions
9209 - MINOR: hlua: Add a flag on the lua txn to know in which context it can be used
9210 - BUG/MINOR: hlua: Only execute functions of HTTP class if the txn is HTTP ready
9211 - BUG/MINOR: htx: Fix free space addresses calculation during a block expansion
9212 - MINOR: ssl: merge ssl_sock_load_cert_file() and ssl_sock_load_cert_chain_file()
9213 - MEDIUM: ssl: use cert_key_and_chain struct in ssl_sock_load_cert_file()
9214 - MEDIUM: ssl: split the loading of the certificates
9215 - MEDIUM: ssl: lookup and store in a ckch_node tree
9216 - MEDIUM: ssl: load DH param in struct cert_key_and_chain
9217 - BUG/MAJOR: queue/threads: avoid an AB/BA locking issue in process_srv_queue()
9218 - MINOR: ssl: use STACK_OF for chain certs
9219 - MINOR: ssl: add extra chain compatibility
9220 - MINOR: ssl: check private key consistency in loading
9221 - MINOR: ssl: do not look at DHparam with OPENSSL_NO_DH
9222 - CLEANUP: ssl: ssl_sock_load_crt_file_into_ckch
9223 - MINOR: ssl: clean ret variable in ssl_sock_load_ckchn
9224 - MAJOR: fd: Get rid of the fd cache.
9225 - MEDIUM: pollers: Remember the state for read and write for each threads.
9226 - MEDIUM: mux-h2: don't try to read more than needed
9227 - BUG/BUILD: ssl: fix build with openssl < 1.0.2
9228 - BUG/MEDIUM: ssl: does not try to free a DH in a ckch
9229 - BUG/MINOR: debug: fix a small race in the thread dumping code
9230 - MINOR: wdt: also consider that waiting in the thread dumper is normal
9231 - REGTESTS: checks: make 4be_1srv_health_checks more reliable
9232 - BUILD: ssl: BoringSSL add EVP_PKEY_base_id
9233 - BUG/MEDIUM: ssl: don't free the ckch in multi-cert bundle
9234 - BUG/MINOR: ssl: fix ressource leaks on error
9235 - BUG/MEDIUM: lb-chash: Ensure the tree integrity when server weight is increased
9236 - BUG/MAJOR: http/sample: use a static buffer for raw -> htx conversion
9237 - BUG/MINOR: stream-int: make sure to always release empty buffers after sending
9238 - BUG/MEDIUM: ssl: open the right path for multi-cert bundle
9239 - BUG/MINOR: stream-int: also update analysers timeouts on activity
9240 - BUG/MEDIUM: mux-h2: unbreak receipt of large DATA frames
9241 - BUG/MEDIUM: mux-h2: split the stream's and connection's window sizes
9242 - BUG/MEDIUM: proxy: Make sure to destroy the stream on upgrade from TCP to H2
9243 - DOC: Add 'Question.md' issue template, discouraging asking questions
9244 - BUG/MEDIUM: fd: Always reset the polled_mask bits in fd_dodelete().
9245 - BUG/MEDIUM: pollers: Clear the poll_send bits as well.
9246 - BUILD: travis-ci: enable daily Coverity scan
9247 - BUG/MINOR: mux-h2: don't refrain from sending an RST_STREAM after another one
9248 - BUG/MINOR: mux-h2: use CANCEL, not STREAM_CLOSED in h2c_frt_handle_data()
9249 - BUG/MINOR: mux-h2: do not send REFUSED_STREAM on aborted uploads
9250 - BUG/MEDIUM: mux-h2: do not recheck a frame type after a state transition
9251 - BUG/MINOR: mux-h2: always send stream window update before connection's
9252 - BUG/MINOR: mux-h2: always reset rcvd_s when switching to a new frame
9253 - BUG/MEDIUM: checks: make sure to close nicely when we're the last to speak
9254 - BUG/MEDIUM: stick-table: Wrong stick-table backends parsing.
9255 - CLEANUP: mux-h2: move the demuxed frame check code in its own function
9256 - MINOR: cache: add method to cache hash
9257 - MINOR: cache: allow caching of OPTIONS request
9258 - BUG/MINOR: ssl: fix 0-RTT for BoringSSL
9259 - MINOR: ssl: ssl_fc_has_early should work for BoringSSL
9260 - BUG/MINOR: pools: don't mark the thread harmless if already isolated
9261 - BUG/MINOR: buffers/threads: always clear a buffer's head before releasing it
9262 - CLEANUP: buffer: replace b_drop() with b_free()
9263 - CLEANUP: task: move the cpu_time field to the task-only part
9264 - MINOR: cli: add two new states to print messages on the CLI
9265 - MINOR: cli: add cli_msg(), cli_err(), cli_dynmsg(), cli_dynerr()
9266 - CLEANUP: cli: replace all occurrences of manual handling of return messages
9267 - BUG/MEDIUM: proxy: Don't forget the SF_HTX flag when upgrading TCP=>H1+HTX.
9268 - BUG/MEDIUM: proxy: Don't use cs_destroy() when freeing the conn_stream.
9269 - BUG/MINOR: lua: fix setting netfilter mark
9270 - BUG/MINOR: Fix prometheus '# TYPE' and '# HELP' headers
9271 - BUG/MEDIUM: lua: Fix test on the direction to set the channel exp timeout
9272 - BUG/MINOR: stats: Wait the body before processing POST requests
9273 - MINOR: fd: make sure to mark the thread as not stuck in fd_update_events()
9274 - BUG/MEDIUM: mux_pt: Don't call unsubscribe if we did not subscribe.
9275 - BUILD: travis-ci: trigger non-mainstream configurations only on daily builds.
9276 - MINOR: debug: indicate the applet name when the task is task_run_applet()
9277 - MINOR: tools: add append_prefixed_str()
9278 - MINOR: lua: export applet and task handlers
9279 - MEDIUM: debug: make the thread dump code show Lua backtraces
9280 - BUG/MEDIUM: h1: Always try to receive more in h1_rcv_buf().
9281 - MINOR: list: add LIST_SPLICE() to merge one list into another
9282 - MINOR: tools: add a DEFNULL() macro to use NULL for empty args
9283 - REORG: trace: rename trace.c to calltrace.c and mention it's not thread-safe
9284 - MINOR: sink: create definitions a minimal code for event sinks
9285 - MINOR: sink: add a support for file descriptors
9286 - MINOR: trace: start to create a new trace subsystem
9287 - MINOR: trace: add allocation of buffer-sized trace buffers
9288 - MINOR: trace/cli: register the "trace" CLI keyword to list the sources
9289 - MINOR: trace/cli: parse the "level" argument to configure the trace verbosity
9290 - MINOR: trace/cli: add "show trace" to report trace state and statistics
9291 - MINOR: trace: implement a very basic trace() function
9292 - MINOR: trace: add the file name and line number in the prefix
9293 - MINOR: trace: make trace() now also take a level in argument
9294 - MINOR: trace: implement a call to a decode function
9295 - MINOR: trace: add per-level macros to produce traces
9296 - MINOR: trace: add a definition of typed arguments to trace()
9297 - MINOR: trace: make sure to always stop the locking when stopping or pausing
9298 - MINOR: trace: add the possibility to lock on some arguments
9299 - MINOR: trace: parse the "lock" argument to trace
9300 - MINOR: trace: retrieve useful pointers and enforce lock-on
9301 - DOC: management: document the "trace" and "show trace" commands
9302 - BUILD: trace: make the lockon_ptr const to silence a warning without threads
9303 - BUG/MEDIUM: mux-h1: do not truncate trailing 0CRLF on buffer boundary
9304 - BUG/MEDIUM: mux-h1: do not report errors on transfers ending on buffer full
9305 - DOC: fixed typo in management.txt
9306 - BUG/MINOR: mworker: disable SIGPROF on re-exec
9307 - BUG/MEDIUM: listener/threads: fix an AB/BA locking issue in delete_listener()
9308 - BUG/MEDIUM: url32 does not take the path part into account in the returned hash.
9309 - MINOR: backend: Add srv_queue converter
9310 - MINOR: sink: set the fd-type sinks to non-blocking
9311 - MINOR: tools: add a function varint_bytes() to report the size of a varint
9312 - MINOR: buffer: add functions to read/write varints from/to buffers
9313 - MINOR: fd: add fd_write_frag_line() to send a fragmented line to an fd
9314 - MINOR: sink: now call the generic fd write function
9315 - MINOR: ring: add a new mechanism for retrieving/storing ring data in buffers
9316 - MINOR: ring: add a ring_write() function
9317 - MINOR: ring: add a generic CLI io_handler to dump a ring buffer
9318 - MINOR: sink: add support for ring buffers
9319 - MINOR: sink: implement "show events" to show supported sinks and dump the rings
9320 - MINOR: sink: now report the number of dropped events on output
9321 - MINOR: trace: support a default callback for the source
9322 - MINOR: trace: extend the source location to 13 chars
9323 - MINOR: trace: show thread number and source name in the trace
9324 - MINOR: trace: change the TRACE() calling convention to put the args and cb last
9325 - MINOR: connection: add the fc_pp_authority fetch -- authority TLV, from PROXYv2
9326 - MINOR: tools: add a generic struct "name_desc" for name-description pairs
9327 - MINOR: trace: replace struct trace_lockon_args with struct name_desc
9328 - MINOR: trace: change the "payload" level to "data" and move it
9329 - MINOR: trace: prepend the function name for developer level traces
9330 - MINOR: trace: also report the trace level in the output
9331 - MINOR: trace: change the detail_level to per-source verbosity
9332 - MINOR: mux-h2/trace: register a new trace source with its events
9333 - MINOR: mux-h2/trace: add the default decoding callback
9334 - MEDIUM: mux-h2/trace: add lots of traces all over the code
9335 - MINOR: mux-h2: add functions to convert an h2c/h2s state to a string
9336 - MINOR: mux-h2/trace: add a new verbosity level "clean"
9337 - MINOR: mux-h2/trace: only decode the start-line at verbosity other than "minimal"
9338 - MINOR: mux-h2/trace: always report the h2c/h2s state and flags
9339 - MINOR: mux-h2/trace: report h2s->id before h2c->dsi for the stream ID
9340 - CLEANUP: mux-h2/trace: reformat the "received" messages for better alignment
9341 - CLEANUP: mux-h2/trace: lower-case event names
9342 - MINOR: trace: extend default event names to 12 chars
9343 - BUG/MINOR: ring: fix the way watchers are counted
9344 - MINOR: cli: extend the CLI context with a list and two offsets
9345 - MINOR: mux-h2/trace: report the connection pointer and state before FRAME_H
9346 - MEDIUM: ring: implement a wait mode for watchers
9347 - BUG/MEDIUM: mux-h2/trace: do not dereference h2c->conn after failed idle
9348 - BUG/MEDIUM: mux-h2/trace: fix missing braces added with traces
9349 - BUG/MINOR: ring: b_peek_varint() returns a uint64_t, not a size_t
9350 - CLEANUP: fd: remove leftovers of the fdcache
9351 - MINOR: fd: add a new "initialized" bit in the fdtab struct
9352 - MINOR: fd/log/sink: make the non-blocking initialization depend on the initialized bit
9353 - MEDIUM: log: use the new generic fd_write_frag_line() function
9354 - MINOR: log: add a target type instead of hacking the address family
9355 - MEDIUM: log: add support for logging to a ring buffer
9356 - MINOR: send-proxy-v2: sends authority TLV according to TLV received
9357 - MINOR: build: add linux-glibc-legacy build TARGET
9358 - BUG/MEDIUM: peers: local peer socket not bound.
9359 - BUILD: connection: silence gcc warning with extra parentheses
9360 - BUG/MINOR: http-ana: Reset response flags when 1xx messages are handled
9361 - BUG/MINOR: h1: Properly reset h1m when parsing is restarted
9362 - BUG/MINOR: mux-h1: Fix size evaluation of HTX messages after headers parsing
9363 - BUG/MINOR: mux-h1: Don't stop anymore input processing when the max is reached
9364 - BUG/MINOR: mux-h1: Be sure to update the count before adding EOM after trailers
9365 - BUG/MEDIUM: cache: Properly copy headers splitted on several shctx blocks
9366 - BUG/MEDIUM: cache: Don't cache objects if the size of headers is too big
9367 - BUG/MINOR: mux-h1: Fix a possible null pointer dereference in h1_subscribe()
9368 - MEDIUM: fd: remove the FD_EV_POLLED status bit
9369 - MEDIUM: fd: simplify the fd_*_{recv,send} functions using BTS/BTR
9370 - MINOR: fd: make updt_fd_polling() a normal function
9371 - CONTRIB: debug: add new program "poll" to test poll() events
9372 - BUG/MINOR: checks: stop polling for write when we have nothing left to send
9373 - BUG/MINOR: checks: start sending the request right after connect()
9374 - BUG/MINOR: checks: make __event_chk_srv_r() report success before closing
9375 - BUG/MINOR: checks: do not uselessly poll for reads before the connection is up
9376 - BUG/MINOR: mux-h1: Fix a UAF in cfg_h1_headers_case_adjust_postparser()
9377 - BUILD: CI: add basic CentOS 6 cirrus build
9378 - MINOR: contrib/prometheus-exporter: Report DRAIN/MAINT/NOLB status for servers
9379 - BUG/MINOR: lb/leastconn: ignore the server weights for empty servers
9380 - BUG/MAJOR: ssl: ssl_sock was not fully initialized.
9381 - MEDIUM: fd: mark the FD as ready when it's inserted
9382 - MINOR: fd: add two new calls fd_cond_{recv,send}()
9383 - MEDIUM: connection: enable reading only once the connection is confirmed
9384 - MINOR: fd: add two flags ERR and SHUT to describe FD states
9385 - MEDIUM: fd: do not use the FD_POLL_* flags in the pollers anymore
9386 - BUG/MEDIUM: connection: don't keep more idle connections than ever needed
9387 - MINOR: stats: report the number of idle connections for each server
9388 - BUILD: CI: skip reg-tests/connection/proxy_protocol_random_fail.vtc on CentOS 6
9389 - BUILD/MINOR: auth: enabling for osx
9390 - BUG/MINOR: listener: Fix a possible null pointer dereference
9391 - BUG/MINOR: ssl: always check for ssl connection before getting its XPRT context
9392 - MINOR: stats: Add JSON export from the stats page
9393 - BUG/MINOR: filters: Properly set the HTTP status code on analysis error
9394 - MINOR: sample: Add UUID-fetch
9395 - CLEANUP: mux-h2: Remove unused flag H2_SF_DATA_CHNK
9396 - BUG/MINOR: acl: Fix memory leaks when an ACL expression is parsed
9397 - BUG/MINOR: backend: Fix a possible null pointer dereference
9398 - BUG/MINOR: Missing stat_field_names (since f21d17bb)
9399 - BUG/MEDIUM: stick-table: Properly handle "show table" with a data type argument
9400 - BUILD: CI: temporarily disable ASAN
9401 - MINOR: htx: Add a flag on HTX message to report processing errors
9402 - MINOR: mux-h1: Report a processing error during output processing
9403 - MINOR: http-ana: Handle HTX errors first during message analysis
9404 - MINOR: http-ana: Remove err_state field from http_msg
9405 - MINOR: config: Support per-proxy and per-server deinit functions callbacks
9406 - MINOR: config: Support per-proxy and per-server post-check functions callbacks
9407 - MINOR: http_fetch: Add sample fetches to get auth method/user/pass
9408 - MINOR: istbuf: Add the function b_isteqi()
9409 - MINOR: log: Provide a function to emit a log for an application
9410 - MINOR: http: Add function to parse value of the header Status
9411 - MEDIUM: mux-h1/h1-htx: move HTX convertion of H1 messages in dedicated file
9412 - MINOR: h1-htx: Use the same function to copy message payload in all cases
9413 - MINOR: muxes/htx: Ignore pseudo header during message formatting
9414 - MINOR: fcgi: Add code related to FCGI protocol
9415 - MEDIUM: fcgi-app: Add FCGI application and filter
9416 - MEDIUM: mux-fcgi: Add the FCGI multiplexer
9417 - MINOR: doc: Add documentation about the FastCGI support
9418 - BUG/MINOR: build: Fix compilation of mux_fcgi.c when compiled without SSL
9419 - BUILD: CI: install golang-1.13 when building BoringSSL
9420 - BUG/MINOR: mux-h2: Be sure to have a connection to unsubcribe
9421 - BUG/MINOR: mux-fcgi: Be sure to have a connection to unsubcribe
9422 - CLEANUP: fcgi-app: Remove useless test on fcgi_conf pointer
9423 - BUG/MINOR: mux-fcgi: Don't compare the filter name in its parsing callback
9424 - BUG/MAJOR: mux-h2: Handle HEADERS frames received after a RST_STREAM frame
9425 - BUG/MEDIUM: check/threads: make external checks run exclusively on thread 1
9426 - MEDIUM: list: Separate "locked" list from regular list.
9427 - MINOR: mt_lists: Add new macroes.
9428 - MEDIUM: servers: Use LIST_DEL_INIT() instead of LIST_DEL().
9429 - MINOR: mt_lists: Do nothing in MT_LIST_ADD/MT_LIST_ADDQ if already in list.
9430 - MINOR: mt_lists: Give MT_LIST_ADD, MT_LIST_ADDQ and MT_LIST_DEL a return value.
9431 - MEDIUM: tasklets: Make the tasklet list a struct mt_list.
9432 - TESTS: Add a stress-test for mt_lists.
9433 - BUILD: travis-ci: add PCRE2, SLZ build
9434 - BUG/MINOR: build: fix event ports (Solaris)
9435 - BUG/MEDIUM: namespace: fix fd leak in master-worker mode
9436 - OPTIM: listeners: use tasklets for the multi-queue rings
9437 - BUILD: makefile: work around yet another GCC fantasy (-Wstring-plus-int)
9438 - BUG/MINOR: stream-int: Process connection/CS errors first in si_cs_send()
9439 - BUG/MEDIUM: stream-int: Process connection/CS errors during synchronous sends
9440 - BUG/MEDIUM: checks: make sure the connection is ready before trying to recv
9441 - CLEANUP: task: remove impossible test
9442 - CLEANUP: task: cache the task_per_thread pointer
9443 - MINOR: task: split the tasklet vs task code in process_runnable_tasks()
9444 - MINOR: task: introduce a thread-local "sched" variable for local scheduler stuff
9445 - CLEANUP: mux-fcgi: Remove the unused function fcgi_strm_id()
9446 - BUG/MINOR: mux-fcgi: Use a literal string as format in app_log()
9447 - BUG/MEDIUM: tasklets: Make sure we're waking the target thread if it sleeps.
9448 - MINOR: h2/trace: indicate 'F' or 'B' to locate the side of an h2c in traces
9449 - MINOR: h2/trace: report the frame type when known
9450 - BUG/MINOR: mux-h2: do not wake up blocked streams before the mux is ready
9451 - BUG/MEDIUM: namespace: close open namespaces during soft shutdown
9452 - MINOR: time: add timeofday_as_iso_us() to return instant time as ISO
9453 - MINOR: sink: finally implement support for SINK_FMT_{TIMED,ISO}
9454 - MINOR: sink: change ring buffer "buf0"'s format to "timed"
9455 - BUG/MEDIUM: mux-h2: don't reject valid frames on closed streams
9456 - BUG/MINOR: mux-fcgi: silence a gcc warning about null dereference
9457 - BUG/MINOR: mux-h2: Fix missing braces because of traces in h2_detach()
9458 - BUG/MINOR: mux-h2: Use the dummy error when decoding headers for a closed stream
9459 - BUG/MAJOR: mux_h2: Don't consume more payload than received for skipped frames
9460 - BUG/MINOR: mux-h1: Do h2 upgrade only on the first request
9461 - BUG/MEDIUM: spoe: Use a different engine-id per process
9462 - MINOR: spoe: Improve generation of the engine-id
9463 - MINOR: spoe: Support the async mode with several threads
9464 - MINOR: http: Add server name header from HTTP multiplexers
9465 - CLEANUP: http-ana: Remove the unused function http_send_name_header()
9466 - MINOR: stats: Add the support of float fields in stats
9467 - BUG/MINOR: contrib/prometheus-exporter: Return the time averages in seconds
9468 - DOC: Fix documentation about the cli command to get resolver stats
9469 - BUG/MEDIUM: fcgi: fix missing list tail in sample fetch registration
9470 - BUG/MINOR: stats: Add a missing break in a switch statement
9471 - BUG/MINOR: lua: Properly initialize the buffer's fields for string samples in hlua_lua2(smp|arg)
9472 - CLEANUP: lua: Get rid of obsolete (size_t *) cast in hlua_lua2(smp|arg)
9473 - BUG/MEDIUM: lua: Store stick tables into the sample's `t` field
9474 - CLEANUP: proxy: Remove `proxy_tbl_by_name`
9475 - BUILD: ssl: fix a warning when built with openssl < 1.0.2
9476 - DOC: replace utf-8 quotes by ascii ones
9477 - BUG/MEDIUM: fd: HUP is an error only when write is active
9478 - BUG/MINOR: action: do-resolve does not yield on requests with body
9479 - Revert "MINOR: cache: allow caching of OPTIONS request"
9480
Willy Tarreaudb514072019-07-16 19:15:28 +020094812019/07/16 : 2.1-dev1
9482 - BUG/MEDIUM: h2/htx: Update data length of the HTX when the cookie list is built
9483 - DOC: this is a development branch again.
9484 - MEDIUM: Make 'block' directive fatal
9485 - MEDIUM: Make 'redispatch' directive fatal
9486 - MEDIUM: Make '(cli|con|srv)timeout' directive fatal
9487 - MEDIUM: Remove 'option independant-streams'
9488 - MINOR: sample: Add sha2([<bits>]) converter
9489 - MEDIUM: server: server-state global file stored in a tree
9490 - BUG/MINOR: lua/htx: Make txn.req_req_* and txn.res_rep_* HTX aware
9491 - BUG/MINOR: mux-h1: Add the header connection in lower case in outgoing messages
9492 - BUG/MEDIUM: compression: Set Vary: Accept-Encoding for compressed responses
9493 - MINOR: htx: Add the function htx_change_blk_value_len()
9494 - BUG/MEDIUM: htx: Fully update HTX message when the block value is changed
9495 - BUG/MEDIUM: mux-h2: Reset padlen when several frames are demux
9496 - BUG/MEDIUM: mux-h2: Remove the padding length when a DATA frame size is checked
9497 - BUG/MEDIUM: lb_fwlc: Don't test the server's lb_tree from outside the lock
9498 - BUG/MAJOR: sample: Wrong stick-table name parsing in "if/unless" ACL condition.
9499 - BUILD: mworker: silence two printf format warnings around getpid()
9500 - BUILD: makefile: use :space: instead of digits to count commits
9501 - BUILD: makefile: adjust the sed expression of "make help" for solaris
9502 - BUILD: makefile: do not rely on shell substitutions to determine git version
9503 - BUG/MINOR: mworker-prog: Fix segmentation fault during cfgparse
9504 - BUG/MINOR: spoe: Fix memory leak if failing to allocate memory
9505 - BUG/MEDIUM: mworker: don't call the thread and fdtab deinit
9506 - BUG/MEDIUM: stream_interface: Don't add SI_FL_ERR the state is < SI_ST_CON.
9507 - BUG/MEDIUM: connections: Always add the xprt handshake if needed.
9508 - BUG/MEDIUM: ssl: Don't do anything in ssl_subscribe if we have no ctx.
9509 - BUG/MEDIUM: mworker/cli: command pipelining doesn't work anymore
9510 - BUG/MINOR: htx: Save hdrs_bytes when the HTX start-line is replaced
9511 - BUG/MAJOR: mux-h1: Don't crush trash chunk area when outgoing message is formatted
9512 - BUG/MINOR: memory: Set objects size for pools in the per-thread cache
9513 - BUG/MINOR: log: Detect missing sampling ranges in config
9514 - BUG/MEDIUM: proto_htx: Don't add EOM on 1xx informational messages
9515 - BUG/MEDIUM: mux-h1: Use buf_room_for_htx_data() to detect too large messages
9516 - BUG/MINOR: mux-h1: Make format errors during output formatting fatal
9517 - BUG/MEDIUM: ssl: Don't attempt to set alpn if we're not using SSL.
9518 - BUG/MEDIUM: mux-h1: Always release H1C if a shutdown for writes was reported
9519 - BUG/MINOR: mworker/cli: don't output a \n before the response
9520 - BUG/MEDIUM: checks: unblock signals in external checks
9521 - BUG/MINOR: mux-h1: Skip trailers for non-chunked outgoing messages
9522 - BUG/MINOR: mux-h1: Don't return the empty chunk on HEAD responses
9523 - BUG/MEDIUM: connections: Always call shutdown, with no linger.
9524 - BUG/MEDIUM: checks: Make sure the tasklet won't run if the connection is closed.
9525 - BUG/MINOR: contrib/prometheus-exporter: Don't use channel_htx_recv_max()
9526 - BUG/MINOR: hlua: Don't use channel_htx_recv_max()
9527 - BUG/MEDIUM: channel/htx: Use the total HTX size in channel_htx_recv_limit()
9528 - BUG/MINOR: hlua/htx: Respect the reserve when HTX data are sent
9529 - BUG/MINOR: contrib/prometheus-exporter: Respect the reserve when data are sent
9530 - BUG/MEDIUM: connections: Make sure we're unsubscribe before upgrading the mux.
9531 - BUG/MEDIUM: servers: Authorize tfo in default-server.
9532 - BUG/MEDIUM: sessions: Don't keep an extra idle connection in sessions.
9533 - MINOR: server: Add "no-tfo" option.
9534 - BUG/MINOR: contrib/prometheus-exporter: Don't try to add empty data blocks
9535 - MINOR: action: Add the return code ACT_RET_DONE for actions
9536 - BUG/MEDIUM: http/applet: Finish request processing when a service is registered
9537 - BUG/MEDIUM: lb_fas: Don't test the server's lb_tree from outside the lock
9538 - BUG/MEDIUM: mux-h1: Handle TUNNEL state when outgoing messages are formatted
9539 - BUG/MINOR: mux-h1: Don't process input or ouput if an error occurred
9540 - MINOR: stream-int: Factorize processing done after sending data in si_cs_send()
9541 - BUG/MEDIUM: stream-int: Don't rely on CF_WRITE_PARTIAL to unblock opposite si
9542 - DOC: contrib: spoa_server Add some hints for building spoa_server
9543 - DOC: Fix typo in intro.txt
9544 - BUG/MEDIUM: servers: Don't forget to set srv_cs to NULL if we can't reuse it.
9545 - BUG/MINOR: ssl: revert empty handshake detection in OpenSSL <= 1.0.2
9546 - MINOR: pools: release the pool's lock during the malloc/free calls
9547 - MINOR: pools: always pre-initialize allocated memory outside of the lock
9548 - MINOR: pools: make the thread harmless during the mmap/munmap syscalls
9549 - BUG/MEDIUM: fd/threads: fix excessive CPU usage on multi-thread accept
9550 - BUG/MINOR: server: Be really able to keep "pool-max-conn" idle connections
9551 - BUG/MEDIUM: checks: Don't attempt to read if we destroyed the connection.
9552 - BUG/MEDIUM: da: cast the chunk to string.
9553 - DOC: Fix typos and grammer in configuration.txt
9554 - CLEANUP: proto_tcp: Remove useless header inclusions.
9555 - BUG/MEDIUM: servers: Fix a race condition with idle connections.
9556 - MINOR: task: introduce work lists
9557 - BUG/MAJOR: listener: fix thread safety in resume_listener()
9558 - BUG/MEDIUM: mux-h1: Don't release h1 connection if there is still data to send
9559 - BUG/MINOR: mux-h1: Correctly report Ti timer when HTX and keepalives are used
9560 - BUG/MEDIUM: streams: Don't give up if we couldn't send the request.
9561 - BUG/MEDIUM: streams: Don't redispatch with L7 retries if redispatch isn't set.
9562 - BUG/MINOR: mux-pt: do not pretend there's more data after a read0
9563 - BUG/MEDIUM: tcp-check: unbreak multiple connect rules again
9564 - MEDIUM: mworker-prog: Add user/group options to program section
9565 - REGTESTS: checks: tcp-check connect to multiple ports
9566 - BUG/MEDIUM: threads: cpu-map designating a single thread/process are ignored
9567
Willy Tarreau9dc6b972019-06-16 21:49:47 +020095682019/06/16 : 2.1-dev0
9569 - exact copy of 2.0.0
9570
Willy Tarreauba236302019-06-16 20:00:26 +020095712019/06/16 : 2.0.0
9572 - MINOR: fd: Don't use atomic operations when it's not needed.
9573 - DOC: mworker-prog: documentation for the program section
9574 - MINOR: http: add a new "http-request replace-uri" action
9575 - BUG/MINOR: 51d/htx: The _51d_fetch method, and the methods it calls are now HTX aware.
9576 - MINOR: 51d: Added dummy libraries for the 51Degrees module for testing.
9577 - MINOR: mworker: change formatting in uptime field of "show proc"
9578 - MINOR: mworker: add the HAProxy version in "show proc"
9579 - MINOR: doc: Remove -Ds option in man page
9580 - MINOR: doc: add master-worker in the man page
9581 - MINOR: doc: mention HAPROXY_LOCALPEER in the man
9582 - BUILD: Silence gcc warning about unused return value
9583 - CLEANUP: 51d: move the 51d dummy lib to contrib/51d/src to match the real lib
9584 - BUILD: travis-ci: add 51Degree device detection, update openssl to 1.1.1c
9585 - MINOR: doc: update the manpage and usage message about -S
9586 - BUILD/MINOR: 51d: Updated build registration output to indicate thatif the library is a dummy one or not.
9587 - BUG/MEDIUM: h1: Don't wait for handshake if we had an error.
9588 - BUG/MEDIUM: h1: Wait for the connection if the handshake didn't complete.
9589 - BUG/MINOR: task: prevent schedulable tasks from starving under high I/O activity
9590 - BUG/MINOR: fl_trace/htx: Be sure to always forward trailers and EOM
9591 - BUG/MINOR: channel/htx: Call channel_htx_full() from channel_full()
9592 - BUG/MINOR: http: Use the global value to limit the number of parsed headers
9593 - BUG/MINOR: htx: Detect when tail_addr meet end_addr to maximize free rooms
9594 - BUG/MEDIUM: htx: Don't change position of the first block during HTX analysis
9595 - CLEANUP: channel: Remove channel_htx_fwd_payload() and channel_htx_fwd_all()
9596 - BUG/MEDIUM: proto_htx: Introduce the state ENDING during forwarding
9597 - MINOR: htx: Add 3 flags on the start-line to deal with the request schemes
9598 - MINOR: h2: Set flags about the request's scheme on the start-line
9599 - MINOR: mux-h1: Set flags about the request's scheme on the start-line
9600 - MINOR: mux-h2: Forward clients scheme to servers checking start-line flags
9601 - MEDIUM: server: server-state only rely on server name
9602 - CLEANUP: connection: rename the wait_event.task field to .tasklet
9603 - CLEANUP: tasks: rename task_remove_from_tasklet_list() to tasklet_remove_*
9604 - BUG/MEDIUM: connections: Don't call shutdown() if we want to disable linger.
9605 - DOC: add some environment variables in section 2.3
9606 - BUILD: makefile: clarify the "help" output and list options
9607 - BUG/MINOR: mux-h1: Wake busy mux for I/O when message is fully sent
9608 - BUG: tasks: fix bug introduced by latest scheduler cleanup
9609 - BUG/MEDIUM: mux-h2: fix early close with option abortonclose
9610 - BUG/MEDIUM: connections: Don't use ALPN to pick mux when in mode TCP.
9611 - BUG/MEDIUM: connections: Don't try to send early data if we have no mux.
9612 - BUG/MEDIUM: mux-h2: properly account for the appended data in HTX
9613 - BUILD: makefile: further clarify the "help" output and list targets
9614 - BUILD: makefile: rename "linux2628" to "linux-glibc" and remove older targets
9615 - BUILD: travis-ci: switch to linux-glibc instead of linux2628
9616 - DOC: update few references to the linux* targets and change them to linux-glibc
9617 - BUILD: makefile: detect and reject recently removed linux targets
9618 - BUILD: makefile: enable linux namespaces by default on linux
9619 - BUILD: makefile: enable TFO on linux platforms
9620 - BUILD: makefile: enable getaddrinfo on the linux-glibc target
9621 - DOC: small updates to the CONTRIBUTING file
9622 - BUG/MEDIUM: ssl: Make sure we initiate the handshake after using early data.
9623 - CLEANUP: removed obsolete examples an move a few to better places
9624 - DOC: Fix typos in CONTRIBUTING
9625 - DOC: update the outdated ROADMAP file
9626 - DOC: create a BRANCHES file to explain the life cycle
9627 - DOC: mention in INSTALL haproxy 2.0 is a long-term supported stable version
9628 - BUILD: travis-ci: TFO and GETADDRINFO are now enabled by default
9629 - BUILD: makefile: make the obsolete target detection compatible with make-3.80
9630 - BUILD: tools: work around an internal compiler bug in gcc-3.4
9631 - BUILD: pattern: work around an internal compiler bug in gcc-3.4
9632 - BUILD: makefile: enable USE_RT on Solaris
9633 - BUILD: makefile: do not use echo -n
9634 - DOC: mention a few common build errors in the INSTALL file
9635
Willy Tarreauca3551f2019-06-11 19:28:00 +020096362019/06/11 : 2.0-dev7
9637 - BUG/MEDIUM: mux-h2: make sure the connection timeout is always set
9638 - MINOR: tools: add new bitmap manipulation functions
9639 - MINOR: logs: use the new bitmap functions instead of fd_sets for encoding maps
9640 - MINOR: chunks: Make sure trash_size is only set once.
9641 - Revert "MINOR: chunks: Make sure trash_size is only set once."
9642 - MINOR: threads: serialize threads initialization
9643 - MINOR peers: data structure simplifications for server names dictionary cache.
9644 - DOC: peers: Update for dictionary cache entries for peers protocol.
9645 - MINOR: dict: Store the length of the dictionary entries.
9646 - MINOR: peers: A bit of optimization when encoding cached server names.
9647 - MINOR: peers: Optimization for dictionary cache lookup.
9648 - MEDIUM: tools: improve time format error detection
9649 - BUG/MEDIUM: H1: When upgrading, make sure we don't free the buffer too early.
9650 - BUG/MEDIUM: stream_interface: Make sure we call si_cs_process() if CS_FL_EOI.
9651 - MINOR: threads: avoid clearing harmless twice in thread_release()
9652 - MEDIUM: threads: add thread_sync_release() to synchronize steps
9653 - BUG/MEDIUM: init/threads: prevent initialized threads from starting before others
9654 - OPTIM/MINOR: init/threads: only call protocol_enable_all() on first thread
9655 - BUG/MINOR: dict: race condition fix when inserting dictionary entries.
9656 - MEDIUM: init/threads: don't use spinlocks during the init phase
9657 - BUG/MINOR: cache/htx: Fix the counting of data already sent by the cache applet
9658 - BUG/MEDIUM: compression/htx: Fix the adding of the last data block
9659 - MINOR: flt_trace: Don't scrash the original offset during the random forwarding
9660 - MAJOR: htx: Rework how free rooms are tracked in an HTX message
9661 - MINOR: htx: Add the function htx_move_blk_before()
9662 - Revert "BUG/MEDIUM: H1: When upgrading, make sure we don't free the buffer too early."
9663 - BUG/MINOR: http-rules: mention "deny_status" for "deny" in the error message
9664 - MINOR: http: turn default error files to HTTP/1.1
9665 - BUG/MEDIUM: h1: Don't try to subscribe if we had a connection error.
9666 - BUG/MEDIUM: h1: Don't consider we're connected if the handshake isn't done.
9667 - MINOR: contrib/spoa_server: Upgrade SPOP to 2.0
9668 - BUG/MEDIUM: contrib/spoa_server: Set FIN flag on agent frames
9669 - MINOR: contrib/spoa_server: Add random IP score
9670 - DOC/MINOR: contrib/spoa_server: Fix typo in README
9671
Willy Tarreaub57f1092019-06-07 06:12:59 +020096722019/06/07 : 2.0-dev6
9673 - BUG/MEDIUM: connection: fix multiple handshake polling issues
9674 - MINOR: connection: also stop receiving after a SOCKS4 response
9675 - MINOR: mux-h1: don't try to recv() before the connection is ready
9676 - BUG/MEDIUM: mux-h1: only check input data for the current stream, not next one
9677 - MEDIUM: mux-h1: don't use CS_FL_REOS anymore
9678 - CLEANUP: connection: remove the now unused CS_FL_REOS flag
9679 - CONTRIB: debug: add 4 missing connection/conn_stream flags
9680 - MEDIUM: stream: make a full process_stream() loop when completing I/O on exit
9681 - MINOR: server: increase the default pool-purge-delay to 5 seconds
9682 - BUILD: tools: do not use the weak attribute for trace() on obsolete linkers
9683 - BUG/MEDIUM: vars: make sure the scope is always valid when accessing vars
9684 - BUG/MEDIUM: vars: make the tcp/http unset-var() action support conditions
9685 - BUILD: task: fix a build warning when threads are disabled
9686 - CLEANUP: peers: Remove tabs characters.
9687 - CLEANUP: peers: Replace hard-coded values by macros.
9688 - BUG/MINOR: peers: Wrong stick-table update message building.
9689 - MINOR: dict: Add dictionary new data structure.
9690 - MINOR: peers: Add a LRU cache implementation for dictionaries.
9691 - MINOR: stick-table: Add "server_name" new data type.
9692 - MINOR: cfgparse: Space allocation for "server_name" stick-table data type.
9693 - MINOR: proxy: Add a "server by name" tree to proxy.
9694 - MINOR: server: Add a dictionary for server names.
9695 - MINOR: stream: Stickiness server lookup by name.
9696 - MINOR: peers: Make peers protocol support new "server_name" data type.
9697 - MINOR: stick-table: Make the CLI stick-table handler support dictionary entry data type.
9698 - REGTEST: Add a basic server by name stickiness reg test.
9699 - MINOR: peers: Add dictionary cache information to "show peers" CLI command.
9700 - MINOR: peers: Replace hard-coded for peer protocol 64-bits value encoding by macros.
9701 - MINOR: peers: Replace hard-coded values for peer protocol messaging by macros.
9702 - CLEANUP: ssl: remove unneeded defined(OPENSSL_IS_BORINGSSL)
9703 - BUILD: travis-ci improvements
9704 - MINOR: SSL: add client/server random sample fetches
9705 - BUG/MINOR: channel/htx: Don't alter channel during forward for empty HTX message
9706 - BUG/MINOR: contrib/prometheus-exporter: Add HTX data block in one time
9707 - BUG/MINOR: mux-h1: errflag must be set on H1S and not H1M during output processing
9708 - MEDIUM: mux-h1: refactor output processing
9709 - MINOR: mux-h1: Add the flag HAVE_O_CONN on h1s
9710 - MINOR: mux-h1: Add h1_eval_htx_hdrs_size() to estimate size of the HTX headers
9711 - MINOR: mux-h1: Don't count the EOM in the estimated size of headers
9712 - MEDIUM: cache/htx: Always store info about HTX blocks in the cache
9713 - MEDIUM: htx: Add the parsing of trailers of chunked messages
9714 - MINOR: htx: Don't use end-of-data blocks anymore
9715 - BUG/MINOR: mux-h1: Don't send more data than expected
9716 - BUG/MINOR: flt_trace/htx: Only apply the random forwarding on the message body.
9717 - BUG/MINOR: peers: Wrong "server_name" decoding.
9718 - BUG/MEDIUM: servers: Don't attempt to destroy idle connections if disabled.
9719 - MEDIUM: checks: Make sure we unsubscribe before calling cs_destroy().
9720 - MEDIUM: connections: Wake the upper layer even if sending/receiving is disabled.
9721 - MEDIUM: ssl: Handle subscribe by itself.
9722 - MINOR: ssl: Make ssl_sock_handshake() static.
9723 - MINOR: connections: Add a new xprt method, remove_xprt.
9724 - MINOR: connections: Add a new xprt method, add_xprt().
9725 - MEDIUM: connections: Introduce a handshake pseudo-XPRT.
9726 - MEDIUM: connections: Remove CONN_FL_SOCK*
9727 - BUG/MEDIUM: ssl: Don't forget to initialize ctx->send_recv and ctx->recv_wait.
9728 - BUG/MINOR: peers: Wrong server name parsing.
9729 - MINOR: server: really increase the pool-purge-delay default to 5 seconds
9730 - BUG/MINOR: stream: don't emit a send-name-header in conn error or disconnect states
9731 - MINOR: stream-int: use bit fields to match multiple stream-int states at once
9732 - MEDIUM: stream-int: remove dangerous interval checks for stream-int states
9733 - MEDIUM: stream-int: introduce a new state SI_ST_RDY
9734 - MAJOR: stream-int: switch from SI_ST_CON to SI_ST_RDY on I/O
9735 - MEDIUM: stream-int: make idle-conns switch to ST_RDY
9736 - MEDIUM: stream: re-arrange the connection setup status reporting
9737 - MINOR: stream-int: split si_update() into si_update_rx() and si_update_tx()
9738 - MINOR: stream-int: make si_sync_send() from the send code of si_update_both()
9739 - MEDIUM: stream: rearrange the events to remove the loop
9740 - MEDIUM: stream: only loop on flags relevant to the analysers
9741 - MEDIUM: stream: don't abusively loop back on changes on CF_SHUT*_NOW
9742 - BUILD: stream-int: avoid a build warning in dev mode in si_state_bit()
9743 - BUILD: peers: fix a build warning about an incorrect intiialization
9744 - BUG/MINOR: time: make sure only one thread sets global_now at boot
9745 - BUG/MEDIUM: tcp: Make sure we keep the polling consistent in tcp_probe_connect.
9746
Willy Tarreauabc874e2019-06-02 12:06:08 +020097472019/06/02 : 2.0-dev5
9748 - BUILD: watchdog: use si_value.sival_int, not si_int for the timer's value
9749 - BUILD: signals: FreeBSD has SI_LWP instead of SI_TKILL
9750 - BUILD: watchdog: condition it to USE_RT
9751 - MINOR: raw_sock: report global traffic statistics
9752 - MINOR: stats: report the global output bit rate in human readable form
9753 - BUG/MINOR: proto-htx: Try to keep connections alive on redirect
9754 - BUG/MEDIUM: spoe: Don't use the SPOE applet after releasing it
9755 - BUG/MINOR: lua: Set right direction and flags on new HTTP objects
9756 - BUG/MINOR: mux-h2: Count EOM in bytes sent when a HEADERS frame is formatted
9757 - BUG/MINOR: mux-h1: Report EOI instead EOS on parsing error or H2 upgrade
9758 - BUG/MEDIUM: proto-htx: Not forward too much data when 1xx reponses are handled
9759 - BUG/MINOR: htx: Remove a forgotten while loop in htx_defrag()
9760 - DOC: fix typos
9761 - BUG/MINOR: ssl_sock: Fix memory leak when disabling compression
9762 - OPTIM: freq-ctr: don't take the date lock for most updates
9763 - MEDIUM: mux-h2: avoid doing expensive buffer realigns when not absolutely needed
9764 - CLEANUP: debug: remove the TRACE() macro
9765 - MINOR: buffer: introduce b_make() to make a buffer from its parameters
9766 - MINOR: buffer: add a new buffer ring API to manipulate rings of buffers
9767 - MEDIUM: mux-h2: replace all occurrences of mbuf with a buffer ring
9768 - MEDIUM: mux-h2: make the conditions to send based on mbuf, not just its tail
9769 - MINOR: mux-h2: introduce h2_release_mbuf() to release all buffers in the mbuf ring
9770 - MEDIUM: mux-h2: make the send() function iterate over all mux buffers
9771 - CLEANUP: mux-h2: consistently use a local variable for the mbuf
9772 - MINOR: mux-h2: report the mbuf's head and tail in "show fd"
9773 - MAJOR: mux-h2: switch to next mux buffer on buffer full condition.
9774 - BUILD: connections: shut up gcc about impossible out-of-bounds warning
9775 - BUILD: ssl: fix latest LibreSSL reg-test error
9776 - MINOR: cli/activity: remove "fd_del" and "fd_skip" from show activity
9777 - MINOR: cli/activity: add 3 general purpose counters in development mode
9778 - BUG/MAJOR: lb/threads: make sure the avoided server is not full on second pass
9779 - BUG/MEDIUM: queue: fix the tree walk in pendconn_redistribute.
9780 - BUG/MEDIUM: threads: fix double-word CAS on non-optimized 32-bit platforms
9781 - MEDIUM: config: now alert when two servers have the same name
9782 - MINOR: htx: Remove the macro IS_HTX_SMP() and always use IS_HTX_STRM() instead
9783 - MINOR: htx: Move the macro IS_HTX_STRM() in proto/stream.h
9784 - MINOR: htx: Store the head position instead of the wrap one
9785 - MINOR: htx: Store start-line block's position instead of address of its payload
9786 - MINOR: htx: Add functions to get the first block of an HTX message
9787 - MINOR: mux-h2/htx: Get the start-line from the head when HEADERS frame is built
9788 - MINOR: htx: Replace the function http_find_stline() by http_get_stline()
9789 - CLEANUP: htx: Remove unused function htx_get_stline()
9790 - MINOR: http/htx: Use sl_pos directly to replace the start-line
9791 - MEDIUM: http/htx: Perform analysis relatively to the first block
9792 - MINOR: channel/htx: Call channel_htx_recv_max() from channel_recv_max()
9793 - MINOR: htx: Add function htx_get_max_blksz()
9794 - BUG/MINOR: htx: Change htx_xfer_blk() to also count metadata
9795 - MEDIUM: mux-h1: Use the count value received from the SI in h1_rcv_buf()
9796 - MINOR: mux-h2: Use the count value received from the SI in h2_rcv_buf()
9797 - MINOR: stream-int: Don't use the flag CO_RFL_KEEP_RSV anymore in si_cs_recv()
9798 - MINOR: connection: Remove the unused flag CO_RFL_KEEP_RSV
9799 - MINOR: mux-h2/htx: Support zero-copy when possible in h2_rcv_buf()
9800 - MINOR: htx: Add a field to set the memory used by headers in the HTX start-line
9801 - MINOR: h2/htx: Set hdrs_bytes on the SL when an HTX message is produced
9802 - MINOR: mux-h1: Set hdrs_bytes on the SL when an HTX message is produced
9803 - MINOR: htx: Be sure to xfer all headers in one time in htx_xfer_blks()
9804 - MEDIUM: htx: 1xx messages are now part of the final reponses
9805 - MINOR: channel/htx: Add function to forward headers of an HTX message
9806 - MINOR: filters/htx: Use channel_htx_fwd_headers() after headers filtering
9807 - MINOR: proto-htx: Use channel_htx_fwd_headers() to forward 1xx responses
9808 - MEDIUM: htx: Store the first block position instead of the start-line one
9809 - MINOR: stats/htx: don't use the first block position but the head one
9810 - MINOR: channel/htx: Add functions to forward a part or all HTX payload
9811 - MINOR: proto-htx: Use channel_htx_fwd_all() when unfiltered body are forwarded
9812 - MEDIUM: filters/htx: Filter body relatively to the first block
9813 - MINOR: htx: Optimize htx_drain() when all data are drained
9814 - MINOR: htx: don't rely on htx_find_blk() anymore in the function htx_truncate()
9815 - MINOR: htx: remove the unused function htx_find_blk()
9816 - MINOR: htx: Remove support of pseudo headers because it is unused
9817 - BUG/MEDIUM: http: fix "http-request reject" when not final
9818 - MINOR: ssl: Make sure the underlying xprt's init method doesn't fail.
9819 - MINOR: ssl: Don't forget to call the close method of the underlying xprt.
9820 - MINOR: htx: rename htx_append_blk_value() to htx_add_data_atonce()
9821 - MINOR: htx: make htx_add_data() return the transmitted byte count
9822 - MEDIUM: htx: make htx_add_data() never defragment the buffer
9823 - MINOR: activity: write totals on the "show activity" output
9824 - MINOR: activity: report totals and average separately
9825 - MEDIUM: poller: separate the wait time from the wake events
9826 - MINOR: activity: report the number of failed pool/buffer allocations
9827 - MEDIUM: buffers: relax the buffer lock a little bit
9828 - MINOR: task: turn the WQ lock to an RW_LOCK
9829 - MEDIUM: task: don't grab the WR lock just to check the WQ
9830 - BUG/MEDIUM: mux-h1: Don't skip the TCP splicing when there is no more data to read
9831 - MEDIUM: sessions: Introduce session flags.
9832 - BUG/MEDIUM: h2: Don't forget to set h2s->cs to NULL after having free'd cs.
9833 - BUG/MEDIUM: mux-h2: fix the conditions to end the h2_send() loop
9834 - BUG/MEDIUM: mux-h2: don't refrain from offering oneself a used buffer
9835 - BUG/MEDIUM: connection: Use the session to get the origin address if needed.
9836 - MEDIUM: tasks: Get rid of active_tasks_mask.
9837 - MEDIUM: connection: Upstream SOCKS4 proxy support
9838 - BUILD: contrib/prometheus: fix build breakage caused by move of idle_pct
9839 - BUG/MINOR: deinit/threads: make hard-stop-after perform a clean exit
9840
Willy Tarreau56740692019-05-22 20:48:33 +020098412019/05/22 : 2.0-dev4
9842 - BUILD: enable freebsd builds on cirrus-ci
9843 - BUG/MINOR: http_fetch: Rely on the smp direction for "cookie()" and "hdr()"
9844 - MEDIUM: Make 'option forceclose' actually warn
9845 - MEDIUM: Make 'resolution_pool_size' directive fatal
9846 - DOC: management: place "show activity" at the right place
9847 - MINOR: cli/activity: show the dumping thread ID starting at 1
9848 - MINOR: task: export global_task_mask
9849 - MINOR: cli/debug: add a thread dump function
9850 - BUG/MEDIUM: streams: Don't use CF_EOI to decide if the request is complete.
9851 - BUG/MEDIUM: streams: Try to L7 retry before aborting the connection.
9852 - BUG/MINOR: debug: make ha_task_dump() always check the task before dumping it
9853 - BUG/MINOR: debug: make ha_task_dump() actually dump the requested task
9854 - MINOR: debug: make ha_thread_dump() and ha_task_dump() take a buffer
9855 - BUG/MINOR: debug: don't check the call date on tasklets
9856 - MINOR: thread: implement ha_thread_relax()
9857 - MINOR: task: put barriers after each write to curr_task
9858 - MINOR: task: always reset curr_task when freeing a task or tasklet
9859 - MINOR: stream: detach the stream from its own task on stream_free()
9860 - MEDIUM: debug/threads: implement an advanced thread dump system
9861 - REGTEST: extend the check duration on tls_health_checks and mark it slow
9862 - DOC: fix "successful" typo
9863 - MINOR: init: setenv HAPROXY_CFGFILES
9864 - MINOR: threads/init: synchronize the threads startup
9865 - MEDIUM: init/mworker: make the pipe register function a regular initcall
9866 - CLEANUP: memory: make the fault injection code use the OTHER_LOCK label
9867 - CLEANUP: threads: remove the now unused START_LOCK label
9868 - MINOR: init/threads: make the global threads an array of structs
9869 - MINOR: threads: add each thread's clockid into the global thread_info
9870 - CLEANUP: stream: remove an obsolete debugging test
9871 - MINOR: tools: add dump_hex()
9872 - MINOR: debug: implement ha_panic()
9873 - MINOR: debug/cli: add some debugging commands for developers
9874 - MINOR: tools: provide a may_access() function and make dump_hex() use it
9875 - MINOR: debug: make ha_panic() report threads starting at 1
9876 - REORG: compat: move some integer limit definitions from standard.h to compat.h
9877 - REORG: threads: move the struct thread_info from global.h to hathreads.h
9878 - MINOR: compat: make sure to always define clockid_t
9879 - MINOR: threads: always place the clockid in the struct thread_info
9880 - MINOR: threads: add a thread-local thread_info pointer "ti"
9881 - MINOR: time: move the cpu, mono, and idle time to thread_info
9882 - MINOR: time: add a function to retrieve another thread's cputime
9883 - MINOR: debug: report each thread's cpu usage in "show thread"
9884 - BUILD: threads: only assign the clock_id when supported
9885 - BUILD: makefile: use USE_OBSOLETE_LINKER for solaris
9886 - BUILD: makefile: remove -fomit-frame-pointer optimisation (solaris)
9887 - MAJOR: polling: add event ports support (Solaris)
9888 - BUG/MEDIUM: streams: Don't switch from SI_ST_CON to SI_ST_DIS on read0.
9889 - CLEANUP: time: refine the test on _POSIX_TIMERS
9890 - MINOR: compat: define a new empty type empty_t for non-implemented fields
9891 - CLEANUP: time: switch clockid_t to empty_t when not available
9892 - BUG/MINOR: mworker: Fix memory leak of mworker_proc members
9893 - CLEANUP: objtype: make obj_type() and obj_type_name() take consts
9894 - MINOR: debug: switch to SIGURG for thread dumps
9895 - CLEANUP: threads: really move thread_info to hathreads.c
9896 - MINOR: threads: make threads_{harmless|want_rdv}_mask constant 0 without threads
9897 - CLEANUP: debug: always report harmless/want_rdv even without threads
9898 - MINOR: threads: implement ha_tkill() and ha_tkillall()
9899 - CLEANUP: debug: make use of ha_tkill() and remove ifdefs
9900 - MINOR: stream: introduce a stream_dump() function and use it in stream_dump_and_crash()
9901 - MINOR: debug: dump streams when an applet, iocb or stream is known
9902 - MINOR: threads: add a "stuck" flag to the thread_info struct
9903 - MINOR: threads: add a timer_t per thread in thread_info
9904 - MAJOR: watchdog: implement a thread lockup detection mechanism
9905 - MINOR: stream: remove the cpu time detection from process_stream()
9906 - MINOR: connection: report the mux names in "haproxy -vv"
9907 - CLEANUP: mux-h1: use "H1" and not "h1" as the mux's name
9908 - BUG/MEDIUM: WURFL: segfault in wurfl-get() with missing info.
9909 - MINOR: WURFL: call header_retireve_callback() in dummy library
9910 - MINOR: WURFL: fixed Engine load failed error when wurfl-information-list contains wurfl_root_id
9911 - MINOR: WURFL: shows log messages during module initialization
9912 - MINOR: WURFL: removes heading wurfl-information-separator from wurfl-get-all() and wurfl-get() results
9913 - MINOR: WURFL: wurfl_get() and wurfl_get_all() now return an empty string if device detection fails
9914 - MEDIUM: WURFL: HTX awareness.
9915 - MINOR: WURFL: module version bump to 2.0
9916 - MINOR: WURFL: do not emit warnings when not configured
9917 - CONTRIB: wurfl: address 3 build issues in the wurfl dummy library
9918 - BUG/MEDIUM: init/threads: provide per-thread alloc/free function callbacks
9919 - BUILD: travis: add sanitizers to travis-ci builds
9920 - BUILD: time: remove the test on _POSIX_C_SOURCE
9921 - CLEANUP: build: rename some build macros to use the USE_* ones
9922 - CLEANUP: raw_sock: remove support for very old linux splice bug workaround
9923 - BUG/MEDIUM: dns: make the port numbers unsigned
9924 - MEDIUM: config: deprecate the antique req* and rsp* commands
9925
Willy Tarreaua257a9b2019-05-15 16:51:48 +020099262019/05/15 : 2.0-dev3
9927 - BUG/MINOR: peers: Really close the sessions with no heartbeat.
9928 - CLEANUP: peers: remove useless annoying tabulations.
9929 - CLEANUP: peers: replace timeout constants by macros.
9930 - REGTEST: Enable again reg tests with HEAD HTTP method usage.
9931 - DOC: The option httplog is no longer valid in a backend.
9932 - DOC: peers: Peers protocol documentation update.
9933 - REGTEST: remove unexpected "nbthread" statement from Lua test cases
9934 - BUILD: Makefile: remove 11-years old workarounds for deprecated options
9935 - BUILD: remove 10-years old error message for obsolete option USE_TCPSPLICE
9936 - BUILD: Makefile: remove outdated support for dlmalloc
9937 - BUILD: Makefile: consider a variable's origin and not its value for the options list
9938 - BUILD: Makefile: also report disabled options in the BUILD_OPTIONS variable
9939 - BUILD: Makefile: shorten default settings declaration
9940 - BUILD: Makefile: clean up the target declarations
9941 - BUILD: report the whole feature set with their status in haproxy -vv
9942 - BUILD: pass all "USE_*" variables as -DUSE_* to the compiler
9943 - REGTEST: script: make the script use the new features list
9944 - REGTEST: script: remove platform-specific assigments of OPTIONS
9945 - BUG/MINOR: peers: Missing initializations after peer session shutdown.
9946 - BUG/MINOR: contrib/prometheus-exporter: Fix applet accordingly to recent changes
9947 - BUILD/MINOR: listener: Silent a few signedness warnings.
9948 - BUG/MINOR: mux-h1: Only skip invalid C-L headers on output
9949 - BUG/MEDIUM: mworker: don't free the wrong child when not found
9950 - BUG/MEDIUM: checks: Don't bother subscribing if we have a connection error.
9951 - BUG/MAJOR: checks: segfault during tcpcheck_main
9952 - BUILD: makefile: work around an old bug in GNU make-3.80
9953 - BUILD: makefile: work around another bug in make 3.80
9954 - BUILD: http: properly mark some struct as extern
9955 - BUILD: chunk: properly declare pool_head_trash as extern
9956 - BUILD: cache: avoid a build warning with some compilers/linkers
9957 - MINOR: tools: make memvprintf() never pass a NULL target to vsnprintf()
9958 - MINOR: tools: add an unsetenv() implementation
9959 - BUILD: re-implement an initcall variant without using executable sections
9960 - BUILD: use inttypes.h instead of stdint.h
9961 - BUILD: connection: fix naming of ip_v field
9962 - BUILD: makefile: fix build of IPv6 header on aix51
9963 - BUILD: makefile: add _LINUX_SOURCE_COMPAT to build on AIX-51
9964 - BUILD: define unsetenv on AIX 5.1
9965 - BUILD: Makefile: disable shared cache on AIX 5.1
9966 - MINOR: ssl: Add aes_gcm_dec converter
9967 - REORG: mworker: move serializing functions to mworker.c
9968 - REORG: mworker: move signals functions to mworker.c
9969 - REORG: mworker: move IPC functions to mworker.c
9970 - REORG: mworker: move signal handlers and related functions
9971 - REORG: mworker: move mworker_cleanlisteners to mworker.c
9972 - MINOR: mworker: calloc mworker_proc structures
9973 - MINOR: mworker: don't use children variable anymore
9974 - MINOR: cli: export cli_parse_default() definition in cli.h
9975 - REORG: mworker/cli: move CLI functions to mworker.c
9976 - MEDIUM: mworker-prog: implement program for master-worker
9977 - MINOR: mworker/cli: show programs in 'show proc'
9978 - BUG/MINOR: cli: correctly handle abns in 'show cli sockets'
9979 - MINOR: cli: start addresses by a prefix in 'show cli sockets'
9980 - MINOR: cli: export HAPROXY_CLI environment variable
9981 - BUG/MINOR: htx: Preserve empty HTX messages with an unprocessed parsing error
9982 - BUG/MINOR: proto_htx: Reset to_forward value when a message is set to DONE
9983 - REGTEST: http-capture/h00000: Relax a regex matching the log message
9984 - REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled
9985 - REGTEST: http-rules/h00003: Use a different client for requests expecting a 301
9986 - REGTEST: log/b00000: Be sure the client always hits its timeout
9987 - REGTEST: lua/b00003: Relax the regex matching the log message
9988 - REGTEST: lua/b00003: Specify the HAProxy pid when the command ss is executed
9989 - BUG/MEDIUM: peers: fix a case where peer session is not cleanly reset on release.
9990 - BUG/MEDIUM: h2: Don't attempt to recv from h2_process_demux if we subscribed.
9991 - BUG/MEDIUM: htx: fix random premature abort of data transfers
9992 - BUG/MEDIUM: streams: Don't remove the SI_FL_ERR flag in si_update_both().
9993 - BUG/MEDIUM: streams: Store prev_state before calling si_update_both().
9994 - BUG/MEDIUM: stream: Don't clear the stream_interface flags in si_update_both.
9995 - MINOR: initcall: Don't forget to define the __start/stop_init_##stg symbols.
9996 - MINOR: threads: Implement thread_cpus_enabled() for FreeBSD.
9997 - BUG/MEDIUM: pattern: assign pattern IDs after checking the config validity
9998 - MINOR: skip get_gmtime where tm is unused
9999 - MINOR: ssl: Activate aes_gcm_dec converter for BoringSSL
10000 - BUG/MEDIUM: streams: Only re-run process_stream if we're in a connected state.
10001 - BUG/MEDIUM: stream_interface: Don't bother doing chk_rcv/snd if not connected.
10002 - BUG/MEDIUM: task/threads: address a fairness issue between local and global tasks
10003 - BUG/MINOR: tasks: make sure the first task to be queued keeps its nice value
10004 - BUG/MINOR: listener: renice the accept ring processing task
10005 - MINOR: cli/listener: report the number of accepts on "show activity"
10006 - MINOR: cli/activity: report the accept queue sizes in "show activity"
10007 - BUG/MEDIUM: spoe: Queue message only if no SPOE applet is attached to the stream
10008 - BUG/MEDIUM: spoe: Return an error if nothing is encoded for fragmented messages
10009 - BUG/MINOR: spoe: Be sure to set tv_request when each message fragment is encoded
10010 - BUG/MEDIUM: htx: Defrag if blocks position is changed and the payloads wrap
10011 - BUG/MEDIUM: htx: Don't crush blocks payload when append is done on a data block
10012 - MEDIUM: htx: Deprecate the option 'http-tunnel' and ignore it in HTX
10013 - MINOR: proto_htx: Don't adjust transaction mode anymore in HTX analyzers
10014 - BUG/MEDIUM: htx: Fix the process of HTTP CONNECT with h2 connections
10015 - MINOR: mux-h1: Simplify handling of 1xx responses
10016 - MINOR: stats/htx: Don't add "Connection: close" header anymore in stats responses
10017 - MEDIUM: h1: Add an option to sanitize connection headers during parsing
10018 - MEDIUM: mux-h1: Simplify the connection mode management by sanitizing headers
10019 - MINOR: mux-h1: Don't release the conn_stream anymore when h1s is destroyed
10020 - BUG/MINOR: mux-h1: Handle the flag CS_FL_KILL_CONN during a shutdown read/write
10021 - MINOR: mux-h2: Add a mux_ops dedicated to the HTX mode
10022 - MINOR: muxes: Add a flag to specify a multiplexer uses the HTX
10023 - MINOR: stream: Set a flag when the stream uses the HTX
10024 - MINOR: http: update the macro IS_HTX_STRM() to check the stream flag SF_HTX
10025 - MINOR: http_fetch/htx: Use stream flags instead of px mode in smp_prefetch_htx
10026 - MINOR: filters/htx: Use stream flags instead of px mode to instanciate a filter
10027 - MINOR: muxes: Rely on conn_is_back() during init to handle front/back conn
10028 - MEDIUM: muxes: Add an optional input buffer during mux initialization
10029 - MINOR: muxes: Pass the context of the mux to destroy() instead of the connection
10030 - MEDIUM: muxes: Be prepared to don't own connection during the release
10031 - MEDIUM: connection: Add conn_upgrade_mux_fe() to handle mux upgrades
10032 - MEDIUM: htx: Allow the option http-use-htx to be used on TCP proxies too
10033 - MAJOR: proxy/htx: Handle mux upgrades from TCP to HTTP in HTX mode
10034 - MAJOR: muxes/htx: Handle inplicit upgrades from h1 to h2
10035 - MAJOR: htx: Enable the HTX mode by default for all proxies
10036 - REGTEST: Use HTX by default and add '--no-htx' option to disable it
10037 - BUG/MEDIUM: muxes: Don't dereference mux context if null in release functions
10038 - CLEANUP: task: do not export rq_next anymore
10039 - MEDIUM: tasks: improve fairness between the local and global queues
10040 - MEDIUM: tasks: only base the nice offset on the run queue depth
10041 - MINOR: tasks: restore the lower latency scheduling when niced tasks are present
10042 - BUG/MEDIUM: map: Fix memory leak in the map converter
10043 - BUG/MINOR: ssl: Fix 48 byte TLS ticket key rotation
10044 - BUILD: task/thread: fix single-threaded build of task.c
10045 - BUILD: cli/threads: fix build in single-threaded mode
10046 - BUG/MEDIUM: muxes: Make sure we unsubcribed when destroying mux ctx.
10047 - BUG/MEDIUM: h2: Make sure we're not already in the send_list in h2_subscribe().
10048 - BUG/MEDIUM: h2: Revamp the way send subscriptions works.
10049 - MINOR: connections: Remove the SUB_CALL_UNSUBSCRIBE flag.
10050 - BUG/MEDIUM: Threads: Only use the gcc >= 4.7 builtins when using gcc >= 4.7.
10051 - BUILD: address a few cases of "static <type> inline foo()"
10052 - BUILD: do not specify "const" on functions returning structs or scalars
10053 - BUILD: htx: fix a used uninitialized warning on is_cookie2
10054 - MINOR: peers: Add a new command to the CLI for peers.
10055 - DOC: update for "show peers" CLI command.
10056 - BUG/MAJOR: lb/threads: fix insufficient locking on round-robin LB
10057 - MEDIUM: mworker: store the leaving state of a process
10058 - MEDIUM: mworker-prog: implements 'option start-on-reload'
10059 - CLEANUP: mworker: remove the type field in mworker_proc
10060 - MEDIUM: mworker/cli: export the HAPROXY_MASTER_CLI variable
10061 - MINOR: cli: don't add a semicolon at the end of HAPROXY_CLI
10062 - MINOR: mworker: export HAPROXY_MWORKER=1 when running in mworker mode
10063 - MINOR: init: add a "set-dumpable" global directive to enable core dumps
10064 - BUG/MINOR: listener/mq: correctly scan all bound threads under low load
10065 - BUG/MINOR: mworker: mworker_kill should apply on every children
10066 - BUG/MINOR: mworker: don't exit with an ambiguous value
10067 - BUG/MINOR: mworker: ensure that we still quits with SIGINT
10068 - REGTESTS: exclude tests that require ssl, pcre if no such feature is enabled
10069 - BUG/MINOR: mux-h1: Process input even if the input buffer is empty
10070 - BUG/MINOR: mux-h1: Don't switch the parser in busy mode if other side has done
10071 - BUG/MEDIUM: mux-h1: Notify the stream waiting for TCP splicing if ibuf is empty
10072 - BUG/MEDIUM: mux-h1: Enable TCP splicing to exchange data only
10073 - MINOR: mux-h1: Handle read0 during TCP splicing
10074 - BUG/MEDIUM: htx: Don't return the start-line if the HTX message is empty
10075 - BUG/MAJOR: http_fetch: Get the channel depending on the keyword used
10076 - BUG/MINOR: http_fetch/htx: Allow permissive sample prefetch for the HTX
10077 - BUG/MINOR: http_fetch/htx: Use HTX versions if the proxy enables the HTX mode
10078 - BUG/MEDIUM: tasks: Make sure we set TASK_QUEUED before adding a task to the rq.
10079 - BUG/MEDIUM: tasks: Make sure we modify global_tasks_mask with the rq_lock.
10080 - MINOR: tasks: Don't consider we can wake task with tasklet_wakeup().
10081 - MEDIUM: tasks: No longer use rq.node.leaf_p as a lock.
10082 - MINOR: tasks: Don't set the TASK_RUNNING flag when adding in the tasklet list.
10083 - BUG/MEDIUM: applets: Don't use task_in_rq().
10084 - BUG/MAJOR: task: make sure never to delete a queued task
10085 - MINOR: task/thread: factor out a wake-up condition
10086 - CLEANUP: task: remain consistent when using the task's handler
10087 - MEDIUM: tasks: Merge task_delete() and task_free() into task_destroy().
10088 - MEDIUM: tasks: Don't account a destroyed task as a runned task.
10089 - BUG/MINOR: contrib/prometheus-exporter: Fix a typo in the run-queue metric type
10090 - MINOR: contrib/prometheus-exporter: Remove usless rate metrics
10091 - MINOR: contrib/prometheus-exporter: Rename some metrics to be more usable
10092 - MINOR: contrib/prometheus-exporter: Follow best practices about metrics type
10093 - BUG/MINOR: mworker: disable busy polling in the master process
10094 - MEDIUM: tasks: Use __ha_barrier_store after modifying global_tasks_mask.
10095 - MEDIUM: ssl: Give ssl_sock its own context.
10096 - MEDIUM: connections: Move some fields from struct connection to ssl_sock_ctx.
10097 - MEDIUM: ssl: provide its own subscribe/unsubscribe function.
10098 - MEDIUM: connections: Provide a xprt_ctx for each xprt method.
10099 - MEDIUM: ssl: provide our own BIO.
10100 - BUILD/medium: ssl: Fix build with OpenSSL < 1.1.0
10101 - MINOR: peers: adds counters on show peers about tasks calls.
10102 - MEDIUM: enable travis-ci builds
10103 - MINOR: fd: Add a counter of used fds.
10104 - MEDIUM: connections: Add a way to control the number of idling connections.
10105 - BUG/MEDIUM: maps: only try to parse the default value when it's present
10106 - BUG/MINOR: acl: properly detect pattern type SMP_T_ADDR
10107 - REGTEST: Missing REQUIRE_VERSION declarations.
10108 - MINOR: proto_tcp: tcp-request content: enable set-dst and set-dst-var
10109 - BUG/MEDIUM: h1: Don't parse chunks CRLF if not enough data are available
10110 - BUG/MEDIUM: thread/http: Add missing locks in set-map and add-acl HTTP rules
10111 - BUG/MEDIUM: stream: Don't request a server connection if a shutw was scheduled
10112 - BUG/MINOR: 51d: Get the request channel to call CHECK_HTTP_MESSAGE_FIRST()
10113 - BUG/MINOR: da: Get the request channel to call CHECK_HTTP_MESSAGE_FIRST()
10114 - MINOR: gcc: Fix a silly gcc warning in connect_server()
10115 - MINOR: ssl/cli: async fd io-handlers printable on show fd
10116 - Revert "CLEANUP: wurfl: remove dead, broken and unmaintained code"
10117 - BUILD: add USE_WURFL to the list of known build options
10118 - MINOR: wurfl: indicate in haproxy -vv the wurfl version in use
10119 - BUILD: wurfl: build fix for 1.9/2.0 code base
10120 - CLEANUP: wurfl: removed deprecated methods
10121 - DOC: wurfl: added point of contact in MAINTAINERS file
10122 - MINOR: wurfl: enabled multithreading mode
10123 - MINOR: contrib: dummy wurfl library
10124 - MINOR: dns: dns_requester structures are now in a memory pool
10125 - MINOR: dns: move callback affection in dns_link_resolution()
10126 - MINOR: obj_type: new object type for struct stream
10127 - MINOR: action: new '(http-request|tcp-request content) do-resolve' action
10128 - MINOR: log: Extract some code to send syslog messages.
10129 - REGTEST: replace LEVEL option by a more human readable one.
10130 - REGTEST: rename the reg test files.
10131 - REGTEST: adapt some reg tests after renaming.
10132 - REGTEST: make the "run-regtests" script search for tests in reg-tests by default
10133 - BUG/MAJOR: stream: Missing DNS context initializations.
10134 - BUG/MEDIUM: stream: Fix the way early aborts on the client side are handled
10135 - BUG/MINOR: spoe: Don't systematically wakeup SPOE stream in the applet handler
10136 - BUG/MEDIUM: ssl: Return -1 on recv/send if we got EAGAIN.
10137 - BUG/MAJOR: lb/threads: fix AB/BA locking issue in round-robin LB
10138 - BUG/MAJOR: muxes: Use the HTX mode to find the best mux for HTTP proxies only
10139 - BUG/MINOR: htx: Exclude TCP proxies when the HTX mode is handled during startup
10140 - CLEANUP: task: report calls as unsigned in show sess
10141 - MINOR: tasks/activity: report the context switch and task wakeup rates
10142 - MINOR: stream: measure and report a stream's call rate in "show sess"
10143 - MINOR: applet: measure and report an appctx's call rate in "show sess"
10144 - BUILD: extend Travis CI config to support more platforms
10145 - REGTEST: exclude osx and generic targets for 40be_2srv_odd_health_checks
10146 - REGTEST: relax the IPv6 address format checks in converters_ipmask_concat_strcmp_field_word
10147 - REGTEST: exclude OSX and generic targets from abns_socket.vtc
10148 - BUILD: travis: remove the "allow_failures" entry
10149 - BUG/MINOR: activity: always initialize the profiling variable
10150 - MINOR: activity: make the profiling status per thread and not global
10151 - MINOR: activity: enable automatic profiling turn on/off
10152 - CLEANUP: standard: use proper const to addr_to_str() and port_to_str()
10153 - BUG/MINOR: proto_http: properly reset the stream's call rate on keep-alive
10154 - MINOR: connection: make the debugging helper functions safer
10155 - MINOR: stream/debug: make a stream dump and crash function
10156 - MEDIUM: appctx/debug: force a crash if an appctx spins over itself forever
10157 - MEDIUM: stream/debug: force a crash if a stream spins over itself forever
10158 - MEDIUM: streams: measure processing time and abort when detecting bugs
10159 - BUILD/MEDIUM: contrib: Dummy DeviceAtlas API.
10160 - MEDIUM: da: HTX mode support.
10161 - BUG/MEDIUM: mux-h2: properly deal with too large headers frames
10162 - BUG/MINOR: http: Call stream_inc_be_http_req_ctr() only one time per request
10163 - BUG/MEDIUM: spoe: arg len encoded in previous frag frame but len changed
10164 - MINOR: spoe: Use the sample context to pass frag_ctx info during encoding
10165 - DOC: contrib/modsecurity: Typos and fix the reject example
10166 - BUG/MEDIUM: contrib/modsecurity: If host header is NULL, don't try to strdup it
10167 - MINOR: log: Add "sample" new keyword to "log" lines.
10168 - MINOR: log: Enable the log sampling and load-balancing feature.
10169 - DOC: log: Document the sampling and load-balancing logging feature.
10170 - REGTEST: Add a new reg test for log load-balancing feature.
10171 - BUG/MAJOR: map/acl: real fix segfault during show map/acl on CLI
10172 - REGTEST: Make this reg test be Linux specific.
10173 - CLEANUP: task: move the task_per_thread definition to task.h
10174 - MINOR: activity: report context switch counts instead of rates
10175 - MINOR: threads: Implement HA_ATOMIC_LOAD().
10176 - BUG/MEDIUM: port_range: Make the ring buffer lock-free.
10177 - BUG/MEDIUM: listener: Fix how unlimited number of consecutive accepts is handled
10178 - MINOR: config: Test validity of tune.maxaccept during the config parsing
10179 - CLEANUP: config: Don't alter listener->maxaccept when nbproc is set to 1
10180 - BUG/MEDIUM: servers: fix typo "src" instead of "srv"
10181 - BUG/MEDIUM: ssl: Don't pretend we can retry a recv/send if we got a shutr/w.
10182 - BUG/MINOR: haproxy: fix rule->file memory leak
10183 - BUG/MINOR: log: properly free memory on logformat parse error and deinit()
10184 - BUG/MINOR: checks: free memory allocated for tasklets
10185 - BUG/MEDIUM: pattern: fix memory leak in regex pattern functions
10186 - BUG/MEDIUM: channels: Don't forget to reset output in channel_erase().
10187 - BUG/MEDIUM: connections: Make sure we remove CO_FL_SESS_IDLE on disown.
10188 - MINOR: threads: flatten the per-thread cpu-map
10189 - MINOR: init/threads: remove the useless tids[] array
10190 - MINOR: init/threads: make the threads array global
10191 - BUG/MEDIUM: ssl: Use the early_data API the right way.
10192 - BUG/MEDIUM: streams: Don't add CF_WRITE_ERROR if early data were rejected.
10193 - MEDIUM: streams: Add the ability to retry a request on L7 failure.
10194 - MEDIUM: streams: Add a way to replay failed 0rtt requests.
10195 - MEDIUM: streams: Add a new keyword for retry-on, "junk-response"
10196 - BUG/MINOR: stream: also increment the retry stats counter on L7 retries
10197 - BUG/MEDIUM: checks: make sure the warmup task takes the server lock
10198 - BUG/MINOR: logs/threads: properly split the log area upon startup
10199 - BUILD: extend travis-ci matrix
10200 - CLEANUP: Remove appsession documentation
10201 - DOC: Fix typo in keyword matrix
10202 - BUILD: remove "build_libressl" duplicate declaration
10203 - BUILD: travis-ci: get back to osx without openssl support
10204 - BUILD: enable several LibreSSL hacks, including
10205 - BUILD: temporarily mark LibreSSL builds as allowed to fail
10206 - BUILD: travis: TMPDIR replacement.
10207 - BUG/MEDIUM: ssl: Don't attempt to use early data with libressl.
10208 - MINOR: doc: Document allow-0rtt on the server line.
10209 - MINOR: doc: Document the interaction of allow-0rtt and retry-on 0rtt-rejected.
10210 - MEDIUM: proto: Change the prototype of the connect() method.
10211 - MEDIUM: tcp: add the "tfo" option to support TCP fastopen on the server
10212 - MINOR: config: Extract the code of "stick-table" line parsing.
10213 - BUILD/MINOR: stick-table: Compilation fix.
10214 - MEDIUM: stick-table: Stop handling stick-tables as proxies.
10215 - MINOR: stick-tables: Add peers process binding computing.
10216 - MINOR: stick-table: Add prefixes to stick-table names.
10217 - MINOR: peers: Do not emit global stick-table names.
10218 - DOC: Update for "table" lines in "peers" section.
10219 - REGTEST: Add reg tests for "table" lines in "peers" sections.
10220 - MEDIUM: regex: modify regex_comp() to atomically allocate/free the my_regex struct
10221 - REGTEST: make the tls_health_checks test much faster
10222 - REGTEST: make the "table in peers" test require v2.0
10223 - BUG/MINOR: mux-h2: rely on trailers output not input to turn them to empty data
10224 - BUG/MEDIUM: h2/htx: always fail on too large trailers
10225 - MEDIUM: mux-h2: discard contents that are to be sent after a shutdown
10226 - BUG/MEDIUM: mux-h2/htx: never wait for EOM when processing trailers
10227 - BUG/MEDIUM: h2/htx: never leave a trailers block alone with no EOM block
10228 - REGTEST: Flag some slow reg tests.
10229 - REGTEST: Reg tests file renaming.
10230 - REGTEST: Wrong renaming for one reg test.
10231 - REGTEST: Wrong assumption in IP:port logging test.
10232 - BUG/MINOR: mworker/ssl: close OpenSSL FDs on reload
10233 - MINOR: systemd: Use the variables from /etc/default/haproxy
10234 - MINOR: systemd: Make use of master socket in systemd unit
10235 - MINOR: systemd: support /etc/sysconfig/ for redhat based distrib
10236 - BUG/MEDIUM: stick-table: fix regression caused by a change in proxy struct
10237 - BUG/MEDIUM: tasks: fix possible segfault on task_destroy()
10238 - CLEANUP: task: remove unneeded tests before task_destroy()
10239 - MINOR: mworker: support a configurable maximum number of reloads
10240 - BUG/MINOR: mux-h2: fix the condition to close a cs-less h2s on the backend
10241 - BUG/MEDIUM: spoe: Be sure the sample is found before setting its context
10242 - BUG/MINOR: mux-h1: Fix the parsing of trailers
10243 - BUG/MINOR: htx: Never transfer more than expected in htx_xfer_blks()
10244 - MINOR: htx: Split on DATA blocks only when blocks are moved to an HTX message
10245 - MINOR: htx: Don't try to append a trailer block with the previous one
10246 - MINOR: htx: Remove support for unused OOB HTX blocks
10247 - BUILD: travis-ci bugfixes and improvements
10248 - BUG/MEDIUM: servers: Don't use the same srv flag for cookie-set and TFO.
10249 - BUG/MEDIUM: h2: Make sure we set send_list to NULL in h2_detach().
10250 - BUILD: ssl: fix again a libressl build failure after the openssl FD leak fix
10251 - CLEANUP: ssl-sock: use HA_OPENSSL_VERSION_NUMBER instead of OPENSSL_VERSION_NUMBER
10252 - BUILD: ssl: make libressl use its own version numbers
10253 - CLEANUP: ssl: remove 57 occurrences of useless tests on LIBRESSL_VERSION_NUMBER
10254 - MINOR: ssl: enable aes_gcm_dec on LibreSSL
10255 - BUILD: ssl: fix libressl build again after aes-gcm-enc
10256 - REORG: ssl: move openssl-compat from proto to common
10257 - REORG: ssl: move some OpenSSL defines from ssl_sock to openssl-compat
10258 - CLEANUP: ssl: never include openssl/*.h outside of openssl-compat.h anymore
10259 - CLEANUP: ssl: make inclusion of openssl headers safe
10260 - BUILD: add BoringSSL to travis-ci build matrix
10261 - BUILD: threads: Add __ha_cas_dw fallback for single threaded builds
10262 - BUG/MINOR: stream: Attach the read side on the response as soon as possible
10263 - BUG/MEDIUM: http: Use pointer to the begining of input to parse message headers
10264 - BUG/MEDIUM: h2: Don't check send_wait to know if we're in the send_list.
10265 - BUG/MEDIUM: streams: Make sur SI_FL_L7_RETRY is set before attempting a retry.
10266 - MEDIUM: streams: Add a new http action, disable-l7-retry.
10267 - MINOR: streams: Introduce a new retry-on keyword, all-retryable-errors.
10268 - BUG/MINOR: vars: Fix memory leak in vars_check_arg
10269 - BUILD: travis-ci: make TMPDIR global variable in travis-ci
10270 - CLEANUP: ssl: move the SSL_OP_* and SSL_MODE_* definitions to openssl-compat
10271 - CLEANUP: ssl: remove ifdef around SSL_CTX_get_extra_chain_certs()
10272 - CLEANUP: ssl: move all BIO_* definitions to openssl-compat
10273 - BUILD: threads: fix again the __ha_cas_dw() definition
10274 - BUG/MAJOR: mux-h2: do not add a stream twice to the send list
10275 - Revert "BUG/MINOR: vars: Fix memory leak in vars_check_arg"
10276 - BUG/MINOR: peers: Fix memory leak in cfg_parse_peers
10277 - BUG/MINOR: htx: make sure to always initialize the HTTP method when parsing a buffer
10278 - REGTEST: fix tls_health_checks random failures on MacOS in Travis-CI
10279 - MINOR: spoe: Set the argument chunk size to 0 when SPOE variables are checked
10280 - BUG/MINOR: vars: Fix memory leak in vars_check_arg
10281 - BUG/MAJOR: ssl: segfault upon an heartbeat request
10282 - MINOR: spoa-server: Clone the v1.7 spoa-example project
10283 - MINOR: spoa-server: move some definition from spoa_server.c to spoa_server.h
10284 - MINOR: spoa-server: Externalise debug functions
10285 - MINOR: spoe-server: rename "worker" functions
10286 - MINOR: spoa-server: Replace the thread init system by processes
10287 - MINOR: spoa-server: With debug mode, start only one process
10288 - MINOR: spoa-server: Allow registering external processes
10289 - MINOR: spoa-server: Allow registering message processors
10290 - MINOR: spoa-server: Load files
10291 - MINOR: spoa-server: Prepare responses
10292 - MINOR: spoa-server: Execute registered callbacks
10293 - MINOR: spoa-server: Add Lua processing
10294 - MINOR: spoa-server: Add python
10295 - MINOR/DOC: spoe-server: Add documentation
10296 - BUG/MEDIUM: connections: Don't forget to set xprt_ctx to NULL on close.
10297 - MINOR: lists: add LIST_ADDED() to check if an element belongs to a list
10298 - CLEANUP: mux-h2: use LIST_ADDED() instead of LIST_ISEMPTY() where relevant
10299 - MINOR: mux-h2: add two H2S flags to report the need for shutr/shutw
10300 - CLEANUP: mux-h2: simply use h2s->flags instead of ret in h2_deferred_shut()
10301 - CLEANUP: connection: remove the handle field from the wait_event struct
10302 - BUG/MINOR: log: Wrong log format initialization.
10303 - BUG/MINOR: mux-h2: make the do_shut{r,w} functions more robust against retries
10304 - BUG/MINOR: mworker: use after free when the PID not assigned
10305 - MINOR: mux-h2: remove useless test on stream ID vs last in wake function
10306 - MINOR: mux-h2: make h2_wake_some_streams() not depend on the CS flags
10307 - MINOR: mux-h2: make h2s_wake_one_stream() the only function to deal with CS
10308 - MINOR: mux-h2: make h2s_wake_one_stream() not depend on temporary CS flags
10309 - BUG/MINOR: mux-h2: make sure to honor KILL_CONN in do_shut{r,w}
10310 - CLEANUP: mux-h2: don't test for impossible CS_FL_REOS conditions
10311 - MINOR: mux-h2: add macros to check multiple stream states at once
10312 - MINOR: mux-h2: stop relying on CS_FL_REOS
10313 - BUG/MEDIUM: mux-h2: Set EOI on the conn_stream during h2_rcv_buf()
10314 - BUILD: debug: make gcc not complain on the ABORT_NOW() macro
10315 - MINOR: debug: add a new BUG_ON macro
10316 - MINOR: h2: Use BUG_ON() to enforce rules in subscribe/unsubscribe.
10317 - MINOR: h1: Use BUG_ON() to enforce rules in subscribe/unsubscribe.
10318 - MINOR: connections: Use BUG_ON() to enforce rules in subscribe/unsubscribe.
10319 - BUILD: ist: turn the lower/upper case tables to literal on obsolete linkers
10320
Willy Tarreau6e893b92019-03-26 05:40:51 +0100103212019/03/26 : 2.0-dev2
10322 - CLEANUP: http: Remove unreachable code in parse_http_req_capture
10323 - CLEANUP: stream: Remove bogus loop in conn_si_send_proxy
10324 - MINOR: lists: Implement locked variations.
10325 - MEDIUM: servers: Used a locked list for idle_orphan_conns.
10326 - MEDIUM: servers: Reorganize the way idle connections are cleaned.
10327 - BUG/MEDIUM: lists: Properly handle the case we're removing the first elt.
10328 - MINOR: cfgparse: Add a cast to make gcc happier.
10329 - BUG/MEDIUM: standard: Wrong reallocation size.
10330 - BUG/MINOR: listener: keep accept rate counters accurate under saturation
10331 - DOC: fix alphabetic ordering for "tune.fail-alloc" setting
10332 - MAJOR: config: disable support for nbproc and nbthread in parallel
10333 - MEDIUM: listener: keep a single thread-mask and warn on "process" misuse
10334 - MAJOR: listener: do not hold the listener lock in listener_accept()
10335 - MINOR: listener: maintain a per-thread count of the number of connections on a listener
10336 - MINOR: tools: implement functions to look up the nth bit set in a mask
10337 - MINOR: listener: pre-compute some thread counts per bind_conf
10338 - MINOR: listener: implement multi-queue accept for threads
10339 - MAJOR: listener: use the multi-queue for multi-thread listeners
10340 - MINOR: activity: add accept queue counters for pushed and overflows
10341 - MINOR: config: add global tune.listener.multi-queue setting
10342 - MAJOR: threads: enable one thread per CPU by default
10343 - DOC: update management.txt to reflect that threads are used by default
10344 - BUG/MINOR: config: don't over-count the global maxsock value
10345 - BUG/MEDIUM: list: fix the rollback on addq in the locked liss
10346 - BUG/MEDIUM: list: fix LIST_POP_LOCKED's removal of the last pointer
10347 - BUG/MEDIUM: list: add missing store barriers when updating elements and head
10348 - MINOR: list: make the delete and pop operations idempotent
10349 - MINOR: server: remove a few unneeded LIST_INIT calls after LIST_DEL_LOCKED
10350 - BUG/MEDIUM: listener: use a self-locked list for the dequeue lists
10351 - BUG/MEDIUM: listener: make sure the listener never accepts too many conns
10352 - BUG/MEDIUM: list: correct fix for LIST_POP_LOCKED's removal of last element
10353 - MINOR: listener: introduce listener_backlog() to report the backlog value
10354 - MINOR: listener: do not needlessly set l->maxconn
10355 - MINOR: proxy: do not change the listeners' maxconn when updating the frontend's
10356 - MEDIUM: config: don't enforce a low frontend maxconn value anymore
10357 - MINOR: peers: Add a message for heartbeat.
10358 - MINOR: global: keep a copy of the initial rlim_fd_cur and rlim_fd_max values
10359 - BUG/MINOR: init: never lower rlim_fd_max
10360 - BUG/MINOR: checks: make external-checks restore the original rlim_fd_cur/max
10361 - BUG/MINOR: mworker: be careful to restore the original rlim_fd_cur/max on reload
10362 - MINOR: init: make the maxpipe computation more accurate
10363 - MINOR: init: move some maxsock updates earlier
10364 - MEDIUM: init: make the global maxconn default to what rlim_fd_cur permits
10365 - REGTEST: fix a spurious "nbthread 4" in the connection test
10366 - DOC: update the text related to the global maxconn value
10367 - BUG/MAJOR: mux-h2: fix race condition between close on both ends
10368 - MINOR: sample: Replace "req.ungrpc" smp fetch by a "ungrpc" converter.
10369 - BUG/MEDIUM: list: fix again LIST_ADDQ_LOCKED
10370 - MINOR: htx: unconditionally handle parsing errors in requests or responses
10371 - MINOR: mux-h2: always pass HTX_FL_PARSING_ERROR between h2s and buf on RX
10372 - BUG/MEDIUM: h2/htx: verify that :path doesn't contain invalid chars
10373 - MINOR: sample: Code factorization "ungrpc" converter.
10374 - MINOR: sample: Rework gRPC converter code.
10375 - CLEANUP: wurfl: remove dead, broken and unmaintained code
10376 - MINOR: config: relax the range checks on cpu-map
10377 - BUG/MINOR: ssl: fix warning about ssl-min/max-ver support
10378 - MINOR: sample: Extract some protocol buffers specific code.
10379 - DOC: Remove tabs and fixed punctuation.
10380 - MINOR: sample: Add a protocol buffers specific converter.
10381 - REGTEST: Peers reg tests.
10382 - REGTEST: Enable reg tests with HEAD HTTP method usage.
10383 - MINOR: lists: add a LIST_DEL_INIT() macro
10384 - MINOR: task: use LIST_DEL_INIT() to remove a task from the queue
10385 - MINOR: listener: improve incoming traffic distribution
10386 - MINOR: tools: implement my_flsl()
10387 - MEDIUM: listener: change the LB algorithm again to use two round robins instead
10388 - CLEANUP: listener: remove old thread bit mapping
10389 - MINOR: listener: move thr_idx from the bind_conf to the listener
10390 - BUG/MEDIUM: logs: Only attempt to free startup_logs once.
10391 - BUG/MAJOR: config: Wrong maxconn adjustment.
10392 - BUG/MEDIUM: 51d: fix possible segfault on deinit_51degrees()
10393 - OPTIM: task: limit the impact of memory barriers in taks_remove_from_task_list()
10394 - MINOR: fd: Remove debugging code.
10395 - BUG/MEDIUM: listeners: Don't call fd_stop_recv() if fd_updt is NULL.
10396 - MINOR: threads: Implement __ha_barrier_atomic*.
10397 - MEDIUM: threads: Use __ATOMIC_SEQ_CST when using the newer atomic API.
10398 - MINOR: threads: Add macros to do atomic operation with no memory barrier.
10399 - MEDIUM: various: Use __ha_barrier_atomic* when relevant.
10400 - MEDIUM: applets: Use the new _HA_ATOMIC_* macros.
10401 - MEDIUM: xref: Use the new _HA_ATOMIC_* macros.
10402 - MEDIUM: fd: Use the new _HA_ATOMIC_* macros.
10403 - MEDIUM: freq_ctr: Use the new _HA_ATOMIC_* macros.
10404 - MEDIUM: proxy: Use the new _HA_ATOMIC_* macros.
10405 - MEDIUM: server: Use the new _HA_ATOMIC_* macros.
10406 - MEDIUM: task: Use the new _HA_ATOMIC_* macros.
10407 - MEDIUM: activity: Use the new _HA_ATOMIC_* macros.
10408 - MEDIUM: backend: Use the new _HA_ATOMIC_* macros.
10409 - MEDIUM: cache: Use the new _HA_ATOMIC_* macros.
10410 - MEDIUM: checks: Use the new _HA_ATOMIC_* macros.
10411 - MEDIUM: pollers: Use the new _HA_ATOMIC_* macros.
10412 - MEDIUM: compression: Use the new _HA_ATOMIC_* macros.
10413 - MEDIUM: spoe: Use the new _HA_ATOMIC_* macros.
10414 - MEDIUM: threads: Use the new _HA_ATOMIC_* macros.
10415 - MEDIUM: http: Use the new _HA_ATOMIC_* macros.
10416 - MEDIUM: lb/threads: Use the new _HA_ATOMIC_* macros.
10417 - MEDIUM: listeners: Use the new _HA_ATOMIC_* macros.
10418 - MEDIUM: logs: Use the new _HA_ATOMIC_* macros.
10419 - MEDIUM: memory: Use the new _HA_ATOMIC_* macros.
10420 - MEDIUM: peers: Use the new _HA_ATOMIC_* macros.
10421 - MEDIUM: proto_tcp: Use the new _HA_ATOMIC_* macros.
10422 - MEDIUM: queues: Use the new _HA_ATOMIC_* macros.
10423 - MEDIUM: sessions: Use the new _HA_ATOMIC_* macros.
10424 - MEDIUM: ssl: Use the new _HA_ATOMIC_* macros.
10425 - MEDIUM: stream: Use the new _HA_ATOMIC_* macros.
10426 - MEDIUM: tcp_rules: Use the new _HA_ATOMIC_* macros.
10427 - MEDIUM: time: Use the new _HA_ATOMIC_* macros.
10428 - MEDIUM: vars: Use the new _HA_ATOMIC_* macros.
10429 - MINOR: config: remove obsolete use of DEFAULT_MAXCONN at various places
10430 - MINOR: config: continue to rely on DEFAULT_MAXCONN to set the minimum maxconn
10431 - BUG/MEDIUM: list: fix incorrect pointer unlocking in LIST_DEL_LOCKED()
10432 - BUG/MEDIUM: listener: make sure we don't pick stopped threads
10433 - MEDIUM: list: Remove useless barriers.
10434 - MEDIUM: list: Use _HA_ATOMIC_*
10435 - MEDIUM: connections: Use _HA_ATOMIC_*
10436 - BUG/MAJOR: tasks: Use the TASK_GLOBAL flag to know if we're in the global rq.
10437 - BUG/MEDIUM: threads/fd: do not forget to take into account epoll_fd/pipes
10438 - BUG/MEDIUM: init/threads: consider epoll_fd/pipes for automatic maxconn calculation
10439 - BUG/MEDIUM: tasks: Make sure we wake sleeping threads if needed.
10440 - BUG/MINOR: mux-h1: Don't report an error on EOS if no message was received
10441 - BUG/MINOR: stats/htx: Call channel_add_input() when response headers are sent
10442 - BUG/MINOR: lua/htx: Use channel_add_input() when response data are added
10443 - BUG/MINOR: lua/htx: Don't forget to call htx_to_buf() when appropriate
10444 - MINOR: stats: Add the status code STAT_STATUS_IVAL to handle invalid requests
10445 - MINOR: stats: Move stuff about the stats status codes in stats files
10446 - BUG/MINOR: stats: Be more strict on what is a valid request to the stats applet
10447 - Revert "REGTEST: Enable reg tests with HEAD HTTP method usage."
10448 - BUILD: listener: shut up a build warning when threads are disabled
10449 - BUILD: Makefile: allow the reg-tests target to be verbose
10450 - BUILD: Makefile: resolve LEVEL before calling run-regtests
10451 - BUG/MAJOR: spoe: Fix initialization of thread-dependent fields
10452 - BUG/MAJOR: stats: Fix how huge POST data are read from the channel
10453 - BUG/MINOR: http/counters: fix missing increment of fe->srv_aborts
10454 - BUG/MEDIUM: mux-h2: Always wakeup streams with no id to avoid frozen streams
10455 - MINOR: mux-h2: Set REFUSED_STREAM error to reset a stream if no data was never sent
10456 - MINOR: muxes: Report the Last read with a dedicated flag
10457 - MINOR: proto-http/proto-htx: Make error handling clearer during data forwarding
10458 - BUILD: tools: fix a build warning on some 32-bit archs
10459 - MINOR: init: report the list of optionally available services
10460 - MEDIUM: proto_htx: Switch to infinite forwarding if there is no data filter
10461 - BUG/MINOR: cache: Fully consume large requests in the cache applet
10462 - BUG/MINOR: stats: Fully consume large requests in the stats applet
10463 - BUG/MEDIUM: lua: Fully consume large requests when an HTTP applet ends
10464 - MINOR: proto_http: Add function to handle the header "Expect: 100-continue"
10465 - MINOR: proto_htx: Add function to handle the header "Expect: 100-continue"
10466 - MINOR: stats/cache: Handle the header Expect when applets are registered
10467 - MINOR: http/applets: Handle all applets intercepting HTTP requests the same way
10468 - CLEANUP: cache: don't export http_cache_applet anymore
10469 - MINOR: lua: Don't handle the header Expect in lua HTTP applets anymore
10470 - BUG/MINOR: doc: Be accurate on the behavior on pool-purge-delay.
10471 - Revert "MEDIUM: proto_htx: Switch to infinite forwarding if there is no data filter"
10472 - BUG/MEDIUM: mux-h2: Make sure we destroyed the h2s once shutr/shutw is done.
10473 - BUG/MEDIUM: mux-h2: Don't bother keeping the h2s if detaching and nothing to send.
10474 - BUG/MEDIUM: mux-h2: Use the right list in h2_stop_senders().
10475 - MINOR: mux-h2: copy small data blocks more often and reduce the number of pauses
10476 - CLEANUP: mux-h2: add some comments to help understand the code
10477 - BUG/MEDIUM: ssl: ability to set TLS 1.3 ciphers using ssl-default-server-ciphersuites
10478 - BUG/MINOR: log: properly format IPv6 address when LOG_OPT_HEXA modifier is used.
10479 - BUG/MEDIUM: h2: Try to be fair when sending data.
10480 - BUG/MINOR: proto-http: Don't forward request body anymore on error
10481 - MINOR: mux-h2: Remove useless test on ES flag in h2_frt_transfer_data()
10482 - MINOR: connection: and new flag to mark end of input (EOI)
10483 - MINOR: channel: Report EOI on the input channel if it was reached in the mux
10484 - MEDIUM: mux-h2: Don't mix the end of the message with the end of stream
10485 - MINOR: mux-h1: Set CS_FL_EOI the end of the message is reached
10486 - BUG/MEDIUM: http/htx: Fix handling of the option abortonclose
10487 - CLEANUP: muxes/stream-int: Remove flags CS_FL_READ_NULL and SI_FL_READ_NULL
10488 - MEDIUM: proto_htx: Reintroduce the infinite forwarding on data
10489 - BUG/MEDIUM: h2: only destroy the h2s if h2s->cs is NULL.
10490 - BUG/MEDIUM: h2: Use the new sending_list in h2s_notify_send().
10491 - BUG/MEDIUM: h2: Follow the same logic in h2_deferred_shut than in h2_snd_buf.
10492 - BUG/MEDIUM: h2: Remove the tasklet from the task list if unsubscribing.
10493 - BUG/MEDIUM: task/h2: add an idempotent task removal fucntion
10494 - CLEANUP: task: only perform a LIST_DEL() when the list is not empty
10495 - BUG/MEDIUM: mux-h2: make sure to always notify streams of EOS condition
10496 - CONTRIB: debug: report the CS and CF's EOI flags
10497 - MINOR: channel: don't unset CF_SHUTR_NOW after shutting down.
10498
Willy Tarreau6c1b6672019-02-26 16:43:49 +0100104992019/02/26 : 2.0-dev1
10500 - MINOR: mux-h2: only increase the connection window with the first update
10501 - REGTESTS: remove the expected window updates from H2 handshakes
10502 - BUG/MINOR: mux-h2: make empty HEADERS frame return a connection error
10503 - BUG/MEDIUM: mux-h2: mark that we have too many CS once we have more than the max
10504 - MEDIUM: mux-h2: remove padlen during headers phase
10505 - MINOR: h2: add a bit-based frame type representation
10506 - MINOR: mux-h2: remove useless check for empty frame length in h2s_decode_headers()
10507 - MEDIUM: mux-h2: decode HEADERS frames before allocating the stream
10508 - MINOR: mux-h2: make h2c_send_rst_stream() use the dummy stream's error code
10509 - MINOR: mux-h2: add a new dummy stream for the REFUSED_STREAM error code
10510 - MINOR: mux-h2: fail stream creation more cleanly using RST_STREAM
10511 - MINOR: buffers: add a new b_move() function
10512 - MINOR: mux-h2: make h2_peek_frame_hdr() support an offset
10513 - MEDIUM: mux-h2: handle decoding of CONTINUATION frames
10514 - CLEANUP: mux-h2: remove misleading comments about CONTINUATION
10515 - BUG/MEDIUM: servers: Don't try to reuse connection if we switched server.
10516 - BUG/MEDIUM: tasks: Decrement tasks_run_queue in tasklet_free().
10517 - BUG/MINOR: htx: send the proper authenticate header when using http-request auth
10518 - BUG/MEDIUM: mux_h2: Don't add to the idle list if we're full.
10519 - BUG/MEDIUM: servers: Fail if we fail to allocate a conn_stream.
10520 - BUG/MAJOR: servers: Use the list api correctly to avoid crashes.
10521 - BUG/MAJOR: servers: Correctly use LIST_ELEM().
10522 - BUG/MAJOR: sessions: Use an unlimited number of servers for the conn list.
10523 - BUG/MEDIUM: servers: Flag the stream_interface on handshake error.
10524 - MEDIUM: servers: Be smarter when switching connections.
10525 - MEDIUM: sessions: Keep track of which connections are idle.
10526 - MINOR: payload: add sample fetch for TLS ALPN
10527 - BUG/MEDIUM: log: don't mark log FDs as non-blocking on terminals
10528 - MINOR: channel: Add the function channel_add_input
10529 - MINOR: stats/htx: Call channel_add_input instead of updating channel state by hand
10530 - BUG/MEDIUM: cache: Be sure to end the forwarding when XFER length is unknown
10531 - BUG/MAJOR: htx: Return the good block address after a defrag
10532 - MINOR: lb: allow redispatch when using consistent hash
10533 - CLEANUP: mux-h2: fix end-of-stream flag name when processing headers
10534 - BUG/MEDIUM: mux-h2: always restart reading if data are available
10535 - BUG/MINOR: mux-h2: set the stream-full flag when leaving h2c_decode_headers()
10536 - BUG/MINOR: mux-h2: don't check the CS count in h2c_bck_handle_headers()
10537 - BUG/MINOR: mux-h2: mark end-of-stream after processing response HEADERS, not before
10538 - BUG/MINOR: mux-h2: only update rxbuf's length for H1 headers
10539 - BUG/MEDIUM: mux-h1: use per-direction flags to indicate transitions
10540 - BUG/MEDIUM: mux-h1: make HTX chunking consistent with H2
10541 - BUG/MAJOR: stream-int: Update the stream expiration date in stream_int_notify()
10542 - BUG/MEDIUM: proto-htx: Set SI_FL_NOHALF on server side when request is done
10543 - BUG/MEDIUM: mux-h1: Add a task to handle connection timeouts
10544 - MINOR: mux-h2: make h2c_decode_headers() return a status, not a count
10545 - MINOR: mux-h2: add a new dummy stream : h2_error_stream
10546 - MEDIUM: mux-h2: make h2c_decode_headers() support recoverable errors
10547 - BUG/MINOR: mux-h2: detect when the HTX EOM block cannot be added after headers
10548 - MINOR: mux-h2: remove a misleading and impossible test
10549 - CLEANUP: mux-h2: clean the stream error path on HEADERS frame processing
10550 - MINOR: mux-h2: check for too many streams only for idle streams
10551 - MINOR: mux-h2: set H2_SF_HEADERS_RCVD when a HEADERS frame was decoded
10552 - BUG/MEDIUM: mux-h2: decode trailers in HEADERS frames
10553 - MINOR: h2: add h2_make_h1_trailers to turn H2 headers to H1 trailers
10554 - MEDIUM: mux-h2: pass trailers to H1 (legacy mode)
10555 - MINOR: htx: add a new function to add a block without filling it
10556 - MINOR: h2: add h2_make_htx_trailers to turn H2 headers to HTX trailers
10557 - MEDIUM: mux-h2: pass trailers to HTX
10558 - MINOR: mux-h1: parse the content-length header on output and set H1_MF_CLEN
10559 - BUG/MEDIUM: mux-h1: don't enforce chunked encoding on requests
10560 - MINOR: mux-h2: make HTX_BLK_EOM processing idempotent
10561 - MINOR: h1: make the H1 headers block parser able to parse headers only
10562 - MEDIUM: mux-h2: emit HEADERS frames when facing HTX trailers blocks
10563 - MINOR: stream/htx: Add info about the HTX structs in "show sess all" command
10564 - MINOR: stream: Add the subscription events of SIs in "show sess all" command
10565 - MINOR: mux-h1: Add the subscription events in "show fd" command
10566 - BUG/MEDIUM: h1: Get the h1m state when restarting the headers parsing
10567 - BUG/MINOR: cache/htx: Be sure to count partial trailers
10568 - BUG/MEDIUM: h1: In h1_init(), wake the tasklet instead of calling h1_recv().
10569 - BUG/MEDIUM: server: Defer the mux init until after xprt has been initialized.
10570 - MINOR: connections: Remove a stall comment.
10571 - BUG/MEDIUM: cli: make "show sess" really thread-safe
10572 - BUILD: add a new file "version.c" to carry version updates
10573 - MINOR: stream/htx: add the HTX flags output in "show sess all"
10574 - MINOR: stream/cli: fix the location of the waiting flag in "show sess all"
10575 - MINOR: stream/cli: report more info about the HTTP messages on "show sess all"
10576 - BUG/MINOR: lua: bad args are returned for Lua actions
10577 - BUG/MEDIUM: lua: dead lock when Lua tasks are trigerred
10578 - MINOR: htx: Add an helper function to get the max space usable for a block
10579 - MINOR: channel/htx: Add HTX version for some helper functions
10580 - BUG/MEDIUM: cache/htx: Respect the reserve when cached objects are served
10581 - BUG/MINOR: stats/htx: Respect the reserve when the stats page is dumped
10582 - DOC: regtest: make it clearer what the purpose of the "broken" series is
10583 - REGTEST: mailers: add new test for 'mailers' section
10584 - REGTEST: Add a reg test for health-checks over SSL/TLS.
10585 - BUG/MINOR: mux-h1: Close connection on shutr only when shutw was really done
10586 - MEDIUM: mux-h1: Clarify how shutr/shutw are handled
10587 - BUG/MINOR: compression: Disable it if another one is already in progress
10588 - BUG/MINOR: filters: Detect cache+compression config on legacy HTTP streams
10589 - BUG/MINOR: cache: Disable the cache if any compression filter precedes it
10590 - REGTEST: Add some informatoin to test results.
10591 - MINOR: htx: Add a function to truncate all blocks after a specific offset
10592 - MINOR: channel/htx: Add the HTX version of channel_truncate/erase
10593 - BUG/MINOR: proto_htx: Use HTX versions to truncate or erase a buffer
10594 - BUG/CRITICAL: mux-h2: re-check the frame length when PRIORITY is used
10595 - DOC: Fix typo in req.ssl_alpn example (commit 4afdd138424ab...)
10596 - DOC: http-request cache-use / http-response cache-store expects cache name
10597 - REGTEST: "capture (request|response)" regtest.
10598 - BUG/MINOR: lua/htx: Respect the reserve when data are send from an HTX applet
10599 - REGTEST: filters: add compression test
10600 - BUG/MEDIUM: init: Initialize idle_orphan_conns for first server in server-template
10601 - BUG/MEDIUM: ssl: Disable anti-replay protection and set max data with 0RTT.
10602 - DOC: Be a bit more explicit about allow-0rtt security implications.
10603 - MINOR: mux-h1: make the mux_h1_ops struct static
10604 - BUILD: makefile: add an EXTRA_OBJS variable to help build optional code
10605 - BUG/MEDIUM: connection: properly unregister the mux on failed initialization
10606 - BUG/MAJOR: cache: fix confusion between zero and uninitialized cache key
10607 - REGTESTS: test case for map_regm commit 271022150d
10608 - REGTESTS: Basic tests for concat,strcmp,word,field,ipmask converters
10609 - REGTESTS: Basic tests for using maps to redirect requests / select backend
10610 - DOC: REGTESTS README varnishtest -Dno-htx= define.
10611 - MINOR: spoe: Make the SPOE filter compatible with HTX proxies
10612 - MINOR: checks: Store the proxy in checks.
10613 - BUG/MEDIUM: checks: Avoid having an associated server for email checks.
10614 - REGTEST: Switch to vtest.
10615 - REGTEST: Adapt reg test doc files to vtest.
10616 - BUG/MEDIUM: h1: Make sure we destroy an inactive connectin that did shutw.
10617 - BUG/MINOR: base64: dec func ignores padding for output size checking
10618 - BUG/MEDIUM: ssl: missing allocation failure checks loading tls key file
10619 - MINOR: ssl: add support of aes256 bits ticket keys on file and cli.
10620 - BUG/MINOR: backend: don't use url_param_name as a hint for BE_LB_ALGO_PH
10621 - BUG/MINOR: backend: balance uri specific options were lost across defaults
10622 - BUG/MINOR: backend: BE_LB_LKUP_CHTREE is a value, not a bit
10623 - MINOR: backend: move url_param_name/len to lbprm.arg_str/len
10624 - MINOR: backend: make headers and RDP cookie also use arg_str/len
10625 - MINOR: backend: add new fields in lbprm to store more LB options
10626 - MINOR: backend: make the header hash use arg_opt1 for use_domain_only
10627 - MINOR: backend: remap the balance uri settings to lbprm.arg_opt{1,2,3}
10628 - MINOR: backend: move hash_balance_factor out of chash
10629 - MEDIUM: backend: move all LB algo parameters into an union
10630 - MINOR: backend: make the random algorithm support a number of draws
10631 - BUILD/MEDIUM: da: Necessary code changes for new buffer API.
10632 - BUG/MINOR: stick_table: Prevent conn_cur from underflowing
10633 - BUG: 51d: Changes to the buffer API in 1.9 were not applied to the 51Degrees code.
10634 - BUG/MEDIUM: stats: Get the right scope pointer depending on HTX is used or not
10635 - DOC: add a missing space in the documentation for bc_http_major
10636 - REGTEST: checks basic stats webpage functionality
10637 - BUG/MEDIUM: servers: Make assign_tproxy_address work when ALPN is set.
10638 - BUG/MEDIUM: connections: Add the CO_FL_CONNECTED flag if a send succeeded.
10639 - DOC: add github issue templates
10640 - MINOR: cfgparse: Extract some code to be re-used.
10641 - CLEANUP: cfgparse: Return asap from cfg_parse_peers().
10642 - CLEANUP: cfgparse: Code reindentation.
10643 - MINOR: cfgparse: Useless frontend initialization in "peers" sections.
10644 - MINOR: cfgparse: Rework peers frontend init.
10645 - MINOR: cfgparse: Simplication.
10646 - MINOR: cfgparse: Make "peer" lines be parsed as "server" lines.
10647 - MINOR: peers: Make outgoing connection to SSL/TLS peers work.
10648 - MINOR: cfgparse: SSL/TLS binding in "peers" sections.
10649 - DOC: peers: SSL/TLS documentation for "peers"
10650 - BUG/MINOR: startup: certain goto paths in init_pollers fail to free
10651 - BUG/MEDIUM: checks: fix recent regression on agent-check making it crash
10652 - BUG/MINOR: server: don't always trust srv_check_health when loading a server state
10653 - BUG/MINOR: check: Wake the check task if the check is finished in wake_srv_chk()
10654 - BUG/MEDIUM: ssl: Fix handling of TLS 1.3 KeyUpdate messages
10655 - DOC: mention the effect of nf_conntrack_tcp_loose on src/dst
10656 - BUG/MINOR: proto-htx: Return an error if all headers cannot be received at once
10657 - BUG/MEDIUM: mux-h2/htx: Respect the channel's reserve
10658 - BUG/MINOR: mux-h1: Apply the reserve on the channel's buffer only
10659 - BUG/MINOR: mux-h1: avoid copying output over itself in zero-copy
10660 - BUG/MAJOR: mux-h2: don't destroy the stream on failed allocation in h2_snd_buf()
10661 - BUG/MEDIUM: backend: also remove from idle list muxes that have no more room
10662 - BUG/MEDIUM: mux-h2: properly abort on trailers decoding errors
10663 - MINOR: h2: declare new sets of frame types
10664 - BUG/MINOR: mux-h2: CONTINUATION in closed state must always return GOAWAY
10665 - BUG/MINOR: mux-h2: headers-type frames in HREM are always a connection error
10666 - BUG/MINOR: mux-h2: make it possible to set the error code on an already closed stream
10667 - BUG/MINOR: hpack: return a compression error on invalid table size updates
10668 - MINOR: server: make sure pool-max-conn is >= -1
10669 - BUG/MINOR: stream: take care of synchronous errors when trying to send
10670 - CLEANUP: server: fix indentation mess on idle connections
10671 - BUG/MINOR: mux-h2: always check the stream ID limit in h2_avail_streams()
10672 - BUG/MINOR: mux-h2: refuse to allocate a stream with too high an ID
10673 - BUG/MEDIUM: backend: never try to attach to a mux having no more stream available
10674 - MINOR: server: add a max-reuse parameter
10675 - MINOR: mux-h2: always consider a server's max-reuse parameter
10676 - MEDIUM: stream-int: always mark pending outgoing SI_ST_CON
10677 - MINOR: stream: don't wait before retrying after a failed connection reuse
10678 - MEDIUM: h2: always parse and deduplicate the content-length header
10679 - BUG/MINOR: mux-h2: always compare content-length to the sum of DATA frames
10680 - CLEANUP: h2: Remove debug printf in mux_h2.c
10681 - MINOR: cfgparse: make the process/thread parser support a maximum value
10682 - MINOR: threads: make MAX_THREADS configurable at build time
10683 - DOC: nbthread is no longer experimental.
10684 - BUG/MINOR: listener: always fill the source address for accepted socketpairs
10685 - BUG/MINOR: mux-h2: do not report available outgoing streams after GOAWAY
10686 - BUG/MINOR: spoe: corrected fragmentation string size
10687 - BUG/MINOR: task: fix possibly missed event in inter-thread wakeups
10688 - BUG/MEDIUM: servers: Attempt to reuse an unfinished connection on retry.
10689 - BUG/MEDIUM: backend: always call si_detach_endpoint() on async connection failure
10690 - SCRIPTS: add the issue tracker URL to the announce script
10691 - MINOR: peers: Extract some code to be reused.
10692 - CLEANUP: peers: Indentation fixes.
10693 - MINOR: peers: send code factorization.
10694 - MINOR: peers: Add new functions to send code and reduce the I/O handler.
10695 - MEDIUM: peers: synchronizaiton code factorization to reduce the size of the I/O handler.
10696 - MINOR: peers: Move update receive code to reduce the size of the I/O handler.
10697 - MINOR: peers: Move ack, switch and definition receive code to reduce the size of the I/O handler.
10698 - MINOR: peers: Move high level receive code to reduce the size of I/O handler.
10699 - CLEANUP: peers: Be more generic.
10700 - MINOR: peers: move error handling to reduce the size of the I/O handler.
10701 - MINOR: peers: move messages treatment code to reduce the size of the I/O handler.
10702 - MINOR: peers: move send code to reduce the size of the I/O handler.
10703 - CLEANUP: peers: Remove useless statements.
10704 - MINOR: peers: move "hello" message treatment code to reduce the size of the I/O handler.
10705 - MINOR: peers: move peer initializations code to reduce the size of the I/O handler.
10706 - CLEANUP: peers: factor the error handling code in peer_treet_updatemsg()
10707 - CLEANUP: peers: factor error handling in peer_treat_definedmsg()
10708 - BUILD/MINOR: peers: shut up a build warning introduced during last cleanup
10709 - BUG/MEDIUM: mux-h2: only close connection on request frames on closed streams
10710 - CLEANUP: mux-h2: remove two useless but misleading assignments
10711 - BUG/MEDIUM: checks: Check that conn_install_mux succeeded.
10712 - BUG/MEDIUM: servers: Only destroy a conn_stream we just allocated.
10713 - BUG/MEDIUM: servers: Don't add an incomplete conn to the server idle list.
10714 - BUG/MEDIUM: checks: Don't try to set ALPN if connection failed.
10715 - BUG/MEDIUM: h2: In h2_send(), stop the loop if we failed to alloc a buf.
10716 - BUG/MEDIUM: peers: Handle mux creation failure.
10717 - BUG/MEDIUM: servers: Close the connection if we failed to install the mux.
10718 - BUG/MEDIUM: compression: Rewrite strong ETags
10719 - BUG/MINOR: deinit: tcp_rep.inspect_rules not deinit, add to deinit
10720 - CLEANUP: mux-h2: remove misleading leftover test on h2s' nullity
10721 - BUG/MEDIUM: mux-h2: wake up flow-controlled streams on initial window update
10722 - BUG/MEDIUM: mux-h2: fix two half-closed to closed transitions
10723 - BUG/MEDIUM: mux-h2: make sure never to send GOAWAY on too old streams
10724 - BUG/MEDIUM: mux-h2: do not abort HEADERS frame before decoding them
10725 - BUG/MINOR: mux-h2: make sure response HEADERS are not received in other states than OPEN and HLOC
10726 - MINOR: h2: add a generic frame checker
10727 - MEDIUM: mux-h2: check the frame validity before considering the stream state
10728 - CLEANUP: mux-h2: remove stream ID and frame length checks from the frame parsers
10729 - BUG/MINOR: mux-h2: make sure request trailers on aborted streams don't break the connection
10730 - DOC: compression: Update the reasons for disabled compression
10731 - BUG/MEDIUM: buffer: Make sure b_is_null handles buffers waiting for allocation.
10732 - DOC: htx: make it clear that htxbuf() and htx_from_buf() always return valid pointers
10733 - MINOR: htx: never check for null htx pointer in htx_is_{,not_}empty()
10734 - MINOR: mux-h2: consistently rely on the htx variable to detect the mode
10735 - BUG/MEDIUM: peers: Peer addresses parsing broken.
10736 - BUG/MEDIUM: mux-h1: Don't add "transfer-encoding" if message-body is forbidden
10737 - BUG/MEDIUM: connections: Don't forget to remove CO_FL_SESS_IDLE.
10738 - BUG/MINOR: stream: don't close the front connection when facing a backend error
10739 - BUG/MEDIUM: mux-h2: wait for the mux buffer to be empty before closing the connection
10740 - MINOR: stream-int: add a new flag to mention that we want the connection to be killed
10741 - MINOR: connstream: have a new flag CS_FL_KILL_CONN to kill a connection
10742 - BUG/MEDIUM: mux-h2: do not close the connection on aborted streams
10743 - BUG/MINOR: server: fix logic flaw in idle connection list management
10744 - MINOR: mux-h2: max-concurrent-streams should be unsigned
10745 - MINOR: mux-h2: make sure to only check concurrency limit on the frontend
10746 - MINOR: mux-h2: learn and store the peer's advertised MAX_CONCURRENT_STREAMS setting
10747 - BUG/MEDIUM: mux-h2: properly consider the peer's advertised max-concurrent-streams
10748 - MINOR: xref: Add missing barriers.
10749 - MINOR: muxes: Don't bother to LIST_DEL(&conn->list) before calling conn_free().
10750 - MINOR: debug: Add an option that causes random allocation failures.
10751 - BUG/MEDIUM: backend: always release the previous connection into its own target srv_list
10752 - BUG/MEDIUM: htx: check the HTX compatibility in dynamic use-backend rules
10753 - BUG/MINOR: tune.fail-alloc: Don't forget to initialize ret.
10754 - BUG/MINOR: backend: check srv_conn before dereferencing it
10755 - BUG/MEDIUM: mux-h2: always omit :scheme and :path for the CONNECT method
10756 - BUG/MEDIUM: mux-h2: always set :authority on request output
10757 - BUG/MEDIUM: stream: Don't forget to free s->unique_id in stream_free().
10758 - BUG/MINOR: threads: fix the process range of thread masks
10759 - BUG/MINOR: config: fix bind line thread mask validation
10760 - CLEANUP: threads: fix misleading comment about all_threads_mask
10761 - CLEANUP: threads: use nbits to calculate the thread mask
10762 - OPTIM: listener: optimize cache-line packing for struct listener
10763 - MINOR: tools: improve the popcount() operation
10764 - MINOR: config: keep an all_proc_mask like we have all_threads_mask
10765 - MINOR: global: add proc_mask() and thread_mask()
10766 - MINOR: config: simplify bind_proc processing using proc_mask()
10767 - MINOR: threads: make use of thread_mask() to simplify some thread calculations
10768 - BUG/MINOR: compression: properly report compression stats in HTX mode
10769 - BUG/MINOR: task: close a tiny race in the inter-thread wakeup
10770 - BUG/MAJOR: config: verify that targets of track-sc and stick rules are present
10771 - BUG/MAJOR: spoe: verify that backends used by SPOE cover all their callers' processes
10772 - BUG/MAJOR: htx/backend: Make all tests on HTTP messages compatible with HTX
10773 - BUG/MINOR: config: make sure to count the error on incorrect track-sc/stick rules
10774 - DOC: ssl: Clarify when pre TLSv1.3 cipher can be used
10775 - DOC: ssl: Stop documenting ciphers example to use
10776 - BUG/MINOR: spoe: do not assume agent->rt is valid on exit
10777 - BUG/MINOR: lua: initialize the correct idle conn lists for the SSL sockets
10778 - BUG/MEDIUM: spoe: initialization depending on nbthread must be done last
10779 - BUG/MEDIUM: server: initialize the idle conns list after parsing the config
10780 - BUG/MEDIUM: server: initialize the orphaned conns lists and tasks at the end
10781 - MINOR: config: make MAX_PROCS configurable at build time
10782 - BUG/MAJOR: spoe: Don't try to get agent config during SPOP healthcheck
10783 - BUG/MINOR: config: Reinforce validity check when a process number is parsed
10784 - BUG/MEDIUM: peers: check that p->srv actually exists before using p->srv->use_ssl
10785 - CONTRIB: contrib/prometheus-exporter: Add a Prometheus exporter for HAProxy
10786 - BUG/MINOR: mux-h1: verify the request's version before dropping connection: keep-alive
10787 - BUG: 51d: In Hash Trie, multi header matching was affected by the header names stored globaly.
10788 - MEDIUM: 51d: Enabled multi threaded operation in the 51Degrees module.
10789 - BUG/MAJOR: stream: avoid double free on unique_id
10790 - BUILD/MINOR: stream: avoid a build warning with threads disabled
10791 - BUILD/MINOR: tools: fix build warning in the date conversion functions
10792 - BUILD/MINOR: peers: remove an impossible null test in intencode()
10793 - BUILD/MINOR: htx: fix some potential null-deref warnings with http_find_stline
10794 - BUG/MEDIUM: peers: Missing peer initializations.
10795 - BUG/MEDIUM: http_fetch: fix the "base" and "base32" fetch methods in HTX mode
10796 - BUG/MEDIUM: proto_htx: Fix data size update if end of the cookie is removed
10797 - BUG/MEDIUM: http_fetch: fix "req.body_len" and "req.body_size" fetch methods in HTX mode
10798 - BUILD/MEDIUM: initcall: Fix build on MacOS.
10799 - BUG/MEDIUM: mux-h2/htx: Always set CS flags before exiting h2_rcv_buf()
10800 - MINOR: h2/htx: Set the flag HTX_SL_F_BODYLESS for messages without body
10801 - BUG/MINOR: mux-h1: Add "transfer-encoding" header on outgoing requests if needed
10802 - BUG/MINOR: mux-h2: Don't add ":status" pseudo-header on trailers
10803 - BUG/MINOR: proto-htx: Consider a XFER_LEN message as chunked by default
10804 - BUG/MEDIUM: h2/htx: Correctly handle interim responses when HTX is enabled
10805 - MINOR: mux-h2: Set HTX extra value when possible
10806 - BUG/MEDIUM: htx: count the amount of copied data towards the final count
10807 - MINOR: mux-h2: make the H2 MAX_FRAME_SIZE setting configurable
10808 - BUG/MEDIUM: mux-h2/htx: send an empty DATA frame on empty HTX trailers
10809 - BUG/MEDIUM: servers: Use atomic operations when handling curr_idle_conns.
10810 - BUG/MEDIUM: servers: Add a per-thread counter of idle connections.
10811 - MINOR: fd: add a new my_closefrom() function to close all FDs
10812 - MINOR: checks: use my_closefrom() to close all FDs
10813 - MINOR: fd: implement an optimised my_closefrom() function
10814 - BUG/MINOR: fd: make sure my_closefrom() doesn't miss some FDs
10815 - BUG/MAJOR: fd/threads, task/threads: ensure all spin locks are unlocked
10816 - BUG/MAJOR: listener: Make sure the listener exist before using it.
10817 - MINOR: fd: Use closefrom() as my_closefrom() if supported.
10818 - BUG/MEDIUM: mux-h1: Report the right amount of data xferred in h1_rcv_buf()
10819 - BUG/MINOR: channel: Set CF_WROTE_DATA when outgoing data are skipped
10820 - MINOR: htx: Add function to drain data from an HTX message
10821 - MINOR: channel/htx: Add function to skips output bytes from an HTX channel
10822 - BUG/MAJOR: cache/htx: Set the start-line offset when a cached object is served
10823 - BUG/MEDIUM: cache: Get objects from the cache only for GET and HEAD requests
10824 - BUG/MINOR: cache/htx: Return only the headers of cached objects to HEAD requests
10825 - BUG/MINOR: mux-h1: Always initilize h1m variable in h1_process_input()
10826 - BUG/MEDIUM: proto_htx: Fix functions applying regex filters on HTX messages
10827 - BUG/MEDIUM: h2: advertise to servers that we don't support push
10828 - MINOR: standard: Add a function to parse uints (dotted notation).
10829 - MINOR: arg: Add support for ARGT_PBUF_FNUM arg type.
10830 - MINOR: http_fetch: add "req.ungrpc" sample fetch for gRPC.
10831 - MINOR: sample: Add two sample converters for protocol buffers.
10832 - DOC: sample: Add gRPC related documentation.
10833
Willy Tarreaufba74ea2018-12-22 11:19:45 +0100108342018/12/22 : 2.0-dev0
10835 - BUG/MAJOR: connections: Close the connection before freeing it.
10836 - REGTEST: Require the option LUA to run lua tests
10837 - REGTEST: script: Process script arguments before everything else
10838 - REGTEST: script: Evaluate the varnishtest command to allow quoted parameters
10839 - REGTEST: script: Add the option --clean to remove previous log direcotries
10840 - REGTEST: script: Add the option --debug to show logs on standard ouput
10841 - REGTEST: script: Add the option --keep-logs to keep all log directories
10842 - REGTEST: script: Add the option --use-htx to enable the HTX in regtests
10843 - REGTEST: script: Print only errors in the results report
10844 - REGTEST: Add option to use HTX prefixed by the macro 'no-htx'
10845 - REGTEST: Make reg-tests target support argument.
10846 - REGTEST: Fix a typo about barrier type.
10847 - REGTEST: Be less Linux specific with a syslog regex.
10848 - REGTEST: Missing enclosing quotes for ${tmpdir} macro.
10849 - REGTEST: Exclude freebsd target for some reg tests.
10850 - BUG/MEDIUM: h2: Don't forget to quit the sending_list if SUB_CALL_UNSUBSCRIBE.
10851 - BUG/MEDIUM: mux-h2: Don't forget to quit the send list on error reports
10852 - BUG/MEDIUM: dns: Don't prevent reading the last byte of the payload in dns_validate_response()
10853 - BUG/MEDIUM: dns: overflowed dns name start position causing invalid dns error
10854 - BUG/MINOR: compression/htx: Don't compress responses with unknown body length
10855 - BUG/MINOR: compression/htx: Don't add the last block of data if it is empty
10856 - MEDIUM: mux_h1: Implement h1_show_fd.
10857 - REGTEST: script: Add support of alternatives in requited options list
10858 - REGTEST: Add a basic test for the compression
10859 - BUG/MEDIUM: mux-h2: don't needlessly wake up the demux on short frames
10860 - REGTEST: A basic test for "http-buffer-request"
10861 - BUG/MEDIUM: server: Also copy "check-sni" for server templates.
10862 - MINOR: ssl: Add ssl_sock_set_alpn().
10863 - MEDIUM: checks: Add check-alpn.
10864 - wip
10865
Willy Tarreau82230502018-12-19 19:13:17 +0100108662018/12/19 : 1.9.0
10867 - BUG/MEDIUM: compression: Use the right buffer pointers to compress input data
10868 - BUG/MINOR: mux_pt: Set CS_FL_WANT_ROOM when count is zero in rcv_buf() callback
10869 - BUG/MEDIUM: connection: Add a new CS_FL_ERR_PENDING flag to conn_streams.
10870 - CONTRIB: debug: teach the "flags" utility about new conn_stream flags
10871 - BUG/MEDIUM: stream-int: always clear CS_FL_WANT_ROOM before receiving
10872 - BUG/MEDIUM: mux-h2: also restart demuxing when data are pending in demux
10873 - BUG/MEDIUM: mux-h2: restart demuxing as soon as demux data are available
10874 - BUG/MEDIUM: h2: fix aggregated cookie length computation in HTX mode
10875 - MINOR: mux-h2: report more h2c, last h2s and cs information on "show fd"
10876 - CONTRIB: debug: report stream-int's flag SI_FL_CLEAN_ABRT
10877 - MINOR: cli/stream: add the conn_stream in "show sess" output
10878 - BUG/MINOR: mux-h2: don't report a fantom h2s in "show fd"
10879 - BUG/MINOR: cli/fd: don't isolate the thread for each individual fd
10880 - MINOR: objtype: report a few missing types in names and base pointers
10881 - BUG/MEDIUM: mux-h2: make sure to report synchronous errors after EOS
10882 - BUG/MEDIUM: mux-h2: report asynchronous errors in h2_wake_some_streams()
10883 - BUG/MEDIUM: mux-h2: make sure the demux also wakes streams up on errors
10884 - BUG/MINOR: mux-h1: report the correct frontend in error captures
10885 - BUG/MEDIUM: stream-int: also wake the stream up on end of transfer
10886 - MEDIUM: h2: properly check and deduplicate the content-length header in HTX
10887 - BUG/MEDIUM: stream: Forward the right amount of data before infinite forwarding
10888 - BUG/MINOR: proto_htx: Call the HTX version of the function managing client cookies
10889 - BUG/MEDIUM: lua/htx: Handle EOM in receive/get_line calls in HTTP applets
10890 - BUG/MINOR: lua: Return an error if a legacy HTTP applet doesn't send anything
10891 - MINOR: compression: Remove the thread_local variable buf_output
10892 - CLEANUP: connection: rename subscription events values and event field
10893 - CLEANUP: connection: rename conn->mux_ctx to conn->ctx
10894 - MINOR: connection: remove an unwelcome dependency on struct stream
10895 - CLEANUP: stream-int: consistently call the si/stream_int functions
10896 - BUG/MEDIUM: h1: Don't shutw/shutr the connection if we have keepalive.
10897 - BUG/MEDIUM: H2: Make sure htx is set even on empty frames.
10898 - BUG/MEDIUM: mux-h2: pass CS_FL_ERR_PENDING to h2_wake_some_streams()
10899 - MEDIUM: stream-int: always consider all CS errors on the send side
10900 - BUG/MEDIUM: h2: Make sure we don't set CS_FL_ERROR if there's still data.
10901 - CLEANUP: mux-h2: implement h2s_notify_{send,recv} to report events to subscribers
10902 - MINOR: mux-h2: add a new function h2s_alert() to call the data layer
10903 - BUG/MEDIUM: mux-h2: make use of h2s_alert() to report aborts
10904 - MINOR: connection: add cs_set_error() to set the error bits
10905 - CLEANUP: mux-h2: make use of cs_set_error()
10906 - BUG/MINOR: mux-h2: make sure we check the conn_stream in early data
10907 - BUG/MEDIUM: h2: Don't wait for flow control if the connection had a shutr.
10908 - MINOR: cli/show_fd: report that a connection is back or not
10909 - SCRIPTS: add the slack channel URL to the announce script
10910 - CLEANUP: remove my name and address from the copyright banner
10911 - DOC: mention in the readme that 1.9 is a stable version now
10912
Willy Tarreau2a7d6502018-12-16 22:35:06 +0100109132018/12/16 : 1.9-dev11
10914 - BUG/MEDIUM: connection: Don't use the provided conn_stream if it was tried.
10915 - REGTEST/MINOR: remove double body specification for server txresp
10916 - BUG/MEDIUM: connections: Remove error flags when retrying.
10917 - REGTEST/MINOR: skip seamless-reload test with abns socket on freebsd
10918 - REGTEST/MINOR: remove health-check that can make the test fail
10919 - DOC: clarify that check-sni needs an argument.
10920 - DOC: refer to check-sni in the documentation of sni
10921 - BUG/MEDIUM: mux-h2: fix encoding of non-GET/POST methods
10922 - BUG/MINOR: mux-h1: Fix conn_mode processing for headerless outgoing messages
10923 - BUG/MEDIUM: mux-h1: Add a BUSY mode to not loop on pipelinned requests
10924 - BUG/MEDIUM: mux-h1: Don't loop on the headers parsing if the read0 was received
10925 - BUG/MEDIUM: htx: Always do a defrag if a block value is replace by a bigger one
10926 - BUG/MEDIUM: mux-h2: Don't forget to set the CS_FL_EOS flag with htx.
10927 - BUG/MINOR: hpack: fix off-by-one in header name encoding length calculation
10928 - CLEANUP: hpack: no need to include chunk.h, only include buf.h
10929 - MINOR: hpack: simplify the len to bytes conversion
10930 - MINOR: hpack: use ist2bin() to copy header names in hpack_encode_header()
10931 - MINOR: hpack: optimize header encoding for short names
10932 - CONTRIB: hpack: add a compressed stream generator for the encoder
10933 - MEDIUM: hpack: make it possible to encode any static header name
10934 - MINOR: hpack: move the length computation and encoding functions to .h
10935 - MINOR: hpack: provide a function to encode a short indexed header
10936 - MINOR: hpack: provide a function to encode a long indexed header
10937 - MINOR: hpack: provide new functions to encode the ":status" header
10938 - MEDIUM: mux-h2: make use of standard HPACK encoding functions for the status
10939 - MINOR: hpack: provide a function to encode an HTTP method
10940 - MEDIUM: mux-h2: make use of hpack_encode_method() to encode the method
10941 - MINOR: hpack: provide a function to encode an HTTP scheme
10942 - MEDIUM: mux-h2: make use of hpack_encode_scheme() to encode the scheme
10943 - MINOR: hpack: provide a function to encode an HTTP path
10944 - MEDIUM: mux-h2: make use of hpack_encode_path() to encode the path
10945 - REGTEST: add the HTTP rules test involving HTX processing
10946 - REORG: connection: centralize the conn_set_{tos,mark,quickack} functions
10947 - MEDIUM: cli: rework the CLI proxy parser
10948 - MINOR: cli: parse prompt command in the CLI proxy
10949 - MINOR: cli: implements 'quit' in the CLI proxy
10950 - BUG/MINOR: cli: wait for payload data even without prompt
10951 - MEDIUM: cli: handle payload in CLI proxy
10952 - MINOR: cli: use pcli_flags for prompt activation
10953 - MINOR: compression: Rename the function check_legacy_http_comp_flt()
10954 - MINOR: cache/htx: Don't use the same cache on HTX and legacy HTTP proxies
10955 - MINOR: cache: Register the cache as a data filter only if response is cacheable
10956 - MEDIUM: cache/htx: Add the HTX support into the cache
10957 - MINOR: cache: Improve and simplify the cache configuration check
10958 - MINOR: filters: Export the name of known filters
10959 - MEDIUM: cache/compression: Add a way to safely combined compression and cache
10960 - MEDIUM: cache: Require an explicit filter declaration if other filters are used
10961 - REORG: htx: merge types+proto into common/htx.h
10962 - REORG: http: create http_msg.c to place there some legacy HTTP parts
10963 - REORG: h1: move legacy http functions to http_msg.c
10964 - REORG: h1: move the h1_state definition to proto_http
10965 - CLEANUP: h1: remove some occurrences of unneeded h1.h inclusions
10966 - REORG: h1: merge types+proto into common/h1.h
10967 - CLEANUP: stream: remove SF_TUNNEL, SF_INITIALIZED, SF_CONN_TAR
10968 - MEDIUM: mux-h1: implement true zero-copy of DATA blocks
10969 - MINOR: config: round up global.tune.bufsize to the next multiple of 2 void*
10970 - BUG/MINOR: mux-h2: refrain from muxing during the preface
10971 - BUG/MINOR: mux-h2: advertise a larger connection window size
10972 - DOC: master CLI documentation in management.txt
10973 - MINOR: mux-h2: avoid copying large blocks into full buffers
10974 - MEDIUM: mux-h2: implement true zero-copy send of large HTX DATA blocks
10975 - MINOR: mux-h2: force reads to be HTX-aligned in HTX mode
10976 - MINOR: cli: change 'show proc' output of old processes
10977 - BUG/MEDIUM: mux-h1: Fix the zero-copy on output for chunked messages
10978 - BUG: dns: Prevent stack-exhaustion via recursion loop in dns_read_name
10979 - BUG: dns: Prevent out-of-bounds read in dns_read_name()
10980 - BUG: dns: Prevent out-of-bounds read in dns_validate_dns_response()
10981 - BUG: dns: Fix out-of-bounds read via signedness error in dns_validate_dns_response()
10982 - BUG: dns: Fix off-by-one write in dns_validate_dns_response()
10983 - REGTEST: the cache regtest requires haproxy 1.9
10984 - MEDIUM: cli: store CLI level in the appctx
10985 - MEDIUM: cli: show and change CLI permissions
10986 - CLEANUP: cli: use dedicated define instead of appctx ones
10987 - MEDIUM: cli: handle CLI level from the master CLI
10988 - BUG/MEDIUM: cli: handle correctly prefix and payload
10989 - BUILD: Makefile: Implements the help target
10990 - REGTESTS: adjust the http-rules regtest to support window updates
10991 - BUG/MEDIUM: connections: Remove CS_FL_EOS | CS_FL_REOS on retry.
10992 - BUG/MEDIUM: stream_interface: Don't report read0 if we were not connected.
10993 - BUG/MEDIUM: connection: Just make sure we closed the fd on connection failure.
10994 - MEDIUM: mux: Add an optional "reset" method.
10995 - BUG/MEDIUM: mux-h1: Fix loop if server closes its connection with unparsed data
10996 - MINOR: mux-h1: Add helper functions to wake a stream from recv or send
10997 - BUG/MEDIUM: mux-h1: Wake the stream for send once the connection is established
10998 - BUG/MEDIUM: connections: Don't attempt to reuse an unusable connection.
10999 - MEDIUM: htx: Try to take a connection over if it has no owner.
11000 - REGTEST: Reg testing improvements.
11001 - REGTEST: Add a first test for health-checks.
11002 - REGTEST: Reg test for "check" health-check option.
11003 - REGTEST: level 1 health-check test 2.
11004 - REGTEST: Add miscellaneous reg tests for health-checks.
11005 - REGTEST: add a few HTTP messaging tests
11006 - MINOR: lb: make the leastconn algorithm more accurate
11007 - REGTEST: fix missing space in checks/s00001
11008 - REGTEST: http-messaging: add "option http-buffer-request" for H2 tests
11009 - BUG/MEDIUM: cache: fix random crash on filter parser's error path
11010 - MINOR: connection: realign empty buffers in muxes, not transport layers
11011 - MINOR: mux_h1/h2: simplify the zero-copy Rx alignment
11012 - MINOR: backend: count the number of connect and reuse per server and per backend
11013 - BUG/MINOR: stats: fix inversion of failed header rewrites and other statuses
11014 - MINOR: tools: increase the number of ITOA strings to 16
11015 - MINOR: cache: report the number of cache lookups and cache hits
11016 - MEDIUM: tasks: check the global task mask instead of the thread number
11017 - MINOR: mworker: set all_threads_mask and pid_bit to 1
11018 - BUG/MINOR: proto_htx: Fix htx_res_set_status to also set the reason
11019 - BUG/MINOR: stats: Parse post data for HTX streams
11020 - MINOR: payload/htx: Adapt smp_fetch_len to be HTX aware
11021 - MINOR: http_fecth: Implement body_len and body_size sample fetches for the HTX
11022 - MAJOR: lua: Forbid calls to Channel functions for LUA scripts in HTTP proxies
11023 - MEDIUM: lua/htx: Adapt functions of the HTTP to be compatible with HTX
11024 - MINOR: lua/htx: Adapt the functions get_in_length and is_full to be HTX aware
11025 - MAJOR: lua/htx: Adapt HTTP applets to support HTX messages
11026 - MINOR: lua: Remove useless check on the messages state in HTTP functions
11027 - BUG/MEDIUM: htx: When performing zero-copy, start from the right offset.
11028 - BUG/MINOR: mworker: don't use unitialized mworker_proc struct
11029 - MINOR: mworker/cli: indicate in the master prompt when a reload failed
11030 - MINOR: cli: implements 'reload' on master CLI
11031 - BUG/MEDIUM: log: Don't call sample_fetch_as_type if we don't have a stream.
11032 - BUG/MEDIUM: mux-h1: make sure we always have at least one HTX block to send
11033 - BUG/MAJOR: backend: only update server's counters when the server exists
11034 - MINOR: tools: preset the port of fd-based "sockets" to zero
11035 - BUG/MINOR: log: fix logging to both FD and IP
11036 - REGTEST: Add a reg test for HTTP cookies.
11037 - BUILD: ssl: Fix compilation without deprecated OpenSSL 1.1 APIs
11038 - BUILD: thread: properly report multi-thread support
11039 - BUG/MINOR: logs: leave startup-logs global and not per-thread
11040 - BUG/MEDIUM: threads: don't close the thread waker pipe if not init
11041 - BUG/MAJOR: compression/cache: Make it really works with these both filters
11042 - BUG/MEDIUM: h2: Don't forget to destroy the h2s after deferred shut.
11043 - MEDIUM: proxy: Set http-reuse safe as default.
11044 - MEDIUM: servers: Add a command to limit the number of idling connections.
11045 - MEDIUM: servers: Replace idle-timeout with pool-purge-delay.
11046 - MEDIUM: mux: Destroy the stream before trying to add the conn to the idle list.
11047 - MEDIUM: mux: provide the session to the init() and attach() method.
11048 - MEDIUM: sessions: Don't keep an infinite number of idling connections.
11049 - MEDIUM: servers: Be more agressive when adding H2 connection to idle lists.
11050 - MEDIUM: mux_h2: Always set CS_FL_NOT_FIRST for new conn_streams.
11051 - BUG/MEDIUM: htx/cache: use the correct class of error codes on abort
11052 - BUG/MINOR: cache: also consider CF_SHUTR to abort delivery
11053 - MINOR: pools: Cast to volatile int * instead of int *.
11054 - MINOR: debug: make the ABORT_NOW macro use a volatile int
11055 - BUG/MEDIUM: h2: Don't destroy the h2s if it still has a cs attached.
11056 - BUG/MEDIUM: mux-h1: don't try to process an empty input buffer
11057 - DOC: clarify the agent-check status line syntax
11058 - BUG/MAJOR: hpack: fix length check for short names encoding
11059 - DOC: split the README into README + INSTALL
11060
Willy Tarreau72e92272018-12-08 16:20:55 +0100110612018/12/08 : 1.9-dev10
11062 - MINOR: htx: Rename functions htx_*_to_str() to be H1 specific
11063 - BUG/MINOR: htx: Force HTTP/1.1 on H1 formatting when version is 1.1 or above
11064 - BUG/MINOR: fix ssl_fc_alpn and actually add ssl_bc_alpn
11065 - BUG/MEDIUM: mworker: stop proxies which have no listener in the master
11066 - BUG/MEDIUM: h1: Destroy a connection after detach if it has no owner.
11067 - BUG/MEDIUM: h2: Don't forget to wake the tasklet after shutr/shutw.
11068 - BUG/MINOR: flt_trace/compression: Use the right flag to add the HTX support
11069 - BUG/MEDIUM: stream_interface: Make REALLY sure we read all the data.
11070 - MEDIUM: mux-h1: Revamp the way subscriptions are handled.
11071 - BUG/MEDIUM: mux-h1: Always set CS_FL_RCV_MORE when data are received in h1_recv()
11072 - MINOR: mux-h1: Make sure to return 1 in h1_recv() when needed
11073 - BUG/MEDIUM: mux-h1: Release the mux H1 in h1_process() if there is no h1s
11074 - BUG/MINOR: proto_htx: Truncate the request when an error is detected
11075 - BUG/MEDIUM: h2: When sending in HTX, make sure the caller knows we sent all.
11076 - BUG/MEDIUM: mux-h2: properly update the window size in HTX mode
11077 - BUG/MEDIUM: mux-h2: make sure to always report HTX EOM when consumed by headers
11078 - BUG/MEDIUM: mux-h2: stop sending HTX once the mux is blocked
11079 - BUG/MEDIUM: mux-h2: don't send more HTX data than requested
11080 - MINOR: mux-h2: stop on non-DATA and non-EOM HTX blocks
11081 - BUG/MEDIUM: h1: Correctly report used data with no len.
11082 - MEDIUM: h1: Realign the ibuf before calling rcv_buf if needed.
11083 - BUG/MEDIUM: mux_pt: Always set CS_FL_RCV_MORE.
11084 - MINOR: htx: make htx_from_buf() adjust the size only on new buffers
11085 - MINOR: htx: add buf_room_for_htx_data() to help optimize buffer transfers
11086 - MEDIUM: mux-h1: make use of buf_room_for_htx_data() instead of b_room()
11087 - MEDIUM: mux-h1: attempt to zero-copy Rx DATA transfers
11088 - MEDIUM: mux-h1: avoid a double copy on the Tx path whenever possible
11089 - BUG/MEDIUM: stream-int: don't mark as blocked an empty buffer on Rx
11090 - BUG/MINOR: mux-h1: Check h1m flags to set the server conn_mode on request path
11091 - MEDIUM: htx: Rework conversion from a buffer to an htx structure
11092 - MEDIUM: channel/htx: Add functions for forward HTX data
11093 - MINOR: mux-h1: Don't adjust anymore the amount of data sent in h1_snd_buf()
11094 - CLEANUP: htx: Fix indentation here and there in HTX files
11095 - MINOR: mux-h1: Allow partial data consumption during outgoing data processing
11096 - BUG/MEDIUM: mux-h2: use the correct offset for the HTX start line
11097 - BUG/MEDIUM: mux-h2: stop sending using HTX on errors
11098 - MINOR: mux-h1: Drain obuf if the output is closed after sending data
11099 - BUG/MEDIUM: mworker: stop every tasks in the master
11100 - BUG/MEDIUM: htx: Set the right start-line offset after a defrag
11101 - BUG/MEDIUM: stream: Don't dereference s->txn when it is not there yet.
11102 - BUG/MEDIUM: connections: Reuse an already attached conn_stream.
11103 - MINOR: stream-int: add a new blocking condition on the remote connection
11104 - BUG/MEDIUM: stream-int: don't attempt to receive if the connection is not established
11105 - BUG/MEDIUM: lua: block on remote connection establishment
11106 - BUG/MEDIUM: mworker: fix several typos in mworker_cleantasks()
11107 - SCRIPTS/REGTEST: merge grep+sed into sed in run-regtests
11108 - BUG/MEDIUM: connections: Split CS_FL_RCV_MORE into 2 flags.
11109 - BUG/MEDIUM: h1: Don't free the connection if it's an outgoing connection.
11110 - BUG/MEDIUM: h1: Set CS_FL_REOS if we had a read0.
11111 - BUG/MEDIUM: mux-h1: Be sure to have a conn_stream to set CS_FL_REOS in h1_recv
11112 - REGTEST: Move LUA reg test 4 to level 1.
11113 - MINOR: ist: add functions to copy/uppercase/lowercase into a buffer or string
11114 - MEDIUM: ist: always turn header names to lower case
11115 - MINOR: h2: don't turn HTX header names to lower case anymore
11116 - MEDIUM: ist: use local conversion arrays to case conversion
11117 - MINOR: htx: switch to case sensitive search of lower case header names
11118 - MINOR: mux-h1: Set CS_FL_EOS when read0 is detected and no data are pending
11119 - BUG/MINOR: stream-int: Process read0 even if no data was received in si_cs_recv
11120 - REGTEST: fix the Lua test file name in test lua/h00002 :-)
11121 - REGTEST: add a basic test for HTTP rules manipulating headers
11122 - BUG/MEDIUM: sample: Don't treat SMP_T_METH as SMP_T_STR.
11123 - MINOR: sample: add bc_http_major
11124 - BUG/MEDIUM: htx: fix typo in htx_replace_stline() making it fail all the time
11125 - REGTEST: make the HTTP rules test compatible with HTTP/2 as well
11126 - BUG/MEDIUM: h2: Don't try to chunk data when using HTX.
11127 - MINOR: compiler: add a new macro ALREADY_CHECKED()
11128 - BUILD: h2: mark the start line already checked to avoid warnings
11129 - BUG/MINOR: mux-h1: Remove the connection header when it is useless
11130
Willy Tarreauda7e3be2018-12-02 19:31:37 +0100111312018/12/02 : 1.9-dev9
11132 - BUILD/MINOR: ssl: fix build with non-alpn/non-npn libssl
11133 - BUG/MINOR: mworker: Do not attempt to close(2) fd -1
11134 - BUILD: compression: fix build error with DEFAULT_MAXZLIBMEM
11135 - MINOR: compression: always create the compression pool
11136 - BUG/MEDIUM: mworker: fix FD leak upon reload
11137 - BUILD: htx: fix fprintf format inconsistency on 32-bit platforms
11138 - BUILD: buffers: buf.h requires unistd to get ssize_t on libmusl
11139 - MINOR: initcall: introduce a way to register init functions to call at boot
11140 - MINOR: init: process all initcalls in order at boot time
11141 - MEDIUM: init: convert all trivial registration calls to initcalls
11142 - MINOR: thread: provide a set of lock initialisers
11143 - MINOR: threads: add new macros to declare self-initializing locks
11144 - MEDIUM: init: use self-initializing spinlocks and rwlocks
11145 - MINOR: initcall: apply initcall to all register_build_opts() calls
11146 - MINOR: initcall: use initcalls for most post_{check,deinit} and per_thread*
11147 - MINOR: initcall: use initcalls for section parsers
11148 - MINOR: memory: add a callback function to create a pool
11149 - MEDIUM: init: use initcall for all fixed size pool creations
11150 - MEDIUM: memory: use pool_destroy_all() to destroy all pools on deinit()
11151 - MEDIUM: initcall: use initcalls for a few initialization functions
11152 - MEDIUM: memory: make the pool cache an array and not a thread_local
11153 - MINOR: ssl: free ctx when libssl doesn't support NPN
11154 - BUG/MINOR: proto_htx: only mark connections private if NTLM is detected
11155 - MINOR: h2: make struct h2_ops static
11156 - BUG/MEDIUM: mworker: avoid leak of client socket
11157 - REORG: mworker: declare master variable in global.h
11158 - BUG/MEDIUM: listeners: CLOEXEC flag is not correctly set
11159 - CLEANUP: http: Fix typo in init_http's comment
11160 - BUILD: Makefile: Disable -Wcast-function-type if it exists.
11161 - BUG/MEDIUM: h2: Don't bogusly error if the previous stream was closed.
11162 - REGTEST/MINOR: script: add run-regtests.sh script
11163 - REGTEST: Add a basic test for the cache.
11164 - BUG/MEDIUM: mux_pt: Don't forget to unsubscribe() on attach.
11165 - BUG/MINOR: ssl: ssl_sock_parse_clienthello ignores session id
11166 - BUG/MEDIUM: connections: Wake the stream once the mux is chosen.
11167 - BUG/MEDIUM: connections: Don't forget to detach the connection from the SI.
11168 - BUG/MEDIUM: stream_interface: Don't check if the handshake is done.
11169 - BUG/MEDIUM: stream_interface: Make sure we read all the data available.
11170 - BUG/MEDIUM: h2: Call h2_process() if there's an error on the connection.
11171 - REGTEST: Fix several issues.
11172 - REGTEST: lua: check socket functionality from a lua-task
11173 - BUG/MEDIUM: session: Remove the session from the session_list in session_free.
11174 - BUG/MEDIUM: streams: Don't assume we have a CS in sess_update_st_con_tcp.
11175 - BUG/MEDIUM: connections: Don't assume we have a mux in connect_server().
11176 - BUG/MEDIUM: connections: Remove the connection from the idle list before destroy.
11177 - BUG/MEDIUM: session: properly clean the outgoing connection before freeing.
11178 - BUG/MEDIUM: mux_pt: Don't try to send if handshake is not done.
11179 - MEDIUM: connections: Put H2 connections in the idle list if http-reuse always.
11180 - MEDIUM: h2: Destroy a connection with no stream if it has no owner.
11181 - MAJOR: sessions: Store multiple outgoing connections in the session.
11182 - MEDIUM: session: Steal owner-less connections on end of transaction.
11183 - MEDIUM: server: Be smarter about deciding to reuse the last server.
11184 - BUG/MEDIUM: Special-case http_proxy when dealing with outgoing connections.
11185 - BUG/MINOR: cfgparse: Fix transition between 2 sections with the same name
11186 - BUG/MINOR: http: Use out buffer instead of trash to display error snapshot
11187 - BUG/MINOR: htx: Fix block size calculation when a start-line is added/replaced
11188 - BUG/MINOR: mux-h1: Fix processing of "Connection: " header on outgoing messages
11189 - BUG/MEDIUM: mux-h1: Reset the H1 parser when an outgoing message is processed
11190 - BUG/MINOR: proto_htx: Send outgoing data to client to start response processing
11191 - BUG/MINOR: htx: Stop a header or a start line lookup on the first EOH or EOM
11192 - BUG/MINOR: connection: report mux modes when HTX is supported
11193 - MINOR: htx: add a function to cut the beginning of a DATA block
11194 - MEDIUM: conn_stream: Add a way to get mux's info on a CS from the upper layer
11195 - MINOR: mux-h1: Implement get_cs_info() callback
11196 - MINOR: stream: Rely on CS's info if it exists and fallback on session's ones
11197 - MINOR: proto_htx: Use conn_stream's info to set t_idle duration when possible
11198 - MINOR: mux-h1: Don't rely on the stream anymore in h1_set_srv_conn_mode()
11199 - MINOR: mux-h1: Write last chunk and trailers if not found in the HTX message
11200 - MINOR: mux-h1: Be prepare to fail when EOM is added during trailers parsing
11201 - MINOR: mux-h1: Subscribe to send in h1_snd_buf() when not all data have been sent
11202 - MINOR: mux-h1: Consume channel's data in a loop in h1_snd_buf()
11203 - MEDIUM: mux-h1: Add keep-alive outgoing connections in connections list
11204 - MINOR: htx: Add function to add an HTX block just before another one
11205 - MINOR: htx: Add function to iterate on an HTX message using HTX blocks
11206 - MINOR: htx: Add a function to find the HTX block corresponding to a data offset
11207 - MINOR: stats: Don't add end-of-data marker and trailers in the HTX response
11208 - MEDIUM: htx: Change htx_sl to be a struct instead of an union
11209 - MINOR: htx: Add the start-line offset for the HTX message in the HTX structure
11210 - MEDIUM: htx: Don't rely on h1_sl anymore except during H1 header parsing
11211 - MINOR: proto-htx: Use the start-line flags to set the HTTP messsage ones
11212 - MINOR: htx: Add BODYLESS flags on the HTX start-line and the HTTP message
11213 - MINOR: proto_htx: Use full HTX messages to send 100-Continue responses
11214 - MINOR: proto_htx: Use full HTX messages to send 103-Early-Hints responses
11215 - MINOR: proto_htx: Use full HTX messages to send 401 and 407 responses
11216 - MINOR: proto_htx: Send valid HTX message when redir mode is enabled on a server
11217 - MINOR: proto_htx: Send valid HTX message to send 30x responses
11218 - MEDIUM: proto_htx: Convert all HTTP error messages into HTX
11219 - MINOR: mux-h1: Process conn_mode on the EOH when no connection header is found
11220 - MINOR: mux-h1: Change client conn_mode on an explicit close for the response
11221 - MINOR: mux-h1: Capture bad H1 messages
11222 - MAJOR: filters: Adapt filters API to be compatible with the HTX represenation
11223 - MEDIUM: proto_htx/filters: Add data filtering during the forwarding
11224 - MINOR: flt_trace: Adapt to be compatible with the HTX representation
11225 - MEDIUM: compression: Adapt to be compatible with the HTX representation
11226 - MINOR: h2: implement H2->HTX request header frame transcoding
11227 - MEDIUM: mux-h2: register mux for both HTTP and HTX modes
11228 - MEDIUM: mux-h2: make h2_rcv_buf() support HTX transfers
11229 - MEDIUM: mux-h2: make h2_snd_buf() HTX-aware
11230 - MEDIUM: mux-h2: add basic H2->HTX transcoding support for headers
11231 - MEDIUM: mux-h2: implement emission of H2 headers frames from HTX blocks
11232 - MEDIUM: mux-h2: implement the emission of DATA frames from HTX DATA blocks
11233 - MEDIUM: mux-h2: support passing H2 DATA frames to HTX blocks
11234 - BUG/MINOR: cfgparse: Fix the call to post parser of the last sections parsed
11235 - BUG/MEDIUM: mux-h2: don't lose the first response header in HTX mode
11236 - BUG/MEDIUM: mux-h2: remove the HTX EOM block on H2 response headers
11237 - MINOR: listener: the mux_proto entry in the bind_conf is const
11238 - MINOR: connection: create conn_get_best_mux_entry()
11239 - MINOR: server: the mux_proto entry in the server is const
11240 - MINOR: config: make sure to associate the proper mux to bind and servers
11241 - MINOR: hpack: add ":path" to the list of common header fields
11242 - MINOR: h2: add new functions to produce an HTX message from an H2 response
11243 - MINOR: mux-h2: mention that the mux is compatible with both sides
11244 - MINOR: mux-h2: implement an outgoing stream allocator : h2c_bck_stream_new()
11245 - MEDIUM: mux-h2: start to create the outgoing mux
11246 - MEDIUM: mux-h2: implement encoding of H2 request on the backend side
11247 - MEDIUM: mux-h2: make h2_frt_decode_headers() direction-agnostic
11248 - MEDIUM: mux-h2: make h2_process_demux() capable of processing responses as well
11249 - MEDIUM: mux-h2: Implement h2_attach().
11250 - MEDIUM: mux-h2: Don't bother flagging outgoing connections as TOOMANY.
11251 - REGTEST: Fix LEVEL 4 script 0 of "connection" module.
11252 - MINOR: connection: Fix a comment.
11253 - MINOR: mux: add a "max_streams" method.
11254 - MEDIUM: servers: Add a way to keep idle connections alive.
11255 - CLEANUP: fix typos in the htx subsystem
11256 - CLEANUP: Fix typo in the chunk headers file
11257 - CLEANUP: Fix typos in the h1 subsystem
11258 - CLEANUP: Fix typos in the h2 subsystem
11259 - CLEANUP: Fix a typo in the mini-clist header
11260 - CLEANUP: Fix a typo in the proto_htx subsystem
11261 - CLEANUP: Fix typos in the proto_tcp subsystem
11262 - CLEANUP: Fix a typo in the signal subsystem
11263 - CLEANUP: Fix a typo in the session subsystem
11264 - CLEANUP: Fix a typo in the queue subsystem
11265 - CLEANUP: Fix typos in the shctx subsystem
11266 - CLEANUP: Fix typos in the socket pair protocol subsystem
11267 - CLEANUP: Fix typos in the map management functions
11268 - CLEANUP: Fix typo in the fwrr subsystem
11269 - CLEANUP: Fix typos in the cli subsystem
11270 - CLEANUP: Fix typo in the 51d subsystem
11271 - CLEANUP: Fix a typo in the base64 subsystem
11272 - CLEANUP: Fix a typo in the connection subsystem
11273 - CLEANUP: Fix a typo in the protocol header file
11274 - CLEANUP: Fix a typo in the checks header file
11275 - CLEANUP: Fix typos in the file descriptor subsystem
11276 - CLEANUP: Fix a typo in the listener subsystem
11277 - BUG/MINOR: lb-map: fix unprotected update to server's score
11278 - BUILD: threads: fix minor build warnings when threads are disabled
11279
Willy Tarreau0b936ad2018-11-25 09:16:46 +0100112802018/11/25 : 1.9-dev8
11281 - REORG: config: extract the global section parser into cfgparse-global
11282 - REORG: config: extract the proxy parser into cfgparse-listen.c
11283 - BUILD: update the list of supported targets and compilers in makefile and readme
11284 - BUILD: reorder the objects in the makefile
11285 - BUILD: Makefile: make "V=1" show some of the commands that are executed
11286 - BUILD: Makefile: add the quiet mode to a few more targets
11287 - BUILD: Makefile: add "$(Q)" to clean, tags and cscope targets
11288 - BUILD: Makefile: switch to quiet mode by default for CC/LD/AR
11289 - MINOR: cli: format `show proc` to be more readable
11290 - MINOR: cli: displays uptime in `show proc`
11291 - MINOR: cli: show master information in 'show proc'
11292 - BUG/MEDIUM: hpack: fix encoding of "accept-ranges" field
11293 - MAJOR: mux-h1: Remove the rxbuf and decode HTTP messages in channel's buffer
11294 - BUG/MINOR: mux-h1: Enable keep-alive on server side
11295 - BUG/MEDIUM: mux-h1: Fix freeze when the kernel splicing is used
11296 - BUG/MEDIUM: mux-h1: Don't set the flag CS_FL_RCV_MORE when nothing was parsed
11297 - BUG/MINOR: stats/htx: Remove channel's output when the request is eaten
11298 - BUG/MINOR: proto_htx: Fix request/response synchronisation on error
11299 - MINOR: stream-int: Notify caller when an error is reported after a rcv_pipe()
11300 - MINOR: stream-int: Notify caller when an error is reported after a rcv_buf()
11301 - BUG/MINOR: stream-int: Don't call snd_buf() if there are still data in the pipe
11302 - MINOR: stream-int: remove useless checks on CS and conn flags in si_cs_send()
11303 - BUG/MINOR: config: Be aware of the HTX during the check of mux protocols
11304 - BUG/MINOR: mux-htx: Fix bad test on h1c flags in h1_recv_allowed()
11305 - MEDIUM: mworker: wait mode use standard init code path
11306 - MINOR: log: introduce ha_notice()
11307 - MINOR: mworker: use ha_notice to announce a new worker
11308 - BUG/MEDIUM: http_fetch: Make sure name is initialized before http_find_header.
11309 - MINOR: cli: add mworker_accept_wrapper to 'show fd'
11310 - MEDIUM: signal: signal_unregister() removes every handlers
11311 - BUG/MEDIUM: mworker: unregister the signals of main()
11312 - MINOR: cli: add a few missing includes in proto/cli.h
11313 - REORG: time/activity: move activity measurements to activity.{c,h}
11314 - MINOR: activity: report the average loop time in "show activity"
11315 - MINOR: activity: add configuration and CLI support for "profiling.tasks"
11316 - MEDIUM: tasks: collect per-task CPU time and latency
11317 - MINOR: sample: add cpu_calls, cpu_ns_avg, cpu_ns_tot, lat_ns_avg, lat_ns_tot
11318 - MINOR: cli/activity: rename the stolen CPU time fields to mention milliseconds
11319 - BUG/MINOR: cli: Fix memory leak
11320 - BUG/MINOR: mworker: fix FD leak and memory leak in error path
11321 - MINOR: poller: move the call of tv_update_date() back to the pollers
11322 - MINOR: polling: add an option to support busy polling
11323 - MINOR: server: Add "alpn" and "npn" keywords.
11324 - MEDIUM: connection: Don't bother reactivating polling after connection retry.
11325 - MAJOR: connections: Defer mux creation for outgoing connection if alpn is set.
11326 - MEDIUM: ssl: Add ssl_bc_alpn and ssl_bc_npn sample fetches.
11327 - MINOR: servers: Free [idle|safe|priv]_conns on exit.
11328 - REGTEST: add the option to test only a specific set of files
11329 - REGTEST: add a test for connections to a "dispatch" address
11330 - BUG/MEDIUM: connections: Don't reset the conn flags in *connect_server().
11331 - MINOR: server: Only defined conn_complete_server if USE_OPENSSL is set.
11332 - BUG/MEDIUM: servers: Don't check if we have a conn_stream too soon.
11333 - BUG/MEDIUM: sessions: Set sess->origin to NULL if the origin was destroyed.
11334 - MEDIUM: servers: Store the connection in the SI until we have a mux.
11335 - BUG/MEDIUM: h2: wake the processing task up after demuxing
11336 - BUG/MEDIUM: h2: restart demuxing after releasing buffer space
11337
Willy Tarreau5c0e41b2018-11-18 22:33:00 +0100113382018/11/18 : 1.9-dev7
11339 - BUILD: cache: fix a build warning regarding too large an integer for the age
11340 - CLEANUP: fix typos in the comments of the Makefile
11341 - CLEANUP: fix a typo in a comment for the contrib/halog subsystem
11342 - CLEANUP: fix typos in comments for the contrib/modsecurity subsystem
11343 - CLEANUP: fix typos in comments for contrib/spoa_example
11344 - CLEANUP: fix typos in comments for contrib/wireshark-dissectors
11345 - DOC: Fix typos in README and CONTRIBUTING
11346 - MINOR: log: slightly improve error message syntax on log failure
11347 - DOC: logs: the format directive was missing from the second log part
11348 - MINOR: log: report the number of dropped logs in the stats
11349 - MEDIUM: log: add support for logging to existing file descriptors
11350 - MEDIUM: log: support a new "short" format
11351 - MEDIUM: log: add a new "raw" format
11352 - BUG/MEDIUM: stream-int: change the way buffer room is requested by a stream-int
11353 - BUG/MEDIUM: stream-int: convert some co_data() checks to channel_is_empty()
11354 - MINOR: namespaces: don't build namespace.c if disabled
11355 - BUILD/MEDIUM: threads/affinity: DragonFly build fix
11356 - MINOR: http: Add new "early-hint" http-request action.
11357 - MINOR: http: Make new "early-hint" http-request action really be parsed.
11358 - MINOR: http: Implement "early-hint" http request rules.
11359 - MINOR: doc: Add information about "early-hint" http-request action.
11360 - DOC: early-hints: fix truncated line.
11361 - MINOR: mworker: only close std{in,out,err} in daemon mode
11362 - BUG/MEDIUM: log: don't CLOEXEC the inherited FDs
11363 - BUG/MEDIUM: Make sure stksess is properly aligned.
11364 - BUG/MEDIUM: stream-int: make failed splice_in always subscribe to recv
11365 - BUG/MEDIUM: stream-int: clear CO_FL_WAIT_ROOM after splicing data in
11366 - BUG/MINOR: stream-int: make sure not to go through the rcv_buf path after splice()
11367 - CONTRIB: debug: fix build related to conn_stream flags change
11368 - REGTEST: fix scripts 1 and 3 to accept development version
11369 - BUG/MINOR: http_fetch: Remove the version part when capturing the request uri
11370 - MINOR: http: Regroup return statements of http_req_get_intercept_rule at the end
11371 - MINOR: http: Regroup return statements of http_res_get_intercept_rule at the end
11372 - BUG/MINOR: http: Be sure to sent fully formed HTTP 103 responses
11373 - MEDIUM: jobs: support unstoppable jobs for soft stop
11374 - MEDIUM: listeners: support unstoppable listener
11375 - MEDIUM: cli: worker socketpair is unstoppable
11376 - BUG/MINOR: stream-int: set SI_FL_WANT_PUT in sess_establish()
11377 - MINOR: stream: move the conn_stream specific calls to the stream-int
11378 - BUG/MINOR: config: Copy default error messages when parsing of a backend starts
11379 - CLEANUP: h2: minimum documentation for recent API changes
11380 - MINOR: mux: implement a get_first_cs() method
11381 - MINOR: stream-int: make conn_si_send_proxy() use cs_get_first()
11382 - MINOR: stream-int: relax the forwarding rules in stream_int_notify()
11383 - MINOR: stream-int: expand the flags to 32-bit
11384 - MINOR: stream-int: rename SI_FL_WAIT_ROOM to SI_FL_RXBLK_ROOM
11385 - MINOR: stream-int: introduce new SI_FL_RXBLK flags
11386 - MINOR: stream-int: add new functions si_{rx,tx}_{blocked,endp_ready}()
11387 - MINOR: stream-int: replace SI_FL_WANT_PUT with !SI_FL_RX_WAIT_EP
11388 - MINOR: stream-int: use si_rx_blocked()/si_tx_blocked() to check readiness
11389 - MEDIUM: stream-int: use si_rx_buff_{rdy,blk} to report buffer readiness
11390 - MINOR: stream-int: replace si_{want,stop}_put() with si_rx_endp_{more,done}()
11391 - MEDIUM: stream-int: update the endp polling status only at the end of si_cs_recv()
11392 - MINOR: stream-int: make si_sync_recv() simply check ENDP before si_cs_recv()
11393 - MINOR: stream-int: automatically mark applets as ready if they block on the channel
11394 - MEDIUM: stream-int: fix the si_cant_put() calls used for end point readiness
11395 - MEDIUM: stream-int: fix the si_cant_put() calls used for buffer readiness
11396 - MEDIUM: stream-int: use si_rx_shut_blk() to indicate the SI is closed
11397 - MEDIUM: stream-int: unconditionally call si_chk_rcv() in update and notify
11398 - MEDIUM: stream-int: make use of si_rx_chan_{rdy,blk} to control the stream-int from the channel
11399 - MINOR: stream-int: replace si_cant_put() with si_rx_room_{blk,rdy}()
11400 - MEDIUM: connections: Wait until the connection is established to try to recv.
11401 - MEDIUM: mux: Teach the mux_pt how to deal with idle connections.
11402 - MINOR: mux: Add a new "avail_streams" method.
11403 - MINOR: mux: Add a destroy() method.
11404 - MINOR: sessions: Start to store the outgoing connection in sessions.
11405 - MAJOR: connections: Detach connections from streams.
11406 - MINOR: conn_stream: Add a flag to notify the mux it should flush its buffers
11407 - MINOR: htx: Add proto_htx.c file
11408 - MINOR: conn_stream: Add a flag to notify the mux it must respect the reserve
11409 - MINOR: http: Add standalone functions to parse a start-line or a header
11410 - MINOR: http: Call http_send_name_header with the stream instead of the txn
11411 - MINOR: conn_stream: Add a flag to notify the SI some data were received
11412 - MINOR: http: Add macros to check if a stream uses the HTX representation
11413 - MEDIUM: proto_htx: Add HTX analyzers and use it when the mux H1 is used
11414 - MEDIUM: mux-h1: Add dummy mux to handle HTTP/1.1 connections
11415 - MEDIUM: mux-h1: Add parsing of incoming and ougoing HTTP messages
11416 - MAJOR: mux-h1/proto_htx: Handle keep-alive connections in the mux
11417 - MEDIUM: mux-h1: Add support of the kernel TCP splicing to forward data
11418 - MEDIUM: htx: Add API to deal with the internal representation of HTTP messages
11419 - MINOR: http_htx: Add functions to manipulate HTX messages in http_htx.c
11420 - MINOR: proto_htx: Add some functions to handle HTX messages
11421 - MAJOR: mux-h1/proto_htx: Switch mux-h1 and HTX analyzers on the HTX representation
11422 - MINOR: http_htx: Add functions to replace part of the start-line
11423 - MINOR: http_htx: Add functions to retrieve a specific occurrence of a header
11424 - MINOR: proto_htx: Rewrite htx_apply_redirect_rule to handle HTX messages
11425 - MINOR: proto_htx: Add the internal function htx_del_hdr_value
11426 - MINOR: proto_htx: Add the internal function htx_fmt_res_line
11427 - MINOR: proto_htx: Add functions htx_transform_header and htx_transform_header_str
11428 - MINOR: proto_htx: Add functions htx_req_replace_stline and htx_res_set_status
11429 - MINOR: proto_htx: Add function to build and send HTTP 103 responses
11430 - MINOR: proto_htx: Add functions htx_req_get_intercept_rule and htx_res_get_intercept_rule
11431 - MINOR: proto_htx: Add functions to apply req* and rsp* rules on HTX messages
11432 - MINOR: proto_htx: Add functions to manage cookies on HTX messages
11433 - MINOR: proto_htx: Add functions to check the cacheability of HTX messages
11434 - MINOR: proto_htx: Add functions htx_send_name_header
11435 - MINOR: proto_htx: Add functions htx_perform_server_redirect
11436 - MINOR: proto_htx: Add functions to handle the stats applet
11437 - MEDIUM: proto_htx: Adapt htx_process_req_common to handle HTX messages
11438 - MEDIUM: proto_htx: Adapt htx_process_request to handle HTX messages
11439 - MINOR: proto_htx: Adapt htx_process_tarpit to handle HTX messages
11440 - MEDIUM: proto_htx: Adapt htx_wait_for_request_body to handle HTX messages
11441 - MEDIUM: proto_htx: Adapt htx_process_res_common to handle HTX messages
11442 - MINOR: http_fetch: Add smp_prefetch_htx
11443 - MEDIUM: http_fetch: Adapt all fetches to handle HTX messages
11444 - MEDIUM: mux-h1: Wait for connection establishment before consuming channel's data
11445 - MINOR: stats/htx: Adapt the stats applet to handle HTX messages
11446 - MINOR: stream: Don't reset sov value with HTX messages
11447 - MEDIUM: mux-h1: Handle errors and timeouts in the stream
11448 - MINOR: filters/htx: Forbid filters when the HTX is enabled on a proxy
11449 - MINOR: lua/htx: Forbid lua usage when the HTX is enabled on a proxy
11450 - CLEANUP: Fix some typos in the haproxy subsystem
11451 - CLEANUP: Fix typos in the dns subsystem
11452 - CLEANUP: Fix typos in the pattern subsystem
11453 - CLEANUP: fix 2 typos in the xxhash subsystem
11454 - CLEANUP: fix a few typos in the comments of the server subsystem
11455 - CLEANUP: fix a misspell in tests/filltab25.c
11456 - CLEANUP: fix a typo found in the stream subsystem
11457 - CLEANUP: fix typos in comments in ebtree
11458 - CLEANUP: fix typos in reg-tests
11459 - CLEANUP: fix typos in the comments of the vars subsystem
11460 - CLEANUP: fix typos in the hlua_fcn subsystem
11461 - CLEANUP: fix typos in the proto_http subsystem
11462 - CLEANUP: fix typos in the proxy subsystem
11463 - CLEANUP: fix typos in the ssl_sock subsystem
11464 - DOC: Fix typos in different subsections of the documentation
11465 - DOC: fix a few typos in the documentation
11466 - MINOR: Fix an error message thrown when we run out of memory
11467 - MINOR: Fix typos in error messages in the proxy subsystem
11468 - MINOR: fix typos in the examples files
11469 - CLEANUP: Fix a typo in the stats subsystem
11470 - CLEANUP: Fix typos in the acl subsystem
11471 - CLEANUP: Fix typos in the cache subsystem
11472 - CLEANUP: Fix typos in the cfgparse subsystem
11473 - CLEANUP: Fix typos in the filters subsystem
11474 - CLEANUP: Fix typos in the http subsystem
11475 - CLEANUP: Fix typos in the log subsystem
11476 - CLEANUP: Fix typos in the peers subsystem
11477 - CLEANUP: Fix typos in the regex subsystem
11478 - CLEANUP: Fix typos in the sample subsystem
11479 - CLEANUP: Fix typos in the spoe subsystem
11480 - CLEANUP: Fix typos in the standard subsystem
11481 - CLEANUP: Fix typos in the stick_table subsystem
11482 - CLEANUP: Fix typos in the task subsystem
11483 - MINOR: Fix typo in error message in the standard subsystem
11484 - CLEANUP: fix typos in the comments of hlua
11485 - MINOR: Fix typo in the error 500 output of hlua
11486 - MINOR: Fix a typo in a warning message in the spoe subsystem
11487
Willy Tarreau96079492018-11-11 10:43:39 +0100114882018/11/11 : 1.9-dev6
11489 - BUG/MEDIUM: tools: fix direction of my_ffsl()
11490 - BUG/MINOR: cli: forward the whole command on master CLI
11491 - BUG/MEDIUM: auth/threads: use of crypt() is not thread-safe
11492 - MINOR: compat: automatically detect support for crypt_r()
11493 - MEDIUM: auth/threads: make use of crypt_r() on systems supporting it
11494 - DOC: split the http-request actions in their own section
11495 - DOC: split the http-response actions in their own section
11496 - BUG/MAJOR: stream-int: don't call si_cs_recv() in stream_int_chk_rcv_conn()
11497 - BUG/MINOR: tasks: make sure wakeup events are properly reported to subscribers
11498 - MINOR: stats: report the number of active jobs and listeners in "show info"
11499 - MINOR: stats: report the number of active peers in "show info"
11500 - MINOR: stats: report the number of currently connected peers
11501 - MINOR: cli: show the number of reload in 'show proc'
11502 - MINOR: cli: can't connect to the target CLI
11503 - MEDIUM: mworker: does not create the CLI proxy when no listener
11504 - MINOR: mworker: displays more information when leaving
11505 - MEDIUM: mworker: exit with the incriminated exit code
11506 - MINOR: mworker: displays a message when a worker is forked
11507 - MEDIUM: mworker: leave when the master die
11508 - CLEANUP: stream-int: retro-document si_cs_io_cb()
11509 - BUG/MEDIUM: mworker: does not abort() in mworker_pipe_register()
11510 - BUG/MEDIUM: stream-int: don't wake up for nothing during SI_ST_CON
11511 - BUG/MEDIUM: cli: crash when trying to access a worker
11512 - DOC: restore note about "independant" typo
11513 - MEDIUM: stream: implement stream_buf_available()
11514 - MEDIUM: appctx: check for allocation attempts in buffer allocation callbacks
11515 - MINOR: stream-int: rename si_applet_{want|stop|cant}_{get|put}
11516 - MINOR: stream-int: add si_done_{get,put} to indicate that we won't do it anymore
11517 - MINOR: stream-int: use si_cant_put() instead of setting SI_FL_WAIT_ROOM
11518 - MINOR: stream-int: make use of si_done_{get,put}() in shut{w,r}
11519 - MINOR: stream-int: make it clear that si_ops cannot be null
11520 - MEDIUM: stream-int: temporarily make si_chk_rcv() take care of SI_FL_WAIT_ROOM
11521 - MINOR: stream-int: factor the SI_ST_EST state test into si_chk_rcv()
11522 - MEDIUM: stream-int: make SI_FL_WANT_PUT reflect CF_DONT_READ
11523 - MEDIUM: stream-int: always call si_chk_rcv() when we make room in the buffer
11524 - MEDIUM: stream-int: make si_chk_rcv() check that SI_FL_WAIT_ROOM is cleared
11525 - MINOR: stream-int: replace si_update() with si_update_both()
11526 - MEDIUM: stream-int: make stream_int_update() aware of the lower layers
11527 - CLEANUP: stream-int: remove the now unused si->update() function
11528 - MEDIUM: stream-int: Rely only on SI_FL_WAIT_ROOM to stop data receipt
11529 - MEDIUM: stream-int: Try to read data even if channel's buffer seems to be full
11530 - BUG/MINOR: config: better detect the presence of the h2 pattern in npn/alpn
11531
Willy Tarreaubddf2922018-10-28 20:39:31 +0100115322018/10/28 : 1.9-dev5
11533 - BUILD: Makefile: add the new ERR variable to force -Werror
11534 - MINOR: freq_ctr: add swrate_add_scaled() to work with large samples
11535 - MINOR: stream_interface: Avoid calling si_cs_send/recv if not needed.
11536 - CLEANUP: http: Remove the unused function http_find_header
11537 - MINOR: h1: Export some functions parsing the value of some HTTP headers
11538 - BUG/MEDIUM: stream-int: don't set SI_FL_WAIT_ROOM on CF_READ_DONTWAIT
11539 - MINOR: proxy: add a new option "http-use-htx"
11540 - BUG/MEDIUM: pools: fix the minimum allocation size
11541 - MINOR: shctx: Shared objects block by block allocation.
11542 - MINOR: cache: Larger HTTP objects caching.
11543 - MINOR: shctx: Add a maximum object size parameter.
11544 - MINOR: cache: Add "max-object-size" option.
11545 - DOC: Update about the cache support for big objects.
11546 - BUG/MINOR: cache: Crashes with "total-max-size" > 2047(MB).
11547 - BUG/MINOR: cache: Wrong usage of shctx_init().
11548 - BUG/MINOR: ssl: Wrong usage of shctx_init().
11549 - MINOR: cache: Avoid usage of atoi() when parsing "max-object-size".
11550 - MINOR: shctx: Change max. object size type to unsigned int.
11551 - DOC: cache: Missing information about "total-max-size" and "max-object-size"
11552 - CLEANUP: tools: fix misleading comment above function LIM2A
11553 - MEDIUM: channel: merge back flags CF_WRITE_PARTIAL and CF_WRITE_EVENT
11554 - BUG/MINOR: only mark connections private if NTLM is detected
11555 - BUG/MINOR: only auto-prefer last server if lb-alg is non-deterministic
11556 - MINOR: stream: don't prune variables if the list is empty
11557 - MINOR: stream-int: add si_alloc_ibuf() to ease input buffer allocation
11558 - MEDIUM: stream-int: replace channel_alloc_buffer() with si_alloc_ibuf() everywhere
11559 - MEDIUM: stream: always call si_cs_recv() after a failed buffer allocation
11560 - MEDIUM: stream: don't try to send first in process_stream()
11561 - MEDIUM: stream-int: make si_update() synchronize flag changes before the I/O
11562 - MEDIUM: stream-int: call si_cs_process() in stream_int_update_conn
11563 - MINOR: stream-int: don't needlessly call tasklet_wakeup() in stream_int_chk_snd_conn()
11564 - MINOR: stream-int: make stream_int_notify() not wake the tasklet up
11565 - MINOR: stream-int: don't needlessly call si_cs_send() in si_cs_process()
11566 - MINOR: mworker: number of reload in the life of a worker
11567 - MEDIUM: mworker: each worker socketpair is a CLI listener
11568 - REORG: mworker: move struct mworker_proc to global.h
11569 - MINOR: server: export new_server() function
11570 - MEDIUM: mworker: move proc_list gen before proxies startup
11571 - MEDIUM: mworker: add proc_list in global.h
11572 - MEDIUM: mworker: proxy for the master CLI
11573 - MEDIUM: mworker: create CLI listeners from argv[]
11574 - MEDIUM: cli: disable some keywords in the master
11575 - MEDIUM: mworker: find the server ptr using a CLI prefix
11576 - MEDIUM: cli: 'show proc' displays processus
11577 - MEDIUM: cli: implement 'mode cli' proxy analyzers
11578 - MINOR: cli: displays sockpair@ in "show cli sockets"
11579 - MEDIUM: cli: enable "show cli sockets" for the master
11580 - MINOR: cli: put @master @<relative pid> @!<pid> in the help
11581 - MEDIUM: listeners: set O_CLOEXEC on the accepted FDs
11582 - MEDIUM: mworker: stop the master proxy in the workers
11583 - MEDIUM: channel: reorder the channel analyzers for the cli
11584 - MEDIUM: cli: write a prompt for the CLI proxy of the master
11585 - MINOR: cli: helper to write an response message and close
11586 - MINOR: cache: Add "Age" header.
11587 - REGTEST: make the IP+port logging test more reliable
11588 - BUG/MINOR: memory: make the thread-local cache allocator set the debugging link
11589 - BUG/MAJOR: http: http_txn_get_path() may deference an inexisting buffer
11590 - BUG/MINOR: backend: assign the wait list after the error check
11591
Willy Tarreau01fbe742018-10-21 20:28:30 +0200115922018/10/21 : 1.9-dev4
11593 - BUILD: Allow configuration of pcre-config path
11594 - DOC: clarify force-private-cache is an option
11595 - BUG/MINOR: connection: avoid null pointer dereference in send-proxy-v2
11596 - REORG: http: move the code to different files
11597 - REORG: http: move HTTP rules parsing to http_rules.c
11598 - CLEANUP: http: remove some leftovers from recent cleanups
11599 - BUILD: Makefile: add a "make opts" target to simply show the build options
11600 - BUILD: Makefile: speed up compiler options detection
11601 - BUG/MINOR: backend: check that the mux installed properly
11602 - BUG/MEDIUM: h2: check that the connection is still valid at the end of init()
11603 - BUG/MEDIUM: h2: make h2_stream_new() return an error on memory allocation failure
11604 - REGTEST/MINOR: compatibility: use unix@ instead of abns@ sockets
11605 - MINOR: ssl: cleanup old openssl API call
11606 - MINOR: ssl: generate-certificates for BoringSSL
11607 - BUG/MEDIUM: buffers: Make sure we don't wrap in ci_insert_line2/b_rep_blk.
11608 - MEDIUM: ssl: add support for ciphersuites option for TLSv1.3
11609 - CLEANUP: haproxy: Remove unused variable
11610 - CLEANUP: h1: Fix debug warnings for h1 headers
11611 - CLEANUP: stick-tables: Remove unneeded double (()) around conditional clause
11612 - MEDIUM: task: perform a single tree lookup per run queue batch
11613 - BUG/MEDIUM: Cur/CumSslConns counters not threadsafe.
11614 - BUG/MINOR: threads: move declaration of capabilities to config.h
11615 - OPTIM: tools: optimize my_ffsl() for x86_64
11616 - BUG/MINOR: h2: null-deref
11617 - BUG/MINOR: checks: queues null-deref
11618 - MINOR: connections: Introduce an unsubscribe method.
11619 - MEDIUM: connections: Change struct wait_list to wait_event.
11620 - BUG/MEDIUM: h2: Make sure we're not in the send list on flow control.
11621 - BUG/MEDIUM: mworker: segfault receiving SIGUSR1 followed by SIGTERM.
11622 - BUG/MEDIUM: stream: Make sure to unsubscribe before si_release_endpoint.
11623 - MINOR: http: Move comment about some HTTP macros in the right header file
11624 - MINOR: stats: Add missing include
11625 - MINOR: http: Export some functions and do cleanup to prepare HTTP refactoring
11626 - MEDIUM: http: Ignore http-pretend-keepalive option on frontend
11627 - MEDIUM: http: Ignore http-tunnel option on backend
11628 - MINOR: http: Use same flag for httpclose and forceclose options
11629 - MINOR: h1: Add EOH marker during headers parsing
11630 - MINOR: conn-stream: Add CL_FL_NOT_FIRST flag
11631 - MINOR: h1: Change the union h1_sl to use indirect strings to store infos
11632 - MINOR: h1: Add the flag H1_MF_NO_PHDR to not add pseudo-headers during parsing
11633 - MINOR: log: make sess_log() support sess=NULL
11634 - MINOR: chunk: add chunk_cpy() and chunk_cat()
11635 - MEDIUM: h2: stop relying on H2_SS_IDLE / H2_SS_CLOSED
11636 - CLEANUP: h2: rename h2c_snd_settings() to h2c_send_settings()
11637 - MINOR: h2: don't try to send data before preface
11638 - MINOR: h2: unify the mux init function
11639 - MINOR: h2: retrieve the front proxy from the caller instead of the session
11640 - MINOR: h2: split h2c_stream_new() into h2s_new() + h2c_frt_stream_new()
11641 - MINOR: h2: add a new flag to quickly distinguish front vs back connection
11642 - BUG/MEDIUM: mworker: don't poll on LI_O_INHERITED listeners
11643 - BUG/MEDIUM: stream: don't crash on out-of-memory
11644 - BUILD: compiler: add a new statement "__unreachable()"
11645 - BUILD: lua: silence some compiler warnings about potential null derefs
11646 - BUILD: ssl: fix null-deref warning in ssl_fc_cipherlist_str sample fetch
11647 - BUILD: ssl: fix another null-deref warning in ssl_sock_switchctx_cbk()
11648 - BUILD: stick-table: make sure not to fail on task_new() during initialization
11649 - BUILD: peers: check allocation error during peers_init_sync()
11650 - MINOR: tools: add a new function atleast2() to test masks for more than 1 bit
11651 - MINOR: config: use atleast2() instead of my_popcountl() where relevant
11652 - MEDIUM: fd/threads: only grab the fd's lock if the FD has more than one thread
11653 - MAJOR: tasks: create per-thread wait queues
11654 - OPTIM: tasks: group all tree roots per cache line
11655 - DOC: Fix a few typos
11656 - MINOR: pools: allocate most memory pools from an array
11657 - MINOR: pools: split pool_free() in the lockfree variant
11658 - MEDIUM: pools: implement a thread-local cache for pool entries
11659 - BUG/MEDIUM: threads: fix thread_release() at the end of the rendez-vous point
11660 - Revert "BUILD: lua: silence some compiler warnings about potential null derefs"
11661 - BUILD: lua: silence some compiler warnings about potential null derefs (#2)
11662 - MINOR: lua: all functions calling lua_yieldk() may return
11663 - BUILD: lua: silence some compiler warnings after WILL_LJMP
11664 - BUILD: Makefile: silence an option conflict warning with clang
11665 - MINOR: server: Use memcpy() instead of strncpy().
11666 - CLEANUP: state-file: make the path concatenation code a bit more consistent
11667 - MINOR: build: Disable -Wstringop-overflow.
11668 - MINOR: cfgparse: Write 130 as 128 as 0x82 and 0x80.
11669 - MINOR: peers: use defines instead of enums to appease clang.
11670 - DOC: fix reference to map files in MAINTAINERS
11671 - MINOR: fd: centralize poll timeout computation in compute_poll_timeout()
11672 - MINOR: poller: move time and date computation out of the pollers
11673 - BUILD: memory: fix pointer declaration for atomic CAS
11674 - BUILD: Makefile: add USE_RT to pass -lrt for clock_gettime() and friends
11675 - MINOR: time: add now_mono_time() and now_cpu_time()
11676 - MEDIUM: time: measure the time stolen by other threads
11677 - BUILD: memory: fix free_list pointer declaration again for atomic CAS
11678 - BUILD: compiler: rename __unreachable() to my_unreachable()
11679 - BUG/MEDIUM: pools: Fix the usage of mmap()) with DEBUG_UAF.
11680 - BUILD: memory: fix free_list pointer declaration again for atomic CAS
11681 - BUG/MEDIUM: h2: Close connection if no stream is left an GOAWAY was sent.
11682 - BUG/MEDIUM: connections: Remove subscription if going in idle mode.
11683 - BUG/MEDIUM: stream: Make sure polling is right on retry.
11684 - MINOR: h2: Make sure to return 1 in h2_recv() when needed.
11685 - MEDIUM: connections: Don't directly mess with the polling from the upper layers.
11686 - MINOR: streams: Call tasklet_free() after si_release_endpoint().
11687 - MINOR: connection: Add a SUB_CALL_UNSUBSCRIBE event.
11688 - MINOR: h2: Don't run tasks that are waiting to send if mux in full.
11689 - MINOR: ebtree: save 8 bytes in struct eb32sc_node
11690
Willy Tarreau27010f02018-09-29 20:17:33 +0200116912018/09/29 : 1.9-dev3
11692 - BUG/MINOR: h1: don't consider the status for each header
11693 - MINOR: h1: report in the h1m struct if the HTTP version is 1.1 or above
11694 - MINOR: h1: parse the Connection header field
11695 - DOC: Fix typos in lua documentation
11696 - MINOR: h1: Add H1_MF_XFER_LEN flag
11697 - MINOR: http: add http_hdr_del() to remove a header from a list
11698 - MINOR: h1: add headers to the list after controls, not before
11699 - MEDIUM: h1: better handle transfer-encoding vs content-length
11700 - MEDIUM: h1: deduplicate the content-length header
11701 - BUG/MEDIUM: patterns: fix possible double free when reloading a pattern list
11702 - BUG/MEDIUM: h1: Really skip all updates when incomplete messages are parsed
11703 - CLEANUP/CONTRIB: hpack: remove some h1 build warnings
11704 - BUG/MINOR: tools: fix set_net_port() / set_host_port() on IPv4
11705 - BUG/MINOR: cli: make sure the "getsock" command is only called on connections
11706 - MINOR: stktable: provide an unchecked version of stktable_data_ptr()
11707 - MINOR: stream-int: make si_appctx() never fail
11708 - BUILD: ssl_sock: remove build warnings on potential null-derefs
11709 - BUILD: stats: remove build warnings on potential null-derefs
11710 - BUILD: stream: address null-deref build warnings at -Wextra
11711 - BUILD: http: address a couple of null-deref warnings at -Wextra
11712 - BUILD: log: silent build warnings due to unchecked __objt_{server,applet}
11713 - BUILD: dns: fix null-deref build warning at -Wextra
11714 - BUILD: checks: silence a null-deref build warning at -Wextra
11715 - BUILD: connection: silence a couple of null-deref build warnings at -Wextra
11716 - BUILD: backend: fix 3 build warnings related to null-deref at -Wextra
11717 - BUILD: sockpair: silence a build warning at -Wextra
11718 - BUILD: build with -Wextra and sort out certain warnings
11719 - BUG/CRITICAL: hpack: fix improper sign check on the header index value
11720 - BUG/MEDIUM: http: Don't parse chunked body if there is no input data
11721 - DOC: Update configuration doc about the maximum number of stick counters.
11722 - BUG/MEDIUM: process_stream: Don't use si_cs_io_cb() in process_stream().
11723 - MINOR: h2/stream_interface: Reintroduce te wake() method.
11724 - BUG/MEDIUM: h2: Wake the task instead of calling h2_recv()/h2_process().
11725 - BUG/MEDIUM: process_stream(): Don't wake the task if no new data was received.
11726 - MEDIUM: lua: Add stick table support for Lua.
11727
Willy Tarreau253006d2018-09-12 18:59:48 +0200117282018/09/12 : 1.9-dev2
11729 - BUG/MINOR: buffers: Fix b_slow_realign when a buffer is realign without output
11730 - BUG/MEDIUM: threads: fix the no-thread case after the change to the sync point
11731 - BUG/MEDIUM: servers: check the queues once enabling a server
11732 - BUG/MEDIUM: queue: prevent a backup server from draining the proxy's connections
11733 - MEDIUM: mux: Remove const on the buffer in mux->snd_buf()
11734 - CLEANUP: backend: Move mux install to call it at only one place
11735 - MINOR: conn_stream: add an tx buffer to the conn_stream
11736 - MINOR: conn_stream: add cs_send() as a default snd_buf() function
11737 - MINOR: backend: Try to find the best mux for outgoing connections
11738 - MEDIUM: backend: don't rely on mux_pt_ops in connect_server()
11739 - MINOR: mux: Add info about the supported side in alpn_mux_list structure
11740 - MINOR: mux: Unlink ALPN and multiplexers to rather speak of mux protocols
11741 - MINOR: mux: Print the list of existing mux protocols during HA startup
11742 - MEDIUM: checks: use the new rendez-vous point to spread check result
11743 - MEDIUM: haproxy: don't use sync_poll_loop() anymore in the main loop
11744 - MINOR: threads: remove the previous synchronization point
11745 - MAJOR: server: make server state changes synchronous again
11746 - CLEANUP: server: remove the update list and the update lock
11747 - BUG/MINOR: threads: Remove the unexisting lock label "UPDATED_SERVERS_LOCK"
11748 - BUG/MEDIUM: stream_int: Don't check CO_FL_SOCK_RD_SH flag to trigger cs receive
11749 - MINOR: mux: Change get_mux_proto to get an ist as parameter
11750 - MINOR: mux: Improve the message with the list of existing mux protocols
11751 - MINOR: mux/frontend: Add 'proto' keyword to force the mux protocol
11752 - MINOR: mux/server: Add 'proto' keyword to force the multiplexer's protocol
11753 - MEDIUM: mux: Use the mux protocol specified on bind/server lines
11754 - BUG/MEDIUM: connection/mux: take care of serverless proxies
11755 - MINOR: queue: make sure the pendconn is released before logging
11756 - MINOR: stream: rename {srv,prx}_queue_size to *_queue_pos
11757 - MINOR: queue: store the queue index in the stream when enqueuing
11758 - MINOR: queue: replace the linked list with a tree
11759 - MEDIUM: add set-priority-class and set-priority-offset
11760 - MEDIUM: queue: adjust position based on priority-class and priority-offset
11761 - DOC: update the roadmap about priority queues
11762 - BUG/MINOR: ssl: empty connections reported as errors.
11763 - MINOR: connections: Make rcv_buf mandatory and nuke cs_recv().
11764 - MINOR: connections: Move rxbuf from the conn_stream to the h2s.
11765 - MINOR: connections: Get rid of txbuf.
11766 - MINOR: tasks: Allow tasklet_wakeup() to wakeup a task.
11767 - MINOR: connections/mux: Add the wait reason(s) to wait_list.
11768 - MINOR: stream_interface: Don't use si_cs_send() as a task handler.
11769 - MINOR: stream_interface: Give stream_interface its own wait_list.
11770 - MINOR: mux_h2: Don't use h2_send() as a callback.
11771 - MINOR: checks: Add event_srv_chk_io().
11772 - BUG/MEDIUM: tasks: Don't insert in the global rqueue if nbthread == 1
11773 - BUG/MEDIUM: sessions: Don't use t->state.
11774 - BUG/MEDIUM: ssl: fix missing error loading a keytype cert from a bundle.
11775 - BUG/MEDIUM: ssl: loading dh param from certifile causes unpredictable error.
11776 - BUG/MINOR: map: fix map_regm with backref
11777 - DOC: dns: explain set server ... fqdn requires resolver
11778 - DOC: add documentation for prio_class and prio_offset sample fetches.
11779 - DOC: ssl: Use consistent naming for TLS protocols
11780 - DOC: update the layering design notes
11781 - MINOR: tasks: Don't special-case when nbthreads == 1
11782 - MINOR: fd cache: And the thread_mask with all_threads_mask.
11783 - BUG/MEDIUM: lua: socket timeouts are not applied
11784 - BUG/MINOR: lua: fix extra 500ms added to socket timeouts
11785 - BUG/MEDIUM: server: update our local state before propagating changes
11786 - BUG/MEDIUM: cli/threads: protect all "proxy" commands against concurrent updates
11787 - DOC: server/threads: document which functions need to be called with/without locks
11788 - BUG/MEDIUM: cli/threads: protect some server commands against concurrent operations
11789 - BUG/MEDIUM: streams: Don't forget to remove the si from the wait list.
11790 - BUG/MEDIUM: tasklets: Add the thread as active when waking a tasklet.
11791 - BUG/MEDIUM: stream-int: Check if the conn_stream exist in si_cs_io_cb.
11792 - BUG/MEDIUM: H2: Activate polling after successful h2_snd_buf().
11793 - BUG/MEDIUM: stream_interface: Call the wake callback after sending.
11794 - BUG/MAJOR: queue/threads: make pendconn_redistribute not lock the server
11795 - BUG/MEDIUM: connection: don't forget to always delete the list's head
11796 - BUG/MEDIUM: lb/threads: always properly lock LB algorithms on maintenance operations
11797 - BUG/MEDIUM: check/threads: do not involve the rendez-vous point for status updates
11798 - BUG/MINOR: chunks: do not store -1 into chunk_printf() in case of error
11799 - BUG/MEDIUM: http: don't store exp_replace() result in the trash's length
11800 - BUG/MEDIUM: http: don't store url_decode() result in the samples's length
11801 - BUG/MEDIUM: dns: don't store dns_build_query() result in the trash's length
11802 - BUG/MEDIUM: map: don't store exp_replace() result in the trash's length
11803 - BUG/MEDIUM: connection: don't store recv() result into trash.data
11804 - BUG/MEDIUM: cli/ssl: don't store base64dec() result in the trash's length
11805 - MINOR: chunk: remove impossible tests on negative chunk->data
11806 - MINOR: sample: remove impossible tests on negative smp->data.u.str.data
11807 - DOC: Fix spelling error in configuration doc
11808 - REGTEST/MINOR: Missing mandatory "ignore_unknown_macro".
11809 - REGTEST/MINOR: Add a new class of regression testing files.
11810 - BUG/MEDIUM: unix: provide a ->drain() function
11811 - MINOR: connection: make conn_sock_drain() work for all socket families
11812 - BUG/MINOR: lua: Bad HTTP client request duration.
11813 - REGEST/MINOR: Add reg testing files.
11814 - BUG/MEDIUM: mux_pt: dereference the connection with care in mux_pt_wake()
11815 - REGTEST/MINOR: Add a reg testing file for b406b87 commit.
11816 - BUG/MEDIUM: lua: reset lua transaction between http requests
11817 - MINOR: add be_conn_free sample fetch
11818 - MINOR: Add srv_conn_free sample fetch
11819 - BUG/MEDIUM: hlua: Make sure we drain the output buffer when done.
11820 - MINOR: checks: Call wake_srv_chk() when we can finally send data.
11821 - BUG/MEDIUM: stream_interface: try to call si_cs_send() earlier.
11822 - BUG/MAJOR: thread: lua: Wrong SSL context initialization.
11823 - REGTEST/MINOR: Add a reg testing file for 3e60b11.
11824 - BUG/MEDIUM: hlua: Don't call RESET_SAFE_LJMP if SET_SAFE_LJMP returns 0.
11825 - REGTEST/MINOR: lua: Add reg testing files for 70d318c.
11826 - BUG/MEDIUM: dns/server: fix incomatibility between SRV resolution and server state file
11827 - BUG/MEDIUM: ECC cert should work with TLS < v1.2 and openssl >= 1.1.1
11828 - MINOR: tools: make date2str_log() take some consts
11829 - MINOR: thread: implement HA_ATOMIC_XADD()
11830 - BUG/MINOR: stream: use atomic increments for the request counter
11831 - BUG/MEDIUM: session: fix reporting of handshake processing time in the logs
11832 - BUG/MEDIUM: h2: fix risk of memory leak on malformated wrapped frames
11833 - BUG/MAJOR: buffer: fix incorrect check in __b_putblk()
11834 - MINOR: log: move the log code to sess_build_logline() to add extra arguments
11835 - MINOR: log: make the backend fall back to the frontend when there's no stream
11836 - MINOR: log: make sess_build_logline() not dereference a NULL stream for txn
11837 - MINOR: log: don't unconditionally pick log info from s->logs
11838 - CLEANUP: log: make the low_level lf_{ip,port,text,text_len} functions take consts
11839 - MINOR: log: keep a copy of the backend connection early in sess_build_logline()
11840 - MINOR: log: do not dereference a null stream to access captures
11841 - MINOR: log: be sure not to dereference a null stream for a target
11842 - MINOR: log: don't check the stream-int's conn_retries if the stream is NULL
11843 - MINOR: log: use NULL for the unique_id if there is no stream
11844 - MINOR: log: keep a copy of s->flags early to avoid a dereference
11845 - MINOR: log: use zero as the request counter if there is no stream
11846 - MEDIUM: log: make sess_build_logline() support being called with no stream
11847 - MINOR: log: provide a function to emit a log for a session
11848 - MEDIUM: h2: produce some logs on early errors that prevent streams from being created
11849 - BUG/MINOR: h1: fix buffer shift after realignment
11850 - MINOR: connection: make the initialization more consistent
11851 - MINOR: connection: add new function conn_get_proxy()
11852 - MINOR: connection: add new function conn_is_back()
11853 - MINOR: log: One const should be enough.
11854 - BUG/MINOR: dns: check and link servers' resolvers right after config parsing
11855 - BUG/MINOR: http/threads: atomically increment the error snapshot ID
11856 - MINOR: snapshot: restart on the event ID and not the stream ID
11857 - MINOR: snapshot: split the error snapshots into common and proto-specific parts
11858 - MEDIUM: snapshot: start to reorder the HTTP snapshot output a little bit
11859 - MEDIUM: snapshot: implement a show() callback and use it for HTTP
11860 - MINOR: proxy: add a new generic proxy_capture_error()
11861 - MINOR: http: make the HTTP error capture rely on the generic proxy code
11862 - MINOR: http: remove the pointer to the error snapshot in http_capture_bad_message()
11863 - REORG: cli: move the "show errors" handler from http to proxy
11864 - BUG/MEDIUM: snapshot: take the proxy's lock while dumping errors
11865 - MEDIUM: snapshots: dynamically allocate the snapshots
11866 - MEDIUM: snapshot: merge the captured data after the descriptor
11867 - MEDIUM: mworker: remove register/unregister signal functions
11868 - MEDIUM: mworker: use the haproxy poll loop
11869 - BUG/MINOR: mworker: no need to stop peers for each proxy
11870 - MINOR: mworker: mworker_cleanlisteners() delete the listeners
11871 - MEDIUM: mworker: block SIGCHLD until the master is ready
11872 - MEDIUM: mworker: never block SIG{TERM,INT} during reload
11873 - MEDIUM: startup: unify signal init between daemon and mworker mode
11874 - MINOR: mworker: don't deinit the poller fd when in wait mode
11875 - MEDIUM: mworker: master wait mode use its own initialization
11876 - MEDIUM: mworker: replace the master pipe by socketpairs
11877 - MINOR: mworker: keep and clean the listeners
11878 - MEDIUM: threads: close the thread-waker pipe during deinit
11879 - MEDIUM: mworker: call per_thread deinit in mworker_reload()
11880 - REORG: http: move the HTTP semantics definitions to http.h/http.c
11881 - REORG: http: move http_get_path() to http.c
11882 - REORG: http: move error codes production and processing to http.c
11883 - REORG: http: move the log encoding tables to log.c
11884 - REORG: http: move some header value processing functions to http.c
11885 - BUG/MAJOR: kqueue: Don't reset the changes number by accident.
11886 - MEDIUM: protocol: use a custom AF_MAX to help protocol parser
11887 - MEDIUM: protocol: sockpair protocol
11888 - TESTS: add a python wrapper for sockpair@
11889 - BUG/MINOR: server: Crash when setting FQDN via CLI.
11890 - BUG/MINOR: h2: report asynchronous end of stream on closed connections
11891 - BUILD: fix build without thread
11892 - BUG/MEDIUM: tasks: Don't forget to decrement task_list_size in tasklet_free().
11893 - MEDIUM: connections: Don't reset the polling flags in conn_fd_handler().
11894 - MEDIUM: connections/mux: Add a recv and a send+recv wait list.
11895 - MEDIUM: connections: Get rid of the recv() method.
11896 - MINOR: h2: Let user of h2_recv() and h2_send() know xfer has been done.
11897 - MEDIUM: h2: always subscribe to receive if allowed.
11898 - MEDIUM: h2: Don't use a wake() method anymore.
11899 - MEDIUM: stream_interface: Make recv() subscribe when more data is needed.
11900 - MINOR: connections: Add a "handle" field to wait_list.
11901 - MEDIUM: mux_h2: Revamp the send path when blocking.
11902 - MEDIUM: stream_interfaces: Starts receiving from the upper layers.
11903 - MINOR: checks: Give checks their own wait_list.
11904 - MINOR: conn_streams: Remove wait_list from conn_streams.
11905 - REORG: h1: create a new h1m_state
11906 - MINOR: h1: add the restart offsets into struct h1m
11907 - MINOR: h1: remove the unused states from h1m_state
11908 - MINOR: h1: provide a distinct init() function for request and response
11909 - MINOR: h1: add a message flag to indicate that a message carries a response
11910 - MINOR: h2: make sure h1m->err_pos field is correct on chunk error
11911 - MINOR: h1: properly pre-initialize err_pos to -2
11912 - MINOR: mux_h2: replace the req,res h1 messages with a single h1 message
11913 - MINOR: h2: pre-initialize h1m->err_pos to -1 on the output path
11914 - MEDIUM: h1: consider err_pos before deciding to accept a header name or not
11915 - MEDIUM: h1: make the parser support a pointer to a start line
11916 - MEDIUM: h1: let the caller pass the initial parser's state
11917 - MINOR: h1: make the message parser support a null <hdr> argument
11918 - MEDIUM: h1: support partial message parsing
11919 - MEDIUM: h1: remove the useless H1_MSG_BODY state
11920 - MINOR: h2: store the HTTP status into the H2S, not the H1M
11921 - MINOR: h1: remove the HTTP status from the H1M struct
11922 - MEDIUM: h1: implement the request parser as well
11923 - MINOR: h1: add H1_MF_TOLOWER to decide when to turn header names to lower case
11924 - MINOR: connection: pass the proxy when creating a connection
11925 - BUG/MEDIUM: h2: Don't forget to empty the wait lists on destroy.
11926 - BUG/MEDIUM: h2: Don't forget to set recv_wait_list to NULL in h2_detach.
11927 - BUG/MAJOR: h2: reset the parser's state on mux buffer full
11928
Willy Tarreau65e94d12018-08-02 18:12:50 +0200119292018/08/02 : 1.9-dev1
11930 - BUG/MEDIUM: kqueue: Don't bother closing the kqueue after fork.
11931 - DOC: cache: update sections and fix some typos
11932 - BUILD/MINOR: deviceatlas: enable thread support
11933 - BUG/MEDIUM: tcp-check: Don't lock the server in tcpcheck_main
11934 - BUG/MEDIUM: ssl: don't allocate shctx several time
11935 - BUG/MEDIUM: cache: bad computation of the remaining size
11936 - BUILD: checks: don't include server.h
11937 - BUG/MEDIUM: stream: fix session leak on applet-initiated connections
11938 - BUILD/MINOR: haproxy : FreeBSD/cpu affinity needs pthread_np header
11939 - BUILD/MINOR: Makefile : enabling USE_CPU_AFFINITY
11940 - BUG/MINOR: ssl: CO_FL_EARLY_DATA removal is managed by stream
11941 - BUG/MEDIUM: threads/peers: decrement, not increment jobs on quitting
11942 - BUG/MEDIUM: h2: don't report an error after parsing a 100-continue response
11943 - BUG/MEDIUM: peers: fix some track counter rules dont register entries for sync.
11944 - BUG/MAJOR: thread/peers: fix deadlock on peers sync.
11945 - BUILD/MINOR: haproxy: compiling config cpu parsing handling when needed
11946 - MINOR: config: report when "monitor fail" rules are misplaced
11947 - BUG/MINOR: mworker: fix validity check for the pipe FDs
11948 - BUG/MINOR: mworker: detach from tty when in daemon mode
11949 - MINOR: threads: Fix pthread_setaffinity_np on FreeBSD.
11950 - BUG/MAJOR: thread: Be sure to request a sync between threads only once at a time
11951 - BUILD: Fix LDFLAGS vs. LIBS re linking order in various makefiles
11952 - BUG/MEDIUM: checks: Be sure we have a mux if we created a cs.
11953 - BUG/MINOR: hpack: fix debugging output of pseudo header names
11954 - BUG/MINOR: hpack: must reject huffman literals padded with more than 7 bits
11955 - BUG/MINOR: hpack: reject invalid header index
11956 - BUG/MINOR: hpack: dynamic table size updates are only allowed before headers
11957 - BUG/MAJOR: h2: correctly check the request length when building an H1 request
11958 - BUG/MINOR: h2: immediately close if receiving GOAWAY after the last stream
11959 - BUG/MINOR: h2: try to abort closed streams as soon as possible
11960 - BUG/MINOR: h2: ":path" must not be empty
11961 - BUG/MINOR: h2: fix a typo causing PING/ACK to be responded to
11962 - BUG/MINOR: h2: the TE header if present may only contain trailers
11963 - BUG/MEDIUM: h2: enforce the per-connection stream limit
11964 - BUG/MINOR: h2: do not accept SETTINGS_ENABLE_PUSH other than 0 or 1
11965 - BUG/MINOR: h2: reject incorrect stream dependencies on HEADERS frame
11966 - BUG/MINOR: h2: properly check PRIORITY frames
11967 - BUG/MINOR: h2: reject response pseudo-headers from requests
11968 - BUG/MEDIUM: h2: remove connection-specific headers from request
11969 - BUG/MEDIUM: h2: do not accept upper case letters in request header names
11970 - BUG/MINOR: h2: use the H2_F_DATA_* macros for DATA frames
11971 - BUG/MINOR: action: Don't check http capture rules when no id is defined
11972 - BUG/MAJOR: hpack: don't pretend large headers fit in empty table
11973 - BUG/MINOR: ssl: support tune.ssl.cachesize 0 again
11974 - BUG/MEDIUM: mworker: also close peers sockets in the master
11975 - BUG/MEDIUM: ssl engines: Fix async engines fds were not considered to fix fd limit automatically.
11976 - BUG/MEDIUM: checks: a down server going to maint remains definitely stucked on down state.
11977 - BUG/MEDIUM: peers: set NOLINGER on the outgoing stream interface
11978 - BUG/MEDIUM: h2: fix handling of end of stream again
11979 - MINOR: mworker: Update messages referencing exit-on-failure
11980 - MINOR: mworker: Improve wording in `void mworker_wait()`
11981 - CONTRIB: halog: Add help text for -s switch in halog program
11982 - BUG/MEDIUM: email-alert: don't set server check status from a email-alert task
11983 - BUG/MEDIUM: threads/vars: Fix deadlock in register_name
11984 - MINOR: systemd: remove comment about HAPROXY_STATS_SOCKET
11985 - DOC: notifications: add precisions about thread usage
11986 - BUG/MEDIUM: lua/notification: memory leak
11987 - MINOR: conn_stream: add new flag CS_FL_RCV_MORE to indicate pending data
11988 - BUG/MEDIUM: stream-int: always set SI_FL_WAIT_ROOM on CS_FL_RCV_MORE
11989 - BUG/MEDIUM: h2: automatically set CS_FL_RCV_MORE when the output buffer is full
11990 - BUG/MEDIUM: h2: enable recv polling whenever demuxing is possible
11991 - BUG/MEDIUM: h2: work around a connection API limitation
11992 - BUG/MEDIUM: h2: debug incoming traffic in h2_wake()
11993 - MINOR: h2: store the demux padding length in the h2c struct
11994 - BUG/MEDIUM: h2: support uploading partial DATA frames
11995 - MINOR: h2: don't demand that a DATA frame is complete before processing it
11996 - BUG/MEDIUM: h2: don't switch the state to HREM before end of DATA frame
11997 - BUG/MEDIUM: h2: don't close after the first DATA frame on tunnelled responses
11998 - BUG/MEDIUM: http: don't disable lingering on requests with tunnelled responses
11999 - BUG/MEDIUM: h2: fix stream limit enforcement
12000 - BUG/MINOR: stream-int: don't try to receive again after receiving an EOS
12001 - MINOR: sample: add len converter
12002 - BUG: MAJOR: lb_map: server map calculation broken
12003 - BUG: MINOR: http: don't check http-request capture id when len is provided
12004 - MINOR: sample: rename the "len" converter to "length"
12005 - BUG/MEDIUM: mworker: Set FD_CLOEXEC flag on log fd
12006 - DOC/MINOR: intro: typo, wording, formatting fixes
12007 - MINOR: netscaler: respect syntax
12008 - MINOR: netscaler: remove the use of cip_magic only used once
12009 - MINOR: netscaler: rename cip_len to clarify its uage
12010 - BUG/MEDIUM: netscaler: use the appropriate IPv6 header size
12011 - BUG/MAJOR: netscaler: address truncated CIP header detection
12012 - MINOR: netscaler: check in one-shot if buffer is large enough for IP and TCP header
12013 - MEDIUM: netscaler: do not analyze original IP packet size
12014 - MEDIUM: netscaler: add support for standard NetScaler CIP protocol
12015 - MINOR: spoe: add force-set-var option in spoe-agent configuration
12016 - CONTRIB: iprange: Fix compiler warning in iprange.c
12017 - CONTRIB: halog: Fix compiler warnings in halog.c
12018 - BUG/MINOR: h2: properly report a stream error on RST_STREAM
12019 - MINOR: mux: add flags to describe a mux's capabilities
12020 - MINOR: stream-int: set flag SI_FL_CLEAN_ABRT when mux supports clean aborts
12021 - BUG/MEDIUM: stream: don't consider abortonclose on muxes which close cleanly
12022 - BUG/MEDIUM: checks: a server passed in maint state was not forced down.
12023 - BUG/MEDIUM: lua: fix crash when using bogus mode in register_service()
12024 - MINOR: http: adjust the list of supposedly cacheable methods
12025 - MINOR: http: update the list of cacheable status codes as per RFC7231
12026 - MINOR: http: start to compute the transaction's cacheability from the request
12027 - BUG/MINOR: http: do not ignore cache-control: public
12028 - BUG/MINOR: http: properly detect max-age=0 and s-maxage=0 in responses
12029 - BUG/MINOR: cache: do not force the TX_CACHEABLE flag before checking cacheability
12030 - MINOR: http: add a function to check request's cache-control header field
12031 - BUG/MEDIUM: cache: do not try to retrieve host-less requests from the cache
12032 - BUG/MEDIUM: cache: replace old object on store
12033 - BUG/MEDIUM: cache: respect the request cache-control header
12034 - BUG/MEDIUM: cache: don't cache the response on no-cache="set-cookie"
12035 - BUG/MAJOR: connection: refine the situations where we don't send shutw()
12036 - BUG/MEDIUM: checks: properly set servers to stopping state on 404
12037 - BUG/MEDIUM: h2: properly handle and report some stream errors
12038 - BUG/MEDIUM: h2: improve handling of frames received on closed streams
12039 - DOC/MINOR: configuration: typo, formatting fixes
12040 - BUG/MEDIUM: h2: ensure we always know the stream before sending a reset
12041 - BUG/MEDIUM: mworker: don't close stdio several time
12042 - MINOR: don't close stdio anymore
12043 - BUG/MEDIUM: http: don't automatically forward request close
12044 - BUG/MAJOR: hpack: don't return direct references to the dynamic headers table
12045 - MINOR: h2: add a function to report pseudo-header names
12046 - DEBUG: hpack: make hpack_dht_dump() expose the output file
12047 - DEBUG: hpack: add more traces to the hpack decoder
12048 - CONTRIB: hpack: add an hpack decoder
12049 - MEDIUM: h2: prepare a graceful shutdown when the frontend is stopped
12050 - BUG/MEDIUM: h2: properly handle the END_STREAM flag on empty DATA frames
12051 - BUILD: ssl: silence a warning when building without NPN nor ALPN support
12052 - CLEANUP: rbtree: remove
12053 - BUG/MEDIUM: ssl: cache doesn't release shctx blocks
12054 - BUG/MINOR: lua: Fix default value for pattern in Socket.receive
12055 - DOC: lua: Fix typos in comments of hlua_socket_receive
12056 - BUG/MEDIUM: lua: Fix IPv6 with separate port support for Socket.connect
12057 - BUG/MINOR: lua: Fix return value of Socket.settimeout
12058 - MINOR: dns: Handle SRV record weight correctly.
12059 - BUG/MEDIUM: mworker: execvp failure depending on argv[0]
12060 - MINOR: hathreads: add support for gcc < 4.7
12061 - BUILD/MINOR: ancient gcc versions atomic fix
12062 - BUG/MEDIUM: stream: properly handle client aborts during redispatch
12063 - MINOR: spoe: add register-var-names directive in spoe-agent configuration
12064 - MINOR: spoe: Don't queue a SPOE context if nothing is sent
12065 - DOC: clarify the scope of ssl_fc_is_resumed
12066 - CONTRIB: debug: fix a few flags definitions
12067 - BUG/MINOR: poll: too large size allocation for FD events
12068 - MINOR: sample: add date_us sample
12069 - BUG/MEDIUM: peers: fix expire date wasn't updated if entry is modified remotely.
12070 - MINOR: servers: Don't report duplicate dyncookies for disabled servers.
12071 - MINOR: global/threads: move cpu_map at the end of the global struct
12072 - MINOR: threads: add a MAX_THREADS define instead of LONGBITS
12073 - MINOR: global: add some global activity counters to help debugging
12074 - MINOR: threads/fd: Use a bitfield to know if there are FDs for a thread in the FD cache
12075 - BUG/MEDIUM: threads/polling: Use fd_cache_mask instead of fd_cache_num
12076 - BUG/MEDIUM: fd: maintain a per-thread update mask
12077 - MINOR: fd: add a bitmask to indicate that an FD is known by the poller
12078 - BUG/MEDIUM: epoll/threads: use one epoll_fd per thread
12079 - BUG/MEDIUM: kqueue/threads: use one kqueue_fd per thread
12080 - BUG/MEDIUM: threads/mworker: fix a race on startup
12081 - BUG/MINOR: mworker: only write to pidfile if it exists
12082 - MINOR: threads: Fix build when we're not compiling with threads.
12083 - BUG/MINOR: threads: always set an owner to the thread_sync pipe
12084 - BUG/MEDIUM: threads/server: Fix deadlock in srv_set_stopping/srv_set_admin_flag
12085 - BUG/MEDIUM: checks: Don't try to release undefined conn_stream when a check is freed
12086 - BUG/MINOR: kqueue/threads: Don't forget to close kqueue_fd[tid] on each thread
12087 - MINOR: threads: Use __decl_hathreads instead of #ifdef/#endif
12088 - BUILD: epoll/threads: Add test on MAX_THREADS to avoid warnings when complied without threads
12089 - BUILD: kqueue/threads: Add test on MAX_THREADS to avoid warnings when complied without threads
12090 - CLEANUP: sample: Fix comment encoding of sample.c
12091 - CLEANUP: sample: Fix outdated comment about sample casts functions
12092 - BUG/MINOR: sample: Fix output type of c_ipv62ip
12093 - CLEANUP: Fix typo in ARGT_MSK6 comment
12094 - CLEANUP: standard: Use len2mask4 in str2mask
12095 - MINOR: standard: Add str2mask6 function
12096 - MINOR: config: Add support for ARGT_MSK6
12097 - MEDIUM: sample: Add IPv6 support to the ipmask converter
12098 - MINOR: config: Enable tracking of up to MAX_SESS_STKCTR stick counters.
12099 - BUG/MINOR: cli: use global.maxsock and not maxfd to list all FDs
12100 - MINOR: polling: make epoll and kqueue not depend on maxfd anymore
12101 - MINOR: fd: don't report maxfd in alert messages
12102 - MEDIUM: polling: start to move maxfd computation to the pollers
12103 - CLEANUP: fd/threads: remove the now unused fdtab_lock
12104 - MINOR: poll: more accurately compute the new maxfd in the loop
12105 - CLEANUP: fd: remove the unused "new" field
12106 - MINOR: fd: move the hap_fd_{clr,set,isset} functions to fd.h
12107 - MEDIUM: select: make use of hap_fd_* functions
12108 - MEDIUM: fd: use atomic ops for hap_fd_{clr,set} and remove poll_lock
12109 - MEDIUM: select: don't use the old FD state anymore
12110 - MEDIUM: poll: don't use the old FD state anymore
12111 - MINOR: fd: pass the iocb and owner to fd_insert()
12112 - BUG/MINOR: threads: Update labels array because of changes in lock_label enum
12113 - MINOR: stick-tables: Adds support for new "gpc1" and "gpc1_rate" counters.
12114 - BUG/MINOR: epoll/threads: only call epoll_ctl(DEL) on polled FDs
12115 - DOC: don't suggest using http-server-close
12116 - MINOR: introduce proxy-v2-options for send-proxy-v2
12117 - BUG/MEDIUM: spoe: Always try to receive or send the frame to detect shutdowns
12118 - BUG/MEDIUM: spoe: Allow producer to read and to forward shutdown on request side
12119 - MINOR: spoe: Remove check on min_applets number when a SPOE context is queued
12120 - MINOR: spoe: Always link a SPOE context with the applet processing it
12121 - MINOR: spoe: Replace sending_rate by a frequency counter
12122 - MINOR: spoe: Count the number of frames waiting for an ack for each applet
12123 - MEDIUM: spoe: Use an ebtree to manage idle applets
12124 - MINOR: spoa_example: Count the number of frames processed by each worker
12125 - MINOR: spoe: Add max-waiting-frames directive in spoe-agent configuration
12126 - MINOR: init: make stdout unbuffered
12127 - MINOR: early data: Don't rely on CO_FL_EARLY_DATA to wake up streams.
12128 - MINOR: early data: Never remove the CO_FL_EARLY_DATA flag.
12129 - MINOR: compiler: introduce offsetoff().
12130 - MINOR: threads: Introduce double-width CAS on x86_64 and arm.
12131 - MINOR: threads: add test and set/reset operations
12132 - MINOR: pools/threads: Implement lockless memory pools.
12133 - MAJOR: fd/threads: Make the fdcache mostly lockless.
12134 - MEDIUM: fd/threads: Make sure we don't miss a fd cache entry.
12135 - MAJOR: fd: compute the new fd polling state out of the fd lock
12136 - MINOR: epoll: get rid of the now useless fd_compute_new_polled_status()
12137 - MINOR: kqueue: get rid of the now useless fd_compute_new_polled_status()
12138 - MINOR: poll: get rid of the now useless fd_compute_new_polled_status()
12139 - MINOR: select: get rid of the now useless fd_compute_new_polled_status()
12140 - CLEANUP: fd: remove the now unused fd_compute_new_polled_status() function
12141 - MEDIUM: fd: make updt_fd_polling() use atomics
12142 - MEDIUM: poller: use atomic ops to update the fdtab mask
12143 - MINOR: fd: move the fd_{add_to,rm_from}_fdlist functions to fd.c
12144 - BUG/MINOR: fd/threads: properly dereference fdcache as volatile
12145 - MINOR: fd: remove the unneeded last CAS when adding an fd to the list
12146 - MINOR: fd: reorder fd_add_to_fd_list()
12147 - BUG/MINOR: time/threads: ensure the adjusted time is always correct
12148 - BUG/MEDIUM: standard: Fix memory leak in str2ip2()
12149 - MINOR: init: emit warning when -sf/-sd cannot parse argument
12150 - BUILD: fd/threads: fix breakage build breakage without threads
12151 - DOC: Describe routing impact of using interface keyword on bind lines
12152 - DOC: Mention -Ws in the list of available options
12153 - BUG/MINOR: config: don't emit a warning when global stats is incompletely configured
12154 - BUG/MINOR: fd/threads: properly lock the FD before adding it to the fd cache.
12155 - BUG/MEDIUM: threads: fix the double CAS implementation for ARMv7
12156 - BUG/MEDIUM: ssl: Don't always treat SSL_ERROR_SYSCALL as unrecovarable.
12157 - BUILD/MINOR: memory: stdint is needed for uintptr_t
12158 - BUG/MINOR: init: Add missing brackets in the code parsing -sf/-st
12159 - DOC: lua: new prototype for function "register_action()"
12160 - DOC: cfgparse: Warn on option (tcp|http)log in backend
12161 - BUG/MINOR: ssl/threads: Make management of the TLS ticket keys files thread-safe
12162 - MINOR: sample: add a new "concat" converter
12163 - BUG/MEDIUM: ssl: Shutdown the connection for reading on SSL_ERROR_SYSCALL
12164 - BUG/MEDIUM: http: Switch the HTTP response in tunnel mode as earlier as possible
12165 - BUG/MEDIUM: ssl/sample: ssl_bc_* fetch keywords are broken.
12166 - MINOR: ssl/sample: adds ssl_bc_is_resumed fetch keyword.
12167 - CLEANUP: cfgparse: Remove unused label end
12168 - CLEANUP: spoe: Remove unused label retry
12169 - CLEANUP: h2: Remove unused labels from mux_h2.c
12170 - CLEANUP: pools: Remove unused end label in memory.h
12171 - CLEANUP: standard: Fix typo in IPv6 mask example
12172 - BUG/MINOR: pools/threads: don't ignore DEBUG_UAF on double-word CAS capable archs
12173 - BUG/MINOR: debug/pools: properly handle out-of-memory when building with DEBUG_UAF
12174 - MINOR: debug/pools: make DEBUG_UAF also detect underflows
12175 - MINOR: stats: display the number of threads in the statistics.
12176 - BUG/MINOR: h2: Set the target of dbuf_wait to h2c
12177 - BUG/MEDIUM: h2: always consume any trailing data after end of output buffers
12178 - BUG/MEDIUM: buffer: Fix the wrapping case in bo_putblk
12179 - BUG/MEDIUM: buffer: Fix the wrapping case in bi_putblk
12180 - BUG/MEDIUM: spoe: Remove idle applets from idle list when HAProxy is stopping
12181 - Revert "BUG/MINOR: send-proxy-v2: string size must include ('\0')"
12182 - MINOR: ssl: extract full pkey info in load_certificate
12183 - MINOR: ssl: add ssl_sock_get_pkey_algo function
12184 - MINOR: ssl: add ssl_sock_get_cert_sig function
12185 - MINOR: connection: add proxy-v2-options ssl-cipher,cert-sig,cert-key
12186 - MINOR: connection: add proxy-v2-options authority
12187 - MINOR: systemd: Add section for SystemD sandboxing to unit file
12188 - MINOR: systemd: Add SystemD's Protect*= options to the unit file
12189 - MINOR: systemd: Add SystemD's SystemCallFilter option to the unit file
12190 - CLEANUP: h2: rename misleading h2c_stream_close() to h2s_close()
12191 - MINOR: h2: provide and use h2s_detach() and h2s_free()
12192 - MEDIUM: h2: use a single buffer allocator
12193 - MINOR/BUILD: fix Lua build on Mac OS X
12194 - BUILD/MINOR: fix Lua build on Mac OS X (again)
12195 - BUG/MINOR: session: Fix tcp-request session failure if handshake.
12196 - CLEANUP: .gitignore: Ignore binaries from the contrib directory
12197 - BUG/MINOR: unix: Don't mess up when removing the socket from the xfer_sock_list.
12198 - DOC: buffers: clarify the purpose of the <from> pointer in offer_buffers()
12199 - BUG/MEDIUM: h2: also arm the h2 timeout when sending
12200 - BUG/MINOR: cli: Fix a crash when passing a negative or too large value to "show fd"
12201 - CLEANUP: ssl: Remove a duplicated #include
12202 - CLEANUP: cli: Remove a leftover debug message
12203 - BUG/MINOR: cli: Fix a typo in the 'set rate-limit' usage
12204 - BUG/MEDIUM: fix a 100% cpu usage with cpu-map and nbthread/nbproc
12205 - BUG/MINOR: force-persist and ignore-persist only apply to backends
12206 - BUG/MEDIUM: threads/unix: Fix a deadlock when a listener is temporarily disabled
12207 - BUG/MAJOR: threads/queue: Fix thread-safety issues on the queues management
12208 - BUG/MINOR: dns: don't downgrade DNS accepted payload size automatically
12209 - TESTS: Add a testcase for multi-port + multi-server listener issue
12210 - CLEANUP: dns: remove duplicate code in src/dns.c
12211 - BUG/MINOR: seemless reload: Fix crash when an interface is specified.
12212 - BUG/MINOR: cli: Ensure all command outputs end with a LF
12213 - BUG/MINOR: cli: Fix a crash when sending a command with too many arguments
12214 - BUILD: ssl: Fix build with OpenSSL without NPN capability
12215 - BUG/MINOR: spoa-example: unexpected behavior for more than 127 args
12216 - BUG/MINOR: lua: return bad error messages
12217 - CLEANUP: lua/syntax: lua is a name and not an acronym
12218 - BUG/MEDIUM: tcp-check: single connect rule can't detect DOWN servers
12219 - BUG/MINOR: tcp-check: use the server's service port as a fallback
12220 - BUG/MEDIUM: threads/queue: wake up other threads upon dequeue
12221 - MINOR: log: stop emitting alerts when it's not possible to write on the socket
12222 - BUILD/BUG: enable -fno-strict-overflow by default
12223 - BUG/MEDIUM: fd/threads: ensure the fdcache_mask always reflects the cache contents
12224 - DOC: log: more than 2 log servers are allowed
12225 - MINOR: hash: add new function hash_crc32c
12226 - MINOR: proxy-v2-options: add crc32c
12227 - MINOR: accept-proxy: support proxy protocol v2 CRC32c checksum
12228 - REORG: compact "struct server"
12229 - MINOR: samples: add crc32c converter
12230 - BUG/MEDIUM: h2: properly account for DATA padding in flow control
12231 - BUG/MINOR: h2: ensure we can never send an RST_STREAM in response to an RST_STREAM
12232 - BUG/MINOR: listener: Don't decrease actconn twice when a new session is rejected
12233 - CLEANUP: map, stream: remove duplicate code in src/map.c, src/stream.c
12234 - BUG/MINOR: lua: the function returns anything
12235 - BUG/MINOR: lua funtion hlua_socket_settimeout don't check negative values
12236 - CLEANUP: lua: typo fix in comments
12237 - BUILD/MINOR: fix build when USE_THREAD is not defined
12238 - MINOR: lua: allow socket api settimeout to accept integers, float, and doubles
12239 - BUG/MINOR: hpack: fix harmless use of uninitialized value in hpack_dht_insert
12240 - MINOR: cli/threads: make "show fd" report thread_sync_io_handler instead of "unknown"
12241 - MINOR: cli: make "show fd" report the mux and mux_ctx pointers when available
12242 - BUILD/MINOR: cli: fix a build warning introduced by last commit
12243 - BUG/MAJOR: h2: remove orphaned streams from the send list before closing
12244 - MINOR: h2: always call h2s_detach() in h2_detach()
12245 - MINOR: h2: fuse h2s_detach() and h2s_free() into h2s_destroy()
12246 - BUG/MEDIUM: h2/threads: never release the task outside of the task handler
12247 - BUG/MEDIUM: h2: don't consider pending data on detach if connection is in error
12248 - BUILD/MINOR: threads: always export thread_sync_io_handler()
12249 - MINOR: mux: add a "show_fd" function to dump debugging information for "show fd"
12250 - MINOR: h2: implement a basic "show_fd" function
12251 - MINOR: cli: report cache indexes in "show fd"
12252 - BUG/MINOR: h2: remove accidental debug code introduced with show_fd function
12253 - BUG/MEDIUM: h2: always add a stream to the send or fctl list when blocked
12254 - BUG/MINOR: checks: check the conn_stream's readiness and not the connection
12255 - BUG/MINOR: fd: Don't clear the update_mask in fd_insert.
12256 - BUG/MINOR: email-alert: Set the mailer port during alert initialization
12257 - BUG/MINOR: cache: fix "show cache" output
12258 - BUG/MAJOR: cache: fix random crashes caused by incorrect delete() on non-first blocks
12259 - BUG/MINOR: spoe: Initialize variables used during conf parsing before any check
12260 - BUG/MINOR: spoe: Don't release the context buffer in .check_timeouts callbaclk
12261 - BUG/MINOR: spoe: Register the variable to set when an error occurred
12262 - BUG/MINOR: spoe: Don't forget to decrement fpa when a processing is interrupted
12263 - MINOR: spoe: Add metrics in to know time spent in the SPOE
12264 - MINOR: spoe: Add options to store processing times in variables
12265 - MINOR: log: move 'log' keyword parsing in dedicated function
12266 - MINOR: log: Keep the ref when a log server is copied to avoid duplicate entries
12267 - MINOR: spoe: Add loggers dedicated to the SPOE agent
12268 - MINOR: spoe: Add support for option dontlog-normal in the SPOE agent section
12269 - MINOR: spoe: use agent's logger to log SPOE messages
12270 - MINOR: spoe: Add counters to log info about SPOE agents
12271 - BUG/MAJOR: cache: always initialize newly created objects
12272 - MINOR: servers: Support alphanumeric characters for the server templates names
12273 - BUG/MEDIUM: threads: Fix the max/min calculation because of name clashes
12274 - BUG/MEDIUM: connection: Make sure we have a mux before calling detach().
12275 - BUG/MINOR: http: Return an error in proxy mode when url2sa fails
12276 - MINOR: proxy: Add fe_defbe fetcher
12277 - MINOR: config: Warn if resolvers has no nameservers
12278 - BUG/MINOR: cli: Guard against NULL messages when using CLI_ST_PRINT_FREE
12279 - MINOR: cli: Ensure the CLI always outputs an error when it should
12280 - MEDIUM: sample: Extend functionality for field/word converters
12281 - MINOR: export localpeer as an environment variable
12282 - BUG/MEDIUM: kqueue: When adding new events, provide an output to get errors.
12283 - BUILD: sample: avoid build warning in sample.c
12284 - BUG/CRITICAL: h2: fix incorrect frame length check
12285 - DOC: lua: update the links to the config and Lua API
12286 - BUG/MINOR: pattern: Add a missing HA_SPIN_INIT() in pat_ref_newid()
12287 - BUG/MAJOR: channel: Fix crash when trying to read from a closed socket
12288 - BUG/MINOR: log: t_idle (%Ti) is not set for some requests
12289 - BUG/MEDIUM: lua: Fix segmentation fault if a Lua task exits
12290 - MINOR: h2: detect presence of CONNECT and/or content-length
12291 - BUG/MEDIUM: h2: implement missing support for chunked encoded uploads
12292 - BUG/MINOR: spoe: Fix counters update when processing is interrupted
12293 - BUG/MINOR: spoe: Fix parsing of dontlog-normal option
12294 - MEDIUM: cli: Add payload support
12295 - MINOR: map: Add payload support to "add map"
12296 - MINOR: ssl: Add payload support to "set ssl ocsp-response"
12297 - BUG/MINOR: lua/threads: Make lua's tasks sticky to the current thread
12298 - MINOR: sample: Add strcmp sample converter
12299 - MINOR: http: Add support for 421 Misdirected Request
12300 - BUG/MINOR: config: disable http-reuse on TCP proxies
12301 - MINOR: ssl: disable SSL sample fetches when unsupported
12302 - MINOR: ssl: add fetch 'ssl_fc_session_key' and 'ssl_bc_session_key'
12303 - BUG/MINOR: checks: Fix check->health computation for flapping servers
12304 - BUG/MEDIUM: threads: Fix the sync point for more than 32 threads
12305 - BUG/MINOR, BUG/MINOR: lua: Put tasks to sleep when waiting for data
12306 - MINOR: backend: implement random-based load balancing
12307 - DOC/MINOR: clean up LUA documentation re: servers & array/table.
12308 - MINOR: lua: Add server name & puid to LUA Server class.
12309 - MINOR: lua: add get_maxconn and set_maxconn to LUA Server class.
12310 - BUG/MINOR: map: correctly track reference to the last ref_elt being dumped
12311 - BUG/MEDIUM: task: Don't free a task that is about to be run.
12312 - MINOR: fd: Make the lockless fd list work with multiple lists.
12313 - BUG/MEDIUM: pollers: Use a global list for fd shared between threads.
12314 - MINOR: pollers: move polled_mask outside of struct fdtab.
12315 - BUG/MINOR: lua: schedule socket task upon lua connect()
12316 - BUG/MINOR: lua: ensure large proxy IDs can be represented
12317 - BUG/MEDIUM: pollers/kqueue: use incremented position in event list
12318 - BUG/MINOR: cli: don't stop cli_gen_usage_msg() when kw->usage == NULL
12319 - BUG/MEDIUM: http: don't always abort transfers on CF_SHUTR
12320 - BUG/MEDIUM: ssl: properly protect SSL cert generation
12321 - BUG/MINOR: lua: Socket.send threw runtime error: 'close' needs 1 arguments.
12322 - BUG/MINOR: spoe: Mistake in error message about SPOE configuration
12323 - BUG/MEDIUM: spoe: Flags are not encoded in network order
12324 - CLEANUP: spoe: Remove unused variables the agent structure
12325 - DOC: spoe: fix a typo
12326 - BUG/MEDIUM: contrib/mod_defender: Use network order to encode/decode flags
12327 - BUG/MEDIUM: contrib/modsecurity: Use network order to encode/decode flags
12328 - DOC: add some description of the pending rework of the buffer structure
12329 - BUG/MINOR: ssl/lua: prevent lua from affecting automatic maxconn computation
12330 - MINOR: lua: Improve error message
12331 - BUG/MEDIUM: cache: don't cache when an Authorization header is present
12332 - MINOR: ssl: set SSL_OP_PRIORITIZE_CHACHA
12333 - BUG/MEDIUM: dns: Delay the attempt to run a DNS resolution on check failure.
12334 - BUG/BUILD: threads: unbreak build without threads
12335 - BUG/MEDIUM: servers: Add srv_addr default placeholder to the state file
12336 - BUG/MEDIUM: lua/socket: Length required read doesn't work
12337 - MINOR: tasks: Change the task API so that the callback takes 3 arguments.
12338 - MAJOR: tasks: Create a per-thread runqueue.
12339 - MAJOR: tasks: Introduce tasklets.
12340 - MINOR: tasks: Make the number of tasks to run at once configurable.
12341 - MAJOR: applets: Use tasks, instead of rolling our own scheduler.
12342 - BUG/MEDIUM: stick-tables: Decrement ref_cnt in table_* converters
12343 - MINOR: http: Log warning if (add|set)-header fails
12344 - DOC: management: add the new wrew stats column
12345 - MINOR: stats: also report the failed header rewrites warnings on the stats page
12346 - BUG/MEDIUM: tasks: Don't forget to increase/decrease tasks_run_queue.
12347 - BUG/MEDIUM: task: Don't forget to decrement max_processed after each task.
12348 - MINOR: task: Also consider the task list size when getting global tasks.
12349 - MINOR: dns: Implement `parse-resolv-conf` directive
12350 - BUG/MEDIUM: spoe: Return an error when the wrong ACK is received in sync mode
12351 - MINOR: task/notification: Is notifications registered ?
12352 - BUG/MEDIUM: lua/socket: wrong scheduling for sockets
12353 - BUG/MAJOR: lua: Dead lock with sockets
12354 - BUG/MEDIUM: lua/socket: Notification error
12355 - BUG/MEDIUM: lua/socket: Sheduling error on write: may dead-lock
12356 - BUG/MEDIUM: lua/socket: Buffer error, may segfault
12357 - DOC: contrib/modsecurity: few typo fixes
12358 - DOC: SPOE.txt: fix a typo
12359 - MAJOR: spoe: upgrade the SPOP version to 2.0 and remove the support for 1.0
12360 - BUG/MINOR: contrib/spoa_example: Don't reset the status code during disconnect
12361 - BUG/MINOR: contrib/mod_defender: Don't reset the status code during disconnect
12362 - BUG/MINOR: contrib/modsecurity: Don't reset the status code during disconnect
12363 - BUG/MINOR: contrib/mod_defender: update pointer on the end of the frame
12364 - BUG/MINOR: contrib/modsecurity: update pointer on the end of the frame
12365 - MINOR: task: Fix a compiler warning by adding a cast.
12366 - MINOR: stats: also report the nice and number of calls for applets
12367 - MINOR: applet: assign the same nice value to a new appctx as its owner task
12368 - MINOR: task: Fix compiler warning.
12369 - BUG/MEDIUM: tasks: Use the local runqueue when building without threads.
12370 - MINOR: tasks: Don't define rqueue if we're building without threads.
12371 - BUG/MINOR: unix: Make sure we can transfer abns sockets on seamless reload.
12372 - MINOR: lua: Increase debug information
12373 - BUG/MEDIUM: threads: handle signal queue only in thread 0
12374 - BUG/MINOR: don't ignore SIG{BUS,FPE,ILL,SEGV} during signal processing
12375 - BUG/MINOR: signals: ha_sigmask macro for multithreading
12376 - BUG/MAJOR: map: fix a segfault when using http-request set-map
12377 - DOC: regression testing: Add a short starting guide.
12378 - MINOR: tasks: Make sure we correctly init and deinit a tasklet.
12379 - BUG/MINOR: tasklets: Just make sure we don't pass a tasklet to the handler.
12380 - BUG/MINOR: lua: Segfaults with wrong usage of types.
12381 - BUG/MAJOR: ssl: Random crash with cipherlist capture
12382 - BUG/MAJOR: ssl: OpenSSL context is stored in non-reserved memory slot
12383 - BUG/MEDIUM: ssl: do not store pkinfo with SSL_set_ex_data
12384 - MINOR: tests: First regression testing file.
12385 - MINOR: reg-tests: Add reg-tests/README file.
12386 - MINOR: reg-tests: Add a few regression testing files.
12387 - DOC: Add new REGTEST tag info about reg testing.
12388 - BUG/MEDIUM: fd: Don't modify the update_mask in fd_dodelete().
12389 - MINOR: Some spelling cleanup in the comments.
12390 - BUG/MEDIUM: threads: Use the sync point to check active jobs and exit
12391 - MINOR: threads: Be sure to remove threads from all_threads_mask on exit
12392 - REGTEST/MINOR: Wrong URI in a reg test for SSL/TLS.
12393 - REGTEST/MINOR: Set HAPROXY_PROGRAM default value.
12394 - REGTEST/MINOR: Add levels to reg-tests target.
12395 - BUG/MAJOR: Stick-tables crash with segfault when the key is not in the stick-table
12396 - BUG/BUILD: threads: unbreak build without threads
12397 - BUG/MAJOR: stick_table: Complete incomplete SEGV fix
12398 - MINOR: stick-tables: make stktable_release() do nothing on NULL
12399 - BUG/MEDIUM: lua: possible CLOSE-WAIT state with '\n' headers
12400 - MINOR: startup: change session/process group settings
12401 - MINOR: systemd: consider exit status 143 as successful
12402 - REGTEST/MINOR: Wrong URI syntax.
12403 - CLEANUP: dns: remove obsolete macro DNS_MAX_IP_REC
12404 - CLEANUP: dns: inacurate comment about prefered IP score
12405 - MINOR: dns: fix wrong score computation in dns_get_ip_from_response
12406 - MINOR: dns: new DNS options to allow/prevent IP address duplication
12407 - REGTEST/MINOR: Unexpected curl URL globling.
12408 - BUG/MINOR: ssl: properly ref-count the tls_keys entries
12409 - MINOR: h2: keep a count of the number of conn_streams attached to the mux
12410 - BUG/MEDIUM: h2: don't accept new streams if conn_streams are still in excess
12411 - MINOR: h2: add the mux and demux buffer lengths on "show fd"
12412 - BUG/MEDIUM: h2: never leave pending data in the output buffer on close
12413 - BUG/MEDIUM: h2: make sure the last stream closes the connection after a timeout
12414 - MINOR: tasklet: Set process to NULL.
12415 - MINOR: buffer: implement a new file for low-level buffer manipulation functions
12416 - MINOR: buffer: switch buffer sizes and offsets to size_t
12417 - MINOR: buffer: add a few basic functions for the new API
12418 - MINOR: buffer: Introduce b_sub(), b_add(), and bo_add()
12419 - MINOR: buffer: Add b_set_data().
12420 - MINOR: buffer: introduce b_realign_if_empty()
12421 - MINOR: compression: pass the channel to http_compression_buffer_end()
12422 - MINOR: channel: add a few basic functions for the new buffer API
12423 - MINOR: channel/buffer: use c_realign_if_empty() instead of buffer_realign()
12424 - MINOR: channel/buffer: replace buffer_slow_realign() with channel_slow_realign() and b_slow_realign()
12425 - MEDIUM: channel: make channel_slow_realign() take a swap buffer
12426 - MINOR: h2: use b_slow_realign() with the trash as a swap buffer
12427 - MINOR: buffer: remove buffer_slow_realign() and the swap_buffer allocation code
12428 - MINOR: channel/buffer: replace b_{adv,rew} with c_{adv,rew}
12429 - MINOR: buffer: replace calls to buffer_space_wraps() with b_space_wraps()
12430 - MINOR: buffer: remove bi_getblk() and bi_getblk_nc()
12431 - MINOR: buffer: split bi_contig_data() into ci_contig_data and b_config_data()
12432 - MINOR: buffer: remove bi_ptr()
12433 - MINOR: buffer: remove bo_ptr()
12434 - MINOR: buffer: remove bo_end()
12435 - MINOR: buffer: remove bi_end()
12436 - MINOR: buffer: remove bo_contig_data()
12437 - MINOR: buffer: merge b{i,o}_contig_space()
12438 - MINOR: buffer: replace bo_getblk() with direction agnostic b_getblk()
12439 - MINOR: buffer: replace bo_getblk_nc() with b_getblk_nc() which takes an offset
12440 - MINOR: buffer: replace bi_del() and bo_del() with b_del()
12441 - MINOR: buffer: convert most b_ptr() calls to c_ptr()
12442 - MINOR: h1: make h1_measure_trailers() take the byte count in argument
12443 - MINOR: h2: clarify the fact that the send functions are unsigned
12444 - MEDIUM: h2: prevent the various mux encoders from modifying the buffer
12445 - MINOR: h1: make h1_skip_chunk_crlf() not depend on b_ptr() anymore
12446 - MINOR: h1: make h1_parse_chunk_size() not depend on b_ptr() anymore
12447 - MINOR: h1: make h1_measure_trailers() use an offset and a count
12448 - MEDIUM: h2: do not use buf->o anymore inside h2_snd_buf's loop
12449 - MEDIUM: h2: don't use b_ptr() nor b_end() anymore
12450 - MINOR: buffer: get rid of b_end() and b_to_end()
12451 - MINOR: buffer: make b_getblk_nc() take const pointers
12452 - MINOR: buffer: make b_getblk_nc() take size_t for the block sizes
12453 - MEDIUM: connection: make xprt->snd_buf() take the byte count in argument
12454 - MEDIUM: mux: make mux->snd_buf() take the byte count in argument
12455 - MEDIUM: connection: make xprt->rcv_buf() use size_t for the count
12456 - MEDIUM: mux: make mux->rcv_buf() take a size_t for the count
12457 - MINOR: connection: add a flags argument to rcv_buf()
12458 - MINOR: connection: add a new receive flag : CO_RFL_BUF_WET
12459 - MINOR: buffer: get rid of b_ptr() and convert its last users
12460 - MINOR: buffer: use b_room() to determine available space in a buffer
12461 - MINOR: buffer: replace buffer_not_empty() with b_data() or c_data()
12462 - MINOR: buffer: replace buffer_empty() with b_empty() or c_empty()
12463 - MINOR: buffer: make bo_putchar() use b_tail()
12464 - MINOR: buffer: replace buffer_full() with channel_full()
12465 - MINOR: buffer: replace bi_space_for_replace() with ci_space_for_replace()
12466 - MINOR: buffer: replace buffer_pending() with ci_data()
12467 - MINOR: buffer: replace buffer_flush() with c_adv(chn, ci_data(chn))
12468 - MINOR: buffer: use c_head() instead of buffer_wrap_sub(c->buf, p-o)
12469 - MINOR: buffer: use b_orig() to replace most references to b->data
12470 - MINOR: buffer: Use b_add()/bo_add() instead of accessing b->i/b->o.
12471 - MINOR: channel: remove almost all references to buf->i and buf->o
12472 - MINOR: channel: Add co_set_data().
12473 - MEDIUM: channel: adapt to the new buffer API
12474 - MINOR: checks: adapt to the new buffer API
12475 - MEDIUM: h2: update to the new buffer API
12476 - MINOR: buffer: remove unused bo_add()
12477 - MEDIUM: spoe: use the new buffer API for the SPOE buffer
12478 - MINOR: stats: adapt to the new buffers API
12479 - MINOR: cli: use the new buffer API
12480 - MINOR: cache: use the new buffer API
12481 - MINOR: stream-int: use the new buffer API
12482 - MINOR: stream: use wrappers instead of directly manipulating buffers
12483 - MINOR: backend: use new buffer API
12484 - MEDIUM: http: use wrappers instead of directly manipulating buffers states
12485 - MINOR: filters: convert to the new buffer API
12486 - MINOR: payload: convert to the new buffer API
12487 - MEDIUM: h1: port to new buffer API.
12488 - MINOR: flt_trace: adapt to the new buffer API
12489 - MEDIUM: compression: start to move to the new buffer API
12490 - MINOR: lua: use the wrappers instead of directly manipulating buffer states
12491 - MINOR: buffer: convert part bo_putblk() and bi_putblk() to the new API
12492 - MINOR: buffer: adapt buffer_slow_realign() and buffer_dump() to the new API
12493 - MAJOR: start to change buffer API
12494 - MINOR: buffer: remove the check for output on b_del()
12495 - MINOR: buffer: b_set_data() doesn't truncate output data anymore
12496 - MINOR: buffer: rename the "data" field to "area"
12497 - MEDIUM: buffers: move "output" from struct buffer to struct channel
12498 - MINOR: buffer: replace bi_fast_delete() with b_del()
12499 - MINOR: buffer: replace b{i,o}_put* with b_put*
12500 - MINOR: buffer: add a new file for ist + buffer manipulation functions
12501 - MINOR: checks: use b_putist() instead of b_putstr()
12502 - MINOR: buffers: remove b_putstr()
12503 - CLEANUP: buffer: minor cleanups to buffer.h
12504 - MINOR: buffers/channel: replace buffer_insert_line2() with ci_insert_line2()
12505 - MINOR: buffer: replace buffer_replace2() with b_rep_blk()
12506 - MINOR: buffer: rename the data length member to '->data'
12507 - MAJOR: buffer: finalize buffer detachment
12508 - MEDIUM: chunks: make the chunk struct's fields match the buffer struct
12509 - MAJOR: chunks: replace struct chunk with struct buffer
12510 - DOC: buffers: document the new buffers API
12511 - DOC: buffers: remove obsolete docs about buffers
12512 - MINOR: tasklets: Don't attempt to add a tasklet in the list twice.
12513 - MINOR: connections/mux: Add a new "subscribe" method.
12514 - MEDIUM: connections/mux: Revamp the send direction.
12515 - MINOR: connection: simplify subscription by adding a registration function
12516 - BUG/MINOR: http: Set brackets for the unlikely macro at the right place
12517 - BUG/MINOR: build: Fix compilation with debug mode enabled
12518 - BUILD: Generate sha256 checksums in publish-release
12519 - MINOR: debug: Add check for CO_FL_WILL_UPDATE
12520 - MINOR: debug: Add checks for conn_stream flags
12521 - MINOR: ist: Add the function isteqi
12522 - BUG/MEDIUM: threads: Fix the exit condition of the thread barrier
12523 - BUG/MEDIUM: mux_h2: Call h2_send() before updating polling.
12524 - MINOR: buffers: simplify b_contig_space()
12525 - MINOR: buffers: split b_putblk() into __b_putblk()
12526 - MINOR: buffers: add b_xfer() to transfer data between buffers
12527 - DOC: add some design notes about the new layering model
12528 - MINOR: conn_stream: add a new CS_FL_REOS flag
12529 - MINOR: conn_stream: add an rx buffer to the conn_stream
12530 - MEDIUM: conn_stream: add cs_recv() as a default rcv_buf() function
12531 - MEDIUM: stream-int: automatically call si_cs_recv_cb() if the cs has data on wake()
12532 - MINOR: h2: make each H2 stream support an intermediary input buffer
12533 - MEDIUM: h2: make h2_frt_decode_headers() use an intermediary buffer
12534 - MEDIUM: h2: make h2_frt_transfer_data() copy via an intermediary buffer
12535 - MEDIUM: h2: centralize transfer of decoded frames in h2_rcv_buf()
12536 - MEDIUM: h2: move headers and data frame decoding to their respective parsers
12537 - MEDIUM: buffers: make b_xfer() automatically swap buffers when possible
12538 - MEDIUM: h2: perform a single call to the data layer in demux()
12539 - MEDIUM: h2: don't call data_cb->recv() anymore
12540 - MINOR: h2: make use of CS_FL_REOS to indicate that end of stream was seen
12541 - MEDIUM: h2: use the default conn_stream's receive function
12542 - DOC: add more design feedback on the new layering model
12543 - MINOR: h2: add the error code and the max/last stream IDs to "show fd"
12544 - BUG/MEDIUM: stream-int: don't immediately enable reading when the buffer was reportedly full
12545 - BUG/MEDIUM: stats: don't ask for more data as long as we're responding
12546 - BUG/MINOR: servers: Don't make "server" in a frontend fatal.
12547 - BUG/MEDIUM: tasks: make sure we pick all tasks in the run queue
12548 - BUG/MEDIUM: tasks: Decrement rqueue_size at the right time.
12549 - BUG/MEDIUM: tasks: use atomic ops for active_tasks_mask
12550 - BUG/MEDIUM: tasks: Make sure there's no task left before considering inactive.
12551 - MINOR: signal: don't pass the signal number anymore as the wakeup reason
12552 - MINOR: tasks: extend the state bits from 8 to 16 and remove the reason
12553 - MINOR: tasks: Add a flag that tells if we're in the global runqueue.
12554 - BUG/MEDIUM: tasks: make __task_unlink_rq responsible for the rqueue size.
12555 - MINOR: queue: centralize dequeuing code a bit better
12556 - MEDIUM: queue: make pendconn_free() work on the stream instead
12557 - DOC: queue: document the expected locking model for the server's queue
12558 - MINOR: queue: make sure pendconn->strm->pend_pos is always valid
12559 - MINOR: queue: use a distinct variable for the assigned server and the queue
12560 - MINOR: queue: implement pendconn queue locking functions
12561 - MEDIUM: queue: get rid of the pendconn lock
12562 - MINOR: tasks: Make active_tasks_mask volatile.
12563 - MINOR: tasks: Make global_tasks_mask volatile.
12564 - MINOR: pollers: Add a way to wake a thread sleeping in the poller.
12565 - MINOR: threads/queue: Get rid of THREAD_WANT_SYNC in the queue code.
12566 - BUG/MEDIUM: threads/sync: use sched_yield when available
12567 - MINOR: ssl: BoringSSL matches OpenSSL 1.1.0
12568 - BUG/MEDIUM: h2: prevent orphaned streams from blocking a connection forever
12569 - BUG/MINOR: config: stick-table is not supported in defaults section
12570 - BUILD/MINOR: threads: unbreak build with threads disabled
12571 - BUG/MINOR: threads: Handle nbthread == MAX_THREADS.
12572 - BUG/MEDIUM: threads: properly fix nbthreads == MAX_THREADS
12573 - MINOR: threads: move "nbthread" parsing to hathreads.c
12574 - BUG/MEDIUM: threads: unbreak "bind" referencing an incorrect thread number
12575 - MEDIUM: proxy_protocol: Convert IPs to v6 when protocols are mixed
12576 - BUILD/MINOR: compiler: fix offsetof() on older compilers
12577 - SCRIPTS: git-show-backports: add missing quotes to "echo"
12578 - MINOR: threads: add more consistency between certain variables in no-thread case
12579 - MEDIUM: hathreads: implement a more flexible rendez-vous point
12580 - BUG/MEDIUM: cli: make "show fd" thread-safe
12581
Willy Tarreaub3066502017-11-26 19:50:17 +0100125822017/11/26 : 1.9-dev0
12583
Willy Tarreau0b787922017-11-26 19:25:23 +0100125842017/11/26 : 1.8.0
12585 - BUG/MEDIUM: stream: don't automatically forward connect nor close
12586 - BUG/MAJOR: stream: ensure analysers are always called upon close
12587 - BUG/MINOR: stream-int: don't try to read again when CF_READ_DONTWAIT is set
12588 - MEDIUM: mworker: Add systemd `Type=notify` support
12589 - BUG/MEDIUM: cache: free callback to remove from tree
12590 - CLEANUP: cache: remove unused struct
12591 - MEDIUM: cache: enable the HTTP analysers
12592 - CLEANUP: cache: remove wrong comment
12593 - MINOR: threads/atomic: rename local variables in macros to avoid conflicts
12594 - MINOR: threads/plock: rename local variables in macros to avoid conflicts
12595 - MINOR: threads/atomic: implement pl_mb() in asm on x86
12596 - MINOR: threads/atomic: implement pl_bts() on non-x86
12597 - MINOR: threads/build: atomic: replace the few inlines with macros
12598 - BUILD: threads/plock: fix a build issue on Clang without optimization
12599 - BUILD: ebtree: don't redefine types u32/s32 in scope-aware trees
12600 - BUILD: compiler: add a new type modifier __maybe_unused
12601 - BUILD: h2: mark some inlined functions "unused"
12602 - BUILD: server: check->desc always exists
12603 - BUG/MEDIUM: h2: properly report connection errors in headers and data handlers
12604 - MEDIUM: h2: add a function to emit an HTTP/1 request from a headers list
12605 - MEDIUM: h2: change hpack_decode_headers() to only provide a list of headers
12606 - BUG/MEDIUM: h2: always reassemble the Cookie request header field
12607 - BUG/MINOR: systemd: ignore daemon mode
12608 - CONTRIB: spoa_example: allow to compile outside HAProxy.
12609 - CONTRIB: spoa_example: remove bref, wordlist, cond_wordlist
12610 - CONTRIB: spoa_example: remove last dependencies on type "sample"
12611 - CONTRIB: spoa_example: remove SPOE enums that are useless for clients
12612 - CLEANUP: cache: reorder includes
12613 - MEDIUM: shctx: use unsigned int for len and block_count
12614 - MEDIUM: cache: "show cache" on the cli
12615 - BUG/MEDIUM: cache: use key=0 as a condition for freeing
12616 - BUG/MEDIUM: cache: refcount forbids to free the objects
12617 - BUG/MEDIUM: cache fix cli_kws structure
12618 - BUG/MEDIUM: deinit: correctly deinitialize the proxy and global listener tasks
12619 - BUG/MINOR: ssl: Always start the handshake if we can't send early data.
12620 - MINOR: ssl: Don't disable early data handling if we could not write.
12621 - MINOR: pools: prepare functions to override malloc/free in pools
12622 - MINOR: pools: implement DEBUG_UAF to detect use after free
12623 - BUG/MEDIUM: threads/time: fix time drift correction
12624 - BUG/MEDIUM: threads/time: maintain a common time reference between all threads
12625 - MINOR: sample: Add "thread" sample fetch
12626 - BUG/MINOR: Use crt_base instead of ca_base when crt is parsed on a server line
12627 - BUG/MINOR: stream: fix tv_request calculation for applets
12628 - BUG/MAJOR: h2: always remove a stream from the send list before freeing it
12629 - BUG/MAJOR: threads/task: dequeue expired tasks under the WQ lock
12630 - MINOR: ssl: Handle reading early data after writing better.
12631 - MINOR: mux: Make sure every string is woken up after the handshake.
12632 - MEDIUM: cache: store sha1 for hashing the cache key
12633 - MINOR: http: implement the "http-request reject" rule
12634 - MINOR: h2: send RST_STREAM before GOAWAY on reject
12635 - MEDIUM: h2: don't gracefully close the connection anymore on Connection: close
12636 - MINOR: h2: make use of client-fin timeout after GOAWAY
12637 - MEDIUM: config: ensure that tune.bufsize is at least 16384 when using HTTP/2
12638 - MINOR: ssl: Handle early data with BoringSSL
12639 - BUG/MEDIUM: stream: always release the stream-interface on abort
12640 - BUG/MEDIUM: cache: free ressources in chn_end_analyze
12641 - MINOR: cache: move the refcount decrease in the applet release
12642 - BUG/MINOR: listener: Allow multiple "process" options on "bind" lines
12643 - MINOR: config: Support a range to specify processes in "cpu-map" parameter
12644 - MINOR: config: Slightly change how parse_process_number works
12645 - MINOR: config: Export parse_process_number and use it wherever it's applicable
12646 - MINOR: standard: Add my_ffsl function to get the position of the bit set to one
12647 - MINOR: config: Add auto-increment feature for cpu-map
12648 - MINOR: config: Support partial ranges in cpu-map directive
12649 - MINOR:: config: Remove thread-map directive
12650 - MINOR: config: Add the threads support in cpu-map directive
12651 - MINOR: config: Add threads support for "process" option on "bind" lines
12652 - MEDIUM: listener: Bind listeners on a thread subset if specified
12653 - CLEANUP: debug: Use DPRINTF instead of fprintf into #ifdef DEBUG_FULL/#endif
12654 - CLEANUP: log: Rename Alert/Warning in ha_alert/ha_warning
12655 - MINOR/CLEANUP: proxy: rename "proxy" to "proxies_list"
12656 - CLEANUP: pools: rename all pool functions and pointers to remove this "2"
12657 - DOC: update the roadmap file with the latest changes merged in 1.8
12658 - DOC: fix mangled version in peers protocol documentation
12659 - DOC: add initial peers protovol v2.0 documentation.
12660 - DOC: mention William as maintainer of the cache and master-worker
12661 - DOC: add Christopher and Emeric as maintainers of the threads
12662 - MINOR: cache: replace a fprint() by an abort()
12663 - MEDIUM: cache: max-age configuration keyword
12664 - DOC: explain HTTP2 timeout behavior
12665 - DOC: cache: configuration and management
12666 - MAJOR: mworker: exits the master on failure
12667 - BUG/MINOR: threads: don't drop "extern" on the lock in include files
12668 - MINOR: task: keep a pointer to the currently running task
12669 - MINOR: task: align the rq and wq locks
12670 - MINOR: fd: cache-align fdtab and fdcache locks
12671 - MINOR: buffers: cache-align buffer_wq_lock
12672 - CLEANUP: server: reorder some fields in struct server to save 40 bytes
12673 - CLEANUP: proxy: slightly reorder the struct proxy to reduce holes
12674 - CLEANUP: checks: remove 16 bytes of holes in struct check
12675 - CLEANUP: cache: more efficiently pack the struct cache
12676 - CLEANUP: fd: place the lock at the beginning of struct fdtab
12677 - CLEANUP: pools: align pools on a cache line
12678 - DOC: config: add a few bits about how to configure HTTP/2
12679 - BUG/MAJOR: threads/queue: avoid recursive locking in pendconn_get_next_strm()
12680 - BUILD: Makefile: reorder object files by size
12681
Willy Tarreaucfe14662017-11-19 09:55:29 +0100126822017/11/19 : 1.8-rc4
12683 - BUG/MEDIUM: cache: does not cache if no Content-Length
12684 - BUILD: thread/pipe: fix build without threads
12685 - BUG/MINOR: spoe: check buffer size before acquiring or releasing it
12686 - MINOR: debug/flags: Add missing flags
12687 - MINOR: threads: Use __decl_hathreads to declare locks
12688 - BUG/MINOR: buffers: Fix b_alloc_margin to be "fonctionnaly" thread-safe
12689 - BUG/MAJOR: ebtree/scope: fix insertion and removal of duplicates in scope-aware trees
12690 - BUG/MAJOR: ebtree/scope: fix lookup of next node in scope-aware trees
12691 - MINOR: ebtree/scope: add a function to find next node from a parent
12692 - MINOR: ebtree/scope: simplify the lookup functions by using eb32sc_next_with_parent()
12693 - BUG/MEDIUM: mworker: Fix re-exec when haproxy is started from PATH
12694 - BUG/MEDIUM: cache: use msg->sov to forward header
12695 - MINOR: cache: forward data with headers
12696 - MINOR: cache: disable cache if shctx_row_data_append fail
12697 - BUG/MINOR: threads: tid_bit must be a unsigned long
12698 - CLEANUP: tasks: Remove useless double test on rq_next
12699 - BUG/MEDIUM: standard: itao_str/idx and quote_str/idx must be thread-local
12700 - MINOR: tools: add a function to dump a scope-aware tree to a file
12701 - MINOR: tools: improve the DOT dump of the ebtree
12702 - MINOR: tools: emphasize the node being worked on in the tree dump
12703 - BUG/MAJOR: ebtree/scope: properly tag upper nodes during insertion
12704 - DOC: peers: Add a first version of peers protocol v2.1.
12705 - CONTRIB: Wireshark dissector for HAProxy Peer Protocol.
12706 - MINOR: mworker: display an accurate error when the reexec fail
12707 - BUG/MEDIUM: mworker: wait again for signals when execvp fail
12708 - BUG/MEDIUM: mworker: does not deinit anymore
12709 - BUG/MEDIUM: mworker: does not close inherited FD
12710 - MINOR: tests: add a python wrapper to test inherited fd
12711 - BUG/MINOR: Allocate the log buffers before the proxies startup
12712 - MINOR: tasks: Use a bitfield to track tasks activity per-thread
12713 - MAJOR: polling: Use active_tasks_mask instead of tasks_run_queue
12714 - MINOR: applets: Use a bitfield to track applets activity per-thread
12715 - MAJOR: polling: Use active_appels_mask instead of applets_active_queue
12716 - MEDIUM: applets: Don't process more than 200 active applets at once
12717 - MINOR: stream: Add thread-mask of tasks/FDs/applets in "show sess all" command
12718 - MINOR: SSL: Store the ASN1 representation of client sessions.
12719 - MINOR: ssl: Make sure we don't shutw the connection before the handshake.
12720 - BUG/MEDIUM: deviceatlas: ignore not valuable HTTP request data
12721
Willy Tarreau34650d52017-11-11 09:06:48 +0100127222017/11/11 : 1.8-rc3
12723 - BUILD: use MAXPATHLEN instead of NAME_MAX.
12724 - BUG/MAJOR: threads/checks: add 4 missing spin_unlock() in various functions
12725 - BUG/MAJOR: threads/server: missing unlock in CLI fqdn parser
12726 - BUG/MINOR: cli: do not perform an invalid action on "set server check-port"
12727 - BUG/MAJOR: threads/checks: wrong use of SPIN_LOCK instead of SPIN_UNLOCK
12728 - CLEANUP: checks: remove return statements in locked functions
12729 - BUG/MINOR: cli: add severity in "set server addr" parser
12730 - CLEANUP: server: get rid of return statements in the CLI parser
12731 - BUG/MAJOR: cli/streams: missing unlock on exit "show sess"
12732 - BUG/MAJOR: threads/dns: add missing unlock on allocation failure path
12733 - BUG/MAJOR: threads/lb: fix missing unlock on consistent hash LB
12734 - BUG/MAJOR: threads/lb: fix missing unlock on map-based hash LB
12735 - BUG/MEDIUM: threads/stick-tables: close a race condition on stktable_trash_expired()
12736 - BUG/MAJOR: h2: set the connection's task to NULL when no client timeout is set
12737 - BUG/MAJOR: thread/listeners: enable_listener must not call unbind_listener()
12738 - BUG/MEDIUM: threads: don't try to free build option message on exit
12739 - MINOR: applets: no need to check for runqueue's emptiness in appctx_res_wakeup()
12740 - MINOR: add master-worker in the warning about nbproc
12741 - MINOR: mworker: allow pidfile in mworker + foreground
12742 - MINOR: mworker: write parent pid in the pidfile
12743 - MINOR: mworker: do not store child pid anymore in the pidfile
12744 - MINOR: ebtree: implement the scope-aware functions for eb32
12745 - MEDIUM: ebtree: specify the scope of every node inserted via eb32sc
12746 - MINOR: ebtree: update the eb32sc parent node's scope on delete
12747 - MEDIUM: ebtree: only consider the branches matching the scope in lookups
12748 - MINOR: ebtree: implement eb32sc_lookup_ge_or_first()
12749 - MAJOR: task: make use of the scope-aware ebtree functions
12750 - MINOR: task: simplify wake_expired_tasks() to avoid unlocking in the loop
12751 - MEDIUM: task: change the construction of the loop in process_runnable_tasks()
12752 - MINOR: threads: use faster locks for the spin locks
12753 - MINOR: tasks: only visit filled task slots after processing them
12754 - MEDIUM: tasks: implement a lockless scheduler for single-thread usage
12755 - BUG/MINOR: dns: Don't try to get the server lock if it's already held.
12756 - BUG/MINOR: dns: Don't lock the server lock in snr_check_ip_callback().
12757 - DOC: Add note about encrypted password CPU usage
12758 - BUG/MINOR: h2: set the "HEADERS_SENT" flag on stream, not connection
12759 - BUG/MEDIUM: h2: properly send an RST_STREAM on mux stream error
12760 - BUG/MEDIUM: h2: properly send the GOAWAY frame in the mux
12761 - BUG/MEDIUM: h2: don't try (and fail) to send non-existing data in the mux
12762 - MEDIUM: h2: remove the H2_SS_RESET intermediate state
12763 - BUG/MEDIUM: h2: fix some wrong error codes on connections
12764 - BUILD: threads: Rename SPIN/RWLOCK macros using HA_ prefix
12765 - BUILD: enable USE_THREAD for Solaris build.
12766 - BUG/MEDIUM: h2: don't close the connection is there are data left
12767 - MINOR: h2: don't re-enable the connection's task when we're closing
12768 - BUG/MEDIUM: h2: properly set H2_SF_ES_SENT when sending the final frame
12769 - BUG/MINOR: h2: correctly check for H2_SF_ES_SENT before closing
12770 - MINOR: h2: add new stream flag H2_SF_OUTGOING_DATA
12771 - BUG/MINOR: h2: don't send GOAWAY on failed response
12772 - BUG/MEDIUM: splice/threads: pipe reuse list was not protected.
12773 - BUG/MINOR: comp: fix compilation warning compiling without compression.
12774 - BUG/MINOR: stream-int: don't set MSG_MORE on closed request path
12775 - BUG/MAJOR: threads/tasks: fix the scheduler again
12776 - BUG/MINOR; ssl: Don't assume we have a ssl_bind_conf because a SNI is matched.
12777 - MINOR: ssl: Handle session resumption with TLS 1.3
12778 - MINOR: ssl: Spell 0x10101000L correctly.
12779 - MINOR: ssl: Handle sending early data to server.
12780 - BUILD: ssl: fix build of backend without ssl
12781 - BUILD: shctx: do not depend on openssl anymore
12782 - BUG/MINOR: h1: the HTTP/1 make status code parser check for digits
12783 - BUG/MEDIUM: h2: reject non-3-digit status codes
12784 - BUG/MEDIUM: stream-int: Don't loss write's notifs when a stream is woken up
12785 - BUG/MINOR: pattern: Rely on the sample type to copy it in pattern_exec_match
12786 - BUG/MEDIUM: h2: split the function to send RST_STREAM
12787 - BUG/MEDIUM: h1: ensure the chunk size parser can deal with full buffers
12788 - MINOR: tools: don't use unlikely() in hex2i()
12789 - BUG/MEDIUM: h2: support orphaned streams
12790 - BUG/MEDIUM: threads/cli: fix "show sess" locking on release
12791 - CLEANUP: mux: remove the unused "release()" function
12792 - MINOR: cli: make "show fd" report the fd's thread mask
12793 - BUG/MEDIUM: stream: don't ignore res.analyse_exp anymore
12794 - CLEANUP: global: introduce variable pid_bit to avoid shifts with relative_pid
12795 - MEDIUM: http: always reject the "PRI" method
12796
Willy Tarreaua8d8d6e2017-11-03 23:52:47 +0100127972017/11/03 : 1.8-rc2
12798 - BUG/MINOR: send-proxy-v2: fix dest_len in make_tlv call
12799 - BUG/MINOR: send-proxy-v2: string size must include ('\0')
12800 - MINOR: mux: Only define pipe functions on linux.
12801 - MINOR: cache: Remove useless test for nonzero.
12802 - MINOR: cache: Don't confuse act_return and act_parse_ret.
12803 - BUG/MEDIUM: h2: don't try to parse incomplete H1 responses
12804 - BUG/MEDIUM: checks/mux: always enable send-polling after connecting
12805 - BUG/MAJOR: fix deadlock on healthchecks.
12806 - BUG/MINOR: thread: fix a typo in the debug code
12807 - BUILD: shctx: allow to be built without openssl
12808 - BUG/MEDIUM: cache: don't try to resolve wrong filters
12809 - BUG/MAJOR: buffers: fix get_buffer_nc() for data at end of buffer
12810 - BUG/MINOR: freq: fix infinite loop on freq_ctr_period.
12811 - BUG/MINOR: stdarg.h inclusion
12812 - BUG/MINOR: dns: fix missing lock protection on server.
12813 - BUG/MINOR: lua: fix missing lock protection on server.
12814 - BUILD: enable USE_THREAD for OpenBSD build.
12815 - BUG/MAJOR: mux_pt: don't dereference a connstream after ->wake()
12816 - MINOR: thread: report multi-thread support in haproxy -vv
12817
Willy Tarreau901f75c2017-10-31 23:18:29 +0100128182017/10/31 : 1.8-rc1
12819 - BUG/MEDIUM: server: Allocate tmptrash before using it.
12820 - CONTRIB: trace: add the possibility to place trace calls in the code
12821 - CONTRIB: trace: try to display the function's return value on exit
12822 - CONTRIB: trace: report the base name only for file names
12823 - BUILD: ssl: support OPENSSL_NO_ASYNC #define
12824 - MINOR: ssl: build with recent BoringSSL library
12825 - BUG/MINOR: ssl: OCSP_single_get0_status can return -1
12826 - BUG/MINOR: cli: restore "set ssl tls-key" command
12827 - CLEANUP: cli: remove undocumented "set ssl tls-keys" command
12828 - IMPORT: sha1: import SHA1 functions
12829 - MINOR: sample: add the sha1 converter
12830 - MINOR: sample: add the hex2i converter
12831 - MINOR: stream-int: stop checking for useless connection flags in chk_snd_conn
12832 - MINOR: ssl: don't abort after sending 16kB
12833 - MINOR: connection: move the cleanup of flag CO_FL_WAIT_ROOM
12834 - MINOR: connection: add flag CO_FL_WILL_UPDATE to indicate when updates are granted
12835 - MEDIUM: connection: make use of CO_FL_WILL_UPDATE in conn_sock_shutw()
12836 - MINOR: raw_sock: make use of CO_FL_WILL_UPDATE
12837 - MINOR: ssl_sock: make use of CO_FL_WILL_UPDATE
12838 - BUG/MINOR: checks: Don't forget to release the connection on error case.
12839 - MINOR: buffer: add the buffer input manipulation functions
12840 - BUG/MEDIUM: prevent buffers being overwritten during build_logline() execution
12841 - MEDIUM: cfgparse: post section callback
12842 - MEDIUM: cfgparse: post parsing registration
12843 - MINOR: lua: add uuid to the Class Proxy
12844 - MINOR: hlua: Add regex class
12845 - MINOR: http: Mark the 425 code as "Too Early".
12846 - MEDIUM: ssl: convert CBS (BoringSSL api) usage to neutral code
12847 - MINOR: ssl: support Openssl 1.1.1 early callback for switchctx
12848 - MINOR: ssl: generated certificate is missing in switchctx early callback
12849 - MEDIUM: ssl: Handle early data with OpenSSL 1.1.1
12850 - BUILD: Makefile: disable -Wunused-label
12851 - MINOR: ssl/proto_http: Add keywords to take care of early data.
12852 - BUG/MINOR: lua: const attribute of a string is overridden
12853 - MINOR: ssl: Don't abuse ssl_options.
12854 - MINOR: update proxy-protocol-v2 #define
12855 - MINOR: merge ssl_sock_get calls for log and ppv2
12856 - MINOR: add ALPN information to send-proxy-v2
12857 - MEDIUM: h1: ensure that 1xx, 204 and 304 don't have a payload body
12858 - CLEANUP: shctx: get ride of the shsess_packet{_hdr} structures
12859 - MEDIUM: lists: list_for_each_entry{_safe}_from functions
12860 - REORG: shctx: move lock functions and struct
12861 - MEDIUM: shctx: allow the use of multiple shctx
12862 - REORG: shctx: move ssl functions to ssl_sock.c
12863 - MEDIUM: shctx: separate ssl and shctx
12864 - MINOR: shctx: rename lock functions
12865 - MINOR: h1: store the status code in the H1 message
12866 - BUG/MINOR: spoe: Don't compare engine name and SPOE scope when both are NULL
12867 - BUG/MINOR: spoa: Update pointer on the end of the frame when a reply is encoded
12868 - MINOR: action: Add trk_idx inline function
12869 - MINOR: action: Use trk_idx instead of tcp/http_trk_idx
12870 - MINOR: action: Add a function pointer in act_rule struct to check its validity
12871 - MINOR: action: Add function to check rules using an action ACT_ACTION_TRK_*
12872 - MINOR: action: Add a functions to check http capture rules
12873 - MINOR: action: Factorize checks on rules calling check_ptr if defined
12874 - MINOR: acl: Pass the ACLs as an explicit parameter of build_acl_cond
12875 - MEDIUM: spoe: Add support of ACLS to enable or disable sending of SPOE messages
12876 - MINOR: spoe: Check uniqness of SPOE engine names during config parsing
12877 - MEDIUM: spoe: Parse new "spoe-group" section in SPOE config file
12878 - MEDIUM: spoe/rules: Add "send-spoe-group" action for tcp/http rules
12879 - MINOR: spoe: Move message encoding in its own function
12880 - MINOR: spoe: Add a type to qualify the message list during encoding
12881 - MINOR: spoe: Add a generic function to encode a list of SPOE message
12882 - MEDIUM: spoe/rules: Process "send-spoe-group" action
12883 - BUG/MINOR: dns: Fix CLI keyword declaration
12884 - MAJOR: dns: Refactor the DNS code
12885 - BUG/MINOR: mailers: Fix a memory leak when email alerts are released
12886 - MEDIUM: mailers: Init alerts during conf parsing and refactor their processing
12887 - MINOR: mailers: Use pools to allocate email alerts and its tcpcheck_rules
12888 - MINOR: standard: Add memvprintf function
12889 - MINOR: log: Save alerts and warnings emitted during HAProxy startup
12890 - MINOR: cli: Add "show startup-logs" command
12891 - MINOR: startup: Extend the scope the MODE_STARTING flag
12892 - MINOR: threads: Prepare makefile to link with pthread
12893 - MINOR: threads: Add THREAD_LOCAL macro
12894 - MINOR: threads: Add atomic-ops and plock includes in import dir
12895 - MEDIUM: threads: Add hathreads header file
12896 - MINOR: threads: Add mechanism to register per-thread init/deinit functions
12897 - MINOR: threads: Add nbthread parameter
12898 - MEDIUM: threads: Adds a set of functions to handle sync-point
12899 - MAJOR: threads: Start threads to experiment multithreading
12900 - MINOR: threads: Define the sync-point inside run_poll_loop
12901 - MEDIUM: threads/buffers: Define and register per-thread init/deinit functions
12902 - MEDIUM: threads/chunks: Transform trash chunks in thread-local variables
12903 - MEDIUM: threads/time: Many global variables from time.h are now thread-local
12904 - MEDIUM: threads/logs: Make logs thread-safe
12905 - MEDIUM: threads/pool: Make pool thread-safe by locking all access to a pool
12906 - MAJOR: threads/fd: Make fd stuffs thread-safe
12907 - MINOR: threads/fd: Add a mask of threads allowed to process on each fd in fdtab array
12908 - MEDIUM: threads/fd: Initialize the process mask during the call to fd_insert
12909 - MINOR: threads/fd: Process cached events of FDs depending on the process mask
12910 - MINOR: threads/polling: pollers now handle FDs depending on the process mask
12911 - WIP: SQUASH WITH SYNC POINT
12912 - MAJOR: threads/task: handle multithread on task scheduler
12913 - MEDIUM: threads/signal: Add a lock to make signals thread-safe
12914 - MEDIUM: threads/listeners: Make listeners thread-safe
12915 - MEDIUM: threads/proxy: Add a lock per proxy and atomically update proxy vars
12916 - MEDIUM: threads/server: Make connection list (priv/idle/safe) thread-safe
12917 - MEDIUM: threads/server: Add a lock per server and atomically update server vars
12918 - MINOR: threads/server: Add a lock to deal with insert in updates_servers list
12919 - MEDIUM: threads/lb: Make LB algorithms (lb_*.c) thread-safe
12920 - MEDIUM: threads/stick-tables: handle multithreads on stick tables
12921 - MINOR: threads/sample: Change temp_smp into a thread local variable
12922 - MEDIUM: threads/http: Make http_capture_bad_message thread-safe
12923 - MINOR: threads/regex: Change Regex trash buffer into a thread local variable
12924 - MAJOR: threads/applet: Handle multithreading for applets
12925 - MAJOR: threads/peers: Make peers thread safe
12926 - MAJOR: threads/buffer: Make buffer wait queue thread safe
12927 - MEDIUM: threads/stream: Make streams list thread safe
12928 - MAJOR: threads/ssl: Make SSL part thread-safe
12929 - MEDIUM: threads/queue: Make queues thread-safe
12930 - MAJOR: threads/map: Make acls/maps thread safe
12931 - MEDIUM: threads/freq_ctr: Make the frequency counters thread-safe
12932 - MEDIUM: thread/vars: Make vars thread-safe
12933 - MEDIUM: threads/filters: Add init/deinit callback per thread
12934 - MINOR: threads/filters: Update trace filter to add _per_thread callbacks
12935 - MEDIUM: threads/compression: Make HTTP compression thread-safe
12936 - MEDIUM: threads/lua: Makes the jmpbuf and some other buffers local to the current thread.
12937 - MEDIUM: threads/lua: Add locks around the Lua execution parts.
12938 - MEDIUM: threads/lua: Ensure that the launched tasks runs on the same threads than me
12939 - MEDIUM: threads/lua: Cannot acces to the socket if we try to access from another thread.
12940 - MEDIUM: threads/xref: Convert xref function to a thread safe model
12941 - MEDIUM: threads/tasks: Add lock around notifications
12942 - MEDIUM: thread/spoe: Make the SPOE thread-safe
12943 - MEDIUM: thread/dns: Make DNS thread-safe
12944 - MINOR: threads: Add thread-map config parameter in the global section
12945 - MINOR: threads/checks: Add a lock to protect the pid list used by external checks
12946 - MINOR: threads/checks: Set the task process_mask when a check is executed
12947 - MINOR: threads/mailers: Add a lock to protect queues of email alerts
12948 - MEDIUM: threads/server: Use the server lock to protect health check and cli concurrency
12949 - MINOR: threads: Don't start when device a detection module is used
12950 - BUG/MEDIUM: threads: Run the poll loop on the main thread too
12951 - BUG/MINOR: threads: Add missing THREAD_LOCAL on static here and there
12952 - MAJOR: threads: Offically enable the threads support in HAProxy
12953 - BUG/MAJOR: threads/freq_ctr: fix lock on freq counters.
12954 - BUG/MAJOR: threads/time: Store the time deviation in an 64-bits integer
12955 - BUILD: stick-tables: silence an uninitialized variable warning
12956 - BUG/MINOR: dns: Fix SRV records with the new thread code.
12957 - MINOR: ssl: Remove the global allow-0rtt option.
12958 - CLEANUP: threads: replace the last few 1UL<<tid with tid_bit
12959 - CLEANUP: threads: rename process_mask to thread_mask
12960 - MINOR: h1: add a function to measure the trailers length
12961 - MINOR: threads: add a portable barrier for threads and non-threads
12962 - BUG/MAJOR: threads/freq_ctr: use a memory barrier to detect changes
12963 - BUG/MEDIUM: threads: Initialize the sync-point
12964 - MEDIUM: connection: start to introduce a mux layer between xprt and data
12965 - MINOR: connection: implement alpn registration of muxes
12966 - MINOR: mux: register the pass-through mux for any ALPN string
12967 - MEDIUM: session: use the ALPN token and proxy mode to select the mux
12968 - MINOR: connection: report the major HTTP version from the MUX for logging (fc_http_major)
12969 - MINOR: connection: introduce conn_stream
12970 - MINOR: mux: add more methods to mux_ops
12971 - MINOR: connection: introduce the conn_stream manipulation functions
12972 - MINOR: mux_pt: implement remaining mux_ops methods
12973 - MAJOR: connection : Split struct connection into struct connection and struct conn_stream.
12974 - MINOR: connection: make conn_stream users also check for per-stream error flag
12975 - MINOR: conn_stream: new shutr/w status flags
12976 - MINOR: conn_stream: modify cs_shut{r,w} API to pass the desired mode
12977 - MEDIUM: connection: make conn_sock_shutw() aware of lingering
12978 - MINOR: connection: add cs_close() to close a conn_stream
12979 - MEDIUM: mux_pt: make cs_shutr() / cs_shutw() properly close the connection
12980 - MEDIUM: connection: replace conn_full_close() with cs_close()
12981 - MEDIUM: connection: make mux->detach() release the connection
12982 - MEDIUM: stream: do not forcefully close the client connection anymore
12983 - MEDIUM: checks: exclusively use cs_destroy() to release a connection
12984 - MEDIUM: connection: add a destroy callback
12985 - MINOR: session: release the listener with the session, not the stream
12986 - MEDIUM: session: make use of the connection's destroy callback
12987 - CONTRIB: hpack: implement a reverse huffman table generator for hpack
12988 - MINOR: hpack: implement the HPACK Huffman table decoder
12989 - MINOR: hpack: implement the header tables management
12990 - MINOR: hpack: implement the decoder
12991 - MEDIUM: hpack: implement basic hpack encoding
12992 - MINOR: h2: centralize all HTTP/2 protocol elements and constants
12993 - MINOR: h2: create a very minimalistic h2 mux
12994 - MINOR: h2: expose tune.h2.header-table-size to configure the table size
12995 - MINOR: h2: expose tune.h2.initial-window-size to configure the window size
12996 - MINOR: h2: expose tune.h2.max-concurrent-streams to limit the number of streams
12997 - MINOR: h2: create the h2c struct and allocate its pool
12998 - MINOR: h2: create the h2s struct and the associated pool
12999 - MINOR: h2: handle two extra stream states for errors
13000 - MINOR: h2: add a frame header descriptor for incoming frames
13001 - MEDIUM: h2: allocate and release the h2c context on connection init/end
13002 - MEDIUM: h2: implement basic recv/send/wake functions
13003 - MEDIUM: h2: dynamically allocate the demux buffer on Rx
13004 - MEDIUM: h2: implement the mux buffer allocator
13005 - MINOR: h2: add the connection and stream flags listing the causes for blocking
13006 - MINOR: h2: add function h2s_id() to report a stream's ID
13007 - MINOR: h2: small function to know when the mux is busy
13008 - MINOR: h2: new function h2c_error to mark an error on the connection
13009 - MINOR: h2: new function h2s_error() to mark an error on a stream
13010 - MINOR: h2: add h2_set_frame_size() to update the size in a binary frame
13011 - MINOR: h2: new function h2_peek_frame_hdr() to retrieve a new frame header
13012 - MINOR: h2: add a few functions to retrieve contents from a wrapping buffer
13013 - MINOR: h2: add stream lookup function based on the stream ID
13014 - MINOR: h2: create dummy idle and closed streams
13015 - MINOR: h2: add the function to create a new stream
13016 - MINOR: h2: update the {MUX,DEM}_{M,D}ALLOC flags on buffer availability
13017 - MEDIUM: h2: start to consider the H2_CF_{MUX,DEM}_* flags for polling
13018 - MINOR: h2: also terminate the connection on shutr
13019 - MEDIUM: h2: properly consider all conditions for end of connection
13020 - MEDIUM: h2: wake the connection up for send on pending streams
13021 - MEDIUM: h2: start to implement the frames processing loop
13022 - MINOR: h2: add a function to send a GOAWAY error frame
13023 - MINOR: h2: match the H2 connection preface on init
13024 - MEDIUM: h2: enable connection polling for send when a cs wants to emit
13025 - MEDIUM: h2: enable reading again on the connection if it was blocked on stream buffer full
13026 - MEDIUM: h2: process streams pending for sending
13027 - MINOR: h2: send a real SETTINGS frame based on the configuration
13028 - MEDIUM: h2: detect the presence of the first settings frame
13029 - MINOR: h2: create a stream parser for the demuxer
13030 - MINOR: h2: implement PING frames
13031 - MEDIUM: h2: decode SETTINGS frames and extract relevant settings
13032 - MINOR: h2: lookup the stream during demuxing
13033 - MEDIUM: h2: honor WINDOW_UPDATE frames
13034 - MINOR: h2: implement h2_send_rst_stream() to send RST_STREAM frames
13035 - MINOR: h2: handle CONTINUATION frames
13036 - MEDIUM: h2: partial implementation of h2_detach()
13037 - MEDIUM: h2: unblock a connection when its current stream detaches
13038 - MEDIUM: h2: basic processing of HEADERS frame
13039 - MEDIUM: h2: don't use trash to decode headers!
13040 - MEDIUM: h2: implement the response HEADERS frame to encode the H1 response
13041 - MEDIUM: h2: send the H1 response body as DATA frames
13042 - MEDIUM: h2: skip the response trailers if any
13043 - MEDIUM: h2: properly continue to parse header block when facing a 1xx response
13044 - MEDIUM: h2: send WINDOW_UPDATE frames for connection
13045 - MEDIUM: h2: handle request body in DATA frames
13046 - MINOR: h2: handle RST_STREAM frames
13047 - MEDIUM: h2: send DATA+ES or RST_STREAM on shutw/shutr
13048 - MINOR: h2: use a common function to signal some and all streams.
13049 - MEDIUM: h2: handle GOAWAY frames
13050 - MINOR: h2: centralize the check for the idle streams
13051 - MINOR: h2: centralize the check for the half-closed(remote) streams
13052 - MEDIUM: h2: silently ignore frames higher than last_id after GOAWAY
13053 - MINOR: h2: properly reject PUSH_PROMISE frames coming from the client
13054 - MEDIUM: h2: perform a graceful shutdown on "Connection: close"
13055 - MEDIUM: h2: send a GOAWAY frame when dealing with an empty response
13056 - MEDIUM: h2: apply a timeout to h2 connections
13057 - BUG/MEDIUM: h2: fix incorrect timeout handling on the connection
13058 - MEDIUM: shctx: forbid shctx to read more than expected
13059 - MEDIUM: cache: configuration parsing and initialization
13060 - MEDIUM: cache: store objects in cache
13061 - MEDIUM: cache: deliver objects from cache
13062
Willy Tarreauf08137c2017-10-22 10:13:45 +0200130632017/10/22 : 1.8-dev3
13064 - REORG: ssl: move defines and methodVersions table upper
13065 - MEDIUM: ssl: ctx_set_version/ssl_set_version func for methodVersions table
13066 - MINOR: ssl: support ssl-min-ver and ssl-max-ver with crt-list
13067 - MEDIUM: ssl: disable SSLv3 per default for bind
13068 - BUG/MAJOR: ssl: fix segfault on connection close using async engines.
13069 - BUG/MAJOR: ssl: buffer overflow using offloaded ciphering on async engine
13070 - BUG/MINOR: ssl: do not call directly the conn_fd_handler from async_fd_handler
13071 - BUG/MINOR: haproxy/cli : fix for solaris/illumos distros for CMSG* macros
13072 - BUG/MEDIUM: build without openssl broken
13073 - BUG/MINOR: warning: need_resend may be used uninitialized
13074 - BUG/MEDIUM: misplaced exit and wrong exit code
13075 - BUG/MINOR: Makefile: fix compile error with USE_LUA=1 in ubuntu16.04
13076 - BUILD: scripts: make publish-release support bare repositories
13077 - BUILD: scripts: add an automatic mode for publish-release
13078 - BUILD: scripts: add a "quiet" mode to publish-release
13079 - BUG/MAJOR: http: call manage_client_side_cookies() before erasing the buffer
13080 - BUG/MINOR: buffers: Fix bi/bo_contig_space to handle full buffers
13081 - CONTRIB: plug qdiscs: Plug queuing disciplines mini HOWTO.
13082 - BUG/MINOR: acls: Set the right refflag when patterns are loaded from a map
13083 - BUG/MINOR: ssl: Be sure that SSLv3 connection methods exist for openssl < 1.1.0
13084 - BUG/MINOR: http/filters: Be sure to wait if a filter loops in HTTP_MSG_ENDING
13085 - BUG/MEDIUM: peers: Peers CLOSE_WAIT issue.
13086 - BUG/MAJOR: server: Segfault after parsing server state file.
13087 - BUG/MEDIUM: unix: never unlink a unix socket from the file system
13088 - scripts: create-release pass -n to tail
13089 - SCRIPTS: create-release: enforce GIT_COMMITTER_{NAME|EMAIL} validity
13090 - BUG/MEDIUM: fix segfault when no argument to -x option
13091 - MINOR: warning on multiple -x
13092 - MINOR: mworker: don't copy -x argument anymore in copy_argv()
13093 - BUG/MEDIUM: mworker: don't reuse PIDs passed to the master
13094 - BUG/MINOR: Wrong peer task expiration handling during synchronization processing.
13095 - BUG/MINOR: cfgparse: Check if tune.http.maxhdr is in the range 1..32767
13096 - BUG/MINOR: log: pin the front connection when front ip/ports are logged
13097 - DOC: fix references to the section about the unix socket
13098 - BUG/MINOR: stream: flag TASK_WOKEN_RES not set if task in runqueue
13099 - MAJOR: task: task scheduler rework.
13100 - MINOR: task/stream: tasks related to a stream must be init by the caller.
13101 - MINOR: queue: Change pendconn_get_next_strm into private function
13102 - MINOR: backends: Change get_server_sh/get_server_uh into private function
13103 - MINOR: queue: Change pendconn_from_srv/pendconn_from_px into private functions
13104 - MEDIUM: stream: make stream_new() always set the target and analysers
13105 - MINOR: frontend: initialize HTTP layer after the debugging code
13106 - MINOR: connection: add a .get_alpn() method to xprt_ops
13107 - MINOR: ssl: add a get_alpn() method to ssl_sock
13108 - MINOR: frontend: retrieve the ALPN name when available
13109 - MINOR: frontend: report the connection's ALPN in the debug output
13110 - MINOR: stream: don't set backend's nor response analysers on SF_TUNNEL
13111 - MINOR: connection: send data before receiving
13112 - MAJOR: applet: applet scheduler rework.
13113 - BUG/MAJOR: frontend: don't dereference a null conn on outgoing connections
13114 - BUG/MAJOR: cli: fix custom io_release was crushed by NULL.
13115 - BUG/MAJOR: map: fix segfault during 'show map/acl' on cli.
13116 - BUG/MAJOR: compression: Be sure to release the compression state in all cases
13117 - MINOR: compression: Use a memory pool to allocate compression states
13118 - BUG/MAJOR: applet: fix a freeze if data is immedately forwarded.
13119 - DOC: fix references to the section about time format.
13120 - BUG/MEDIUM: map/acl: fix unwanted flags inheritance.
13121 - BUG/MAJOR: http: fix buffer overflow on loguri buffer.
13122 - MINOR: ssl: compare server certificate names to the SNI on outgoing connections
13123 - BUG/MINOR: stream: Don't forget to remove CF_WAKE_ONCE flag on response channel
13124 - BUG/MINOR: http: Don't reset the transaction if there are still data to send
13125 - BUG/MEDIUM: filters: Be sure to call flt_end_analyze for both channels
13126 - MINOR: peers: Add additional information to stick-table definition messages.
13127 - BUG/MINOR: http: properly handle all 1xx informational responses
13128 - OPTIM: ssl: don't consider a small ssl_read() as an indication of end of buffer
13129 - BUG/MINOR: peers: peer synchronization issue (with several peers sections).
13130 - CLEANUP: hdr_idx: make some function arguments const where possible
13131 - BUG/MINOR: Prevent a use-after-free on error scenario on option "-x".
13132 - BUG/MINOR: lua: In error case, the safe mode is not removed
13133 - BUG/MINOR: lua: executes the function destroying the Lua session in safe mode
13134 - BUG/MAJOR: lua/socket: resources not detroyed when the socket is aborted
13135 - BUG/MEDIUM: lua: bad memory access
13136 - BUG/MINOR: Lua: variable already initialized
13137 - DOC: update CONTRIBUTING regarding optional parts and message format
13138 - DOC: update the list of OpenSSL versions in the README
13139 - BUG/MINOR: http: Set the response error state in http_sync_res_state
13140 - MINOR: http: Reorder/rewrite checks in http_resync_states
13141 - MINOR: http: Switch requests/responses in TUNNEL mode only by checking txn flags
13142 - BUG/MEDIUM: http: Switch HTTP responses in TUNNEL mode when body length is undefined
13143 - MINOR: http: Rely on analyzers mask to end processing in forward_body functions
13144 - BUG/MINOR: http: Fix bug introduced in previous patch in http_resync_states
13145 - BUG/MINOR: contrib/modsecurity: BSD build fix
13146 - BUG/MINOR: contrib/mod_defender: build fix
13147 - BUG/MINOR: ssl: remove haproxy SSLv3 support when ssl lib have no SSLv3
13148 - MINOR: ssl: remove an unecessary SSL_OP_NO_* dependancy
13149 - BUILD: ssl: fix compatibility with openssl without TLSEXT_signature_*
13150 - MINOR: tools: add a portable timegm() alternative
13151 - BUILD: lua: replace timegm() with my_timegm() to fix build on Solaris 10
13152 - DOC: Updated 51Degrees git URL to point to a stable version.
13153 - BUG/MAJOR: http: Fix possible infinity loop in http_sync_(req|res)_state
13154 - MINOR: memory: remove macros
13155 - BUG/MINOR: lua: Fix Server.get_addr() port values
13156 - BUG/MINOR: lua: Correctly use INET6_ADDRSTRLEN in Server.get_addr()
13157 - MINOR: samples: Handle the type SMP_T_METH when we duplicate a sample in smp_dup
13158 - MINOR: samples: Handle the type SMP_T_METH in smp_is_safe and smp_is_rw
13159 - MINOR: samples: Don't allocate memory for SMP_T_METH sample when method is known
13160 - BUG/MINOR: lua: always detach the tcp/http tasks before freeing them
13161 - MINOR: task: always preinitialize the task's timeout in task_init()
13162 - CLEANUP: task: remove all initializations to TICK_ETERNITY after task_new()
13163 - BUG/MAJOR: lua: properly dequeue hlua_applet_wakeup() for new scheduler
13164 - MINOR: lua: Add proxy as member of proxy object.
13165 - DOC: lua: Proxy class doc update
13166 - MINOR: lua: Add lists of frontends and backends
13167 - BUG/MINOR: ssl: Fix check against SNI during server certificate verification
13168 - BUG/MINOR: ssl: make use of the name in SNI before verifyhost
13169 - MINOR: ssl: add a new error codes for wrong server certificates
13170 - BUG/MEDIUM: stream: don't retry SSL connections which fail the SNI name check
13171 - MINOR: ssl: add "no-ca-names" parameter for bind
13172 - BUG/MINOR: lua: Fix bitwise logic for hlua_server_check_* functions.
13173 - DOC: fix alphabetical order of "show commands" in management.txt
13174 - MINOR: listener: add a function to return a listener's state as a string
13175 - MINOR: cli: add a new "show fd" command
13176 - BUG/MEDIUM: ssl: Fix regression about certificates generation
13177 - MINOR: Add server port field to server state file.
13178 - MINOR: ssl: allow to start without certificate if strict-sni is set
13179 - MINOR: dns: Cache previous DNS answers.
13180 - MINOR: obj: Add a new type of object, OBJ_TYPE_SRVRQ.
13181 - Add a few functions to do unaligned access.
13182 - MINOR: dns: Handle SRV records.
13183 - MINOR: check: Fix checks when using SRV records.
13184 - MINOR: doc: Document SRV label usage.
13185 - BUILD/MINOR: cli: shut a minor gcc warning in "show fd"
13186 - BUILD: ssl: replace SSL_CTX_get0_privatekey for openssl < 1.0.2
13187 - BUILD/MINOR: build without openssl still broken
13188 - BUG/MAJOR: stream: in stream_free(), close the front endpoint and not the origin
13189 - CLEANUP: raw_sock: Use a better name for the constructor than __ssl_sock_deinit()
13190 - MINOR: init: Fix CPU affinity setting on FreeBSD.
13191 - MINOR: dns: Update analysis of TRUNCATED response for SRV records
13192 - MINOR: dns: update record dname matching for SRV query types
13193 - MINOR: dns: update dns response buffer reading pointer due to SRV record
13194 - MINOR: dns: duplicate entries in resolution wait queue for SRV records
13195 - MINOR: dns: make debugging function dump_dns_config() compatible with SRV records
13196 - MINOR: dns: ability to use a SRV resolution for multiple backends
13197 - MINOR: dns: enable caching of responses for server set by a SRV record
13198 - MINOR: dns: new dns record type (RTYPE) for OPT
13199 - MINOR: dns: enabled edns0 extension and make accpeted payload size tunable
13200 - MINOR: dns: default "hold obsolete" timeout set to 0
13201 - MINOR: chunks: add chunk_memcpy() and chunk_memcat()
13202 - MINOR: session: add a streams field to the session struct
13203 - MINOR: stream: link the stream to its session
13204 - MEDIUM: session: do not free a session until no stream references it
13205 - MINOR: ist: implement very simple indirect strings
13206 - TESTS: ist: add a test file for the functions
13207 - MINOR: http: export some of the HTTP parser macros
13208 - BUG/MINOR: Wrong type used as argument for spoe_decode_buffer().
13209 - BUG/MINOR: dns: server set by SRV records stay in "no resolution" status
13210 - MINOR: dns: Maximum DNS udp payload set to 8192
13211 - MINOR: dns: automatic reduction of DNS accpeted payload size
13212 - MINOR: dns: make SRV record processing more verbose
13213 - CLEANUP: dns: remove duplicated code in dns_resolve_recv()
13214 - CLEANUP: dns: remove duplicated code in dns_validate_dns_response()
13215 - BUG/MINOR: dns: wrong resolution interval lead to 100% CPU
13216 - BUG/MEDIUM: dns: fix accepted_payload_size parser to avoid integer overflow
13217 - BUG/MAJOR: lua: fix the impact of the scheduler changes again
13218 - BUG/MEDIUM: lua: HTTP services must take care of body-less status codes
13219 - MINOR: lua: properly process the contents of the content-length field
13220 - BUG/MEDIUM: stream: properly set the required HTTP analysers on use-service
13221 - OPTIM: lua: don't use expensive functions to parse headers in the HTTP applet
13222 - OPTIM: lua: don't add "Connection: close" on the response
13223 - REORG/MEDIUM: connection: introduce the notion of connection handle
13224 - BUG/MINOR: stream-int: don't check the CO_FL_CURR_WR_ENA flag
13225 - MEDIUM: connection: get rid of data->init() which was not for data
13226 - MEDIUM: stream: make stream_new() allocate its own task
13227 - CLEANUP: listener: remove the unused handler field
13228 - MEDIUM: session: add a pointer to a struct task in the session
13229 - MINOR: stream: provide a new stream creation function for connections
13230 - MEDIUM: connection: remove useless flag CO_FL_DATA_RD_SH
13231 - CLEANUP: connection: remove the unused conn_sock_shutw_pending()
13232 - MEDIUM: connection: remove useless flag CO_FL_DATA_WR_SH
13233 - DOC: add CLI info on privilege levels
13234 - DOC: Refer to Mozilla TLS info / config generator
13235 - MINOR: ssl: remove duplicate ssl_methods in struct bind_conf
13236 - BUG/MEDIUM: http: Fix a regression bug when a HTTP response is in TUNNEL mode
13237 - DOC: Add note about "* " prefix in CSV stats
13238 - CLEANUP: memory: Remove unused function pool_destroy
13239 - MINOR: listeners: Change listener_full and limit_listener into private functions
13240 - MINOR: listeners: Change enable_listener and disable_listener into private functions
13241 - MINOR: fd: Don't forget to reset fdtab[fd].update when a fd is added/removed
13242 - MINOR: fd: Set owner and iocb field before inserting a new fd in the fdtab
13243 - MINOR: backends: Make get_server_* functions explicitly static
13244 - MINOR: applet: Check applets_active_queue before processing applets queue
13245 - MINOR: chunks: Use dedicated function to init/deinit trash buffers
13246 - MEDIUM: chunks: Realloc trash buffers only after the config is parsed and checked
13247 - MINOR: logs: Use dedicated function to init/deinit log buffers
13248 - MINOR: logs: Realloc log buffers only after the config is parsed and checked
13249 - MINOR: buffers: Move swap_buffer into buffer.c and add deinit_buffer function
13250 - MINOR: stick-tables: Make static_table_key a struct variable instead of a pointer
13251 - MINOR: http: Use a trash chunk to store decoded string of the HTTP auth header
13252 - MINOR: fd: Add fd_active function
13253 - MINOR: fd: Use inlined functions to check fd state in fd_*_send/recv functions
13254 - MINOR: fd: Move (de)allocation of fdtab and fdinfo in (de)init_pollers
13255 - MINOR: freq_ctr: Return the new value after an update
13256 - MEDIUM: check: server states and weight propagation re-work
13257 - BUG/MEDIUM: epoll: ensure we always consider HUP and ERR
13258 - MINOR: fd: Add fd_update_events function
13259 - MINOR: polling: Use fd_update_events to update events seen for a fd
13260 - BUG/MINOR: server: Remove FQDN requirement for using init-addr and state file
13261 - Revert "BUG/MINOR: server: Remove FQDN requirement for using init-addr and state file"
13262 - MINOR: ssl: rework smp_fetch_ssl_fc_cl_str without internal ssl use
13263 - BUG/MEDIUM: http: Close streams for connections closed before a redirect
13264 - BUG/MINOR: Lua: The socket may be destroyed when we try to access.
13265 - MINOR: xref: Add a new xref system
13266 - MEDIUM: xref/lua: Use xref for referencing cosocket relation between stream and lua
13267 - MINOR: tasks: Move Lua notification from Lua to tasks
13268 - MINOR: net_helper: Inline functions meant to be inlined.
13269 - MINOR: cli: add socket commands and config to prepend informational messages with severity
13270 - MINOR: add severity information to cli feedback messages
13271 - BUILD: Makefile: add a function to detect support by the compiler of certain options
13272 - BUILD: Makefile: shut certain gcc/clang stupid warnings
13273 - BUILD: Makefile: improve detection of support for compiler warnings
13274 - MINOR: peers: don't reference the incoming listener on outgoing connections
13275 - MINOR: frontend: don't retrieve ALPN on the critical path
13276 - MINOR: protocols: always pass a "port" argument to the listener creation
13277 - MINOR: protocols: register the ->add function and stop calling them directly
13278 - MINOR: unix: remove the now unused proto_uxst.h file
13279 - MINOR: listeners: new function create_listeners
13280 - MINOR: listeners: make listeners count consistent with reality
13281 - MEDIUM: session: take care of incrementing/decrementing jobs
13282 - MINOR: listener: new function listener_release
13283 - MINOR: session: small cleanup of conn_complete_session()
13284 - MEDIUM: session: factor out duplicated code for conn_complete_session
13285 - MEDIUM: session: count the frontend's connections at a single place
13286 - BUG/MEDIUM: compression: Fix check on txn in smp_fetch_res_comp_algo
13287 - BUG/MINOR: compression: Check response headers before http-response rules eval
13288 - BUG/MINOR: spoe: Don't rely on SPOE ctx in debug message when its creation failed
13289 - BUG/MINOR: dns: Fix check on nameserver in snr_resolution_cb
13290 - MINOR: ssl: Remove useless checks on bind_conf or bind_conf->is_ssl
13291 - BUG/MINOR: contrib/mod_defender: close the va_list argp before return
13292 - BUG/MINOR: contrib/modsecurity: close the va_list ap before return
13293 - MINOR: tools: make my_htonll() more efficient on x86_64
13294 - MINOR: buffer: add b_del() to delete a number of characters
13295 - MINOR: buffer: add b_end() and b_to_end()
13296 - MINOR: net_helper: add functions to read from vectors
13297 - MINOR: net_helper: add write functions
13298 - MINOR: net_helper: add 64-bit read/write functions
13299 - MINOR: connection: adjust CO_FL_NOTIFY_DATA after removal of flags
13300 - MINOR: ist: add a macro to ease const array initialization
13301 - BUG/MEDIUM: server: unwanted behavior leaving maintenance mode on tracked stopping server
13302 - BUG/MEDIUM: server: unwanted behavior leaving maintenance mode on tracked stopping server (take2)
13303 - BUG/MINOR: log: fixing small memory leak in error code path.
13304 - BUG/MINOR: contrib/halog: fixing small memory leak
13305 - BUG/MEDIUM: tcp/http: set-dst-port action broken
13306 - CLEANUUP: checks: don't set conn->handle.fd to -1
13307 - BUG/MEDIUM: tcp-check: properly indicate polling state before performing I/O
13308 - BUG/MINOR: tcp-check: don't quit with pending data in the send buffer
13309 - BUG/MEDIUM: tcp-check: don't call tcpcheck_main() from the I/O handlers!
13310 - BUG/MINOR: unix: properly check for octal digits in the "mode" argument
13311 - MINOR: checks: make chk_report_conn_err() take a check, not a connection
13312 - CLEANUP: checks: remove misleading comments and statuses for external process
13313 - CLEANUP: checks: don't report report the fork() error twice
13314 - CLEANUP: checks: do not allocate a connection for process checks
13315 - TESTS: checks: add a simple test config for external checks
13316 - BUG/MINOR: tcp-check: don't initialize then break a connection starting with a comment
13317 - TESTS: checks: add a simple test config for tcp-checks
13318 - MINOR: tcp-check: make tcpcheck_main() take a check, not a connection
13319 - MINOR: checks: don't create then kill a dummy connection before tcp-checks
13320 - MEDIUM: checks: make tcpcheck_main() indicate if it recycled a connection
13321 - MEDIUM: checks: do not allocate a permanent connection anymore
13322 - BUG/MEDIUM: cli: fix "show fd" crash when dumping closed FDs
13323 - BUG/MEDIUM: http: Return an error when url_dec sample converter failed
13324 - BUG/MAJOR: stream-int: don't re-arm recv if send fails
13325 - BUILD/MINOR: 51d: fix warning when building with 51Degrees release version 3.2.12.12
13326 - DOC: 51d: add 51Degrees git URL that points to release version 3.2.12.12
13327 - DOC: 51d: Updated git URL and instructions for getting Hash Trie data files.
13328 - MINOR: compiler: restore the likely() wrapper for gcc 5.x
13329 - MINOR: session: remove the list of streams from struct session
13330 - DOC: fix some typos
13331 - MINOR: server: add the srv_queue() sample fetch method
13332 - MINOR: payload: add new sample fetch functions to process distcc protocol
13333 - MAJOR: servers: propagate server status changes asynchronously.
13334 - BUG/MEDIUM: ssl: fix OCSP expiry calculation
13335 - BUG/MINOR: stream-int: don't set MSG_MORE on SHUTW_NOW without AUTO_CLOSE
13336 - MINOR: server: Handle weight increase in consistent hash.
13337 - MINOR: checks: Add a new keyword to specify a SNI when doing SSL checks.
13338 - BUG/MINOR: tools: fix my_htonll() on x86_64
13339 - BUG/MINOR: stats: Clear a bit more counters with in cli_parse_clear_counters().
13340 - BUG/MAJOR: lua: scheduled task is freezing.
13341 - MINOR: buffer: add bo_del() to delete a number of characters from output
13342 - MINOR: buffer: add a function to match against string patterns
13343 - MINOR: buffer: add two functions to inject data into buffers
13344 - MINOR: buffer: add buffer_space_wraps()
13345 - REORG: channel: finally rename the last bi_* / bo_* functions
13346 - MINOR: buffer: add bo_getblk() and bo_getblk_nc()
13347 - MINOR: channel: make use of bo_getblk{,_nc} for their channel equivalents
13348 - MINOR: channel: make the channel be a const in all {ci,co}_get* functions
13349 - MINOR: ist: add ist0() to add a trailing zero to a string.
13350 - BUG/MEDIUM: log: check result details truncated.
13351 - MINOR: buffer: make bo_getblk_nc() not return 2 for a full buffer
13352 - REORG: http: move some very http1-specific parts to h1.{c,h}
13353 - REORG: http: move the HTTP/1 chunk parser to h1.{c,h}
13354 - REORG: http: move the HTTP/1 header block parser to h1.c
13355 - MEDIUM: http: make the chunk size parser only depend on the buffer
13356 - MEDIUM: http: make the chunk crlf parser only depend on the buffer
13357 - MINOR: h1: add struct h1m for basic HTTP/1 messages
13358 - MINOR: http: add very simple header management based on double strings
13359 - MEDIUM: h1: reimplement the http/1 response parser for the gateway
13360 - REORG: connection: rename CO_FL_DATA_* -> CO_FL_XPRT_*
13361 - MEDIUM: connection: make conn_sock_shutw() aware of lingering
13362 - MINOR: connection: ensure conn_ctrl_close() also resets the fd
13363 - MINOR: connection: add conn_stop_tracking() to disable tracking
13364 - MINOR: tcp: use conn_full_close() instead of conn_force_close()
13365 - MINOR: unix: use conn_full_close() instead of conn_force_close()
13366 - MINOR: checks: use conn_full_close() instead of conn_force_close()
13367 - MINOR: session: use conn_full_close() instead of conn_force_close()
13368 - MINOR: stream: use conn_full_close() instead of conn_force_close()
13369 - MINOR: stream: use conn_full_close() instead of conn_force_close()
13370 - MINOR: backend: use conn_full_close() instead of conn_force_close()
13371 - MINOR: stream-int: use conn_full_close() instead of conn_force_close()
13372 - MINOR: connection: remove conn_force_close()
13373 - BUG/MINOR: ssl: ocsp response with 'revoked' status is correct
13374
Willy Tarreauf57a29a2017-06-02 15:59:51 +0200133752017/06/02 : 1.8-dev2
13376 - CLEANUP: server: moving netinet/tcp.h inclusion
13377 - DOC: changed "block"(deprecated) examples to http-request deny
13378 - DOC: add few comments to examples.
13379 - DOC: update sample code for PROXY protocol
13380 - DOC: mention lighttpd 1.4.46 implements PROXY
13381 - MINOR server: Restrict dynamic cookie check to the same proxy.
13382 - DOC: stick-table is available in frontend sections
13383 - BUG/MINOR: server : no transparent proxy for DragonflyBSD
13384 - BUILD/MINOR: stats: remove unexpected argument to stats_dump_json_header()
13385 - BUILD/MINOR: tools: fix build warning in debug_hexdump()
13386 - BUG/MINOR: dns: Wrong address family used when creating IPv6 sockets.
13387 - BUG/MINOR: config: missing goto out after parsing an incorrect ACL character
13388 - BUG/MINOR: arg: don't try to add an argument on failed memory allocation
13389 - MEDIUM: server: Inherit CLI weight changes and agent-check weight responses
13390 - BUG/MEDIUM: arg: ensure that we properly unlink unresolved arguments on error
13391 - BUG/MEDIUM: acl: don't free unresolved args in prune_acl_expr()
13392 - BUG/MEDIUM: servers: unbreak server weight propagation
13393 - MINOR: lua: ensure the memory allocator is used all the time
13394 - MINOR: cli: Add a command to send listening sockets.
13395 - MINOR: global: Add an option to get the old listening sockets.
13396 - MINOR: tcp: When binding socket, attempt to reuse one from the old proc.
13397 - MINOR: doc: document the -x flag
13398 - MINOR: proxy: Don't close FDs if not our proxy.
13399 - MINOR: socket transfer: Set a timeout on the socket.
13400 - MINOR: systemd wrapper: add support for passing the -x option.
13401 - BUG/MINOR: server: Fix a wrong error message during 'usesrc' keyword parsing.
13402 - BUG/MAJOR: Broken parsing for valid keywords provided after 'source' setting.
13403 - CLEANUP: logs: typo: simgle => single
13404 - BUG/MEDIUM: acl: proprely release unused args in prune_acl_expr()
13405 - MEDIUM: config: don't check config validity when there are fatal errors
13406 - BUG/MAJOR: Use -fwrapv.
13407 - BUG/MINOR: server: don't use "proxy" when px is really meant.
13408 - BUG/MEDIUM: http: Drop the connection establishment when a redirect is performed
13409 - BUG/MINOR: server: missing default server 'resolvers' setting duplication.
13410 - MINOR: server: Extract the code responsible of copying default-server settings.
13411 - MINOR: server: Extract the code which finalizes server initializations after 'server' lines parsing.
13412 - MINOR: server: Add 'server-template' new keyword supported in backend sections.
13413 - MINOR: server: Add server_template_init() function to initialize servers from a templates.
13414 - DOC: Add documentation for new "server-template" keyword.
13415 - DOC: add layer 4 links/cross reference to "block" keyword.
13416 - DOC: errloc/errorloc302/errorloc303 missing status codes.
13417 - BUG/MEDIUM: lua: memory leak
13418 - CLEANUP: lua: remove test
13419 - BUG/MINOR: hash-balance-factor isn't effective in certain circumstances
13420 - BUG/MINOR: change header-declared function to static inline
13421 - REORG: spoe: move spoe_encode_varint / spoe_decode_varint from spoe to common
13422 - MINOR: Add binary encoding request header sample fetch
13423 - MINOR: proto-http: Add sample fetch wich returns all HTTP headers
13424 - MINOR: Add ModSecurity wrapper as contrib
13425 - BUG/MINOR: ssl: fix warnings about methods for opensslv1.1.
13426 - DOC: update RFC references
13427 - CONTRIB: tcploop: add action "X" to execute a command
13428 - MINOR: server: cli: Add server FQDNs to server-state file and stats socket.
13429 - BUG/MINOR: contrib/mod_security: fix build on FreeBSD
13430 - BUG/MINOR: checks: don't send proxy protocol with agent checks
13431 - MINOR: ssl: add prefer-client-ciphers
13432 - MEDIUM: ssl: revert ssl/tls version settings relative to default-server.
13433 - MEDIUM: ssl: ssl_methods implementation is reworked and factored for min/max tlsxx
13434 - MEDIUM: ssl: calculate the real min/max TLS version and find holes
13435 - MINOR: ssl: support TLSv1.3 for bind and server
13436 - MINOR: ssl: show methods supported by openssl
13437 - MEDIUM: ssl: add ssl-min-ver and ssl-max-ver parameters for bind and server
13438 - MEDIUM: ssl: ssl-min-ver and ssl-max-ver compatibility.
13439 - CLEANUP: retire obsoleted USE_GETSOCKNAME build option
13440 - BUG/MAJOR: dns: Broken kqueue events handling (BSD systems).
13441 - MINOR: sample: Add b64dec sample converter
13442 - BUG/MEDIUM: lua: segfault if a converter or a sample doesn't return anything
13443 - MINOR: cli: add ACCESS_LVL_MASK to store the access level
13444 - MINOR: cli: add 'expose-fd listeners' to pass listeners FDs
13445 - MEDIUM: proxy: zombify proxies only when the expose-fd socket is bound
13446 - MEDIUM: ssl: add basic support for OpenSSL crypto engine
13447 - MAJOR: ssl: add openssl async mode support
13448 - MEDIUM: ssl: handle multiple async engines
13449 - MINOR: boringssl: basic support for OCSP Stapling
13450 - MEDIUM: mworker: replace systemd mode by master worker mode
13451 - MEDIUM: mworker: handle reload and signals
13452 - MEDIUM: mworker: wait mode on reload failure
13453 - MEDIUM: mworker: try to guess the next stats socket to use with -x
13454 - MEDIUM: mworker: exit-on-failure option
13455 - MEDIUM: mworker: workers exit when the master leaves
13456 - DOC: add documentation for the master-worker mode
13457 - MEDIUM: systemd: Type=forking in unit file
13458 - MAJOR: systemd-wrapper: get rid of the wrapper
13459 - MINOR: log: Add logurilen tunable.
13460 - CLEANUP: server.c: missing prototype of srv_free_dns_resolution
13461 - MINOR: dns: smallest DNS fqdn size
13462 - MINOR: dns: functions to manage memory for a DNS resolution structure
13463 - MINOR: dns: parse_server() now uses srv_alloc_dns_resolution()
13464 - REORG: dns: dns_option structure, storage of hostname_dn
13465 - MINOR: dns: new snr_check_ip_callback function
13466 - MAJOR: dns: save a copy of the DNS response in struct resolution
13467 - MINOR: dns: implement a LRU cache for DNS resolutions
13468 - MINOR: dns: make 'ancount' field to match the number of saved records
13469 - MINOR: dns: introduce roundrobin into the internal cache (WIP)
13470 - MAJOR/REORG: dns: DNS resolution task and requester queues
13471 - BUILD: ssl: fix build with OPENSSL_NO_ENGINE
13472 - MINOR: Add Mod Defender integration as contrib
13473 - CLEANUP: str2mask return code comment: non-zero -> zero.
13474 - MINOR: tools: make debug_hexdump() use a const char for the string
13475 - MINOR: tools: make debug_hexdump() take a string prefix
13476 - CLEANUP: connection: remove unused CO_FL_WAIT_DATA
13477
Willy Tarreau7b677262017-04-03 09:27:49 +0200134782017/04/03 : 1.8-dev1
13479 - BUG/MEDIUM: proxy: return "none" and "unknown" for unknown LB algos
13480 - BUG/MINOR: stats: make field_str() return an empty string on NULL
13481 - DOC: Spelling fixes
13482 - BUG/MEDIUM: http: Fix tunnel mode when the CONNECT method is used
13483 - BUG/MINOR: http: Keep the same behavior between 1.6 and 1.7 for tunneled txn
13484 - BUG/MINOR: filters: Protect args in macros HAS_DATA_FILTERS and IS_DATA_FILTER
13485 - BUG/MINOR: filters: Invert evaluation order of HTTP_XFER_BODY and XFER_DATA analyzers
13486 - BUG/MINOR: http: Call XFER_DATA analyzer when HTTP txn is switched in tunnel mode
13487 - BUG/MAJOR: stream: fix session abort on resource shortage
13488 - OPTIM: stream-int: don't disable polling anymore on DONT_READ
13489 - BUG/MINOR: cli: allow the backslash to be escaped on the CLI
13490 - BUG/MEDIUM: cli: fix "show stat resolvers" and "show tls-keys"
13491 - DOC: Fix map table's format
13492 - DOC: Added 51Degrees conv and fetch functions to documentation.
13493 - BUG/MINOR: http: don't send an extra CRLF after a Set-Cookie in a redirect
13494 - DOC: mention that req_tot is for both frontends and backends
13495 - BUG/MEDIUM: variables: some variable name can hide another ones
13496 - MINOR: lua: Allow argument for actions
13497 - BUILD: rearrange target files by build time
13498 - CLEANUP: hlua: just indent functions
13499 - MINOR: lua: give HAProxy variable access to the applets
13500 - BUG/MINOR: stats: fix be/sessions/max output in html stats
13501 - MINOR: proxy: Add fe_name/be_name fetchers next to existing fe_id/be_id
13502 - DOC: lua: Documentation about some entry missing
13503 - DOC: lua: Add documentation about variable manipulation from applet
13504 - MINOR: Do not forward the header "Expect: 100-continue" when the option http-buffer-request is set
13505 - DOC: Add undocumented argument of the trace filter
13506 - DOC: Fix some typo in SPOE documentation
13507 - MINOR: cli: Remove useless call to bi_putchk
13508 - BUG/MINOR: cli: be sure to always warn the cli applet when input buffer is full
13509 - MINOR: applet: Count number of (active) applets
13510 - MINOR: task: Rename run_queue and run_queue_cur counters
13511 - BUG/MEDIUM: stream: Save unprocessed events for a stream
13512 - BUG/MAJOR: Fix how the list of entities waiting for a buffer is handled
13513 - BUILD/MEDIUM: Fixing the build using LibreSSL
13514 - BUG/MEDIUM: lua: In some case, the return of sample-fetches is ignored (2)
13515 - SCRIPTS: git-show-backports: fix a harmless typo
13516 - SCRIPTS: git-show-backports: add -H to use the hash of the commit message
13517 - BUG/MINOR: stream-int: automatically release SI_FL_WAIT_DATA on SHUTW_NOW
13518 - CLEANUP: applet/lua: create a dedicated ->fcn entry in hlua_cli context
13519 - CLEANUP: applet/table: add an "action" entry in ->table context
13520 - CLEANUP: applet: remove the now unused appctx->private field
13521 - DOC: lua: documentation about time parser functions
13522 - DOC: lua: improve links
13523 - DOC: lua: section declared twice
13524 - MEDIUM: cli: 'show cli sockets' list the CLI sockets
13525 - BUG/MINOR: cli: "show cli sockets" wouldn't list all processes
13526 - BUG/MINOR: cli: "show cli sockets" would always report process 64
13527 - CLEANUP: lua: rename one of the lua appctx union
13528 - BUG/MINOR: lua/cli: bad error message
13529 - MEDIUM: lua: use memory pool for hlua struct in applets
13530 - MINOR: lua/signals: Remove Lua part from signals.
13531 - DOC: cli: show cli sockets
13532 - MINOR: cli: automatically enable a CLI I/O handler when there's no parser
13533 - CLEANUP: memory: remove the now unused cli_parse_show_pools() function
13534 - CLEANUP: applet: group all CLI contexts together
13535 - CLEANUP: stats: move a misplaced stats context initialization
13536 - MINOR: cli: add two general purpose pointers and integers in the CLI struct
13537 - MINOR: appctx/cli: remove the cli_socket entry from the appctx union
13538 - MINOR: appctx/cli: remove the env entry from the appctx union
13539 - MINOR: appctx/cli: remove the "be" entry from the appctx union
13540 - MINOR: appctx/cli: remove the "dns" entry from the appctx union
13541 - MINOR: appctx/cli: remove the "server_state" entry from the appctx union
13542 - MINOR: appctx/cli: remove the "tlskeys" entry from the appctx union
13543 - CONTRIB: tcploop: add limits.h to fix build issue with some compilers
13544 - MINOR/DOC: lua: just precise one thing
13545 - DOC: fix small typo in fe_id (backend instead of frontend)
13546 - BUG/MINOR: Fix the sending function in Lua's cosocket
13547 - BUG/MINOR: lua: memory leak executing tasks
13548 - BUG/MINOR: lua: bad return code
13549 - BUG/MINOR: lua: memleak when Lua/cli fails
13550 - MEDIUM: lua: remove Lua struct from session, and allocate it with memory pools
13551 - CLEANUP: haproxy: statify unexported functions
13552 - MINOR: haproxy: add a registration for build options
13553 - CLEANUP: wurfl: use the build options list to report it
13554 - CLEANUP: 51d: use the build options list to report it
13555 - CLEANUP: da: use the build options list to report it
13556 - CLEANUP: namespaces: use the build options list to report it
13557 - CLEANUP: tcp: use the build options list to report transparent modes
13558 - CLEANUP: lua: use the build options list to report it
13559 - CLEANUP: regex: use the build options list to report the regex type
13560 - CLEANUP: ssl: use the build options list to report the SSL details
13561 - CLEANUP: compression: use the build options list to report the algos
13562 - CLEANUP: auth: use the build options list to report its support
13563 - MINOR: haproxy: add a registration for post-check functions
13564 - CLEANUP: checks: make use of the post-init registration to start checks
13565 - CLEANUP: filters: use the function registration to initialize all proxies
13566 - CLEANUP: wurfl: make use of the late init registration
13567 - CLEANUP: 51d: make use of the late init registration
13568 - CLEANUP: da: make use of the late init registration code
13569 - MINOR: haproxy: add a registration for post-deinit functions
13570 - CLEANUP: wurfl: register the deinit function via the dedicated list
13571 - CLEANUP: 51d: register the deinitialization function
13572 - CLEANUP: da: register the deinitialization function
13573 - CLEANUP: wurfl: move global settings out of the global section
13574 - CLEANUP: 51d: move global settings out of the global section
13575 - CLEANUP: da: move global settings out of the global section
13576 - MINOR: cfgparse: add two new functions to check arguments count
13577 - MINOR: cfgparse: move parsing of "ca-base" and "crt-base" to ssl_sock
13578 - MEDIUM: cfgparse: move all tune.ssl.* keywords to ssl_sock
13579 - MEDIUM: cfgparse: move maxsslconn parsing to ssl_sock
13580 - MINOR: cfgparse: move parsing of ssl-default-{bind,server}-ciphers to ssl_sock
13581 - MEDIUM: cfgparse: move ssl-dh-param-file parsing to ssl_sock
13582 - MEDIUM: compression: move the zlib-specific stuff from global.h to compression.c
13583 - BUG/MEDIUM: ssl: properly reset the reused_sess during a forced handshake
13584 - BUG/MEDIUM: ssl: avoid double free when releasing bind_confs
13585 - BUG/MINOR: stats: fix be/sessions/current out in typed stats
13586 - MINOR: tcp-rules: check that the listener exists before updating its counters
13587 - MEDIUM: spoe: don't create a dummy listener for outgoing connections
13588 - MINOR: listener: move the transport layer pointer to the bind_conf
13589 - MEDIUM: move listener->frontend to bind_conf->frontend
13590 - MEDIUM: ssl: remote the proxy argument from most functions
13591 - MINOR: connection: add a new prepare_bind_conf() entry to xprt_ops
13592 - MEDIUM: ssl_sock: implement ssl_sock_prepare_bind_conf()
13593 - MINOR: connection: add a new destroy_bind_conf() entry to xprt_ops
13594 - MINOR: ssl_sock: implement ssl_sock_destroy_bind_conf()
13595 - MINOR: server: move the use_ssl field out of the ifdef USE_OPENSSL
13596 - MINOR: connection: add a minimal transport layer registration system
13597 - CLEANUP: connection: remove all direct references to raw_sock and ssl_sock
13598 - CLEANUP: connection: unexport raw_sock and ssl_sock
13599 - MINOR: connection: add new prepare_srv()/destroy_srv() entries to xprt_ops
13600 - MINOR: ssl_sock: implement and use prepare_srv()/destroy_srv()
13601 - CLEANUP: ssl: move tlskeys_finalize_config() to a post_check callback
13602 - CLEANUP: ssl: move most ssl-specific global settings to ssl_sock.c
13603 - BUG/MINOR: backend: nbsrv() should return 0 if backend is disabled
13604 - BUG/MEDIUM: ssl: for a handshake when server-side SNI changes
13605 - BUG/MINOR: systemd: potential zombie processes
13606 - DOC: Add timings events schemas
13607 - BUILD: lua: build failed on FreeBSD.
13608 - MINOR: samples: add xx-hash functions
13609 - MEDIUM: regex: pcre2 support
13610 - BUG/MINOR: option prefer-last-server must be ignored in some case
13611 - MINOR: stats: Support "select all" for backend actions
13612 - BUG/MINOR: sample-fetches/stick-tables: bad type for the sample fetches sc*_get_gpt0
13613 - BUG/MAJOR: channel: Fix the definition order of channel analyzers
13614 - BUG/MINOR: http: report real parser state in error captures
13615 - BUILD: scripts: automatically update the branch in version.h when releasing
13616 - MINOR: tools: add a generic hexdump function for debugging
13617 - BUG/MAJOR: http: fix risk of getting invalid reports of bad requests
13618 - MINOR: http: custom status reason.
13619 - MINOR: connection: add sample fetch "fc_rcvd_proxy"
13620 - BUG/MINOR: config: emit a warning if http-reuse is enabled with incompatible options
13621 - BUG/MINOR: tools: fix off-by-one in port size check
13622 - BUG/MEDIUM: server: consider AF_UNSPEC as a valid address family
13623 - MEDIUM: server: split the address and the port into two different fields
13624 - MINOR: tools: make str2sa_range() return the port in a separate argument
13625 - MINOR: server: take the destination port from the port field, not the addr
13626 - MEDIUM: server: disable protocol validations when the server doesn't resolve
13627 - BUG/MEDIUM: tools: do not force an unresolved address to AF_INET:0.0.0.0
13628 - BUG/MINOR: ssl: EVP_PKEY must be freed after X509_get_pubkey usage
13629 - BUG/MINOR: ssl: assert on SSL_set_shutdown with BoringSSL
13630 - MINOR: Use "500 Internal Server Error" for 500 error/status code message.
13631 - MINOR: proto_http.c 502 error txt typo.
13632 - DOC: add deprecation notice to "block"
13633 - MINOR: compression: fix -vv output without zlib/slz
13634 - BUG/MINOR: Reset errno variable before calling strtol(3)
13635 - MINOR: ssl: don't show prefer-server-ciphers output
13636 - OPTIM/MINOR: config: Optimize fullconn automatic computation loading configuration
13637 - BUG/MINOR: stream: Fix how backend-specific analyzers are set on a stream
13638 - MAJOR: ssl: bind configuration per certificat
13639 - MINOR: ssl: add curve suite for ECDHE negotiation
13640 - MINOR: checks: Add agent-addr config directive
13641 - MINOR: cli: Add possiblity to change agent config via CLI/socket
13642 - MINOR: doc: Add docs for agent-addr configuration variable
13643 - MINOR: doc: Add docs for agent-addr and agent-send CLI commands
13644 - BUILD: ssl: fix to build (again) with boringssl
13645 - BUILD: ssl: fix build on OpenSSL 1.0.0
13646 - BUILD: ssl: silence a warning reported for ERR_remove_state()
13647 - BUILD: ssl: eliminate warning with OpenSSL 1.1.0 regarding RAND_pseudo_bytes()
13648 - BUILD: ssl: kill a build warning introduced by BoringSSL compatibility
13649 - BUG/MEDIUM: tcp: don't poll for write when connect() succeeds
13650 - BUG/MINOR: unix: fix connect's polling in case no data are scheduled
13651 - MINOR: server: extend the flags to 32 bits
13652 - BUG/MINOR: lua: Map.end are not reliable because "end" is a reserved keyword
13653 - MINOR: dns: give ability to dns_init_resolvers() to close a socket when requested
13654 - BUG/MAJOR: dns: restart sockets after fork()
13655 - MINOR: chunks: implement a simple dynamic allocator for trash buffers
13656 - BUG/MEDIUM: http: prevent redirect from overwriting a buffer
13657 - BUG/MEDIUM: filters: Do not truncate HTTP response when body length is undefined
13658 - BUG/MEDIUM: http: Prevent replace-header from overwriting a buffer
13659 - BUG/MINOR: http: Return an error when a replace-header rule failed on the response
13660 - BUG/MINOR: sendmail: The return of vsnprintf is not cleanly tested
13661 - BUG/MAJOR: ssl: fix a regression in ssl_sock_shutw()
13662 - BUG/MAJOR: lua segmentation fault when the request is like 'GET ?arg=val HTTP/1.1'
13663 - BUG/MEDIUM: config: reject anything but "if" or "unless" after a use-backend rule
13664 - MINOR: http: don't close when redirect location doesn't start with "/"
13665 - MEDIUM: boringssl: support native multi-cert selection without bundling
13666 - BUG/MEDIUM: ssl: fix verify/ca-file per certificate
13667 - BUG/MEDIUM: ssl: switchctx should not return SSL_TLSEXT_ERR_ALERT_WARNING
13668 - MINOR: ssl: removes SSL_CTX_set_ssl_version call and cleanup CTX creation.
13669 - BUILD: ssl: fix build with -DOPENSSL_NO_DH
13670 - MEDIUM: ssl: add new sample-fetch which captures the cipherlist
13671 - MEDIUM: ssl: remove ssl-options from crt-list
13672 - BUG/MEDIUM: ssl: in bind line, ssl-options after 'crt' are ignored.
13673 - BUG/MINOR: ssl: fix cipherlist captures with sustainable SSL calls
13674 - MINOR: ssl: improved cipherlist captures
13675 - BUG/MINOR: spoe: Fix soft stop handler using a specific id for spoe filters
13676 - BUG/MINOR: spoe: Fix parsing of arguments in spoe-message section
13677 - MAJOR: spoe: Add support of pipelined and asynchronous exchanges with agents
13678 - MINOR: spoe: Add support for pipelining/async capabilities in the SPOA example
13679 - MINOR: spoe: Remove SPOE details from the appctx structure
13680 - MINOR: spoe: Add status code in error variable instead of hardcoded value
13681 - MINOR: spoe: Send a log message when an error occurred during event processing
13682 - MINOR: spoe: Check the scope of sample fetches used in SPOE messages
13683 - MEDIUM: spoe: Be sure to wakeup the good entity waiting for a buffer
13684 - MINOR: spoe: Use the min of all known max_frame_size to encode messages
13685 - MAJOR: spoe: Add support of payload fragmentation in NOTIFY frames
13686 - MINOR: spoe: Add support for fragmentation capability in the SPOA example
13687 - MAJOR: spoe: refactor the filter to clean up the code
13688 - MINOR: spoe: Handle NOTIFY frames cancellation using ABORT bit in ACK frames
13689 - REORG: spoe: Move struct and enum definitions in dedicated header file
13690 - REORG: spoe: Move low-level encoding/decoding functions in dedicated header file
13691 - MINOR: spoe: Improve implementation of the payload fragmentation
13692 - MINOR: spoe: Add support of negation for options in SPOE configuration file
13693 - MINOR: spoe: Add "pipelining" and "async" options in spoe-agent section
13694 - MINOR: spoe: Rely on alertif_too_many_arg during configuration parsing
13695 - MINOR: spoe: Add "send-frag-payload" option in spoe-agent section
13696 - MINOR: spoe: Add "max-frame-size" statement in spoe-agent section
13697 - DOC: spoe: Update SPOE documentation to reflect recent changes
13698 - MINOR: config: warn when some HTTP rules are used in a TCP proxy
13699 - BUG/MEDIUM: ssl: Clear OpenSSL error stack after trying to parse OCSP file
13700 - BUG/MEDIUM: cli: Prevent double free in CLI ACL lookup
13701 - BUG/MINOR: Fix "get map <map> <value>" CLI command
13702 - MINOR: Add nbsrv sample converter
13703 - CLEANUP: Replace repeated code to count usable servers with be_usable_srv()
13704 - MINOR: Add hostname sample fetch
13705 - CLEANUP: Remove comment that's no longer valid
13706 - MEDIUM: http_error_message: txn->status / http_get_status_idx.
13707 - MINOR: http-request tarpit deny_status.
13708 - CLEANUP: http: make http_server_error() not set the status anymore
13709 - MEDIUM: stats: Add JSON output option to show (info|stat)
13710 - MEDIUM: stats: Add show json schema
13711 - BUG/MAJOR: connection: update CO_FL_CONNECTED before calling the data layer
13712 - MINOR: server: Add dynamic session cookies.
13713 - MINOR: cli: Let configure the dynamic cookies from the cli.
13714 - BUG/MINOR: checks: attempt clean shutw for SSL check
13715 - CONTRIB: tcploop: make it build on FreeBSD
13716 - CONTRIB: tcploop: fix time format to silence build warnings
13717 - CONTRIB: tcploop: report action 'K' (kill) in usage message
13718 - CONTRIB: tcploop: fix connect's address length
13719 - CONTRIB: tcploop: use the trash instead of NULL for recv()
13720 - BUG/MEDIUM: listener: do not try to rebind another process' socket
13721 - BUG/MEDIUM server: Fix crash when dynamic is defined, but not key is provided.
13722 - CLEANUP: config: Typo in comment.
13723 - BUG/MEDIUM: filters: Fix channels synchronization in flt_end_analyze
13724 - TESTS: add a test configuration to stress handshake combinations
13725 - BUG/MAJOR: stream-int: do not depend on connection flags to detect connection
13726 - BUG/MEDIUM: connection: ensure to always report the end of handshakes
13727 - MEDIUM: connection: don't test for CO_FL_WAKE_DATA
13728 - CLEANUP: connection: completely remove CO_FL_WAKE_DATA
13729 - BUG: payload: fix payload not retrieving arbitrary lengths
13730 - BUILD: ssl: simplify SSL_CTX_set_ecdh_auto compatibility
13731 - BUILD: ssl: fix OPENSSL_NO_SSL_TRACE for boringssl and libressl
13732 - BUG/MAJOR: http: fix typo in http_apply_redirect_rule
13733 - MINOR: doc: 2.4. Examples should be 2.5. Examples
13734 - BUG/MEDIUM: stream: fix client-fin/server-fin handling
13735 - MINOR: fd: add a new flag HAP_POLL_F_RDHUP to struct poller
13736 - BUG/MINOR: raw_sock: always perfom the last recv if RDHUP is not available
13737 - OPTIM: poll: enable support for POLLRDHUP
13738 - MINOR: kqueue: exclusively rely on the kqueue returned status
13739 - MEDIUM: kqueue: take care of EV_EOF to improve polling status accuracy
13740 - MEDIUM: kqueue: only set FD_POLL_IN when there are pending data
13741 - DOC/MINOR: Fix typos in proxy protocol doc
13742 - DOC: Protocol doc: add checksum, TLV type ranges
13743 - DOC: Protocol doc: add SSL TLVs, rename CHECKSUM
13744 - DOC: Protocol doc: add noop TLV
13745 - MEDIUM: global: add a 'hard-stop-after' option to cap the soft-stop time
13746 - MINOR: dns: improve DNS response parsing to use as many available records as possible
13747 - BUG/MINOR: cfgparse: loop in tracked servers lists not detected by check_config_validity().
13748 - MINOR: server: irrelevant error message with 'default-server' config file keyword.
13749 - MINOR: server: Make 'default-server' support 'backup' keyword.
13750 - MINOR: server: Make 'default-server' support 'check-send-proxy' keyword.
13751 - CLEANUP: server: code alignement.
13752 - MINOR: server: Make 'default-server' support 'non-stick' keyword.
13753 - MINOR: server: Make 'default-server' support 'send-proxy' and 'send-proxy-v2 keywords.
13754 - MINOR: server: Make 'default-server' support 'check-ssl' keyword.
13755 - MINOR: server: Make 'default-server' support 'force-sslv3' and 'force-tlsv1[0-2]' keywords.
13756 - CLEANUP: server: code alignement.
13757 - MINOR: server: Make 'default-server' support 'no-ssl*' and 'no-tlsv*' keywords.
13758 - MINOR: server: Make 'default-server' support 'ssl' keyword.
13759 - MINOR: server: Make 'default-server' support 'send-proxy-v2-ssl*' keywords.
13760 - CLEANUP: server: code alignement.
13761 - MINOR: server: Make 'default-server' support 'verify' keyword.
13762 - MINOR: server: Make 'default-server' support 'verifyhost' setting.
13763 - MINOR: server: Make 'default-server' support 'check' keyword.
13764 - MINOR: server: Make 'default-server' support 'track' setting.
13765 - MINOR: server: Make 'default-server' support 'ca-file', 'crl-file' and 'crt' settings.
13766 - MINOR: server: Make 'default-server' support 'redir' keyword.
13767 - MINOR: server: Make 'default-server' support 'observe' keyword.
13768 - MINOR: server: Make 'default-server' support 'cookie' keyword.
13769 - MINOR: server: Make 'default-server' support 'ciphers' keyword.
13770 - MINOR: server: Make 'default-server' support 'tcp-ut' keyword.
13771 - MINOR: server: Make 'default-server' support 'namespace' keyword.
13772 - MINOR: server: Make 'default-server' support 'source' keyword.
13773 - MINOR: server: Make 'default-server' support 'sni' keyword.
13774 - MINOR: server: Make 'default-server' support 'addr' keyword.
13775 - MINOR: server: Make 'default-server' support 'disabled' keyword.
13776 - MINOR: server: Add 'no-agent-check' server keyword.
13777 - DOC: server: Add docs for "server" and "default-server" new "no-*" and other settings.
13778 - MINOR: doc: fix use-server example (imap vs mail)
13779 - BUG/MEDIUM: tcp: don't require privileges to bind to device
13780 - BUILD: make the release script use shortlog for the final changelog
13781 - BUILD: scripts: fix typo in announce-release error message
13782 - CLEANUP: time: curr_sec_ms doesn't need to be exported
13783 - BUG/MEDIUM: server: Wrong server default CRT filenames initialization.
13784 - BUG/MEDIUM: peers: fix buffer overflow control in intdecode.
13785 - BUG/MEDIUM: buffers: Fix how input/output data are injected into buffers
13786 - BUG/MINOR: http: Fix conditions to clean up a txn and to handle the next request
13787 - CLEANUP: http: Remove channel_congested function
13788 - CLEANUP: buffers: Remove buffer_bounce_realign function
13789 - CLEANUP: buffers: Remove buffer_contig_area and buffer_work_area functions
13790 - MINOR: http: remove useless check on HTTP_MSGF_XFER_LEN for the request
13791 - MINOR: http: Add debug messages when HTTP body analyzers are called
13792 - BUG/MEDIUM: http: Fix blocked HTTP/1.0 responses when compression is enabled
13793 - BUG/MINOR: filters: Don't force the stream's wakeup when we wait in flt_end_analyze
13794 - DOC: fix parenthesis and add missing "Example" tags
13795 - DOC: update the contributing file
13796 - DOC: log-format/tcplog/httplog update
13797 - MINOR: config parsing: add warning when log-format/tcplog/httplog is overriden in "defaults" sections
13798
Willy Tarreau0e658fb2016-11-25 16:55:50 +0100137992016/11/25 : 1.8-dev0
13800
Willy Tarreaue59fcdd2016-11-25 16:39:17 +0100138012016/11/25 : 1.7.0
13802 - SCRIPTS: make publish-release also copy the new SPOE doc
13803 - BUILD: http: include types/sample.h in proto_http.h
13804 - BUILD: debug/flags: remove test for SF_COMP_READY
13805 - CONTRIB: debug/flags: add check for SF_ERR_CHK_PORT
13806 - MINOR: lua: add function which return true if the channel is full.
13807 - MINOR: lua: add ip addresses and network manipulation function
13808 - CONTRIB: tcploop: scriptable TCP I/O for debugging purposes
13809 - CONTRIB: tcploop: implement fork()
13810 - CONTRIB: tcploop: implement logging when called with -v
13811 - CONTRIB: tcploop: update the usage output
13812 - CONTRIB: tcploop: support sending plain strings
13813 - CONTRIB: tcploop: don't report failed send() or recv()
13814 - CONTRIB: tcploop: add basic loops via a jump instruction
13815 - BUG/MEDIUM: channel: bad unlikely macro
13816 - CLEANUP: lua: move comment
13817 - CLEANUP: lua: control executed twice
13818 - BUG/MEDIUM: ssl: Store certificate filename in a variable
13819 - BUG/MINOR: ssl: Print correct filename when error occurs reading OCSP
13820 - CLEANUP: ssl: Remove goto after return dead code
13821 - CLEANUP: ssl: Fix bind keywords name in comments
13822 - DOC: ssl: Use correct wording for ca-sign-pass
13823 - CLEANUP: lua: avoid directly calling getsockname/getpeername()
13824 - BUG/MINOR: stick-table: handle out-of-memory condition gracefully
13825 - MINOR: cli: add private pointer and release function
13826 - MEDIUM: lua: Add cli handler for Lua
13827 - BUG/MEDIUM: connection: check the control layer before stopping polling
13828 - DEBUG: connection: mark the closed FDs with a value that is easier to detect
13829 - BUG/MEDIUM: stick-table: fix regression caused by recent fix for out-of-memory
13830 - BUG/MINOR: cli: properly decrement ref count on tables during failed dumps
13831 - BUG/MEDIUM: lua: In some case, the return of sample-fetche is ignored
13832 - MINOR: filters: Add check_timeouts callback to handle timers expiration on streams
13833 - MINOR: spoe: Add 'timeout processing' option to limit time to process an event
13834 - MINOR: spoe: Remove useless 'timeout ack' option
13835 - MINOR: spoe: Add 'option continue-on-error' statement in spoe-agent section
13836 - MINOR: spoe: Add "maxconnrate" and "maxerrrate" statements
13837 - MINOR: spoe: Add "option set-on-error" statement
13838 - MINOR: stats: correct documentation of process ID for typed output
13839 - BUILD: contrib: fix ip6range build on Centos 7
13840 - BUILD: fix build on Solaris 10/11
13841 - BUG/MINOR: cli: fix pointer size when reporting data/transport layer name
13842 - BUG/MINOR: cli: dequeue from the proxy when changing a maxconn
13843 - BUG/MINOR: cli: wake up the CLI's task after a timeout update
13844 - MINOR: connection: add a few functions to report the data and xprt layers' names
13845 - MINOR: connection: add names for transport and data layers
13846 - REORG: cli: split dumpstats.c in src/cli.c and src/stats.c
13847 - REORG: cli: split dumpstats.h in stats.h and cli.h
13848 - REORG: cli: move ssl CLI functions to ssl_sock.c
13849 - REORG: cli: move map and acl code to map.c
13850 - REORG: cli: move show stat resolvers to dns.c
13851 - MINOR: cli: create new function cli_has_level() to validate permissions
13852 - MINOR: server: create new function cli_find_server() to find a server
13853 - MINOR: proxy: create new function cli_find_frontend() to find a frontend
13854 - REORG: cli: move 'set server' to server.c
13855 - REORG: cli: move 'show pools' to memory.c
13856 - REORG: cli: move 'show servers' to proxy.c
13857 - REORG: cli: move 'show sess' to stream.c
13858 - REORG: cli: move 'show backend' to proxy.c
13859 - REORG: cli: move get/set weight to server.c
13860 - REORG: cli: move "show stat" to stats.c
13861 - REORG: cli: move "show info" to stats.c
13862 - REORG: cli: move dump_text(), dump_text_line(), and dump_binary() to standard.c
13863 - REORG: cli: move table dump/clear/set to stick_table.c
13864 - REORG: cli: move "show errors" out of cli.c
13865 - REORG: cli: make "show env" also use the generic keyword registration
13866 - REORG: cli: move "set timeout" to its own handler
13867 - REORG: cli: move "clear counters" to stats.c
13868 - REORG: cli: move "set maxconn global" to its own handler
13869 - REORG: cli: move "set maxconn server" to server.c
13870 - REORG: cli: move "set maxconn frontend" to proxy.c
13871 - REORG: cli: move "shutdown sessions server" to stream.c
13872 - REORG: cli: move "shutdown session" to stream.c
13873 - REORG: cli: move "shutdown frontend" to proxy.c
13874 - REORG: cli: move "{enable|disable} frontend" to proxy.c
13875 - REORG: cli: move "{enable|disable} server" to server.c
13876 - REORG: cli: move "{enable|disable} health" to server.c
13877 - REORG: cli: move "{enable|disable} agent" to server.c
13878 - REORG: cli: move the "set rate-limit" functions to their own parser
13879 - CLEANUP: cli: rename STAT_CLI_* to CLI_ST_*
13880 - CLEANUP: cli: simplify the request parser a little bit
13881 - CLEANUP: cli: remove assignments to st0 and st2 in keyword parsers
13882 - BUILD: server: remove a build warning introduced by latest series
13883 - BUG/MINOR: log-format: uncatched memory allocation functions
13884 - CLEANUP: log-format: useless file and line in json converter
13885 - CLEANUP/MINOR: log-format: unexport functions parse_logformat_var_args() and parse_logformat_var()
13886 - CLEANUP: log-format: fix return code of the function parse_logformat_var()
13887 - CLEANUP: log-format: fix return code of function parse_logformat_var_args()
13888 - CLEANUP: log-format: remove unused arguments
13889 - MEDIUM: log-format: strict parsing and enable fail
13890 - MEDIUM: log-format/conf: take into account the parse_logformat_string() return code
13891 - BUILD: ssl: make the SSL layer build again with openssl 0.9.8
13892 - BUILD: vars: remove a build warning on vars.c
13893 - MINOR: lua: add utility function for check boolean argument
13894 - MINOR: lua: Add tokenize function.
13895 - BUG/MINOR: conf: calloc untested
13896 - MINOR: http/conf: store the use_backend configuration file and line for logs
13897 - MEDIUM: log-format: Use standard HAProxy log system to report errors
13898 - CLEANUP: sample: report "converter" instead of "conv method" in error messages
13899 - BUG: spoe: Fix parsing of SPOE actions in ACK frames
13900 - MINOR: cli: make "show stat" support a proxy name
13901 - MINOR: cli: make "show errors" support a proxy name
13902 - MINOR: cli: make "show errors" capable of dumping only request or response
13903 - BUG/MINOR: freq-ctr: make swrate_add() support larger values
13904 - CLEANUP: counters: move from 3 types to 2 types
13905 - CLEANUP: cfgparse: cascade the warnif_misplaced_* rules
13906 - REORG: tcp-rules: move tcp rules processing to their own file
13907 - REORG: stkctr: move all the stick counters processing to stick-tables.c
13908 - DOC: update the roadmap file with the latest changes
13909
Willy Tarreaud5d890b2016-11-09 23:18:17 +0100139102016/11/09 : 1.7-dev6
13911 - DOC: fix the entry for hash-balance-factor config option
13912 - DOC: Fix typo in description of `-st` parameter in man page
13913 - CLEANUP: cfgparse: Very minor spelling correction
13914 - MINOR: examples: Update haproxy.spec URLs to haproxy.org
13915 - BUG/MEDIUM: peers: on shutdown, wake up the appctx, not the stream
13916 - BUG/MEDIUM: peers: fix use after free in peer_session_create()
13917 - MINOR: peers: make peer_session_forceshutdown() use the appctx and not the stream
13918 - MINOR: peers: remove the pointer to the stream
13919 - BUG/MEDIUM: systemd-wrapper: return correct exit codes
13920 - DOC: stats: provide state details for show servers state
13921 - MEDIUM: tools: make str2ip2() preserve existing ports
13922 - CLEANUP: tools: make ipcpy() preserve the original port
13923 - OPTIM: http: move all http character classs tables into a single one
13924 - OPTIM: http: improve parsing performance of long header lines
13925 - OPTIM: http: improve parsing performance of long URIs
13926 - OPTIM: http: optimize lookup of comma and quote in header values
13927 - BUG/MEDIUM: srv-state: properly restore the DRAIN state
13928 - BUG/MINOR: srv-state: allow to have both CMAINT and FDRAIN flags
13929 - MINOR: server: do not emit warnings/logs/alerts on server state changes at boot
13930 - BUG/MEDIUM: servers: properly propagate the maintenance states during startup
13931 - MEDIUM: wurfl: add Scientiamobile WURFL device detection module
13932 - DOC: move the device detection modules documentation to their own files
13933 - CLEANUP: wurfl: reduce exposure in the rest of the code
13934 - MEDIUM: ssl: Add support for OpenSSL 1.1.0
13935 - MINOR: stream: make option contstats usable again
13936 - MEDIUM: tools: make str2sa_range() return the FQDN even when not resolving
13937 - MINOR: init: move apply_server_state in haproxy.c before MODE_CHECK
13938 - MAJOR: server: postpone address resolution
13939 - MINOR: new srv_admin flag: SRV_ADMF_RMAINT
13940 - MINOR: server: indicate in the logs when RMAINT is cleared
13941 - MINOR: stats: indicate it when a server is down due to resolution
13942 - MINOR: server: make srv_set_admin_state() capable of telling why this happens
13943 - MINOR: dns: implement extra 'hold' timers.
13944 - MAJOR: dns: runtime resolution can change server admin state
13945 - MEDIUM: cli: leave the RMAINT state when setting an IP address on the CLI
13946 - MEDIUM: server: add a new init-addr server line setting
13947 - MEDIUM: server: make use of init-addr
13948 - MINOR: server: implement init-addr none
13949 - MEDIUM: server: make libc resolution failure non-fatal
13950 - MINOR: server: add support for explicit numeric address in init-addr
13951 - DOC: add some documentation for the "init-addr" server keyword
13952 - MINOR: init: add -dr to ignore server address resolution failures
13953 - MEDIUM: server: do not restrict anymore usage of IP address from the state file
13954 - BUG: vars: Fix 'set-var' converter because of a typo
13955 - CLEANUP: remove last references to 'ruleset' section
13956 - MEDIUM: filters: Add attch/detach and stream_set_backend callbacks
13957 - MINOR: filters: Update filters documentation accordingly to recent changes
13958 - MINOR: filters: Call stream_set_backend callbacks before updating backend stats
13959 - MINOR: filters: Remove backend filters attached to a stream only for HTTP streams
13960 - MINOR: flt_trace: Add hexdump option to dump forwarded data
13961 - MINOR: cfgparse: Add functions to backup and restore registered sections
13962 - MINOR: cfgparse: Parse scope lines and save the last one parsed
13963 - REORG: sample: move code to release a sample expression in sample.c
13964 - MINOR: vars: Allow '.' in variable names
13965 - MINOR: vars: Add vars_set_by_name_ifexist function
13966 - MEDIUM: vars: Add a per-process scope for variables
13967 - MINOR: vars: Add 'unset-var' action/converter
13968 - MAJOR: spoe: Add an experimental Stream Processing Offload Engine
13969 - MINOR: spoe: add random ip-reputation service as SPOA example
13970 - MINOR: spoe/checks: Add support for SPOP health checks
13971 - DOC: update ROADMAP file
13972
Willy Tarreau608efa12016-10-25 22:22:00 +0200139732016/10/25 : 1.7-dev5
13974 - MINOR: cfgparse: few memory leaks fixes.
13975 - MEDIUM: log: Decompose %Tq in %Th %Ti %TR
13976 - CLEANUP: logs: remove unused log format field definitions
13977 - BUILD/MAJOR:updated 51d Trie implementation to incorperate latest update to 51Degrees.c
13978 - BUG/MAJOR: stream: properly mark the server address as unset on connect retry
13979 - CLEANUP: proto_http: Removing useless variable assignation
13980 - CLEANUP: dumpstats: Removing useless variables allocation
13981 - CLEANUP: dns: Removing usless variable & assignation
13982 - BUG/MINOR: payload: fix SSLv2 version parser
13983 - MINOR: cli: allow the semi-colon to be escaped on the CLI
13984 - MINOR: cli: change a server health check port through the stats socket
13985 - BUG/MINOR: Fix OSX compilation errors
13986 - MAJOR: check: find out which port to use for health check at run time
13987 - MINOR: server: introduction of 3 new server flags
13988 - MINOR: new update_server_addr_port() function to change both server's ADDR and service PORT
13989 - MINOR: cli: ability to change a server's port
13990 - CLEANUP/MINOR dns: comment do not follow up code update
13991 - MINOR: chunk: new strncat function
13992 - MINOR: dns: wrong DNS_MAX_UDP_MESSAGE value
13993 - MINOR: dns: new MAX values
13994 - MINOR: dns: new macro to compute DNS header size
13995 - MINOR: dns: new DNS structures to store received packets
13996 - MEDIUM: dns: new DNS response parser
13997 - MINOR: dns: query type change when last record is a CNAME
13998 - MINOR: dns: proper domain name validation when receiving DNS response
13999 - MINOR: dns: comments in types/dns.h about structures endianness
14000 - BUG/MINOR: displayed PCRE version is running release
14001 - MINOR: show Built with PCRE version
14002 - MINOR: show Running on zlib version
14003 - MEDIUM: make SO_REUSEPORT configurable
14004 - MINOR: enable IP_BIND_ADDRESS_NO_PORT on backend connections
14005 - BUG/MEDIUM: http/compression: Fix how chunked data are copied during the HTTP body parsing
14006 - BUG/MINOR: stats: report the correct conn_time in backend's html output
14007 - BUG/MEDIUM: dns: don't randomly crash on out-of-memory
14008 - MINOR: Add fe_req_rate sample fetch
14009 - MEDIUM: peers: Fix a peer stick-tables synchronization issue.
14010 - MEDIUM: cli: register CLI keywords with cli_register_kw()
14011 - BUILD: Make use of accept4() on OpenBSD.
14012 - MINOR: tcp: make set-src/set-src-port and set-dst/set-dst-port commutative
14013 - DOC: fix missed entry for "set-{src,dst}{,-port}"
14014 - BUG/MINOR: vars: use sess and not s->sess in action_store()
14015 - BUG/MINOR: vars: make smp_fetch_var() more robust against misuses
14016 - BUG/MINOR: vars: smp_fetch_var() doesn't depend on HTTP but on the session
14017 - MINOR: stats: output dcon
14018 - CLEANUP: tcp rules: mention everywhere that tcp-conn rules are L4
14019 - MINOR: counters: add new fields for denied_sess
14020 - MEDIUM: tcp: add registration and processing of TCP L5 rules
14021 - MINOR: stats: emit dses
14022 - DOC: document tcp-request session
14023 - MINOR: ssl: add debug traces
14024 - BUILD/CLEANUP: ssl: Check BIO_reset() return code
14025 - BUG/MINOR: ssl: Check malloc return code
14026 - BUG/MINOR: ssl: prevent multiple entries for the same certificate
14027 - BUG/MINOR: systemd: make the wrapper return a non-null status code on error
14028 - BUG/MINOR: systemd: always restore signals before execve()
14029 - BUG/MINOR: systemd: check return value of calloc()
14030 - MINOR: systemd: report it when execve() fails
14031 - BUG/MEDIUM: systemd: let the wrapper know that haproxy has completed or failed
14032 - MINOR: proxy: add 'served' field to proxy, equal to total of all servers'
14033 - MINOR: backend: add hash-balance-factor option for hash-type consistent
14034 - MINOR: server: compute a "cumulative weight" to allow chash balancing to hit its target
14035 - MEDIUM: server: Implement bounded-load hash algorithm
14036 - SCRIPTS: make git-show-backports also dump a "git show" command
14037 - MINOR: build: Allow linking to device-atlas library file
14038 - MINOR: stats: Escape equals sign on socket dump
14039
Willy Tarreau41d5e3a2016-08-14 12:25:21 +0200140402016/08/14 : 1.7-dev4
14041 - MINOR: add list_append_word function
14042 - MEDIUM: init: use list_append_word in haproxy.c
14043 - MEDIUM: init: allow directory as argument of -f
14044 - CLEANUP: config: detect double registration of a config section
14045 - MINOR: log: add the %Td log-format specifier
14046 - MEDIUM: filters: Move HTTP headers filtering in its own callback
14047 - MINOR: filters: Simplify calls to analyzers using 2 new macros
14048 - MEDIUM: filters: Add pre and post analyzer callbacks
14049 - DOC: filters: Update the filters documentation accordingly to recent changes
14050 - BUG/MEDIUM: init: don't use environment locale
14051 - SCRIPTS: teach git-show-backports how to report upstream commits
14052 - SCRIPTS: make git-show-backports capable of limiting its history
14053 - BUG/MAJOR: fix listening IP address storage for frontends
14054 - BUG/MINOR: fix listening IP address storage for frontends (cont)
14055 - DOC: Fix typo so fetch is properly parsed by Cyril's converter
14056 - BUG/MAJOR: http: fix breakage of "reqdeny" causing random crashes
14057 - BUG/MEDIUM: stick-tables: fix breakage in table converters
14058 - MINOR: stick-table: change all stick-table converters' inputs to SMP_T_ANY
14059 - BUG/MEDIUM: dns: unbreak DNS resolver after header fix
14060 - BUILD: fix build on Solaris 11
14061 - BUG/MEDIUM: config: fix multiple declaration of section parsers
14062 - BUG/MEDIUM: stats: show servers state may show an servers from another backend
14063 - BUG/MEDIUM: fix risk of segfault with "show tls-keys"
14064 - MEDIUM: dumpstats: 'show tls-keys' is now able to show secrets
14065 - DOC: update doc about tls-tickets-keys dump
14066 - MEDIUM: tcp: add 'set-src' to 'tcp-request connection'
14067 - MINOR: set the CO_FL_ADDR_FROM_SET flags with 'set-src'
14068 - MEDIUM: tcp/http: add 'set-src-port' action
14069 - MEDIUM: tcp/http: new set-dst/set-dst-port actions
14070 - BUG/MEDIUM: sticktables: segfault in some configuration error cases
14071 - BUILD/MEDIUM: rebuild everything when an include file is changed
14072 - BUILD/MEDIUM: force a full rebuild if some build options change
14073 - BUG/MEDIUM: lua: converters doesn't work
14074 - BUG/MINOR: http: add-header: header name copied twice
14075 - BUG/MEDIUM: http: add-header: buffer overwritten
14076 - BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()
14077 - MINOR: stream: export the function 'smp_create_src_stkctr'
14078 - BUG/MEDIUM: dumpstats: undefined behavior in stats_tlskeys_list()
14079 - MEDIUM: dumpstats: make stats_tlskeys_list() yield-aware during tls-keys dump
14080 - BUG/MINOR: http: url32+src should use the big endian version of url32
14081 - BUG/MINOR: http: url32+src should check cli_conn before using it
14082 - DOC: http: add documentation for url32 and url32+src
14083 - BUG/MINOR: fix http-response set-log-level parsing error
14084 - MINOR: systemd: Use variable for config and pidfile paths
14085 - MINOR: systemd: Perform sanity check on config before reload
14086 - MEDIUM: ssl: support SNI filters with multicerts
14087 - MINOR: ssl: crt-list parsing factor
14088 - BUILD: ssl: fix typo causing a build failure in the multicert patch
14089 - MINOR: listener: add the "accept-netscaler-cip" option to the "bind" keyword
14090 - MINOR: tcp: add "tcp-request connection expect-netscaler-cip layer4"
14091 - BUG/MINOR: init: always ensure that global.rlimit_nofile matches actual limits
14092 - BUG/MINOR: init: ensure that FD limit is raised to the max allowed
14093 - BUG/MEDIUM: external-checks: close all FDs right after the fork()
14094 - BUG/MAJOR: external-checks: use asynchronous signal delivery
14095 - BUG/MINOR: external-checks: do not unblock undesired signals
14096 - CLEANUP: external-check: don't block/unblock SIGCHLD when manipulating the list
14097 - BUG/MEDIUM: filters: Fix data filtering when data are modified
14098 - BUG/MINOR: filters: Fix HTTP parsing when a filter loops on data forwarding
14099 - BUG/MINOR: srv-state: fix incorrect output of state file
14100 - BUG/MINOR: ssl: close ssl key file on error
14101 - BUG/MINOR: http: fix misleading error message for response captures
14102 - BUG/BUILD: don't automatically run "make" on "make install"
14103 - DOC: add missing doc for http-request deny [deny_status <status>]
14104 - CLEANUP: dumpstats: u64 field is an unsigned type.
14105 - BUG/MEDIUM: http: unbreak uri/header/url_param hashing
14106 - BUG/MINOR: Rework slightly commit 9962f8fc to clean code and avoid mistakes
14107 - MINOR: new function my_realloc2 = realloc + free upon failure
14108 - CLEANUP: fixed some usages of realloc leading to memory leak
14109 - Revert "BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()"
14110 - CLEANUP: connection: using internal struct to hold source and dest port.
14111 - DOC: spelling fixes
14112 - BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()
14113 - BUG/MEDIUM: dns: fix alignment issues in the DNS response parser
14114 - BUG/MINOR: Fix endiness issue in DNS header creation code
14115 - BUG/MEDIUM: lua: the function txn_done() from sample fetches can crash
14116 - BUG/MEDIUM: lua: the function txn_done() from action wrapper can crash
14117 - MEDIUM: http: implement http-response track-sc* directive
14118 - BUG/MINOR: peers: Fix peers data decoding issue
14119 - BUG/MINOR: peers: don't count track-sc multiple times on errors
14120 - MINOR: standard: add function "escape_string"
14121 - BUG/MEDIUM: log: use function "escape_string" instead of "escape_chunk"
14122 - MINOR: tcp: Return TCP statistics like RTT and RTT variance
14123 - DOC: lua: remove old functions
14124 - BUG/MEDIUM: lua: somme HTTP manipulation functions are called without valid requests
14125 - DOC: fix json converter example and error message
14126 - BUG/MEDIUM: stream-int: completely detach connection on connect error
14127 - DOC: minor typo fixes to improve HTML parsing by haproxy-dconv
14128 - BUILD: make proto_tcp.c compatible with musl library
14129 - BUG/MAJOR: compression: initialize avail_in/next_in even during flush
14130 - BUG/MEDIUM: samples: make smp_dup() always duplicate the sample
14131 - MINOR: sample: implement smp_is_safe() and smp_make_safe()
14132 - MINOR: sample: provide smp_is_rw() and smp_make_rw()
14133 - BUG/MAJOR: server: the "sni" directive could randomly cause trouble
14134 - BUG/MEDIUM: stick-tables: do not fail on string keys with no allocated size
14135 - BUG/MEDIUM: stick-table: properly convert binary samples to keys
14136 - MINOR: sample: use smp_make_rw() in upper/lower converters
14137 - MINOR: tcp: add dst_is_local and src_is_local
14138 - BUG/MINOR: peers: some updates are pushed twice after a resync.
14139 - BUILD: protocol: fix some build errors on OpenBSD
14140 - BUILD: log: iovec requires to include sys/uio.h on OpenBSD
14141 - BUILD: tcp: do not include netinet/ip.h for IP_TTL
14142 - BUILD: connection: fix build breakage on openbsd due to missing in_systm.h
14143 - BUILD: checks: remove the last strcat and eliminate a warning on OpenBSD
14144 - BUILD: tcp: define SOL_TCP when only IPPROTO_TCP exists
14145 - BUILD: compression: remove a warning when no compression lib is used
14146 - BUILD: poll: remove unused hap_fd_isset() which causes a warning with clang
14147 - MINOR: tcp: add further tcp info fetchers
14148 - BUG/MINOR: peers: empty chunks after a resync.
14149 - BUG/MAJOR: stick-counters: possible crash when using sc_trackers with wrong table
14150 - MINOR: standard.c: ipcmp() function to compare 2 IP addresses stored in 2 struct sockaddr_storage
14151 - MINOR: standard.c: ipcpy() function to copy an IP address from a struct sockaddr_storage into an other one
14152 - MAJOR: listen section: don't use first bind port anymore when no server ports are provided
14153
Willy Tarreau7d1b48f2016-05-10 15:36:58 +0200141542016/05/10 : 1.7-dev3
14155 - MINOR: sample: Moves ARGS underlying type from 32 to 64 bits.
14156 - BUG/MINOR: log: Don't use strftime() which can clobber timezone if chrooted
14157 - BUILD: namespaces: fix a potential build warning in namespaces.c
14158 - MINOR: da: Using ARG12 macro for the sample fetch and the convertor.
14159 - DOC: add encoding to json converter example
14160 - BUG/MINOR: conf: "listener id" expects integer, but its not checked
14161 - DOC: Clarify tunes.vars.xxx-max-size settings
14162 - CLEANUP: chunk: adding NULL check to chunk_dup allocation.
14163 - CLEANUP: connection: fix double negation on memcmp()
14164 - BUG/MEDIUM: peers: fix incorrect age in frequency counters
14165 - BUG/MEDIUM: Fix RFC5077 resumption when more than TLS_TICKETS_NO are present
14166 - BUG/MAJOR: Fix crash in http_get_fhdr with exactly MAX_HDR_HISTORY headers
14167 - BUG/MINOR: lua: can't load external libraries
14168 - BUG/MINOR: prevent the dump of uninitialized vars
14169 - CLEANUP: map: it seems that the map were planed to be chained
14170 - MINOR: lua: move class registration facilities
14171 - MINOR: lua: remove some useless checks
14172 - CLEANUP: lua: Remove two same functions
14173 - MINOR: lua: refactor the Lua object registration
14174 - MINOR: lua: precise message when a critical error is catched
14175 - MINOR: lua: post initialization
14176 - MINOR: lua: Add internal function which strip spaces
14177 - MINOR: lua: convert field to lua type
14178 - DOC: "addr" parameter applies to both health and agent checks
14179 - DOC: timeout client: pointers to timeout http-request
14180 - DOC: typo on stick-store response
14181 - DOC: stick-table: amend paragraph blaming the loss of table upon reload
14182 - DOC: typo: ACL subdir match
14183 - DOC: typo: maxconn paragraph is wrong due to a wrong buffer size
14184 - DOC: regsub: parser limitation about the inability to use closing square brackets
14185 - DOC: typo: req.uri is now replaced by capture.req.uri
14186 - DOC: name set-gpt0 mismatch with the expected keyword
14187 - MINOR: http: sample fetch which returns unique-id
14188 - MINOR: dumpstats: extract stats fields enum and names
14189 - MINOR: dumpstats: split stats_dump_info_to_buffer() in two parts
14190 - MINOR: dumpstats: split stats_dump_fe_stats() in two parts
14191 - MINOR: dumpstats: split stats_dump_li_stats() in two parts
14192 - MINOR: dumpstats: split stats_dump_sv_stats() in two parts
14193 - MINOR: dumpstats: split stats_dump_be_stats() in two parts
14194 - MINOR: lua: dump general info
14195 - MINOR: lua: add class proxy
14196 - MINOR: lua: add class server
14197 - MINOR: lua: add class listener
14198 - BUG/MEDIUM: stick-tables: some sample-fetch doesn't work in the connection state.
14199 - MEDIUM: proxy: use dynamic allocation for error dumps
14200 - CLEANUP: remove unneeded casts
14201 - CLEANUP: uniformize last argument of malloc/calloc
14202 - DOC: fix "needed" typo
14203 - BUG/MINOR: dumpstats: fix write to global chunk
14204 - BUG/MINOR: dns: inapropriate way out after a resolution timeout
14205 - BUG/MINOR: dns: trigger a DNS query type change on resolution timeout
14206 - CLEANUP: proto_http: few corrections for gcc warnings.
14207 - BUG/MINOR: DNS: resolution structure change
14208 - BUG/MINOR : allow to log cookie for tarpit and denied request
14209 - BUG/MEDIUM: ssl: rewind the BIO when reading certificates
14210 - OPTIM/MINOR: session: abort if possible before connecting to the backend
14211 - DOC: http: rename the unique-id sample and add the documentation
14212 - BUG/MEDIUM: trace.c: rdtsc() is defined in two files
14213 - BUG/MEDIUM: channel: fix miscalculation of available buffer space (2nd try)
14214 - BUG/MINOR: server: risk of over reading the pref_net array.
14215 - BUG/MINOR: cfgparse: couple of small memory leaks.
14216 - BUG/MEDIUM: sample: initialize the pointer before parse_binary call.
14217 - DOC: fix discrepancy in the example for http-request redirect
14218 - MINOR: acl: Add predefined METH_DELETE, METH_PUT
14219 - CLEANUP: .gitignore cleanup
14220 - DOC: Clarify IPv4 address / mask notation rules
14221 - CLEANUP: fix inconsistency between fd->iocb, proto->accept and accept()
14222 - BUG/MEDIUM: fix maxaccept computation on per-process listeners
14223 - BUG/MINOR: listener: stop unbound listeners on startup
14224 - BUG/MINOR: fix maxaccept computation according to the frontend process range
14225 - TESTS: add blocksig.c to run tests with all signals blocked
14226 - MEDIUM: unblock signals on startup.
14227 - MINOR: filters: Print the list of existing filters during HA startup
14228 - MINOR: filters: Typo in an error message
14229 - MINOR: filters: Filters must define the callbacks struct during config parsing
14230 - DOC: filters: Add filters documentation
14231 - BUG/MEDIUM: channel: don't allow to overwrite the reserve until connected
14232 - BUG/MEDIUM: channel: incorrect polling condition may delay event delivery
14233 - BUG/MEDIUM: channel: fix miscalculation of available buffer space (3rd try)
14234 - BUG/MEDIUM: log: fix risk of segfault when logging HTTP fields in TCP mode
14235 - MINOR: Add ability for agent-check to set server maxconn
14236 - CLEANUP: Use server_parse_maxconn_change_request for maxconn CLI updates
14237 - MINOR: filters: add opaque data
14238 - BUG/MEDIUM: lua: protects the upper boundary of the argument list for converters/fetches.
14239 - MINOR: lua: migrate the argument mask to 64 bits type.
14240 - BUG/MINOR: dumpstats: Fix the "Total bytes saved" counter in backends stats
14241 - BUG/MINOR: log: fix a typo that would cause %HP to log <BADREQ>
14242 - BUG/MEDIUM: http: fix incorrect reporting of server errors
14243 - MINOR: channel: add new function channel_congested()
14244 - BUG/MEDIUM: http: fix risk of CPU spikes with pipelined requests from dead client
14245 - BUG/MAJOR: channel: fix miscalculation of available buffer space (4th try)
14246 - BUG/MEDIUM: stream: ensure the SI_FL_DONT_WAKE flag is properly cleared
14247 - BUG/MEDIUM: channel: fix inconsistent handling of 4GB-1 transfers
14248 - BUG/MEDIUM: stats: show servers state may show an empty or incomplete result
14249 - BUG/MEDIUM: stats: show backend may show an empty or incomplete result
14250 - MINOR: stats: fix typo in help messages
14251 - MINOR: stats: show stat resolvers missing in the help message
14252 - BUG/MINOR: dns: fix DNS header definition
14253 - BUG/MEDIUM: dns: fix alignment issue when building DNS queries
14254 - CLEANUP: don't ignore scripts in .gitignore
14255 - BUILD: add a few release and backport scripts in scripts/
14256
Willy Tarreau8234f6d2016-03-14 00:10:05 +0100142572016/03/14 : 1.7-dev2
14258 - DOC: lua: fix lua API
14259 - DOC: mailers: typo in 'hostname' description
14260 - DOC: compression: missing mention of libslz for compression algorithm
14261 - BUILD/MINOR: regex: missing header
14262 - BUG/MINOR: stream: bad return code
14263 - DOC: lua: fix somme errors and add implicit types
14264 - MINOR: lua: add set/get priv for applets
14265 - BUG/MINOR: http: fix several off-by-one errors in the url_param parser
14266 - BUG/MINOR: http: Be sure to process all the data received from a server
14267 - MINOR: filters/http: Use a wrapper function instead of stream_int_retnclose
14268 - BUG/MINOR: chunk: make chunk_dup() always check and set dst->size
14269 - DOC: ssl: fixed some formatting errors in crt tag
14270 - MINOR: chunks: ensure that chunk_strcpy() adds a trailing zero
14271 - MINOR: chunks: add chunk_strcat() and chunk_newstr()
14272 - MINOR: chunk: make chunk_initstr() take a const string
14273 - MEDIUM: tools: add csv_enc_append() to preserve the original chunk
14274 - MINOR: tools: make csv_enc_append() always start at the first byte of the chunk
14275 - MINOR: lru: new function to delete <nb> least recently used keys
14276 - DOC: add Ben Shillito as the maintainer of 51d
14277 - BUG/MINOR: 51d: Ensures a unique domain for each configuration
14278 - BUG/MINOR: 51d: Aligns Pattern cache implementation with HAProxy best practices.
14279 - BUG/MINOR: 51d: Releases workset back to pool.
14280 - BUG/MINOR: 51d: Aligned const pointers to changes in 51Degrees.
14281 - CLEANUP: 51d: Aligned if statements with HAProxy best practices and removed casts from malloc.
14282 - MINOR: rename master process name in -Ds (systemd mode)
14283 - DOC: fix a few spelling mistakes
14284 - DOC: fix "workaround" spelling
14285 - BUG/MINOR: examples: Fixing haproxy.spec to remove references to .cfg files
14286 - MINOR: fix the return type for dns_response_get_query_id() function
14287 - MINOR: server state: missing LF (\n) on error message printed when parsing server state file
14288 - BUG/MEDIUM: dns: no DNS resolution happens if no ports provided to the nameserver
14289 - BUG/MAJOR: servers state: server port is erased when dns resolution is enabled on a server
14290 - BUG/MEDIUM: servers state: server port is used uninitialized
14291 - BUG/MEDIUM: config: Adding validation to stick-table expire value.
14292 - BUG/MEDIUM: sample: http_date() doesn't provide the right day of the week
14293 - BUG/MEDIUM: channel: fix miscalculation of available buffer space.
14294 - MEDIUM: pools: add a new flag to avoid rounding pool size up
14295 - BUG/MEDIUM: buffers: do not round up buffer size during allocation
14296 - BUG/MINOR: stream: don't force retries if the server is DOWN
14297 - BUG/MINOR: counters: make the sc-inc-gpc0 and sc-set-gpt0 touch the table
14298 - MINOR: unix: don't mention free ports on EAGAIN
14299 - BUG/CLEANUP: CLI: report the proper field states in "show sess"
14300 - MINOR: stats: send content-length with the redirect to allow keep-alive
14301 - BUG: stream_interface: Reuse connection even if the output channel is empty
14302 - DOC: remove old tunnel mode assumptions
14303 - BUG/MAJOR: http-reuse: fix risk of orphaned connections
14304 - BUG/MEDIUM: http-reuse: do not share private connections across backends
14305 - BUG/MINOR: ssl: Be sure to use unique serial for regenerated certificates
14306 - BUG/MINOR: stats: fix missing comma in stats on agent drain
14307 - MAJOR: filters: Add filters support
14308 - MINOR: filters: Do not reset stream analyzers if the client is gone
14309 - REORG: filters: Prepare creation of the HTTP compression filter
14310 - MAJOR: filters/http: Rewrite the HTTP compression as a filter
14311 - MEDIUM: filters: Use macros to call filters callbacks to speed-up processing
14312 - MEDIUM: filters: remove http_start_chunk, http_last_chunk and http_chunk_end
14313 - MEDIUM: filters: Replace filter_http_headers callback by an analyzer
14314 - MEDIUM: filters/http: Move body parsing of HTTP messages in dedicated functions
14315 - MINOR: filters: Add stream_filters structure to hide filters info
14316 - MAJOR: filters: Require explicit registration to filter HTTP body and TCP data
14317 - MINOR: filters: Remove unused or useless stuff and do small optimizations
14318 - MEDIUM: filters: Optimize the HTTP compression for chunk encoded response
14319 - MINOR: filters/http: Slightly update the parsing of chunks
14320 - MINOR: filters/http: Forward remaining data when a channel has no "data" filters
14321 - MINOR: filters: Add an filter example
14322 - MINOR: filters: Extract proxy stuff from the struct filter
14323 - MINOR: map: Add regex matching replacement
14324 - BUG/MINOR: lua: unsafe initialization
14325 - DOC: lua: fix somme errors
14326 - MINOR: lua: file dedicated to unsafe functions
14327 - MINOR: lua: add "now" time function
14328 - MINOR: standard: add RFC HTTP date parser
14329 - MINOR: lua: Add date functions
14330 - MINOR: lua: move common function
14331 - MINOR: lua: merge function
14332 - MINOR: lua: Add concat class
14333 - MINOR: standard: add function "escape_chunk"
14334 - MEDIUM: log: add a new log format flag "E"
14335 - DOC: add server name at rate-limit sessions example
14336 - BUG/MEDIUM: ssl: fix off-by-one in ALPN list allocation
14337 - BUG/MEDIUM: ssl: fix off-by-one in NPN list allocation
14338 - DOC: LUA: fix some typos and syntax errors
14339 - MINOR: cli: add a new "show env" command
14340 - MEDIUM: config: allow to manipulate environment variables in the global section
14341 - MEDIUM: cfgparse: reject incorrect 'timeout retry' keyword spelling in resolvers
14342 - MINOR: mailers: increase default timeout to 10 seconds
14343 - MINOR: mailers: use <CRLF> for all line endings
14344 - BUG/MAJOR: lua: segfault using Concat object
14345 - DOC: lua: copyrights
14346 - MINOR: common: mask conversion
14347 - MEDIUM: dns: extract options
14348 - MEDIUM: dns: add a "resolve-net" option which allow to prefer an ip in a network
14349 - MINOR: mailers: make it possible to configure the connection timeout
14350 - BUG/MAJOR: lua: applets can't sleep.
14351 - BUG/MINOR: server: some prototypes are renamed
14352 - BUG/MINOR: lua: Useless copy
14353 - BUG/MEDIUM: stats: stats bind-process doesn't propagate the process mask correctly
14354 - BUG/MINOR: server: fix the format of the warning on address change
14355 - CLEANUP: server: add "const" to some message strings
14356 - MINOR: server: generalize the "updater" source
14357 - BUG/MEDIUM: chunks: always reject negative-length chunks
14358 - BUG/MINOR: systemd: ensure we don't miss signals
14359 - BUG/MINOR: systemd: report the correct signal in debug message output
14360 - BUG/MINOR: systemd: propagate the correct signal to haproxy
14361 - MINOR: systemd: ensure a reload doesn't mask a stop
14362 - BUG/MEDIUM: cfgparse: wrong argument offset after parsing server "sni" keyword
14363 - CLEANUP: stats: Avoid computation with uninitialized bits.
14364 - CLEANUP: pattern: Ignore unknown samples in pat_match_ip().
14365 - CLEANUP: map: Avoid memory leak in out-of-memory condition.
14366 - BUG/MINOR: tcpcheck: fix incorrect list usage resulting in failure to load certain configs
14367 - BUG/MAJOR: samples: check smp->strm before using it
14368 - MINOR: sample: add a new helper to initialize the owner of a sample
14369 - MINOR: sample: always set a new sample's owner before evaluating it
14370 - BUG/MAJOR: vars: always retrieve the stream and session from the sample
14371 - CLEANUP: payload: remove useless and confusing nullity checks for channel buffer
14372 - BUG/MINOR: ssl: fix usage of the various sample fetch functions
14373 - MINOR: stats: create fields types suitable for all CSV output data
14374 - MINOR: stats: add all the "show info" fields in a table
14375 - MEDIUM: stats: fill all the show info elements prior to displaying them
14376 - MINOR: stats: add a function to emit fields into a chunk
14377 - MINOR: stats: add stats_dump_info_fields() to dump one field per line
14378 - MEDIUM: stats: make use of stats_dump_info_fields() for "show info"
14379 - MINOR: stats: add a declaration of all stats fields
14380 - MINOR: stats: don't hard-code the CSV fields list anymore
14381 - MINOR: stats: create stats fields storage and CSV dump function
14382 - MEDIUM: stats: convert stats_dump_fe_stats() to use stats_dump_fields_csv()
14383 - MEDIUM: stats: make stats_dump_fe_stats() use stats fields for HTML dump
14384 - MEDIUM: stats: convert stats_dump_li_stats() to use stats_dump_fields_csv()
14385 - MEDIUM: stats: make stats_dump_li_stats() use stats fields for HTML dump
14386 - MEDIUM: stats: convert stats_dump_be_stats() to use stats_dump_fields_csv()
14387 - MEDIUM: stats: make stats_dump_be_stats() use stats fields for HTML dump
14388 - MEDIUM: stats: convert stats_dump_sv_stats() to use stats_dump_fields_csv()
14389 - MEDIUM: stats: make stats_dump_sv_stats() use the stats field for HTML
14390 - MEDIUM: stats: move the server state coloring logic to the server dump function
14391 - MINOR: stats: do not use srv->admin & STATS_ADMF_MAINT in HTML dumps
14392 - MINOR: stats: do not check srv->state for SRV_ST_STOPPED in HTML dumps
14393 - MINOR: stats: make CSV report server check status only when enabled
14394 - MINOR: stats: only report backend's down time if it has servers
14395 - MINOR: stats: prepend '*' in front of the check status when in progress
14396 - MINOR: stats: make HTML stats dump rely on the table for the check status
14397 - MINOR: stats: add agent_status, agent_code, agent_duration to output
14398 - MINOR: stats: add check_desc and agent_desc to the output fields
14399 - MINOR: stats: add check and agent's health values in the output
14400 - MEDIUM: stats: make the HTML server state dump use the CSV states
14401 - MEDIUM: stats: only report observe errors when observe is set
14402 - MEDIUM: stats: expose the same flags for CLI and HTTP accesses
14403 - MEDIUM: stats: report server's address in the CSV output
14404 - MEDIUM: stats: report the cookie value in the server & backend CSV dumps
14405 - MEDIUM: stats: compute the color code only in the HTML form
14406 - MEDIUM: stats: report the listeners' address in the CSV output
14407 - MEDIUM: stats: make it possible to report the WAITING state for listeners
14408 - REORG: stats: dump the frontend's HTML stats via a generic function
14409 - REORG: stats: dump the socket stats via the generic function
14410 - REORG: stats: dump the server stats via the generic function
14411 - REORG: stats: dump the backend stats via the generic function
14412 - MEDIUM: stats: add a new "mode" column to report the proxy mode
14413 - MINOR: stats: report the load balancing algorithm in CSV output
14414 - MINOR: stats: add 3 fields to report the frontend-specific connection stats
14415 - MINOR: stats: report number of intercepted requests for frontend and backends
14416 - MINOR: stats: introduce stats_dump_one_line() to dump one stats line
14417 - CLEANUP: stats: make stats_dump_fields_html() not rely on proxy anymore
14418 - MINOR: stats: add ST_SHOWADMIN to pass the admin info in the regular flags
14419 - MINOR: stats: make stats_dump_fields_html() not use &trash by default
14420 - MINOR: stats: add functions to emit typed fields into a chunk
14421 - MEDIUM: stats: support "show info typed" on the CLI
14422 - MEDIUM: stats: implement a typed output format for stats
14423 - DOC: document the "show info typed" and "show stat typed" output formats
14424 - MINOR: cfgparse: warn when uid parameter is not a number
14425 - MINOR: cfgparse: warn when gid parameter is not a number
14426 - BUG/MINOR: standard: Avoid free of non-allocated pointer
14427 - BUG/MINOR: pattern: Avoid memory leak on out-of-memory condition
14428 - CLEANUP: http: fix a build warning introduced by a recent fix
14429 - BUG/MINOR: log: GMT offset not updated when entering/leaving DST
14430
Willy Tarreaucb928252015-12-20 23:33:18 +0100144312015/12/20 : 1.7-dev1
14432 - DOC: specify that stats socket doc (section 9.2) is in management
14433 - BUILD: install only relevant and existing documentation
14434 - CLEANUP: don't ignore debian/ directory if present
14435 - BUG/MINOR: dns: parsing error of some DNS response
14436 - BUG/MEDIUM: namespaces: don't fail if no namespace is used
14437 - BUG/MAJOR: ssl: free the generated SSL_CTX if the LRU cache is disabled
14438 - MEDIUM: dns: Don't use the ANY query type
14439 - BUILD: ssl: fix build error introduced in commit 7969a3 with OpenSSL < 1.0.0
14440 - DOC: fix a typo for a "deviceatlas" keyword
14441 - FIX: small typo in an example using the "Referer" header
14442 - MINOR: cli: ability to set per-server maxconn
14443 - DEBUG/MINOR: memory: add a build option to disable memory pools sharing
14444 - DEBUG/MEDIUM: memory: optionally protect free data in pools
14445 - DEBUG/MEDIUM: memory: add optional control pool memory operations
14446 - MEDIUM: memory: add accounting for failed allocations
14447 - BUG/MEDIUM: config: count memory limits on 64 bits, not 32
14448 - BUG/MAJOR: dns: first DNS response packet not matching queried hostname may lead to a loop
14449 - BUG/MINOR: dns: unable to parse CNAMEs response
14450 - BUG/MINOR: examples/haproxy.init: missing brace in quiet_check()
14451 - DOC: deviceatlas: more example use cases.
14452 - MINOR: config: allow IPv6 bracketed literals
14453 - BUG/BUILD: replace haproxy-systemd-wrapper with $(EXTRA) in install-bin.
14454 - BUILD: add Haiku as supported target.
14455 - BUG/MAJOR: http: don't requeue an idle connection that is already queued
14456 - DOC: typo on capture.res.hdr and capture.req.hdr
14457 - BUG/MINOR: dns: check for duplicate nameserver id in a resolvers section was missing
14458 - CLEANUP: use direction names in place of numeric values
14459 - BUG/MEDIUM: lua: sample fetches based on response doesn't work
14460 - MINOR: check: add agent-send server parameter
14461 - BUG/MINOR: http rule: http capture 'id' rule points to a non existing id
14462 - BUG/MINOR: server: check return value of fgets() in apply_server_state()
14463 - BUG/MINOR: acl: don't use record layer in req_ssl_ver
14464 - BUILD: freebsd: double declaration
14465 - BUG/MEDIUM: lua: clean output buffer
14466 - BUILD: check for libressl to be able to build against it
14467 - DOC: lua-api/index.rst small example fixes, spelling correction.
14468 - DOC: lua: architecture and first steps
14469 - DOC: relation between timeout http-request and option http-buffer-request
14470 - BUILD: Make deviceatlas require PCRE
14471 - BUG: http: do not abort keep-alive connections on server timeout
14472 - BUG/MEDIUM: http: switch the request channel to no-delay once done.
14473 - BUG/MINOR: lua: don't force-sslv3 LUA's SSL socket
14474 - BUILD/MINOR: http: proto_http.h needs sample.h
14475 - BUG/MEDIUM: http: don't enable auto-close on the response side
14476 - BUG/MEDIUM: stream: fix half-closed timeout handling
14477 - CLEANUP: compression: don't allocate DEFAULT_MAXZLIBMEM without USE_ZLIB
14478 - BUG/MEDIUM: cli: changing compression rate-limiting must require admin level
14479 - BUG/MEDIUM: sample: urlp can't match an empty value
14480 - BUILD: dumpstats: silencing warning for printf format specifier / time_t
14481 - CLEANUP: proxy: calloc call inverted arguments
14482 - MINOR: da: silent logging by default and displaying DeviceAtlas support if built.
14483 - BUG/MEDIUM: da: stop DeviceAtlas processing in the convertor if there is no input.
14484 - DOC: Edited 51Degrees section of README/
14485 - BUG/MEDIUM: checks: email-alert not working when declared in defaults
14486 - BUG/MINOR: checks: email-alert causes a segfault when an unknown mailers section is configured
14487 - BUG/MINOR: checks: typo in an email-alert error message
14488 - BUG/MINOR: tcpcheck: conf parsing error when no port configured on server and last rule is a CONNECT with no port
14489 - BUG/MINOR: tcpcheck: conf parsing error when no port configured on server and first rule(s) is (are) COMMENT
14490 - BUG/MEDIUM: http: fix http-reuse when frontend and backend differ
14491 - DOC: prefer using http-request/response over reqXXX/rspXXX directives
14492 - CLEANUP: haproxy: using _GNU_SOURCE instead of __USE_GNU macro.
14493 - MINOR: ssl: Added cert_key_and_chain struct
14494 - MEDIUM: ssl: Added support for creating SSL_CTX with multiple certs
14495 - MINOR: ssl: Added multi cert support for crt-list config keyword
14496 - MEDIUM: ssl: Added multi cert support for loading crt directories
14497 - MEDIUM: ssl: Added support for Multi-Cert OCSP Stapling
14498 - BUILD: ssl: set SSL_SOCK_NUM_KEYTYPES with openssl < 1.0.2
14499 - MINOR: config: make tune.recv_enough configurable
14500 - BUG/MEDIUM: config: properly adjust maxconn with nbproc when memmax is forced
14501 - DOC: ssl: Adding docs for Multi-Cert bundling
14502 - BUG/MEDIUM: peers: table entries learned from a remote are pushed to others after a random delay.
14503 - BUG/MEDIUM: peers: old stick table updates could be repushed.
14504 - MINOR: lua: service/applet can have access to the HTTP headers when a POST is received
14505 - REORG/MINOR: lua: convert boolean "int" to bitfield
14506 - BUG/MEDIUM: lua: Lua applets must not fetch samples using http_txn
14507 - BUG/MINOR: lua: Lua applets must not use http_txn
14508 - BUG/MEDIUM: lua: Forbid HTTP applets from being called from tcp rulesets
14509 - BUG/MAJOR: lua: Do not force the HTTP analysers in use-services
14510 - CLEANUP: lua: bad error messages
14511 - CONTRIB: initiate a debugging suite to make debugging easier
14512
Willy Tarreau991b4782015-10-13 21:48:10 +0200145132015/10/13 : 1.7-dev0
14514 - exact copy of 1.6.0
14515
Willy Tarreau844028b2015-10-13 18:52:22 +0200145162015/10/13 : 1.6.0
14517 - BUG/MINOR: Handle interactive mode in cli handler
14518 - DOC: global section missing parameters
14519 - DOC: backend section missing parameters
14520 - DOC: stats paramaters available in frontend
14521 - MINOR: lru: do not allocate useless memory in lru64_lookup
14522 - BUG/MINOR: http: Add OPTIONS in supported http methods (found by find_http_meth)
14523 - BUG/MINOR: ssl: fix management of the cache where forged certificates are stored
14524 - MINOR: ssl: Release Servers SSL context when HAProxy is shut down
14525 - MINOR: ssl: Read the file used to generate certificates in any order
14526 - MINOR: ssl: Add support for EC for the CA used to sign generated certificates
14527 - MINOR: ssl: Add callbacks to set DH/ECDH params for generated certificates
14528 - BUG/MEDIUM: logs: fix time zone offset format in RFC5424
14529 - BUILD: Fix the build on OSX (htonll/ntohll)
14530 - BUILD: enable build on Linux/s390x
14531 - BUG/MEDIUM: lua: direction test failed
14532 - MINOR: lua: fix a spelling error in some error messages
14533 - CLEANUP: cli: ensure we can never double-free error messages
14534 - BUG/MEDIUM: lua: force server-close mode on Lua services
14535 - MEDIUM: init: support more command line arguments after pid list
14536 - MEDIUM: init: support a list of files on the command line
14537 - MINOR: debug: enable memory poisonning to use byte 0
14538 - BUILD: ssl: fix build error introduced by recent commit
14539 - BUG/MINOR: config: make the stats socket pass the correct proxy to the parsers
14540 - MEDIUM: server: implement TCP_USER_TIMEOUT on the server
14541 - DOC: mention the "namespace" options for bind and server lines
14542 - DOC: add the "management" documentation
14543 - DOC: move the stats socket documentation from config to management
14544 - MINOR: examples: update haproxy.spec to mention new docs
14545 - DOC: mention management.txt in README
14546 - DOC: remove haproxy-{en,fr}.txt
14547 - BUILD: properly report when USE_ZLIB and USE_SLZ are used together
14548 - MINOR: init: report use of libslz instead of "no compression"
14549 - CLEANUP: examples: remove some obsolete and confusing files
14550 - CLEANUP: examples: remove obsolete configuration file samples
14551 - CLEANUP: examples: fix the example file content-sw-sample.cfg
14552 - CLEANUP: examples: update sample file option-http_proxy.cfg
14553 - CLEANUP: examples: update sample file ssl.cfg
14554 - CLEANUP: tests: move a test file from examples/ to tests/
14555 - CLEANUP: examples: shut up warnings in transparent proxy example
14556 - CLEANUP: tests: removed completely obsolete test files
14557 - DOC: update ROADMAP to remove what was done in 1.6
14558 - BUG/MEDIUM: pattern: fixup use_after_free in the pat_ref_delete_by_id
14559
Willy Tarreau8c1ad712015-10-06 12:13:56 +0200145602015/10/06 : 1.6-dev7
14561 - MINOR: cli: Dump all resolvers stats if no resolver section is given
14562 - BUG: config: external-check command validation is checking for incorrect arguments.
14563 - DOC: documentation format cleanups
14564 - DOC: lua: few typos.
14565 - BUG/MEDIUM: str2ip: make getaddrinfo() consider local address selection policy
14566 - BUG/MEDIUM: logs: segfault writing to log from Lua
14567 - DOC: fix lua use-service example
14568 - MINOR: payload: add support for tls session ticket ext
14569 - MINOR: lua: remove the run flag
14570 - MEDIUM: lua: change the timeout execution
14571 - MINOR: lua: rename the tune.lua.applet-timeout
14572 - DOC: lua: update Lua doc
14573 - DOC: lua: update doc according with the last Lua changes
14574 - MINOR: http/tcp: fill the avalaible actions
14575 - DOC: reorder misplaced res.ssl_hello_type in the doc
14576 - BUG/MINOR: tcp: make silent-drop always force a TCP reset
14577 - CLEANUP: tcp: silent-drop: only drain the connection when quick-ack is disabled
14578 - BUILD: tcp: use IPPROTO_IP when SOL_IP is not available
14579 - BUILD: server: fix build warnings introduced by load-server-state
14580 - BUG/MEDIUM: server: fix misuse of format string in load-server-state's warnings
14581
Willy Tarreaue7ae6562015-09-28 23:46:27 +0200145822015/09/28 : 1.6-dev6
14583 - BUG/MAJOR: can't enable a server through the stat socket
14584 - MINOR: server: Macro definition for server-state
14585 - MINOR: cli: new stats socket command: show servers state
14586 - DOC: stats socket command: show servers state
14587 - MINOR: config: new global directive server-state-base
14588 - DOC: global directive server-state-base
14589 - MINOR: config: new global section directive: server-state-file
14590 - DOC: new global directive: server-state-file
14591 - MINOR: config: new backend directives: load-server-state-from-file and server-state-file-name
14592 - DOC: load-server-state-from-file
14593 - MINOR: init: server state loaded from file
14594 - MINOR: server: startup slowstart task when using seamless reload of HAProxy
14595 - MINOR: cli: new stats socket command: show backend
14596 - DOC: servers state seamless reload example
14597 - BUG: dns: can't connect UDP socket on FreeBSD
14598 - MINOR: cfgparse: New function cfg_unregister_sections()
14599 - MINOR: chunk: New function free_trash_buffers()
14600 - BUG/MEDIUM: main: Freeing a bunch of static pointers
14601 - MINOR: proto_http: Externalisation of previously internal functions
14602 - MINOR: global: Few new struct fields for da module
14603 - MAJOR: da: Update of the DeviceAtlas API module
14604 - DOC: DeviceAtlas new keywords
14605 - DOC: README: DeviceAtlas sample configuration updates
14606 - MEDIUM: log: replace sendto() with sendmsg() in __send_log()
14607 - MEDIUM: log: use a separate buffer for the header and for the message
14608 - MEDIUM: logs: remove the hostname, tag and pid part from the logheader
14609 - MEDIUM: logs: add support for RFC5424 header format per logger
14610 - MEDIUM: logs: add a new RFC5424 log-format for the structured-data
14611 - DOC: mention support for the RFC5424 syslog message format
14612 - MEDIUM: logs: have global.log_send_hostname not contain the trailing space
14613 - MEDIUM: logs: pass the trailing "\n" as an iovec
14614 - BUG/MEDIUM: peers: some table updates are randomly not pushed.
14615 - BUG/MEDIUM: peers: same table updates re-pushed after a re-connect
14616 - BUG/MINOR: fct peer_prepare_ackmsg should not use trash.
14617 - MINOR: http: made CHECK_HTTP_MESSAGE_FIRST accessible to other functions
14618 - MINOR: global: Added new fields for 51Degrees device detection
14619 - DOC: Added more explanation for 51Degrees V3.2
14620 - BUILD: Changed 51Degrees option to support V3.2
14621 - MAJOR: 51d: Upgraded to support 51Degrees V3.2 and new features
14622 - MINOR: 51d: Improved string handling for LRU cache
14623 - DOC: add references to rise/fall for the fastinter explanation
14624 - MINOR: support cpu-map feature through the compile option USE_CPU_AFFINITY on FreeBSD
14625 - BUG/MAJOR: lua: potential unexpected aborts()
14626 - BUG/MINOR: lua: breaks the log message if his size exceed one buffer
14627 - MINOR: action: add private configuration
14628 - MINOR: action: add reference to the original keywork matched for the called parser.
14629 - MINOR: lua: change actions registration
14630 - MEDIUM: proto_http: smp_prefetch_http initialize txn
14631 - MINOR: channel: rename function chn_sess to chn_strm
14632 - CLEANUP: lua: align defines
14633 - MINOR: http: export http_get_path() function
14634 - MINOR: http: export the get_reason() function
14635 - MINOR: http: export function http_msg_analyzer()
14636 - MINOR: http: split initialization
14637 - MINOR: lua: reset pointer after use
14638 - MINOR: lua: identify userdata objects
14639 - MEDIUM: lua: use the function lua_rawset in place of lua_settable
14640 - BUG/MAJOR: lua: segfault after the channel data is modified by some Lua action.
14641 - CLEANUP: lua: use calloc in place of malloc
14642 - BUG/MEDIUM: lua: longjmp function must be unregistered
14643 - BUG/MEDIUM: lua: forces a garbage collection
14644 - BUG/MEDIUM: lua: wakeup task on bad conditions
14645 - MINOR: standard: avoid DNS resolution from the function str2sa_range()
14646 - MINOR: lua: extend socket address to support non-IP families
14647 - MINOR: lua/applet: the cosocket applet should use appctx_wakeup in place of task_wakeup
14648 - BUG/MEDIUM: lua: socket destroy before reading pending data
14649 - MEDIUM: lua: change the GC policy
14650 - OPTIM/MEDIUM: lua: executes the garbage collector only when using cosocket
14651 - BUG/MEDIUM: lua: don't reset undesired flags in hlua_ctx_resume
14652 - MINOR: applet: add init function
14653 - MINOR: applet: add an execution timeout
14654 - MINOR: stream/applet: add use-service action
14655 - MINOR: lua: add AppletTCP class and service
14656 - MINOR: lua: add AppletHTTP class and service
14657 - DOC: lua: some documentation update
14658 - DOC: add the documentation about internal circular lists
14659 - DOC: add a CONTRIBUTING file
14660 - DOC: add a MAINTAINERS file
14661 - BUG/MAJOR: peers: fix a crash when stopping peers on unbound processes
14662 - DOC: update coding-style to reference checkpatch.pl
14663 - BUG/MEDIUM: stick-tables: fix double-decrement of tracked entries
14664 - BUG/MINOR: args: add name for ARGT_VAR
14665 - DOC: add more entries to MAINTAINERS
14666 - DOC: add more entries to MAINTAINERS
14667 - CLEANUP: stream-int: remove obsolete function si_applet_call()
14668 - BUG/MAJOR: cli: do not dereference strm_li()->proto->name
14669 - BUG/MEDIUM: http: do not dereference strm_li(stream)
14670 - BUG/MEDIUM: proxy: do not dereference strm_li(stream)
14671 - BUG/MEDIUM: stream: do not dereference strm_li(stream)
14672 - MINOR: stream-int: use si_release_endpoint() to close idle conns
14673 - BUG/MEDIUM: payload: make req.payload and payload_lv aware of dynamic buffers
14674 - BUG/MEDIUM: acl: always accept match "found"
14675 - MINOR: applet: rename applet_runq to applet_active_queue
14676 - BUG/MAJOR: applet: use a separate run queue to maintain list integrity
14677 - MEDIUM: stream-int: split stream_int_update_conn() into si- and conn-specific parts
14678 - MINOR: stream-int: implement a new stream_int_update() function
14679 - MEDIUM: stream-int: factor out the stream update functions
14680 - MEDIUM: stream-int: call stream_int_update() from si_update()
14681 - MINOR: stream-int: export stream_int_update_*
14682 - MINOR: stream-int: move the applet_pause call out of the stream updates
14683 - MEDIUM: stream-int: clean up the conditions to enable reading in si_conn_wake_cb
14684 - MINOR: stream-int: implement the stream_int_notify() function
14685 - MEDIUM: stream-int: use the same stream notification function for applets and conns
14686 - MEDIUM: stream-int: completely remove stream_int_update_embedded()
14687 - MINOR: stream-int: rename si_applet_done() to si_applet_wake_cb()
14688 - BUG/MEDIUM: applet: fix reporting of broken write situation
14689 - BUG/MINOR: stats: do not call cli_release_handler 3 times
14690 - BUG/MEDIUM: cli: properly handle closed output
14691 - MINOR: cli: do not call the release handler on internal error.
14692 - BUG/MEDIUM: stream-int: avoid double-call to applet->release
14693 - DEBUG: add p_malloc() to return a poisonned memory area
14694 - CLEANUP: lua: remove unneeded memset(0) after calloc()
14695 - MINOR: lua: use the proper applet wakeup mechanism
14696 - BUG/MEDIUM: lua: better fix for the protocol check
14697 - BUG/MEDIUM: lua: properly set the target on the connection
14698 - MEDIUM: actions: pass a new "flags" argument to custom actions
14699 - MEDIUM: actions: add new flag ACT_FLAG_FINAL to notify about last call
14700 - MEDIUM: http: pass ACT_FLAG_FINAL to custom actions
14701 - MEDIUM: lua: only allow actions to yield if not in a final call
14702 - DOC: clarify how to make use of abstract sockets in socat
14703 - CLEANUP: config: make the errorloc/errorfile messages less confusing
14704 - MEDIUM: action: add a new flag ACT_FLAG_FIRST
14705 - BUG/MINOR: config: check that tune.bufsize is always positive
14706 - MEDIUM: config: set tune.maxrewrite to 1024 by default
14707 - DOC: add David Carlier as maintainer of da.c
14708 - DOC: fix some broken unexpected unicode chars in the Lua doc.
14709 - BUG/MEDIUM: proxy: ignore stopped peers
14710 - BUG/MEDIUM: proxy: do not wake stopped proxies' tasks during soft_stop()
14711 - MEDIUM: init: completely deallocate unused peers
14712 - BUG/MEDIUM: tcp: fix inverted condition to call custom actions
14713 - DOC: remove outdated actions lists on tcp-request/response
14714 - MEDIUM: tcp: add new tcp action "silent-drop"
14715 - DOC: add URLs to optional libraries in the README
14716
Willy Tarreaua02e8a62015-09-14 12:23:10 +0200147172015/09/14 : 1.6-dev5
14718 - MINOR: dns: dns_resolution structure update: time_t to unsigned int
14719 - BUG/MEDIUM: dns: DNS resolution doesn't start
14720 - BUG/MAJOR: dns: dns client resolution infinite loop
14721 - MINOR: dns: coding style update
14722 - MINOR: dns: new bitmasks to use against DNS flags
14723 - MINOR: dns: dns_nameserver structure update: new counter for truncated response
14724 - MINOR: dns: New DNS response analysis code: DNS_RESP_TRUNCATED
14725 - MEDIUM: dns: handling of truncated response
14726 - MINOR: DNS client query type failover management
14727 - MINOR: dns: no expected DNS record type found
14728 - MINOR: dns: new flag to report that no IP can be found in a DNS response packet
14729 - BUG/MINOR: DNS request retry counter used for retry only
14730 - DOC: DNS documentation updated
14731 - MEDIUM: actions: remove ACTION_STOP
14732 - BUG/MEDIUM: lua: outgoing connection was broken since 1.6-dev2 (bis)
14733 - BUG/MINOR: lua: last log character truncated.
14734 - CLEANUP: typo: bad indent
14735 - CLEANUP: actions: missplaced includes
14736 - MINOR: build: missing header
14737 - CLEANUP: lua: Merge log functions
14738 - BUG/MAJOR: http: don't manipulate the server connection if it's killed
14739 - BUG/MINOR: http: remove stupid HTTP_METH_NONE entry
14740 - BUG/MAJOR: http: don't call http_send_name_header() after an error
14741 - MEDIUM: tools: make str2sa_range() optionally return the FQDN
14742 - BUG/MINOR: tools: make str2sa_range() report unresolvable addresses
14743 - BUG/MEDIUM: dns: use the correct server hostname when resolving
14744
Willy Tarreau61d301f2015-08-30 00:17:17 +0200147452015/08/30 : 1.6-dev4
14746 - MINOR: log: Add log-format variable %HQ, to log HTTP query strings
14747 - DOC: typo in 'redirect', 302 code meaning
14748 - DOC: typos in tcp-check expect examples
14749 - DOC: resolve-prefer default value and default-server update
14750 - MINOR: DNS counters: increment valid counter
14751 - BUG/MEDIUM: DNS resolution response parsing broken
14752 - MINOR: server: add new SRV_ADMF_CMAINT flag
14753 - MINOR: server SRV_ADMF_CMAINT flag doesn't imply SRV_ADMF_FMAINT
14754 - BUG/MEDIUM: dns: wrong first time DNS resolution
14755 - BUG/MEDIUM: lua: Lua tasks fail to start.
14756 - BUILD: add USE_LUA to BUILD_OPTIONS when it's used
14757 - DOC/MINOR: fix OpenBSD versions where haproxy works
14758 - MINOR: 51d: unable to start haproxy without "51degrees-data-file"
14759 - BUG/MEDIUM: peers: fix wrong message id on stick table updates acknowledgement.
14760 - BUG/MAJOR: peers: fix current table pointer not re-initialized on session release.
14761 - BUILD: ssl: Allow building against libssl without SSLv3.
14762 - DOC: clarify some points about SSL and the proxy protocol
14763 - DOC: mention support for RFC 5077 TLS Ticket extension in starter guide
14764 - BUG/MEDIUM: mailer: DATA part must be terminated with <CRLF>.<CRLF>
14765 - DOC: match several lua configuration option names to those implemented in code
14766 - MINOR cfgparse: Correct the mailer warning text to show the right names to the user
14767 - BUG/MINOR: ssl: TLS Ticket Key rotation broken via socket command
14768 - MINOR: stream: initialize the current_rule field to NULL on stream init
14769 - BUG/MEDIUM: lua: timeout error with converters, wrapper and actions.
14770 - CLEANUP: proto_http: remove useless initialisation
14771 - CLEANUP: http/tcp actions: remove the scope member
14772 - BUG/MINOR: proto_tcp: custom action continue is ignored
14773 - MINOR: proto_tcp: add session in the action prototype
14774 - MINOR: vars: reduce the code size of some wrappers
14775 - MINOR: Move http method enum from proto_http to sample
14776 - MINOR: sample: Add ipv6 to ipv4 and sint to ipv6 casts
14777 - MINOR: sample/proto_tcp: export "smp_fetch_src"
14778 - MEDIUM: cli: rely on the map's output type instead of the sample type
14779 - BUG/MEDIUM: stream: The stream doen't inherit SC from the session
14780 - BUG/MEDIUM: vars: segfault during the configuration parsing
14781 - BUG/MEDIUM: stick-tables: refcount error after copying SC for the session to the stream
14782 - BUG/MEDIUM: lua: bad error processing
14783 - MINOR: samples: rename a struct from sample_storage to sample_data
14784 - MINOR: samples: rename some struct member from "smp" to "data"
14785 - MEDIUM: samples: Use the "struct sample_data" in the "struct sample"
14786 - MINOR: samples: extract the anonymous union and create the union sample_value
14787 - MINOR: samples: rename union from "data" to "u"
14788 - MEDIUM: 51degrees: Adapt the 51Degrees library
14789 - MINOR: samples: data assignation simplification
14790 - MEDIUM: pattern/map: Maps can returns various types
14791 - MINOR: map: The map can return IPv4 and IPv6
14792 - MEDIUM: actions: Merge (http|tcp)-(request|reponse) action structs
14793 - MINOR: actions: Remove the data opaque pointer
14794 - MINOR: lua: use the hlua_rule type in place of opaque type
14795 - MINOR: vars: use the vars types as argument in place of opaque type
14796 - MINOR: proto_http: use an "expr" type in place of generic opaque type.
14797 - MINOR: proto_http: replace generic opaque types by real used types for the actions on thr request line
14798 - MINOR: proto_http: replace generic opaque types by real used types in "http_capture"
14799 - MINOR: proto_http: replace generic opaque types by real used types in "http_capture" by id
14800 - MEDIUM: track-sc: Move the track-sc configuration storage in the union
14801 - MEDIUM: capture: Move the capture configuration storage in the union
14802 - MINOR: actions: add "from" information
14803 - MINOR: actions: remove the mark indicating the last entry in enum
14804 - MINOR: actions: Declare all the embedded actions in the same header file
14805 - MINOR: actions: change actions names
14806 - MEDIUM: actions: Add standard return code for the action API
14807 - MEDIUM: actions: Merge (http|tcp)-(request|reponse) keywords structs
14808 - MINOR: proto_tcp: proto_tcp.h is now useles
14809 - MINOR: actions: mutualise the action keyword lookup
14810 - MEDIUM: actions: Normalize the return code of the configuration parsers
14811 - MINOR: actions: Remove wrappers
14812 - MAJOR: stick-tables: use sample types in place of dedicated types
14813 - MEDIUM: stick-tables: use the sample type names
14814 - MAJOR: stick-tables: remove key storage from the key struct
14815 - MEDIUM: stick-tables: Add GPT0 in the stick tables
14816 - MINOR: stick-tables: Add GPT0 access
14817 - MINOR: stick-tables: Add GPC0 actions
14818 - BUG/MEDIUM: lua: the lua fucntion Channel:close() causes a segfault
14819 - DOC: ssl: missing LF
14820 - MINOR: lua: add core.done() function
14821 - DOC: fix function name
14822 - BUG/MINOR: lua: in some case a sample may remain undefined
14823 - DOC: fix "http_action_set_req_line()" comments
14824 - MINOR: http: Action for manipulating the returned status code.
14825 - MEDIUM: lua: turns txn:close into txn:done
14826 - BUG/MEDIUM: lua: cannot process more Lua hooks after a "done()" function call
14827 - BUILD: link with libdl if needed for Lua support
14828 - CLEANUP: backend: factor out objt_server() in connect_server()
14829 - MEDIUM: backend: don't call si_alloc_conn() when we reuse a valid connection
14830 - MEDIUM: stream-int: simplify si_alloc_conn()
14831 - MINOR: stream-int: add new function si_detach_endpoint()
14832 - MINOR: server: add a list of private idle connections
14833 - MINOR: connection: add a new list member in the connection struct
14834 - MEDIUM: stream-int: queue idle connections at the server
14835 - MINOR: stream-int: make si_idle_conn() only accept valid connections
14836 - MINOR: server: add a list of already used idle connections
14837 - MINOR: connection: add a new flag CO_FL_PRIVATE
14838 - MINOR: config: add new setting "http-reuse"
14839 - MAJOR: backend: initial work towards connection reuse
14840 - MAJOR: backend: improve the connection reuse mechanism
14841 - MEDIUM: backend: implement "http-reuse safe"
14842 - MINOR: server: add a list of safe, already reused idle connections
14843 - MEDIUM: backend: add the "http-reuse aggressive" strategy
14844 - DOC: document the new http-reuse directive
14845 - DOC: internals: document next steps for HTTP connection reuse
14846 - DOC: mention that %ms is left-padded with zeroes.
14847 - MINOR: init: indicate to check 'bind' lines when no listeners were found.
14848 - MAJOR: http: remove references to appsession
14849 - CLEANUP: config: remove appsession initialization
14850 - CLEANUP: appsession: remove appsession.c and sessionhash.c
14851 - CLEANUP: tests: remove sessionhash_test.c and test-cookie-appsess.cfg
14852 - CLEANUP: proxy: remove last references to appsession
14853 - CLEANUP: appsession: remove the last include files
14854 - DOC: remove documentation about appsession
14855 - CLEANUP: .gitignore: ignore more test files
14856 - CLEANUP: .gitignore: finally ignore everything but what is known.
14857 - MEDIUM: config: emit a warning on a frontend without listener
14858 - DOC: add doc/internals/entities-v2.txt
14859 - DOC: add doc/linux-syn-cookies.txt
14860 - DOC: add design thoughts on HTTP/2
14861 - DOC: add some thoughts on connection sharing for HTTP/2
14862 - DOC: add design thoughts on dynamic buffer allocation
14863 - BUG/MEDIUM: counters: ensure that src_{inc,clr}_gpc0 creates a missing entry
14864 - DOC: add new file intro.txt
14865 - MAJOR: tproxy: remove support for cttproxy
14866 - BUG/MEDIUM: lua: outgoing connection was broken since 1.6-dev2
14867 - DOC: lua: replace txn:close with txn:done in lua-api
14868 - DOC: intro: minor updates and fixes
14869 - DOC: intro: fix too long line.
14870 - DOC: fix example of http-request using ssl_fc_session_id
14871 - BUG/MEDIUM: lua: txn:done() still causes a segfault in TCP mode
14872 - CLEANUP: lua: fix some indent issues
14873 - BUG/MEDIUM: lua: fix a segfault in txn:done() if called twice
14874 - DOC: lua: mention than txn:close was renamed txn:done.
14875
Willy Tarreau50bdda62015-07-22 17:32:56 +0200148762015/07/22 : 1.6-dev3
14877 - CLEANUP: sample: generalize sample_fetch_string() as sample_fetch_as_type()
14878 - MEDIUM: http: Add new 'set-src' option to http-request
14879 - DOC usesrc root privileges requirments
14880 - BUG/MINOR: dns: wrong time unit for some DNS default parameters
14881 - MINOR: proxy: bit field for proxy_find_best_match diff status
14882 - MINOR: server: new server flag: SRV_F_FORCED_ID
14883 - MINOR: server: server_find functions: id, name, best_match
14884 - DOC: dns: fix chapters syntax
14885 - BUILD/MINOR: tools: rename popcount to my_popcountl
14886 - BUILD: add netbsd TARGET
14887 - MEDIUM: 51Degrees code refactoring and cleanup
14888 - MEDIUM: 51d: add LRU-based cache on User-Agent string detection
14889 - DOC: add notes about the "51degrees-cache-size" parameter
14890 - BUG/MEDIUM: 51d: possible incorrect operations on smp->data.str.str
14891 - BUG/MAJOR: connection: fix TLV offset calculation for proxy protocol v2 parsing
14892 - MINOR: Add sample fetch to detect Supported Elliptic Curves Extension
14893 - BUG/MINOR: payload: Add volatile flag to smp_fetch_req_ssl_ec_ext
14894 - BUG/MINOR: lua: type error in the arguments wrapper
14895 - CLEANUP: vars: remove unused struct
14896 - BUG/MINOR: http/sample: gmtime/localtime can fail
14897 - MINOR: standard: add 64 bits conversion functions
14898 - MAJOR: sample: converts uint and sint in 64 bits signed integer
14899 - MAJOR: arg: converts uint and sint in sint
14900 - MEDIUM: sample: switch to saturated arithmetic
14901 - MINOR: vars: returns variable content
14902 - MEDIUM: vars/sample: operators can use variables as parameter
14903 - BUG/MINOR: ssl: fix smp_fetch_ssl_fc_session_id
14904 - BUILD/MINOR: lua: fix a harmless build warning
14905 - BUILD/MINOR: stats: fix build warning due to condition always true
14906 - BUG/MAJOR: lru: fix unconditional call to free due to unexpected semi-colon
14907 - BUG/MEDIUM: logs: fix improper systematic use of quotes with a few tags
14908 - BUILD/MINOR: lua: ensure that hlua_ctx_destroy is properly defined
14909 - BUG/MEDIUM: lru: fix possible memory leak when ->free() is used
14910 - MINOR: vars: make the accounting not depend on the stream
14911 - MEDIUM: vars: move the session variables to the session, not the stream
14912 - BUG/MEDIUM: vars: do not freeze the connection when the expression cannot be fetched
14913 - BUG/MAJOR: buffers: make the buffer_slow_realign() function respect output data
14914 - BUG/MAJOR: tcp: tcp rulesets were still broken
14915 - MINOR: stats: improve compression stats reporting
14916 - MINOR: ssl: make self-generated certs also work with raw IPv6 addresses
14917 - CLEANUP: ssl: make ssl_sock_generated_cert_serial() take a const
14918 - CLEANUP: ssl: make ssl_sock_generate_certificate() use ssl_sock_generated_cert_serial()
14919 - BUG/MINOR: log: missing some ARGC_* entries in fmt_directives()
14920 - MINOR: args: add new context for servers
14921 - MINOR: stream: maintain consistence between channel_forward and HTTP forward
14922 - MINOR: ssl: provide ia function to set the SNI extension on a connection
14923 - MEDIUM: ssl: add sni support on the server lines
14924 - CLEANUP: stream: remove a useless call to si_detach()
14925 - CLEANUP: stream-int: fix a few outdated comments about stream_int_register_handler()
14926 - CLEANUP: stream-int: remove stream_int_unregister_handler() and si_detach()
14927 - MINOR: stream-int: only use si_release_endpoint() to release a connection
14928 - MINOR: standard: provide htonll() and ntohll()
14929 - CLEANUP/MINOR: dns: dns_str_to_dn_label() only needs a const char
14930 - BUG/MAJOR: dns: fix the length of the string to be copied
14931
Willy Tarreauad90f0d2015-06-17 15:53:25 +0200149322015/06/17 : 1.6-dev2
14933 - BUG/MINOR: ssl: Display correct filename in error message
14934 - MEDIUM: logs: Add HTTP request-line log format directives
14935 - BUG/MEDIUM: check: tcpcheck regression introduced by e16c1b3f
14936 - BUG/MINOR: check: fix tcpcheck error message
14937 - MINOR: use an int instead of calling tcpcheck_get_step_id
14938 - MINOR: tcpcheck_rule structure update
14939 - MINOR: include comment in tcpcheck error log
14940 - DOC: tcpcheck comment documentation
14941 - MEDIUM: server: add support for changing a server's address
14942 - MEDIUM: server: change server ip address from stats socket
14943 - MEDIUM: protocol: add minimalist UDP protocol client
14944 - MEDIUM: dns: implement a DNS resolver
14945 - MAJOR: server: add DNS-based server name resolution
14946 - DOC: server name resolution + proto DNS
14947 - MINOR: dns: add DNS statistics
14948 - MEDIUM: http: configurable http result codes for http-request deny
14949 - BUILD: Compile clean when debug options defined
14950 - MINOR: lru: Add the possibility to free data when an item is removed
14951 - MINOR: lru: Add lru64_lookup function
14952 - MEDIUM: ssl: Add options to forge SSL certificates
14953 - MINOR: ssl: Export functions to manipulate generated certificates
14954 - MEDIUM: config: add DeviceAtlas global keywords
14955 - MEDIUM: global: add the DeviceAtlas required elements to struct global
14956 - MEDIUM: sample: add the da-csv converter
14957 - MEDIUM: init: DeviceAtlas initialization
14958 - BUILD: Makefile: add options to build with DeviceAtlas
14959 - DOC: README: explain how to build with DeviceAtlas
14960 - BUG/MEDIUM: http: fix the url_param fetch
14961 - BUG/MEDIUM: init: segfault if global._51d_property_names is not initialized
14962 - MAJOR: peers: peers protocol version 2.0
14963 - MINOR: peers: avoid re-scheduling of pending stick-table's updates still not pushed.
14964 - MEDIUM: peers: re-schedule stick-table's entry for sync when data is modified.
14965 - MEDIUM: peers: support of any stick-table data-types for sync
14966 - BUG/MAJOR: sample: regression on sample cast to stick table types.
14967 - CLEANUP: deinit: remove codes for cleaning p->block_rules
14968 - DOC: Fix L4TOUT typo in documentation
14969 - DOC: set-log-level in Logging section preamble
14970 - BUG/MEDIUM: compat: fix segfault on FreeBSD
14971 - MEDIUM: check: include server address and port in the send-state header
14972 - MEDIUM: backend: Allow redispatch on retry intervals
14973 - MINOR: Add TLS ticket keys reference and use it in the listener struct
14974 - MEDIUM: Add support for updating TLS ticket keys via socket
14975 - DOC: Document new socket commands "show tls-keys" and "set ssl tls-key"
14976 - MINOR: Add sample fetch which identifies if the SSL session has been resumed
14977 - DOC: Update doc about weight, act and bck fields in the statistics
14978 - BUG/MEDIUM: ssl: fix tune.ssl.default-dh-param value being overwritten
14979 - MINOR: ssl: add a destructor to free allocated SSL ressources
14980 - MEDIUM: ssl: add the possibility to use a global DH parameters file
14981 - MEDIUM: ssl: replace standards DH groups with custom ones
14982 - MEDIUM: stats: Add enum srv_stats_state
14983 - MEDIUM: stats: Separate server state and colour in stats
14984 - MEDIUM: stats: Only report drain state in stats if server has SRV_ADMF_DRAIN set
14985 - MEDIUM: stats: Differentiate between DRAIN and DRAIN (agent)
14986 - MEDIUM: Lower priority of email alerts for log-health-checks messages
14987 - MEDIUM: Send email alerts when servers are marked as UP or enter the drain state
14988 - MEDIUM: Document when email-alerts are sent
14989 - BUG/MEDIUM: lua: bad argument number in analyser and in error message
14990 - MEDIUM: lua: automatically converts strings in proxy, tables, server and ip
14991 - BUG/MINOR: utf8: remove compilator warning
14992 - MEDIUM: map: uses HAProxy facilities to store default value
14993 - BUG/MINOR: lua: error in detection of mandatory arguments
14994 - BUG/MINOR: lua: set current proxy as default value if it is possible
14995 - BUG/MEDIUM: http: the action set-{method|path|query|uri} doesn't run.
14996 - BUG/MEDIUM: lua: undetected infinite loop
14997 - BUG/MAJOR: http: don't read past buffer's end in http_replace_value
14998 - BUG/MEDIUM: http: the function "(req|res)-replace-value" doesn't respect the HTTP syntax
14999 - MEDIUM/CLEANUP: http: rewrite and lighten http_transform_header() prototype
15000 - BUILD: lua: it miss the '-ldl' directive
15001 - MEDIUM: http: allows 'R' and 'S' in the protocol alphabet
15002 - MINOR: http: split the function http_action_set_req_line() in two parts
15003 - MINOR: http: split http_transform_header() function in two parts.
15004 - MINOR: http: export function inet_set_tos()
15005 - MINOR: lua: txn: add function set_(loglevel|tos|mark)
15006 - MINOR: lua: create and register HTTP class
15007 - DOC: lua: fix some typos
15008 - MINOR: lua: add log functions
15009 - BUG/MINOR: lua: Fix SSL initialisation
15010 - DOC: lua: some fixes
15011 - MINOR: lua: (req|res)_get_headers return more than one header value
15012 - MINOR: lua: map system integration in Lua
15013 - BUG/MEDIUM: http: functions set-{path,query,method,uri} breaks the HTTP parser
15014 - MINOR: sample: add url_dec converter
15015 - MEDIUM: sample: fill the struct sample with the session, proxy and stream pointers
15016 - MEDIUM: sample change the prototype of sample-fetches and converters functions
15017 - MINOR: sample: fill the struct sample with the options.
15018 - MEDIUM: sample: change the prototype of sample-fetches functions
15019 - MINOR: http: split the url_param in two parts
15020 - CLEANUP: http: bad indentation
15021 - MINOR: http: add body_param fetch
15022 - MEDIUM: http: url-encoded parsing function can run throught wrapped buffer
15023 - DOC: http: req.body_param documentation
15024 - MINOR: proxy: custom capture declaration
15025 - MINOR: capture: add two "capture" converters
15026 - MEDIUM: capture: Allow capture with slot identifier
15027 - MINOR: http: add array of generic pointers in http_res_rules
15028 - MEDIUM: capture: adds http-response capture
15029 - MINOR: common: escape CSV strings
15030 - MEDIUM: stats: escape some strings in the CSV dump
15031 - MINOR: tcp: add custom actions that can continue tcp-(request|response) processing
15032 - MINOR: lua: Lua tcp action are not final action
15033 - DOC: lua: schematics about lua socket organization
15034 - BUG/MINOR: debug: display (null) in place of "meth"
15035 - DOC: mention the "lua action" in documentation
15036 - MINOR: standard: add function that converts signed int to a string
15037 - BUG/MINOR: sample: wrong conversion of signed values
15038 - MEDIUM: sample: Add type any
15039 - MINOR: debug: add a special converter which display its input sample content.
15040 - MINOR: tcp: increase the opaque data array
15041 - MINOR: tcp/http/conf: extends the keyword registration options
15042 - MINOR: build: fix build dependency
15043 - MEDIUM: vars: adds support of variables
15044 - MINOR: vars: adds get and set functions
15045 - MINOR: lua: Variable access
15046 - MINOR: samples: add samples which returns constants
15047 - BUG/MINOR: vars/compil: fix some warnings
15048 - BUILD: add 51degrees options to makefile.
15049 - MINOR: global: add several 51Degrees members to global
15050 - MINOR: config: add 51Degrees config parsing.
15051 - MINOR: init: add 51Degrees initialisation code
15052 - MEDIUM: sample: add fiftyone_degrees converter.
15053 - MEDIUM: deinit: add cleanup for 51Degrees to deinit
15054 - MEDIUM: sample: add trie support to 51Degrees
15055 - DOC: add 51Degrees notes to configuration.txt.
15056 - DOC: add build indications for 51Degrees to README.
15057 - MEDIUM: cfgparse: introduce weak and strong quoting
15058 - BUG/MEDIUM: cfgparse: incorrect memmove in quotes management
15059 - MINOR: cfgparse: remove line size limitation
15060 - MEDIUM: cfgparse: expand environment variables
15061 - BUG/MINOR: cfgparse: fix typo in 'option httplog' error message
15062 - BUG/MEDIUM: cfgparse: segfault when userlist is misused
15063 - CLEANUP: cfgparse: remove reference to 'ruleset' section
15064 - MEDIUM: cfgparse: check section maximum number of arguments
15065 - MEDIUM: cfgparse: max arguments check in the global section
15066 - MEDIUM: cfgparse: check max arguments in the proxies sections
15067 - CLEANUP: stream-int: remove a redundant clearing of the linger_risk flag
15068 - MINOR: connection: make conn_sock_shutw() actually perform the shutdown() call
15069 - MINOR: stream-int: use conn_sock_shutw() to shutdown a connection
15070 - MINOR: connection: perform the call to xprt->shutw() in conn_data_shutw()
15071 - MEDIUM: stream-int: replace xprt->shutw calls with conn_data_shutw()
15072 - MINOR: checks: use conn_data_shutw_hard() instead of call via xprt
15073 - MINOR: connection: implement conn_sock_send()
15074 - MEDIUM: stream-int: make conn_si_send_proxy() use conn_sock_send()
15075 - MEDIUM: connection: make conn_drain() perform more controls
15076 - REORG: connection: move conn_drain() to connection.c and rename it
15077 - CLEANUP: stream-int: remove inclusion of fd.h that is not used anymore
15078 - MEDIUM: channel: don't always set CF_WAKE_WRITE on bi_put*
15079 - CLEANUP: lua: don't use si_ic/si_oc on known stream-ints
15080 - BUG/MEDIUM: peers: correctly configure the client timeout
15081 - MINOR: peers: centralize configuration of the peers frontend
15082 - MINOR: proxy: store the default target into the frontend's configuration
15083 - MEDIUM: stats: use frontend_accept() as the accept function
15084 - MEDIUM: peers: use frontend_accept() instead of peer_accept()
15085 - CLEANUP: listeners: remove unused timeout
15086 - MEDIUM: listener: store the default target per listener
15087 - BUILD: fix automatic inclusion of libdl.
15088 - MEDIUM: lua: implement a simple memory allocator
15089 - MEDIUM: compression: postpone buffer adjustments after compression
15090 - MEDIUM: compression: don't send leading zeroes with chunk size
15091 - BUG/MINOR: compression: consider the expansion factor in init
15092 - MINOR: http: check the algo name "identity" instead of the function pointer
15093 - CLEANUP: compression: statify all algo-specific functions
15094 - MEDIUM: compression: add a distinction between UA- and config- algorithms
15095 - MEDIUM: compression: add new "raw-deflate" compression algorithm
15096 - MEDIUM: compression: split deflate_flush() into flush and finish
15097 - CLEANUP: compression: remove unused reset functions
15098 - MAJOR: compression: integrate support for libslz
15099 - BUG/MEDIUM: http: hdr_cnt would not count any header when called without name
15100 - BUG/MAJOR: http: null-terminate the http actions keywords list
15101 - CLEANUP: lua: remove the unused hlua_sleep memory pool
15102 - BUG/MAJOR: lua: use correct object size when initializing a new converter
15103 - CLEANUP: lua: remove hard-coded sizeof() in object creations and mallocs
15104 - CLEANUP: lua: fix confusing local variable naming in hlua_txn_new()
15105 - CLEANUP: hlua: stop using variable name "s" alternately for hlua_txn and hlua_smp
15106 - CLEANUP: lua: get rid of the last "*ht" for struct hlua_txn.
15107 - CLEANUP: lua: rename last occurrences of "*s" to "*htxn" for hlua_txn
15108 - CLEANUP: lua: rename variable "sc" for struct hlua_smp
15109 - CLEANUP: lua: get rid of the last two "*hs" for hlua_smp
15110 - REORG/MAJOR: session: rename the "session" entity to "stream"
15111 - REORG/MEDIUM: stream: rename stream flags from SN_* to SF_*
15112 - MINOR: session: start to reintroduce struct session
15113 - MEDIUM: stream: allocate the session when a stream is created
15114 - MEDIUM: stream: move the listener's pointer to the session
15115 - MEDIUM: stream: move the frontend's pointer to the session
15116 - MINOR: session: add a pointer to the session's origin
15117 - MEDIUM: session: use the pointer to the origin instead of s->si[0].end
15118 - CLEANUP: sample: remove useless tests in fetch functions for l4 != NULL
15119 - MEDIUM: http: move header captures from http_txn to struct stream
15120 - MINOR: http: create a dedicated pool for http_txn
15121 - MAJOR: http: move http_txn out of struct stream
15122 - MAJOR: sample: don't pass l7 anymore to sample fetch functions
15123 - CLEANUP: lua: remove unused hlua_smp->l7 and hlua_txn->l7
15124 - MEDIUM: http: remove the now useless http_txn from {req/res} rules
15125 - CLEANUP: lua: don't pass http_txn anymore to hlua_request_act_wrapper()
15126 - MAJOR: sample: pass a pointer to the session to each sample fetch function
15127 - MINOR: stream: provide a few helpers to retrieve frontend, listener and origin
15128 - CLEANUP: stream: don't set ->target to the incoming connection anymore
15129 - MINOR: stream: move session initialization before the stream's
15130 - MINOR: session: store the session's accept date
15131 - MINOR: session: don't rely on s->logs.logwait in embryonic sessions
15132 - MINOR: session: implement session_free() and use it everywhere
15133 - MINOR: session: add stick counters to the struct session
15134 - REORG: stktable: move the stkctr_* functions from stream to sticktable
15135 - MEDIUM: streams: support looking up stkctr in the session
15136 - MEDIUM: session: update the session's stick counters upon session_free()
15137 - MEDIUM: proto_tcp: track the session's counters in the connection ruleset
15138 - MAJOR: tcp: make tcp_exec_req_rules() only rely on the session
15139 - MEDIUM: stream: don't call stream_store_counters() in kill_mini_session() nor session_accept()
15140 - MEDIUM: stream: move all the session-specific stuff of stream_accept() earlier
15141 - MAJOR: stream: don't initialize the stream anymore in stream_accept
15142 - MEDIUM: session: remove the task pointer from the session
15143 - REORG: session: move the session parts out of stream.c
15144 - MINOR: stream-int: make appctx_new() take the applet in argument
15145 - MEDIUM: peers: move the appctx initialization earlier
15146 - MINOR: session: introduce session_new()
15147 - MINOR: session: make use of session_new() when creating a new session
15148 - MINOR: peers: make use of session_new() when creating a new session
15149 - MEDIUM: peers: initialize the task before the stream
15150 - MINOR: session: set the CO_FL_CONNECTED flag on the connection once ready
15151 - CLEANUP: stream.c: do not re-attach the connection to the stream
15152 - MEDIUM: stream: isolate connection-specific initialization code
15153 - MEDIUM: stream: also accept appctx as origin in stream_accept_session()
15154 - MEDIUM: peers: make use of stream_accept_session()
15155 - MEDIUM: frontend: make ->accept only return +/-1
15156 - MEDIUM: stream: return the stream upon accept()
15157 - MEDIUM: frontend: move some stream initialisation to stream_new()
15158 - MEDIUM: frontend: move the fd-specific settings to session_accept_fd()
15159 - MEDIUM: frontend: don't restrict frontend_accept() to connections anymore
15160 - MEDIUM: frontend: move some remaining stream settings to stream_new()
15161 - CLEANUP: frontend: remove one useless local variable
15162 - MEDIUM: stream: don't rely on the session's listener anymore in stream_new()
15163 - MEDIUM: lua: make use of stream_new() to create an outgoing connection
15164 - MINOR: lua: minor cleanup in hlua_socket_new()
15165 - MINOR: lua: no need for setting timeouts / conn_retries in hlua_socket_new()
15166 - MINOR: peers: no need for setting timeouts / conn_retries in peer_session_create()
15167 - CLEANUP: stream-int: swap stream-int and appctx declarations
15168 - CLEANUP: namespaces: fix protection against multiple inclusions
15169 - MINOR: session: maintain the session count stats in the session, not the stream
15170 - MEDIUM: session: adjust the connection flags before stream_new()
15171 - MINOR: stream: pass the pointer to the origin explicitly to stream_new()
15172 - CLEANUP: poll: move the conditions for waiting out of the poll functions
15173 - BUG/MEDIUM: listener: don't report an error when resuming unbound listeners
15174 - BUG/MEDIUM: init: don't limit cpu-map to the first 32 processes only
15175 - BUG/MAJOR: tcp/http: fix current_rule assignment when restarting over a ruleset
15176 - BUG/MEDIUM: stream-int: always reset si->ops when si->end is nullified
15177 - DOC: update the entities diagrams
15178 - BUG/MEDIUM: http: properly retrieve the front connection
15179 - MINOR: applet: add a new "owner" pointer in the appctx
15180 - MEDIUM: applet: make the applet not depend on a stream interface anymore
15181 - REORG: applet: move the applet definitions out of stream_interface
15182 - CLEANUP: applet: rename struct si_applet to applet
15183 - REORG: stream-int: create si_applet_ops dedicated to applets
15184 - MEDIUM: applet: add basic support for an applet run queue
15185 - MEDIUM: applet: implement a run queue for active appctx
15186 - MEDIUM: stream-int: add a new function si_applet_done()
15187 - MAJOR: applet: now call si_applet_done() instead of si_update() in I/O handlers
15188 - MAJOR: stream: use a regular ->update for all stream interfaces
15189 - MEDIUM: dumpstats: don't unregister the applet anymore
15190 - MEDIUM: applet: centralize the call to si_applet_done() in the I/O handler
15191 - MAJOR: stream: do not allocate request buffers anymore when the left side is an applet
15192 - MINOR: stream-int: add two flags to indicate an applet's wishes regarding I/O
15193 - MEDIUM: applet: make the applets only use si_applet_{cant|want|stop}_{get|put}
15194 - MEDIUM: stream-int: pause the appctx if the task is woken up
15195 - BUG/MAJOR: tcp: only call registered actions when they're registered
15196 - BUG/MEDIUM: peers: fix applet scheduling
15197 - BUG/MEDIUM: peers: recent applet changes broke peers updates scheduling
15198 - MINOR: tools: provide an rdtsc() function for time comparisons
15199 - IMPORT: lru: import simple ebtree-based LRU functions
15200 - IMPORT: hash: import xxhash-r39
15201 - MEDIUM: pattern: add a revision to all pattern expressions
15202 - MAJOR: pattern: add LRU-based cache on pattern matching
15203 - BUG/MEDIUM: http: remove content-length from chunked messages
15204 - DOC: http: update the comments about the rules for determining transfer-length
15205 - BUG/MEDIUM: http: do not restrict parsing of transfer-encoding to HTTP/1.1
15206 - BUG/MEDIUM: http: incorrect transfer-coding in the request is a bad request
15207 - BUG/MEDIUM: http: remove content-length form responses with bad transfer-encoding
15208 - MEDIUM: http: restrict the HTTP version token to 1 digit as per RFC7230
15209 - MEDIUM: http: disable support for HTTP/0.9 by default
15210 - MEDIUM: http: add option-ignore-probes to get rid of the floods of 408
15211 - BUG/MINOR: config: clear proxy->table.peers.p for disabled proxies
15212 - MEDIUM: init: don't stop proxies in parent process when exiting
15213 - MINOR: stick-table: don't attach to peers in stopped state
15214 - MEDIUM: config: initialize stick-tables after peers, not before
15215 - MEDIUM: peers: add the ability to disable a peers section
15216 - MINOR: peers: store the pointer to the signal handler
15217 - MEDIUM: peers: unregister peers that were never started
15218 - MEDIUM: config: propagate the table's process list to the peers sections
15219 - MEDIUM: init: stop any peers section not bound to the correct process
15220 - MEDIUM: config: validate that peers sections are bound to exactly one process
15221 - MAJOR: peers: allow peers section to be used with nbproc > 1
15222 - DOC: relax the peers restriction to single-process
15223 - DOC: document option http-ignore-probes
15224 - DOC: fix the comments about the meaning of msg->sol in HTTP
15225 - BUG/MEDIUM: http: wait for the exact amount of body bytes in wait_for_request_body
15226 - BUG/MAJOR: http: prevent risk of reading past end with balance url_param
15227 - MEDIUM: stream: move HTTP request body analyser before process_common
15228 - MEDIUM: http: add a new option http-buffer-request
15229 - MEDIUM: http: provide 3 fetches for the body
15230 - DOC: update the doc on the proxy protocol
15231 - BUILD: pattern: fix build warnings introduced in the LRU cache
15232 - BUG/MEDIUM: stats: properly initialize the scope before dumping stats
15233 - CLEANUP: config: fix misleading information in error message.
15234 - MINOR: config: report the number of processes using a peers section in the error case
15235 - BUG/MEDIUM: config: properly compute the default number of processes for a proxy
15236 - MEDIUM: http: add new "capture" action for http-request
15237 - BUG/MEDIUM: http: fix the http-request capture parser
15238 - BUG/MEDIUM: http: don't forward client shutdown without NOLINGER except for tunnels
15239 - BUILD/MINOR: ssl: fix build failure introduced by recent patch
15240 - BUG/MAJOR: check: fix breakage of inverted tcp-check rules
15241 - CLEANUP: checks: fix double usage of cur / current_step in tcp-checks
15242 - BUG/MEDIUM: checks: do not dereference head of a tcp-check at the end
15243 - CLEANUP: checks: simplify the loop processing of tcp-checks
15244 - BUG/MAJOR: checks: always check for end of list before proceeding
15245 - BUG/MEDIUM: checks: do not dereference a list as a tcpcheck struct
15246 - BUG/MAJOR: checks: break infinite loops when tcp-checks starts with comment
15247 - MEDIUM: http: make url_param iterate over multiple occurrences
15248 - BUG/MEDIUM: peers: apply a random reconnection timeout
15249 - MEDIUM: config: reject invalid config with name duplicates
15250 - MEDIUM: config: reject conflicts in table names
15251 - CLEANUP: proxy: make the proxy lookup functions more user-friendly
15252 - MINOR: proxy: simply ignore duplicates in proxy name lookups
15253 - MINOR: config: don't open-code proxy name lookups
15254 - MEDIUM: config: clarify the conflicting modes detection for backend rules
15255 - CLEANUP: proxy: remove now unused function findproxy_mode()
15256 - MEDIUM: stick-table: remove the now duplicate find_stktable() function
15257 - MAJOR: config: remove the deprecated reqsetbe / reqisetbe actions
15258 - MINOR: proxy: add a new function proxy_find_by_id()
15259 - MINOR: proxy: add a flag to memorize that the proxy's ID was forced
15260 - MEDIUM: proxy: add a new proxy_find_best_match() function
15261 - CLEANUP: http: explicitly reference request in http_apply_redirect_rules()
15262 - MINOR: http: prepare support for parsing redirect actions on responses
15263 - MEDIUM: http: implement http-response redirect rules
15264 - MEDIUM: http: no need to close the request on redirect if data was parsed
15265 - BUG/MEDIUM: http: fix body processing for the stats applet
15266 - BUG/MINOR: da: fix log-level comparison to emove annoying warning
15267 - CLEANUP: global: remove one ifdef USE_DEVICEATLAS
15268 - CLEANUP: da: move the converter registration to da.c
15269 - CLEANUP: da: register the config keywords in da.c
15270 - CLEANUP: adjust the envelope name in da.h to reflect the file name
15271 - CLEANUP: da: remove ifdef USE_DEVICEATLAS from da.c
15272 - BUILD: make 51D easier to build by defaulting to 51DEGREES_SRC
15273 - BUILD: fix build warning when not using 51degrees
15274 - BUILD: make DeviceAtlas easier to build by defaulting to DEVICEATLAS_SRC
15275 - BUILD: ssl: fix recent build breakage on older SSL libs
15276
Willy Tarreau8747b6d2015-03-11 23:57:23 +0100152772015/03/11 : 1.6-dev1
15278 - CLEANUP: extract temporary $CFG to eliminate duplication
15279 - CLEANUP: extract temporary $BIN to eliminate duplication
15280 - CLEANUP: extract temporary $PIDFILE to eliminate duplication
15281 - CLEANUP: extract temporary $LOCKFILE to eliminate duplication
15282 - CLEANUP: extract quiet_check() to avoid duplication
15283 - BUG/MINOR: don't start haproxy on reload
15284 - DOC: Address issue where documentation is excluded due to a gitignore rule.
15285 - BUG/MEDIUM: systemd: set KillMode to 'mixed'
15286 - BUILD: fix "make install" to support spaces in the install dirs
15287 - BUG/MINOR: config: http-request replace-header arg typo
15288 - BUG: config: error in http-response replace-header number of arguments
15289 - DOC: missing track-sc* in http-request rules
15290 - BUILD: lua: missing ifdef related to SSL when enabling LUA
15291 - BUG/MEDIUM: regex: fix pcre_study error handling
15292 - MEDIUM: regex: Use pcre_study always when PCRE is used, regardless of JIT
15293 - BUG/MINOR: Fix search for -p argument in systemd wrapper.
15294 - MEDIUM: Improve signal handling in systemd wrapper.
15295 - DOC: fix typo in Unix Socket commands
15296 - BUG/MEDIUM: checks: external checks can't change server status to UP
15297 - BUG/MEDIUM: checks: segfault with external checks in a backend section
15298 - BUG/MINOR: checks: external checks shouldn't wait for timeout to return the result
15299 - BUG/MEDIUM: auth: fix segfault with http-auth and a configuration with an unknown encryption algorithm
15300 - BUG/MEDIUM: config: userlists should ensure that encrypted passwords are supported
15301 - BUG/MINOR: config: don't propagate process binding for dynamic use_backend
15302 - BUG/MINOR: log: fix request flags when keep-alive is enabled
15303 - BUG/MEDIUM: checks: fix conflicts between agent checks and ssl healthchecks
15304 - MINOR: checks: allow external checks in backend sections
15305 - MEDIUM: checks: provide environment variables to the external checks
15306 - MINOR: checks: update dynamic environment variables in external checks
15307 - DOC: checks: environment variables used by "external-check command"
15308 - BUG/MEDIUM: backend: correctly detect the domain when use_domain_only is used
15309 - MINOR: ssl: load certificates in alphabetical order
15310 - BUG/MINOR: checks: prevent http keep-alive with http-check expect
15311 - MINOR: lua: typo in an error message
15312 - MINOR: report the Lua version in -vv
15313 - MINOR: lua: add a compilation error message when compiled with an incompatible version
15314 - BUG/MEDIUM: lua: segfault when calling haproxy sample fetches from lua
15315 - BUILD: try to automatically detect the Lua library name
15316 - BUILD/CLEANUP: systemd: avoid a warning due to mixed code and declaration
15317 - BUG/MEDIUM: backend: Update hash to use unsigned int throughout
15318 - BUG/MEDIUM: connection: fix memory corruption when building a proxy v2 header
15319 - MEDIUM: connection: add new bit in Proxy Protocol V2
15320 - BUG/MINOR: ssl: rejects OCSP response without nextupdate.
15321 - BUG/MEDIUM: ssl: Fix to not serve expired OCSP responses.
15322 - BUG/MINOR: ssl: Fix OCSP resp update fails with the same certificate configured twice.
15323 - BUG/MINOR: ssl: Fix external function in order not to return a pointer on an internal trash buffer.
15324 - MINOR: add fetchs 'ssl_c_der' and 'ssl_f_der' to return DER formatted certs
15325 - MINOR: ssl: add statement to force some ssl options in global.
15326 - BUG/MINOR: ssl: correctly initialize ssl ctx for invalid certificates
15327 - BUG/MEDIUM: ssl: fix bad ssl context init can cause segfault in case of OOM.
15328 - BUG/MINOR: samples: fix unnecessary memcopy converting binary to string.
15329 - MINOR: samples: adds the bytes converter.
15330 - MINOR: samples: adds the field converter.
15331 - MINOR: samples: add the word converter.
15332 - BUG/MINOR: server: move the directive #endif to the end of file
15333 - BUG/MAJOR: buffer: check the space left is enough or not when input data in a buffer is wrapped
15334 - DOC: fix a few typos
15335 - CLEANUP: epoll: epoll_events should be allocated according to global.tune.maxpollevents
15336 - BUG/MINOR: http: fix typo: "401 Unauthorized" => "407 Unauthorized"
15337 - BUG/MINOR: parse: refer curproxy instead of proxy
15338 - BUG/MINOR: parse: check the validity of size string in a more strict way
15339 - BUILD: add new target 'make uninstall' to support uninstalling haproxy from OS
15340 - DOC: expand the docs for the provided stats.
15341 - BUG/MEDIUM: unix: do not unlink() abstract namespace sockets upon failure.
15342 - MEDIUM: ssl: Certificate Transparency support
15343 - MEDIUM: stats: proxied stats admin forms fix
15344 - MEDIUM: http: Compress HTTP responses with status codes 201,202,203 in addition to 200
15345 - BUG/MEDIUM: connection: sanitize PPv2 header length before parsing address information
15346 - MAJOR: namespace: add Linux network namespace support
15347 - MINOR: systemd: Check configuration before start
15348 - BUILD: ssl: handle boringssl in openssl version detection
15349 - BUILD: ssl: disable OCSP when using boringssl
15350 - BUILD: ssl: don't call get_rfc2409_prime when using boringssl
15351 - MINOR: ssl: don't use boringssl's cipher_list
15352 - BUILD: ssl: use OPENSSL_NO_OCSP to detect OCSP support
15353 - MINOR: stats: fix minor typo in HTML page
15354 - MINOR: Also accept SIGHUP/SIGTERM in systemd-wrapper
15355 - MEDIUM: Add support for configurable TLS ticket keys
15356 - DOC: Document the new tls-ticket-keys bind keyword
15357 - DOC: clearly state that the "show sess" output format is not fixed
15358 - MINOR: stats: fix minor typo fix in stats_dump_errors_to_buffer()
15359 - DOC: httplog does not support 'no'
15360 - BUG/MEDIUM: ssl: Fix a memory leak in DHE key exchange
15361 - MINOR: ssl: use SSL_get_ciphers() instead of directly accessing the cipher list.
15362 - BUG/MEDIUM: Consistently use 'check' in process_chk
15363 - MEDIUM: Add external check
15364 - BUG/MEDIUM: Do not set agent health to zero if server is disabled in config
15365 - MEDIUM/BUG: Only explicitly report "DOWN (agent)" if the agent health is zero
15366 - MEDIUM: Remove connect_chk
15367 - MEDIUM: Refactor init_check and move to checks.c
15368 - MEDIUM: Add free_check() helper
15369 - MEDIUM: Move proto and addr fields struct check
15370 - MEDIUM: Attach tcpcheck_rules to check
15371 - MEDIUM: Add parsing of mailers section
15372 - MEDIUM: Allow configuration of email alerts
15373 - MEDIUM: Support sending email alerts
15374 - DOC: Document email alerts
15375 - MINOR: Remove trailing '.' from email alert messages
15376 - MEDIUM: Allow suppression of email alerts by log level
15377 - BUG/MEDIUM: Do not consider an agent check as failed on L7 error
15378 - MINOR: deinit: fix memory leak
15379 - MINOR: http: export the function 'smp_fetch_base32'
15380 - BUG/MEDIUM: http: tarpit timeout is reset
15381 - MINOR: sample: add "json" converter
15382 - BUG/MEDIUM: pattern: don't load more than once a pattern list.
15383 - MINOR: map/acl/dumpstats: remove the "Done." message
15384 - BUG/MAJOR: ns: HAProxy segfault if the cli_conn is not from a network connection
15385 - BUG/MINOR: pattern: error message missing
15386 - BUG/MEDIUM: pattern: some entries are not deleted with case insensitive match
15387 - BUG/MINOR: ARG6 and ARG7 don't fit in a 32 bits word
15388 - MAJOR: poll: only rely on wake_expired_tasks() to compute the wait delay
15389 - MEDIUM: task: call session analyzers if the task is woken by a message.
15390 - MEDIUM: protocol: automatically pick the proto associated to the connection.
15391 - MEDIUM: channel: wake up any request analyzer on response activity
15392 - MINOR: converters: add a "void *private" argument to converters
15393 - MINOR: converters: give the session pointer as converter argument
15394 - MINOR: sample: add private argument to the struct sample_fetch
15395 - MINOR: global: export function and permits to not resolve DNS names
15396 - MINOR: sample: add function for browsing samples.
15397 - MINOR: global: export many symbols.
15398 - MINOR: includes: fix a lot of missing or useless includes
15399 - MEDIUM: tcp: add register keyword system.
15400 - MEDIUM: buffer: make bo_putblk/bo_putstr/bo_putchk return the number of bytes copied.
15401 - MEDIUM: http: change the code returned by the response processing rule functions
15402 - MEDIUM: http/tcp: permit to resume http and tcp custom actions
15403 - MINOR: channel: functions to get data from a buffer without copy
15404 - MEDIUM: lua: lua integration in the build and init system.
15405 - MINOR: lua: add ease functions
15406 - MINOR: lua: add runtime execution context
15407 - MEDIUM: lua: "com" signals
15408 - MINOR: lua: add the configuration directive "lua-load"
15409 - MINOR: lua: core: create "core" class and object
15410 - MINOR: lua: post initialisation bindings
15411 - MEDIUM: lua: add coroutine as tasks.
15412 - MINOR: lua: add sample and args type converters
15413 - MINOR: lua: txn: create class TXN associated with the transaction.
15414 - MINOR: lua: add shared context in the lua stack
15415 - MINOR: lua: txn: import existing sample-fetches in the class TXN
15416 - MINOR: lua: txn: add lua function in TXN that returns an array of http headers
15417 - MINOR: lua: register and execute sample-fetches in LUA
15418 - MINOR: lua: register and execute converters in LUA
15419 - MINOR: lua: add bindings for tcp and http actions
15420 - MINOR: lua: core: add sleep functions
15421 - MEDIUM: lua: socket: add "socket" class for TCP I/O
15422 - MINOR: lua: core: pattern and acl manipulation
15423 - MINOR: lua: channel: add "channel" class
15424 - MINOR: lua: txn: object "txn" provides two objects "channel"
15425 - MINOR: lua: core: can set the nice of the current task
15426 - MINOR: lua: core: can yield an execution stack
15427 - MINOR: lua: txn: add binding for closing the client connection.
15428 - MEDIUM: lua: Lua initialisation "on demand"
15429 - BUG/MAJOR: lua: send function fails and return bad bytes
15430 - MINOR: remove unused declaration.
15431 - MINOR: lua: remove some #define
15432 - MINOR: lua: use bitfield and macro in place of integer and enum
15433 - MINOR: lua: set skeleton for Lua execution expiration
15434 - MEDIUM: lua: each yielding function returns a wake up time.
15435 - MINOR: lua: adds "forced yield" flag
15436 - MEDIUM: lua: interrupt the Lua execution for running other process
15437 - MEDIUM: lua: change the sleep function core
15438 - BUG/MEDIUM: lua: the execution timeout is ignored in yield case
15439 - DOC: lua: Lua configuration documentation
15440 - MINOR: lua: add the struct session in the lua channel struct
15441 - BUG/MINOR: lua: set buffer if it is nnot avalaible.
15442 - BUG/MEDIUM: lua: reset flags before resuming execution
15443 - BUG/MEDIUM: lua: fix infinite loop about channel
15444 - BUG/MEDIUM: lua: the Lua process is not waked up after sending data on requests side
15445 - BUG/MEDIUM: lua: many errors when we try to send data with the channel API
15446 - MEDIUM: lua: use the Lua-5.3 version of the library
15447 - BUG/MAJOR: lua: some function are not yieldable, the forced yield causes errors
15448 - BUG/MEDIUM: lua: can't handle the response bytes
15449 - BUG/MEDIUM: lua: segfault with buffer_replace2
15450 - BUG/MINOR: lua: check buffers before initializing socket
15451 - BUG/MINOR: log: segfault if there are no proxy reference
15452 - BUG/MEDIUM: lua: sockets don't have buffer to write data
15453 - BUG/MEDIUM: lua: cannot connect socket
15454 - BUG/MINOR: lua: sockets receive behavior doesn't follows the specs
15455 - BUG/BUILD: lua: The strict Lua 5.3 version check is not done.
15456 - BUG/MEDIUM: buffer: one byte miss in buffer free space check
15457 - MEDIUM: lua: make the functions hlua_gethlua() and hlua_sethlua() faster
15458 - MINOR: replace the Core object by a simple model.
15459 - MEDIUM: lua: change the objects configuration
15460 - MEDIUM: lua: create a namespace for the fetches
15461 - MINOR: converters: add function to browse converters
15462 - MINOR: lua: wrapper for converters
15463 - MINOR: lua: replace function (req|get)_channel by a variable
15464 - MINOR: lua: fetches and converters can return an empty string in place of nil
15465 - DOC: lua api
15466 - BUG/MEDIUM: sample: fix random number upper-bound
15467 - BUG/MINOR: stats:Fix incorrect printf type.
15468 - BUG/MAJOR: session: revert all the crappy client-side timeout changes
15469 - BUG/MINOR: logs: properly initialize and count log sockets
15470 - BUG/MEDIUM: http: fetch "base" is not compatible with set-header
15471 - BUG/MINOR: counters: do not untrack counters before logging
15472 - BUG/MAJOR: sample: correctly reinitialize sample fetch context before calling sample_process()
15473 - MINOR: stick-table: make stktable_fetch_key() indicate why it failed
15474 - BUG/MEDIUM: counters: fix track-sc* to wait on unstable contents
15475 - BUILD: remove TODO from the spec file and add README
15476 - MINOR: log: make MAX_SYSLOG_LEN overridable at build time
15477 - MEDIUM: log: support a user-configurable max log line length
15478 - DOC: provide an example of how to use ssl_c_sha1
15479 - BUILD: checks: external checker needs signal.h
15480 - BUILD: checks: kill a minor warning on Solaris in external checks
15481 - BUILD: http: fix isdigit & isspace warnings on Solaris
15482 - BUG/MINOR: listener: set the listener's fd to -1 after deletion
15483 - BUG/MEDIUM: unix: failed abstract socket binding is retryable
15484 - MEDIUM: listener: implement a per-protocol pause() function
15485 - MEDIUM: listener: support rebinding during resume()
15486 - BUG/MEDIUM: unix: completely unbind abstract sockets during a pause()
15487 - DOC: explicitly mention the limits of abstract namespace sockets
15488 - DOC: minor fix on {sc,src}_kbytes_{in,out}
15489 - DOC: fix alphabetical sort of converters
15490 - MEDIUM: stick-table: implement lookup from a sample fetch
15491 - MEDIUM: stick-table: add new converters to fetch table data
15492 - MINOR: samples: add two converters for the date format
15493 - BUG/MAJOR: http: correctly rewind the request body after start of forwarding
15494 - DOC: remove references to CPU=native in the README
15495 - DOC: mention that "compression offload" is ignored in defaults section
15496 - DOC: mention that Squid correctly responds 400 to PPv2 header
15497 - BUILD: fix dependencies between config and compat.h
15498 - MINOR: session: export the function 'smp_fetch_sc_stkctr'
15499 - MEDIUM: stick-table: make it easier to register extra data types
15500 - BUG/MINOR: http: base32+src should use the big endian version of base32
15501 - MINOR: sample: allow IP address to cast to binary
15502 - MINOR: sample: add new converters to hash input
15503 - MINOR: sample: allow integers to cast to binary
15504 - BUILD: report commit ID in git versions as well
15505 - CLEANUP: session: move the stick counters declarations to stick_table.h
15506 - MEDIUM: http: add the track-sc* actions to http-request rules
15507 - BUG/MEDIUM: connection: fix proxy v2 header again!
15508 - BUG/MAJOR: tcp: fix a possible busy spinning loop in content track-sc*
15509 - OPTIM/MINOR: proxy: reduce struct proxy by 48 bytes on 64-bit archs
15510 - MINOR: log: add a new field "%lc" to implement a per-frontend log counter
15511 - BUG/MEDIUM: http: fix inverted condition in pat_match_meth()
15512 - BUG/MEDIUM: http: fix improper parsing of HTTP methods for use with ACLs
15513 - BUG/MINOR: pattern: remove useless allocation of unused trash in pat_parse_reg()
15514 - BUG/MEDIUM: acl: correctly compute the output type when a converter is used
15515 - CLEANUP: acl: cleanup some of the redundancy and spaghetti after last fix
15516 - BUG/CRITICAL: http: don't update msg->sov once data start to leave the buffer
15517 - MEDIUM: http: enable header manipulation for 101 responses
15518 - BUG/MEDIUM: config: propagate frontend to backend process binding again.
15519 - MEDIUM: config: properly propagate process binding between proxies
15520 - MEDIUM: config: make the frontends automatically bind to the listeners' processes
15521 - MEDIUM: config: compute the exact bind-process before listener's maxaccept
15522 - MEDIUM: config: only warn if stats are attached to multi-process bind directives
15523 - MEDIUM: config: report it when tcp-request rules are misplaced
15524 - DOC: indicate in the doc that track-sc* can wait if data are missing
15525 - MINOR: config: detect the case where a tcp-request content rule has no inspect-delay
15526 - MEDIUM: systemd-wrapper: support multiple executable versions and names
15527 - BUG/MEDIUM: remove debugging code from systemd-wrapper
15528 - BUG/MEDIUM: http: adjust close mode when switching to backend
15529 - BUG/MINOR: config: don't propagate process binding on fatal errors.
15530 - BUG/MEDIUM: check: rule-less tcp-check must detect connect failures
15531 - BUG/MINOR: tcp-check: report the correct failed step in the status
15532 - DOC: indicate that weight zero is reported as DRAIN
15533 - BUG/MEDIUM: config: avoid skipping disabled proxies
15534 - BUG/MINOR: config: do not accept more track-sc than configured
15535 - BUG/MEDIUM: backend: fix URI hash when a query string is present
15536 - BUG/MEDIUM: http: don't dump debug headers on MSG_ERROR
15537 - BUG/MAJOR: cli: explicitly call cli_release_handler() upon error
15538 - BUG/MEDIUM: tcp: fix outgoing polling based on proxy protocol
15539 - BUILD/MINOR: ssl: de-constify "ciphers" to avoid a warning on openssl-0.9.8
15540 - BUG/MEDIUM: tcp: don't use SO_ORIGINAL_DST on non-AF_INET sockets
15541 - BUG/BUILD: revert accidental change in the makefile from latest SSL fix
15542 - BUG/MEDIUM: ssl: force a full GC in case of memory shortage
15543 - MEDIUM: ssl: add support for smaller SSL records
15544 - MINOR: session: release a few other pools when stopping
15545 - MINOR: task: release the task pool when stopping
15546 - BUG/MINOR: config: don't inherit the default balance algorithm in frontends
15547 - BUG/MAJOR: frontend: initialize capture pointers earlier
15548 - BUG/MINOR: stats: correctly set the request/response analysers
15549 - MAJOR: polling: centralize calls to I/O callbacks
15550 - DOC: fix typo in the body parser documentation for msg.sov
15551 - BUG/MINOR: peers: the buffer size is global.tune.bufsize, not trash.size
15552 - MINOR: sample: add a few basic internal fetches (nbproc, proc, stopping)
15553 - DEBUG: pools: apply poisonning on every allocated pool
15554 - BUG/MAJOR: sessions: unlink session from list on out of memory
15555 - BUG/MEDIUM: patterns: previous fix was incomplete
15556 - BUG/MEDIUM: payload: ensure that a request channel is available
15557 - BUG/MINOR: tcp-check: don't condition data polling on check type
15558 - BUG/MEDIUM: tcp-check: don't rely on random memory contents
15559 - BUG/MEDIUM: tcp-checks: disable quick-ack unless next rule is an expect
15560 - BUG/MINOR: config: fix typo in condition when propagating process binding
15561 - BUG/MEDIUM: config: do not propagate processes between stopped processes
15562 - BUG/MAJOR: stream-int: properly check the memory allocation return
15563 - BUG/MEDIUM: memory: fix freeing logic in pool_gc2()
15564 - BUG/MAJOR: namespaces: conn->target is not necessarily a server
15565 - BUG/MEDIUM: compression: correctly report zlib_mem
15566 - CLEANUP: lists: remove dead code
15567 - CLEANUP: memory: remove dead code
15568 - CLEANUP: memory: replace macros pool_alloc2/pool_free2 with functions
15569 - MINOR: memory: cut pool allocator in 3 layers
15570 - MEDIUM: memory: improve pool_refill_alloc() to pass a refill count
15571 - MINOR: stream-int: retrieve session pointer from stream-int
15572 - MINOR: buffer: reset a buffer in b_reset() and not channel_init()
15573 - MEDIUM: buffer: use b_alloc() to allocate and initialize a buffer
15574 - MINOR: buffer: move buffer initialization after channel initialization
15575 - MINOR: buffer: only use b_free to release buffers
15576 - MEDIUM: buffer: always assign a dummy empty buffer to channels
15577 - MEDIUM: buffer: add a new buf_wanted dummy buffer to report failed allocations
15578 - MEDIUM: channel: do not report full when buf_empty is present on a channel
15579 - MINOR: session: group buffer allocations together
15580 - MINOR: buffer: implement b_alloc_fast()
15581 - MEDIUM: buffer: implement b_alloc_margin()
15582 - MEDIUM: session: implement a basic atomic buffer allocator
15583 - MAJOR: session: implement a wait-queue for sessions who need a buffer
15584 - MAJOR: session: only allocate buffers when needed
15585 - MINOR: stats: report a "waiting" flags for sessions
15586 - MAJOR: session: only wake up as many sessions as available buffers permit
15587 - MINOR: config: implement global setting tune.buffers.reserve
15588 - MINOR: config: implement global setting tune.buffers.limit
15589 - MEDIUM: channel: implement a zero-copy buffer transfer
15590 - MEDIUM: stream-int: support splicing from applets
15591 - OPTIM: stream-int: try to send pending spliced data
15592 - CLEANUP: session: remove session_from_task()
15593 - DOC: add missing entry for log-format and clarify the text
15594 - MINOR: logs: add a new per-proxy "log-tag" directive
15595 - BUG/MEDIUM: http: fix header removal when previous header ends with pure LF
15596 - MINOR: config: extend the default max hostname length to 64 and beyond
15597 - BUG/MEDIUM: channel: fix possible integer overflow on reserved size computation
15598 - BUG/MINOR: channel: compare to_forward with buf->i, not buf->size
15599 - MINOR: channel: add channel_in_transit()
15600 - MEDIUM: channel: make buffer_reserved() use channel_in_transit()
15601 - MEDIUM: channel: make bi_avail() use channel_in_transit()
15602 - BUG/MEDIUM: channel: don't schedule data in transit for leaving until connected
15603 - CLEANUP: channel: rename channel_reserved -> channel_is_rewritable
15604 - MINOR: channel: rename channel_full() to !channel_may_recv()
15605 - MINOR: channel: rename buffer_reserved() to channel_reserved()
15606 - MINOR: channel: rename buffer_max_len() to channel_recv_limit()
15607 - MINOR: channel: rename bi_avail() to channel_recv_max()
15608 - MINOR: channel: rename bi_erase() to channel_truncate()
15609 - BUG/MAJOR: log: don't try to emit a log if no logger is set
15610 - MINOR: tools: add new round_2dig() function to round integers
15611 - MINOR: global: always export some SSL-specific metrics
15612 - MINOR: global: report information about the cost of SSL connections
15613 - MAJOR: init: automatically set maxconn and/or maxsslconn when possible
15614 - MINOR: http: add a new fetch "query" to extract the request's query string
15615 - MINOR: hash: add new function hash_crc32
15616 - MINOR: samples: provide a "crc32" converter
15617 - MEDIUM: backend: add the crc32 hash algorithm for load balancing
15618 - BUG/MINOR: args: add missing entry for ARGT_MAP in arg_type_names
15619 - BUG/MEDIUM: http: make http-request set-header compute the string before removal
15620 - MEDIUM: args: use #define to specify the number of bits used by arg types and counts
15621 - MEDIUM: args: increase arg type to 5 bits and limit arg count to 5
15622 - MINOR: args: add type-specific flags for each arg in a list
15623 - MINOR: args: implement a new arg type for regex : ARGT_REG
15624 - MEDIUM: regex: add support for passing regex flags to regex_exec_match()
15625 - MEDIUM: samples: add a regsub converter to perform regex-based transformations
15626 - BUG/MINOR: sample: fix case sensitivity for the regsub converter
15627 - MEDIUM: http: implement http-request set-{method,path,query,uri}
15628 - DOC: fix missing closing brackend on regsub
15629 - MEDIUM: samples: provide basic arithmetic and bitwise operators
15630 - MEDIUM: init: continue to enforce SYSTEM_MAXCONN with auto settings if set
15631 - BUG/MINOR: http: fix incorrect header value offset in replace-hdr/replace-value
15632 - BUG/MINOR: http: abort request processing on filter failure
15633 - MEDIUM: tcp: implement tcp-ut bind option to set TCP_USER_TIMEOUT
15634 - MINOR: ssl/server: add the "no-ssl-reuse" server option
15635 - BUG/MAJOR: peers: initialize s->buffer_wait when creating the session
15636 - MINOR: http: add a new function to iterate over each header line
15637 - MINOR: http: add the new sample fetches req.hdr_names and res.hdr_names
15638 - MEDIUM: task: always ensure that the run queue is consistent
15639 - BUILD: Makefile: add -Wdeclaration-after-statement
15640 - BUILD/CLEANUP: ssl: avoid a warning due to mixed code and declaration
15641 - BUILD/CLEANUP: config: silent 3 warnings about mixed declarations with code
15642 - MEDIUM: protocol: use a family array to index the protocol handlers
15643 - BUILD: lua: cleanup many mixed occurrences declarations & code
15644 - BUG/MEDIUM: task: fix recently introduced scheduler skew
15645 - BUG/MINOR: lua: report the correct function name in an error message
15646 - BUG/MAJOR: http: fix stats regression consecutive to HTTP_RULE_RES_YIELD
15647 - Revert "BUG/MEDIUM: lua: can't handle the response bytes"
15648 - MINOR: lua: convert IP addresses to type string
15649 - CLEANUP: lua: use the same function names in C and Lua
15650 - REORG/MAJOR: move session's req and resp channels back into the session
15651 - CLEANUP: remove now unused channel pool
15652 - REORG/MEDIUM: stream-int: introduce si_ic/si_oc to access channels
15653 - MEDIUM: stream-int: add a flag indicating which side the SI is on
15654 - MAJOR: stream-int: only rely on SI_FL_ISBACK to find the requested channel
15655 - MEDIUM: stream-interface: remove now unused pointers to channels
15656 - MEDIUM: stream-int: make si_sess() use the stream int's side
15657 - MEDIUM: stream-int: use si_task() to retrieve the task from the stream int
15658 - MEDIUM: stream-int: remove any reference to the owner
15659 - CLEANUP: stream-int: add si_ib/si_ob to dereference the buffers
15660 - CLEANUP: stream-int: add si_opposite() to find the other stream interface
15661 - REORG/MEDIUM: channel: only use chn_prod / chn_cons to find stream-interfaces
15662 - MEDIUM: channel: add a new flag "CF_ISRESP" for the response channel
15663 - MAJOR: channel: only rely on the new CF_ISRESP flag to find the SI
15664 - MEDIUM: channel: remove now unused ->prod and ->cons pointers
15665 - CLEANUP: session: simplify references to chn_{prod,cons}(&s->{req,res})
15666 - CLEANUP: session: use local variables to access channels / stream ints
15667 - CLEANUP: session: don't needlessly pass a pointer to the stream-int
15668 - CLEANUP: session: don't use si_{ic,oc} when we know the session.
15669 - CLEANUP: stream-int: limit usage of si_ic/si_oc
15670 - CLEANUP: lua: limit usage of si_ic/si_oc
15671 - MINOR: channel: add chn_sess() helper to retrieve session from channel
15672 - MEDIUM: session: simplify receive buffer allocator to only use the channel
15673 - MEDIUM: lua: use CF_ISRESP to detect the channel's side
15674 - CLEANUP: lua: remove the session pointer from hlua_channel
15675 - CLEANUP: lua: hlua_channel_new() doesn't need the pointer to the session anymore
15676 - MEDIUM: lua: remove struct hlua_channel
15677 - MEDIUM: lua: remove hlua_sample_fetch
15678
Willy Tarreau15480d72014-06-19 21:10:58 +0200156792014/06/19 : 1.6-dev0
15680 - exact copy of 1.5.0
15681
Willy Tarreau9229f122014-06-19 21:01:06 +0200156822014/06/19 : 1.5.0
15683 - MEDIUM: ssl: ignored file names ending as '.issuer' or '.ocsp'.
15684 - MEDIUM: ssl: basic OCSP stapling support.
15685 - MINOR: ssl/cli: Fix unapropriate comment in code on 'set ssl ocsp-response'
15686 - MEDIUM: ssl: add 300s supported time skew on OCSP response update.
15687 - MINOR: checks: mysql-check: Add support for v4.1+ authentication
15688 - MEDIUM: ssl: Add the option to use standardized DH parameters >= 1024 bits
15689 - MEDIUM: ssl: fix detection of ephemeral diffie-hellman key exchange by using the cipher description.
15690 - MEDIUM: http: add actions "replace-header" and "replace-values" in http-req/resp
15691 - MEDIUM: Break out check establishment into connect_chk()
15692 - MEDIUM: Add port_to_str helper
15693 - BUG/MEDIUM: fix ignored values for half-closed timeouts (client-fin and server-fin) in defaults section.
15694 - BUG/MEDIUM: Fix unhandled connections problem with systemd daemon mode and SO_REUSEPORT.
15695 - MINOR: regex: fix a little configuration memory leak.
15696 - MINOR: regex: Create JIT compatible function that return match strings
15697 - MEDIUM: regex: replace all standard regex function by own functions
15698 - MEDIUM: regex: Remove null terminated strings.
15699 - MINOR: regex: Use native PCRE API.
15700 - MINOR: missing regex.h include
15701 - DOC: Add Exim as Proxy Protocol implementer.
15702 - BUILD: don't use type "uint" which is not portable
15703 - BUILD: stats: workaround stupid and bogus -Werror=format-security behaviour
15704 - BUG/MEDIUM: http: clear CF_READ_NOEXP when preparing a new transaction
15705 - CLEANUP: http: don't clear CF_READ_NOEXP twice
15706 - DOC: fix proxy protocol v2 decoder example
15707 - DOC: fix remaining occurrences of "pattern extraction"
15708 - MINOR: log: allow the HTTP status code to be logged even in TCP frontends
15709 - MINOR: logs: don't limit HTTP header captures to HTTP frontends
15710 - MINOR: sample: improve sample_fetch_string() to report partial contents
15711 - MINOR: capture: extend the captures to support non-header keys
15712 - MINOR: tcp: prepare support for the "capture" action
15713 - MEDIUM: tcp: add a new tcp-request capture directive
15714 - MEDIUM: session: allow shorter retry delay if timeout connect is small
15715 - MEDIUM: session: don't apply the retry delay when redispatching
15716 - MEDIUM: session: redispatch earlier when possible
15717 - MINOR: config: warn when tcp-check rules are used without option tcp-check
15718 - BUG/MINOR: connection: make proxy protocol v1 support the UNKNOWN protocol
15719 - DOC: proxy protocol example parser was still wrong
15720 - DOC: minor updates to the proxy protocol doc
15721 - CLEANUP: connection: merge proxy proto v2 header and address block
15722 - MEDIUM: connection: add support for proxy protocol v2 in accept-proxy
15723 - MINOR: tools: add new functions to quote-encode strings
15724 - DOC: clarify the CSV format
15725 - MEDIUM: stats: report the last check and last agent's output on the CSV status
15726 - MINOR: freq_ctr: introduce a new averaging method
15727 - MEDIUM: session: maintain per-backend and per-server time statistics
15728 - MEDIUM: stats: report per-backend and per-server time stats in HTML and CSV outputs
15729 - BUG/MINOR: http: fix typos in previous patch
15730 - DOC: remove the ultra-obsolete TODO file
15731 - DOC: update roadmap
15732 - DOC: minor updates to the README
15733 - DOC: mention the maxconn limitations with the select poller
15734 - DOC: commit a few old design thoughts files
15735
Willy Tarreau2e858402014-05-28 17:50:53 +0200157362014/05/28 : 1.5-dev26
15737 - BUG/MEDIUM: polling: fix possible CPU hogging of worker processes after receiving SIGUSR1.
15738 - BUG/MINOR: stats: fix a typo on a closing tag for a server tracking another one
15739 - OPTIM: stats: avoid the calculation of a useless link on tracking servers in maintenance
15740 - MINOR: fix a few memory usage errors
15741 - CONTRIB: halog: Filter input lines by date and time through timestamp
15742 - MINOR: ssl: SSL_CTX_set_options() and SSL_CTX_set_mode() take a long, not an int
15743 - BUG/MEDIUM: regex: fix risk of buffer overrun in exp_replace()
15744 - MINOR: acl: set "str" as default match for strings
15745 - DOC: Add some precisions about acl default matching method
15746 - MEDIUM: acl: strenghten the option parser to report invalid options
15747 - BUG/MEDIUM: config: a stats-less config crashes in 1.5-dev25
15748 - BUG/MINOR: checks: tcp-check must not stop on '\0' for binary checks
15749 - MINOR: stats: improve alignment of color codes to save one line of header
15750 - MINOR: checks: simplify and improve reporting of state changes when using log-health-checks
15751 - MINOR: server: remove the SRV_DRAIN flag which can always be deduced
15752 - MINOR: server: use functions to detect state changes and to update them
15753 - MINOR: server: create srv_was_usable() from srv_is_usable() and use a pointer
15754 - BUG/MINOR: stats: do not report "100%" in the thottle column when server is draining
15755 - BUG/MAJOR: config: don't free valid regex memory
15756 - BUG/MEDIUM: session: don't clear CF_READ_NOEXP if analysers are not called
15757 - BUG/MINOR: stats: tracking servers may incorrectly report an inherited DRAIN status
15758 - MEDIUM: proxy: make timeout parser a bit stricter
15759 - REORG/MEDIUM: server: split server state and flags in two different variables
15760 - REORG/MEDIUM: server: move the maintenance bits out of the server state
15761 - MAJOR: server: use states instead of flags to store the server state
15762 - REORG: checks: put the functions in the appropriate files !
15763 - MEDIUM: server: properly support and propagate the maintenance status
15764 - MEDIUM: server: allow multi-level server tracking
15765 - CLEANUP: checks: rename the server_status_printf function
15766 - MEDIUM: checks: simplify server up/down/nolb transitions
15767 - MAJOR: checks: move health checks changes to set_server_check_status()
15768 - MINOR: server: make the status reporting function support a reason
15769 - MINOR: checks: simplify health check reporting functions
15770 - MINOR: server: implement srv_set_stopped()
15771 - MINOR: server: implement srv_set_running()
15772 - MINOR: server: implement srv_set_stopping()
15773 - MEDIUM: checks: simplify failure notification using srv_set_stopped()
15774 - MEDIUM: checks: simplify success notification using srv_set_running()
15775 - MEDIUM: checks: simplify stopping mode notification using srv_set_stopping()
15776 - MEDIUM: stats: report a server's own state instead of the tracked one's
15777 - MINOR: server: make use of srv_is_usable() instead of checking eweight
15778 - MAJOR: checks: add support for a new "drain" administrative mode
15779 - MINOR: stats: use the admin flags for soft enable/disable/stop/start on the web page
15780 - MEDIUM: stats: introduce new actions to simplify admin status management
15781 - MINOR: cli: introduce a new "set server" command
15782 - MINOR: stats: report a distinct output for DOWN caused by agent
15783 - MINOR: checks: support specific check reporting for the agent
15784 - MINOR: checks: support a neutral check result
15785 - BUG/MINOR: cli: "agent" was missing from the "enable"/"disable" help message
15786 - MEDIUM: cli: add support for enabling/disabling health checks.
15787 - MEDIUM: stats: report down caused by agent prior to reporting up
15788 - MAJOR: agent: rework the response processing and support additional actions
15789 - MINOR: stats: improve the stats web page to support more actions
15790 - CONTRIB: halog: avoid calling time/localtime/mktime for each line
15791 - DOC: document the workarouds for Google Chrome's bogus pre-connect
15792 - MINOR: stats: report SSL key computations per second
15793 - MINOR: stats: add counters for SSL cache lookups and misses
15794
Willy Tarreaua3393952014-05-10 15:16:43 +0200157952014/05/10 : 1.5-dev25
15796 - MEDIUM: connection: Implement and extented PROXY Protocol V2
15797 - MINOR: ssl: clean unused ACLs declarations
15798 - MINOR: ssl: adds fetchs and ACLs for ssl back connection.
15799 - MINOR: ssl: merge client's and frontend's certificate functions.
15800 - MINOR: ssl: adds ssl_f_sha1 fetch to return frontend's certificate fingerprint
15801 - MINOR: ssl: adds sample converter base64 for binary type.
15802 - MINOR: ssl: convert to binary ssl_fc_unique_id and ssl_bc_unique_id.
15803 - BUG/MAJOR: ssl: Fallback to private session cache if current lock mode is not supported.
15804 - MAJOR: ssl: Change default locks on ssl session cache.
15805 - BUG/MINOR: chunk: Fix function chunk_strcmp and chunk_strcasecmp match a substring.
15806 - MINOR: ssl: add global statement tune.ssl.force-private-cache.
15807 - MINOR: ssl: remove fallback to SSL session private cache if lock init fails.
15808 - BUG/MEDIUM: patterns: last fix was still not enough
15809 - MINOR: http: export the smp_fetch_cookie function
15810 - MINOR: http: generic pointer to rule argument
15811 - BUG/MEDIUM: pattern: a typo breaks automatic acl/map numbering
15812 - BUG/MAJOR: patterns: -i and -n are ignored for inlined patterns
15813 - BUG/MINOR: proxy: unsafe initialization of HTTP transaction when switching from TCP frontend
15814 - BUG/MINOR: http: log 407 in case of proxy auth
15815 - MINOR: http: rely on the message body parser to send 100-continue
15816 - MEDIUM: http: move reqadd after execution of http_request redirect
15817 - MEDIUM: http: jump to dedicated labels after http-request processing
15818 - BUG/MINOR: http: block rules forgot to increment the denied_req counter
15819 - BUG/MINOR: http: block rules forgot to increment the session's request counter
15820 - MEDIUM: http: move Connection header processing earlier
15821 - MEDIUM: http: remove even more of the spaghetti in the request path
15822 - MINOR: http: silently support the "block" action for http-request
15823 - CLEANUP: proxy: rename "block_cond" to "block_rules"
15824 - MEDIUM: http: emulate "block" rules using "http-request" rules
15825 - MINOR: http: remove the now unused loop over "block" rules
15826 - MEDIUM: http: factorize the "auth" action of http-request and stats
15827 - MEDIUM: http: make http-request rules processing return a verdict instead of a rule
15828 - MINOR: config: add minimum support for emitting warnings only once
15829 - MEDIUM: config: inform the user about the deprecatedness of "block" rules
15830 - MEDIUM: config: inform the user that "reqsetbe" is deprecated
15831 - MEDIUM: config: inform the user only once that "redispatch" is deprecated
15832 - MEDIUM: config: warn that '{cli,con,srv}timeout' are deprecated
15833 - BUG/MINOR: auth: fix wrong return type in pat_match_auth()
15834 - BUILD: config: remove a warning with clang
15835 - BUG/MAJOR: http: connection setup may stall on balance url_param
15836 - BUG/MEDIUM: http/session: disable client-side expiration only after body
15837 - BUG/MEDIUM: http: correctly report request body timeouts
15838 - BUG/MEDIUM: http: disable server-side expiration until client has sent the body
15839 - MEDIUM: listener: make the accept function more robust against pauses
15840 - BUILD: syscalls: remove improper inline statement in front of syscalls
15841 - BUILD: ssl: SSL_CTX_set_msg_callback() needs openssl >= 0.9.7
15842 - BUG/MAJOR: session: recover the correct connection pointer in half-initialized sessions
15843 - DOC: add some explanation on the shared cache build options in the readme.
15844 - MEDIUM: proxy: only adjust the backend's bind-process when already set
15845 - MEDIUM: config: limit nbproc to the machine's word size
15846 - MEDIUM: config: check the bind-process settings according to nbproc
15847 - MEDIUM: listener: parse the new "process" bind keyword
15848 - MEDIUM: listener: inherit the process mask from the proxy
15849 - MAJOR: listener: only start listeners bound to the same processes
15850 - MINOR: config: only report a warning when stats sockets are bound to more than 1 process
15851 - CLEANUP: config: set the maxaccept value for peers listeners earlier
15852 - BUG/MINOR: backend: only match IPv4 addresses with RDP cookies
15853 - BUG/MINOR: checks: correctly configure the address family and protocol
15854 - MINOR: tools: split is_addr() and is_inet_addr()
15855 - MINOR: protocols: use is_inet_addr() when only INET addresses are desired
15856 - MEDIUM: unix: add preliminary support for connecting to servers over UNIX sockets
15857 - MEDIUM: checks: only complain about the missing port when the check uses TCP
15858 - MEDIUM: unix: implement support for Linux abstract namespace sockets
15859 - DOC: map_beg was missing from the table of map_* converters
15860 - DOC: ebtree: indicate that prefix insertion/lookup may be used with strings
15861 - MEDIUM: pattern: use ebtree's longest match to index/lookup string beginning
15862 - BUILD: remove the obsolete BSD and OSX makefiles
15863 - MEDIUM: unix: avoid a double connect probe when no data are sent
15864 - DOC: stop referencing the slow git repository in the README
15865 - BUILD: only build the systemd wrapper on Linux 2.6 and above
15866 - DOC: update roadmap with completed tasks
15867 - MEDIUM: session: implement half-closed timeouts (client-fin and server-fin)
15868
Willy Tarreau8860dcd2014-04-26 00:08:14 +0200158692014/04/26 : 1.5-dev24
15870 - MINOR: pattern: find element in a reference
15871 - MEDIUM: http: ACL and MAP updates through http-(request|response) rules
15872 - MEDIUM: ssl: explicitly log failed handshakes after a heartbeat
15873 - DOC: Full section dedicated to the converters
15874 - MEDIUM: http: register http-request and http-response keywords
15875 - BUG/MINOR: compression: correctly report incoming byte count
15876 - BUG/MINOR: http: don't report server aborts as client aborts
15877 - BUG/MEDIUM: channel: bi_putblk() must not wrap before the end of buffer
15878 - CLEANUP: buffers: remove unused function buffer_contig_space_with_res()
15879 - MEDIUM: stats: reimplement HTTP keep-alive on the stats page
15880 - BUG/MAJOR: http: fix timeouts during data forwarding
15881 - BUG/MEDIUM: http: 100-continue responses must process the next part immediately
15882 - MEDIUM: http: move skipping of 100-continue earlier
15883 - BUILD: stats: let gcc know that last_fwd cannot be used uninitialized...
15884 - CLEANUP: general: get rid of all old occurrences of "session *t"
15885 - CLEANUP: http: remove the useless "if (1)" inherited from version 1.4
15886 - BUG/MEDIUM: stats: mismatch between behaviour and doc about front/back
15887 - MEDIUM: http: enable analysers to have keep-alive on stats
15888 - REORG: http: move HTTP Connection response header parsing earlier
15889 - MINOR: stats: always emit HTTP/1.1 in responses
15890 - MINOR: http: add capture.req.ver and capture.res.ver
15891 - MINOR: checks: add a new global max-spread-checks directive
15892 - BUG/MAJOR: http: fix the 'next' pointer when performing a redirect
15893 - MINOR: http: implement the max-keep-alive-queue setting
15894 - DOC: fix alphabetic order of tcp-check
15895 - MINOR: connection: add a new error code for SSL with heartbeat
15896 - MEDIUM: ssl: implement a workaround for the OpenSSL heartbleed attack
15897 - BUG/MEDIUM: Revert "MEDIUM: ssl: Add standardized DH parameters >= 1024 bits"
15898 - BUILD: http: remove a warning on strndup
15899 - BUILD: ssl: avoid a warning about conn not used with OpenSSL < 1.0.1
15900 - BUG/MINOR: ssl: really block OpenSSL's response to heartbleed attack
15901 - MINOR: ssl: finally catch the heartbeats missing the padding
15902
Willy Tarreau8317b282014-04-23 01:49:41 +0200159032014/04/23 : 1.5-dev23
15904 - BUG/MINOR: reject malformed HTTP/0.9 requests
15905 - MINOR: systemd wrapper: re-execute on SIGUSR2
15906 - MINOR: systemd wrapper: improve logging
15907 - MINOR: systemd wrapper: propagate exit status
15908 - BUG/MINOR: tcpcheck connect wrong behavior
15909 - MEDIUM: proxy: support use_backend with dynamic names
15910 - MINOR: stats: Enhancement to stats page to provide information of last session time.
15911 - BUG/MEDIUM: peers: fix key consistency for integer stick tables
15912 - DOC: fix a typo on http-server-close and encapsulate options with double-quotes
15913 - DOC: fix fetching samples syntax
15914 - MINOR: ssl: add ssl_fc_unique_id to fetch TLS Unique ID
15915 - MEDIUM: ssl: Use ALPN support as it will be available in OpenSSL 1.0.2
15916 - DOC: fix typo
15917 - CLEANUP: code style: use tabs to indent codes instead of spaces
15918 - DOC: fix a few config typos.
15919 - BUG/MINOR: raw_sock: also consider ENOTCONN in addition to EAGAIN for recv()
15920 - DOC: lowercase format string in unique-id
15921 - MINOR: set IP_FREEBIND on IPv6 sockets in transparent mode
15922 - BUG/MINOR: acl: req_ssl_sni fails with SSLv3 record version
15923 - BUG/MINOR: build: add missing objects in osx and bsd Makefiles
15924 - BUG/MINOR: build: handle whitespaces in wc -l output
15925 - BUG/MINOR: Fix name lookup ordering when compiled with USE_GETADDRINFO
15926 - MEDIUM: ssl: Add standardized DH parameters >= 1024 bits
15927 - BUG/MEDIUM: map: The map parser includes blank lines.
15928 - BUG/MINOR: log: The log of quotted capture header has been terminated by 2 quotes.
15929 - MINOR: standard: add function "encode_chunk"
15930 - BUG/MINOR: http: fix encoding of samples used in http headers
15931 - MINOR: sample: add hex converter
15932 - MEDIUM: sample: change the behavior of the bin2str cast
15933 - MAJOR: auth: Change the internal authentication system.
15934 - MEDIUM: acl/pattern: standardisation "of pat_parse_int()" and "pat_parse_dotted_ver()"
15935 - MEDIUM: pattern: The pattern parser no more uses <opaque> and just takes one string.
15936 - MEDIUM: pattern: Change the prototype of the function pattern_register().
15937 - CONTRIB: ip6range: add a network IPv6 range to mask converter
15938 - MINOR: pattern: separe list element from the data part.
15939 - MEDIUM: pattern: add indexation function.
15940 - MEDIUM: pattern: The parse functions just return "struct pattern" without memory allocation
15941 - MINOR: pattern: Rename "pat_idx_elt" to "pattern_tree"
15942 - MINOR: sample: dont call the sample cast function "c_none"
15943 - MINOR: standard: Add function for converting cidr to network mask.
15944 - MEDIUM: sample: Remove types SMP_T_CSTR and SMP_T_CBIN, replace it by SMP_F_CONST flags
15945 - MEDIUM: sample/http_proto: Add new type called method
15946 - MINOR: dumpstats: Group map inline help
15947 - MEDIUM: pattern: The function pattern_exec_match() returns "struct pattern" if the patten match.
15948 - MINOR: dumpstats: change map inline sentences
15949 - MINOR: dumpstats: change the "get map" display management
15950 - MINOR: map/dumpstats: The cli cmd "get map ..." display the "int" format.
15951 - MEDIUM: pattern: The match function browse itself the list or the tree.
15952 - MEDIUM: pattern: Index IPv6 addresses in a tree.
15953 - MEDIUM: pattern: add delete functions
15954 - MEDIUM: pattern: add prune function
15955 - MEDIUM: pattern: add sample lookup function.
15956 - MEDIUM: pattern/dumpstats: The function pattern_lookup() is no longer used
15957 - MINOR: map/pattern: The sample parser is stored in the pattern
15958 - MAJOR: pattern/map: Extends the map edition system in the patterns
15959 - MEDIUM: pattern: merge same pattern
15960 - MEDIUM: pattern: The expected type is stored in the pattern head, and conversion is executed once.
15961 - MINOR: pattern: Each pattern is identified by unique id.
15962 - MINOR: pattern/acl: Each pattern of each acl can be load with specified id
15963 - MINOR: pattern: The function "pattern_register()" is no longer used.
15964 - MINOR: pattern: Merge function pattern_add() with pat_ref_push().
15965 - MINOR: pattern: store configuration reference for each acl or map pattern.
15966 - MINOR: pattern: Each pattern expression element store the reference struct.
15967 - MINOR: dumpstats: display the reference for th key/pattern and value.
15968 - MEDIUM: pattern: delete() function uses the pat_ref_elt to find the element to be removed
15969 - MEDIUM: pattern_find_smp: functions find_smp uses the pat_ref_elt to find the element to be removed
15970 - MEDIUM: dumpstats/pattern: display and use each pointer of each pattern dumped
15971 - MINOR: pattern/map/acl: Centralization of the file parsers
15972 - MINOR: pattern: Check if the file reference is not used with acl and map
15973 - MINOR: acl/pattern: Acl "-M" option force to load file as map file with two columns
15974 - MEDIUM: dumpstats: Display error message during add of values.
15975 - MINOR: pattern: The function pat_ref_set() have now atomic behavior
15976 - MINOR: regex: The pointer regstr in the struc regex is no longer used.
15977 - MINOR: cli: Block the usage of the command "acl add" in many cases.
15978 - MINOR: doc: Update the documentation about the map and acl
15979 - MINOR: pattern: index duplicates
15980 - MINOR: configuration: File and line propagation
15981 - MINOR: dumpstat/conf: display all the configuration lines that using pattern reference
15982 - MINOR: standard: Disable ip resolution during the runtime
15983 - MINOR: pattern: Remove the flag "PAT_F_FROM_FILE".
15984 - MINOR: pattern: forbid dns resolutions
15985 - DOC: document "get map" / "get acl" on the CLI
15986 - MEDIUM: acl: Change the acl register struct
15987 - BUG/MEDIUM: acl: boolean only matches were broken by recent changes
15988 - DOC: pattern: pattern organisation schematics
15989 - MINOR: pattern/cli: Update used terms in documentation and cli
15990 - MINOR: cli: remove information about acl or map owner.
15991 - MINOR: session: don't always assume there's a listener
15992 - MINOR: pattern: Add function to prune and reload pattern list.
15993 - MINOR: standard: Add ipv6 support in the function url2sa().
15994 - MEDIUM: config: Dynamic sections.
15995 - BUG/MEDIUM: stick-table: fix IPv4-to-IPv6 conversion in src_* fetches
15996 - MINOR: http: Add the "language" converter to for use with accept-language
15997 - BUG/MINOR: log: Don't dump empty unique-id
15998 - BUG/MAJOR: session: fix a possible crash with src_tracked
15999 - DOC: Update "language" documentation
16000 - MINOR: http: add the function "del-header" to the directives http-request and http-response
16001 - DOC: add some information on capture.(req|res).hdr
16002 - MINOR: http: capture.req.method and capture.req.uri
16003 - MINOR: http: optimize capture.req.method and capture.req.uri
16004 - MINOR: session: clean up the connection free code
16005 - BUG/MEDIUM: checks: immediately report a connection success
16006 - MEDIUM: connection: don't use real send() flags in snd_buf()
16007 - OPTIM: ssl: implement dynamic record size adjustment
16008 - MINOR: stats: report exact last session time in backend too
16009 - BUG/MEDIUM: stats: the "lastsess" field must appear last in the CSV.
16010 - BUG/MAJOR: check: fix memory leak in "tcp-check connect" over SSL
16011 - BUG/MINOR: channel: initialize xfer_small/xfer_large on new buffers
16012 - MINOR: channel: add the date of last read in the channel
16013 - MEDIUM: stream-int: automatically disable CF_STREAMER flags after idle
16014 - MINOR: ssl: add DEFAULT_SSL_MAX_RECORD to set the record size at build time
16015 - MINOR: config: make the stream interface idle timer user-configurable
16016 - MINOR: config: add global directives to set default SSL ciphers
16017 - MINOR: sample: add a rand() sample fetch to return a sample.
16018 - BUG/MEDIUM: config: immediately abort if peers section has no name
16019 - BUG/MINOR: ssl: fix syntax in config error message
16020 - BUG/MEDIUM: ssl: always send a full buffer after EAGAIN
16021 - BUG/MINOR: config: server on-marked-* statement is ignored in default-server
16022 - BUG/MEDIUM: backend: prefer-last-server breaks redispatch
16023 - BUG/MEDIUM: http: continue to emit 503 on keep-alive to different server
16024 - MEDIUM: acl: fix pattern type for payload / payload_lv
16025 - BUG/MINOR: config: fix a crash on startup when a disabled backend references a peer
16026 - BUG/MEDIUM: compression: fix the output type of the compressor name
16027 - BUG/MEDIUM: http: don't start to forward request data before the connect
16028 - MINOR: http: release compression context only in http_end_txn()
16029 - MINOR: protect ebimtree/ebistree against multiple inclusions
16030 - MEDIUM: proxy: create a tree to store proxies by name
16031 - MEDIUM: proxy: make findproxy() use trees to look up proxies
16032 - MEDIUM: proxy: make get_backend_server() use findproxy() to lookup proxies
16033 - MEDIUM: stick-table: lookup table names using trees.
16034 - MEDIUM: config: faster lookup for duplicated proxy name
16035 - CLEANUP: acl: remove obsolete test in parse_acl_expr()
16036 - MINOR: sample: move smp_to_type to sample.c
16037 - MEDIUM: compression: consider the "q=" attribute in Accept-Encoding
16038 - REORG: cfgparse: move server keyword parsing to server.c
16039 - BUILD: adjust makefile for AIX 5.1
16040 - BUG/MEDIUM: pattern: fix wrong definition of the pat_prune_fcts array
16041 - CLEANUP: pattern: move array definitions to proto/ and not types/
16042 - BUG/MAJOR: counters: check for null-deref when looking up an alternate table
16043 - BUILD: ssl: previous patch failed
16044 - BUILD/MEDIUM: standard: get rid of the last strcpy()
16045 - BUILD/MEDIUM: standard: get rid of sprintf()
16046 - BUILD/MEDIUM: cfgparse: get rid of sprintf()
16047 - BUILD/MEDIUM: checks: get rid of sprintf()
16048 - BUILD/MEDIUM: http: remove calls to sprintf()
16049 - BUG/MEDIUM: systemd-wrapper: fix locating of haproxy binary
16050 - BUILD/MINOR: ssl: remove one call to sprintf()
16051 - MEDIUM: http: don't reject anymore message bodies not containing the url param
16052 - MEDIUM: http: wait for the first chunk or message body length in http_process_body
16053 - CLEANUP: http: rename http_process_request_body()
16054 - CLEANUP: http: prepare dedicated processing for chunked encoded message bodies
16055 - MINOR: http: make msg->eol carry the last CRLF length
16056 - MAJOR: http: do not use msg->sol while processing messages or forwarding data
16057 - MEDIUM: http: http_parse_chunk_crlf() must not advance the buffer pointer
16058 - MAJOR: http: don't update msg->sov anymore while processing the body
16059 - MINOR: http: add a small helper to compute the amount of body bytes present
16060 - MEDIUM: http: add a small helper to compute how far to rewind to find headers
16061 - MINOR: http: add a small helper to compute how far to rewind to find URI
16062 - MEDIUM: http: small helpers to compute how far to rewind to find BODY and DATA
16063 - MAJOR: http: reset msg->sov after headers are forwarded
16064 - MEDIUM: http: forward headers again while waiting for connection to complete
16065 - BUG/MINOR: http: deinitialize compression after a parsing error
16066 - BUG/MINOR: http: deinitialize compression after a compression error
16067 - MEDIUM: http: headers must be forwarded even if data was already inspected
16068 - MAJOR: http: re-enable compression on chunked encoding
16069 - MAJOR: http/compression: fix chunked-encoded response processing
16070 - MEDIUM: http: cleanup: centralize a little bit HTTP compression end
16071 - MEDIUM: http: start to centralize the forwarding code
16072 - MINOR: http: further cleanups of response forwarding function
16073 - MEDIUM: http: only allocate the temporary compression buffer when needed
16074 - MAJOR: http: centralize data forwarding in the request path
16075 - CLEANUP: http: document the response forwarding states
16076 - CLEANUP: http: remove all calls to http_silent_debug()
16077 - DOC: internal: add some reminders about HTTP parsing and pointer states
16078 - BUG/MAJOR: http: fix bug in parse_qvalue() when selecting compression algo
16079 - BUG/MINOR: stats: last session was not always set
16080 - DOC: add pointer to the Cyril's HTML doc in the README
16081 - MEDIUM: config: relax use_backend check to make the condition optional
16082 - MEDIUM: config: report misplaced http-request rules
16083 - MEDIUM: config: report misplaced use-server rules
16084 - DOC: update roadmap with what was done.
16085
Willy Tarreau1a34d572014-02-03 00:41:29 +0100160862014/02/03 : 1.5-dev22
16087 - MEDIUM: tcp-check new feature: connect
16088 - MEDIUM: ssl: Set verify 'required' as global default for servers side.
16089 - MINOR: ssl: handshake optim for long certificate chains.
16090 - BUG/MINOR: pattern: pattern comparison executed twice
16091 - BUG/MEDIUM: map: segmentation fault with the stats's socket command "set map ..."
16092 - BUG/MEDIUM: pattern: Segfault in binary parser
16093 - MINOR: pattern: move functions for grouping pat_match_* and pat_parse_* and add documentation.
16094 - MINOR: standard: The parse_binary() returns the length consumed and his documentation is updated
16095 - BUG/MINOR: payload: the patterns of the acl "req.ssl_ver" are no parsed with the good function.
16096 - BUG/MEDIUM: pattern: "pat_parse_dotted_ver()" set bad expect_type.
16097 - BUG/MINOR: sample: The c_str2int converter does not fail if the entry is not an integer
16098 - BUG/MEDIUM: http/auth: Sometimes the authentication credentials can be mix between two requests
16099 - MINOR: doc: Bad cli function name.
16100 - MINOR: http: smp_fetch_capture_header_* fetch captured headers
16101 - BUILD: last release inadvertently prepended a "+" in front of the date
16102 - BUG/MEDIUM: stream-int: fix the keep-alive idle connection handler
16103 - BUG/MEDIUM: backend: do not re-initialize the connection's context upon reuse
16104 - BUG: Revert "OPTIM/MEDIUM: epoll: fuse active events into polled ones during polling changes"
16105 - BUG/MINOR: checks: successful check completion must not re-enable MAINT servers
16106 - MINOR: http: try to stick to same server after status 401/407
16107 - BUG/MINOR: http: always disable compression on HTTP/1.0
16108 - OPTIM: poll: restore polling after a poll/stop/want sequence
16109 - OPTIM: http: don't stop polling for read on the client side after a request
16110 - BUG/MEDIUM: checks: unchecked servers could not be enabled anymore
16111 - BUG/MEDIUM: stats: the web interface must check the tracked servers before enabling
16112 - BUG/MINOR: channel: CHN_INFINITE_FORWARD must be unsigned
16113 - BUG/MINOR: stream-int: do not clear the owner upon unregister
16114 - MEDIUM: stats: add support for HTTP keep-alive on the stats page
16115 - BUG/MEDIUM: stats: fix HTTP/1.0 breakage introduced in previous patch
16116 - Revert "MEDIUM: stats: add support for HTTP keep-alive on the stats page"
16117 - MAJOR: channel: add a new flag CF_WAKE_WRITE to notify the task of writes
16118 - OPTIM: session: set the READ_DONTWAIT flag when connecting
16119 - BUG/MINOR: http: don't clear the SI_FL_DONT_WAKE flag between requests
16120 - MINOR: session: factor out the connect time measurement
16121 - MEDIUM: session: prepare to support earlier transitions to the established state
16122 - MEDIUM: stream-int: make si_connect() return an established state when possible
16123 - MINOR: checks: use an inline function for health_adjust()
16124 - OPTIM: session: put unlikely() around the freewheeling code
16125 - MEDIUM: config: report a warning when multiple servers have the same name
16126 - BUG: Revert "OPTIM: poll: restore polling after a poll/stop/want sequence"
16127 - BUILD/MINOR: listener: remove a glibc warning on accept4()
16128 - BUG/MAJOR: connection: fix mismatch between rcv_buf's API and usage
16129 - BUILD: listener: fix recent accept4() again
16130 - BUG/MAJOR: ssl: fix breakage caused by recent fix abf08d9
16131 - BUG/MEDIUM: polling: ensure we update FD status when there's no more activity
16132 - MEDIUM: listener: fix polling management in the accept loop
16133 - MINOR: protocol: improve the proto->drain() API
16134 - MINOR: connection: add a new conn_drain() function
16135 - MEDIUM: tcp: report in tcp_drain() that lingering is already disabled on close
16136 - MEDIUM: connection: update callers of ctrl->drain() to use conn_drain()
16137 - MINOR: connection: add more error codes to report connection errors
16138 - MEDIUM: tcp: report connection error at the connection level
16139 - MEDIUM: checks: make use of chk_report_conn_err() for connection errors
16140 - BUG/MEDIUM: unique_id: HTTP request counter is not stable
16141 - DOC: fix misleading information about SIGQUIT
16142 - BUG/MAJOR: fix freezes during compression
16143 - BUG/MEDIUM: stream-interface: don't wake the task up before end of transfer
16144 - BUILD: fix VERDATE exclusion regex
16145 - CLEANUP: polling: rename "spec_e" to "state"
16146 - DOC: add a diagram showing polling state transitions
16147 - REORG: polling: rename "spec_e" to "state" and "spec_p" to "cache"
16148 - REORG: polling: rename "fd_spec" to "fd_cache"
16149 - REORG: polling: rename the cache allocation functions
16150 - REORG: polling: rename "fd_process_spec_events()" to "fd_process_cached_events()"
16151 - MAJOR: polling: rework the whole polling system
16152 - MAJOR: connection: remove the CO_FL_WAIT_{RD,WR} flags
16153 - MEDIUM: connection: remove conn_{data,sock}_poll_{recv,send}
16154 - MEDIUM: connection: add check for readiness in I/O handlers
16155 - MEDIUM: stream-interface: the polling flags must always be updated in chk_snd_conn
16156 - MINOR: stream-interface: no need to call fd_stop_both() on error
16157 - MEDIUM: connection: no need to recheck FD state
16158 - CLEANUP: connection: use conn_ctrl_ready() instead of checking the flag
16159 - CLEANUP: connection: use conn_xprt_ready() instead of checking the flag
16160 - CLEANUP: connection: fix comments in connection.h to reflect new behaviour.
16161 - OPTIM: raw-sock: don't speculate after a short read if polling is enabled
16162 - MEDIUM: polling: centralize polled events processing
16163 - MINOR: polling: create function fd_compute_new_polled_status()
16164 - MINOR: cli: add more information to the "show info" output
16165 - MEDIUM: listener: add support for limiting the session rate in addition to the connection rate
16166 - MEDIUM: listener: apply a limit on the session rate submitted to SSL
16167 - REORG: stats: move the stats socket states to dumpstats.c
16168 - MINOR: cli: add the new "show pools" command
16169 - BUG/MEDIUM: counters: flush content counters after each request
16170 - BUG/MEDIUM: counters: fix stick-table entry leak when using track-sc2 in connection
16171 - MINOR: tools: add very basic support for composite pointers
16172 - MEDIUM: counters: stop relying on session flags at all
16173 - BUG/MINOR: cli: fix missing break in command line parser
16174 - BUG/MINOR: config: correctly report when log-format headers require HTTP mode
16175 - MAJOR: http: update connection mode configuration
16176 - MEDIUM: http: make keep-alive + httpclose be passive mode
16177 - MAJOR: http: switch to keep-alive mode by default
16178 - BUG/MEDIUM: http: fix regression caused by recent switch to keep-alive by default
16179 - BUG/MEDIUM: listener: improve detection of non-working accept4()
16180 - BUILD: listener: add fcntl.h and unistd.h
16181 - BUG/MINOR: raw_sock: correctly set the MSG_MORE flag
16182
Willy Tarreau6b07bf72013-12-17 00:45:49 +0100161832013/12/17 : 1.5-dev21
16184 - MINOR: stats: don't use a monospace font to report numbers
16185 - MINOR: session: remove debugging code
16186 - BUG/MAJOR: patterns: fix double free caused by loading strings from files
16187 - MEDIUM: http: make option http_proxy automatically rewrite the URL
16188 - BUG/MEDIUM: http: cook_cnt() forgets to set its output type
16189 - BUG/MINOR: stats: correctly report throttle rate of low weight servers
16190 - BUG/MEDIUM: checks: servers must not start in slowstart mode
16191 - BUG/MINOR: acl: parser must also stop at comma on ACL-only keywords
16192 - MEDIUM: stream-int: implement a very simplistic idle connection manager
16193 - DOC: update the ROADMAP file
16194
Willy Tarreau11f64d62013-12-16 02:32:37 +0100161952013/12/16 : 1.5-dev20
16196 - DOC: add missing options to the manpage
16197 - DOC: add manpage references to all system calls
16198 - DOC: update manpage reference to haproxy-en.txt
16199 - DOC: remove -s and -l options from the manpage
16200 - DOC: missing information for the "description" keyword
16201 - DOC: missing http-send-name-header keyword in keyword table
16202 - MINOR: tools: function my_memmem() to lookup binary contents
16203 - MEDIUM: checks: add send/expect tcp based check
16204 - MEDIUM: backend: Enhance hash-type directive with an algorithm options
16205 - MEDIUM: backend: Implement avalanche as a modifier of the hashing functions.
16206 - DOC: Documentation for hashing function, with test results.
16207 - BUG/MEDIUM: ssl: potential memory leak using verifyhost
16208 - BUILD: ssl: compilation issue with openssl v0.9.6.
16209 - BUG/MINOR: ssl: potential memory leaks using ssl_c_key_alg or ssl_c_sig_alg.
16210 - MINOR: ssl: optimization of verifyhost on wildcard certificates.
16211 - BUG/MINOR: ssl: verifyhost does not match empty strings on wildcard.
16212 - MINOR: ssl: Add statement 'verifyhost' to "server" statements
16213 - CLEANUP: session: remove event_accept() which was not used anymore
16214 - BUG/MINOR: deinit: free fdinfo while doing cleanup
16215 - DOC: minor typo fix in documentation
16216 - BUG/MEDIUM: server: set the macro for server's max weight SRV_UWGHT_MAX to SRV_UWGHT_RANGE
16217 - BUG/MINOR: use the same check condition for server as other algorithms
16218 - DOC: fix typo in comments
16219 - BUG/MINOR: deinit: free server map which is allocated in init_server_map()
16220 - CLEANUP: stream_interface: cleanup loop information in si_conn_send_loop()
16221 - MINOR: buffer: align the last output line of buffer_dump()
16222 - MINOR: buffer: align the last output line if there are less than 8 characters left
16223 - DOC: stick-table: modify the description
16224 - OPTIM: stream_interface: return directly if the connection flag CO_FL_ERROR has been set
16225 - CLEANUP: code style: use tabs to indent codes
16226 - DOC: checkcache: block responses with cacheable cookies
16227 - BUG/MINOR: check_config_validity: check the returned value of stktable_init()
16228 - MEDIUM: haproxy-systemd-wrapper: Use haproxy in same directory
16229 - MEDIUM: systemd-wrapper: Kill child processes when interrupted
16230 - LOW: systemd-wrapper: Write debug information to stdout
16231 - BUG/MINOR: http: fix "set-tos" not working in certain configurations
16232 - MEDIUM: http: add IPv6 support for "set-tos"
16233 - DOC: ssl: update build instructions to use new SSL_* variables
16234 - BUILD/MINOR: systemd: fix compiler warning about unused result
16235 - url32+src - like base32+src but whole url including parameters
16236 - BUG/MINOR: fix forcing fastinter in "on-error"
16237 - CLEANUP: Make parameters of srv_downtime and srv_getinter const
16238 - CLEANUP: Remove unused 'last_slowstart_change' field from struct peer
16239 - MEDIUM: Split up struct server's check element
16240 - MEDIUM: Move result element to struct check
16241 - MEDIUM: Paramatise functions over the check of a server
16242 - MEDIUM: cfgparse: Factor out check initialisation
16243 - MEDIUM: Add state to struct check
16244 - MEDIUM: Move health element to struct check
16245 - MEDIUM: Add helper for task creation for checks
16246 - MEDIUM: Add helper function for failed checks
16247 - MEDIUM: Log agent fail, stopped or down as info
16248 - MEDIUM: Remove option lb-agent-chk
16249 - MEDIUM: checks: Add supplementary agent checks
16250 - MEDIUM: Do not mark a server as down if the agent is unavailable
16251 - MEDIUM: Set rise and fall of agent checks to 1
16252 - MEDIUM: Add enable and disable agent unix socket commands
16253 - MEDIUM: Add DRAIN state and report it on the stats page
16254 - BUILD/MINOR: missing header file
16255 - CLEANUP: regex: Create regex_comp function that compiles regex using compilation options
16256 - CLEANUP: The function "regex_exec" needs the string length but in many case they expect null terminated char.
16257 - MINOR: http: some exported functions were not in the header file
16258 - MINOR: http: change url_decode to return the size of the decoded string.
16259 - BUILD/MINOR: missing header file
16260 - BUG/MEDIUM: sample: The function v4tov6 cannot support input and output overlap
16261 - BUG/MINOR: arg: fix error reporting for add-header/set-header sample fetch arguments
16262 - MINOR: sample: export the generic sample conversion parser
16263 - MINOR: sample: export sample_casts
16264 - MEDIUM: acl: use the fetch syntax 'fetch(args),conv(),conv()' into the ACL keyword
16265 - MINOR: stick-table: use smp_expr_output_type() to retrieve the output type of a "struct sample_expr"
16266 - MINOR: sample: provide the original sample_conv descriptor struct to the argument checker function.
16267 - MINOR: tools: Add a function to convert buffer to an ipv6 address
16268 - MINOR: acl: export acl arrays
16269 - MINOR: acl: Extract the pattern parsing and indexation from the "acl_read_patterns_from_file()" function
16270 - MINOR: acl: Extract the pattern matching function
16271 - MINOR: sample: Define new struct sample_storage
16272 - MEDIUM: acl: associate "struct sample_storage" to each "struct acl_pattern"
16273 - REORG: acl/pattern: extract pattern matching from the acl file and create pattern.c
16274 - MEDIUM: pattern: create pattern expression
16275 - MEDIUM: pattern: rename "acl" prefix to "pat"
16276 - MEDIUM: sample: let the cast functions set their output type
16277 - MINOR: sample: add a private field to the struct sample_conv
16278 - MINOR: map: Define map types
16279 - MEDIUM: sample: add the "map" converter
16280 - MEDIUM: http: The redirect strings follows the log format rules.
16281 - BUG/MINOR: acl: acl parser does not recognize empty converter list
16282 - BUG/MINOR: map: The map list was declared in the map.h file
16283 - MINOR: map: Cleanup the initialisation of map descriptors.
16284 - MEDIUM: map: merge identical maps
16285 - BUG/MEDIUM: pattern: Pattern node has type of "struct pat_idx_elt" in place of "struct eb_node"
16286 - BUG/MEDIUM: map: Bad map file parser
16287 - CLEANUP/MINOR: standard: use the system define INET6_ADDRSTRLEN in place of MAX_IP6_LEN
16288 - BUG/MEDIUM: sample: conversion from str to ipv6 may read data past end
16289 - MINOR: map: export map_get_reference() function
16290 - MINOR: pattern: Each pattern sets the expected input type
16291 - MEDIUM: acl: Last patch change the output type
16292 - MEDIUM: pattern: Extract the index process from the pat_parse_*() functions
16293 - MINOR: standard: The function parse_binary() can use preallocated buffer
16294 - MINOR: regex: Change the struct containing regex
16295 - MINOR: regex: Copy the original regex expression into string.
16296 - MINOR: pattern: add support for compiling patterns for lookups
16297 - MINOR: pattern: make the pattern matching function return a pointer to the matched element
16298 - MINOR: map: export parse output sample functions
16299 - MINOR: pattern: add function to lookup a specific entry in pattern list
16300 - MINOR: pattern/map: Each pattern must free the associated sample
16301 - MEDIUM: dumpstat: make the CLI parser understand the backslash as an escape char
16302 - MEDIUM: map: dynamic manipulation of maps
16303 - BUG/MEDIUM: unique_id: junk in log on empty unique_id
16304 - BUG/MINOR: log: junk at the end of syslog packet
16305 - MINOR: Makefile: provide cscope rule
16306 - DOC: compression: chunk are not compressed anymore
16307 - MEDIUM: session: disable lingering on the server when the client aborts
16308 - BUG/MEDIUM: prevent gcc from moving empty keywords lists into BSS
16309 - DOC: remove the comment saying that SSL certs are not checked on the server side
16310 - BUG: counters: third counter was not stored if others unset
16311 - BUG/MAJOR: http: don't emit the send-name-header when no server is available
16312 - BUG/MEDIUM: http: "option checkcache" fails with the no-cache header
16313 - BUG/MAJOR: http: sample prefetch code was not properly migrated
16314 - BUG/MEDIUM: splicing: fix abnormal CPU usage with splicing
16315 - BUG/MINOR: stream_interface: don't call chk_snd() on polled events
16316 - OPTIM: splicing: use splice() for the last block when relevant
16317 - MEDIUM: sample: handle comma-delimited converter list
16318 - MINOR: sample: fix sample_process handling of unstable data
16319 - CLEANUP: acl: move the 3 remaining sample fetches to samples.c
16320 - MINOR: sample: add a new "date" fetch to return the current date
16321 - MINOR: samples: add the http_date([<offset>]) sample converter.
16322 - DOC: minor improvements to the part on the stats socket.
16323 - MEDIUM: sample: systematically pass the keyword pointer to the keyword
16324 - MINOR: payload: split smp_fetch_rdp_cookie()
16325 - MINOR: counters: factor out smp_fetch_sc*_tracked
16326 - MINOR: counters: provide a generic function to retrieve a stkctr for sc* and src.
16327 - MEDIUM: counters: factor out smp_fetch_sc*_get_gpc0
16328 - MEDIUM: counters: factor out smp_fetch_sc*_gpc0_rate
16329 - MEDIUM: counters: factor out smp_fetch_sc*_inc_gpc0
16330 - MEDIUM: counters: factor out smp_fetch_sc*_clr_gpc0
16331 - MEDIUM: counters: factor out smp_fetch_sc*_conn_cnt
16332 - MEDIUM: counters: factor out smp_fetch_sc*_conn_rate
16333 - MEDIUM: counters: factor out smp_fetch_sc*_conn_cur
16334 - MEDIUM: counters: factor out smp_fetch_sc*_sess_cnt
16335 - MEDIUM: counters: factor out smp_fetch_sc*_sess_rate
16336 - MEDIUM: counters: factor out smp_fetch_sc*_http_req_cnt
16337 - MEDIUM: counters: factor out smp_fetch_sc*_http_req_rate
16338 - MEDIUM: counters: factor out smp_fetch_sc*_http_err_cnt
16339 - MEDIUM: counters: factor out smp_fetch_sc*_http_err_rate
16340 - MEDIUM: counters: factor out smp_fetch_sc*_kbytes_in
16341 - MEDIUM: counters: factor out smp_fetch_sc*_bytes_in_rate
16342 - MEDIUM: counters: factor out smp_fetch_sc*_kbytes_out
16343 - MEDIUM: counters: factor out smp_fetch_sc*_bytes_out_rate
16344 - MEDIUM: counters: factor out smp_fetch_sc*_trackers
16345 - MINOR: session: make the number of stick counter entries more configurable
16346 - MEDIUM: counters: support passing the counter number as a fetch argument
16347 - MEDIUM: counters: support looking up a key in an alternate table
16348 - MEDIUM: cli: adjust the method for feeding frequency counters in tables
16349 - MINOR: cli: make it possible to enter multiple values at once with "set table"
16350 - MINOR: payload: allow the payload sample fetches to retrieve arbitrary lengths
16351 - BUG/MINOR: cli: "clear table" must not kill entries that don't match condition
16352 - MINOR: ssl: use MAXPATHLEN instead of PATH_MAX
16353 - MINOR: config: warn when a server with no specific port uses rdp-cookie
16354 - BUG/MEDIUM: unique_id: HTTP request counter must be unique!
16355 - DOC: add a mention about the limited chunk size
16356 - BUG/MEDIUM: fix broken send_proxy on FreeBSD
16357 - MEDIUM: stick-tables: flush old entries upon soft-stop
16358 - MINOR: tcp: add new "close" action for tcp-response
16359 - MINOR: payload: provide the "res.len" fetch method
16360 - BUILD: add SSL_INC/SSL_LIB variables to force the path to openssl
16361 - MINOR: http: compute response time before processing headers
16362 - BUG/MINOR: acl: fix improper string size assignment in proxy argument
16363 - BUG/MEDIUM: http: accept full buffers on smp_prefetch_http
16364 - BUG/MINOR: acl: implicit arguments of ACL keywords were not properly resolved
16365 - BUG/MEDIUM: session: risk of crash on out of memory conditions
16366 - BUG/MINOR: peers: set the accept date in outgoing connections
16367 - BUG/MEDIUM: tcp: do not skip tracking rules on second pass
16368 - BUG/MEDIUM: acl: do not evaluate next terms after a miss
16369 - MINOR: acl: add a warning when an ACL keyword is used without any value
16370 - MINOR: tcp: don't use tick_add_ifset() when timeout is known to be set
16371 - BUG/MINOR: acl: remove patterns from the tree before freeing them
16372 - MEDIUM: backend: add support for the wt6 hash
16373 - OPTIM/MEDIUM: epoll: fuse active events into polled ones during polling changes
16374 - OPTIM/MINOR: mark the source address as already known on accept()
16375 - BUG/MINOR: stats: don't count tarpitted connections twice
16376 - CLEANUP: http: homogenize processing of denied req counter
16377 - CLEANUP: http: merge error handling for req* and http-request *
16378 - BUG/MEDIUM: http: fix possible parser crash when parsing erroneous "http-request redirect" rules
16379 - BUG/MINOR: http: fix build warning introduced with url32/url32_src
16380 - BUG/MEDIUM: checks: fix slow start regression after fix attempt
16381 - BUG/MAJOR: server: weight calculation fails for map-based algorithms
16382 - MINOR: stats: report correct throttling percentage for servers in slowstart
16383 - OPTIM: connection: fold the error handling with handshake handling
16384 - MINOR: peers: accept to learn strings of different lengths
16385 - BUG/MAJOR: fix haproxy crash when using server tracking instead of checks
16386 - BUG/MAJOR: check: fix haproxy crash during soft-stop/soft-start
16387 - BUG/MINOR: stats: do not report "via" on tracking servers in maintenance
16388 - BUG/MINOR: connection: fix typo in error message report
16389 - BUG/MINOR: backend: fix target address retrieval in transparent mode
16390 - BUG/MINOR: config: report the correct track-sc number in tcp-rules
16391 - BUG/MINOR: log: fix log-format parsing errors
16392 - DOC: add some information about how to apply converters to samples
16393 - MINOR: acl/pattern: use types different from int to clarify who does what.
16394 - MINOR: pattern: import acl_find_match_name() into pattern.h
16395 - MEDIUM: stick-tables: support automatic conversion from ipv4<->ipv6
16396 - MEDIUM: log-format: relax parsing of '%' followed by unsupported characters
16397 - BUG/MINOR: http: usual deinit stuff in last commit
16398 - BUILD: log: silent a warning about isblank() with latest patches
16399 - BUG/MEDIUM: checks: fix health check regression causing them to depend on declaration order
16400 - BUG/MEDIUM: checks: fix a long-standing issue with reporting connection errors
16401 - BUG/MINOR: checks: don't consider errno and use conn->err_code
16402 - BUG/MEDIUM: checks: also update the DRAIN state from the web interface
16403 - MINOR: stats: remove some confusion between the DRAIN state and NOLB
16404 - BUG/MINOR: tcp: check that no error is pending during a connect probe
16405 - BUG/MINOR: connection: check EINTR when sending a PROXY header
16406 - MEDIUM: connection: set the socket shutdown flags on socket errors
16407 - BUG/MEDIUM: acl: fix regression introduced by latest converters support
16408 - MINOR: connection: clear errno prior to checking for errors
16409 - BUG/MINOR: checks: do not trust errno in write event before any syscall
16410 - MEDIUM: checks: centralize error reporting
16411 - OPTIM: checks: don't poll on recv when using plain TCP connects
16412 - OPTIM: checks: avoid setting SO_LINGER twice
16413 - MINOR: tools: add a generic binary hex string parser
16414 - BUG/MEDIUM: checks: tcp-check: do not poll when there's nothing to send
16415 - BUG/MEDIUM: check: tcp-check might miss some outgoing data when socket buffers are full
16416 - BUG/MEDIUM: args: fix double free on error path in argument expression parser
16417 - BUG/MINOR: acl: fix sample expression error reporting
16418 - BUG/MINOR: checks: tcp-check actions are enums, not flags
16419 - MEDIUM: checks: make tcp-check perform multiple send() at once
16420 - BUG/MEDIUM: stick: completely remove the unused flag from the store entries
16421 - OPTIM: ebtree: pack the struct eb_node to avoid holes on 64-bit
16422 - BUG/MEDIUM: stick-tables: complete the latest fix about store-responses
16423 - CLEANUP: stream_interface: remove unused field err_loc
16424 - MEDIUM: stats: don't use conn->xprt_st anymore
16425 - MINOR: session: add a simple function to retrieve a session from a task
16426 - MEDIUM: stats: don't use conn->xprt_ctx anymore
16427 - MEDIUM: peers: don't rely on conn->xprt_ctx anymore
16428 - MINOR: http: prevent smp_fetch_url_{ip,port} from using si->conn
16429 - MINOR: connection: make it easier to emit proxy protocol for unknown addresses
16430 - MEDIUM: stats: prepare the HTTP stats I/O handler to support more states
16431 - MAJOR: stats: move the HTTP stats handling to its applet
16432 - MEDIUM: stats: move request argument processing to the final step
16433 - MEDIUM: session: detect applets from the session by using s->target
16434 - MAJOR: session: check for a connection to an applet in sess_prepare_conn_req()
16435 - MAJOR: session: pass applet return traffic through the response analysers
16436 - MEDIUM: stream-int: split the shutr/shutw functions between applet and conn
16437 - MINOR: stream-int: make the shutr/shutw functions void
16438 - MINOR: obj: provide a safe and an unsafe access to pointed objects
16439 - MINOR: connection: add a field to store an object type
16440 - MINOR: connection: always initialize conn->objt_type to OBJ_TYPE_CONN
16441 - MEDIUM: stream interface: move the peers' ptr into the applet context
16442 - MINOR: stream-interface: move the applet context to its own struct
16443 - MINOR: obj: introduce a new type appctx
16444 - MINOR: stream-int: rename ->applet to ->appctx
16445 - MINOR: stream-int: split si_prepare_embedded into si_prepare_none and si_prepare_applet
16446 - MINOR: stream-int: add a new pointer to the end point
16447 - MEDIUM: stream-interface: set the pointer to the applet into the applet context
16448 - MAJOR: stream interface: remove the ->release function pointer
16449 - MEDIUM: stream-int: make ->end point to the connection or the appctx
16450 - CLEANUP: stream-int: remove obsolete si_ctrl function
16451 - MAJOR: stream-int: stop using si->conn and use si->end instead
16452 - MEDIUM: stream-int: do not allocate a connection in parallel to applets
16453 - MEDIUM: session: attach incoming connection to target on embryonic sessions
16454 - MINOR: connection: add conn_init() to (re)initialize a connection
16455 - MINOR: checks: call conn_init() to properly initialize the connection.
16456 - MINOR: peers: make use of conn_init() to initialize the connection
16457 - MINOR: session: use conn_init() to initialize the connections
16458 - MINOR: http: use conn_init() to reinitialize the server connection
16459 - MEDIUM: connection: replace conn_prepare with conn_assign
16460 - MINOR: get rid of si_takeover_conn()
16461 - MINOR: connection: add conn_new() / conn_free()
16462 - MAJOR: connection: add two new flags to indicate readiness of control/transport
16463 - MINOR: stream-interface: introduce si_reset() and si_set_state()
16464 - MINOR: connection: reintroduce conn_prepare to set the protocol and transport
16465 - MINOR: connection: replace conn_assign with conn_attach
16466 - MEDIUM: stream-interface: introduce si_attach_conn to replace si_prepare_conn
16467 - MAJOR: stream interface: dynamically allocate the outgoing connection
16468 - MEDIUM: connection: move the send_proxy offset to the connection
16469 - MINOR: connection: check for send_proxy during the connect(), not the SI
16470 - MEDIUM: connection: merge the send_proxy and local_send_proxy calls
16471 - MEDIUM: stream-int: replace occurrences of si->appctx with si_appctx()
16472 - MEDIUM: stream-int: return the allocated appctx in stream_int_register_handler()
16473 - MAJOR: stream-interface: dynamically allocate the applet context
16474 - MEDIUM: session: automatically register the applet designated by the target
16475 - MEDIUM: stats: delay appctx initialization
16476 - CLEANUP: peers: use less confusing state/status code names
16477 - MEDIUM: peers: delay appctx initialization
16478 - MINOR: stats: provide some appctx information in "show sess all"
16479 - DIET/MINOR: obj: pack the obj_type enum to 8 bits
16480 - DIET/MINOR: connection: rearrange a few fields to save 8 bytes in the struct
16481 - DIET/MINOR: listener: rearrange a few fields in struct listener to save 16 bytes
16482 - DIET/MINOR: proxy: rearrange a few fields in struct proxy to save 16 bytes
16483 - DIET/MINOR: session: reduce the struct session size by 8 bytes
16484 - DIET/MINOR: stream-int: rearrange a few fields in struct stream_interface to save 8 bytes
16485 - DIET/MINOR: http: reduce the size of struct http_txn by 8 bytes
16486 - MINOR: http: switch the http state to an enum
16487 - MINOR: http: use an enum for the auth method in http_auth_data
16488 - DIET/MINOR: task: reduce struct task size by 8 bytes
16489 - MINOR: stream_interface: add reporting of ressouce allocation errors
16490 - MINOR: session: report lack of resources using the new stream-interface's error code
16491 - BUILD: simplify the date and version retrieval in the makefile
16492 - BUILD: prepare the makefile to skip format lines in SUBVERS and VERDATE
16493 - BUILD: use format tags in VERDATE and SUBVERS files
16494 - BUG/MEDIUM: channel: bo_getline() must wait for \n until buffer is full
16495 - CLEANUP: check: server port is unsigned
16496 - BUG/MEDIUM: checks: agent doesn't get the response if server does not closes
16497 - MINOR: tools: buf2ip6 must not modify output on failure
16498 - MINOR: pattern: do not assign SMP_TYPES by default to patterns
16499 - MINOR: sample: make sample_parse_expr() use memprintf() to report parse errors
16500 - MINOR: arg: improve wording on error reporting
16501 - BUG/MEDIUM: sample: simplify and fix the argument parsing
16502 - MEDIUM: acl: fix the argument parser to let the lower layer report detailed errors
16503 - MEDIUM: acl: fix the initialization order of the ACL expression
16504 - CLEANUP: acl: remove useless blind copy-paste from sample converters
16505 - TESTS: add regression tests for ACL and sample expression parsers
16506 - BUILD: time: adapt the type of TV_ETERNITY to the local system
16507 - MINOR: chunks: allocate the trash chunks before parsing the config
16508 - BUILD: definitely silence some stupid GCC warnings
16509 - MINOR: chunks: always initialize the output chunk in get_trash_chunk()
16510 - MINOR: checks: improve handling of the servers tracking chain
16511 - REORG: checks: retrieve the check-specific defines from server.h to checks.h
16512 - MINOR: checks: use an enum instead of flags to report a check result
16513 - MINOR: checks: rename the state flags
16514 - MINOR: checks: replace state DISABLED with CONFIGURED and ENABLED
16515 - MINOR: checks: use check->state instead of srv->state & SRV_CHECKED
16516 - MINOR: checks: fix agent check interval computation
16517 - MINOR: checks: add a PAUSED state for the checks
16518 - MINOR: checks: create the agent tasks even when no check is configured
16519 - MINOR: checks: add a flag to indicate what check is an agent
16520 - MEDIUM: checks: enable agent checks even if health checks are disabled
16521 - BUG/MEDIUM: checks: ensure we can enable a server after boot
16522 - BUG/MEDIUM: checks: tracking servers must not inherit the MAINT flag
16523 - BUG/MAJOR: session: repair tcp-request connection rules
16524 - BUILD: fix SUBVERS extraction in the Makefile
16525 - BUILD: pattern: silence a warning about uninitialized value
16526 - BUILD: log: fix build warning on Solaris
16527 - BUILD: dumpstats: fix build error on Solaris
16528 - DOC: move option pgsql-check to the correct place
16529 - DOC: move option tcp-check to the proper place
16530 - MINOR: connection: add simple functions to report connection readiness
16531 - MEDIUM: connection: centralize handling of nolinger in fd management
16532 - OPTIM: http: set CF_READ_DONTWAIT on response message
16533 - OPTIM: http: do not re-enable reading on client side while closing the server side
16534 - MINOR: config: add option http-keep-alive
16535 - MEDIUM: connection: inform si_alloc_conn() whether existing conn is OK or not
16536 - MAJOR: stream-int: handle the connection reuse in si_connect()
16537 - MAJOR: http: add the keep-alive transition on the server side
16538 - MAJOR: backend: enable connection reuse
16539 - MINOR: http: add option prefer-last-server
16540 - MEDIUM: http: do not report connection errors for second and further requests
16541
Willy Tarreaueab1dc62013-06-17 15:10:25 +0200165422013/06/17 : 1.5-dev19
16543 - MINOR: stats: remove the autofocus on the scope input field
16544 - BUG/MEDIUM: Fix crt-list file parsing error: filtered name was ignored.
16545 - BUG/MEDIUM: ssl: EDH ciphers are not usable if no DH parameters present in pem file.
16546 - BUG/MEDIUM: shctx: makes the code independent on SSL runtime version.
16547 - MEDIUM: ssl: improve crt-list format to support negation
16548 - BUG: ssl: fix crt-list for clients not supporting SNI
16549 - MINOR: stats: show soft-stopped servers in different color
16550 - BUG/MINOR: config: "source" does not work in defaults section
16551 - BUG: regex: fix pcre compile error when using JIT
16552 - MINOR: ssl: add pattern fetch 'ssl_c_sha1'
16553 - BUG: ssl: send payload gets corrupted if tune.ssl.maxrecord is used
16554 - MINOR: show PCRE version and JIT status in -vv
16555 - BUG/MINOR: jit: don't rely on USE flag to detect support
16556 - DOC: readme: add suggestion to link against static openssl
16557 - DOC: examples: provide simplified ssl configuration
16558 - REORG: tproxy: prepare the transparent proxy defines for accepting other OSes
16559 - MINOR: tproxy: add support for FreeBSD
16560 - MINOR: tproxy: add support for OpenBSD
16561 - DOC: examples: provide an example of transparent proxy configuration for FreeBSD 8
16562 - CLEANUP: fix minor typo in error message.
16563 - CLEANUP: fix missing include <string.h> in proto/listener.h
16564 - CLEANUP: protect checks.h from multiple inclusions
16565 - MINOR: compression: acl "res.comp" and fetch "res.comp_algo"
16566 - BUG/MINOR: http: add-header/set-header did not accept the ACL condition
16567 - BUILD: mention in the Makefile that USE_PCRE_JIT is for libpcre >= 8.32
16568 - BUG/MEDIUM: splicing is broken since 1.5-dev12
16569 - BUG/MAJOR: acl: add implicit arguments to the resolve list
16570 - BUG/MINOR: tcp: fix error reporting for TCP rules
16571 - CLEANUP: peers: remove a bit of spaghetti to prepare for the next bugfix
16572 - MINOR: stick-table: allow to allocate an entry without filling it
16573 - BUG/MAJOR: peers: fix an overflow when syncing strings larger than 16 bytes
16574 - MINOR: session: only call http_send_name_header() when changing the server
16575 - MINOR: tcp: report the erroneous word in tcp-request track*
16576 - BUG/MAJOR: backend: consistent hash can loop forever in certain circumstances
16577 - BUG/MEDIUM: log: fix regression on log-format handling
16578 - MEDIUM: log: report file name, line number, and directive name with log-format errors
16579 - BUG/MINOR: cli: "clear table" did not work anymore without a key
16580 - BUG/MINOR: cli: "clear table xx data.xx" does not work anymore
16581 - BUG/MAJOR: http: compression still has defects on chunked responses
16582 - BUG/MINOR: stats: fix confirmation links on the stats interface
16583 - BUG/MINOR: stats: the status bar does not appear anymore after a change
16584 - BUG/MEDIUM: stats: allocate the stats frontend also on "stats bind-process"
16585 - BUG/MEDIUM: stats: fix a regression when dealing with POST requests
16586 - BUG/MINOR: fix unterminated ACL array in compression
16587 - BUILD: last fix broke non-linux platforms
16588 - MINOR: init: indicate the SSL runtime version on -vv.
16589 - BUG/MEDIUM: compression: the deflate algorithm must use global settings as well
16590 - BUILD: stdbool is not portable (again)
16591 - DOC: readme: add a small reminder about restrictions to respect in the code
16592 - MINOR: ebtree: add new eb_next_dup/eb_prev_dup() functions to visit duplicates
16593 - BUG/MINOR: acl: fix a double free during exit when using PCRE_JIT
16594 - DOC: fix wrong copy-paste in the rspdel example
16595 - MINOR: counters: make it easier to extend the amount of tracked counters
16596 - MEDIUM: counters: add support for tracking a third counter
16597 - MEDIUM: counters: add a new "gpc0_rate" counter in stick-tables
16598 - BUG/MAJOR: http: always ensure response buffer has some room for a response
16599 - MINOR: counters: add fetch/acl sc*_tracked to indicate whether a counter is tracked
16600 - MINOR: defaults: allow REQURI_LEN and CAPTURE_LEN to be redefined
16601 - MINOR: log: add a new flag 'L' for locally processed requests
16602 - MINOR: http: add full-length header fetch methods
16603 - MEDIUM: protocol: implement a "drain" function in protocol layers
16604 - MEDIUM: http: add a new "http-response" ruleset
16605 - MEDIUM: http: add the "set-nice" action to http-request and http-response
16606 - MEDIUM: log: add a log level override value in struct session
16607 - MEDIUM: http: add support for action "set-log-level" in http-request/http-response
16608 - MEDIUM: http: add support for "set-tos" in http-request/http-response
16609 - MEDIUM: http: add the "set-mark" action on http-request/http-response rules
16610 - MEDIUM: tcp: add "tcp-request connection expect-proxy layer4"
16611 - MEDIUM: acl: automatically detect the type of certain fetches
16612 - MEDIUM: acl: remove a lot of useless ACLs that are equivalent to their fetches
16613 - MEDIUM: acl: remove 15 additional useless ACLs that are equivalent to their fetches
16614 - DOC: major reorg of ACL + sample fetch
16615 - CLEANUP: http: remove the bogus urlp_ip ACL match
16616 - MINOR: acl: add the new "env()" fetch method to retrieve an environment variable
16617 - BUG/MINOR: acl: correctly consider boolean fetches when doing casts
16618 - BUG/CRITICAL: fix a possible crash when using negative header occurrences
16619 - DOC: update ROADMAP file
16620 - MEDIUM: counters: use sc0/sc1/sc2 instead of sc1/sc2/sc3
16621 - MEDIUM: stats: add proxy name filtering on the statistic page
16622
Willy Tarreau289dd922013-04-03 02:26:31 +0200166232013/04/03 : 1.5-dev18
16624 - DOCS: Add explanation of intermediate certs to crt paramater
16625 - DOC: typo and minor fixes in compression paragraph
16626 - MINOR: config: http-request configuration error message misses new keywords
16627 - DOC: minor typo fix in documentation
16628 - BUG/MEDIUM: ssl: ECDHE ciphers not usable without named curve configured.
16629 - MEDIUM: ssl: add bind-option "strict-sni"
16630 - MEDIUM: ssl: add mapping from SNI to cert file using "crt-list"
16631 - MEDIUM: regex: Use PCRE JIT in acl
16632 - DOC: simplify bind option "interface" explanation
16633 - DOC: tfo: bump required kernel to linux-3.7
16634 - BUILD: add explicit support for TFO with USE_TFO
16635 - MEDIUM: New cli option -Ds for systemd compatibility
16636 - MEDIUM: add haproxy-systemd-wrapper
16637 - MEDIUM: add systemd service
16638 - BUG/MEDIUM: systemd-wrapper: don't leak zombie processes
16639 - BUG/MEDIUM: remove supplementary groups when changing gid
16640 - BUG/MEDIUM: config: fix parser crash with bad bind or server address
16641 - BUG/MINOR: Correct logic in cut_crlf()
16642 - CLEANUP: checks: Make desc argument to set_server_check_status const
16643 - CLEANUP: dumpstats: Make cli_release_handler() static
16644 - MEDIUM: server: Break out set weight processing code
16645 - MEDIUM: server: Allow relative weights greater than 100%
16646 - MEDIUM: server: Tighten up parsing of weight string
16647 - MEDIUM: checks: Add agent health check
16648 - BUG/MEDIUM: ssl: openssl 0.9.8 doesn't open /dev/random before chroot
16649 - BUG/MINOR: time: frequency counters are not totally accurate
16650 - BUG/MINOR: http: don't process abortonclose when request was sent
16651 - BUG/MEDIUM: stream_interface: don't close outgoing connections on shutw()
16652 - BUG/MEDIUM: checks: ignore late resets after valid responses
16653 - DOC: fix bogus recommendation on usage of gpc0 counter
16654 - BUG/MINOR: http-compression: lookup Cache-Control in the response, not the request
16655 - MINOR: signal: don't block SIGPROF by default
16656 - OPTIM: epoll: make use of EPOLLRDHUP
16657 - OPTIM: splice: detect shutdowns and avoid splice() == 0
16658 - OPTIM: splice: assume by default that splice is working correctly
16659 - BUG/MINOR: log: temporary fix for lost SSL info in some situations
16660 - BUG/MEDIUM: peers: only the last peers section was used by tables
16661 - BUG/MEDIUM: config: verbosely reject peers sections with multiple local peers
16662 - BUG/MINOR: epoll: use a fix maxevents argument in epoll_wait()
16663 - BUG/MINOR: config: fix improper check for failed memory alloc in ACL parser
16664 - BUG/MINOR: config: free peer's address when exiting upon parsing error
16665 - BUG/MINOR: config: check the proper variable when parsing log minlvl
16666 - BUG/MEDIUM: checks: ensure the health_status is always within bounds
16667 - BUG/MINOR: cli: show sess should always validate s->listener
16668 - BUG/MINOR: log: improper NULL return check on utoa_pad()
16669 - CLEANUP: http: remove a useless null check
16670 - CLEANUP: tcp/unix: remove useless NULL check in {tcp,unix}_bind_listener()
16671 - BUG/MEDIUM: signal: signal handler does not properly check for signal bounds
16672 - BUG/MEDIUM: tools: off-by-one in quote_arg()
16673 - BUG/MEDIUM: uri_auth: missing NULL check and memory leak on memory shortage
16674 - BUG/MINOR: unix: remove the 'level' field from the ux struct
16675 - CLEANUP: http: don't try to deinitialize http compression if it fails before init
16676 - CLEANUP: config: slowstart is never negative
16677 - CLEANUP: config: maxcompcpuusage is never negative
16678 - BUG/MEDIUM: log: emit '-' for empty fields again
16679 - BUG/MEDIUM: checks: fix a race condition between checks and observe layer7
16680 - BUILD: fix a warning emitted by isblank() on non-c99 compilers
16681 - BUILD: improve the makefile's support for libpcre
16682 - MEDIUM: halog: add support for counting per source address (-ic)
16683 - MEDIUM: tools: make str2sa_range support all address syntaxes
16684 - MEDIUM: config: make use of str2sa_range() instead of str2sa()
16685 - MEDIUM: config: use str2sa_range() to parse server addresses
16686 - MEDIUM: config: use str2sa_range() to parse peers addresses
16687 - MINOR: tests: add a config file to ease address parsing tests.
16688 - MINOR: ssl: add a global tunable for the max SSL/TLS record size
16689 - BUG/MINOR: syscall: fix NR_accept4 system call on sparc/linux
16690 - BUILD/MINOR: syscall: add definition of NR_accept4 for ARM
16691 - MINOR: config: report missing peers section name
16692 - BUG/MEDIUM: tools: fix bad character handling in str2sa_range()
16693 - BUG/MEDIUM: stats: never apply "unix-bind prefix" to the global stats socket
16694 - MINOR: tools: prepare str2sa_range() to return an error message
16695 - BUG/MEDIUM: checks: don't call connect() on unsupported address families
16696 - MINOR: tools: prepare str2sa_range() to accept a prefix
16697 - MEDIUM: tools: make str2sa_range() parse unix addresses too
16698 - MEDIUM: config: make str2listener() use str2sa_range() to parse unix addresses
16699 - MEDIUM: config: use a single str2sa_range() call to parse bind addresses
16700 - MEDIUM: config: use str2sa_range() to parse log addresses
16701 - CLEANUP: tools: remove str2sun() which is not used anymore.
16702 - MEDIUM: config: add complete support for str2sa_range() in dispatch
16703 - MEDIUM: config: add complete support for str2sa_range() in server addr
16704 - MEDIUM: config: add complete support for str2sa_range() in 'server'
16705 - MEDIUM: config: add complete support for str2sa_range() in 'peer'
16706 - MEDIUM: config: add complete support for str2sa_range() in 'source' and 'usesrc'
16707 - CLEANUP: minor cleanup in str2sa_range() and str2ip()
16708 - CLEANUP: config: do not use multiple errmsg at once
16709 - MEDIUM: tools: support specifying explicit address families in str2sa_range()
16710 - MAJOR: listener: support inheriting a listening fd from the parent
16711 - MAJOR: tools: support environment variables in addresses
16712 - BUG/MEDIUM: http: add-header should not emit "-" for empty fields
16713 - BUG/MEDIUM: config: ACL compatibility check on "redirect" was wrong
16714 - BUG/MEDIUM: http: fix another issue caused by http-send-name-header
16715 - DOC: mention the new HTTP 307 and 308 redirect statues
16716 - MEDIUM: poll: do not use FD_* macros anymore
16717 - BUG/MAJOR: ev_select: disable the select() poller if maxsock > FD_SETSIZE
16718 - BUG/MINOR: acl: ssl_fc_{alg,use}_keysize must parse integers, not strings
16719 - BUG/MINOR: acl: ssl_c_used, ssl_fc{,_has_crt,_has_sni} take no pattern
16720 - BUILD: fix usual isdigit() warning on solaris
16721 - BUG/MEDIUM: tools: vsnprintf() is not always reliable on Solaris
16722 - OPTIM: buffer: remove one jump in buffer_count()
16723 - OPTIM: http: improve branching in chunk size parser
16724 - OPTIM: http: optimize the response forward state machine
16725 - BUILD: enable poll() by default in the makefile
16726 - BUILD: add explicit support for Mac OS/X
16727 - BUG/MAJOR: http: use a static storage for sample fetch context
16728 - BUG/MEDIUM: ssl: improve error processing and reporting in ssl_sock_load_cert_list_file()
16729 - BUG/MAJOR: http: fix regression introduced by commit a890d072
16730 - BUG/MAJOR: http: fix regression introduced by commit d655ffe
16731 - BUG/CRITICAL: using HTTP information in tcp-request content may crash the process
16732 - MEDIUM: acl: remove flag ACL_MAY_LOOKUP which is improperly used
16733 - MEDIUM: samples: use new flags to describe compatibility between fetches and their usages
16734 - MINOR: log: indicate it when some unreliable sample fetches are logged
16735 - MEDIUM: samples: move payload-based fetches and ACLs to their own file
16736 - MINOR: backend: rename sample fetch functions and declare the sample keywords
16737 - MINOR: frontend: rename sample fetch functions and declare the sample keywords
16738 - MINOR: listener: rename sample fetch functions and declare the sample keywords
16739 - MEDIUM: http: unify acl and sample fetch functions
16740 - MINOR: session: rename sample fetch functions and declare the sample keywords
16741 - MAJOR: acl: make all ACLs reference the fetch function via a sample.
16742 - MAJOR: acl: remove the arg_mask from the ACL definition and use the sample fetch's
16743 - MAJOR: acl: remove fetch argument validation from the ACL struct
16744 - MINOR: http: add new direction-explicit sample fetches for headers and cookies
16745 - MINOR: payload: add new direction-explicit sample fetches
16746 - CLEANUP: acl: remove ACL hooks which were never used
16747 - MEDIUM: proxy: remove acl_requires and just keep a flag "http_needed"
16748 - MINOR: sample: provide a function to report the name of a sample check point
16749 - MAJOR: acl: convert all ACL requires to SMP use+val instead of ->requires
16750 - CLEANUP: acl: remove unused references to ACL_USE_*
16751 - MINOR: http: replace acl_parse_ver with acl_parse_str
16752 - MEDIUM: acl: move the ->parse, ->match and ->smp fields to acl_expr
16753 - MAJOR: acl: add option -m to change the pattern matching method
16754 - MINOR: acl: remove the use_count in acl keywords
16755 - MEDIUM: acl: have a pointer to the keyword name in acl_expr
16756 - MEDIUM: acl: support using sample fetches directly in ACLs
16757 - MEDIUM: http: remove val_usr() to validate user_lists
16758 - MAJOR: sample: maintain a per-proxy list of the fetch args to resolve
16759 - MINOR: ssl: add support for the "alpn" bind keyword
16760 - MINOR: http: status code 303 is HTTP/1.1 only
16761 - MEDIUM: http: implement redirect 307 and 308
16762 - MINOR: http: status 301 should not be marked non-cacheable
16763
Willy Tarreaua3ecbd92012-12-28 15:04:05 +0100167642012/12/28 : 1.5-dev17
16765 - MINOR: ssl: Setting global tune.ssl.cachesize value to 0 disables SSL session cache.
16766 - BUG/MEDIUM: stats: fix stats page regression introduced by commit 20b0de5
16767 - BUG/MINOR: stats: last fix was still wrong
16768 - BUG/MINOR: stats: http-request rules still don't cope with stats
16769 - BUG/MINOR: http: http-request add-header emits a corrupted header
16770 - BUG/MEDIUM: stats: disable request analyser when processing POST or HEAD
16771 - BUG/MINOR: log: make log-format, unique-id-format and add-header more independant
16772 - BUILD: log: unused variable svid
16773 - CLEANUP: http: rename the misleading http_check_access_rule
16774 - MINOR: http: move redirect rule processing to its own function
16775 - REORG: config: move the http redirect rule parser to proto_http.c
16776 - MEDIUM: http: add support for "http-request redirect" rules
16777 - MEDIUM: http: add support for "http-request tarpit" rule
16778
Willy Tarreau69eda352012-12-24 16:48:14 +0100167792012/12/24 : 1.5-dev16
16780 - BUG/MEDIUM: ssl: Prevent ssl error from affecting other connections.
16781 - BUG/MINOR: ssl: error is not reported if it occurs simultaneously with peer close detection.
16782 - MINOR: ssl: add fetch and acl "ssl_c_used" to check if current SSL session uses a client certificate.
16783 - MINOR: contrib: make the iprange tool grep for addresses
16784 - CLEANUP: polling: gcc doesn't always optimize constants away
16785 - OPTIM: poll: optimize fd management functions for low register count CPUs
16786 - CLEANUP: poll: remove a useless double-check on fdtab[fd].owner
16787 - OPTIM: epoll: use a temp variable for intermediary flag computations
16788 - OPTIM: epoll: current fd does not count as a new one
16789 - BUG/MINOR: poll: the I/O handler was called twice for polled I/Os
16790 - MINOR: http: make resp_ver and status ACLs check for the presence of a response
16791 - BUG/MEDIUM: stream-interface: fix possible stalls during transfers
16792 - BUG/MINOR: stream_interface: don't return when the fd is already set
16793 - BUG/MEDIUM: connection: always update connection flags prior to computing polling
16794 - CLEANUP: buffer: use buffer_empty() instead of buffer_len()==0
16795 - BUG/MAJOR: stream_interface: fix occasional data transfer freezes
16796 - BUG/MEDIUM: stream_interface: fix another case where the reader might not be woken up
16797 - BUG/MINOR: http: don't abort client connection on premature responses
16798 - BUILD: no need to clean up when making git-tar
16799 - MINOR: log: add a tag for amount of bytes uploaded from client to server
16800 - BUG/MEDIUM: log: fix possible segfault during config parsing
16801 - MEDIUM: log: change a few log tokens to make them easier to remember
16802 - BUG/MINOR: log: add_to_logformat_list() used the wrong constants
16803 - MEDIUM: log-format: make the format parser more robust and more extensible
16804 - MINOR: sample: support cast from bool to string
16805 - MINOR: samples: add a function to fetch and convert any sample to a string
16806 - MINOR: log: add lf_text_len
16807 - MEDIUM: log: add the ability to include samples in logs
16808 - REORG: stats: massive code reorg and cleanup
16809 - REORG: stats: move the HTTP header injection to proto_http
16810 - REORG: stats: functions are now HTTP/CLI agnostic
16811 - BUG/MINOR: log: fix regression introduced by commit 8a3f52
16812 - MINOR: chunks: centralize the trash chunk allocation
16813 - MEDIUM: stats: use hover boxes instead of title to report details
16814 - MEDIUM: stats: use multi-line tips to display detailed counters
16815 - MINOR: tools: simplify the use of the int to ascii macros
16816 - MINOR: stats: replace STAT_FMT_CSV with STAT_FMT_HTML
16817 - MINOR: http: prepare to support more http-request actions
16818 - MINOR: log: make parse_logformat_string() take a const char *
16819 - MEDIUM: http: add http-request 'add-header' and 'set-header' to build headers
16820
Willy Tarreau0cae4b32012-12-12 00:39:52 +0100168212012/12/12 : 1.5-dev15
16822 - DOC: add a few precisions on compression
16823 - BUG/MEDIUM: ssl: Fix handshake failure on session resumption with client cert.
16824 - BUG/MINOR: ssl: One free session in cache remains unused.
16825 - BUG/MEDIUM: ssl: first outgoing connection would fail with {ca,crt}-ignore-err
16826 - MEDIUM: ssl: manage shared cache by blocks for huge sessions.
16827 - MINOR: acl: add fetch for server session rate
16828 - BUG/MINOR: compression: Content-Type is case insensitive
16829 - MINOR: compression: disable on multipart or status != 200
16830 - BUG/MINOR: http: don't report client aborts as server errors
16831 - MINOR: stats: compute the ratio of compressed response based on 2xx responses
16832 - MINOR: http: factor out the content-type checks
16833 - BUG/MAJOR: stats: correctly check for a possible divide error when showing compression ratios
16834 - BUILD: ssl: OpenSSL 0.9.6 has no renegociation
16835 - BUG/MINOR: http: disable compression when message has no body
16836 - MINOR: compression: make the stats a bit more robust
16837 - BUG/MEDIUM: comp: DEFAULT_MAXZLIBMEM was expressed in bytes and not megabytes
16838 - MINOR: connection: don't remove failed handshake flags
16839 - MEDIUM: connection: add an error code in connections
16840 - MEDIUM: connection: add minimal error reporting in logs for incomplete connections
16841 - MEDIUM: connection: add error reporting for the PROXY protocol header
16842 - MEDIUM: connection: add error reporting for the SSL
16843 - DOC: document the connection error format in logs
16844 - BUG/MINOR: http: don't log a 503 on client errors while waiting for requests
16845 - BUILD: stdbool is not portable
16846 - BUILD: ssl: NAME_MAX is not portable, use MAXPATHLEN instead
16847 - BUG/MAJOR: raw_sock: must check error code on hangup
16848 - BUG/MAJOR: polling: do not set speculative events on ERR nor HUP
16849 - BUG/MEDIUM: session: fix FD leak when transport layer logging is enabled
16850 - MINOR: stats: add a few more information on session dump
16851 - BUG/MINOR: tcp: set the ADDR_TO_SET flag on outgoing connections
16852 - CLEANUP: connection: remove unused server/proxy/task/si_applet declarations
16853 - BUG/MEDIUM: tcp: process could theorically crash on lack of source ports
16854 - MINOR: cfgparse: mention "interface" in the list of allowed "source" options
16855 - MEDIUM: connection: introduce "struct conn_src" for servers and proxies
16856 - CLEANUP: proto_tcp: use the same code to bind servers and backends
16857 - CLEANUP: backend: use the same tproxy address selection code for servers and backends
16858 - BUG/MEDIUM: stick-tables: conversions to strings were broken in dev13
16859 - MEDIUM: proto_tcp: add support for tracking L7 information
16860 - MEDIUM: counters: add sc1_trackers/sc2_trackers
16861 - MINOR: http: add the "base32" pattern fetch function
16862 - MINOR: http: add the "base32+src" fetch method.
16863 - CLEANUP: session: use an array for the stick counters
16864 - BUG/MINOR: proto_tcp: fix parsing of "table" in track-sc1/2
16865 - BUG/MINOR: proto_tcp: bidirectional fetches not supported anymore in track-sc1/2
16866 - BUG/MAJOR: connection: always recompute polling status upon I/O
16867 - BUG/MINOR: connection: remove a few synchronous calls to polling updates
16868 - MINOR: config: improve error checking on TCP stick-table tracking
16869 - DOC: add some clarifications to the readme
16870
Willy Tarreaufee48ce2012-11-26 03:11:05 +0100168712012/11/26 : 1.5-dev14
16872 - DOC: fix minor typos
16873 - BUG/MEDIUM: compression: does not forward trailers
16874 - MINOR: buffer_dump with ASCII
16875 - BUG/MEDIUM: checks: mark the check as stopped after a connect error
16876 - BUG/MEDIUM: checks: ensure we completely disable polling upon success
16877 - BUG/MINOR: checks: don't mark the FD as closed before transport close
16878 - MEDIUM: checks: avoid accumulating TIME_WAITs during checks
16879 - MINOR: cli: report the msg state in full text in "show sess $PTR"
16880 - CLEANUP: checks: rename some server check flags
16881 - MAJOR: checks: rework completely bogus state machine
16882 - BUG/MINOR: checks: slightly clean the state machine up
16883 - MEDIUM: checks: avoid waking the application up for pure TCP checks
16884 - MEDIUM: checks: close the socket as soon as we have a response
16885 - BUG/MAJOR: checks: close FD on all timeouts
16886 - MINOR: checks: fix recv polling after connect()
16887 - MEDIUM: connection: provide a common conn_full_close() function
16888 - BUG/MEDIUM: checks: prevent TIME_WAITs from appearing also on timeouts
16889 - BUG/MAJOR: peers: the listener's maxaccept was not set and caused loops
16890 - MINOR: listeners: make the accept loop more robust when maxaccept==0
16891 - BUG/MEDIUM: acl: correctly resolve all args, not just the first one
16892 - BUG/MEDIUM: acl: make prue_acl_expr() correctly free ACL expressions upon exit
16893 - BUG/MINOR: stats: fix inversion of the report of a check in progress
16894 - MEDIUM: tcp: add explicit support for delayed ACK in connect()
16895 - BUG/MEDIUM: connection: always disable polling upon error
16896 - MINOR: connection: abort earlier when errors are detected
16897 - BUG/MEDIUM: checks: report handshake failures
16898 - BUG/MEDIUM: connection: local_send_proxy must wait for connection to establish
16899 - MINOR: tcp: add support for the "v6only" bind option
16900 - MINOR: stats: also report the computed compression savings in html stats
16901 - MINOR: stats: report the total number of compressed responses per front/back
16902 - MINOR: tcp: add support for the "v4v6" bind option
16903 - DOC: stats: document the comp_rsp stats column
16904 - BUILD: buffer: fix another isprint() warning on solaris
16905 - MINOR: cli: add support for the "show sess all" command
16906 - BUG/MAJOR: cli: show sess <id> may randomly corrupt the back-ref list
16907 - MINOR: cli: improve output format for show sess $ptr
16908
Willy Tarreauad15d122012-11-22 01:11:33 +0100169092012/11/22 : 1.5-dev13
16910 - BUILD: fix build issue without USE_OPENSSL
16911 - BUILD: fix compilation error with DEBUG_FULL
16912 - DOC: ssl: remove prefer-server-ciphers documentation
16913 - DOC: ssl: surround keywords with quotes
16914 - DOC: fix minor typo on http-send-name-header
16915 - BUG/MEDIUM: acls using IPv6 subnets patterns incorrectly match IPs
16916 - BUG/MAJOR: fix a segfault on option http_proxy and url_ip acl
16917 - MEDIUM: http: accept IPv6 values with (s)hdr_ip acl
16918 - BUILD: report zlib support in haproxy -vv
16919 - DOC: compression: add some details and clean up the formatting
16920 - DOC: Change is_ssl acl to ssl_fc acl in example
16921 - DOC: make it clear what the HTTP request size is
16922 - MINOR: ssl: try to load Diffie-Hellman parameters from cert file
16923 - DOC: ssl: update 'crt' statement on 'bind' about Diffie-Hellman parameters loading
16924 - MINOR: ssl: add elliptic curve Diffie-Hellman support for ssl key generation
16925 - DOC: ssl: add 'ecdhe' statement on 'bind'
16926 - MEDIUM: ssl: add client certificate authentication support
16927 - DOC: ssl: add 'verify', 'cafile' and 'crlfile' statements on 'bind'
16928 - MINOR: ssl: add fetch and ACL 'client_crt' to test a client cert is present
16929 - DOC: ssl: add fetch and ACL 'client_cert'
16930 - MINOR: ssl: add ignore verify errors options
16931 - DOC: ssl: add 'ca-ignore-err' and 'crt-ignore-err' statements on 'bind'
16932 - MINOR: ssl: add fetch and ACL 'ssl_verify_result'
16933 - DOC: ssl: add fetch and ACL 'ssl_verify_result'
16934 - MINOR: ssl: add fetches and ACLs to return verify errors
16935 - DOC: ssl: add fetches and ACLs 'ssl_verify_crterr', 'ssl_verify_caerr', and 'ssl_verify_crterr_depth'
16936 - MINOR: ssl: disable shared memory and locks on session cache if nbproc == 1
16937 - MINOR: ssl: add build param USE_PRIVATE_CACHE to build cache without shared memory
16938 - MINOR: ssl : add statements 'notlsv11' and 'notlsv12' and rename 'notlsv1' to 'notlsv10'.
16939 - DOC: ssl : add statements 'notlsv11' and 'notlsv12' and rename 'notlsv1' to 'notlsv10'.
16940 - MEDIUM: config: authorize frontend and listen without bind.
16941 - MINOR: ssl: add statement 'no-tls-tickets' on bind to disable stateless session resumption
16942 - DOC: ssl: add 'no-tls-tickets' statement documentation.
16943 - BUG/MINOR: ssl: Fix CRL check was not enabled when crlfile was specified.
16944 - BUG/MINOR: build: Fix compilation issue on openssl 0.9.6 due to missing CRL feature.
16945 - BUG/MINOR: conf: Fix 'maxsslconn' statement error if built without OPENSSL.
16946 - BUG/MINOR: build: Fix failure with USE_OPENSSL=1 and USE_FUTEX=1 on archs i486 and i686.
16947 - MINOR: ssl: remove prefer-server-ciphers statement and set it as the default on ssl listeners.
16948 - BUG/MEDIUM: ssl: subsequent handshakes fail after server configuration changes
16949 - MINOR: ssl: add 'crt-base' and 'ca-base' global statements.
16950 - MEDIUM: conf: rename 'nosslv3' and 'notlsvXX' statements 'no-sslv3' and 'no-tlsvXX'.
16951 - MEDIUM: conf: rename 'cafile' and 'crlfile' statements 'ca-file' and 'crl-file'
16952 - MINOR: ssl: use bit fields to store ssl options instead of one int each
16953 - MINOR: ssl: add 'force-sslv3' and 'force-tlsvXX' statements on bind.
16954 - MINOR: ssl: add 'force-sslv3' and 'force-tlsvXX' statements on server
16955 - MINOR: ssl: add defines LISTEN_DEFAULT_CIPHERS and CONNECT_DEFAULT_CIPHERS.
16956 - BUG/MINOR: ssl: Fix issue on server statements 'no-tls*' and 'no-sslv3'
16957 - MINOR: ssl: move ssl context init for servers from cfgparse.c to ssl_sock.c
16958 - MEDIUM: ssl: reject ssl server keywords in default-server statement
16959 - MINOR: ssl: add statement 'no-tls-tickets' on server side.
16960 - MINOR: ssl: add statements 'verify', 'ca-file' and 'crl-file' on servers.
16961 - DOC: Fix rename of options cafile and crlfile to ca-file and crl-file.
16962 - MINOR: sample: manage binary to string type convertion in stick-table and samples.
16963 - MINOR: acl: add parse and match primitives to use binary type on ACLs
16964 - MINOR: sample: export 'sample_get_trash_chunk(void)'
16965 - MINOR: conf: rename all ssl modules fetches using prefix 'ssl_fc' and 'ssl_c'
16966 - MINOR: ssl: add pattern and ACLs fetches 'ssl_fc_protocol', 'ssl_fc_cipher', 'ssl_fc_use_keysize' and 'ssl_fc_alg_keysize'
16967 - MINOR: ssl: add pattern fetch 'ssl_fc_session_id'
16968 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_version' and 'ssl_f_version'
16969 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_s_dn', 'ssl_c_i_dn', 'ssl_f_s_dn' and 'ssl_c_i_dn'
16970 - MINOR: ssl: add pattern and ACLs 'ssl_c_sig_alg' and 'ssl_f_sig_alg'
16971 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_key_alg' and 'ssl_f_key_alg'
16972 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_notbefore', 'ssl_c_notafter', 'ssl_f_notbefore' and 'ssl_f_notafter'
16973 - MINOR: ssl: add 'crt' statement on server.
16974 - MINOR: ssl: checks the consistency of a private key with the corresponding certificate
16975 - BUG/MEDIUM: ssl: review polling on reneg.
16976 - BUG/MEDIUM: ssl: Fix some reneg cases not correctly handled.
16977 - BUG/MEDIUM: ssl: Fix sometimes reneg fails if requested by server.
16978 - MINOR: build: allow packagers to specify the ssl cache size
16979 - MINOR: conf: add warning if ssl is not enabled and a certificate is present on bind.
16980 - MINOR: ssl: Add tune.ssl.lifetime statement in global.
16981 - MINOR: compression: Enable compression for IE6 w/SP2, IE7 and IE8
16982 - BUG: http: revert broken optimisation from 82fe75c1a79dac933391501b9d293bce34513755
16983 - DOC: duplicate ssl_sni section
16984 - MEDIUM: HTTP compression (zlib library support)
16985 - CLEANUP: use struct comp_ctx instead of union
16986 - BUILD: remove dependency to zlib.h
16987 - MINOR: compression: memlevel and windowsize
16988 - MEDIUM: use pool for zlib
16989 - MINOR: compression: try init in cfgparse.c
16990 - MINOR: compression: init before deleting headers
16991 - MEDIUM: compression: limit RAM usage
16992 - MINOR: compression: tune.comp.maxlevel
16993 - MINOR: compression: maximum compression rate limit
16994 - MINOR: log-format: check number of arguments in cfgparse.c
16995 - BUG/MEDIUM: compression: no Content-Type header but type in configuration
16996 - BUG/MINOR: compression: deinit zlib only when required
16997 - MEDIUM: compression: don't compress when no data
16998 - MEDIUM: compression: use pool for comp_ctx
16999 - MINOR: compression: rate limit in 'show info'
17000 - MINOR: compression: report zlib memory usage
17001 - BUG/MINOR: compression: dynamic level increase
17002 - DOC: compression: unsupported cases.
17003 - MINOR: compression: CPU usage limit
17004 - MEDIUM: http: add "redirect scheme" to ease HTTP to HTTPS redirection
17005 - BUG/MAJOR: ssl: missing tests in ACL fetch functions
17006 - MINOR: config: add a function to indent error messages
17007 - REORG: split "protocols" files into protocol and listener
17008 - MEDIUM: config: replace ssl_conf by bind_conf
17009 - CLEANUP: listener: remove unused conf->file and conf->line
17010 - MEDIUM: listener: add a minimal framework to register "bind" keyword options
17011 - MEDIUM: config: move the "bind" TCP parameters to proto_tcp
17012 - MEDIUM: move bind SSL parsing to ssl_sock
17013 - MINOR: config: improve error reporting for "bind" lines
17014 - MEDIUM: config: move the common "bind" settings to listener.c
17015 - MEDIUM: config: move all unix-specific bind keywords to proto_uxst.c
17016 - MEDIUM: config: enumerate full list of registered "bind" keywords upon error
17017 - MINOR: listener: add a scope field in the bind keyword lists
17018 - MINOR: config: pass the file and line to config keyword parsers
17019 - MINOR: stats: fill the file and line numbers in the stats frontend
17020 - MINOR: config: set the bind_conf entry on listeners created from a "listen" line.
17021 - MAJOR: listeners: use dual-linked lists to chain listeners with frontends
17022 - REORG: listener: move unix perms from the listener to the bind_conf
17023 - BUG: backend: balance hdr was broken since 1.5-dev11
17024 - MINOR: standard: make memprintf() support a NULL destination
17025 - MINOR: config: make str2listener() use memprintf() to report errors.
17026 - MEDIUM: stats: remove the stats_sock struct from the global struct
17027 - MINOR: ssl: set the listeners' data layer to ssl during parsing
17028 - MEDIUM: stats: make use of the standard "bind" parsers to parse global socket
17029 - DOC: move bind options to their own section
17030 - DOC: stats: refer to "bind" section for "stats socket" settings
17031 - DOC: fix index to reference bind and server options
17032 - BUG: http: do not print garbage on invalid requests in debug mode
17033 - BUG/MINOR: config: check the proper pointer to report unknown protocol
17034 - CLEANUP: connection: offer conn_prepare() to set up a connection
17035 - CLEANUP: config: fix typo inteface => interface
17036 - BUG: stats: fix regression introduced by commit 4348fad1
17037 - MINOR: cli: allow to set frontend maxconn to zero
17038 - BUG/MAJOR: http: chunk parser was broken with buffer changes
17039 - MEDIUM: monitor: simplify handling of monitor-net and mode health
17040 - MINOR: connection: add a pointer to the connection owner
17041 - MEDIUM: connection: make use of the owner instead of container_of
17042 - BUG/MINOR: ssl: report the L4 connection as established when possible
17043 - BUG/MEDIUM: proxy: must not try to stop disabled proxies upon reload
17044 - BUG/MINOR: config: use a copy of the file name in proxy configurations
17045 - BUG/MEDIUM: listener: don't pause protocols that do not support it
17046 - MEDIUM: proxy: add the global frontend to the list of normal proxies
17047 - BUG/MINOR: epoll: correctly disable FD polling in fd_rem()
17048 - MINOR: signal: really ignore signals configured with no handler
17049 - MINOR: buffers: add a few functions to write chars, strings and blocks
17050 - MINOR: raw_sock: always report asynchronous connection errors
17051 - MEDIUM: raw_sock: improve connection error reporting
17052 - REORG: connection: rename the data layer the "transport layer"
17053 - REORG: connection: rename app_cb "data"
17054 - MINOR: connection: provide a generic data layer wakeup callback
17055 - MINOR: connection: split conn_prepare() in two functions
17056 - MINOR: connection: add an init callback to the data_cb struct
17057 - MEDIUM: session: use a specific data_cb for embryonic sessions
17058 - MEDIUM: connection: use a generic data-layer init() callback
17059 - MEDIUM: connection: reorganize connection flags
17060 - MEDIUM: connection: only call the data->wake callback on activity
17061 - MEDIUM: connection: make it possible for data->wake to return an error
17062 - MEDIUM: session: register a data->wake callback to process errors
17063 - MEDIUM: connection: don't call the data->init callback upon error
17064 - MEDIUM: connection: it's not the data layer's role to validate the connection
17065 - MEDIUM: connection: automatically disable polling on error
17066 - REORG: connection: move the PROXY protocol management to connection.c
17067 - MEDIUM: connection: add a new local send-proxy transport callback
17068 - MAJOR: checks: make use of the connection layer to send checks
17069 - REORG: server: move the check-specific parts into a check subsection
17070 - MEDIUM: checks: use real buffers to store requests and responses
17071 - MEDIUM: check: add the ctrl and transport layers in the server check structure
17072 - MAJOR: checks: completely use the connection transport layer
17073 - MEDIUM: checks: add the "check-ssl" server option
17074 - MEDIUM: checks: enable the PROXY protocol with health checks
17075 - CLEANUP: checks: remove minor warnings for assigned but not used variables
17076 - MEDIUM: tcp: enable TCP Fast Open on systems which support it
17077 - BUG: connection: fix regression from commit 9e272bf9
17078 - CLEANUP: cttproxy: remove a warning on undeclared close()
17079 - BUG/MAJOR: ensure that hdr_idx is always reserved when L7 fetches are used
17080 - MEDIUM: listener: add support for linux's accept4() syscall
17081 - MINOR: halog: sort output by cookie code
17082 - BUG/MINOR: halog: -ad/-ac report the correct number of output lines
17083 - BUG/MINOR: halog: fix help message for -ut/-uto
17084 - MINOR: halog: add a parameter to limit output line count
17085 - BUILD: accept4: move the socketcall declaration outside of accept4()
17086 - MINOR: server: add minimal infrastructure to parse keywords
17087 - MINOR: standard: make indent_msg() support empty messages
17088 - MEDIUM: server: check for registered keywords when parsing unknown keywords
17089 - MEDIUM: server: move parsing of keyword "id" to server.c
17090 - BUG/MEDIUM: config: check-send-proxy was ignored if SSL was not builtin
17091 - MEDIUM: ssl: move "server" keyword SSL options parsing to ssl_sock.c
17092 - MEDIUM: log: suffix the frontend's name with '~' when using SSL
17093 - MEDIUM: connection: always unset the transport layer upon close
17094 - BUG/MINOR: session: fix some leftover from debug code
17095 - BUG/MEDIUM: session: enable the conn_session_update() callback
17096 - MEDIUM: connection: add a flag to hold the transport layer
17097 - MEDIUM: log: add a new LW_XPRT flag to pin the transport layer
17098 - MINOR: log: make lf_text use a const char *
17099 - MEDIUM: log: report SSL ciphers and version in logs using logformat %sslc/%sslv
17100 - REORG: http: rename msg->buf to msg->chn since it's a channel
17101 - CLEANUP: http: use 'chn' to name channel variables, not 'buf'
17102 - CLEANUP: channel: use 'chn' instead of 'buf' as local variable names
17103 - CLEANUP: tcp: use 'chn' instead of 'buf' or 'b' for channel pointer names
17104 - CLEANUP: stream_interface: use 'chn' instead of 'b' to name channel pointers
17105 - CLEANUP: acl: use 'chn' instead of 'b' to name channel pointers
17106 - MAJOR: channel: replace the struct buffer with a pointer to a buffer
17107 - OPTIM: channel: reorganize struct members to improve cache efficiency
17108 - CLEANUP: session: remove term_trace which is not used anymore
17109 - OPTIM: session: reorder struct session fields
17110 - OPTIM: connection: pack the struct target
17111 - DOC: document relations between internal entities
17112 - MINOR: ssl: add 'ssl_npn' sample/acl to extract TLS/NPN information
17113 - BUILD: ssl: fix shctx build on older compilers
17114 - MEDIUM: ssl: add support for the "npn" bind keyword
17115 - BUG: ssl: fix ssl_sni ACLs to correctly process regular expressions
17116 - MINOR: chunk: provide string compare functions
17117 - MINOR: sample: accept fetch keywords without parenthesis
17118 - MEDIUM: sample: pass an empty list instead of a null for fetch args
17119 - MINOR: ssl: improve socket behaviour upon handshake abort.
17120 - BUG/MEDIUM: http: set DONTWAIT on data when switching to tunnel mode
17121 - MEDIUM: listener: provide a fallback for accept4() when not supported
17122 - BUG/MAJOR: connection: risk of crash on certain tricky close scenario
17123 - MEDIUM: cli: allow the stats socket to be bound to a specific set of processes
17124 - OPTIM: channel: inline channel_forward's fast path
17125 - OPTIM: http: inline http_parse_chunk_size() and http_skip_chunk_crlf()
17126 - OPTIM: tools: inline hex2i()
17127 - CLEANUP: http: rename HTTP_MSG_DATA_CRLF state
17128 - MINOR: compression: automatically disable compression for older browsers
17129 - MINOR: compression: optimize memLevel to improve byte rate
17130 - BUG/MINOR: http: compression should consider all Accept-Encoding header values
17131 - BUILD: fix coexistence of openssl and zlib
17132 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_serial' and 'ssl_f_serial'
17133 - BUG/MEDIUM: command-line option -D must have precedence over "debug"
17134 - MINOR: tools: add a clear_addr() function to unset an address
17135 - BUG/MEDIUM: tcp: transparent bind to the source only when address is set
17136 - CLEANUP: remove trashlen
17137 - MAJOR: session: detach the connections from the stream interfaces
17138 - DOC: update document describing relations between internal entities
17139 - BUILD: make it possible to specify ZLIB path
17140 - MINOR: compression: add an offload option to remove the Accept-Encoding header
17141 - BUG: compression: disable auto-close and enable MSG_MORE during transfer
17142 - CLEANUP: completely remove trashlen
17143 - MINOR: chunk: add a function to reset a chunk
17144 - CLEANUP: replace chunk_printf() with chunk_appendf()
17145 - MEDIUM: make the trash be a chunk instead of a char *
17146 - MEDIUM: remove remains of BUFSIZE in HTTP auth and sample conversions
17147 - MEDIUM: stick-table: allocate the table key of size buffer size
17148 - BUG/MINOR: stream_interface: don't loop over ->snd_buf()
17149 - BUG/MINOR: session: ensure that we don't retry connection if some data were sent
17150 - OPTIM: session: don't process the whole session when only timers need a refresh
17151 - BUG/MINOR: session: mark the handshake as complete earlier
17152 - MAJOR: connection: remove the CO_FL_CURR_*_POL flag
17153 - BUG/MAJOR: always clear the CO_FL_WAIT_* flags after updating polling flags
17154 - MAJOR: sepoll: make the poller totally event-driven
17155 - OPTIM: stream_interface: disable reading when CF_READ_DONTWAIT is set
17156 - BUILD: compression: remove a build warning
17157 - MEDIUM: fd: don't unset fdtab[].updated upon delete
17158 - REORG: fd: move the speculative I/O management from ev_sepoll
17159 - REORG: fd: move the fd state management from ev_sepoll
17160 - REORG: fd: centralize the processing of speculative events
17161 - BUG: raw_sock: also consider ENOTCONN in addition to EAGAIN
17162 - BUILD: stream_interface: remove si_fd() and its references
17163 - BUILD: compression: enable build in BSD and OSX Makefiles
17164 - MAJOR: ev_select: make the poller support speculative events
17165 - MAJOR: ev_poll: make the poller support speculative events
17166 - MAJOR: ev_kqueue: make the poller support speculative events
17167 - MAJOR: polling: replace epoll with sepoll and remove sepoll
17168 - MAJOR: polling: remove unused callbacks from the poller struct
17169 - MEDIUM: http: refrain from sending "Connection: close" when Upgrade is present
17170 - CLEANUP: channel: remove any reference of the hijackers
17171 - CLEANUP: stream_interface: remove the external task type target
17172 - MAJOR: connection: replace struct target with a pointer to an enum
17173 - BUG: connection: fix typo in previous commit
17174 - BUG: polling: don't skip polled events in the spec list
17175 - MINOR: splice: disable it when the system returns EBADF
17176 - MINOR: build: allow packagers to specify the default maxzlibmem
17177 - BUG: halog: fix broken output limitation
17178 - BUG: proxy: fix server name lookup in get_backend_server()
17179 - BUG: compression: do not always increment the round counter on allocation failure
17180 - BUG/MEDIUM: compression: release the zlib pools between keep-alive requests
17181 - MINOR: global: don't prevent nbproc from being redefined
17182 - MINOR: config: support process ranges for "bind-process"
17183 - MEDIUM: global: add support for CPU binding on Linux ("cpu-map")
17184 - MINOR: ssl: rename and document the tune.ssl.cachesize option
17185 - DOC: update the PROXY protocol spec to support v2
17186 - MINOR: standard: add a simple popcount function
17187 - MEDIUM: adjust the maxaccept per listener depending on the number of processes
17188 - BUG: compression: properly disable compression when content-type does not match
17189 - MINOR: cli: report connection status in "show sess xxx"
17190 - BUG/MAJOR: stream_interface: certain workloads could cause get stuck
17191 - BUILD: cli: fix build when SSL is enabled
17192 - MINOR: cli: report the fd state in "show sess xxx"
17193 - MINOR: cli: report an error message on missing argument to compression rate
17194 - MINOR: http: add some debugging functions to pretty-print msg state names
17195 - BUG/MAJOR: stream_interface: read0 not always handled since dev12
17196 - DOC: documentation on http header capture is wrong
17197 - MINOR: http: allow the cookie capture size to be changed
17198 - DOC: http header capture has not been limited in size for a long time
17199 - DOC: update readme with build methods for BSD
17200 - BUILD: silence a warning on Solaris about usage of isdigit()
17201 - MINOR: stats: report HTTP compression stats per frontend and per backend
17202 - MINOR: log: add '%Tl' to log-format
17203 - MINOR: samples: update the url_param fetch to match parameters in the path
17204
Willy Tarreau16216822012-09-10 09:46:55 +0200172052012/09/10 : 1.5-dev12
17206 - CONTRIB: halog: sort URLs by avg bytes_read or total bytes_read
17207 - MEDIUM: ssl: add support for prefer-server-ciphers option
17208 - MINOR: IPv6 support for transparent proxy
17209 - MINOR: protocol: add SSL context to listeners if USE_OPENSSL is defined
17210 - MINOR: server: add SSL context to servers if USE_OPENSSL is defined
17211 - MEDIUM: connection: add a new handshake flag for SSL (CO_FL_SSL_WAIT_HS).
17212 - MEDIUM: ssl: add new files ssl_sock.[ch] to provide the SSL data layer
17213 - MEDIUM: config: add the 'ssl' keyword on 'bind' lines
17214 - MEDIUM: config: add support for the 'ssl' option on 'server' lines
17215 - MEDIUM: ssl: protect against client-initiated renegociation
17216 - BUILD: add optional support for SSL via the USE_OPENSSL flag
17217 - MEDIUM: ssl: add shared memory session cache implementation.
17218 - MEDIUM: ssl: replace OpenSSL's session cache with the shared cache
17219 - MINOR: ssl add global setting tune.sslcachesize to set SSL session cache size.
17220 - MEDIUM: ssl: add support for SNI and wildcard certificates
17221 - DOC: Typos cleanup
17222 - DOC: fix name for "option independant-streams"
17223 - DOC: specify the default value for maxconn in the context of a proxy
17224 - BUG/MINOR: to_log erased with unique-id-format
17225 - LICENSE: add licence exception for OpenSSL
17226 - BUG/MAJOR: cookie prefix doesn't support cookie-less servers
17227 - BUILD: add an AIX 5.2 (and later) target.
17228 - MEDIUM: fd/si: move peeraddr from struct fdinfo to struct connection
17229 - MINOR: halog: use the more recent dual-mode fgets2 implementation
17230 - BUG/MEDIUM: ebtree: ebmb_insert() must not call cmp_bits on full-length matches
17231 - CLEANUP: halog: make clean should also remove .o files
17232 - OPTIM: halog: make use of memchr() on platforms which provide a fast one
17233 - OPTIM: halog: improve cold-cache behaviour when loading a file
17234 - BUG/MINOR: ACL implicit arguments must be created with unresolved flag
17235 - MINOR: replace acl_fetch_{path,url}* with smp_fetch_*
17236 - MEDIUM: pattern: add the "base" sample fetch method
17237 - OPTIM: i386: make use of kernel-mode-linux when available
17238 - BUG/MINOR: tarpit: fix condition to return the HTTP 500 message
17239 - BUG/MINOR: polling: some events were not set in various pollers
17240 - MINOR: http: add the urlp_val ACL match
17241 - BUG: stktable: tcp_src_to_stktable_key() must return NULL on invalid families
17242 - MINOR: stats/cli: add plans to support more stick-table actions
17243 - MEDIUM: stats/cli: add support for "set table key" to enter values
17244 - REORG/MEDIUM: fd: remove FD_STCLOSE from struct fdtab
17245 - REORG/MEDIUM: fd: remove checks for FD_STERROR in ev_sepoll
17246 - REORG/MEDIUM: fd: get rid of FD_STLISTEN
17247 - REORG/MINOR: connection: move declaration to its own include file
17248 - REORG/MINOR: checks: put a struct connection into the server
17249 - MINOR: connection: add flags to the connection struct
17250 - MAJOR: get rid of fdtab[].state and use connection->flags instead
17251 - MINOR: fd: add a new I/O handler to fdtab
17252 - MEDIUM: polling: prepare to call the iocb() function when defined.
17253 - MEDIUM: checks: make use of fdtab->iocb instead of cb[]
17254 - MEDIUM: protocols: use the generic I/O callback for accept callbacks
17255 - MINOR: connection: add a handler for fd-based connections
17256 - MAJOR: connection: replace direct I/O callbacks with the connection callback
17257 - MINOR: fd: make fdtab->owner a connection and not a stream_interface anymore
17258 - MEDIUM: connection: remove the FD_POLL_* flags only once
17259 - MEDIUM: connection: extract the send_proxy callback from proto_tcp
17260 - MAJOR: tcp: remove the specific I/O callbacks for TCP connection probes
17261 - CLEANUP: remove the now unused fdtab direct I/O callbacks
17262 - MAJOR: remove the stream interface and task management code from sock_*
17263 - MEDIUM: stream_interface: pass connection instead of fd in sock_ops
17264 - MEDIUM: stream_interface: centralize the SI_FL_ERR management
17265 - MAJOR: connection: add a new CO_FL_CONNECTED flag
17266 - MINOR: rearrange tcp_connect_probe() and fix wrong return codes
17267 - MAJOR: connection: call data layer handshakes from the handler
17268 - MEDIUM: fd: remove the EV_FD_COND_* primitives
17269 - MINOR: sock_raw: move calls to si_data_close upper
17270 - REORG: connection: replace si_data_close() with conn_data_close()
17271 - MEDIUM: sock_raw: introduce a read0 callback that is different from shutr
17272 - MAJOR: stream_int: use a common stream_int_shut*() functions regardless of the data layer
17273 - MAJOR: fd: replace all EV_FD_* macros with new fd_*_* inline calls
17274 - MEDIUM: fd: add fd_poll_{recv,send} for use when explicit polling is required
17275 - MEDIUM: connection: add definitions for dual polling mechanisms
17276 - MEDIUM: connection: make use of the new polling functions
17277 - MAJOR: make use of conn_{data|sock}_{poll|stop|want}* in connection handlers
17278 - MEDIUM: checks: don't use FD_WAIT_* anymore
17279 - MINOR: fd: get rid of FD_WAIT_*
17280 - MEDIUM: stream_interface: offer a generic function for connection updates
17281 - MEDIUM: stream-interface: offer a generic chk_rcv function for connections
17282 - MEDIUM: stream-interface: add a snd_buf() callback to sock_ops
17283 - MEDIUM: stream-interface: provide a generic stream_int_chk_snd_conn() function
17284 - MEDIUM: stream-interface: provide a generic si_conn_send_cb callback
17285 - MEDIUM: stream-interface: provide a generic stream_sock_read0() function
17286 - REORG/MAJOR: use "struct channel" instead of "struct buffer"
17287 - REORG/MAJOR: extract "struct buffer" from "struct channel"
17288 - MINOR: connection: provide conn_{data|sock}_{read0|shutw} functions
17289 - REORG: sock_raw: rename the files raw_sock*
17290 - MAJOR: raw_sock: extract raw_sock_to_buf() from raw_sock_read()
17291 - MAJOR: raw_sock: temporarily disable splicing
17292 - MINOR: stream-interface: add an rcv_buf callback to sock_ops
17293 - REORG: stream-interface: move sock_raw_read() to si_conn_recv_cb()
17294 - MAJOR: connection: split the send call into connection and stream interface
17295 - MAJOR: stream-interface: restore splicing mechanism
17296 - MAJOR: stream-interface: make conn_notify_si() more robust
17297 - MEDIUM: proxy-proto: don't use buffer flags in conn_si_send_proxy()
17298 - MAJOR: stream-interface: don't commit polling changes in every callback
17299 - MAJOR: stream-interface: fix splice not to call chk_snd by itself
17300 - MEDIUM: stream-interface: don't remove WAIT_DATA when a handshake is in progress
17301 - CLEANUP: connection: split sock_ops into data_ops, app_cp and si_ops
17302 - REORG: buffers: split buffers into chunk,buffer,channel
17303 - MAJOR: channel: remove the BF_OUT_EMPTY flag
17304 - REORG: buffer: move buffer_flush, b_adv and b_rew to buffer.h
17305 - MINOR: channel: rename bi_full to channel_full as it checks the whole channel
17306 - MINOR: buffer: provide a new buffer_full() function
17307 - MAJOR: channel: stop relying on BF_FULL to take action
17308 - MAJOR: channel: remove the BF_FULL flag
17309 - REORG: channel: move buffer_{replace,insert_line}* to buffer.{c,h}
17310 - CLEANUP: channel: usr CF_/CHN_ prefixes instead of BF_/BUF_
17311 - CLEANUP: channel: use "channel" instead of "buffer" in function names
17312 - REORG: connection: move the target pointer from si to connection
17313 - MAJOR: connection: move the addr field from the stream_interface
17314 - MEDIUM: stream_interface: remove CAP_SPLTCP/CAP_SPLICE flags
17315 - MEDIUM: proto_tcp: remove any dependence on stream_interface
17316 - MINOR: tcp: replace tcp_src_to_stktable_key with addr_to_stktable_key
17317 - MEDIUM: connection: add an ->init function to data layer
17318 - MAJOR: session: introduce embryonic sessions
17319 - MAJOR: connection: make the PROXY decoder a handshake handler
17320 - CLEANUP: frontend: remove the old proxy protocol decoder
17321 - MAJOR: connection: rearrange the polling flags.
17322 - MEDIUM: connection: only call tcp_connect_probe when nothing was attempted yet
17323 - MEDIUM: connection: complete the polling cleanups
17324 - MEDIUM: connection: avoid calling handshakes when polling is required
17325 - MAJOR: stream_interface: continue to update data polling flags during handshakes
17326 - CLEANUP: fd: remove fdtab->flags
17327 - CLEANUP: fdtab: flatten the struct and merge the spec struct with the rest
17328 - CLEANUP: includes: fix includes for a number of users of fd.h
17329 - MINOR: ssl: disable TCP quick-ack by default on SSL listeners
17330 - MEDIUM: config: add a "ciphers" keyword to set SSL cipher suites
17331 - MEDIUM: config: add "nosslv3" and "notlsv1" on bind and server lines
17332 - BUG: ssl: mark the connection as waiting for an SSL connection during the handshake
17333 - BUILD: http: rename error_message http_error_message to fix conflicts on RHEL
17334 - BUILD: ssl: fix shctx build on RHEL with futex
17335 - BUILD: include sys/socket.h to fix build failure on FreeBSD
17336 - BUILD: fix build error without SSL (ssl_cert)
17337 - BUILD: ssl: use MAP_ANON instead of MAP_ANONYMOUS
17338 - BUG/MEDIUM: workaround an eglibc bug which truncates the pidfiles when nbproc > 1
17339 - MEDIUM: config: support per-listener backlog and maxconn
17340 - MINOR: session: do not send an HTTP/500 error on SSL sockets
17341 - MEDIUM: config: implement maxsslconn in the global section
17342 - BUG: tcp: close socket fd upon connect error
17343 - MEDIUM: connection: improve error handling around the data layer
17344 - MINOR: config: make the tasks "nice" value configurable on "bind" lines.
17345 - BUILD: shut a gcc warning introduced by commit 269ab31
17346 - MEDIUM: config: centralize handling of SSL config per bind line
17347 - BUILD: makefile: report USE_OPENSSL status in build options
17348 - BUILD: report openssl build settings in haproxy -vv
17349 - MEDIUM: ssl: add sample fetches for is_ssl, ssl_has_sni, ssl_sni_*
17350 - DOC: add a special acknowledgement for the stud project
17351 - DOC: add missing SSL options for servers and listeners
17352 - BUILD: automatically add -lcrypto for SSL
17353 - DOC: add some info about openssl build in the README
17354
Willy Tarreau02c7c142012-06-04 00:43:45 +0200173552012/06/04 : 1.5-dev11
17356 - BUG/MEDIUM: option forwardfor if-none doesn't work with some configurations
17357 - BUG/MAJOR: trash must always be the size of a buffer
17358 - DOC: fix minor regex example issue and improve doc on stats
17359 - MINOR: stream_interface: add a pointer to the listener for TARG_TYPE_CLIENT
17360 - MEDIUM: protocol: add a pointer to struct sock_ops to the listener struct
17361 - MINOR: checks: add on-marked-up option
17362 - MINOR: balance uri: added 'whole' parameter to include query string in hash calculation
17363 - MEDIUM: stream_interface: remove the si->init
17364 - MINOR: buffers: add a rewind function
17365 - BUG/MAJOR: fix regression on content-based hashing and http-send-name-header
17366 - MAJOR: http: stop using msg->sol outside the parsers
17367 - CLEANUP: http: make it more obvious that msg->som is always null outside of chunks
17368 - MEDIUM: http: get rid of msg->som which is not used anymore
17369 - MEDIUM: http: msg->sov and msg->sol will never wrap
17370 - BUG/MAJOR: checks: don't call set_server_status_* when no LB algo is set
17371 - BUG/MINOR: stop connect timeout when connect succeeds
17372 - REORG: move the send-proxy code to tcp_connect_write()
17373 - REORG/MINOR: session: detect the TCP monitor checks at the protocol accept
17374 - MINOR: stream_interface: introduce a new "struct connection" type
17375 - REORG/MINOR: stream_interface: move si->fd to struct connection
17376 - REORG/MEDIUM: stream_interface: move applet->state and private to connection
17377 - MINOR: stream_interface: add a data channel close function
17378 - MEDIUM: stream_interface: call si_data_close() before releasing the si
17379 - MINOR: peers: use the socket layer operations from the peer instead of sock_raw
17380 - BUG/MINOR: checks: expire on timeout.check if smaller than timeout.connect
17381 - MINOR: add a new function call tracer for debugging purposes
17382 - BUG/MINOR: perform_http_redirect also needs to rewind the buffer
17383 - BUG/MAJOR: b_rew() must pass a signed offset to b_ptr()
17384 - BUG/MEDIUM: register peer sync handler in the proper order
17385 - BUG/MEDIUM: buffers: fix bi_putchr() to correctly advance the pointer
17386 - BUG/MINOR: fix option httplog validation with TCP frontends
17387 - BUG/MINOR: log: don't report logformat errors in backends
17388 - REORG/MINOR: use dedicated proxy flags for the cookie handling
17389 - BUG/MINOR: config: do not report twice the incompatibility between cookie and non-http
17390 - MINOR: http: add support for "httponly" and "secure" cookie attributes
17391 - BUG/MEDIUM: ensure that unresolved arguments are freed exactly once
17392 - BUG/MINOR: commit 196729ef used wrong condition resulting in freeing constants
17393 - MEDIUM: stats: add support for soft stop/soft start in the admin interface
17394 - MEDIUM: stats: add the ability to kill sessions from the admin interface
17395 - BUILD: add support for linux kernels >= 2.6.28
17396
Willy Tarreauffb89472012-05-14 07:26:56 +0200173972012/05/14 : 1.5-dev10
17398 - BUG/MINOR: stats admin: "Unexpected result" was displayed unconditionally
17399 - BUG/MAJOR: acl: http_auth_group() must not accept any user from the userlist
17400 - CLEANUP: auth: make the code build again with DEBUG_AUTH
17401 - BUG/MEDIUM: config: don't crash at config load time on invalid userlist names
17402 - REORG: use the name sock_raw instead of stream_sock
17403 - MINOR: stream_interface: add a client target : TARG_TYPE_CLIENT
17404 - BUG/MEDIUM: stream_interface: restore get_src/get_dst
17405 - CLEANUP: sock_raw: remove last references to stream_sock
17406 - CLEANUP: stream_interface: stop exporting socket layer functions
17407 - MINOR: stream_interface: add an init callback to sock_ops
17408 - MEDIUM: stream_interface: derive the socket operations from the target
17409 - MAJOR: fd: remove the need for the socket layer to recheck the connection
17410 - MINOR: session: call the socket layer init function when a session establishes
17411 - MEDIUM: session: add support for tunnel timeouts
17412 - MINOR: standard: add a new debug macro : fddebug()
17413 - CLEANUP: fd: remove unused cb->b pointers in the struct fdtab
17414 - OPTIM: proto_http: don't enable quick-ack on empty buffers
17415 - OPTIM/MAJOR: ev_sepoll: process spec events after polled events
17416 - OPTIM/MEDIUM: stream_interface: add a new SI_FL_NOHALF flag
17417
Willy Tarreaua0564f32012-05-08 21:56:27 +0200174182012/05/08 : 1.5-dev9
17419 - MINOR: Add release callback to si_applet
17420 - CLEANUP: Fix some minor typos
17421 - MINOR: Add TO/FROM_SET flags to struct stream_interface
17422 - CLEANUP: Fix some minor whitespace issues
17423 - MINOR: stats admin: allow unordered parameters in POST requests
17424 - CLEANUP: fix typo in findserver() log message
17425 - MINOR: stats admin: use the backend id instead of its name in the form
17426 - MINOR: stats admin: reduce memcmp()/strcmp() calls on status codes
17427 - DOC: cleanup indentation, alignment, columns and chapters
17428 - DOC: fix some keywords arguments documentation
17429 - MINOR: cli: display the 4 IP addresses and ports on "show sess XXX"
17430 - BUG/MAJOR: log: possible segfault with logformat
17431 - MEDIUM: log: split of log_format generation
17432 - MEDIUM: log: New format-log flags: %Fi %Fp %Si %Sp %Ts %rt %H %pid
17433 - MEDIUM: log: Unique ID
17434 - MINOR: log: log-format: usable without httplog and tcplog
17435 - BUG/MEDIUM: balance source did not properly hash IPv6 addresses
17436 - MINOR: contrib/iprange: add a network IP range to mask converter
17437 - MEDIUM: session: implement the "use-server" directive
17438 - MEDIUM: log: add a new cookie flag 'U' to report situations where cookie is not used
17439 - MEDIUM: http: make extract_cookie_value() iterate over cookie values
17440 - MEDIUM: http: add cookie and scookie ACLs
17441 - CLEANUP: lb_first: add reference to a paper describing the original idea
17442 - MEDIUM: stream_sock: add a get_src and get_dst callback and remove SN_FRT_ADDR_SET
17443 - BUG/MINOR: acl: req_ssl_sni would randomly fail if a session ID is present
17444 - BUILD: http: make extract_cookie_value() return an int not size_t
17445 - BUILD: http: stop gcc-4.1.2 from complaining about possibly uninitialized values
17446 - CLEANUP: http: message parser must ignore HTTP_MSG_ERROR
17447 - MINOR: standard: add a memprintf() function to build formatted error messages
17448 - CLEANUP: remove a few warning about unchecked return values in debug code
17449 - MEDIUM: move message-related flags from transaction to message
17450 - DOC: add a diagram to explain how circular buffers work
17451 - MAJOR: buffer rework: replace ->send_max with ->o
17452 - MAJOR: buffer: replace buf->l with buf->{o+i}
17453 - MINOR: buffers: provide simple pointer normalization functions
17454 - MINOR: buffers: remove unused function buffer_contig_data()
17455 - MAJOR: buffers: replace buf->w with buf->p - buf->o
17456 - MAJOR: buffers: replace buf->r with buf->p + buf->i
17457 - MAJOR: http: move buffer->lr to http_msg->next
17458 - MAJOR: http: change msg->{som,col,sov,eoh} to be relative to buffer origin
17459 - CLEANUP: http: remove unused http_msg->col
17460 - MAJOR: http: turn http_msg->eol to a buffer-relative offset
17461 - MEDIUM: http: add a pointer to the buffer in http_msg
17462 - MAJOR: http: make http_msg->sol relative to buffer's origin
17463 - MEDIUM: http: http_send_name_header: remove references to msg and buffer
17464 - MEDIUM: http: remove buffer arg in a few header manipulation functions
17465 - MEDIUM: http: remove buffer arg in http_capture_bad_message
17466 - MEDIUM: http: remove buffer arg in http_msg_analyzer
17467 - MEDIUM: http: remove buffer arg in http_upgrade_v09_to_v10
17468 - MEDIUM: http: remove buffer arg in http_buffer_heavy_realign
17469 - MEDIUM: http: remove buffer arg in chunk parsing functions
17470 - MINOR: http: remove useless wrapping checks in http_msg_analyzer
17471 - MEDIUM: buffers: fix unsafe use of buffer_ignore at some places
17472 - MEDIUM: buffers: add new pointer wrappers and get rid of almost all buffer_wrap_add calls
17473 - MEDIUM: buffers: implement b_adv() to advance a buffer's pointer
17474 - MEDIUM: buffers: rename a number of buffer management functions
17475 - MEDIUM: http: add a prefetch function for ACL pattern fetch
17476 - MEDIUM: http: make all ACL fetch function use acl_prefetch_http()
17477 - BUG/MINOR: http_auth: ACLs are volatile, not permanent
17478 - MEDIUM: http/acl: merge all request and response ACL fetches of headers and cookies
17479 - MEDIUM: http/acl: make acl_fetch_hdr_{ip,val} rely on acl_fetch_hdr()
17480 - MEDIUM: add a new typed argument list parsing framework
17481 - MAJOR: acl: make use of the new argument parsing framework
17482 - MAJOR: acl: store the ACL argument types in the ACL keyword declaration
17483 - MEDIUM: acl: acl_find_target() now resolves arguments based on their types
17484 - MAJOR: acl: make acl_find_targets also resolve proxy names at config time
17485 - MAJOR: acl: ensure that implicit table and proxies are valid
17486 - MEDIUM: acl: remove unused tests for missing args when args are mandatory
17487 - MEDIUM: pattern: replace type pattern_arg with type arg
17488 - MEDIUM: pattern: get rid of arg_i in all functions making use of arguments
17489 - MEDIUM: pattern: use the standard arg parser
17490 - MEDIUM: pattern: add an argument validation callback to pattern descriptors
17491 - MEDIUM: pattern: report the precise argument parsing error when known.
17492 - MEDIUM: acl: remove the ACL_TEST_F_NULL_MATCH flag
17493 - MINOR: pattern: add a new 'sample' type to store fetched data
17494 - MEDIUM: pattern: add new sample types to replace pattern types
17495 - MAJOR: acl: make use of the new sample struct and get rid of acl_test
17496 - MEDIUM: pattern/acl: get rid of temp_pattern in ACLs
17497 - MEDIUM: acl: get rid of the SET_RES flags
17498 - MEDIUM: get rid of SMP_F_READ_ONLY and SMP_F_MUST_FREE
17499 - MINOR: pattern: replace struct pattern with struct sample
17500 - MEDIUM: pattern: integrate pattern_data into sample and use sample everywhere
17501 - MEDIUM: pattern: retrieve the sample type in the sample, not in the keyword description
17502 - MEDIUM: acl/pattern: switch rdp_cookie functions stack up-down
17503 - MEDIUM: acl: replace acl_expr with args in acl fetch_* functions
17504 - MINOR: tcp: replace acl_fetch_rdp_cookie with smp_fetch_rdp_cookie
17505 - MEDIUM: acl/pattern: use the same direction scheme
17506 - MEDIUM: acl/pattern: start merging common sample fetch functions
17507 - MEDIUM: pattern: ensure that sample types always cast into other types.
17508 - MEDIUM: acl/pattern: factor out the src/dst address fetches
17509 - MEDIUM: acl: implement payload and payload_lv
17510 - CLEANUP: pattern: ensure that payload and payload_lv always stay in the buffer
17511 - MINOR: stick_table: centralize the handling of empty keys
17512 - MINOR: pattern: centralize handling of unstable data in pattern_process()
17513 - MEDIUM: pattern: use smp_fetch_rdp_cookie instead of the pattern specific version
17514 - MINOR: acl: set SMP_OPT_ITERATE on fetch functions
17515 - MINOR: acl: add a val_args field to keywords
17516 - MINOR: proto_tcp: validate arguments of payload and payload_lv ACLs
17517 - MEDIUM: http: merge acl and pattern header fetch functions
17518 - MEDIUM: http: merge ACL and pattern cookie fetches into a single one
17519 - MEDIUM: acl: report parsing errors to the caller
17520 - MINOR: arg: improve error reporting on invalid arguments
17521 - MINOR: acl: report errors encountered when loading patterns from files
17522 - MEDIUM: acl: extend the pattern parsers to report meaningful errors
17523 - REORG: use the name "sample" instead of "pattern" to designate extracted data
17524 - REORG: rename "pattern" files
17525 - MINOR: acl: add types to ACL patterns
17526 - MINOR: standard: add an IPv6 parsing function (str62net)
17527 - MEDIUM: acl: support IPv6 address matching
17528 - REORG: stream_interface: create a struct sock_ops to hold socket operations
17529 - REORG/MEDIUM: move protocol->{read,write} to sock_ops
17530 - REORG/MEDIUM: stream_interface: initialize socket ops from descriptors
17531 - REORG/MEDIUM: replace stream interface protocol functions by a proto pointer
17532 - REORG/MEDIUM: move the default accept function from sockstream to protocols.c
17533 - MEDIUM: proto_tcp: remove src6 and dst6 pattern fetch methods
17534 - BUG/MINOR: http: error snapshots are wrong if buffer wraps
17535 - BUG/MINOR: http: ensure that msg->err_pos is always relative to buf->p
17536 - MEDIUM: http: improve error capture reports
17537 - MINOR: acl: add the cook_val() match to match a cookie against an integer
17538 - BUG/MEDIUM: send_proxy: fix initialisation of send_proxy_ofs
17539 - MEDIUM: memory: add the ability to poison memory at run time
17540 - BUG/MEDIUM: log: ensure that unique_id is properly initialized
17541 - MINOR: cfgparse: use a common errmsg pointer for all parsers
17542 - MEDIUM: cfgparse: make backend_parse_balance() use memprintf to report errors
17543 - MEDIUM: cfgparse: use the new error reporting framework for remaining cfg_keywords
17544 - MINOR: http: replace http_message_realign() with buffer_slow_realign()
17545
Willy Tarreau9eeb57b2012-03-26 06:15:29 +0200175462012/03/26 : 1.5-dev8
17547 - MINOR: patch for minor typo (ressources/resources)
17548 - MEDIUM: http: add support for sending the server's name in the outgoing request
17549 - DOC: mention that default checks are TCP connections
17550 - BUG/MINOR: fix options forwardfor if-none when an alternative header name is specified
17551 - CLEANUP: Make check_statuses, analyze_statuses and process_chk static
17552 - CLEANUP: Fix HCHK spelling errors
17553 - BUG/MINOR: fix typo in processing of http-send-name-header
17554 - MEDIUM: log: Use linked lists for loggers
17555 - BUILD: fix declaration inside a scope block
17556 - REORG: log: split send_log function
17557 - MINOR: config: Parse the string of the log-format config keyword
17558 - MINOR: add ultoa, ulltoa, ltoa, lltoa implementations
17559 - MINOR: Date and time fonctions that don't use snprintf
17560 - MEDIUM: log: make http_sess_log use log_format
17561 - DOC: log-format documentation
17562 - MEDIUM: log: use log_format for mode tcplog
17563 - MEDIUM: log-format: backend source address %Bi %Bp
17564 - BUG/MINOR: log-format: fix %o flag
17565 - BUG/MEDIUM: bad length in log_format and __send_log
17566 - MINOR: logformat %st is signed
17567 - BUILD/MINOR: fix the source URL in the spec file
17568 - DOC: acl is http_first_req, not http_req_first
17569 - BUG/MEDIUM: don't trim last spaces from headers consisting only of spaces
17570 - MINOR: acl: add new matches for header/path/url length
17571 - BUILD: halog: make halog build on solaris
17572 - BUG/MINOR: don't use a wrong port when connecting to a server with mapped ports
17573 - MINOR: remove the client/server side distinction in SI addresses
17574 - MINOR: halog: add support for matching queued requests
17575 - DOC: indicate that cookie "prefix" and "indirect" should not be mixed
17576 - OPTIM/MINOR: move struct sockaddr_storage to the tail of structs
17577 - OPTIM/MINOR: make it possible to change pipe size (tune.pipesize)
17578 - BUILD/MINOR: silent a build warning in src/pipe.c (fcntl)
17579 - OPTIM/MINOR: move the hdr_idx pools out of the proxy struct
17580 - MEDIUM: tune.http.maxhdr makes it possible to configure the maximum number of HTTP headers
17581 - BUG/MINOR: fix a segfault when parsing a config with undeclared peers
17582 - CLEANUP: rename possibly confusing struct field "tracked"
17583 - BUG/MEDIUM: checks: fix slowstart behaviour when server tracking is in use
17584 - MINOR: config: tolerate server "cookie" setting in non-HTTP mode
17585 - MEDIUM: buffers: add some new primitives and rework existing ones
17586 - BUG: buffers: don't return a negative value on buffer_total_space_res()
17587 - MINOR: buffers: make buffer_pointer() support negative pointers too
17588 - CLEANUP: kill buffer_replace() and use an inline instead
17589 - BUG: tcp: option nolinger does not work on backends
17590 - CLEANUP: ebtree: remove a few annoying signedness warnings
17591 - CLEANUP: ebtree: clarify licence and update to 6.0.6
17592 - CLEANUP: ebtree: remove 4-year old harmless typo in duplicates insertion code
17593 - CLEANUP: ebtree: remove another typo, a wrong initialization in insertion code
17594 - BUG: ebtree: ebst_lookup() could return the wrong entry
17595 - OPTIM: stream_sock: reduce the amount of in-flight spliced data
17596 - OPTIM: stream_sock: save a failed recv syscall when splice returns EAGAIN
17597 - MINOR: acl: add support for TLS server name matching using SNI
17598 - BUG: http: re-enable TCP quick-ack upon incomplete HTTP requests
17599 - BUG: proto_tcp: don't try to bind to a foreign address if sin_family is unknown
17600 - MINOR: pattern: export the global temporary pattern
17601 - CLEANUP: patterns: get rid of pattern_data_setstring()
17602 - MEDIUM: acl: use temp_pattern to store fetched information in the "method" match
17603 - MINOR: acl: include pattern.h to make pattern migration more transparent
17604 - MEDIUM: pattern: change the pattern data integer from unsigned to signed
17605 - MEDIUM: acl: use temp_pattern to store any integer-type information
17606 - MEDIUM: acl: use temp_pattern to store any address-type information
17607 - CLEANUP: acl: integer part of acl_test is not used anymore
17608 - MEDIUM: acl: use temp_pattern to store any string-type information
17609 - CLEANUP: acl: remove last data fields from the acl_test struct
17610 - MEDIUM: http: replace get_ip_from_hdr2() with http_get_hdr()
17611 - MEDIUM: patterns: the hdr() pattern is now of type string
17612 - DOC: add minimal documentation on how ACLs work internally
17613 - DOC: add a coding-style file
17614 - OPTIM: halog: keep a fast path for the lines-count only
17615 - CLEANUP: silence a warning when building on sparc
17616 - BUG: http: tighten the list of allowed characters in a URI
17617 - MEDIUM: http: block non-ASCII characters in URIs by default
17618 - DOC: add some documentation from RFC3986 about URI format
17619 - BUG/MINOR: cli: correctly remove the whole table on "clear table"
17620 - BUG/MEDIUM: correctly disable servers tracking another disabled servers.
17621 - BUG/MEDIUM: zero-weight servers must not dequeue requests from the backend
17622 - MINOR: halog: add some help on the command line
17623 - BUILD: fix build error on FreeBSD
17624 - BUG: fix double free in peers config error path
17625 - MEDIUM: improve config check return codes
17626 - BUILD: make it possible to look for pcre in the default system paths
17627 - MINOR: config: emit a warning when 'default_backend' masks servers
17628 - MINOR: backend: rework the LC definition to support other connection-based algos
17629 - MEDIUM: backend: add the 'first' balancing algorithm
17630 - BUG: fix httplog trailing LF
17631 - MEDIUM: increase chunk-size limit to 2GB-1
17632 - BUG: queue: fix dequeueing sequence on HTTP keep-alive sessions
17633 - BUG: http: disable TCP delayed ACKs when forwarding content-length data
17634 - BUG: checks: fix server maintenance exit sequence
17635 - BUG/MINOR: stream_sock: don't remove BF_EXPECT_MORE and BF_SEND_DONTWAIT on partial writes
17636 - DOC: enumerate valid status codes for "observe layer7"
17637 - MINOR: buffer: switch a number of buffer args to const
17638 - CLEANUP: silence signedness warning in acl.c
17639 - BUG: stream_sock: si->release was not called upon shutw()
17640 - MINOR: log: use "%ts" to log term status only and "%tsc" to log with cookie
17641 - BUG/CRITICAL: log: fix risk of crash in development snapshot
17642 - BUG/MAJOR: possible crash when using capture headers on TCP frontends
17643 - MINOR: config: disable header captures in TCP mode and complain
17644
Willy Tarreau60612eb2011-09-10 23:43:11 +0200176452011/09/10 : 1.5-dev7
17646 - [BUG] fix binary stick-tables
17647 - [MINOR] http: *_dom matching header functions now also split on ":"
17648 - [BUG] checks: fix support of Mysqld >= 5.5 for mysql-check
17649 - [MINOR] acl: add srv_conn acl to count connections on a specific backend server
17650 - [MINOR] check: add redis check support
17651 - [DOC] small fixes to clearly distinguish between keyword and variables
17652 - [MINOR] halog: add support for termination code matching (-tcn/-TCN)
17653 - [DOC] Minor spelling fixes and grammatical enhancements
17654 - [CLEANUP] dumpstats: make symbols static where possible
17655 - [MINOR] Break out dumping table
17656 - [MINOR] Break out processing of clear table
17657 - [MINOR] Allow listing of stick table by key
17658 - [MINOR] Break out all stick table socat command parsing
17659 - [MINOR] More flexible clearing of stick table
17660 - [MINOR] Allow showing and clearing by key of ipv6 stick tables
17661 - [MINOR] Allow showing and clearing by key of integer stick tables
17662 - [MINOR] Allow showing and clearing by key of string stick tables
17663 - [CLEANUP] Remove assigned but unused variables
17664 - [CLEANUP] peers.h: fix declarations
17665 - [CLEANUP] session.c: Make functions static where possible
17666 - [MINOR] Add active connection list to server
17667 - [MINOR] Allow shutdown of sessions when a server becomes unavailable
17668 - [MINOR] Add down termination condition
17669 - [MINOR] Make appsess{,ion}_refresh static
17670 - [MINOR] Add rdp_cookie pattern fetch function
17671 - [CLEANUP] Remove unnecessary casts
17672 - [MINOR] Add non-stick server option
17673 - [MINOR] Consistently use error in tcp_parse_tcp_req()
17674 - [MINOR] Consistently free expr on error in cfg_parse_listen()
17675 - [MINOR] Free rdp_cookie_name on denint()
17676 - [MINOR] Free tcp rules on denint()
17677 - [MINOR] Free stick table pool on denint()
17678 - [MINOR] Free stick rules on denint()
17679 - [MEDIUM] Fix stick-table replication on soft-restart
17680 - [MEDIUM] Correct ipmask() logic
17681 - [MINOR] Correct type in table dump examples
17682 - [MINOR] Fix build error in stream_int_register_handler()
17683 - [MINOR] Use DPRINTF in assign_server()
17684 - [BUG] checks: http-check expect could fail a check on multi-packet responses
17685 - [DOC] fix minor typo in the "dispatch" doc
17686 - [BUG] proto_tcp: fix address binding on remote source
17687 - [MINOR] http: don't report the "haproxy" word on the monitoring response
17688 - [REORG] http: move HTTP error codes back to proto_http.h
17689 - [MINOR] http: make the "HTTP 200" status code configurable.
17690 - [MINOR] http: partially revert the chunking optimization for now
17691 - [MINOR] stream_sock: always clear BF_EXPECT_MORE upon complete transfer
17692 - [CLEANUP] stream_sock: remove unneeded FL_TCP and factor out test
17693 - [MEDIUM] http: add support for "http-no-delay"
17694 - [OPTIM] http: optimize chunking again in non-interactive mode
17695 - [OPTIM] stream_sock: avoid fast-forwarding of partial data
17696 - [OPTIM] stream_sock: don't use splice on too small payloads
17697 - [MINOR] config: make it possible to specify a cookie even without a server
17698 - [BUG] stats: support url-encoded forms
17699 - [MINOR] config: automatically compute a default fullconn value
17700 - [CLEANUP] config: remove some left-over printf debugging code from previous patch
17701 - [DOC] add missing entry or stick store-response
17702 - [MEDIUM] http: add support for 'cookie' and 'set-cookie' patterns
17703 - [BUG] halog: correctly handle truncated last line
17704 - [MINOR] halog: make SKIP_CHAR stop on field delimiters
17705 - [MINOR] halog: add support for HTTP log matching (-H)
17706 - [MINOR] halog: gain back performance before SKIP_CHAR fix
17707 - [OPTIM] halog: cache some common fields positions
17708 - [OPTIM] halog: check once for correct line format and reuse the pointer
17709 - [OPTIM] halog: remove many 'if' by using a function pointer for the filters
17710 - [OPTIM] halog: remove support for tab delimiters in input data
17711 - [BUG] session: risk of crash on out of memory (1.5-dev regression)
17712 - [MINOR] session: try to emit a 500 response on memory allocation errors
17713 - [OPTIM] stream_sock: reduce the default number of accepted connections at once
17714 - [BUG] stream_sock: disable listener when system resources are exhausted
17715 - [MEDIUM] proxy: add a PAUSED state to listeners and move socket tricks out of proxy.c
17716 - [BUG] stream_sock: ensure orphan listeners don't accept too many connections
17717 - [MINOR] listeners: add listen_full() to mark a listener full
17718 - [MINOR] listeners: add support for queueing resource limited listeners
17719 - [MEDIUM] listeners: put listeners in queue upon resource shortage
17720 - [MEDIUM] listeners: queue proxy-bound listeners at the proxy's
17721 - [MEDIUM] listeners: don't stop proxies when global maxconn is reached
17722 - [MEDIUM] listeners: don't change listeners states anymore in maintain_proxies
17723 - [CLEANUP] proxy: rename a few proxy states (PR_STIDLE and PR_STRUN)
17724 - [MINOR] stats: report a "WAITING" state for sockets waiting for resource
17725 - [MINOR] proxy: make session rate-limit more accurate
17726 - [MINOR] sessions: only wake waiting listeners up if rate limit is OK
17727 - [BUG] proxy: peers must only be stopped once, not upon every call to maintain_proxies
17728 - [CLEANUP] proxy: merge maintain_proxies() operation inside a single loop
17729 - [MINOR] task: new function task_schedule() to schedule a wake up
17730 - [MAJOR] proxy: finally get rid of maintain_proxies()
17731 - [BUG] proxy: stats frontend and peers were missing many initializers
17732 - [MEDIUM] listeners: add a global listener management task
17733 - [MINOR] proxy: make findproxy() return proxies from numeric IDs too
17734 - [DOC] fix typos, "#" is a sharp, not a dash
17735 - [MEDIUM] stats: add support for changing frontend's maxconn at runtime
17736 - [MEDIUM] checks: group health checks methods by values and save option bits
17737 - [MINOR] session-counters: add the ability to clear the counters
17738 - [BUG] check: http-check expect + regex would crash in defaults section
17739 - [MEDIUM] http: make x-forwarded-for addition conditional
17740 - [REORG] build: move syscall redefinition to specific places
17741 - [CLEANUP] update the year in the copyright banner
17742 - [BUG] possible crash in 'show table' on stats socket
17743 - [BUG] checks: use the correct destination port for sending checks
17744 - [BUG] backend: risk of picking a wrong port when mapping is used with crossed families
17745 - [MINOR] make use of set_host_port() and get_host_port() to get rid of family mismatches
17746 - [DOC] fixed a few "sensible" -> "sensitive" errors
17747 - [MINOR] make use of addr_to_str() and get_host_port() to replace many inet_ntop()
17748 - [BUG] http: trailing white spaces must also be trimmed after headers
17749 - [MINOR] stats: display "<NONE>" instead of the frontend name when unknown
17750 - [MINOR] http: take a capture of too large requests and responses
17751 - [MINOR] http: take a capture of truncated responses
17752 - [MINOR] http: take a capture of bad content-lengths.
17753 - [DOC] add a few old and uncommitted docs
17754 - [CLEANUP] cfgparse: fix reported options for the "bind" keyword
17755 - [MINOR] halog: add -hs/-HS to filter by HTTP status code range
17756 - [MINOR] halog: support backslash-escaped quotes
17757 - [CLEANUP] remove dirty left-over of a debugging message
17758 - [MEDIUM] stats: disable complex socket reservation for stats socket
17759 - [CLEANUP] remove a useless test in manage_global_listener_queue()
17760 - [MEDIUM] stats: add the "set maxconn" setting to the command line interface
17761 - [MEDIUM] add support for global.maxconnrate to limit the per-process conn rate.
17762 - [MINOR] stats: report the current and max global connection rates
17763 - [MEDIUM] stats: add the ability to adjust the global maxconnrate
17764 - [BUG] peers: don't pre-allocate 65000 connections to each peer
17765 - [MEDIUM] don't limit peers nor stats socket to maxconn nor maxconnrate
17766 - [BUG] peers: the peer frontend must not emit any log
17767 - [CLEANUP] proxy: make pause_proxy() perform the required controls and emit the logs
17768 - [BUG] peers: don't keep a peers section which has a NULL frontend
17769 - [BUG] peers: ensure the peers are resumed if they were paused
17770 - [MEDIUM] stats: add the ability to enable/disable/shutdown a frontend at runtime
17771 - [MEDIUM] session: make session_shutdown() an independant function
17772 - [MEDIUM] stats: offer the possibility to kill a session from the CLI
17773 - [CLEANUP] stats: centralize tests for backend/server inputs on the CLI
17774 - [MEDIUM] stats: offer the possibility to kill sessions by server
17775 - [MINOR] halog: do not consider byte 0x8A as end of line
17776 - [MINOR] frontend: ensure debug message length is always initialized
17777 - [OPTIM] halog: make fgets parse more bytes by blocks
17778 - [OPTIM] halog: add assembly version of the field lookup code
17779 - [MEDIUM] poll: add a measurement of idle vs work time
17780 - [CLEANUP] startup: report only the basename in the usage message
17781 - [MINOR] startup: add an option to change to a new directory
17782 - [OPTIM] task: don't scan the run queue if we know it's empty
17783 - [BUILD] stats: stdint is not present on solaris
17784 - [DOC] update the README file to reflect new naming rules for patches
17785 - [MINOR] stats: report the number of requests intercepted by the frontend
17786 - [DOC] update ROADMAP file
17787
Willy Tarreau04df1122011-04-08 00:56:41 +0200177882011/04/08 : 1.5-dev6
17789 - [BUG] stream_sock: use get_addr_len() instead of sizeof() on sockaddr_storage
17790 - [BUG] TCP source tracking was broken with IPv6 changes
17791 - [BUG] stick-tables did not work when converting IPv6 to IPv4
17792 - [CRITICAL] fix risk of crash when dealing with space in response cookies
17793
Willy Tarreaub06ed2c2011-03-29 01:10:33 +0200177942011/03/29 : 1.5-dev5
17795 - [BUG] standard: is_addr return value for IPv4 was inverted
17796 - [MINOR] update comment about IPv6 support for server
17797 - [MEDIUM] use getaddrinfo to resolve names if gethostbyname fail
17798 - [DOC] update IPv6 support for bind
17799 - [DOC] document IPv6 support for server
17800 - [DOC] fix a minor typo
17801 - [MEDIUM] IPv6 support for syslog
17802 - [DOC] document IPv6 support for syslog
17803 - [MEDIUM] IPv6 support for stick-tables
17804 - [DOC] document IPv6 support for stick-tables
17805 - [DOC] update ROADMAP file
17806 - [BUG] session: src_conn_cur was returning src_conn_cnt instead
17807 - [MINOR] frontend: add a make_proxy_line function
17808 - [MEDIUM] stream_sock: add support for sending the proxy protocol header line
17809 - [MEDIUM] server: add support for the "send-proxy" option
17810 - [DOC] update the spec on the proxy protocol
17811 - [BUILD] proto_tcp: fix build issue with CTTPROXY
17812 - [DOC] update ROADMAP file
17813 - [MEDIUM] config: rework the IPv4/IPv6 address parser to support host-only addresses
17814 - [MINOR] cfgparse: better report wrong listening addresses and make use of str2sa_range
17815 - [BUILD] add the USE_GETADDRINFO build option
17816 - [TESTS] provide a test case for various address formats
17817 - [BUG] session: conn_retries was not always initialized
17818 - [BUG] log: retrieve the target from the session, not the SI
17819 - [BUG] http: fix possible incorrect forwarded wrapping chunk size (take 2)
17820 - [MINOR] tools: add two macros MID_RANGE and MAX_RANGE
17821 - [BUG] http: fix content-length handling on 32-bit platforms
17822 - [OPTIM] buffers: uninline buffer_forward()
17823 - [BUG] stream_sock: fix handling for server side PROXY protocol
17824 - [MINOR] acl: add support for table_cnt and table_avl matches
17825 - [DOC] update ROADMAP file
17826
Willy Tarreaue0052cc2011-03-13 22:15:02 +0100178272011/03/13 : 1.5-dev4
17828 - [MINOR] cfgparse: Check whether the path given for the stats socket actually fits into the sockaddr_un structure to avoid truncation.
17829 - [MINOR] unix sockets : inherits the backlog size from the listener
17830 - [CLEANUP] unix sockets : move create_uxst_socket() in uxst_bind_listener()
17831 - [DOC] fix a minor typo
17832 - [DOC] fix ignore-persist documentation
17833 - [MINOR] add warnings on features not compatible with multi-process mode
17834 - [BUG] http: fix http-pretend-keepalive and httpclose/tunnel mode
17835 - [MINOR] stats: add support for several packets in stats admin
17836 - [BUG] stats: admin commands must check the proxy state
17837 - [BUG] stats: admin web interface must check the proxy state
17838 - [MINOR] http: add pattern extraction method to stick on query string parameter
17839 - [MEDIUM] add internal support for IPv6 server addresses
17840 - [MINOR] acl: add be_id/srv_id to match backend's and server's id
17841 - [MINOR] log: add support for passing the forwarded hostname
17842 - [MINOR] log: ability to override the syslog tag
17843 - [MINOR] checks: add PostgreSQL health check
17844 - [DOC] update ROADMAP file
17845 - [BUILD] pattern: use 'int' instead of 'int32_t'
17846 - [OPTIM] linux: add support for bypassing libc to force using vsyscalls
17847 - [BUG] debug: report the correct poller list in verbose mode
17848 - [BUG] capture: do not capture a cookie if there is no memory left
17849 - [BUG] appsession: fix possible double free in case of out of memory
17850 - [CRITICAL] cookies: mixing cookies in indirect mode and appsession can crash the process
17851 - [BUG] http: correctly update the header list when removing two consecutive headers
17852 - [BUILD] add the CPU=native and ARCH=32/64 build options
17853 - [BUILD] add -fno-strict-aliasing to fix warnings with gcc >= 4.4
17854 - [CLEANUP] hash: move the avalanche hash code globally available
17855 - [MEDIUM] hash: add support for an 'avalanche' hash-type
17856 - [DOC] update roadmap file
17857 - [BUG] http: do not re-enable the PROXY analyser on keep-alive
17858 - [OPTIM] http: don't send each chunk in a separate packet
17859 - [DOC] fix minor typos reported recently in the peers section
17860 - [DOC] fix another typo in the doc
17861 - [MINOR] stats: report HTTP message state and buffer flags in error dumps
17862 - [BUG] http chunking: don't report a parsing error on connection errors
17863 - [BUG] stream_interface: truncate buffers when sending error messages
17864 - [MINOR] http: support wrapping messages in error captures
17865 - [MINOR] http: capture incorrectly chunked message bodies
17866 - [MINOR] stats: add global event ID and count
17867 - [BUG] http: analyser optimizations broke pipelining
17868 - [CLEANUP] frontend: only apply TCP-specific settings to TCP/TCP6 sockets
17869 - [BUG] http: fix incorrect error reporting during data transfers
17870 - [CRITICAL] session: correctly leave turn-around and queue states on abort
17871 - [BUG] session: release slot before processing pending connections
17872 - [MINOR] tcp: add support for dynamic MSS setting
17873 - [BUG] stick-table: correctly terminate string keys during lookups
17874 - [BUG] acl: fix handling of empty lines in pattern files
17875 - [BUG] stick-table: use the private buffer when padding strings
17876 - [BUG] ebtree: fix ebmb_lookup() with len smaller than the tree's keys
17877 - [OPTIM] ebtree: ebmb_lookup: reduce stack usage by moving the return code out of the loop
17878 - [OPTIM] ebtree: inline ebst_lookup_len and ebis_lookup_len
17879 - [REVERT] undo the stick-table string key lookup fixes
17880 - [MINOR] http: improve url_param pattern extraction to ignore empty values
17881 - [BUILD] frontend: shut a warning with TCP_MAXSEG
17882 - [BUG] http: update the header list's tail when removing the last header
17883 - [DOC] fix minor typo in the proxy protocol doc
17884 - [DOC] fix typos (http-request instead of http-check)
17885 - [BUG] http: use correct ACL pointer when evaluating authentication
17886 - [BUG] cfgparse: correctly count one socket per port in ranges
17887 - [BUG] startup: set the rlimits before binding ports, not after.
17888 - [BUG] acl: srv_id must return no match when the server is NULL
17889 - [MINOR] acl: add ability to check for internal response-only parameters
17890 - [MINOR] acl: srv_id is only valid in responses
17891 - [MINOR] config: warn if response-only conditions are used in "redirect" rules
17892 - [BUG] acl: fd leak when reading patterns from file
17893 - [DOC] fix minor typo in "usesrc"
17894 - [BUG] http: fix possible incorrect forwarded wrapping chunk size
17895 - [BUG] http: fix computation of message body length after forwarding has started
17896 - [BUG] http: balance url_param did not work with first parameters on POST
17897 - [TESTS] update the url_param regression test to test check_post too
17898 - [DOC] update ROADMAP
17899 - [DOC] internal: reflect the fact that SI_ST_ASS is transient
17900 - [BUG] config: don't crash on empty pattern files.
17901 - [MINOR] stream_interface: make use of an applet descriptor for IO handlers
17902 - [REORG] stream_interface: move the st0, st1 and private members to the applet
17903 - [REORG] stream_interface: split the struct members in 3 parts
17904 - [REORG] session: move client and server address to the stream interface
17905 - [REORG] tcp: make tcpv4_connect_server() take the target address from the SI
17906 - [MEDIUM] stream_interface: store the target pointer and type
17907 - [CLEANUP] stream_interface: remove the applet.handler pointer
17908 - [MEDIUM] log: take the logged server name from the stream interface
17909 - [CLEANUP] session: remove data_source from struct session
17910 - [CLEANUP] stats: make all dump functions only rely on the stream interface
17911 - [REORG] session: move the data_ctx struct to the stream interface's applet
17912 - [MINOR] proxy: add PR_O2_DISPATCH to detect dispatch mode
17913 - [MINOR] cfgparse: only keep one of dispatch, transparent, http_proxy
17914 - [MINOR] session: add a pointer to the new target into the session
17915 - [MEDIUM] session: remove s->prev_srv which is not needed anymore
17916 - [CLEANUP] stream_interface: use inline functions to manipulate targets
17917 - [MAJOR] session: remove the ->srv pointer from struct session
17918 - [MEDIUM] stats: split frontend and backend stats
17919 - [MEDIUM] http: always evaluate http-request rules before stats http-request
17920 - [REORG] http: move the http-request rules to proto_http
17921 - [BUG] http: stats were not incremented on http-request deny
17922 - [MINOR] checks: report it if checks fail due to socket creation error
17923
Willy Tarreau442e8342010-11-11 23:29:35 +0100179242010/11/11 : 1.5-dev3
17925 - [DOC] fix http-request documentation
17926 - [MEDIUM] enable/disable servers from the stats web interface
17927 - [MEDIUM] stats: add an admin level
17928 - [DOC] stats: document the "stats admin" statement
17929 - [MINOR] startup: print the proxy socket which caused an error
17930 - [CLEANUP] Remove unneeded chars allocation
17931 - [MINOR] config: detect options not supported due to compilation options
17932 - [MINOR] Add pattern's fetchs payload and payload_lv
17933 - [MINOR] frontend: improve accept-proxy header parsing
17934 - [MINOR] frontend: add tcpv6 support on accept-proxy bind
17935 - [MEDIUM] Enhance message errors management on binds
17936 - [MINOR] Manage unix socket source field on logs
17937 - [MINOR] Manage unix socket source field on session dump on sock stats
17938 - [MINOR] Support of unix listener sockets for debug and log event messages on frontend.c
17939 - [MINOR] Add some tests on sockets family for port remapping and mode transparent.
17940 - [MINOR] Manage socket type unix for some logs
17941 - [MINOR] Enhance controls of socket's family on acls and pattern fetch
17942 - [MINOR] Support listener's sockets unix on http logs.
17943 - [MEDIUM] Add supports of bind on unix sockets.
17944 - [BUG] stick table purge failure if size less than 255
17945 - [BUG] stick table entries expire on counters updates/read or show table, even if there is no "expire" parameter
17946 - [MEDIUM] Implement tcp inspect response rules
17947 - [DOC] tcp-response content and inspect
17948 - [MINOR] new acls fetch req_ssl_hello_type and rep_ssl_hello_type
17949 - [DOC] acls rep_ssl_hello and req_ssl_hello
17950 - [MEDIUM] Create new protected pattern types CONSTSTRING and CONSTDATA to force memcpy if data from protected areas need to be manipulated.
17951 - [DOC] new type binary in stick-table
17952 - [DOC] stick store-response and new patterns payload and payload_lv
17953 - [MINOR] Manage all types (ip, integer, string, binary) on cli "show table" command
17954 - [MEDIUM] Create updates tree on stick table to manage sync.
17955 - [MAJOR] Add new files src/peer.c, include/proto/peers.h and include/types/peers.h for sync stick table management
17956 - [MEDIUM] Manage peers section parsing and stick table registration on peers.
17957 - [MEDIUM] Manage soft stop on peers proxy
17958 - [DOC] add documentation for peers section
17959 - [MINOR] checks: add support for LDAPv3 health checks
17960 - [MINOR] add better support to "mysql-check"
17961 - [BUG] Restore info about available active/backup servers
17962 - [CONTRIB] Update haproxy.pl
17963 - [CONTRIB] Update Cacti Tempates
17964 - [CONTRIB] add templates for Cacti.
17965 - [BUG] http: don't consider commas as a header delimitor within quotes
17966 - [MINOR] support a global jobs counter
17967 - [DOC] add a summary about cookie incompatibilities between specs and browsers
17968 - [DOC] fix description of cookie "insert" and "indirect" modes
17969 - [MEDIUM] http: fix space handling in the request cookie parser
17970 - [MEDIUM] http: fix space handling in the response cookie parser
17971 - [DOC] fix typo in the queue() definition (backend, not frontend)
17972 - [BUG] deinit: unbind listeners before freeing them
17973 - [BUG] stream_interface: only call si->release when both dirs are closed
17974 - [MEDIUM] buffers: rework the functions to exchange between SI and buffers
17975 - [DOC] fix typo in the avg_queue() and be_conn() definition (backend, not frontend)
17976 - [MINOR] halog: add '-tc' to sort by termination codes
17977 - [MINOR] halog: skip non-traffic logs for -st and -tc
17978 - [BUG] stream_sock: cleanly disable the listener in case of resource shortage
17979 - [BUILD] stream_sock: previous fix lacked the #include, causing a warning.
17980 - [DOC] bind option is "defer-accept", not "defer_accept"
17981 - [DOC] missing index entry for http-check send-state
17982 - [DOC] tcp-request inspect-delay is for backends too
17983 - [BUG] ebtree: string_equal_bits() could return garbage on identical strings
17984 - [BUG] stream_sock: try to flush any extra pending request data after a POST
17985 - [BUILD] proto_http: eliminate some build warnings with gcc-2.95
17986 - [MEDIUM] make it possible to combine http-pretend-keepalived with httpclose
17987 - [MEDIUM] tcp-request : don't wait for inspect-delay to expire when the buffer is full
17988 - [MEDIUM] checks: add support for HTTP contents lookup
17989 - [TESTS] add test-check-expect to test various http-check methods
17990 - [MINOR] global: add "tune.chksize" to change the default check buffer size
17991 - [MINOR] cookie: add options "maxidle" and "maxlife"
17992 - [MEDIUM] cookie: support client cookies with some contents appended to their value
17993 - [MINOR] http: make some room in the transaction flags to extend cookies
17994 - [MINOR] cookie: add the expired (E) and old (O) flags for request cookies
17995 - [MEDIUM] cookie: reassign set-cookie status flags to store more states
17996 - [MINOR] add encode/decode function for 30-bit integers from/to base64
17997 - [MEDIUM] cookie: check for maxidle and maxlife for incoming dated cookies
17998 - [MEDIUM] cookie: set the date in the cookie if needed
17999 - [DOC] document the cookie maxidle and maxlife parameters
18000 - [BUG] checks: don't log backend down for all zero-weight servers
18001 - [MEDIUM] checks: set server state to one state from failure when leaving maintenance
18002 - [BUG] config: report correct keywords for "observe"
18003 - [MINOR] checks: ensure that we can inherit binary checks from the defaults section
18004 - [MINOR] acl: add the http_req_first match
18005 - [DOC] fix typos about bind-process syntax
18006 - [BUG] cookie: correctly unset default cookie parameters
18007 - [MINOR] cookie: add support for the "preserve" option
18008 - [BUG] ebtree: fix duplicate strings insertion
18009 - [CONTRIB] halog: report per-url counts, errors and times
18010 - [CONTRIB] halog: minor speed improvement in timer parser
18011 - [MINOR] buffers: add a new request analyser flag for PROXY mode
18012 - [MINOR] listener: add the "accept-proxy" option to the "bind" keyword
18013 - [MINOR] standard: add read_uint() to parse a delimited unsigned integer
18014 - [MINOR] standard: change arg type from const char* to char*
18015 - [MINOR] frontend: add a new analyser to parse a proxied connection
18016 - [MEDIUM] session: call the frontend_decode_proxy analyser on proxied connections
18017 - [DOC] add the proxy protocol's specifications
18018 - [DOC] document the 'accept-proxy' bind option
18019 - [MINOR] cfgparse: report support of <path> for the 'bind' statements
18020 - [DOC] add references to unix socket handling
18021 - [MINOR] move MAXPATHLEN definition to compat.h
18022 - [MEDIUM] unix sockets: cleanup the error reporting path
18023 - [BUG] session: don't stop forwarding of data upon last packet
18024 - [CLEANUP] accept: replace some inappropriate Alert() calls with send_log()
18025 - [BUILD] peers: shut a printf format warning (key_size is a size_t)
18026 - [BUG] accept: don't close twice upon error
18027 - [OPTIM] session: don't recheck analysers when buffer flags have not changed
18028 - [OPTIM] stream_sock: don't clear FDs that are already cleared
18029 - [BUG] proto_tcp: potential bug on pattern fetch dst and dport
18030
Willy Tarreau37242fa2010-08-28 19:21:00 +0200180312010/08/28 : 1.5-dev2
18032 - [MINOR] startup: release unused structs after forking
18033 - [MINOR] startup: don't wait for nothing when no old pid remains
18034 - [CLEANUP] reference product branch 1.5
18035 - [MEDIUM] signals: add support for registering functions and tasks
18036 - [MEDIUM] signals: support redistribution of signal zero when stopping
18037 - [BUG] http: don't set auto_close if more data are expected
18038
Willy Tarreaufc815fd2010-08-25 10:56:53 +0200180392010/08/25 : 1.5-dev1
18040 - [BUG] stats: session rate limit gets garbaged in the stats
18041 - [DOC] mention 'option http-server-close' effect in Tq section
18042 - [DOC] summarize and highlight persistent connections behaviour
18043 - [DOC] add configuration samples
18044 - [BUG] http: dispatch and http_proxy modes were broken for a long time
18045 - [BUG] http: the transaction must be initialized even in TCP mode
18046 - [BUG] tcp: dropped connections must be counted as "denied" not "failed"
18047 - [BUG] consistent hash: balance on all servers, not only 2 !
18048 - [CONTRIB] halog: report per-server status codes, errors and response times
18049 - [BUG] http: the transaction must be initialized even in TCP mode (part 2)
18050 - [BUG] client: always ensure to zero rep->analysers
18051 - [BUG] session: clear BF_READ_ATTACHED before next I/O
18052 - [BUG] http: automatically close response if req is aborted
18053 - [BUG] proxy: connection rate limiting was eating lots of CPU
18054 - [BUG] http: report correct flags in case of client aborts during body
18055 - [TESTS] refine non-regression tests and add 4 new tests
18056 - [BUG] debug: wrong pointer was used to report a status line
18057 - [BUG] debug: correctly report truncated messages
18058 - [DOC] document the "dispatch" keyword
18059 - [BUG] stick_table: fix possible memory leak in case of connection error
18060 - [CLEANUP] acl: use 'L6' instead of 'L4' in ACL flags relying on contents
18061 - [MINOR] accept: count the incoming connection earlier
18062 - [CLEANUP] tcp: move some non tcp-specific layer6 processing out of proto_tcp
18063 - [CLEANUP] client: move some ACLs away to their respective locations
18064 - [CLEANUP] rename client -> frontend
18065 - [MEDIUM] separate protocol-level accept() from the frontend's
18066 - [MINOR] proxy: add a list to hold future layer 4 rules
18067 - [MEDIUM] config: parse tcp layer4 rules (tcp-request accept/reject)
18068 - [MEDIUM] tcp: check for pure layer4 rules immediately after accept()
18069 - [OPTIM] frontend: tell the compiler that errors are unlikely to occur
18070 - [MEDIUM] frontend: check for LI_O_TCP_RULES in the listener
18071 - [MINOR] frontend: only check for monitor-net rules if LI_O_CHK_MONNET is set
18072 - [CLEANUP] buffer->cto is not used anymore
18073 - [MEDIUM] session: finish session establishment sequence in with I/O handlers
18074 - [MEDIUM] session: initialize server-side timeouts after connect()
18075 - [MEDIUM] backend: initialize the server stream_interface upon connect()
18076 - [MAJOR] frontend: don't initialize the server-side stream_int anymore
18077 - [MEDIUM] session: move the conn_retries attribute to the stream interface
18078 - [MEDIUM] session: don't assign conn_retries upon accept() anymore
18079 - [MINOR] frontend: rely on the frontend and not the backend for INDEPSTR
18080 - [MAJOR] frontend: reorder the session initialization upon accept
18081 - [MINOR] proxy: add an accept() callback for the application layer
18082 - [MAJOR] frontend: split accept() into frontend_accept() and session_accept()
18083 - [MEDIUM] stats: rely on the standard session_accept() function
18084 - [MINOR] buffer: refine the flags that may wake an analyser up.
18085 - [MINOR] stream_sock: don't dereference a non-existing frontend
18086 - [MINOR] session: differenciate between accepted connections and received connections
18087 - [MEDIUM] frontend: count the incoming connection earlier
18088 - [MINOR] frontend: count denied TCP requests separately
18089 - [CLEANUP] stick_table: add/clarify some comments
18090 - [BUILD] memory: add a few missing parenthesis to the pool management macros
18091 - [MINOR] stick_table: add support for variable-sized data
18092 - [CLEANUP] stick_table: rename some stksess struct members to avoid confusion
18093 - [CLEANUP] stick_table: move pattern to key functions to stick_table.c
18094 - [MEDIUM] stick_table: add room for extra data types
18095 - [MINOR] stick_table: add support for "conn_cum" data type.
18096 - [MEDIUM] stick_table: don't overwrite data when storing an entry
18097 - [MINOR] config: initialize stick tables after all the parsing
18098 - [MINOR] stick_table: provide functions to return stksess data from a type
18099 - [MEDIUM] stick_table: move the server ID to a generic data type
18100 - [MINOR] stick_table: enable it for frontends too
18101 - [MINOR] stick_table: export the stick_table_key
18102 - [MINOR] tcp: add per-source connection rate limiting
18103 - [MEDIUM] stick_table: separate storage and update of session entries
18104 - [MEDIUM] stick-tables: add a reference counter to each entry
18105 - [MINOR] session: add a pointer to the tracked counters for the source
18106 - [CLEANUP] proto_tcp: make the config parser a little bit more flexible
18107 - [BUG] config: report the correct proxy type in tcp-request errors
18108 - [MINOR] config: provide a function to quote args in a more friendly way
18109 - [BUG] stick_table: the fix for the memory leak caused a regression
18110 - [MEDIUM] backend: support servers on 0.0.0.0
18111 - [BUG] stick-table: correctly refresh expiration timers
18112 - [MEDIUM] stream-interface: add a ->release callback
18113 - [MINOR] proxy: add a "parent" member to the structure
18114 - [MEDIUM] session: make it possible to call an I/O handler on both SI
18115 - [MINOR] tools: add a fast div64_32 function
18116 - [MINOR] freq_ctr: add new types and functions for periods different from 1s
18117 - [MINOR] errors: provide new status codes for config parsing functions
18118 - [BUG] http: denied requests must not be counted as denied resps in listeners
18119 - [MINOR] tools: add a get_std_op() function to parse operators
18120 - [MEDIUM] acl: make use of get_std_op() to parse intger ranges
18121 - [MAJOR] stream_sock: better wakeup conditions on read()
18122 - [BUG] session: analysers must be checked when SI state changes
18123 - [MINOR] http: reset analysers to listener's, not frontend's
18124 - [MEDIUM] session: support "tcp-request content" rules in backends
18125 - [BUILD] always match official tags when doing git-tar
18126 - [MAJOR] stream_interface: fix the wakeup conditions for embedded iohandlers
18127 - [MEDIUM] buffer: make buffer_feed* support writing non-contiguous chunks
18128 - [MINOR] tcp: src_count acl does not have a permanent result
18129 - [MAJOR] session: add track-counters to track counters related to the session
18130 - [MINOR] stick-table: provide a table lookup function
18131 - [MINOR] stick-table: use suffix "_cnt" for cumulated counts
18132 - [MEDIUM] session: move counter ACL fetches from proto_tcp
18133 - [MEDIUM] session: add concurrent connections counter
18134 - [MEDIUM] session: add data in and out volume counters
18135 - [MINOR] session: add the trk_conn_cnt ACL keyword to track connection counts
18136 - [MEDIUM] session-counters: automatically update tracked connection count
18137 - [MINOR] session: add the trk_conn_cur ACL keyword to track concurrent connection
18138 - [MINOR] session: add trk_kbytes_* ACL keywords to track data size
18139 - [MEDIUM] session: add a counter on the cumulated number of sessions
18140 - [MINOR] config: support a comma-separated list of store data types in stick-table
18141 - [MEDIUM] stick-tables: add support for arguments to data_types
18142 - [MEDIUM] stick-tables: add stored data argument type checking
18143 - [MEDIUM] session counters: add conn_rate and sess_rate counters
18144 - [MEDIUM] session counters: add bytes_in_rate and bytes_out_rate counters
18145 - [MINOR] stktable: add a stktable_update_key() function
18146 - [MINOR] session-counters: add a general purpose counter (gpc0)
18147 - [MEDIUM] session-counters: add HTTP req/err tracking
18148 - [MEDIUM] stats: add "show table [<name>]" to dump a stick-table
18149 - [MEDIUM] stats: add "clear table <name> key <value>" to clear table entries
18150 - [CLEANUP] stick-table: declare stktable_data_types as extern
18151 - [MEDIUM] stick-table: make use of generic types for stored data
18152 - [MINOR] stats: correctly report errors on "show table" and "clear table"
18153 - [MEDIUM] stats: add the ability to dump table entries matching criteria
18154 - [DOC] configuration: document all the new tracked counters
18155 - [DOC] stats: document "show table" and "clear table"
18156 - [MAJOR] session-counters: split FE and BE track counters
18157 - [MEDIUM] tcp: accept the "track-counters" in "tcp-request content" rules
18158 - [MEDIUM] session counters: automatically remove expired entries.
18159 - [MEDIUM] config: replace 'tcp-request <action>' with "tcp-request connection"
18160 - [MEDIUM] session-counters: make it possible to count connections from frontend
18161 - [MINOR] session-counters: use "track-sc{1,2}" instead of "track-{fe,be}-counters"
18162 - [MEDIUM] session-counters: correctly unbind the counters tracked by the backend
18163 - [CLEANUP] stats: use stksess_kill() to remove table entries
18164 - [DOC] update the references to session counters and to tcp-request connection
18165 - [DOC] cleanup: split a few long lines
18166 - [MEDIUM] http: forward client's close when abortonclose is set
18167 - [BUG] queue: don't dequeue proxy-global requests on disabled servers
18168 - [BUG] stats: global stats timeout may be specified before stats socket.
18169 - [BUG] conf: add tcp-request content rules to the correct list
18170
Willy Tarreau21475e32010-05-23 08:46:08 +0200181712010/05/23 : 1.5-dev0
18172 - exact copy of 1.4.6
18173
Willy Tarreau5fdd77d2010-05-16 22:34:28 +0200181742010/05/16 : 1.4.6
18175 - [BUILD] ebtree: update to v6.0.1 to remove references to dprintf()
18176 - [CLEANUP] acl: make use of eb_is_empty() instead of open coding the tree's emptiness test
18177 - [MINOR] acl: add srv_is_up() to check that a specific server is up or not
18178 - [DOC] add a few precisions about the use of RDP cookies
18179
Willy Tarreau9d4d9e32010-05-13 22:17:08 +0200181802010/05/13 : 1.4.5
18181 - [DOC] report minimum kernel version for tproxy in the Makefile
18182 - [MINOR] add the "ignore-persist" option to conditionally ignore persistence
18183 - [DOC] add the "ignore-persist" option to conditionally ignore persistence
18184 - [DOC] fix ignore-persist/force-persist documentation
18185 - [BUG] cttproxy: socket fd leakage in check_cttproxy_version
18186 - [DOC] doc/configuration.txt: fix typos
18187 - [MINOR] option http-pretend-keepalive is both for FEs and BEs
18188 - [MINOR] fix possible crash in debug mode with invalid responses
18189 - [MINOR] halog: add support for statisticts on status codes
18190 - [OPTIM] halog: use a faster zero test in fgets()
18191 - [OPTIM] halog: minor speedup by using unlikely()
18192 - [OPTIM] halog: speed up fgets2-64 by about 10%
18193 - [DOC] refresh the README file and merge the CONTRIB file into it
18194 - [MINOR] acl: support loading values from files
18195 - [MEDIUM] ebtree: upgrade to version 6.0
18196 - [MINOR] acl trees: add flags and union members to store values in trees
18197 - [MEDIUM] acl: add ability to insert patterns in trees
18198 - [MEDIUM] acl: add tree-based lookups of exact strings
18199 - [MEDIUM] acl: add tree-based lookups of networks
18200 - [MINOR] acl: ignore empty lines and comments in pattern files
18201 - [MINOR] stick-tables: add support for "stick on hdr"
18202
Willy Tarreau9508c1c2010-04-07 23:12:24 +0200182032010/04/07 : 1.4.4
18204 - [BUG] appsession should match the whole cookie name
18205 - [CLEANUP] proxy: move PR_O_SSL3_CHK to options2 to release one flag
18206 - [MEDIUM] backend: move the transparent proxy address selection to backend
18207 - [MINOR] add very fast IP parsing functions
18208 - [MINOR] add new tproxy flags for dynamic source address binding
18209 - [MEDIUM] add ability to connect to a server from an IP found in a header
18210 - [BUILD] config: last patch breaks build without CONFIG_HAP_LINUX_TPROXY
18211 - [MINOR] http: make it possible to pretend keep-alive when doing close
18212 - [MINOR] config: report "default-server" instead of "(null)" in error messages
18213
Willy Tarreau75934a12010-03-30 09:50:08 +0200182142010/03/30 : 1.4.3
18215 - [CLEANUP] stats: remove printf format warning in stats_dump_full_sess_to_buffer()
18216 - [MEDIUM] session: better fix for connection to servers with closed input
18217 - [DOC] indicate in the doc how to bind to port ranges
18218 - [BUG] backend: L7 hashing must not be performed on incomplete requests
18219 - [TESTS] add a simple program to test connection resets
18220 - [MINOR] cli: "show errors" should display "backend <NONE>" when backend was not used
18221 - [MINOR] config: emit warnings when HTTP-only options are used in TCP mode
18222 - [MINOR] config: allow "slowstart 0s"
18223 - [BUILD] 'make tags' did not consider files ending in '.c'
18224 - [MINOR] checks: add the ability to disable a server in the config
18225
Willy Tarreauda618cb2010-03-17 23:41:57 +0100182262010/03/17 : 1.4.2
18227 - [CLEANUP] product branch update
18228 - [DOC] Some more documentation cleanups
18229 - [BUG] clf logs segfault when capturing a non existant header
18230 - [OPTIM] config: only allocate check buffer when checks are enabled
18231 - [MEDIUM] checks: support multi-packet health check responses
18232 - [CLEANUP] session: remove duplicate test
18233 - [BUG] http: don't wait for response data to leave buffer is client has left
18234 - [MINOR] proto_uxst: set accept_date upon accept() to the wall clock time
18235 - [MINOR] stats: don't send empty lines in "show errors"
18236 - [MINOR] stats: make the data dump function reusable for other purposes
18237 - [MINOR] stats socket: add show sess <id> to dump details about a session
18238 - [BUG] stats: connection reset counters must be plain ascii, not HTML
18239 - [BUG] url_param hash may return a down server
18240 - [MINOR] force null-termination of hostname
18241 - [MEDIUM] connect to servers even when the input has already been closed
18242 - [BUG] don't merge anonymous ACLs !
18243 - [BUG] config: fix endless loop when parsing "on-error"
18244 - [MINOR] http: don't mark a server as failed when it returns 501/505
18245 - [OPTIM] checks: try to detect the end of response without polling again
18246 - [BUG] checks: don't report an error when recv() returns an error after data
18247 - [BUG] checks: don't abort when second poll returns an error
18248 - [MINOR] checks: make shutdown() silently fail
18249 - [BUG] http: fix truncated responses on chunk encoding when size divides buffer size
18250 - [BUG] init: unconditionally catch SIGPIPE
18251 - [BUG] checks: don't wait for a close to start parsing the response
18252
Willy Tarreauc5e60c32010-03-04 23:39:19 +0100182532010/03/04 : 1.4.1
18254 - [BUG] Clear-cookie path issue
18255 - [DOC] fix typo on stickiness rules
18256 - [BUILD] fix BSD and OSX makefiles for missing files
18257 - [BUILD] includes order breaks OpenBSD build
18258 - [BUILD] fix some build warnings on Solaris with is* macros
18259 - [BUG] logs: don't report "last data" when we have just closed after an error
18260 - [BUG] logs: don't report "proxy request" when server closes early
18261 - [BUILD] fix platform-dependant build issues related to crypt()
18262 - [STATS] count transfer aborts caused by client and by server
18263 - [STATS] frontend requests were not accounted for failed requests
18264 - [MINOR] report total number of processed connections when stopping a proxy
18265 - [DOC] be more clear about the limitation to one single monitor-net entry
18266
Willy Tarreaue18fdfd2010-02-26 14:55:22 +0100182672010/02/26 : 1.4.0
18268 - [MINOR] stats: report maint state for tracking servers too
18269 - [DOC] fix summary to add pattern extraction
18270 - [DOC] Documentation cleanups
18271 - [BUG] cfgparse memory leak and missing free calls in deinit()
18272 - [BUG] pxid/puid/luid: don't shift IDs when some of them are forced
18273 - [EXAMPLES] add auth.cfg
18274 - [BUG] uri_auth: ST_SHLGNDS should be 0x00000008 not 0x0000008
18275 - [BUG] uri_auth: do not attemp to convert uri_auth -> http-request more than once
18276 - [BUILD] auth: don't use unnamed unions
18277 - [BUG] config: report unresolvable host names as errors
18278 - [BUILD] fix build breakage with DEBUG_FULL
18279 - [DOC] fix a typo about timeout check and clarify the explanation.
18280 - [MEDIUM] http: don't use trash to realign large buffers
18281 - [STATS] report HTTP requests (total and rate) in frontends
18282 - [STATS] separate frontend and backend HTTP stats
18283 - [MEDIUM] http: revert to use a swap buffer for realignment
18284 - [MINOR] stats: report the request rate in frontends as cell titles
18285 - [MINOR] stats: mark areas with an underline when tooltips are available
18286 - [DOC] reorder some entries to maintain the alphabetical order
18287 - [DOC] cleanup of the keyword matrix
18288
Willy Tarreaub05613d2010-02-02 10:18:28 +0100182892010/02/02 : 1.4-rc1
18290 - [MEDIUM] add a maintenance mode to servers
18291 - [MINOR] http-auth: last fix was wrong
18292 - [CONTRIB] add base64rev-gen.c that was used to generate the base64rev table.
18293 - [MINOR] Base64 decode
18294 - [MINOR] generic auth support with groups and encrypted passwords
18295 - [MINOR] add ACL_TEST_F_NULL_MATCH
18296 - [MINOR] http-request: allow/deny/auth support for frontend/backend/listen
18297 - [MINOR] acl: add http_auth and http_auth_group
18298 - [MAJOR] use the new auth framework for http stats
18299 - [DOC] add info about userlists, http-request and http_auth/http_auth_group acls
18300 - [STATS] make it possible to change a CLI connection timeout
18301 - [BUG] patterns: copy-paste typo in type conversion arguments
18302 - [MINOR] pattern: make the converter more flexible by supporting void* and int args
18303 - [MINOR] standard: str2mask: string to netmask converter
18304 - [MINOR] pattern: add support for argument parsers for converters
18305 - [MINOR] pattern: add the "ipmask()" converting function
18306 - [MINOR] config: off-by-one in "stick-table" after list of converters
18307 - [CLEANUP] acl, patterns: make use of my_strndup() instead of malloc+memcpy
18308 - [BUG] restore accidentely removed line in last patch !
18309 - [MINOR] checks: make the HTTP check code add the CRLF itself
18310 - [MINOR] checks: add the server's status in the checks
18311 - [BUILD] halog: make without arch-specific optimizations
18312 - [BUG] halog: fix segfault in case of empty log in PCT mode (cherry picked from commit fe362fe4762151d209b9656639ee1651bc2b329d)
18313 - [MINOR] http: disable keep-alive when process is going down
18314 - [MINOR] acl: add build_acl_cond() to make it easier to add ACLs in config
18315 - [CLEANUP] config: use build_acl_cond() instead of parse_acl_cond()
18316 - [CLEANUP] config: use warnif_cond_requires_resp() to check for bad ACLs
18317 - [MINOR] prepare req_*/rsp_* to receive a condition
18318 - [CLEANUP] config: specify correct const char types to warnif_* functions
18319 - [MEDIUM] config: factor out the parsing of 20 req*/rsp* keywords
18320 - [MEDIUM] http: make the request filter loop check for optional conditions
18321 - [MEDIUM] http: add support for conditional request filter execution
18322 - [DOC] add some build info about the AIX platform (cherry picked from commit e41914c77edbc40aebf827b37542d37d758e371e)
18323 - [MEDIUM] http: add support for conditional request header addition
18324 - [MEDIUM] http: add support for conditional response header rewriting
18325 - [DOC] add some missing ACLs about response header matching
18326 - [MEDIUM] http: add support for proxy authentication
18327 - [MINOR] http-auth: make the 'unless' keyword work as expected
18328 - [CLEANUP] config: use build_acl_cond() to simplify http-request ACL parsing
18329 - [MEDIUM] add support for anonymous ACLs
18330 - [MEDIUM] http: switch to tunnel mode after status 101 responses
18331 - [MEDIUM] http: stricter processing of the CONNECT method
18332 - [BUG] config: reset check request to avoid double free when switching to ssl/sql
18333 - [MINOR] config: fix too large ssl-hello-check message.
18334 - [BUG] fix error response in case of server error
18335
Willy Tarreau2eba6aa2010-01-25 23:28:05 +0100183362010/01/25 : 1.4-dev8
18337 - [CLEANUP] Keep in sync "defaults" support between documentation and code
18338 - [MEDIUM] http: add support for Proxy-Connection header
18339 - [CRITICAL] buffers: buffer_insert_line2 must not change the ->w entry
18340 - [MINOR] http: remove a copy-paste typo in transaction cleaning
18341 - [BUG] http: trim any excess buffer data when recycling a connection
18342
Willy Tarreau6939b552010-01-25 01:54:37 +0100183432010/01/25 : 1.4-dev7
18344 - [BUG] appsession: possible memory leak in case of out of memory condition
18345 - [MINOR] config: don't accept 'appsession' in defaults section
18346 - [MINOR] Add function to parse a size in configuration
18347 - [MEDIUM] Add stick table (persistence) management functions and types
18348 - [MEDIUM] Add pattern fetch management types and functions
18349 - [MEDIUM] Add src dst and dport pattern fetches.
18350 - [MEDIUM] Add stick table configuration and init.
18351 - [MEDIUM] Add stick and store rules analysers.
18352 - [MINOR] add option "mysql-check" to use MySQL health checks
18353 - [BUG] health checks: fix requeued message
18354 - [OPTIM] remove SSP_O_VIA and SSP_O_STATUS
18355 - [BUG] checks: fix newline termination
18356 - [MINOR] acl: add fe_id/so_id to match frontend's and socket's id
18357 - [BUG] appsession's sessid must be reset at end of transaction
18358 - [BUILD] appsession did not build anymore under gcc-2.95
18359 - [BUG] server redirection used an uninitialized string.
18360 - [MEDIUM] http: fix handling of message pointers
18361 - [MINOR] http: fix double slash prefix with server redirect
18362 - [MINOR] http redirect: add the ability to append a '/' to the URL
18363 - [BUG] stream_interface: fix retnclose and remove cond_close
18364 - [MINOR] http redirect: don't explicitly state keep-alive on 1.1
18365 - [MINOR] http: move appsession 'sessid' from session to http_txn
18366 - [OPTIM] reorder http_txn to optimize cache lines placement
18367 - [MINOR] http: differentiate waiting for new request and waiting for a complete requst
18368 - [MINOR] http: add a separate "http-keep-alive" timeout
18369 - [MINOR] config: remove undocumented and buggy 'timeout appsession'
18370 - [DOC] fix various too large lines
18371 - [DOC] remove several trailing spaces
18372 - [DOC] add the doc about stickiness
18373 - [BUILD] remove a warning in standard.h on AIX
18374 - [BUG] checks: chars are unsigned on AIX, check was always true
18375 - [CLEANUP] stream_sock: MSG_NOSIGNAL is only for send(), not recv()
18376 - [BUG] check: we must not check for error before reading a response
18377 - [BUG] buffers: remove remains of wrong obsolete length check
18378 - [OPTIM] stream_sock: don't shutdown(write) when the socket is in error
18379 - [BUG] http: don't count req errors on client resets or t/o during keep-alive
18380 - [MEDIUM] http: don't switch to tunnel mode upon close
18381 - [DOC] add documentation about connection header processing
18382 - [MINOR] http: add http_remove_header2() to remove a header value.
18383 - [MINOR] tools: add a "word_match()" function to match words and ignore spaces
18384 - [MAJOR] http: rework request Connection header handling
18385 - [MAJOR] http: rework response Connection header handling
18386 - [MINOR] add the ability to force kernel socket buffer size.
18387 - [BUG] http_server_error() must not purge a previous pending response
18388 - [OPTIM] http: don't delay response if next request is incomplete
18389 - [MINOR] add the "force-persist" statement to force persistence on down servers
18390 - [MINOR] http: logs must report persistent connections to down servers
18391 - [BUG] buffer_replace2 must never change the ->w entry
18392
Willy Tarreau11f8f542010-01-08 07:49:44 +0100183932010/01/08 : 1.4-dev6
18394 - [BUILD] warning in stream_interface.h
18395 - [BUILD] warning ultoa_r returns char *
18396 - [MINOR] hana: only report stats if it is enabled
18397 - [MINOR] stats: add "a link" & "a href" for sockets
18398 - [MINOR]: stats: add show-legends to report additional informations
18399 - [MEDIUM] default-server support
18400 - [BUG]: add 'observer', 'on-error', 'error-limit' to supported options list
18401 - [MINOR] stats: add href to tracked server
18402 - [BUG] stats: show UP/DOWN status also in tracking servers
18403 - [DOC] Restore ability to search a keyword at the beginning of a line
18404 - [BUG] stats: cookie should be reported under backend not under proxy
18405 - [BUG] cfgparser/stats: fix error message
18406 - [BUG] http: disable auto-closing during chunk analysis
18407 - [BUG] http: fix hopefully last closing issue on data forwarding
18408 - [DEBUG] add an http_silent_debug function to debug HTTP states
18409 - [MAJOR] http: fix again the forward analysers
18410 - [BUG] http_process_res_common() must not skip the forward analyser
18411 - [BUG] http: some possible missed close remain in the forward chain
18412 - [BUG] http: redirect needed to be updated after recent changes
18413 - [BUG] http: don't set no-linger on response in case of forced close
18414 - [MEDIUM] http: restore the original behaviour of option httpclose
18415 - [TESTS] add a file to test various connection modes
18416 - [BUG] http: check options before the connection header
18417 - [MAJOR] session: fix the order by which the analysers are run
18418 - [MEDIUM] session: also consider request analysers added during response
18419 - [MEDIUM] http: make safer use of the DONT_READ and AUTO_CLOSE flags
18420 - [BUG] http: memory leak with captures when using keep-alive
18421 - [BUG] http: fix for capture memory leak was incorrect
18422 - [MINOR] http redirect: use proper call to return last response
18423 - [MEDIUM] http: wait for some flush of the response buffer before a new request
18424 - [MEDIUM] session: limit the number of analyser loops
18425
Willy Tarreau1f445892010-01-03 23:23:36 +0100184262010/01/03 : 1.4-dev5
18427 - [MINOR] server tracking: don't care about the tracked server's mode
18428 - [MEDIUM] appsession: add "len", "prefix" and "mode" options
18429 - [MEDIUM] appsession: add the "request-learn" option
18430 - [BUG] Configuration parser bug when escaping characters
18431 - [MINOR] CSS & HTML fun
18432 - [MINOR] Collect & provide http response codes received from servers
18433 - [BUG] Fix silly typo: hspr_other -> hrsp_other
18434 - [MINOR] Add "a name" to stats page
18435 - [MINOR] add additional "a href"s to stats page
18436 - [MINOR] Collect & provide http response codes for frontends, fix backends
18437 - [DOC] some small spell fixes and unifications
18438 - [MEDIUM] Decrease server health based on http responses / events, version 3
18439 - [BUG] format '%d' expects type 'int', but argument 5 has type 'long int'
18440 - [BUG] config: fix erroneous check on cookie domain names, again
18441 - [BUG] Healthchecks: get a proper error code if connection cannot be completed immediately
18442 - [DOC] trivial fix for man page
18443 - [MINOR] config: report all supported options for the "bind" keyword
18444 - [MINOR] tcp: add support for the defer_accept bind option
18445 - [MINOR] unix socket: report the socket path in case of bind error
18446 - [CONTRIB] halog: support searching by response time
18447 - [DOC] add a reminder about obsolete documents
18448 - [DOC] point to 1.4 doc, not 1.3
18449 - [DOC] option tcp-smart-connect was missing from index
18450 - [MINOR] http: detect connection: close earlier
18451 - [CLEANUP] sepoll: clean up the fd_clr/fd_set functions
18452 - [OPTIM] move some rarely used fields out of fdtab
18453 - [MEDIUM] fd: merge fd_list into fdtab
18454 - [MAJOR] buffer: flag BF_DONT_READ to disable reads when not required
18455 - [MINOR] http: add new transaction flags for keep-alive and content-length
18456 - [MEDIUM] http request: parse connection, content-length and transfer-encoding
18457 - [MINOR] http request: update the TX_SRV_CONN_KA flag on rewrite
18458 - [MINOR] http request: simplify the test of no-data
18459 - [MEDIUM] http request: simplify POST length detection
18460 - [MEDIUM] http request: make use of pre-parsed transfer-encoding header
18461 - [MAJOR] http: create the analyser which waits for a response
18462 - [MINOR] http: pre-set the persistent flags in the transaction
18463 - [MEDIUM] http response: check body length and set transaction flags
18464 - [MINOR] http response: update the TX_CLI_CONN_KA flag on rewrite
18465 - [MINOR] http: remove the last call to stream_int_return
18466 - [IMPORT] import ebtree v5.0 into directory ebtree/
18467 - [MEDIUM] build: switch ebtree users to use new ebtree version
18468 - [CLEANUP] ebtree: remove old unused files
18469 - [BUG] definitely fix regparm issues between haproxy core and ebtree
18470 - [CLEANUP] ebtree: cast to char * to get rid of gcc warning
18471 - [BUILD] missing #ifndef in ebmbtree.h
18472 - [BUILD] missing #ifndef in ebsttree.h
18473 - [MINOR] tools: add hex2i() function to convert hex char to int
18474 - [MINOR] http: create new MSG_BODY sub-states
18475 - [BUG] stream_sock: BUF_INFINITE_FORWARD broke splice on 64-bit platforms
18476 - [DOC] option is "defer-accept", not "defer_accept"
18477 - [MINOR] http: keep pointer to beginning of data
18478 - [BUG] x-original-to: name was not set in default instance
18479 - [MINOR] http: detect tunnel mode and set it in the session
18480 - [BUG] config: fix error message when config file is not found
18481 - [BUG] config: fix wrong handling of too large argument count
18482 - [BUG] config: disable 'option httplog' on TCP proxies
18483 - [BUG] config: fix erroneous check on cookie domain names
18484 - [BUG] config: cookie domain was ignored in defaults sections
18485 - [MINOR] config: support passing multiple "domain" statements to cookies
18486 - [MINOR] ebtree: add functions to lookup non-null terminated strings
18487 - [MINOR] config: don't report error on all subsequent files on failure
18488 - [BUG] second fix for the printf format warning
18489 - [BUG] check_post: limit analysis to the buffer length
18490 - [MEDIUM] http: process request body in a specific analyser
18491 - [MEDIUM] backend: remove HTTP POST parsing from get_server_ph_post()
18492 - [MAJOR] http: completely process the "connection" header
18493 - [MINOR] http: only consider chunk encoding with HTTP/1.1
18494 - [MAJOR] buffers: automatically compute the maximum buffer length
18495 - [MINOR] http: move the http transaction init/cleanup code to proto_http
18496 - [MINOR] http: move 1xx handling earlier to eliminate a lot of ifs
18497 - [MINOR] http: introduce a new synchronisation state : HTTP_MSG_DONE
18498 - [MEDIUM] http: rework chunk-size parser
18499 - [MEDIUM] http: add a new transaction flags indicating if we know the transfer length
18500 - [MINOR] buffers: add buffer_ignore() to skip some bytes
18501 - [BUG] http: offsets are relative to the buffer, not to ->som
18502 - [MEDIUM] http: automatically re-aling request buffer
18503 - [BUG] http: body parsing must consider the start of message
18504 - [MINOR] new function stream_int_cond_close()
18505 - [MAJOR] http: implement body parser
18506 - [BUG] http: typos on several unlikely() around header insertion
18507 - [BUG] stream_sock: wrong max computation on recv
18508 - [MEDIUM] http: rework the buffer alignment logic
18509 - [BUG] buffers: wrong size calculation for displaced data
18510 - [MINOR] stream_sock: prepare for closing when all pending data are sent
18511 - [MEDIUM] http: add two more states for the closing period
18512 - [MEDIUM] http: properly handle "option forceclose"
18513 - [MINOR] stream_sock: add SI_FL_NOLINGER for faster close
18514 - [MEDIUM] http: make forceclose use SI_FL_NOLINGER
18515 - [MEDIUM] session: set SI_FL_NOLINGER when aborting on write timeouts
18516 - [MEDIUM] http: add some SI_FL_NOLINGER around server errors
18517 - [MINOR] config: option forceclose is valid in frontends too
18518 - [BUILD] halog: insufficient include path in makefile
18519 - [MEDIUM] http: make the analyser not rely on msg being initialized anymore
18520 - [MEDIUM] http: make the parsers able to wait for a buffer flush
18521 - [MAJOR] http: add support for option http-server-close
18522 - [BUG] http: ensure we abort data transfer on write error
18523 - [BUG] last fix was overzealous and disabled server-close
18524 - [BUG] http: fix erroneous trailers size computation
18525 - [MINOR] stream_sock: enable MSG_MORE when forwarding finite amount of data
18526 - [OPTIM] http: set MSG_MORE on response when a pipelined request is pending
18527 - [BUG] http: redirects were broken by chunk changes
18528 - [BUG] http: the request URI pointer is relative to the buffer
18529 - [OPTIM] http: don't immediately enable reading on request
18530 - [MINOR] http: move redirect messages to HTTP/1.1 with a content-length
18531 - [BUG] http: take care of errors, timeouts and aborts during the data phase
18532 - [MINOR] http: don't wait for sending requests to the server
18533 - [MINOR] http: make the conditional redirect support keep-alive
18534 - [BUG] http: fix cookie parser to support spaces and commas in values
18535 - [MINOR] config: some options were missing for "redirect"
18536 - [MINOR] redirect: add support for unconditional rules
18537 - [MINOR] config: centralize proxy struct initialization
18538 - [MEDIUM] config: remove the limitation of 10 reqadd/rspadd statements
18539 - [MEDIUM] config: remove the limitation of 10 config files
18540 - [CLEANUP] http: remove a remaining impossible condition
18541 - [OPTIM] http: optimize a bit the construct of the forward loops
18542
Willy Tarreauc82a9e52009-10-12 06:40:53 +0200185432009/10/12 : 1.4-dev4
18544 - [DOC] add missing rate_lim and rate_max
18545 - [MAJOR] struct chunk rework
18546 - [MEDIUM] Health check reporting code rework + health logging, v3
18547 - [BUG] check if rise/fall has an argument and it is > 0
18548 - [MINOR] health checks logging unification
18549 - [MINOR] add "description", "node" and show-node"/"show-desc", remove "node-name", v2
18550 - [MINOR] Allow dots in show-node & add "white-space: nowrap" in th.pxname.
18551 - [DOC] Add information about http://haproxy.1wt.eu/contrib.html
18552 - [MINOR] Introduce include/types/counters.h
18553 - [CLEANUP] Move counters to dedicated structures
18554 - [MINOR] Add "clear counters" to clear statistics counters
18555 - [MEDIUM] Collect & provide separate statistics for sockets, v2
18556 - [BUG] Fix NULL pointer dereference in stats_check_uri_auth(), v2
18557 - [MINOR] acl: don't report valid acls as potential mistakes
18558 - [MINOR] Add cut_crlf(), ltrim(), rtrim() and alltrim()
18559 - [MINOR] Add chunk_htmlencode and chunk_asciiencode
18560 - [MINOR] Capture & display more data from health checks, v2
18561 - [BUG] task.c: don't assing last_timer to node-less entries
18562 - [BUG] http stats: large outputs sometimes got some parts chopped off
18563 - [MINOR] backend: export some functions to recount servers
18564 - [MINOR] backend: uninline some LB functions
18565 - [MINOR] include time.h from freq_ctr.h as is uses "now".
18566 - [CLEANUP] backend: move LB algos to individual files
18567 - [MINOR] lb_map: reorder code in order to ease integration of new hash functions
18568 - [CLEANUP] proxy: move last lb-specific bits to their respective files
18569 - [MINOR] backend: separate declarations of LB algos from their lookup method
18570 - [MINOR] backend: reorganize the LB algorithm selection
18571 - [MEDIUM] backend: introduce the "static-rr" LB algorithm
18572 - [MINOR] report list of supported pollers with -vv
18573 - [DOC] log-health-checks is an option, not a directive
18574 - [MEDIUM] new option "independant-streams" to stop updating read timeout on writes
18575 - [BUG] stats: don't call buffer_shutw(), but ->shutw() instead
18576 - [MINOR] stats: strip CR and LF from the input command line
18577 - [BUG] don't refresh timeouts late after detected activity
18578 - [MINOR] stats_dump_errors_to_buffer: use buffer_feed_chunk()
18579 - [MINOR] stats_dump_sess_to_buffer: use buffer_feed_chunk()
18580 - [MINOR] stats: make stats_dump_raw_to_buffer() use buffer_feed_chunk
18581 - [MEDIUM] stats: don't use s->ana_state anymore
18582 - [MINOR] remove now obsolete ana_state from the session struct
18583 - [MEDIUM] stats: make HTTP stats use an I/O handler
18584 - [MEDIUM] stream_int: adjust WAIT_ROOM handling
18585 - [BUG] config: look for ID conflicts in all sockets, not only last ones.
18586 - [MINOR] config: reference file and line with any listener/proxy/server declaration
18587 - [MINOR] config: report places of duplicate names or IDs
18588 - [MINOR] config: add pointer to file name in block/redirect/use_backend/monitor rules
18589 - [MINOR] tools: add a new get_next_id() function
18590 - [MEDIUM] config: automatically find unused IDs for proxies, servers and listeners
18591 - [OPTIM] counters: move some max numbers to the counters struct
18592 - [BUG] counters: fix segfault on missing counters for a listener
18593 - [MEDIUM] backend: implement consistent hashing variation
18594 - [MINOR] acl: add fe_conn, be_conn, queue, avg_queue
18595 - [MINOR] stats: use 'clear counters all' to clear all values
18596 - [MEDIUM] add access restrictions to the stats socket
18597 - [MINOR] buffers: add buffer_feed2() and make buffer_feed() measure string length
18598 - [MINOR] proxy: provide function to retrieve backend/server pointers
18599 - [MINOR] add the "initial weight" to the server struct.
18600 - [MEDIUM] stats: add the "get weight" command to report a server's weight
18601 - [MEDIUM] stats: add the "set weight" command
18602 - [BUILD] add a 'make tags' target
18603 - [MINOR] stats: add support for numeric IDs in set weight/get weight
18604 - [MINOR] stats: use a dedicated state to output static data
18605 - [OPTIM] stats: check free space before trying to print
18606
Willy Tarreau9f389e02009-09-24 00:12:50 +0200186072009/09/24 : 1.4-dev3
18608 - [BUILD] compilation of haproxy-1.4-dev2 on FreeBSD
18609 - [MEDIUM] Collect & show information about last health check, v3
18610 - [MINOR] export the hostname variable so that all the code can access it
18611 - [MINOR] stats: add a new node-name setting
18612 - [MEDIUM] remove old experimental tcpsplice option
18613 - [BUILD] fix build for systems without SOL_TCP
18614 - [MEDIUM] move connection establishment from backend to the SI.
18615 - [MEDIUM] make the global stats socket part of a frontend
18616 - [MEDIUM] session: account per-listener connections
18617 - [MINOR] session: switch to established state if no connect function
18618 - [MEDIUM] make the unix stats sockets use the generic session handler
18619 - [CLEANUP] unix: remove uxst_process_session()
18620 - [CLEANUP] move remaining stats sockets code to dumpstats
18621 - [MINOR] move the initial task's nice value to the listener
18622 - [MINOR] cleanup set_session_backend by using pre-computed analysers
18623 - [MINOR] set s->srv_error according to the analysers
18624 - [MEDIUM] set rep->analysers from fe and be analysers
18625 - [MEDIUM] replace BUFSIZE with buf->size in computations
18626 - [MEDIUM] make it possible to change the buffer size in the configuration
18627 - [MEDIUM] report error on buffer writes larger than buffer size
18628 - [MEDIUM] stream_interface: add and use ->update function to resync
18629 - [CLEANUP] remove ifdef MSG_NOSIGNAL and define it instead
18630 - [MEDIUM] remove TCP_CORK and make use of MSG_MORE instead
18631 - [BUG] tarpit did not work anymore
18632 - [MINOR] acl: add support for hdr_ip to match IP addresses in headers
18633 - [MAJOR] buffers: fix misuse of the BF_SHUTW_NOW flag
18634 - [MINOR] buffers: provide more functions to handle buffer data
18635 - [MEDIUM] buffers: provide new buffer_feed*() function
18636 - [MINOR] buffers: add peekchar and peekline functions for stream interfaces
18637 - [MINOR] buffers: provide buffer_si_putchar() to send a char from a stream interface
18638 - [BUG] buffer_forward() would not correctly consider data already scheduled
18639 - [MINOR] buffers: add buffer_cut_tail() to cut only unsent data
18640 - [MEDIUM] stream_interface: make use of buffer_cut_tail() to report errors
18641 - [MAJOR] http: add support for HTTP 1xx informational responses
18642 - [MINOR] buffers: inline buffer_si_putchar()
18643 - [MAJOR] buffers: split BF_WRITE_ENA into BF_AUTO_CONNECT and BF_AUTO_CLOSE
18644 - [MAJOR] buffers: fix the BF_EMPTY flag's meaning
18645 - [BUG] stream_interface: SI_ST_CLO must have buffers SHUT
18646 - [MINOR] stream_sock: don't set SI_FL_WAIT_DATA if BF_SHUTW_NOW is set
18647 - [MEDIUM] add support for infinite forwarding
18648 - [BUILD] stream_interface: fix conflicting declaration
18649 - [BUG] buffers: buffer_forward() must not always clear BF_OUT_EMPTY
18650 - [BUG] variable buffer size ignored at initialization time
18651 - [MINOR] ensure that buffer_feed() and buffer_skip() set BF_*_PARTIAL
18652 - [BUG] fix buffer_skip() and buffer_si_getline() to correctly handle wrap-arounds
18653 - [MINOR] stream_interface: add SI_FL_DONT_WAKE flag
18654 - [MINOR] stream_interface: add iohandler callback
18655 - [MINOR] stream_interface: add functions to support running as internal/external tasks
18656 - [MEDIUM] session: call iohandler for embedded tasks (applets)
18657 - [MINOR] add a ->private member to the stream_interface
18658 - [MEDIUM] stats: prepare the connection for closing before dumping
18659 - [MEDIUM] stats: replace the stats socket analyser with an SI applet
18660
Willy Tarreau68dcd252009-08-09 22:57:09 +0200186612009/08/09 : 1.4-dev2
18662 - [BUG] task: fix possible crash when some timeouts are not configured
18663 - [BUG] log: option tcplog would log to global if no logger was defined
18664
Willy Tarreaub03d2982009-07-29 22:38:32 +0200186652009/07/29 : 1.4-dev1
18666 - [MINOR] acl: add support for matching of RDP cookies
18667 - [MEDIUM] add support for RDP cookie load-balancing
18668 - [MEDIUM] add support for RDP cookie persistence
18669 - [MINOR] add a new CLF log format
18670 - [MINOR] startup: don't imply -q with -D
18671 - [BUG] ensure that we correctly re-start old process in case of error
18672 - [MEDIUM] add support for binding to source port ranges during connect
18673 - [MINOR] config: track "no option"/"option" changes
18674 - [MINOR] config: support resetting options do default values
18675 - [MEDIUM] implement option tcp-smart-accept at the frontend
18676 - [MEDIUM] stream_sock: implement tcp-cork for use during shutdowns on Linux
18677 - [MEDIUM] implement tcp-smart-connect option at the backend
18678 - [MEDIUM] add support for TCP MSS adjustment for listeners
18679 - [MEDIUM] support setting a server weight to zero
18680 - [MINOR] make DEFAULT_MAXCONN user-configurable at build time
18681 - [MAJOR] session: don't clear buffer status flags anymore
18682 - [MAJOR] session: only check for timeouts when they have just occurred.
18683 - [MAJOR] session: simplify buffer error handling
18684 - [MEDIUM] config: split parser and checker in two functions
18685 - [MEDIUM] config: support loading multiple configuration files
18686 - [MEDIUM] stream_sock: don't close prematurely when nolinger is set
18687 - [MEDIUM] session: rework buffer analysis to permit permanent analysers
18688 - [MEDIUM] splice: set the capability on each stream_interface
18689 - [BUG] http: redirect rules were processed too early
18690 - [CLEANUP] remove unused DEBUG_PARSE_NO_SPEEDUP define
18691 - [MEDIUM] http: split request waiter from request processor
18692 - [MEDIUM] session: tell analysers what bit they were called for
18693 - [MAJOR] http: complete splitting of the remaining stages
18694 - [MINOR] report in the proxies the requirements for ACLs
18695 - [MINOR] http: rely on proxy->acl_requires to allocate hdr_idx
18696 - [MINOR] acl: add HTTP protocol detection (req_proto_http)
18697 - [MINOR] prepare callers of session_set_backend to handle errors
18698 - [BUG] default ACLs did not properly set the ->requires flag
18699 - [MEDIUM] allow a TCP frontend to switch to an HTTP backend
18700 - [MINOR] ensure we can jump from swiching rules to http without data
18701 - [MINOR] http: take http request timeout from the backend
18702 - [MINOR] allow TCP inspection rules to make use of HTTP ACLs
18703 - [BUILD] report commit date and not author's date as build date
18704 - [MINOR] acl: don't complain anymore when using L7 acls in TCP
18705 - [BUG] stream_sock: always shutdown(SHUT_WR) before closing
18706 - [BUG] stream_sock: don't stop reading when the poller reports an error
18707 - [BUG] config: tcp-request content only accepts "if" or "unless"
18708 - [BUG] task: fix possible timer drift after update
18709 - [MINOR] apply tcp-smart-connect option for the checks too
18710 - [MINOR] stats: better displaying in MSIE
18711 - [MINOR] config: improve error reporting in global section
18712 - [MINOR] config: improve error reporting in listen sections
18713 - [MINOR] config: the "capture" keyword is not allowed in backends
18714 - [MINOR] config: improve error reporting when checking configuration
18715 - [BUILD] fix a minor build warning on AIX
18716 - [BUILD] use "git cmd" instead of "git-cmd"
18717 - [CLEANUP] report 2009 not 2008 in the copyright banner.
18718 - [MINOR] print usage on the stats sockets upon invalid commands
18719 - [MINOR] acl: detect and report potential mistakes in ACLs
18720 - [BUILD] fix incorrect printf arg count with tcp_splice
18721 - [BUG] fix random pauses on last segment of a series
18722 - [BUILD] add support for build under Cygwin
18723
Willy Tarreau79158882009-06-09 11:59:08 +0200187242009/06/09 : 1.4-dev0
18725 - exact copy of 1.3.18
18726
Willy Tarreaubeb05ae2009-05-10 20:27:47 +0200187272009/05/10 : 1.3.18
18728 - [MEDIUM] add support for "balance hdr(name)"
18729 - [CLEANUP] give a little bit more information in error message
18730 - [MINOR] add X-Original-To: header
18731 - [BUG] x-original-to: fix missing initialization to default value
18732 - [BUILD] spec file: fix broken pipe during rpmbuild and add man file
18733 - [MINOR] improve reporting of misplaced acl/reqxxx rules
18734 - [MEDIUM] http: add options to ignore invalid header names
18735 - [MEDIUM] http: capture invalid requests/responses even if accepted
18736 - [BUILD] add format(printf) to printf-like functions
18737 - [MINOR] fix several printf formats and missing arguments
18738 - [BUG] stats: total and lbtot are unsigned
18739 - [MINOR] fix a few remaining printf-like formats on 64-bit platforms
18740 - [CLEANUP] remove unused make option from haproxy.spec
18741 - [BUILD] make it possible to pass alternative arch at build time
18742 - [MINOR] switch all stat counters to 64-bit
18743 - [MEDIUM] ensure we don't recursively call pool_gc2()
18744 - [CRITICAL] uninitialized response field can sometimes cause crashes
18745 - [BUG] fix wrong pointer arithmetics in HTTP message captures
18746 - [MINOR] rhel init script : support the reload operation
18747 - [MINOR] add basic signal handling functions
18748 - [BUILD] add signal.o to all makefiles
18749 - [MEDIUM] call signal_process_queue from run_poll_loop
18750 - [MEDIUM] pollers: don't wait if a signal is pending
18751 - [MEDIUM] convert all signals to asynchronous signals
18752 - [BUG] O(1) pollers should check their FD before closing it
18753 - [MINOR] don't close stdio fds twice
18754 - [MINOR] add options dontlog-normal and log-separate-errors
18755 - [DOC] minor fixes and rearrangements
18756 - [BUG] fix parser crash on unconditional tcp content rules
18757 - [DOC] rearrange the configuration manual and add a summary
18758 - [MINOR] standard: provide a new 'my_strndup' function
18759 - [MINOR] implement per-logger log level limitation
18760 - [MINOR] compute the max of sessions/s on fe/be/srv
18761 - [MINOR] stats: report max sessions/s and limit in CSV export
18762 - [MINOR] stats: report max sessions/s and limit in HTML stats
18763 - [MINOR] stats/html: use the arial font before helvetica
18764
Willy Tarreauf459b422009-03-29 15:26:57 +0200187652009/03/29 : 1.3.17
18766 - Update specfile to build for v2.6 kernel.
18767 - [BUG] reset the stream_interface connect timeout upon connect or error
18768 - [BUG] reject unix accepts when connection limit is reached
18769 - [MINOR] show sess: report number of calls to each task
18770 - [BUG] don't call epoll_ctl() on closed sockets
18771 - [BUG] stream_sock: disable I/O on fds reporting an error
18772 - [MINOR] sepoll: don't count two events on the same FD.
18773 - [MINOR] show sess: report a lot more information about sessions
18774 - [BUG] stream_sock: check for shut{r,w} before refreshing some timeouts
18775 - [BUG] don't set an expiration date directly from now_ms
18776 - [MINOR] implement ulltoh() to write HTML-formatted numbers
18777 - [MINOR] stats/html: group digits by 3 to clarify numbers
18778 - [BUILD] remove haproxy-small.spec
18779 - [BUILD] makefile: remove unused references to linux24eold and EPOLL_CTL_WORKAROUND
18780
Willy Tarreau8019ffa2009-03-22 23:46:12 +0100187812009/03/22 : 1.3.16
18782 - [BUILD] Fixed Makefile for linking pcre
18783 - [CONTRIB] selinux policy for haproxy
18784 - [MINOR] show errors: encode backslash as well as non-ascii characters
18785 - [MINOR] cfgparse: some cleanups in the consistency checks
18786 - [MINOR] cfgparse: set backends to "balance roundrobin" by default
18787 - [MINOR] tcp-inspect: permit the use of no-delay inspection
18788 - [MEDIUM] reverse internal proxy declaration order to match configuration
18789 - [CLEANUP] config: catch and report some possibly wrong rule ordering
18790 - [BUG] connect timeout is in the stream interface, not the buffer
18791 - [BUG] session: errors were not reported in termination flags in TCP mode
18792 - [MINOR] tcp_request: let the caller take care of errors and timeouts
18793 - [CLEANUP] http: remove some commented out obsolete code in process_response
18794 - [MINOR] update ebtree to version 4.1
18795 - [MEDIUM] scheduler: get rid of the 4 trees thanks and use ebtree v4.1
18796 - [BUG] sched: don't leave 3 lasts tasks unprocessed when niced tasks are present
18797 - [BUG] scheduler: fix improper handling of duplicates __task_queue()
18798 - [MINOR] sched: permit a task to stay up between calls
18799 - [MINOR] task: keep a task count and clean up task creators
18800 - [MINOR] stats: report number of tasks (active and running)
18801 - [BUG] server check intervals must not be null
18802 - [OPTIM] stream_sock: don't retry to read after a large read
18803 - [OPTIM] buffer: new BF_READ_DONTWAIT flag reduces EAGAIN rates
18804 - [MEDIUM] session: don't resync FSMs on non-interesting changes
18805 - [BUG] check for global.maxconn before doing accept()
18806 - [OPTIM] sepoll: do not re-check whole list upon accepts
18807
Willy Tarreau8185ced2009-03-09 22:45:53 +0100188082009/03/09 : 1.3.16-rc2
18809 - [BUG] stream_sock: write timeout must be updated when forwarding !
18810
Willy Tarreauff63b432009-03-09 01:03:42 +0100188112009/03/09 : 1.3.16-rc1
18812 - appsessions: cleanup DEBUG_HASH and initialize request_counter
18813 - [MINOR] acl: add new keyword "connslots"
18814 - [MINOR] cfgparse: fix off-by 2 in error message size
18815 - [BUILD] fix build with gcc 4.3
18816 - [BUILD] fix MANDIR default location to match documentation
18817 - [TESTS] add a debug patch to help trigger the stats bug
18818 - [BUG] Flush buffers also where there are exactly 0 bytes left
18819 - [MINOR] Allow to specify a domain for a cookie
18820 - [BUG/CLEANUP] cookiedomain -> cookie_domain rename + free(p->cookie_domain)
18821 - [MEDIUM] Fix memory freeing at exit
18822 - [MEDIUM] Fix memory freeing at exit, part 2
18823 - [BUG] Fix listen & more of 2 couples <ip>:<port>
18824 - [DOC] remove buggy comment for use_backend
18825 - [CRITICAL] fix server state tracking: it was O(n!) instead of O(n)
18826 - [MEDIUM] add support for URI hash depth and length limits
18827 - [MINOR] permit renaming of x-forwarded-for header
18828 - [BUILD] fix Makefile.bsd and Makefile.osx for stream_interface
18829 - [BUILD] Haproxy won't compile if DEBUG_FULL is defined
18830 - [MEDIUM] upgrade to ebtree v4.0
18831 - [DOC] update the README file with new build options
18832 - [MEDIUM] reduce risk of event starvation in ev_sepoll
18833 - [MEDIUM] detect streaming buffers and tag them as such
18834 - [MEDIUM] add support for conditional HTTP redirection
18835 - [BUILD] make install should depend on haproxy not "all"
18836 - [DEBUG] add a TRACE macro to facilitate runtime data extraction
18837 - [BUG] event pollers must not wait if a task exists in the run queue
18838 - [BUG] queue management: wake oldest request in queues
18839 - [BUG] log: reported queue position was offed-by-one
18840 - [BUG] fix the dequeuing logic to ensure that all requests get served
18841 - [DOC] documentation for the "retries" parameter was missing.
18842 - [MEDIUM] implement a monotonic internal clock
18843 - [MEDIUM] further improve monotonic clock by check forward jumps
18844 - [OPTIM] add branch prediction hints in list manipulations
18845 - [MAJOR] replace ultree with ebtree in wait-queues
18846 - [BUG] we could segfault during exit while freeing uri_auths
18847 - [BUG] wqueue: perform proper timeout comparisons with wrapping values
18848 - [MINOR] introduce now_ms, the current date in milliseconds
18849 - [BUG] disable buffer read timeout when reading stats
18850 - [MEDIUM] rework the wait queue mechanism
18851 - [BUILD] change declaration of base64tab to fix build with Intel C++
18852 - [OPTIM] shrink wake_expired_tasks() by using task_wakeup()
18853 - [MAJOR] use an ebtree instead of a list for the run queue
18854 - [MEDIUM] introduce task->nice and boot access to statistics
18855 - [OPTIM] task_queue: assume most consecutive timers are equal
18856 - [BUILD] silent a warning in unlikely() with gcc 4.x
18857 - [MAJOR] convert all expiration timers from timeval to ticks
18858 - [BUG] use_backend would not correctly consider "unless"
18859 - [TESTS] added test-acl.cfg to test some ACL combinations
18860 - [MEDIUM] add support for configuration keyword registration
18861 - [MEDIUM] modularize the global "stats" keyword configuration parser
18862 - [MINOR] cfgparse: add support for warnings in external functions
18863 - [MEDIUM] modularize the "timeout" keyword configuration parser
18864 - [MAJOR] implement tcp request content inspection
18865 - [MINOR] acl: add a new parsing function: parse_dotted_ver
18866 - [MINOR] acl: add req_ssl_ver in TCP, to match an SSL version
18867 - [CLEANUP] remove unused include/types/client.h
18868 - [CLEANUP] remove many #include <types/xxx> from C files
18869 - [CLEANUP] remove dependency on obsolete INTBITS macro
18870 - [DOC] document the new "tcp-request" keyword and associated ACLs
18871 - [MINOR] acl: add REQ_CONTENT to the list of default acls
18872 - [MEDIUM] acl: permit fetch() functions to set the result themselves
18873 - [MEDIUM] acl: get rid of dummy values in always_true/always_false
18874 - [MINOR] acl: add the "wait_end" acl verb
18875 - [MEDIUM] acl: enforce ACL type checking
18876 - [MEDIUM] acl: set types on all currently known ACL verbs
18877 - [MEDIUM] acl: when possible, report the name and requirements of ACLs in warnings
18878 - [CLEANUP] remove 65 useless NULL checks before free
18879 - [MEDIUM] memory: update pool_free2() to support NULL pointers
18880 - [MEDIUM] buffers: ensure buffer_shut* are properly called upon shutdowns
18881 - [MEDIUM] process_srv: rely on buffer flags for client shutdown
18882 - [MEDIUM] process_srv: don't rely at all on client state
18883 - [MEDIUM] process_cli: don't rely at all on server state
18884 - [BUG] fix segfault with url_param + check_post
18885 - [BUG] server timeout was not considered in some circumstances
18886 - [BUG] client timeout incorrectly rearmed while waiting for server
18887 - [MAJOR] kill CL_STINSPECT and CL_STHEADERS (step 1)
18888 - [MAJOR] get rid of SV_STANALYZE (step 2)
18889 - [MEDIUM] simplify and centralize request timeout cancellation and request forwarding
18890 - [MAJOR] completely separate HTTP and TCP states on the request path
18891 - [BUG] fix recently introduced loop when client closes early
18892 - [MAJOR] get rid of the SV_STHEADERS state
18893 - [MAJOR] better separation of response processing and server state
18894 - [MAJOR] clearly separate HTTP response processing from TCP server state
18895 - [MEDIUM] remove unused references to {CL|SV}_STSHUT*
18896 - [MINOR] term_trace: add better instrumentations to trace the code
18897 - [BUG] ev_sepoll: closed file descriptors could persist in the spec list
18898 - [BUG] process_response must not enable the read FD
18899 - [BUG] buffers: remove BF_MAY_CONNECT and fix forwarding issue
18900 - [BUG] process_response: do not touch srv_state
18901 - [BUG] maintain_proxies must not disable backends
18902 - [CLEANUP] get rid of BF_SHUT*_PENDING
18903 - [MEDIUM] buffers: add BF_EMPTY and BF_FULL to remove dependency on req/rep->l
18904 - [MAJOR] process_session: rely only on buffer flags
18905 - [MEDIUM] use buffer->wex instead of buffer->cex for connect timeout
18906 - [MEDIUM] centralize buffer timeout checks at the top of process_session
18907 - [MINOR] ensure the termination flags are set by process_xxx
18908 - [MEDIUM] session: move the analysis bit field to the buffer
18909 - [OPTIM] process_cli/process_srv: reduce the number of tests
18910 - [BUG] regparm is broken on gcc < 3
18911 - [BUILD] fix warning in proto_tcp.c with gcc >= 4
18912 - [MEDIUM] merge inspect_exp and txn->exp into request buffer
18913 - [BUG] process_cli/process_srv: don't call shutdown when already done
18914 - [BUG] process_request: HTTP body analysis must return zero if missing data
18915 - [TESTS] test-fsm: 22 regression tests for state machines
18916 - [BUG] Fix empty X-Forwarded-For header name when set in defaults section
18917 - [BUG] fix harmless but wrong fd insertion sequence
18918 - [MEDIUM] make it possible for analysers to follow the whole session
18919 - [MAJOR] rework of the server FSM
18920 - [OPTIM] remove useless fd_set(read) upon shutdown(write)
18921 - [MEDIUM] massive cleanup of process_srv()
18922 - [MEDIUM] second level of code cleanup for process_srv_data
18923 - [MEDIUM] third cleanup and optimization of process_srv_data()
18924 - [MEDIUM] process_srv_data: ensure that we always correctly re-arm timeouts
18925 - [MEDIUM] stream_sock_process_data moved to stream_sock.c
18926 - [MAJOR] make the client side use stream_sock_process_data()
18927 - [MEDIUM] split stream_sock_process_data
18928 - [OPTIM] stream_sock_read must check for null-reads more often
18929 - [MINOR] only call flow analysers when their read side is connected.
18930 - [MEDIUM] reintroduce BF_HIJACK with produce_content
18931 - [MINOR] re-arrange buffer flags and rename some of them
18932 - [MINOR] do not check for BF_SHUTR when computing write timeout
18933 - [OPTIM] ev_sepoll: detect newly created FDs and check them once
18934 - [OPTIM] reduce the number of calls to task_wakeup()
18935 - [OPTIM] force inlining of large functions with gcc >= 3
18936 - [MEDIUM] indicate a reason for a task wakeup
18937 - [MINOR] change type of fdtab[]->owner to void*
18938 - [MAJOR] make stream sockets aware of the stream interface
18939 - [MEDIUM] stream interface: add the ->shutw method as well as in and out buffers
18940 - [MEDIUM] buffers: add BF_READ_ATTACHED and BF_ANA_TIMEOUT
18941 - [MEDIUM] process_session: make use of the new buffer flags
18942 - [CLEANUP] process_session: move debug outputs out of the critical loop
18943 - [MEDIUM] move QUEUE and TAR timers to stream interfaces
18944 - [OPTIM] add compiler hints in tick_is_expired()
18945 - [MINOR] add buffer_check_timeouts() to check what timeouts have fired.
18946 - [MEDIUM] use buffer_check_timeouts instead of stream_sock_check_timeouts()
18947 - [MINOR] add an expiration flag to the stream_sock_interface
18948 - [MAJOR] migrate the connection logic to stream interface
18949 - [MAJOR] add a connection error state to the stream_interface
18950 - [MEDIUM] add the SN_CURR_SESS flag to the session to track open sessions
18951 - [MEDIUM] continue layering cleanups.
18952 - [MEDIUM] stream_interface: added a DISconnected state between CON/EST and CLO
18953 - [MEDIUM] remove stream_sock_update_data()
18954 - [MINOR] maintain a global session list in order to ease debugging
18955 - [BUG] shutw must imply close during a connect
18956 - [MEDIUM] process shutw during connection attempt
18957 - [MEDIUM] make the stream interface control the SHUT{R,W} bits
18958 - [MAJOR] complete layer4/7 separation
18959 - [CLEANUP] move the session-related functions to session.c
18960 - [MINOR] call session->do_log() for logging
18961 - [MINOR] replace the ambiguous client_return function by stream_int_return
18962 - [MINOR] replace client_retnclose() with stream_int_retnclose()
18963 - [MINOR] replace srv_close_with_err() with http_server_error()
18964 - [MEDIUM] make the http server error function a pointer in the session
18965 - [CLEANUP] session.c: removed some migration left-overs in sess_establish()
18966 - [MINOR] stream_sock_data_finish() should not expose fd
18967 - [MEDIUM] extract TCP request processing from HTTP
18968 - [MEDIUM] extract the HTTP tarpit code from process_request().
18969 - [MEDIUM] move the HTTP request body analyser out of process_request().
18970 - [MEDIUM] rename process_request to http_process_request
18971 - [BUG] fix forgotten server session counter
18972 - [MINOR] declare process_session in session.h, not proto_http.h
18973 - [MEDIUM] first pass of lifting to proto_uxst.c:uxst_event_accept()
18974 - [MINOR] add an analyser code for UNIX stats request
18975 - [MINOR] pre-set analyser flags on the listener at registration time
18976 - [BUG] do not forward close from cons to prod with analysers
18977 - [MEDIUM] ensure that sock->shutw() also closes read for init states
18978 - [MINOR] add an analyser state in struct session
18979 - [MAJOR] make unix sockets work again with stats
18980 - [MEDIUM] remove cli_fd, srv_fd, cli_state and srv_state from the session
18981 - [MINOR] move the listener reference from fd to session
18982 - [MEDIUM] reference the current hijack function in the buffer itself
18983 - [MINOR] slightly rebalance stats_dump_{raw,http}
18984 - [MINOR] add a new back-reference type : struct bref
18985 - [MINOR] add back-references to sessions for later use by a dumper.
18986 - [MEDIUM] add support for "show sess" in unix stats socket
18987 - [BUG] do not release the connection slot during a retry
18988 - [BUG] dynamic connection throttling could return a max of zero conns
18989 - [BUG] do not try to pause backends during reload
18990 - [BUG] ensure that listeners from disabled proxies are correctly unbound.
18991 - [BUG] acl-related keywords are not allowed in defaults sections
18992 - [BUG] cookie capture is declared in the frontend but checked on the backend
18993 - [BUG] critical errors should be reported even in daemon mode
18994 - [MINOR] redirect: add support for the "drop-query" option
18995 - [MINOR] redirect: add support for "set-cookie" and "clear-cookie"
18996 - [MINOR] redirect: in prefix mode a "/" means not to change the URI
18997 - [BUG] do not dequeue requests on a dead server
18998 - [BUG] do not dequeue the backend's pending connections on a dead server
18999 - [MINOR] stats: indicate if a task is running in "show sess"
19000 - [BUG] check timeout must not be changed if timeout.check is not set
19001 - [BUG] "option transparent" is for backend, not frontend !
19002 - [MINOR] transfer errors were not reported anymore in data phase
19003 - [MEDIUM] add a send limit to a buffer
19004 - [MEDIUM] don't report buffer timeout when there is I/O activity
19005 - [MEDIUM] indicate when we don't care about read timeout
19006 - [MINOR] add flags to indicate when a stream interface is waiting for space/data
19007 - [MEDIUM] enable inter-stream_interface wakeup calls
19008 - [MAJOR] implement autonomous inter-socket forwarding
19009 - [MINOR] add the splice_len member to the buffer struct in preparation of splice support
19010 - [MEDIUM] stream_sock: factor out the return path in case of no-writes
19011 - [MEDIUM] i/o: rework ->to_forward and ->send_max
19012 - [OPTIM] stream_sock: do not ask for polling on EAGAIN if we have read
19013 - [OPTIM] buffer: replace rlim by max_len
19014 - [OPTIM] stream_sock: factor out the buffer full handling out of the loop
19015 - [CLEANUP] replace a few occurrences of (flags & X) && !(flags & Y)
19016 - [CLEANUP] stream_sock: move the write-nothing condition out of the loop
19017 - [MEDIUM] split stream_sock_write() into callback and core functions
19018 - [MEDIUM] stream_sock_read: call ->chk_snd whenever there are data pending
19019 - [MINOR] stream_sock: fix a few wrong empty calculations
19020 - [MEDIUM] stream_sock: try to send pending data on chk_snd()
19021 - [MINOR] global.maxpipes: add the ability to reserve file descriptors for pipes
19022 - [MEDIUM] splice: add configuration options and set global.maxpipes
19023 - [MINOR] introduce structures required to support Linux kernel splicing
19024 - [MEDIUM] add definitions for Linux kernel splicing
19025 - [MAJOR] complete support for linux 2.6 kernel splicing
19026 - [BUG] reserve some pipes for backends with splice enabled
19027 - [MEDIUM] splice: add hints to support older buggy kernels
19028 - [MEDIUM] introduce pipe pools
19029 - [MEDIUM] splice: make use of pipe pools
19030 - [STATS] report pipe usage in the statistics
19031 - [OPTIM] make global.maxpipes default to global.maxconn/4 when not specified
19032 - [BUILD] fix snapshot date extraction with negative timezones
19033 - [MEDIUM] move global tuning options to the global structure
19034 - [MEDIUM] splice: add the global "nosplice" option
19035 - [BUILD] add USE_LINUX_SPLICE to enable LINUX_SPLICE on linux 2.6
19036 - [BUG] we must not exit if protocol binding only returns a warning
19037 - [MINOR] add support for bind interface name
19038 - [BUG] inform the user when root is expected but not set
19039 - [MEDIUM] add support for source interface binding
19040 - [MEDIUM] add support for source interface binding at the server level
19041 - [MEDIUM] implement bind-process to limit service presence by process
19042 - [DOC] document maxpipes, nosplice, option splice-{auto,request,response}
19043 - [DOC] filled the logging section of the configuration manual
19044 - [DOC] document HTTP status codes
19045 - [DOC] document a few missing info about errorfile
19046 - [BUG] fix random memory corruption using "show sess"
19047 - [BUG] fix unix socket processing of interrupted output
19048 - [DOC] add diagrams of queuing and future ACL design
19049 - [BUILD] proto_http did not build on gcc-2.95
19050 - [BUG] the "source" keyword must first clear optional settings
19051 - [BUG] global.tune.maxaccept must be limited even in mono-process mode
19052 - [MINOR] ensure that http_msg_analyzer updates pointer to invalid char
19053 - [MEDIUM] store a complete dump of request and response errors in proxies
19054 - [MEDIUM] implement error dump on unix socket with "show errors"
19055 - [DOC] document "show errors"
19056 - [MINOR] errors dump must use user-visible date, not internal date.
19057 - [MINOR] time: add __usec_to_1024th to convert usecs to 1024th of second
19058 - [MINOR] add curr_sec_ms and curr_sec_ms_scaled for current second.
19059 - [MEDIUM] measure and report session rate on frontend, backends and servers
19060 - [BUG] the "connslots" keyword was matched as "connlots"
19061 - [MINOR] acl: add 2 new verbs: fe_sess_rate and be_sess_rate
19062 - [MEDIUM] implement "rate-limit sessions" for the frontend
19063 - [BUG] interface binding: length must include the trailing zero
19064 - [BUG] typo in timeout error reporting : report *res and not *err
19065 - [OPTIM] maintain_proxies: only wake up when the frontend will be ready
19066 - [OPTIM] rate-limit: cleaner behaviour on low rates and reduce consumption
19067 - [BUG] switch server-side stream interface to close in case of abort
19068 - [CLEANUP] remove last references to term_trace
19069 - [OPTIM] freq_ctr: do not rotate the counters when reading
19070 - [BUG] disable any analysers for monitoring requests
19071 - [BUG] rate-limit in defaults section was ignored
19072 - [BUG] task: fix handling of duplicate keys
19073 - [OPTIM] task: don't unlink a task from a wait queue when waking it up
19074 - [OPTIM] displace tasks in the wait queue only if absolutely needed
19075 - [MEDIUM] minor update to the task api: let the scheduler queue itself
19076 - [BUG] event_accept() must always wake the task up, even in health mode
19077 - [CLEANUP] task: distinguish between clock ticks and timers
19078 - [OPTIM] task: reduce the number of calls to task_queue()
19079 - [OPTIM] do not re-check req buffer when only response has changed
19080 - [CLEANUP] don't enable kernel splicing when socket is closed
19081 - [CLEANUP] buffer_flush() was misleading, rename it as buffer_erase
19082 - [MINOR] buffers: implement buffer_flush()
19083 - [MEDIUM] rearrange forwarding condition to enable splice during analysis
19084 - [BUILD] build fixes for Solaris
19085 - [BUILD] proto_http did not build on gcc-2.95 (again)
19086 - [CONTRIB] halog: fast log parser for haproxy
19087 - [CONTRIB] halog: faster fgets() and add support for percentile reporting
19088
Willy Tarreau7b4c5ae2008-04-19 21:06:14 +0200190892008/04/19 : 1.3.15
19090 - [BUILD] Added support for 'make install'
19091 - [BUILD] Added 'install-man' make target for installing the man page
19092 - [BUILD] Added 'install-bin' make target
19093 - [BUILD] Added 'install-doc' make target
19094 - [BUILD] Removed "/" after '$(DESTDIR)' in install targets
19095 - [BUILD] Changed 'install' target to install the binaries first
19096 - [BUILD] Replace hardcoded 'LD = gcc' with 'LD = $(CC)'
19097 - [MEDIUM]: Inversion for options
19098 - [MEDIUM]: Count retries and redispatches also for servers, fix redistribute_pending, extend logs, %d->%u cleanup
19099 - [BUG]: Restore clearing t->logs.bytes
19100 - [MEDIUM]: rework checks handling
19101 - [DOC] Update a "contrib" file with a hint about a scheme used for formathing subjects
19102 - [MEDIUM] Implement "track [<backend>/]<server>"
19103 - [MINOR] Implement persistent id for proxies and servers
19104 - [BUG] Don't increment server connections too much + fix retries
19105 - [MEDIUM]: Prevent redispatcher from selecting the same server, version #3
19106 - [MAJOR] proto_uxst rework -> SNMP support
19107 - [BUG] appsession lookup in URL does not work
19108 - [BUG] transparent proxy address was ignored in backend
19109 - [BUG] hot reconfiguration failed because of a wrong error check
19110 - [DOC] big update to the configuration manual
19111 - [DOC] large update to the configuration manual
19112 - [DOC] document more options
19113 - [BUILD] major rework of the GNU Makefile
19114 - [STATS] add support for "show info" on the unix socket
19115 - [DOC] document options forwardfor to logasap
19116 - [MINOR] add support for the "backlog" parameter
19117 - [OPTIM] introduce global parameter "tune.maxaccept"
19118 - [MEDIUM] introduce "timeout http-request" in frontends
19119 - [MINOR] tarpit timeout is also allowed in backends
19120 - [BUG] increment server connections for each connect()
19121 - [MEDIUM] add a turn-around state of one second after a connection failure
19122 - [BUG] fix typo in redispatched connection
19123 - [DOC] document options nolinger to ssl-hello-chk
19124 - [DOC] added documentation for "option tcplog" to "use_backend"
19125 - [BUG] connect_server: server might not exist when sending error report
19126 - [MEDIUM] support fully transparent proxy on Linux (USE_LINUX_TPROXY)
19127 - [MEDIUM] add non-local bind to connect() on Linux
19128 - [MINOR] add transparent proxy support for balabit's Tproxy v4
19129 - [BUG] use backend's source and not server's source with tproxy
19130 - [BUG] fix overlapping server flags
19131 - [MEDIUM] fix server health checks source address selection
19132 - [BUG] build failed on CONFIG_HAP_LINUX_TPROXY without CONFIG_HAP_CTTPROXY
19133 - [DOC] added "server", "source" and "stats" keywords
19134 - [DOC] all server parameters have been documented
19135 - [DOC] document all req* and rsp* keywords.
19136 - [DOC] added documentation about HTTP header manipulations
19137 - [BUG] log response byte count, not request
19138 - [BUILD] code did not build in full debug mode
19139 - [BUG] fix truncated responses with sepoll
19140 - [MINOR] use s->frt_addr as the server's address in transparent proxy
19141 - [MINOR] fix configuration hint about timeouts
19142 - [DOC] minor cleanup of the doc and notice to contributors
19143 - [MINOR] report correct section type for unknown keywords.
19144 - [BUILD] update MacOS Makefile to build on newer versions
19145 - [DOC] fix erroneous "useallbackups" option in the doc
19146 - [DOC] applied small fixes from early readers
19147 - [MINOR] add configuration support for "redir" server keyword
19148 - [MEDIUM] completely implement the server redirection method
19149 - [TESTS] add a test case for the server redirection mechanism
19150 - [DOC] add a configuration entry for "server ... redir <prefix>"
19151 - [BUILD] backend.c and checks.c did not build without tproxy !
19152 - Revert "[BUILD] backend.c and checks.c did not build without tproxy !"
19153 - [BUILD] backend.c and checks.c did not build without tproxy !
19154 - [OPTIM] used unsigned ints for HTTP state and message offsets
19155 - [OPTIM] GCC4's builtin_expect() is suboptimal
19156 - [BUG] failed conns were sometimes incremented in the frontend!
19157 - [BUG] timeout.check was not pre-set to eternity
19158 - [TESTS] add test-pollers.cfg to easily report pollers in use
19159 - [BUG] do not apply timeout.connect in checks if unset
19160 - [BUILD] ensure that makefile understands USE_DLMALLOC=1
19161 - [MINOR] silent gcc for a wrong warning
19162 - [CLEANUP] update .gitignore to ignore more temporary files
19163 - [CLEANUP] report dlmalloc's source path only if explictly specified
19164 - [BUG] str2sun could leak a small buffer in case of error during parsing
19165 - [BUG] option allbackups was not working anymore in roundrobin mode
19166 - [MAJOR] implementation of the "leastconn" load balancing algorithm
19167 - [BUILD] ensure that users don't build without setting the target anymore.
19168 - [DOC] document the leastconn LB algo
19169 - [MEDIUM] fix stats socket limitation to 16 kB
19170 - [DOC] fix unescaped space in httpchk example.
19171 - [BUG] fix double-decrement of server connections
19172 - [TESTS] add a test case for port mapping
19173 - [TESTS] add a benchmark for integer hashing
19174 - [TESTS] add new methods in ip-hash test file
19175 - [MAJOR] implement parameter hashing for POST requests
19176
Willy Tarreaue5b77e82007-12-06 01:25:44 +0100191772007/12/06 : 1.3.14
19178 - New option http_proxy (Alexandre Cassen)
19179 - add support for "maxqueue" to limit server queue overload (Elijah Epifanov)
19180 - Check for duplicated conflicting proxies (Krzysztof Oledzki)
19181 - stats: report server and backend cumulated downtime (Krzysztof Oledzki)
19182 - use backends only with use_backend directive (Krzysztof Oledzki)
19183 - Handle long lines properly (Krzysztof Oledzki)
19184 - Implement and use generic findproxy and relax duplicated proxy check (Krzysztof Oledzki)
19185 - continous statistics (Krzysztof Oledzki)
19186 - add support for logging via a UNIX socket (Robert Tsai)
19187 - fix error checking in strl2ic/strl2uic()
19188 - fix calls to localtime()
19189 - provide easier-to-use ultoa_* functions
19190 - provide easy-to-use limit_r and LIM2A* macros
19191 - add a simple test for the status page
19192 - move error codes to common/errors.h
19193 - silent warning about LIST_* being redefined on OpenBSD
19194 - add socket address length to the protocols
19195 - group PR_O_BALANCE_* bits into a checkable value
19196 - externalize the "balance" option parser to backend.c
19197 - introduce the "url_param" balance method
19198 - make default_backend work in TCP mode too
19199 - disable warning about localtime_r on Solaris
19200 - adjust error messages about conflicting proxies
19201 - avoid calling some layer7 functions if not needed
19202 - simplify error path in event_accept()
19203 - add an options field to the listeners
19204 - added a new state to listeners
19205 - unbind_listener() must use fd_delete() and not close()
19206 - add a generic unbind_listener() primitive
19207 - add a generic delete_listener() primitive
19208 - add a generic unbind_all_listeners() primitive
19209 - create proto_tcp and move initialization of proxy listeners
19210 - stats: report numerical process ID, proxy ID and server ID
19211 - relative_pid was not initialized
19212 - missing header names in raw stats output
19213 - fix missing parenthesis in check_response_for_cacheability
19214 - small optimization on session_process_counters()
19215 - merge ebtree version 3.0
19216 - make ebtree headers multiple-include compatible
19217 - ebtree: include config.h for REGPRM*
19218 - differentiate between generic LB params and map-specific ones
19219 - add a weight divisor to the struct proxy
19220 - implement the Fast Weighted Round Robin (FWRR) algo
19221 - include filltab25.c to experiment on FWRR for dynamic weights
19222 - merge test-fwrr.cfg to validate dynamic weights
19223 - move the load balancing algorithm to be->lbprm.algo
19224 - change server check result to a bit field
19225 - implement "http-check disable-on-404" for graceful shutdown
19226 - secure the calling conditions of ->set_server_status_{up,down}
19227 - report disabled servers as "NOLB" when they are still UP
19228 - document the "http-check disable-on-404" option
19229 - http-check disable-on-404 is not limited to HTTP mode
19230 - add a test file for disable-on-404
19231 - use distinct bits per load-balancing algorithm type
19232 - implement the slowstart parameter for servers
19233 - document the server's slowstart parameter
19234 - stats: report the server warm up status in a "throttle" column
19235 - fix 2 minor issues on AIX
19236 - add the "nbsrv" ACL verb
19237 - add the "fail" condition to monitor requests
19238 - remove a warning from gcc due to htons() in standard.c
19239 - fwrr: ensure that we never overflow in placements
19240 - store the build options to report with -vv
19241 - fix the status return of the init script (R.I. Pienaar)
19242 - stats: real time monitoring script for unix socket (Prizee)
19243 - document "nbsrv" and "monitor fail"
19244 - restrict the set of allowed characters for identifiers
19245 - implement a time parsing function
19246 - add support for time units in the configuration
19247 - add a bit of documentation about timers
19248 - introduce separation between contimeout, and tarpit + queue
19249 - introduce the "timeout" keyword
19250 - grouped all timeouts in one structure
19251 - slowstart is in ms, not seconds
19252 - slowstart: ensure we don't start with a null weight
19253 - report the number of times each server was selected
19254 - fix build on AIX due to recent log changes
19255 - fix build on Solaris due to recent log changes
19256
Willy Tarreaue855f422007-10-18 22:38:22 +0200192572007/10/18 : 1.3.13
19258 - replace the code under O'Reilly license (Arnaud Cornet)
19259 - add a small man page (Arnaud Cornet)
19260 - stats: report haproxy's version by default (Krzysztof Oledzki)
19261 - stats: count server retries and redispatches (Krzysztof Oledzki)
19262 - core: added easy support for Doug Lea's malloc (dlmalloc)
19263 - core: fade out memory usage when stopping proxies
19264 - core: moved the sockaddr pointer to the fdtab structure
19265 - core: add generic protocol support
19266 - core: implement client-side support for PF_UNIX sockets
19267 - stats: implement the CSV output
19268 - stats: add a link to the CSV export HTML page
19269 - stats: implement the statistics output on a unix socket
19270 - config: introduce the "stats" keyword in global section
19271 - build: centralize version and date into one file for each
19272 - tests: added a new hash algorithm
19273
192742007/10/18 : 1.3.12.3
19275 - add the "nolinger" option to disable data lingering (Alexandre Cassen)
19276 - fix double-free during clean exit (Krzysztof Oledzki)
19277 - prevent the system from sending an RST when closing health-checks
19278 (Krzysztof Oledzki)
19279 - do not add a cache-control header when on non-cacheable responses
19280 (Krzysztof Oledzki)
19281 - spread health checks even more (Krzysztof Oledzki)
19282 - stats: scope "." must match the backend and not the frontend
19283 - fixed call to chroot() during startup
19284 - fix wrong timeout computation in event_accept()
19285 - remove condition for exit() under fork() failure
19286
192872007/09/20 : 1.3.12.2
19288 - fix configuration sanity checks for TCP listeners
19289 - set the log socket receive window to zero bytes
19290 - pre-initialize timeouts to infinity, not zero
19291 - fix the SIGHUP message not to alert on server-less proxies
19292 - timeouts and retries could be ignored when switching backend
19293 - added a file to check that "retries" works.
19294 - O'Reilly has clarified its license
19295
192962007/09/05 : 1.3.12.1
19297 - spec I/O: fix allocations of spec entries for an FD
19298 - ensure we never overflow in chunk_printf()
19299 - improve behaviour with large number of servers per proxy
19300 - add support for "stats refresh <interval>"
19301 - stats page: added links for 'refresh' and 'hide down'
19302 - fix backend's weight in the stats page.
19303 - the "stats" keyword is not allowed in a pure frontend.
19304 - provide a test configuration file for stats and checks
19305
Willy Tarreaub21152b2007-06-17 23:41:40 +0200193062007/06/17 : 1.3.12
19307 - fix segfault at exit when using captures
19308 - bug: negation in ACL conds was not cleared between terms
19309 - errorfile: use a local file to feed error messages
19310 - acl: support '-i' to ignore case when matching
19311 - acl: smarter integer comparison with operators eq,lt,gt,le,ge
19312 - acl: support maching on 'path' component
19313 - acl: implement matching on header values
19314 - acl: distinguish between request and response headers
19315 - acl: permit to return any header when no name specified
19316 - acl: provide default ACLs
19317 - added the 'use_backend' keyword for full content-switching
19318 - acl: specify the direction during fetches
19319 - acl: provide the argument length for fetch functions
19320 - acl: provide a reference to the expr to fetch()
19321 - improve memory freeing upon exit
19322 - str2net() must not change the const char *
19323 - shut warnings 'is*' macros from ctype.h on solaris
19324
Willy Tarreaua3503e02007-06-03 17:27:07 +0200193252007/06/03 : 1.3.11.4
19326 - do not re-arm read timeout in SHUTR state !
19327 - optimize I/O by detecting system starvation
19328 - the epoll FD must not be shared between processes
19329 - limit the number of events returned by *poll*
19330
Willy Tarreau3c6fc072007-05-14 14:40:25 +0200193312007/05/14 : 1.3.11.3
19332 - pre-initialize timeouts with tv_eternity during parsing
19333
Willy Tarreaufc273c22007-05-14 03:42:47 +0200193342007/05/14 : 1.3.11.2
19335 - fixed broken health-checks since switch to timeval
19336
Willy Tarreau3c5340c2007-05-14 03:18:43 +0200193372007/05/14 : 1.3.11.1
19338 - fixed ev_kqueue which was forgotten during the switch to timeval
19339 - allowed null timeouts for past events in select
19340
Willy Tarreau544eb402007-05-14 02:42:33 +0200193412007/05/14 : 1.3.11
19342 - fixed ev_sepoll again by rewriting the state machine
19343 - switched all timeouts to timevals instead of milliseconds
19344 - improved memory management using mempools v2.
19345 - several minor optimizations
19346
Willy Tarreau9ca931f2007-05-10 07:51:17 +0200193472007/05/09 : 1.3.10.2
19348 - fixed build on OpenBSD (missing types.h)
19349
Willy Tarreau13398d32007-05-09 22:58:28 +0200193502007/05/09 : 1.3.10.1
19351 - fixed sepoll transition matrix (two states were missing)
19352
Willy Tarreau61beedf2007-05-09 01:44:58 +0200193532007/05/08 : 1.3.10
19354 - several fixes in ev_sepoll
19355 - fixed some expiration dates on some tasks
19356 - fixed a bug in connection establishment detection due to speculative I/O
19357 - fixed rare bug occuring on TCP with early close (reported by Andy Smith)
19358 - implemented URI hashing algorithm (Guillaume Dallaire)
19359 - implemented SMTP health checks (Peter van Dijk)
19360 - replaced the rbtree with ul2tree from old scheduler project
19361 - new framework for generic ACL support
19362 - added the 'acl' and 'block' keywords to the config language
19363 - added several ACL criteria and matches (IP, port, URI, ...)
19364 - cleaned up and better modularization for some time functions
19365 - fixed list macros
19366 - fixed useless memory allocation in str2net()
19367 - store the original destination address in the session
19368
Willy Tarreau6e0433f2007-04-16 01:18:12 +0200193692007/04/15 : 1.3.9
19370 - modularized the polling mechanisms and use function pointers instead
19371 of macros at many places
19372 - implemented support for FreeBSD's kqueue() polling mechanism
19373 - fixed a warning on OpenBSD : MIN/MAX redefined
19374 - change socket registration order at startup to accomodate kqueue.
19375 - several makefile cleanups to support old shells
19376 - fix build with limits.h once for all
19377 - ev_epoll: do not rely on fd_sets anymore, use changes stacks instead.
19378 - fdtab now holds the results of polling
19379 - implemented support for speculative I/O processing with epoll()
19380 - remove useless calls to shutdown(SHUT_RD), resulting in small speed boost
19381 - auto-registering of pollers at load time
19382
Willy Tarreau42c76592007-04-03 20:30:13 +0200193832007/04/03 : 1.3.8.2
19384 - rewriting either the status line or request line could crash the
19385 process due to a pointer which ought to be reset before parsing.
19386 - rewriting the status line in the response did not work, it caused
19387 a 502 Bad Gateway due to an erroneous state during parsing
19388
Willy Tarreauef6d7612007-04-01 11:06:22 +0200193892007/04/01 : 1.3.8.1
19390 - fix reqadd when no option httpclose is used.
19391 - removed now unused fiprm and beprm from proxies
19392 - split logs into two versions : TCP and HTTP
19393 - added some docs about http headers storage and acls
19394 - added a VIM script for syntax color highlighting (Bruno Michel)
19395
Willy Tarreaud661cc02007-03-26 00:24:56 +0200193962007/03/25 : 1.3.8
19397 - fixed several bugs which might have caused a crash with bad configs
19398 - several optimizations in header processing
19399 - many progresses towards transaction-based processing
19400 - option forwardfor may be used in frontends
19401 - completed HTTP response processing
19402 - some code refactoring between request and response processing
19403 - new HTTP header manipulation functions
19404 - optimizations on the recv() patch to reduce CPU usage under very
19405 high data rates.
19406 - more user-friendly help about the 'usesrc' keyword (CTTPROXY)
19407 - username/groupname support from Marcus Rueckert
19408 - added the "except" keyword to the "forwardfor" option (Bryan German)
19409 - support for health-checks on other addresses (Fabrice Dulaunoy)
19410 - makefile for MacOS 10.4 / Darwin (Dan Zinngrabe)
19411 - do not insert "Connection: close" in HTTP/1.0 messages
19412
Willy Tarreau9cabf702007-01-26 23:49:01 +0100194132007/01/26 : 1.3.7
19414 - fix critical bug introduced with 1.3.6 : an empty request header
19415 may lead to a crash due to missing pointer assignment
19416 - hdr_idx might be left uninitialized in debug mode
19417 - fixed build on FreeBSD due to missing fd_set declaration
19418
Willy Tarreaue7a24382007-01-22 08:57:44 +0100194192007/01/22 : 1.3.6.1
19420 - change in the header chaining broke cookies and authentication
19421
Willy Tarreau49e1ee82007-01-22 00:56:46 +0100194222007/01/22 : 1.3.6
19423 - stats now support the HEAD method too
19424 - extracted http request from the session
19425 - huge rework of the HTTP parser which is now a 28-state FSM.
19426 - linux-style likely/unlikely macros for optimization hints
19427 - do not create a server socket when there's no server
19428 - imported lots of docs
19429
Willy Tarreau5871f8e2007-01-07 02:47:01 +0100194302007/01/07 : 1.3.5
19431 - stats: swap color sets for active and backup servers
19432 - try to guess server check port when unset
19433 - added complete support and doc for TCP Splicing
19434 - replace the wait-queue linked list with an rbtree.
19435 - a few bugfixes and cleanups
19436
Willy Tarreau85270da2007-01-02 00:59:39 +0100194372007/01/02 : 1.3.4
19438 - support for cttproxy on the server side to present the client
19439 address to the server.
19440 - added support for SO_REUSEPORT on Linux (needs kernel patch)
19441 - new RFC2616-compliant HTTP request parser with header indexing
19442 - split proxies in frontends, rulesets and backends
19443 - implemented the 'req[i]setbe' to select a backend depending
19444 on the contents
19445 - added the 'default_backend' keyword to select a default BE.
19446 - new stats page featuring FEs and BEs + bytes in both dirs
19447 - improved log format to indicate the backend and the time in ms.
19448 - lots of cleanups
19449
Willy Tarreau9c9fea42006-10-16 00:03:35 +0200194502006/10/15 : 1.3.3
19451 - fix broken redispatch option in case the connection has already
19452 been marked "in progress" (ie: nearly always).
19453 - support regparm on x86 to speed up some often called functions
19454 - removed a few useless calls to gettimeofday() in log functions.
19455 - lots of 'const char*' cleanups
19456 - turn every FD_* into functions which are faster on recent CPUs
19457
Willy Tarreau690f9aa2006-09-03 11:23:06 +0200194582006/09/03 : 1.3.2
19459 - started the changes towards I/O completion callbacks. stream_sock* have
19460 replaced event_*.
19461 - added the new "reqtarpit" and "reqitarpit" protection features
19462
Willy Tarreau8f2b8552006-07-09 17:11:39 +0200194632006/07/09 : 1.3.1 (1.2.15)
19464 - now, haproxy warns about missing timeout during startup to try to
19465 eliminate all those buggy configurations.
19466 - added "Content-Type: text/html" in responses wherever appropriate, as
19467 suggested by Cameron Simpson.
19468 - implemented "option ssl-hello-chk" to use SSLv3 CLIENT HELLO messages to
19469 test server's health
19470 - implemented "monitor-uri" so that haproxy can reply to a specific URI with
19471 an "HTTP/1.0 200 OK" response. This is useful to validate multiple proxies
19472 at once.
19473
Willy Tarreaub9e98b62006-07-03 10:32:46 +0200194742006/06/29 : 1.3.0
19475 - exploded the whole file into multiple .c and .h. No functionnal
Willy Tarreau8f2b8552006-07-09 17:11:39 +020019476 difference is expected at all.
19477 - fixed a bug by which neither stats nor error messages could be returned if
19478 'clitimeout' was missing.
Willy Tarreaub9e98b62006-07-03 10:32:46 +020019479
willy tarreau7e6328d2006-05-21 23:26:20 +0200194802006/05/21 : 1.2.14
19481 - new HTML status report with the 'stats' keyword.
19482 - added the 'abortonclose' option to better resist traffic surges
19483 - implemented dynamic traffic regulation with the 'minconn' option
19484 - show request time on denied requests
19485 - definitely fixed hot reconf on OpenBSD by the use of SO_REUSEPORT
19486 - now a proxy instance is allowed to run without servers, which is
19487 useful to dedicate one instance to stats
19488 - added lots of error counters
19489 - a missing parenthesis preventd matching of cacheable cookies
19490 - a missing parenthesis in poll_loop() might have caused missed events.
19491
Willy TARREAU4404b7e2006-05-14 10:00:09 +0200194922006/05/14 : 1.2.13.1
19493 - an uninitialized field in the struct session could cause a crash when
19494 the session was freed. This has been encountered on Solaris only.
19495 - Solaris and OpenBSD no not support shutdown() on listening socket. Let's
19496 be nice to them by performing a soft stop if pause fails.
19497
willy tarreauc3a2e072006-05-13 18:51:38 +0200194982006/05/13 : 1.2.13
19499 - 'maxconn' server parameter to do per-server session limitation
19500 - queueing to support non-blocking session limitation
19501 - fixed removal of cookies for cookie-less servers such as backup servers
19502 - two separate wait queues for expirable and non-expirable tasks provide
19503 better performance with lots of sessions.
19504 - some code cleanups and performance improvements
19505 - made state dumps a bit more verbose
19506 - fixed missing checks for NULL srv in dispatch mode
19507 - load balancing on backup servers was not possible in source hash mode.
19508 - two session flags shared the same bit, but fortunately they were not
19509 compatible.
19510
willy tarreauc0d4bbd2006-04-15 21:47:50 +0200195112006/04/15 : 1.2.12
19512 Very few changes preparing for more important changes to support per-server
19513 session limitations and queueing :
19514 - ignore leading empty lines in HTTP requests as suggested by RFC2616.
19515 - added the 'weight' parameter to the servers, limited to 1..256. It applies
19516 to roundrobin and source hash.
19517 - the optional '-s' option could clobber '-st' and '-sf' if compiled in.
19518
willy tarreaue0dd2692006-03-30 16:27:34 +0200195192006/03/30 : 1.2.11.1
19520 - under some conditions, it might have been possible that when the
19521 last dead server became available, it would not have been used
19522 till another one would have changed state. Could not be reproduced
19523 at all, however seems possible from the code.
19524
willy tarreaud2058dc2006-03-25 20:35:41 +0100195252006/03/25 : 1.2.11
19526 - added the '-db' command-line option to disable backgrounding.
19527 - added the -sf/-st command-line arguments which are used to specify
19528 a list of pids to send a FINISH or TERMINATE signal upon startup.
19529 They will also be asked to release their port if a bind fails.
19530 - reworked the startup mechanism to allow the sending of a signal to a list
19531 of old pids if a socket cannot be bound, with a retry for a limited amount
19532 of time (1 second by default).
19533 - added the ability to enforce limits on memory usage.
19534 - added the 'source' load-balancing algorithm which uses the source IP(v4|v6)
19535 - re-architectured the server round-robin mechanism to ease integration of
19536 other algorithms. It now relies on the number of active and backup servers.
19537 - added a counter for the number of active and backup servers, and report
19538 these numbers upon SIGHUP or state change.
19539
willy tarreaubfad5742006-03-23 14:19:11 +0100195402006/03/23 : 1.2.10.1
19541 - while fixing the backup server round-robin "feature", a new bug was
19542 introduced which could miss some backup servers.
19543 - the displayed proxy name was wrong when dumping upon SIGHUP.
19544
willy tarreauaaff30e2006-03-19 21:30:41 +0100195452006/03/19 : 1.2.10
19546 - assert.h is needed when DEBUG is defined.
19547 - ENORMOUS long standing bug affecting the epoll polling system :
19548 event_data is a union, not a structure !
19549 - Make fd management more robust and easier to debug. Also some
19550 micro-optimisations.
19551 - Limit the number of consecutive accept() in multi-process mode.
19552 This produces a more evenly distributed load across the processes and
19553 slightly improves performance by reducing bottlenecks.
19554 - Make health-checks be more regular, and faster to retry after a timeout.
19555 - Fixed some messages to ease parsing of alerts.
19556 - provided a patch to enable epoll on RHEL3 kernels.
19557 - Separated OpenBSD build from the main Makefile into a new one.
19558
willy tarreau50be0172006-03-15 19:41:19 +0100195592006/03/15 : 1.2.9
19560 - haproxy could not be stopped after being paused, it had to be woken up
19561 first. This has been fixed.
19562 - the 'ulimit-n' parameter is now optional and by default computed from
19563 maxconn + the number of listeners + the number of health-checks.
19564 - it is now possible to specify a maximum number of connections at build
19565 time with the SYSTEM_MAXCONN define. The value set in the configuration
19566 file will then be limited to this value, and only the command-line '-n'
19567 option will be able to bypass it. It will prevent against accidental
19568 high memory usage on small systems.
19569 - RFC2616 expects that any HTTP agent accepts multi-line headers. Earlier
19570 versions did not detect a line beginning with a space as the continuation
19571 of previous header. It is now correct.
19572 - health checks sent to servers configured with identical intervals were
19573 sent in perfect synchronisation because the initial time was the same
19574 for all. This could induce high load peaks when fragile servers were
19575 hosting tens of instances for the same application. Now the load is
19576 spread evenly across the smallest interval amongst a listener.
19577 - a new 'forceclose' option was added to make the proxy close the outgoing
19578 channel to the server once it has sent all its headers and the server
19579 starts responding. This helps some servers which don't close upon the
19580 'Connection: close' header. It implies 'option httpclose'.
19581 - there was a bug in the way the backup servers were handled. They were
19582 erroneously load-balanced while the doc said the opposite. Since
19583 load-balanced backup servers is one of the features some people have
19584 been asking for, the problem was fixed to reflect the documented
19585 behaviour and a new option 'allbackups' was introduced to provide the
19586 feature to those who need it.
19587 - a never ending connect() could lead to a fast select() loop if its
19588 timeout times the number of retransmits exceeded the server read or write
19589 timeout, because the later was used to compute select()'s timeout while
19590 the connection timeout was not reached.
19591 - now we initialize the libc's localtime structures very early so that even
19592 under OOM conditions, we can still send dated error messages without
19593 segfaulting.
19594 - the 'daemon' mode implies 'quiet' and disables 'verbose' because file
19595 descriptors are closed.
19596
willy tarreau065f1c02006-01-29 22:10:07 +0100195972006/01/29 : 1.2.8
19598 - fixed a nasty bug affecting poll/epoll which could return unmodified data
19599 from the server to the client, and sometimes lead to memory corruption
19600 crashing the process.
19601 - added the new pause/play mechanism with SIGTTOU/SIGTTIN for hot-reconf.
19602
196032005/12/18 : 1.2.7.1
19604 - the "retries" option was ignored because connect() could not return an
19605 error if the connection failed before the timeout.
19606 - TCP health-checks could not detect a connection refused in poll/epoll
19607 mode.
19608
willy tarreaua56eca72005-12-18 01:34:42 +0100196092005/11/13 : 1.2.7
willy tarreau77bc8542005-12-18 01:31:43 +010019610 - building with -DUSE_PCRE should include PCRE headers and not regex.h. At
19611 least on Solaris, this caused the libc's regex primitives to be used instead
19612 of PCRE, which caused trouble on group references. This is now fixed.
willy tarreaud0fb4652005-12-18 01:32:04 +010019613 - delayed the quiet mode during startup so that most of the startup alerts can
19614 be displayed even in quiet mode.
19615 - display an alert when a listener has no address, invalid or no port, or when
19616 there are no enabled listeners upon startup.
willy tarreau4373b962005-12-18 01:32:31 +010019617 - added "static-pcre" to the list of supported regex options in the Makefile.
willy tarreau77bc8542005-12-18 01:31:43 +010019618
willy tarreaub952e1d2005-12-18 01:31:20 +0100196192005/10/09 : 1.2.7rc (1.1.33rc)
19620 - second batch of socklen_t changes.
19621 - clean-ups from Cameron Simpson.
19622 - because tv_remain() does not know about eternity, using no timeout can
19623 make select() spin around a null time-out. Bug reported by Cameron Simpson.
19624 - client read timeout was not properly set to eternity initialized after an
19625 accept() if it was not set in the config. It remained undetected so long
19626 because eternity is 0 and newly allocated pages are zeroed by the system.
19627 - do not call get_original_dst() when not in transparent mode.
19628 - implemented a workaround for a bug in certain epoll() implementations on
19629 linux-2.4 kernels (epoll-lt <= 0.21).
19630 - implemented TCP keepalive with new options : tcpka, clitcpka, srvtcpka.
19631
willy tarreauc5f73ed2005-12-18 01:26:38 +0100196322005/08/07 : 1.2.6
19633 - clean-up patch from Alexander Lazic fixes build on Debian 3.1 (socklen_t).
19634
196352005/07/06 : 1.2.6-pre5 (1.1.32)
willy tarreau0fe39652005-12-18 01:25:24 +010019636 - added the number of active sessions (proxy/process) in the logs
19637
196382005/07/06 : 1.2.6-pre4 (1.1.32-pre4)
willy tarreaub1285d52005-12-18 01:20:14 +010019639 - the time-out fix introduced in 1.1.25 caused a corner case where it was
19640 possible for a client to keep a connection maintained regardless of the
19641 timeout if the server closed the connection during the HEADER phase,
19642 while the client ignored the close request while doing nothing in the
19643 other direction. This has been fixed now by ensuring that read timeouts
19644 are re-armed when switching to any SHUTW state.
19645
196462005/07/05 : 1.2.6-pre3 (1.1.32-pre3)
19647 - enhanced error reporting in the logs. Now the proxy will precisely detect
19648 various error conditions related to the system and/or process limits, and
19649 generate LOG_EMERG logs indicating that a resource has been exhausted.
19650 - logs will contain two new characters for the error cause : 'R' indicates
19651 a resource exhausted, and 'I' indicates an internal error, though this
19652 one should never happen.
19653 - server connection timeouts can now be reported in the logs (sC), as well
19654 as connections refused because of maxconn limitations (PC).
19655
196562005/07/05 : 1.2.6-pre2 (1.1.32-pre2)
19657 - new global configuration keyword "ulimit-n" may be used to raise the FD
19658 limit to usable values.
19659 - a warning is now displayed on startup if the FD limit is lower than the
19660 configured maximum number of sockets.
19661
196622005/07/05 : 1.2.6-pre1 (1.1.32-pre1)
19663 - new configuration keyword "monitor-net" makes it possible to be monitored
19664 by external devices which connect to the proxy without being logged nor
19665 forwarded to any server. Particularly useful on generic TCPv4 relays.
19666
willy tarreau5dffb602005-12-18 01:15:23 +0100196672005/06/21 : 1.2.5.2
19668 - fixed build on PPC where chars are unsigned by default
19669
willy tarreau08dedbe2005-12-18 01:13:48 +0100196702005/05/02 : 1.2.5.1
19671 - dirty hack to fix a bug introduced with epoll : if we close an FD and
19672 immediately reassign it to another session through a connect(), the
19673 Prev{Read,Write}Events are not updated, which causes trouble detecting
19674 changes, thus leading to many timeouts at high loads.
19675
willy tarreau64a3cc32005-12-18 01:13:11 +0100196762005/04/30 : 1.2.5 (1.1.31)
19677 - changed the runtime argument to disable epoll() to '-de'
19678 - changed the runtime argument to disable poll() to '-dp'
19679 - added global options 'nopoll' and 'noepoll' to do the same at the
19680 configuration level.
19681 - added a 'linux24e' target to the Makefile for Linux 2.4 systems patched to
19682 support epoll().
19683 - changed default FD_SETSIZE to 65536 on Solaris (default=1024)
19684 - conditionned signals redirection to #ifdef DEBUG_MEMORY
19685
willy tarreau1c2ad212005-12-18 01:11:29 +0100196862005/04/26 : 1.2.5-pre4
19687 - made epoll() support a compile-time option : ENABLE_EPOLL
19688 - provided a very little libc replacement for a possibly missing epoll()
19689 implementation which can be enabled by -DUSE_MY_EPOLL
19690 - implemented the poll() poller, which can be enabled with -DENABLE_POLL.
19691 The equivalent runtime argument becomes '-P'. A few tests show that it
19692 performs like select() with many fds, but slightly slower (certainly
19693 because of the higher amount of memory involved).
19694 - separated the 3 polling methods and the tasks scheduler into 4 distinct
19695 functions which makes the code a lot more modular.
19696 - moved some event tables to private static declarations inside the poller
19697 functions.
19698 - the poller functions can now initialize themselves, run, and cleanup.
19699 - changed the runtime argument to enable epoll() to '-E'.
19700 - removed buggy epoll_ctl() code in the client_retnclose() function. This
19701 function was never meant to remove anything.
19702 - fixed a typo which caused glibc to yell about a double free on exit.
19703 - removed error checking after epoll_ctl(DEL) because we can never know if
19704 the fd is still active or already closed.
19705 - added a few entries in the makefile
19706
willy tarreauad90a0c2005-12-18 01:09:15 +0100197072005/04/25 : 1.2.5-pre3
19708 - experimental epoll() support (use temporary '-e' argument)
19709
197102005/04/24 : 1.2.5-pre2
willy tarreauc1f47532005-12-18 01:08:26 +010019711 - implemented the HTTP 303 code for error redirection. This forces the
19712 browser to fetch the given URI with a GET request. The new keyword for
19713 this is 'errorloc303', and a new 'errorloc302' keyword has been created
19714 to make them easily distinguishable.
19715 - added more controls in the parser for valid use of '\x' sequence.
19716 - few fixes from Alex & Klaus
19717
willy tarreauad90a0c2005-12-18 01:09:15 +0100197182005/02/17 : 1.2.5-pre1
willy tarreauc1f47532005-12-18 01:08:26 +010019719 - fixed a few errors in the documentation
19720
197212005/02/13
19722 - do not pre-initialize unused file-descriptors before select() anymore.
19723
willy tarreau12350152005-12-18 01:03:27 +0100197242005/01/22 : 1.2.4
19725 - merged Alexander Lazic's and Klaus Wagner's work on application
19726 cookie-based persistence. Since this is the first merge, this version is
19727 not intended for general use and reports are more than welcome. Some
19728 documentation is really needed though.
19729
willy tarreau0174f312005-12-18 01:02:42 +0100197302005/01/22 : 1.2.3 (1.1.30)
19731 - add an architecture guide to the documentation
19732 - released without any changes
19733
197342004/12/26 : 1.2.3-pre1 (1.1.30-pre1)
19735 - increased default BUFSIZE to 16 kB to accept max headers of 8 kB which is
19736 compatible with Apache. This limit can be configured in the makefile now.
19737 Thanks to Eric Fehr for the checks.
19738 - added a per-server "source" option which now makes it possible to bind to
19739 a different source for each (potentially identical) server.
19740 - changed cookie-based server selection slightly to allow several servers to
19741 share a same cookie, thus making it possible to associate backup servers to
19742 live servers and ease soft-stop for maintenance periods. (Alexander Lazic)
19743 - added the cookie 'prefix' mode which makes it possible to use persistence
19744 with thin clients which support only one cookie. The server name is prefixed
19745 before the application cookie, and restore back.
19746 - fixed the order of servers within an instance to match documentation. Now
19747 the servers are *really* used in the order of their declaration. This is
19748 particularly important when multiple backup servers are in use.
19749
willy tarreau4302f492005-12-18 01:00:37 +0100197502004/10/18 : 1.2.2 (1.1.29)
19751 - fixed a bug where a TCP connection would be logged twice if the 'logasap'
19752 option was enabled without the 'tcplog' option.
19753 - encode_string() would use hdr_encode_map instead of the map argument.
19754
197552004/08/10 : (1.1.29-pre2)
19756 - the logged request is now encoded with '#XX' for unprintable characters
19757 - new keywords 'capture request header' and 'capture response header' enable
19758 logging of arbitrary HTTP headers in requests and responses
19759 - removed "-DSOLARIS" after replacing the last inet_aton() with inet_pton()
19760
willy tarreau982249e2005-12-18 00:57:06 +0100197612004/06/06 : 1.2.1 (1.1.28)
19762 - added the '-V' command line option to verbosely report errors even though
19763 the -q or 'quiet' options are specified. This is useful with '-c'.
19764 - added a Red Hat init script and a .spec from Simon Matter <simon.matter@invoca.ch>
willy tarreau036e1ce2005-12-17 13:46:33 +010019765
willy tarreau982249e2005-12-18 00:57:06 +0100197662004/06/05 :
19767 - added the "logasap" option which produces a log without waiting for the data
19768 to be transferred from the server to the client.
19769 - added the "httpclose" option which removes any "connection:" header and adds
19770 "Connection: close" in both direction.
willy tarreau97f58572005-12-18 00:53:44 +010019771 - added the 'checkcache' option which blocks cacheable responses containing
19772 dangerous headers, such as 'set-cookie'.
willy tarreau982249e2005-12-18 00:57:06 +010019773 - added 'rspdeny' and 'rspideny' to block certain responses to avoid sensible
19774 information leak from servers.
willy tarreau25c4ea52005-12-18 00:49:49 +010019775
197762004/04/18 :
willy tarreaudd07e972005-12-18 00:48:48 +010019777 - send an EMERG log when no server is available for a given proxy
19778 - added the '-c' command line option to syntactically check the
19779 configuration file without starting the service.
19780
willy tarreau8a86dbf2005-12-18 00:45:59 +0100197812003/11/09 : 1.2.0
19782 - the same as 1.1.27 + IPv6 support on the client side
19783
willy tarreaufe2c5c12005-12-17 14:14:34 +0100197842003/10/27 : 1.1.27
19785 - the configurable HTTP health check introduced in 1.1.23 revealed a shameful
19786 bug : the code still assumed that HTTP requests were the same size as the
19787 original ones (22 bytes), and failed if they were not.
19788 - added support for pidfiles.
19789
willy tarreauc58fc692005-12-17 14:13:08 +0100197902003/10/22 : 1.1.26
19791 - the fix introduced in 1.1.25 for client timeouts while waiting for servers
19792 broke almost all compatibility with POST requests, because the proxy
19793 stopped to read anything from the client as soon as it got all of its
19794 headers.
19795
willy tarreauc1cae632005-12-17 14:12:23 +0100197962003/10/15 : 1.1.25
19797 - added the 'tcplog' option, which provides enhanced, HTTP-like logs for
19798 generic TCP proxies, or lighter logs for HTTP proxies.
19799 - fixed a time-out condition wrongly reported as client time-out in data
19800 phase if the client timeout was lower than the connect timeout times the
19801 number of retries.
19802
willy tarreau197e8ec2005-12-17 14:10:59 +0100198032003/09/21 : 1.1.24
19804 - if a client sent a full request then shut its write connection down, then
19805 the request was aborted. This case was detected only when using haproxy
19806 both as health-check client and as a server.
19807 - if 'option httpchk' is used in a 'health' mode server, then responses will
19808 change from 'OK' to 'HTTP/1.0 200 OK'.
19809 - fixed a Linux-only bug in case of HTTP server health-checks, where a single
19810 server response followed by a close could be ignored, and the server seen
19811 as failed.
19812
willy tarreaueedaa9f2005-12-17 14:08:03 +0100198132003/09/19 : 1.1.23
19814 - fixed a stupid bug introduced in 1.1.22 which caused second and subsequent
19815 'default' sections to keep previous parameters, and not initialize logs
19816 correctly.
19817 - fixed a second stupid bug introduced in 1.1.22 which caused configurations
19818 relying on 'dispatch' mode to segfault at the first connection.
19819 - 'option httpchk' now supports method, HTTP version and a few headers.
19820 - now, 'option httpchk', 'cookie' and 'capture' can be specified in
19821 'defaults' section
19822
198232003/09/10 : 1.1.22
willy tarreaua41a8b42005-12-17 14:02:24 +010019824 - 'listen' now supports optionnal address:port-range lists
19825 - 'bind' introduced to add new listen addresses
19826 - fixed a bug which caused a session to be kept established on a server till
19827 it timed out if the client closed during the DATA phase.
19828 - the port part of each server address can now be empty to make the proxy
19829 connect to the server on the same port it was connected to, be an absolute
19830 unsigned number to reflect a single port (as in older versions), or an
19831 explicitly signed number (+N/-N) to indicate that this offset must be
19832 applied to the port the proxy was connected to, when connecting to the
19833 server.
19834 - the 'port' server option allows the user to specify a different
19835 health-check port than the service one. It is mandatory when only relative
19836 ports have been specified and check is required. By default, the checks are
19837 sent to the service port.
19838 - new 'defaults' section which is rather similar to 'listen' except that all
19839 values are only used as default values for future 'listen' sections, until
19840 a new 'defaults' resets them. At the moment, server options, regexes,
19841 cookie names and captures cannot be set in the 'defaults' section.
19842
willy tarreau2f6ba652005-12-17 13:57:42 +0100198432003/05/06 : 1.1.21
19844 - changed the debug output format so that it now includes the session unique
19845 ID followed by the instance name at the beginning of each line.
19846 - in debug mode, accept now shows the client's IP and port.
19847 - added one 3 small debugging scripts to search and pretty print debug output
19848 - changed the default health check request to "OPTIONS /" instead of
19849 "OPTIONS *" since not all servers implement the later one.
19850 - "option httpchk" now accepts an optional parameter allowing the user to
19851 specify and URI other than '/' during health-checks.
19852
willy tarreaub1ff9db2005-12-17 13:51:03 +0100198532003/04/21 : 1.1.20
19854 - fixed two problems with time-outs, one where a server would be logged as
19855 timed out during transfer that take longer to complete than the fixed
19856 time-out, and one where clients were logged as timed-out during the data
19857 phase because they didn't have anything to send. This sometimes caused
19858 slow client connections to close too early while in fact there was no
19859 problem. The proper fix would be to have a per-fd time-out with
19860 conditions depending on the state of the HTTP FSM.
19861
willy tarreau906b2682005-12-17 13:49:52 +0100198622003/04/16 : 1.1.19
19863 - haproxy was NOT RFC compliant because it was case-sensitive on HTTP
19864 "Cookie:" and "Set-Cookie:" headers. This caused JVM 1.4 to fail on
19865 cookie persistence because it uses "cookie:". Two memcmp() have been
19866 replaced with strncasecmp().
19867
willy tarreau036e1ce2005-12-17 13:46:33 +0100198682003/04/02 : 1.1.18
19869 - Haproxy can be compiled with PCRE regex instead of libc regex, by setting
19870 REGEX=pcre on the make command line.
19871 - HTTP health-checks now use "OPTIONS *" instead of "OPTIONS /".
19872 - when explicit source address binding is required, it is now also used for
19873 health-checks.
19874 - added 'reqpass' and 'reqipass' to allow certain headers but not the request
19875 itself.
19876 - factored several strings to reduce binary size by about 2 kB.
19877 - replaced setreuid() and setregid() with more standard setuid() and setgid().
19878 - added 4 status flags to the log line indicating who ended the connection
19879 first, the sessions state, the validity of the cookie, and action taken on
19880 the set-cookie header.
19881
198822002/10/18 : 1.1.17
19883 - add the notion of "backup" servers, which are used only when all other
19884 servers are down.
19885 - make Set-Cookie return "" instead of "(null)" when the server has no
19886 cookie assigned (useful for backup servers).
19887 - "log" now supports an optionnal level name (info, notice, err ...) above
19888 which nothing is sent.
19889 - replaced some strncmp() with memcmp() for better efficiency.
19890 - added "capture cookie" option which logs client and/or server cookies
19891 - cleaned up/down messages and dump servers states upon SIGHUP
19892 - added a redirection feature for errors : "errorloc <errnum> <url>"
19893 - now we won't insist on connecting to a dead server, even with a cookie,
19894 unless option "persist" is specified.
19895 - added HTTP/408 response for client request time-out and HTTP/50[234] for
19896 server reply time-out or errors.
19897
198982002/09/01 : 1.1.16
19899 - implement HTTP health checks when option "httpchk" is specified.
19900
199012002/08/07 : 1.1.15
19902 - replaced setpgid()/setpgrp() with setsid() for better portability, because
19903 setpgrp() doesn't have the same meaning under Solaris, Linux, and OpenBSD.
19904
199052002/07/20 : 1.1.14
19906 - added "postonly" cookie mode
19907
199082002/07/15 : 1.1.13
19909 - tv_diff used inverted parameters which led to negative times !
19910
199112002/07/13 : 1.1.12
19912 - fixed stats monitoring, and optimized some tv_* for most common cases.
19913 - replaced temporary 'newhdr' with 'trash' to reduce stack size
19914 - made HTTP errors more HTML-fiendly.
19915 - renamed strlcpy() to strlcpy2() because of a slightly difference between
19916 their behaviour (return value), to avoid confusion.
19917 - restricted HTTP messages to HTTP proxies only
19918 - added a 502 message when the connection has been refused by the server,
19919 to prevent clients from believing this is a zero-byte HTTP 0.9 reply.
19920 - changed 'Cache-control:' from 'no-cache="set-cookie"' to 'private' when
19921 inserting a cookie, because some caches (apache) don't understand it.
19922 - fixed processing of server headers when client is in SHUTR state
19923
199242002/07/04 :
19925 - automatically close fd's 0,1 and 2 when going daemon ; setpgrp() after
19926 setpgid()
19927
199282002/06/04 : 1.1.11
19929 - fixed multi-cookie handling in client request to allow clean deletion
19930 in insert+indirect mode. Now, only the server cookie is deleted and not
willy tarreau906b2682005-12-17 13:49:52 +010019931 all the header. Should now be compliant to RFC2965.
willy tarreau036e1ce2005-12-17 13:46:33 +010019932 - added a "nocache" option to "cookie" to specify that we explicitly want
19933 to add a "cache-control" header when we add a cookie.
19934 It is also possible to add an "Expires: <old-date>" to keep compatibility
19935 with old/broken caches.
19936
199372002/05/10 : 1.1.10
19938 - if a cookie is used in insert+indirect mode, it's desirable that the
19939 the servers don't see it. It was not possible to remove it correctly
19940 with regexps, so now it's removed automatically.
19941
199422002/04/19 : 1.1.9
19943 - don't use snprintf()'s return value as an end of message since it may
19944 be larger. This caused bus errors and segfaults in internal libc's
19945 getenv() during localtime() in send_log().
19946 - removed dead insecure send_syslog() function and all references to it.
19947 - fixed warnings on Solaris due to buggy implementation of isXXXX().
19948
199492002/04/18 : 1.1.8
19950 - option "dontlognull"
19951 - fixed "double space" bug in config parser
19952 - fixed an uninitialized server field in case of dispatch
19953 with no existing server which could cause a segfault during
19954 logging.
19955 - the pid logged was always the father's, which was wrong for daemons.
19956 - fixed wrong level "LOG_INFO" for message "proxy started".
19957
199582002/04/13 :
19959 - http logging is now complete :
19960 - ip:port, date, proxy, server
19961 - req_time, conn_time, hdr_time, tot_time
19962 - status, size, request
19963 - source address
19964
199652002/04/12 : 1.1.7
19966 - added option forwardfor
19967 - added reqirep, reqidel, reqiallow, reqideny, rspirep, rspidel
19968 - added "log global" in "listen" section.
19969
199702002/04/09 :
19971 - added a new "global" section :
19972 - logs
19973 - debug, quiet, daemon modes
19974 - uid, gid, chroot, nbproc, maxconn
19975
199762002/04/08 : 1.1.6
19977 - regex are now chained and not limited anymore.
19978 - unavailable server now returns HTTP/502.
19979 - increased per-line args limit to 40
19980 - added reqallow/reqdeny to block some request on matches
19981 - added HTTP 400/403 responses
19982
199832002/04/03 : 1.1.5
19984 - connection logging displayed incorrect source address.
19985 - added proxy start/stop and server up/down log events.
19986 - replaced log message short buffers with larger trash.
19987 - enlarged buffer to 8 kB and replace buffer to 4 kB.
19988
199892002/03/25 : 1.1.4
19990 - made rise/fall/interval time configurable
19991
199922002/03/22 : 1.1.3
19993 - fixed a bug : cr_expire and cw_expire were inverted in CL_STSHUT[WR]
19994 which could lead to loops.
19995
199962002/03/21 : 1.1.2
19997 - fixed a bug in buffer management where we could have a loop
19998 between event_read() and process_{cli|srv} if R==BUFSIZE-MAXREWRITE.
19999 => implemented an adjustable buffer limit.
20000 - fixed a bug : expiration of tasks in wait queue timeout is used again,
20001 and running tasks are skipped.
20002 - added some debug lines for accept events.
20003 - send warnings for servers up/down.
20004
200052002/03/12 : 1.1.1
20006 - fixed a bug in total failure handling
20007 - fixed a bug in timestamp comparison within same second (tv_cmp_ms)
20008
200092002/03/10 : 1.1.0
20010 - fixed a few timeout bugs
20011 - rearranged the task scheduler subsystem to improve performance,
20012 add new tasks, and make it easier to later port to librt ;
20013 - allow multiple accept() for one select() wake up ;
20014 - implemented internal load balancing with basic health-check ;
20015 - cookie insertion and header add/replace/delete, with better strings
20016 support.
20017
200182002/03/08
20019 - reworked buffer handling to fix a few rewrite bugs, and
20020 improve overall performance.
20021 - implement the "purge" option to delete server cookies in direct mode.
20022
200232002/03/07
20024 - fixed some error cases where the maxfd was not decreased.
20025
200262002/02/26
20027 - now supports transparent proxying, at least on linux 2.4.
20028
200292002/02/12
20030 - soft stop works again (fixed select timeout computation).
20031 - it seems that TCP proxies sometimes cannot timeout.
20032 - added a "quiet" mode.
20033 - enforce file descriptor limitation on socket() and accept().
20034
200352001/12/30 : release of version 1.0.2 : fixed a bug in header processing
200362001/12/19 : release of version 1.0.1 : no MSG_NOSIGNAL on solaris
200372001/12/16 : release of version 1.0.0.
200382001/12/16 : added syslog capability for each accepted connection.
200392001/11/19 : corrected premature end of files and occasional SIGPIPE.
200402001/10/31 : added health-check type servers (mode health) which replies OK then closes.
200412001/10/30 : added the ability to support standard TCP proxies and HTTP proxies
20042 with or without cookies (use keyword http for this).
200432001/09/01 : added client/server header replacing with regexps.
20044 eg:
20045 cliexp ^(Host:\ [^:]*).* Host:\ \1:80
20046 srvexp ^Server:\ .* Server:\ Apache
200472000/11/29 : first fully working release with complete FSMs and timeouts.
200482000/11/28 : major rewrite
200492000/11/26 : first write