blob: cf880131d5783a551ca432a176aae74a0199809d [file] [log] [blame]
willy tarreau036e1ce2005-12-17 13:46:33 +01001ChangeLog :
2===========
willy tarreau4302f492005-12-18 01:00:37 +01003
Willy Tarreaub55c46e2014-09-02 13:54:16 +020042014/09/02 : 1.5.4
5 - BUG: config: error in http-response replace-header number of arguments
6 - BUG/MINOR: Fix search for -p argument in systemd wrapper.
7 - BUG/MEDIUM: auth: fix segfault with http-auth and a configuration with an unknown encryption algorithm
8 - BUG/MEDIUM: config: userlists should ensure that encrypted passwords are supported
9 - MEDIUM: connection: add new bit in Proxy Protocol V2
10 - BUG/MINOR: server: move the directive #endif to the end of file
11 - BUG/MEDIUM: http: tarpit timeout is reset
12 - BUG/MAJOR: tcp: fix a possible busy spinning loop in content track-sc*
13 - BUG/MEDIUM: http: fix inverted condition in pat_match_meth()
14 - BUG/MEDIUM: http: fix improper parsing of HTTP methods for use with ACLs
15 - BUG/MINOR: pattern: remove useless allocation of unused trash in pat_parse_reg()
16 - BUG/MEDIUM: acl: correctly compute the output type when a converter is used
17 - CLEANUP: acl: cleanup some of the redundancy and spaghetti after last fix
18 - BUG/CRITICAL: http: don't update msg->sov once data start to leave the buffer
19
Willy Tarreau87b7ac92014-07-25 08:56:07 +0200202014/07/25 : 1.5.3
21 - DOC: fix typo in Unix Socket commands
22 - BUG/MEDIUM: connection: fix memory corruption when building a proxy v2 header
23 - BUG/MEDIUM: ssl: Fix a memory leak in DHE key exchange
24 - DOC: mention that Squid correctly responds 400 to PPv2 header
25 - BUG/MINOR: http: base32+src should use the big endian version of base32
26 - BUG/MEDIUM: connection: fix proxy v2 header again!
27
Willy Tarreaua6918e32014-07-12 16:40:52 +0200282014/07/12 : 1.5.2
29 - BUG/MEDIUM: backend: Update hash to use unsigned int throughout
30 - BUG/MINOR: ssl: Fix external function in order not to return a pointer on an internal trash buffer.
31 - DOC: expand the docs for the provided stats.
32 - BUG/MEDIUM: unix: do not unlink() abstract namespace sockets upon failure.
33 - MINOR: stats: fix minor typo in HTML page
34 - BUG/MEDIUM: http: fetch "base" is not compatible with set-header
35 - BUG/MINOR: counters: do not untrack counters before logging
36 - BUG/MAJOR: sample: correctly reinitialize sample fetch context before calling sample_process()
37 - MINOR: stick-table: make stktable_fetch_key() indicate why it failed
38 - BUG/MEDIUM: counters: fix track-sc* to wait on unstable contents
39 - BUILD: remove TODO from the spec file and add README
40 - MINOR: log: make MAX_SYSLOG_LEN overridable at build time
41 - MEDIUM: log: support a user-configurable max log line length
42 - DOC: provide an example of how to use ssl_c_sha1
43 - BUILD: http: fix isdigit & isspace warnings on Solaris
44 - BUG/MINOR: listener: set the listener's fd to -1 after deletion
45 - BUG/MEDIUM: unix: failed abstract socket binding is retryable
46 - MEDIUM: listener: implement a per-protocol pause() function
47 - MEDIUM: listener: support rebinding during resume()
48 - BUG/MEDIUM: unix: completely unbind abstract sockets during a pause()
49 - DOC: explicitly mention the limits of abstract namespace sockets
50 - DOC: minor fix on {sc,src}_kbytes_{in,out}
51 - DOC: fix alphabetical sort of converters
52 - BUG/MAJOR: http: correctly rewind the request body after start of forwarding
53 - DOC: remove references to CPU=native in the README
54 - DOC: mention that "compression offload" is ignored in defaults section
55
Willy Tarreau4dfb7952014-06-24 11:30:21 +0200562014/06/24 : 1.5.1
57 - BUG/MINOR: config: http-request replace-header arg typo
58 - BUG/MINOR: ssl: rejects OCSP response without nextupdate.
59 - BUG/MEDIUM: ssl: Fix to not serve expired OCSP responses.
60 - BUG/MINOR: ssl: Fix OCSP resp update fails with the same certificate configured twice. (cherry picked from commit 1d3865b096b43b9a6d6a564ffb424ffa6f1ef79f)
61 - BUG/MEDIUM: Consistently use 'check' in process_chk
62 - BUG/MAJOR: session: revert all the crappy client-side timeout changes
63 - BUG/MINOR: logs: properly initialize and count log sockets
64
Willy Tarreau9229f122014-06-19 21:01:06 +0200652014/06/19 : 1.5.0
66 - MEDIUM: ssl: ignored file names ending as '.issuer' or '.ocsp'.
67 - MEDIUM: ssl: basic OCSP stapling support.
68 - MINOR: ssl/cli: Fix unapropriate comment in code on 'set ssl ocsp-response'
69 - MEDIUM: ssl: add 300s supported time skew on OCSP response update.
70 - MINOR: checks: mysql-check: Add support for v4.1+ authentication
71 - MEDIUM: ssl: Add the option to use standardized DH parameters >= 1024 bits
72 - MEDIUM: ssl: fix detection of ephemeral diffie-hellman key exchange by using the cipher description.
73 - MEDIUM: http: add actions "replace-header" and "replace-values" in http-req/resp
74 - MEDIUM: Break out check establishment into connect_chk()
75 - MEDIUM: Add port_to_str helper
76 - BUG/MEDIUM: fix ignored values for half-closed timeouts (client-fin and server-fin) in defaults section.
77 - BUG/MEDIUM: Fix unhandled connections problem with systemd daemon mode and SO_REUSEPORT.
78 - MINOR: regex: fix a little configuration memory leak.
79 - MINOR: regex: Create JIT compatible function that return match strings
80 - MEDIUM: regex: replace all standard regex function by own functions
81 - MEDIUM: regex: Remove null terminated strings.
82 - MINOR: regex: Use native PCRE API.
83 - MINOR: missing regex.h include
84 - DOC: Add Exim as Proxy Protocol implementer.
85 - BUILD: don't use type "uint" which is not portable
86 - BUILD: stats: workaround stupid and bogus -Werror=format-security behaviour
87 - BUG/MEDIUM: http: clear CF_READ_NOEXP when preparing a new transaction
88 - CLEANUP: http: don't clear CF_READ_NOEXP twice
89 - DOC: fix proxy protocol v2 decoder example
90 - DOC: fix remaining occurrences of "pattern extraction"
91 - MINOR: log: allow the HTTP status code to be logged even in TCP frontends
92 - MINOR: logs: don't limit HTTP header captures to HTTP frontends
93 - MINOR: sample: improve sample_fetch_string() to report partial contents
94 - MINOR: capture: extend the captures to support non-header keys
95 - MINOR: tcp: prepare support for the "capture" action
96 - MEDIUM: tcp: add a new tcp-request capture directive
97 - MEDIUM: session: allow shorter retry delay if timeout connect is small
98 - MEDIUM: session: don't apply the retry delay when redispatching
99 - MEDIUM: session: redispatch earlier when possible
100 - MINOR: config: warn when tcp-check rules are used without option tcp-check
101 - BUG/MINOR: connection: make proxy protocol v1 support the UNKNOWN protocol
102 - DOC: proxy protocol example parser was still wrong
103 - DOC: minor updates to the proxy protocol doc
104 - CLEANUP: connection: merge proxy proto v2 header and address block
105 - MEDIUM: connection: add support for proxy protocol v2 in accept-proxy
106 - MINOR: tools: add new functions to quote-encode strings
107 - DOC: clarify the CSV format
108 - MEDIUM: stats: report the last check and last agent's output on the CSV status
109 - MINOR: freq_ctr: introduce a new averaging method
110 - MEDIUM: session: maintain per-backend and per-server time statistics
111 - MEDIUM: stats: report per-backend and per-server time stats in HTML and CSV outputs
112 - BUG/MINOR: http: fix typos in previous patch
113 - DOC: remove the ultra-obsolete TODO file
114 - DOC: update roadmap
115 - DOC: minor updates to the README
116 - DOC: mention the maxconn limitations with the select poller
117 - DOC: commit a few old design thoughts files
118
Willy Tarreau2e858402014-05-28 17:50:53 +02001192014/05/28 : 1.5-dev26
120 - BUG/MEDIUM: polling: fix possible CPU hogging of worker processes after receiving SIGUSR1.
121 - BUG/MINOR: stats: fix a typo on a closing tag for a server tracking another one
122 - OPTIM: stats: avoid the calculation of a useless link on tracking servers in maintenance
123 - MINOR: fix a few memory usage errors
124 - CONTRIB: halog: Filter input lines by date and time through timestamp
125 - MINOR: ssl: SSL_CTX_set_options() and SSL_CTX_set_mode() take a long, not an int
126 - BUG/MEDIUM: regex: fix risk of buffer overrun in exp_replace()
127 - MINOR: acl: set "str" as default match for strings
128 - DOC: Add some precisions about acl default matching method
129 - MEDIUM: acl: strenghten the option parser to report invalid options
130 - BUG/MEDIUM: config: a stats-less config crashes in 1.5-dev25
131 - BUG/MINOR: checks: tcp-check must not stop on '\0' for binary checks
132 - MINOR: stats: improve alignment of color codes to save one line of header
133 - MINOR: checks: simplify and improve reporting of state changes when using log-health-checks
134 - MINOR: server: remove the SRV_DRAIN flag which can always be deduced
135 - MINOR: server: use functions to detect state changes and to update them
136 - MINOR: server: create srv_was_usable() from srv_is_usable() and use a pointer
137 - BUG/MINOR: stats: do not report "100%" in the thottle column when server is draining
138 - BUG/MAJOR: config: don't free valid regex memory
139 - BUG/MEDIUM: session: don't clear CF_READ_NOEXP if analysers are not called
140 - BUG/MINOR: stats: tracking servers may incorrectly report an inherited DRAIN status
141 - MEDIUM: proxy: make timeout parser a bit stricter
142 - REORG/MEDIUM: server: split server state and flags in two different variables
143 - REORG/MEDIUM: server: move the maintenance bits out of the server state
144 - MAJOR: server: use states instead of flags to store the server state
145 - REORG: checks: put the functions in the appropriate files !
146 - MEDIUM: server: properly support and propagate the maintenance status
147 - MEDIUM: server: allow multi-level server tracking
148 - CLEANUP: checks: rename the server_status_printf function
149 - MEDIUM: checks: simplify server up/down/nolb transitions
150 - MAJOR: checks: move health checks changes to set_server_check_status()
151 - MINOR: server: make the status reporting function support a reason
152 - MINOR: checks: simplify health check reporting functions
153 - MINOR: server: implement srv_set_stopped()
154 - MINOR: server: implement srv_set_running()
155 - MINOR: server: implement srv_set_stopping()
156 - MEDIUM: checks: simplify failure notification using srv_set_stopped()
157 - MEDIUM: checks: simplify success notification using srv_set_running()
158 - MEDIUM: checks: simplify stopping mode notification using srv_set_stopping()
159 - MEDIUM: stats: report a server's own state instead of the tracked one's
160 - MINOR: server: make use of srv_is_usable() instead of checking eweight
161 - MAJOR: checks: add support for a new "drain" administrative mode
162 - MINOR: stats: use the admin flags for soft enable/disable/stop/start on the web page
163 - MEDIUM: stats: introduce new actions to simplify admin status management
164 - MINOR: cli: introduce a new "set server" command
165 - MINOR: stats: report a distinct output for DOWN caused by agent
166 - MINOR: checks: support specific check reporting for the agent
167 - MINOR: checks: support a neutral check result
168 - BUG/MINOR: cli: "agent" was missing from the "enable"/"disable" help message
169 - MEDIUM: cli: add support for enabling/disabling health checks.
170 - MEDIUM: stats: report down caused by agent prior to reporting up
171 - MAJOR: agent: rework the response processing and support additional actions
172 - MINOR: stats: improve the stats web page to support more actions
173 - CONTRIB: halog: avoid calling time/localtime/mktime for each line
174 - DOC: document the workarouds for Google Chrome's bogus pre-connect
175 - MINOR: stats: report SSL key computations per second
176 - MINOR: stats: add counters for SSL cache lookups and misses
177
Willy Tarreaua3393952014-05-10 15:16:43 +02001782014/05/10 : 1.5-dev25
179 - MEDIUM: connection: Implement and extented PROXY Protocol V2
180 - MINOR: ssl: clean unused ACLs declarations
181 - MINOR: ssl: adds fetchs and ACLs for ssl back connection.
182 - MINOR: ssl: merge client's and frontend's certificate functions.
183 - MINOR: ssl: adds ssl_f_sha1 fetch to return frontend's certificate fingerprint
184 - MINOR: ssl: adds sample converter base64 for binary type.
185 - MINOR: ssl: convert to binary ssl_fc_unique_id and ssl_bc_unique_id.
186 - BUG/MAJOR: ssl: Fallback to private session cache if current lock mode is not supported.
187 - MAJOR: ssl: Change default locks on ssl session cache.
188 - BUG/MINOR: chunk: Fix function chunk_strcmp and chunk_strcasecmp match a substring.
189 - MINOR: ssl: add global statement tune.ssl.force-private-cache.
190 - MINOR: ssl: remove fallback to SSL session private cache if lock init fails.
191 - BUG/MEDIUM: patterns: last fix was still not enough
192 - MINOR: http: export the smp_fetch_cookie function
193 - MINOR: http: generic pointer to rule argument
194 - BUG/MEDIUM: pattern: a typo breaks automatic acl/map numbering
195 - BUG/MAJOR: patterns: -i and -n are ignored for inlined patterns
196 - BUG/MINOR: proxy: unsafe initialization of HTTP transaction when switching from TCP frontend
197 - BUG/MINOR: http: log 407 in case of proxy auth
198 - MINOR: http: rely on the message body parser to send 100-continue
199 - MEDIUM: http: move reqadd after execution of http_request redirect
200 - MEDIUM: http: jump to dedicated labels after http-request processing
201 - BUG/MINOR: http: block rules forgot to increment the denied_req counter
202 - BUG/MINOR: http: block rules forgot to increment the session's request counter
203 - MEDIUM: http: move Connection header processing earlier
204 - MEDIUM: http: remove even more of the spaghetti in the request path
205 - MINOR: http: silently support the "block" action for http-request
206 - CLEANUP: proxy: rename "block_cond" to "block_rules"
207 - MEDIUM: http: emulate "block" rules using "http-request" rules
208 - MINOR: http: remove the now unused loop over "block" rules
209 - MEDIUM: http: factorize the "auth" action of http-request and stats
210 - MEDIUM: http: make http-request rules processing return a verdict instead of a rule
211 - MINOR: config: add minimum support for emitting warnings only once
212 - MEDIUM: config: inform the user about the deprecatedness of "block" rules
213 - MEDIUM: config: inform the user that "reqsetbe" is deprecated
214 - MEDIUM: config: inform the user only once that "redispatch" is deprecated
215 - MEDIUM: config: warn that '{cli,con,srv}timeout' are deprecated
216 - BUG/MINOR: auth: fix wrong return type in pat_match_auth()
217 - BUILD: config: remove a warning with clang
218 - BUG/MAJOR: http: connection setup may stall on balance url_param
219 - BUG/MEDIUM: http/session: disable client-side expiration only after body
220 - BUG/MEDIUM: http: correctly report request body timeouts
221 - BUG/MEDIUM: http: disable server-side expiration until client has sent the body
222 - MEDIUM: listener: make the accept function more robust against pauses
223 - BUILD: syscalls: remove improper inline statement in front of syscalls
224 - BUILD: ssl: SSL_CTX_set_msg_callback() needs openssl >= 0.9.7
225 - BUG/MAJOR: session: recover the correct connection pointer in half-initialized sessions
226 - DOC: add some explanation on the shared cache build options in the readme.
227 - MEDIUM: proxy: only adjust the backend's bind-process when already set
228 - MEDIUM: config: limit nbproc to the machine's word size
229 - MEDIUM: config: check the bind-process settings according to nbproc
230 - MEDIUM: listener: parse the new "process" bind keyword
231 - MEDIUM: listener: inherit the process mask from the proxy
232 - MAJOR: listener: only start listeners bound to the same processes
233 - MINOR: config: only report a warning when stats sockets are bound to more than 1 process
234 - CLEANUP: config: set the maxaccept value for peers listeners earlier
235 - BUG/MINOR: backend: only match IPv4 addresses with RDP cookies
236 - BUG/MINOR: checks: correctly configure the address family and protocol
237 - MINOR: tools: split is_addr() and is_inet_addr()
238 - MINOR: protocols: use is_inet_addr() when only INET addresses are desired
239 - MEDIUM: unix: add preliminary support for connecting to servers over UNIX sockets
240 - MEDIUM: checks: only complain about the missing port when the check uses TCP
241 - MEDIUM: unix: implement support for Linux abstract namespace sockets
242 - DOC: map_beg was missing from the table of map_* converters
243 - DOC: ebtree: indicate that prefix insertion/lookup may be used with strings
244 - MEDIUM: pattern: use ebtree's longest match to index/lookup string beginning
245 - BUILD: remove the obsolete BSD and OSX makefiles
246 - MEDIUM: unix: avoid a double connect probe when no data are sent
247 - DOC: stop referencing the slow git repository in the README
248 - BUILD: only build the systemd wrapper on Linux 2.6 and above
249 - DOC: update roadmap with completed tasks
250 - MEDIUM: session: implement half-closed timeouts (client-fin and server-fin)
251
Willy Tarreau8860dcd2014-04-26 00:08:14 +02002522014/04/26 : 1.5-dev24
253 - MINOR: pattern: find element in a reference
254 - MEDIUM: http: ACL and MAP updates through http-(request|response) rules
255 - MEDIUM: ssl: explicitly log failed handshakes after a heartbeat
256 - DOC: Full section dedicated to the converters
257 - MEDIUM: http: register http-request and http-response keywords
258 - BUG/MINOR: compression: correctly report incoming byte count
259 - BUG/MINOR: http: don't report server aborts as client aborts
260 - BUG/MEDIUM: channel: bi_putblk() must not wrap before the end of buffer
261 - CLEANUP: buffers: remove unused function buffer_contig_space_with_res()
262 - MEDIUM: stats: reimplement HTTP keep-alive on the stats page
263 - BUG/MAJOR: http: fix timeouts during data forwarding
264 - BUG/MEDIUM: http: 100-continue responses must process the next part immediately
265 - MEDIUM: http: move skipping of 100-continue earlier
266 - BUILD: stats: let gcc know that last_fwd cannot be used uninitialized...
267 - CLEANUP: general: get rid of all old occurrences of "session *t"
268 - CLEANUP: http: remove the useless "if (1)" inherited from version 1.4
269 - BUG/MEDIUM: stats: mismatch between behaviour and doc about front/back
270 - MEDIUM: http: enable analysers to have keep-alive on stats
271 - REORG: http: move HTTP Connection response header parsing earlier
272 - MINOR: stats: always emit HTTP/1.1 in responses
273 - MINOR: http: add capture.req.ver and capture.res.ver
274 - MINOR: checks: add a new global max-spread-checks directive
275 - BUG/MAJOR: http: fix the 'next' pointer when performing a redirect
276 - MINOR: http: implement the max-keep-alive-queue setting
277 - DOC: fix alphabetic order of tcp-check
278 - MINOR: connection: add a new error code for SSL with heartbeat
279 - MEDIUM: ssl: implement a workaround for the OpenSSL heartbleed attack
280 - BUG/MEDIUM: Revert "MEDIUM: ssl: Add standardized DH parameters >= 1024 bits"
281 - BUILD: http: remove a warning on strndup
282 - BUILD: ssl: avoid a warning about conn not used with OpenSSL < 1.0.1
283 - BUG/MINOR: ssl: really block OpenSSL's response to heartbleed attack
284 - MINOR: ssl: finally catch the heartbeats missing the padding
285
Willy Tarreau8317b282014-04-23 01:49:41 +02002862014/04/23 : 1.5-dev23
287 - BUG/MINOR: reject malformed HTTP/0.9 requests
288 - MINOR: systemd wrapper: re-execute on SIGUSR2
289 - MINOR: systemd wrapper: improve logging
290 - MINOR: systemd wrapper: propagate exit status
291 - BUG/MINOR: tcpcheck connect wrong behavior
292 - MEDIUM: proxy: support use_backend with dynamic names
293 - MINOR: stats: Enhancement to stats page to provide information of last session time.
294 - BUG/MEDIUM: peers: fix key consistency for integer stick tables
295 - DOC: fix a typo on http-server-close and encapsulate options with double-quotes
296 - DOC: fix fetching samples syntax
297 - MINOR: ssl: add ssl_fc_unique_id to fetch TLS Unique ID
298 - MEDIUM: ssl: Use ALPN support as it will be available in OpenSSL 1.0.2
299 - DOC: fix typo
300 - CLEANUP: code style: use tabs to indent codes instead of spaces
301 - DOC: fix a few config typos.
302 - BUG/MINOR: raw_sock: also consider ENOTCONN in addition to EAGAIN for recv()
303 - DOC: lowercase format string in unique-id
304 - MINOR: set IP_FREEBIND on IPv6 sockets in transparent mode
305 - BUG/MINOR: acl: req_ssl_sni fails with SSLv3 record version
306 - BUG/MINOR: build: add missing objects in osx and bsd Makefiles
307 - BUG/MINOR: build: handle whitespaces in wc -l output
308 - BUG/MINOR: Fix name lookup ordering when compiled with USE_GETADDRINFO
309 - MEDIUM: ssl: Add standardized DH parameters >= 1024 bits
310 - BUG/MEDIUM: map: The map parser includes blank lines.
311 - BUG/MINOR: log: The log of quotted capture header has been terminated by 2 quotes.
312 - MINOR: standard: add function "encode_chunk"
313 - BUG/MINOR: http: fix encoding of samples used in http headers
314 - MINOR: sample: add hex converter
315 - MEDIUM: sample: change the behavior of the bin2str cast
316 - MAJOR: auth: Change the internal authentication system.
317 - MEDIUM: acl/pattern: standardisation "of pat_parse_int()" and "pat_parse_dotted_ver()"
318 - MEDIUM: pattern: The pattern parser no more uses <opaque> and just takes one string.
319 - MEDIUM: pattern: Change the prototype of the function pattern_register().
320 - CONTRIB: ip6range: add a network IPv6 range to mask converter
321 - MINOR: pattern: separe list element from the data part.
322 - MEDIUM: pattern: add indexation function.
323 - MEDIUM: pattern: The parse functions just return "struct pattern" without memory allocation
324 - MINOR: pattern: Rename "pat_idx_elt" to "pattern_tree"
325 - MINOR: sample: dont call the sample cast function "c_none"
326 - MINOR: standard: Add function for converting cidr to network mask.
327 - MEDIUM: sample: Remove types SMP_T_CSTR and SMP_T_CBIN, replace it by SMP_F_CONST flags
328 - MEDIUM: sample/http_proto: Add new type called method
329 - MINOR: dumpstats: Group map inline help
330 - MEDIUM: pattern: The function pattern_exec_match() returns "struct pattern" if the patten match.
331 - MINOR: dumpstats: change map inline sentences
332 - MINOR: dumpstats: change the "get map" display management
333 - MINOR: map/dumpstats: The cli cmd "get map ..." display the "int" format.
334 - MEDIUM: pattern: The match function browse itself the list or the tree.
335 - MEDIUM: pattern: Index IPv6 addresses in a tree.
336 - MEDIUM: pattern: add delete functions
337 - MEDIUM: pattern: add prune function
338 - MEDIUM: pattern: add sample lookup function.
339 - MEDIUM: pattern/dumpstats: The function pattern_lookup() is no longer used
340 - MINOR: map/pattern: The sample parser is stored in the pattern
341 - MAJOR: pattern/map: Extends the map edition system in the patterns
342 - MEDIUM: pattern: merge same pattern
343 - MEDIUM: pattern: The expected type is stored in the pattern head, and conversion is executed once.
344 - MINOR: pattern: Each pattern is identified by unique id.
345 - MINOR: pattern/acl: Each pattern of each acl can be load with specified id
346 - MINOR: pattern: The function "pattern_register()" is no longer used.
347 - MINOR: pattern: Merge function pattern_add() with pat_ref_push().
348 - MINOR: pattern: store configuration reference for each acl or map pattern.
349 - MINOR: pattern: Each pattern expression element store the reference struct.
350 - MINOR: dumpstats: display the reference for th key/pattern and value.
351 - MEDIUM: pattern: delete() function uses the pat_ref_elt to find the element to be removed
352 - MEDIUM: pattern_find_smp: functions find_smp uses the pat_ref_elt to find the element to be removed
353 - MEDIUM: dumpstats/pattern: display and use each pointer of each pattern dumped
354 - MINOR: pattern/map/acl: Centralization of the file parsers
355 - MINOR: pattern: Check if the file reference is not used with acl and map
356 - MINOR: acl/pattern: Acl "-M" option force to load file as map file with two columns
357 - MEDIUM: dumpstats: Display error message during add of values.
358 - MINOR: pattern: The function pat_ref_set() have now atomic behavior
359 - MINOR: regex: The pointer regstr in the struc regex is no longer used.
360 - MINOR: cli: Block the usage of the command "acl add" in many cases.
361 - MINOR: doc: Update the documentation about the map and acl
362 - MINOR: pattern: index duplicates
363 - MINOR: configuration: File and line propagation
364 - MINOR: dumpstat/conf: display all the configuration lines that using pattern reference
365 - MINOR: standard: Disable ip resolution during the runtime
366 - MINOR: pattern: Remove the flag "PAT_F_FROM_FILE".
367 - MINOR: pattern: forbid dns resolutions
368 - DOC: document "get map" / "get acl" on the CLI
369 - MEDIUM: acl: Change the acl register struct
370 - BUG/MEDIUM: acl: boolean only matches were broken by recent changes
371 - DOC: pattern: pattern organisation schematics
372 - MINOR: pattern/cli: Update used terms in documentation and cli
373 - MINOR: cli: remove information about acl or map owner.
374 - MINOR: session: don't always assume there's a listener
375 - MINOR: pattern: Add function to prune and reload pattern list.
376 - MINOR: standard: Add ipv6 support in the function url2sa().
377 - MEDIUM: config: Dynamic sections.
378 - BUG/MEDIUM: stick-table: fix IPv4-to-IPv6 conversion in src_* fetches
379 - MINOR: http: Add the "language" converter to for use with accept-language
380 - BUG/MINOR: log: Don't dump empty unique-id
381 - BUG/MAJOR: session: fix a possible crash with src_tracked
382 - DOC: Update "language" documentation
383 - MINOR: http: add the function "del-header" to the directives http-request and http-response
384 - DOC: add some information on capture.(req|res).hdr
385 - MINOR: http: capture.req.method and capture.req.uri
386 - MINOR: http: optimize capture.req.method and capture.req.uri
387 - MINOR: session: clean up the connection free code
388 - BUG/MEDIUM: checks: immediately report a connection success
389 - MEDIUM: connection: don't use real send() flags in snd_buf()
390 - OPTIM: ssl: implement dynamic record size adjustment
391 - MINOR: stats: report exact last session time in backend too
392 - BUG/MEDIUM: stats: the "lastsess" field must appear last in the CSV.
393 - BUG/MAJOR: check: fix memory leak in "tcp-check connect" over SSL
394 - BUG/MINOR: channel: initialize xfer_small/xfer_large on new buffers
395 - MINOR: channel: add the date of last read in the channel
396 - MEDIUM: stream-int: automatically disable CF_STREAMER flags after idle
397 - MINOR: ssl: add DEFAULT_SSL_MAX_RECORD to set the record size at build time
398 - MINOR: config: make the stream interface idle timer user-configurable
399 - MINOR: config: add global directives to set default SSL ciphers
400 - MINOR: sample: add a rand() sample fetch to return a sample.
401 - BUG/MEDIUM: config: immediately abort if peers section has no name
402 - BUG/MINOR: ssl: fix syntax in config error message
403 - BUG/MEDIUM: ssl: always send a full buffer after EAGAIN
404 - BUG/MINOR: config: server on-marked-* statement is ignored in default-server
405 - BUG/MEDIUM: backend: prefer-last-server breaks redispatch
406 - BUG/MEDIUM: http: continue to emit 503 on keep-alive to different server
407 - MEDIUM: acl: fix pattern type for payload / payload_lv
408 - BUG/MINOR: config: fix a crash on startup when a disabled backend references a peer
409 - BUG/MEDIUM: compression: fix the output type of the compressor name
410 - BUG/MEDIUM: http: don't start to forward request data before the connect
411 - MINOR: http: release compression context only in http_end_txn()
412 - MINOR: protect ebimtree/ebistree against multiple inclusions
413 - MEDIUM: proxy: create a tree to store proxies by name
414 - MEDIUM: proxy: make findproxy() use trees to look up proxies
415 - MEDIUM: proxy: make get_backend_server() use findproxy() to lookup proxies
416 - MEDIUM: stick-table: lookup table names using trees.
417 - MEDIUM: config: faster lookup for duplicated proxy name
418 - CLEANUP: acl: remove obsolete test in parse_acl_expr()
419 - MINOR: sample: move smp_to_type to sample.c
420 - MEDIUM: compression: consider the "q=" attribute in Accept-Encoding
421 - REORG: cfgparse: move server keyword parsing to server.c
422 - BUILD: adjust makefile for AIX 5.1
423 - BUG/MEDIUM: pattern: fix wrong definition of the pat_prune_fcts array
424 - CLEANUP: pattern: move array definitions to proto/ and not types/
425 - BUG/MAJOR: counters: check for null-deref when looking up an alternate table
426 - BUILD: ssl: previous patch failed
427 - BUILD/MEDIUM: standard: get rid of the last strcpy()
428 - BUILD/MEDIUM: standard: get rid of sprintf()
429 - BUILD/MEDIUM: cfgparse: get rid of sprintf()
430 - BUILD/MEDIUM: checks: get rid of sprintf()
431 - BUILD/MEDIUM: http: remove calls to sprintf()
432 - BUG/MEDIUM: systemd-wrapper: fix locating of haproxy binary
433 - BUILD/MINOR: ssl: remove one call to sprintf()
434 - MEDIUM: http: don't reject anymore message bodies not containing the url param
435 - MEDIUM: http: wait for the first chunk or message body length in http_process_body
436 - CLEANUP: http: rename http_process_request_body()
437 - CLEANUP: http: prepare dedicated processing for chunked encoded message bodies
438 - MINOR: http: make msg->eol carry the last CRLF length
439 - MAJOR: http: do not use msg->sol while processing messages or forwarding data
440 - MEDIUM: http: http_parse_chunk_crlf() must not advance the buffer pointer
441 - MAJOR: http: don't update msg->sov anymore while processing the body
442 - MINOR: http: add a small helper to compute the amount of body bytes present
443 - MEDIUM: http: add a small helper to compute how far to rewind to find headers
444 - MINOR: http: add a small helper to compute how far to rewind to find URI
445 - MEDIUM: http: small helpers to compute how far to rewind to find BODY and DATA
446 - MAJOR: http: reset msg->sov after headers are forwarded
447 - MEDIUM: http: forward headers again while waiting for connection to complete
448 - BUG/MINOR: http: deinitialize compression after a parsing error
449 - BUG/MINOR: http: deinitialize compression after a compression error
450 - MEDIUM: http: headers must be forwarded even if data was already inspected
451 - MAJOR: http: re-enable compression on chunked encoding
452 - MAJOR: http/compression: fix chunked-encoded response processing
453 - MEDIUM: http: cleanup: centralize a little bit HTTP compression end
454 - MEDIUM: http: start to centralize the forwarding code
455 - MINOR: http: further cleanups of response forwarding function
456 - MEDIUM: http: only allocate the temporary compression buffer when needed
457 - MAJOR: http: centralize data forwarding in the request path
458 - CLEANUP: http: document the response forwarding states
459 - CLEANUP: http: remove all calls to http_silent_debug()
460 - DOC: internal: add some reminders about HTTP parsing and pointer states
461 - BUG/MAJOR: http: fix bug in parse_qvalue() when selecting compression algo
462 - BUG/MINOR: stats: last session was not always set
463 - DOC: add pointer to the Cyril's HTML doc in the README
464 - MEDIUM: config: relax use_backend check to make the condition optional
465 - MEDIUM: config: report misplaced http-request rules
466 - MEDIUM: config: report misplaced use-server rules
467 - DOC: update roadmap with what was done.
468
Willy Tarreau1a34d572014-02-03 00:41:29 +01004692014/02/03 : 1.5-dev22
470 - MEDIUM: tcp-check new feature: connect
471 - MEDIUM: ssl: Set verify 'required' as global default for servers side.
472 - MINOR: ssl: handshake optim for long certificate chains.
473 - BUG/MINOR: pattern: pattern comparison executed twice
474 - BUG/MEDIUM: map: segmentation fault with the stats's socket command "set map ..."
475 - BUG/MEDIUM: pattern: Segfault in binary parser
476 - MINOR: pattern: move functions for grouping pat_match_* and pat_parse_* and add documentation.
477 - MINOR: standard: The parse_binary() returns the length consumed and his documentation is updated
478 - BUG/MINOR: payload: the patterns of the acl "req.ssl_ver" are no parsed with the good function.
479 - BUG/MEDIUM: pattern: "pat_parse_dotted_ver()" set bad expect_type.
480 - BUG/MINOR: sample: The c_str2int converter does not fail if the entry is not an integer
481 - BUG/MEDIUM: http/auth: Sometimes the authentication credentials can be mix between two requests
482 - MINOR: doc: Bad cli function name.
483 - MINOR: http: smp_fetch_capture_header_* fetch captured headers
484 - BUILD: last release inadvertently prepended a "+" in front of the date
485 - BUG/MEDIUM: stream-int: fix the keep-alive idle connection handler
486 - BUG/MEDIUM: backend: do not re-initialize the connection's context upon reuse
487 - BUG: Revert "OPTIM/MEDIUM: epoll: fuse active events into polled ones during polling changes"
488 - BUG/MINOR: checks: successful check completion must not re-enable MAINT servers
489 - MINOR: http: try to stick to same server after status 401/407
490 - BUG/MINOR: http: always disable compression on HTTP/1.0
491 - OPTIM: poll: restore polling after a poll/stop/want sequence
492 - OPTIM: http: don't stop polling for read on the client side after a request
493 - BUG/MEDIUM: checks: unchecked servers could not be enabled anymore
494 - BUG/MEDIUM: stats: the web interface must check the tracked servers before enabling
495 - BUG/MINOR: channel: CHN_INFINITE_FORWARD must be unsigned
496 - BUG/MINOR: stream-int: do not clear the owner upon unregister
497 - MEDIUM: stats: add support for HTTP keep-alive on the stats page
498 - BUG/MEDIUM: stats: fix HTTP/1.0 breakage introduced in previous patch
499 - Revert "MEDIUM: stats: add support for HTTP keep-alive on the stats page"
500 - MAJOR: channel: add a new flag CF_WAKE_WRITE to notify the task of writes
501 - OPTIM: session: set the READ_DONTWAIT flag when connecting
502 - BUG/MINOR: http: don't clear the SI_FL_DONT_WAKE flag between requests
503 - MINOR: session: factor out the connect time measurement
504 - MEDIUM: session: prepare to support earlier transitions to the established state
505 - MEDIUM: stream-int: make si_connect() return an established state when possible
506 - MINOR: checks: use an inline function for health_adjust()
507 - OPTIM: session: put unlikely() around the freewheeling code
508 - MEDIUM: config: report a warning when multiple servers have the same name
509 - BUG: Revert "OPTIM: poll: restore polling after a poll/stop/want sequence"
510 - BUILD/MINOR: listener: remove a glibc warning on accept4()
511 - BUG/MAJOR: connection: fix mismatch between rcv_buf's API and usage
512 - BUILD: listener: fix recent accept4() again
513 - BUG/MAJOR: ssl: fix breakage caused by recent fix abf08d9
514 - BUG/MEDIUM: polling: ensure we update FD status when there's no more activity
515 - MEDIUM: listener: fix polling management in the accept loop
516 - MINOR: protocol: improve the proto->drain() API
517 - MINOR: connection: add a new conn_drain() function
518 - MEDIUM: tcp: report in tcp_drain() that lingering is already disabled on close
519 - MEDIUM: connection: update callers of ctrl->drain() to use conn_drain()
520 - MINOR: connection: add more error codes to report connection errors
521 - MEDIUM: tcp: report connection error at the connection level
522 - MEDIUM: checks: make use of chk_report_conn_err() for connection errors
523 - BUG/MEDIUM: unique_id: HTTP request counter is not stable
524 - DOC: fix misleading information about SIGQUIT
525 - BUG/MAJOR: fix freezes during compression
526 - BUG/MEDIUM: stream-interface: don't wake the task up before end of transfer
527 - BUILD: fix VERDATE exclusion regex
528 - CLEANUP: polling: rename "spec_e" to "state"
529 - DOC: add a diagram showing polling state transitions
530 - REORG: polling: rename "spec_e" to "state" and "spec_p" to "cache"
531 - REORG: polling: rename "fd_spec" to "fd_cache"
532 - REORG: polling: rename the cache allocation functions
533 - REORG: polling: rename "fd_process_spec_events()" to "fd_process_cached_events()"
534 - MAJOR: polling: rework the whole polling system
535 - MAJOR: connection: remove the CO_FL_WAIT_{RD,WR} flags
536 - MEDIUM: connection: remove conn_{data,sock}_poll_{recv,send}
537 - MEDIUM: connection: add check for readiness in I/O handlers
538 - MEDIUM: stream-interface: the polling flags must always be updated in chk_snd_conn
539 - MINOR: stream-interface: no need to call fd_stop_both() on error
540 - MEDIUM: connection: no need to recheck FD state
541 - CLEANUP: connection: use conn_ctrl_ready() instead of checking the flag
542 - CLEANUP: connection: use conn_xprt_ready() instead of checking the flag
543 - CLEANUP: connection: fix comments in connection.h to reflect new behaviour.
544 - OPTIM: raw-sock: don't speculate after a short read if polling is enabled
545 - MEDIUM: polling: centralize polled events processing
546 - MINOR: polling: create function fd_compute_new_polled_status()
547 - MINOR: cli: add more information to the "show info" output
548 - MEDIUM: listener: add support for limiting the session rate in addition to the connection rate
549 - MEDIUM: listener: apply a limit on the session rate submitted to SSL
550 - REORG: stats: move the stats socket states to dumpstats.c
551 - MINOR: cli: add the new "show pools" command
552 - BUG/MEDIUM: counters: flush content counters after each request
553 - BUG/MEDIUM: counters: fix stick-table entry leak when using track-sc2 in connection
554 - MINOR: tools: add very basic support for composite pointers
555 - MEDIUM: counters: stop relying on session flags at all
556 - BUG/MINOR: cli: fix missing break in command line parser
557 - BUG/MINOR: config: correctly report when log-format headers require HTTP mode
558 - MAJOR: http: update connection mode configuration
559 - MEDIUM: http: make keep-alive + httpclose be passive mode
560 - MAJOR: http: switch to keep-alive mode by default
561 - BUG/MEDIUM: http: fix regression caused by recent switch to keep-alive by default
562 - BUG/MEDIUM: listener: improve detection of non-working accept4()
563 - BUILD: listener: add fcntl.h and unistd.h
564 - BUG/MINOR: raw_sock: correctly set the MSG_MORE flag
565
Willy Tarreau6b07bf72013-12-17 00:45:49 +01005662013/12/17 : 1.5-dev21
567 - MINOR: stats: don't use a monospace font to report numbers
568 - MINOR: session: remove debugging code
569 - BUG/MAJOR: patterns: fix double free caused by loading strings from files
570 - MEDIUM: http: make option http_proxy automatically rewrite the URL
571 - BUG/MEDIUM: http: cook_cnt() forgets to set its output type
572 - BUG/MINOR: stats: correctly report throttle rate of low weight servers
573 - BUG/MEDIUM: checks: servers must not start in slowstart mode
574 - BUG/MINOR: acl: parser must also stop at comma on ACL-only keywords
575 - MEDIUM: stream-int: implement a very simplistic idle connection manager
576 - DOC: update the ROADMAP file
577
Willy Tarreau11f64d62013-12-16 02:32:37 +01005782013/12/16 : 1.5-dev20
579 - DOC: add missing options to the manpage
580 - DOC: add manpage references to all system calls
581 - DOC: update manpage reference to haproxy-en.txt
582 - DOC: remove -s and -l options from the manpage
583 - DOC: missing information for the "description" keyword
584 - DOC: missing http-send-name-header keyword in keyword table
585 - MINOR: tools: function my_memmem() to lookup binary contents
586 - MEDIUM: checks: add send/expect tcp based check
587 - MEDIUM: backend: Enhance hash-type directive with an algorithm options
588 - MEDIUM: backend: Implement avalanche as a modifier of the hashing functions.
589 - DOC: Documentation for hashing function, with test results.
590 - BUG/MEDIUM: ssl: potential memory leak using verifyhost
591 - BUILD: ssl: compilation issue with openssl v0.9.6.
592 - BUG/MINOR: ssl: potential memory leaks using ssl_c_key_alg or ssl_c_sig_alg.
593 - MINOR: ssl: optimization of verifyhost on wildcard certificates.
594 - BUG/MINOR: ssl: verifyhost does not match empty strings on wildcard.
595 - MINOR: ssl: Add statement 'verifyhost' to "server" statements
596 - CLEANUP: session: remove event_accept() which was not used anymore
597 - BUG/MINOR: deinit: free fdinfo while doing cleanup
598 - DOC: minor typo fix in documentation
599 - BUG/MEDIUM: server: set the macro for server's max weight SRV_UWGHT_MAX to SRV_UWGHT_RANGE
600 - BUG/MINOR: use the same check condition for server as other algorithms
601 - DOC: fix typo in comments
602 - BUG/MINOR: deinit: free server map which is allocated in init_server_map()
603 - CLEANUP: stream_interface: cleanup loop information in si_conn_send_loop()
604 - MINOR: buffer: align the last output line of buffer_dump()
605 - MINOR: buffer: align the last output line if there are less than 8 characters left
606 - DOC: stick-table: modify the description
607 - OPTIM: stream_interface: return directly if the connection flag CO_FL_ERROR has been set
608 - CLEANUP: code style: use tabs to indent codes
609 - DOC: checkcache: block responses with cacheable cookies
610 - BUG/MINOR: check_config_validity: check the returned value of stktable_init()
611 - MEDIUM: haproxy-systemd-wrapper: Use haproxy in same directory
612 - MEDIUM: systemd-wrapper: Kill child processes when interrupted
613 - LOW: systemd-wrapper: Write debug information to stdout
614 - BUG/MINOR: http: fix "set-tos" not working in certain configurations
615 - MEDIUM: http: add IPv6 support for "set-tos"
616 - DOC: ssl: update build instructions to use new SSL_* variables
617 - BUILD/MINOR: systemd: fix compiler warning about unused result
618 - url32+src - like base32+src but whole url including parameters
619 - BUG/MINOR: fix forcing fastinter in "on-error"
620 - CLEANUP: Make parameters of srv_downtime and srv_getinter const
621 - CLEANUP: Remove unused 'last_slowstart_change' field from struct peer
622 - MEDIUM: Split up struct server's check element
623 - MEDIUM: Move result element to struct check
624 - MEDIUM: Paramatise functions over the check of a server
625 - MEDIUM: cfgparse: Factor out check initialisation
626 - MEDIUM: Add state to struct check
627 - MEDIUM: Move health element to struct check
628 - MEDIUM: Add helper for task creation for checks
629 - MEDIUM: Add helper function for failed checks
630 - MEDIUM: Log agent fail, stopped or down as info
631 - MEDIUM: Remove option lb-agent-chk
632 - MEDIUM: checks: Add supplementary agent checks
633 - MEDIUM: Do not mark a server as down if the agent is unavailable
634 - MEDIUM: Set rise and fall of agent checks to 1
635 - MEDIUM: Add enable and disable agent unix socket commands
636 - MEDIUM: Add DRAIN state and report it on the stats page
637 - BUILD/MINOR: missing header file
638 - CLEANUP: regex: Create regex_comp function that compiles regex using compilation options
639 - CLEANUP: The function "regex_exec" needs the string length but in many case they expect null terminated char.
640 - MINOR: http: some exported functions were not in the header file
641 - MINOR: http: change url_decode to return the size of the decoded string.
642 - BUILD/MINOR: missing header file
643 - BUG/MEDIUM: sample: The function v4tov6 cannot support input and output overlap
644 - BUG/MINOR: arg: fix error reporting for add-header/set-header sample fetch arguments
645 - MINOR: sample: export the generic sample conversion parser
646 - MINOR: sample: export sample_casts
647 - MEDIUM: acl: use the fetch syntax 'fetch(args),conv(),conv()' into the ACL keyword
648 - MINOR: stick-table: use smp_expr_output_type() to retrieve the output type of a "struct sample_expr"
649 - MINOR: sample: provide the original sample_conv descriptor struct to the argument checker function.
650 - MINOR: tools: Add a function to convert buffer to an ipv6 address
651 - MINOR: acl: export acl arrays
652 - MINOR: acl: Extract the pattern parsing and indexation from the "acl_read_patterns_from_file()" function
653 - MINOR: acl: Extract the pattern matching function
654 - MINOR: sample: Define new struct sample_storage
655 - MEDIUM: acl: associate "struct sample_storage" to each "struct acl_pattern"
656 - REORG: acl/pattern: extract pattern matching from the acl file and create pattern.c
657 - MEDIUM: pattern: create pattern expression
658 - MEDIUM: pattern: rename "acl" prefix to "pat"
659 - MEDIUM: sample: let the cast functions set their output type
660 - MINOR: sample: add a private field to the struct sample_conv
661 - MINOR: map: Define map types
662 - MEDIUM: sample: add the "map" converter
663 - MEDIUM: http: The redirect strings follows the log format rules.
664 - BUG/MINOR: acl: acl parser does not recognize empty converter list
665 - BUG/MINOR: map: The map list was declared in the map.h file
666 - MINOR: map: Cleanup the initialisation of map descriptors.
667 - MEDIUM: map: merge identical maps
668 - BUG/MEDIUM: pattern: Pattern node has type of "struct pat_idx_elt" in place of "struct eb_node"
669 - BUG/MEDIUM: map: Bad map file parser
670 - CLEANUP/MINOR: standard: use the system define INET6_ADDRSTRLEN in place of MAX_IP6_LEN
671 - BUG/MEDIUM: sample: conversion from str to ipv6 may read data past end
672 - MINOR: map: export map_get_reference() function
673 - MINOR: pattern: Each pattern sets the expected input type
674 - MEDIUM: acl: Last patch change the output type
675 - MEDIUM: pattern: Extract the index process from the pat_parse_*() functions
676 - MINOR: standard: The function parse_binary() can use preallocated buffer
677 - MINOR: regex: Change the struct containing regex
678 - MINOR: regex: Copy the original regex expression into string.
679 - MINOR: pattern: add support for compiling patterns for lookups
680 - MINOR: pattern: make the pattern matching function return a pointer to the matched element
681 - MINOR: map: export parse output sample functions
682 - MINOR: pattern: add function to lookup a specific entry in pattern list
683 - MINOR: pattern/map: Each pattern must free the associated sample
684 - MEDIUM: dumpstat: make the CLI parser understand the backslash as an escape char
685 - MEDIUM: map: dynamic manipulation of maps
686 - BUG/MEDIUM: unique_id: junk in log on empty unique_id
687 - BUG/MINOR: log: junk at the end of syslog packet
688 - MINOR: Makefile: provide cscope rule
689 - DOC: compression: chunk are not compressed anymore
690 - MEDIUM: session: disable lingering on the server when the client aborts
691 - BUG/MEDIUM: prevent gcc from moving empty keywords lists into BSS
692 - DOC: remove the comment saying that SSL certs are not checked on the server side
693 - BUG: counters: third counter was not stored if others unset
694 - BUG/MAJOR: http: don't emit the send-name-header when no server is available
695 - BUG/MEDIUM: http: "option checkcache" fails with the no-cache header
696 - BUG/MAJOR: http: sample prefetch code was not properly migrated
697 - BUG/MEDIUM: splicing: fix abnormal CPU usage with splicing
698 - BUG/MINOR: stream_interface: don't call chk_snd() on polled events
699 - OPTIM: splicing: use splice() for the last block when relevant
700 - MEDIUM: sample: handle comma-delimited converter list
701 - MINOR: sample: fix sample_process handling of unstable data
702 - CLEANUP: acl: move the 3 remaining sample fetches to samples.c
703 - MINOR: sample: add a new "date" fetch to return the current date
704 - MINOR: samples: add the http_date([<offset>]) sample converter.
705 - DOC: minor improvements to the part on the stats socket.
706 - MEDIUM: sample: systematically pass the keyword pointer to the keyword
707 - MINOR: payload: split smp_fetch_rdp_cookie()
708 - MINOR: counters: factor out smp_fetch_sc*_tracked
709 - MINOR: counters: provide a generic function to retrieve a stkctr for sc* and src.
710 - MEDIUM: counters: factor out smp_fetch_sc*_get_gpc0
711 - MEDIUM: counters: factor out smp_fetch_sc*_gpc0_rate
712 - MEDIUM: counters: factor out smp_fetch_sc*_inc_gpc0
713 - MEDIUM: counters: factor out smp_fetch_sc*_clr_gpc0
714 - MEDIUM: counters: factor out smp_fetch_sc*_conn_cnt
715 - MEDIUM: counters: factor out smp_fetch_sc*_conn_rate
716 - MEDIUM: counters: factor out smp_fetch_sc*_conn_cur
717 - MEDIUM: counters: factor out smp_fetch_sc*_sess_cnt
718 - MEDIUM: counters: factor out smp_fetch_sc*_sess_rate
719 - MEDIUM: counters: factor out smp_fetch_sc*_http_req_cnt
720 - MEDIUM: counters: factor out smp_fetch_sc*_http_req_rate
721 - MEDIUM: counters: factor out smp_fetch_sc*_http_err_cnt
722 - MEDIUM: counters: factor out smp_fetch_sc*_http_err_rate
723 - MEDIUM: counters: factor out smp_fetch_sc*_kbytes_in
724 - MEDIUM: counters: factor out smp_fetch_sc*_bytes_in_rate
725 - MEDIUM: counters: factor out smp_fetch_sc*_kbytes_out
726 - MEDIUM: counters: factor out smp_fetch_sc*_bytes_out_rate
727 - MEDIUM: counters: factor out smp_fetch_sc*_trackers
728 - MINOR: session: make the number of stick counter entries more configurable
729 - MEDIUM: counters: support passing the counter number as a fetch argument
730 - MEDIUM: counters: support looking up a key in an alternate table
731 - MEDIUM: cli: adjust the method for feeding frequency counters in tables
732 - MINOR: cli: make it possible to enter multiple values at once with "set table"
733 - MINOR: payload: allow the payload sample fetches to retrieve arbitrary lengths
734 - BUG/MINOR: cli: "clear table" must not kill entries that don't match condition
735 - MINOR: ssl: use MAXPATHLEN instead of PATH_MAX
736 - MINOR: config: warn when a server with no specific port uses rdp-cookie
737 - BUG/MEDIUM: unique_id: HTTP request counter must be unique!
738 - DOC: add a mention about the limited chunk size
739 - BUG/MEDIUM: fix broken send_proxy on FreeBSD
740 - MEDIUM: stick-tables: flush old entries upon soft-stop
741 - MINOR: tcp: add new "close" action for tcp-response
742 - MINOR: payload: provide the "res.len" fetch method
743 - BUILD: add SSL_INC/SSL_LIB variables to force the path to openssl
744 - MINOR: http: compute response time before processing headers
745 - BUG/MINOR: acl: fix improper string size assignment in proxy argument
746 - BUG/MEDIUM: http: accept full buffers on smp_prefetch_http
747 - BUG/MINOR: acl: implicit arguments of ACL keywords were not properly resolved
748 - BUG/MEDIUM: session: risk of crash on out of memory conditions
749 - BUG/MINOR: peers: set the accept date in outgoing connections
750 - BUG/MEDIUM: tcp: do not skip tracking rules on second pass
751 - BUG/MEDIUM: acl: do not evaluate next terms after a miss
752 - MINOR: acl: add a warning when an ACL keyword is used without any value
753 - MINOR: tcp: don't use tick_add_ifset() when timeout is known to be set
754 - BUG/MINOR: acl: remove patterns from the tree before freeing them
755 - MEDIUM: backend: add support for the wt6 hash
756 - OPTIM/MEDIUM: epoll: fuse active events into polled ones during polling changes
757 - OPTIM/MINOR: mark the source address as already known on accept()
758 - BUG/MINOR: stats: don't count tarpitted connections twice
759 - CLEANUP: http: homogenize processing of denied req counter
760 - CLEANUP: http: merge error handling for req* and http-request *
761 - BUG/MEDIUM: http: fix possible parser crash when parsing erroneous "http-request redirect" rules
762 - BUG/MINOR: http: fix build warning introduced with url32/url32_src
763 - BUG/MEDIUM: checks: fix slow start regression after fix attempt
764 - BUG/MAJOR: server: weight calculation fails for map-based algorithms
765 - MINOR: stats: report correct throttling percentage for servers in slowstart
766 - OPTIM: connection: fold the error handling with handshake handling
767 - MINOR: peers: accept to learn strings of different lengths
768 - BUG/MAJOR: fix haproxy crash when using server tracking instead of checks
769 - BUG/MAJOR: check: fix haproxy crash during soft-stop/soft-start
770 - BUG/MINOR: stats: do not report "via" on tracking servers in maintenance
771 - BUG/MINOR: connection: fix typo in error message report
772 - BUG/MINOR: backend: fix target address retrieval in transparent mode
773 - BUG/MINOR: config: report the correct track-sc number in tcp-rules
774 - BUG/MINOR: log: fix log-format parsing errors
775 - DOC: add some information about how to apply converters to samples
776 - MINOR: acl/pattern: use types different from int to clarify who does what.
777 - MINOR: pattern: import acl_find_match_name() into pattern.h
778 - MEDIUM: stick-tables: support automatic conversion from ipv4<->ipv6
779 - MEDIUM: log-format: relax parsing of '%' followed by unsupported characters
780 - BUG/MINOR: http: usual deinit stuff in last commit
781 - BUILD: log: silent a warning about isblank() with latest patches
782 - BUG/MEDIUM: checks: fix health check regression causing them to depend on declaration order
783 - BUG/MEDIUM: checks: fix a long-standing issue with reporting connection errors
784 - BUG/MINOR: checks: don't consider errno and use conn->err_code
785 - BUG/MEDIUM: checks: also update the DRAIN state from the web interface
786 - MINOR: stats: remove some confusion between the DRAIN state and NOLB
787 - BUG/MINOR: tcp: check that no error is pending during a connect probe
788 - BUG/MINOR: connection: check EINTR when sending a PROXY header
789 - MEDIUM: connection: set the socket shutdown flags on socket errors
790 - BUG/MEDIUM: acl: fix regression introduced by latest converters support
791 - MINOR: connection: clear errno prior to checking for errors
792 - BUG/MINOR: checks: do not trust errno in write event before any syscall
793 - MEDIUM: checks: centralize error reporting
794 - OPTIM: checks: don't poll on recv when using plain TCP connects
795 - OPTIM: checks: avoid setting SO_LINGER twice
796 - MINOR: tools: add a generic binary hex string parser
797 - BUG/MEDIUM: checks: tcp-check: do not poll when there's nothing to send
798 - BUG/MEDIUM: check: tcp-check might miss some outgoing data when socket buffers are full
799 - BUG/MEDIUM: args: fix double free on error path in argument expression parser
800 - BUG/MINOR: acl: fix sample expression error reporting
801 - BUG/MINOR: checks: tcp-check actions are enums, not flags
802 - MEDIUM: checks: make tcp-check perform multiple send() at once
803 - BUG/MEDIUM: stick: completely remove the unused flag from the store entries
804 - OPTIM: ebtree: pack the struct eb_node to avoid holes on 64-bit
805 - BUG/MEDIUM: stick-tables: complete the latest fix about store-responses
806 - CLEANUP: stream_interface: remove unused field err_loc
807 - MEDIUM: stats: don't use conn->xprt_st anymore
808 - MINOR: session: add a simple function to retrieve a session from a task
809 - MEDIUM: stats: don't use conn->xprt_ctx anymore
810 - MEDIUM: peers: don't rely on conn->xprt_ctx anymore
811 - MINOR: http: prevent smp_fetch_url_{ip,port} from using si->conn
812 - MINOR: connection: make it easier to emit proxy protocol for unknown addresses
813 - MEDIUM: stats: prepare the HTTP stats I/O handler to support more states
814 - MAJOR: stats: move the HTTP stats handling to its applet
815 - MEDIUM: stats: move request argument processing to the final step
816 - MEDIUM: session: detect applets from the session by using s->target
817 - MAJOR: session: check for a connection to an applet in sess_prepare_conn_req()
818 - MAJOR: session: pass applet return traffic through the response analysers
819 - MEDIUM: stream-int: split the shutr/shutw functions between applet and conn
820 - MINOR: stream-int: make the shutr/shutw functions void
821 - MINOR: obj: provide a safe and an unsafe access to pointed objects
822 - MINOR: connection: add a field to store an object type
823 - MINOR: connection: always initialize conn->objt_type to OBJ_TYPE_CONN
824 - MEDIUM: stream interface: move the peers' ptr into the applet context
825 - MINOR: stream-interface: move the applet context to its own struct
826 - MINOR: obj: introduce a new type appctx
827 - MINOR: stream-int: rename ->applet to ->appctx
828 - MINOR: stream-int: split si_prepare_embedded into si_prepare_none and si_prepare_applet
829 - MINOR: stream-int: add a new pointer to the end point
830 - MEDIUM: stream-interface: set the pointer to the applet into the applet context
831 - MAJOR: stream interface: remove the ->release function pointer
832 - MEDIUM: stream-int: make ->end point to the connection or the appctx
833 - CLEANUP: stream-int: remove obsolete si_ctrl function
834 - MAJOR: stream-int: stop using si->conn and use si->end instead
835 - MEDIUM: stream-int: do not allocate a connection in parallel to applets
836 - MEDIUM: session: attach incoming connection to target on embryonic sessions
837 - MINOR: connection: add conn_init() to (re)initialize a connection
838 - MINOR: checks: call conn_init() to properly initialize the connection.
839 - MINOR: peers: make use of conn_init() to initialize the connection
840 - MINOR: session: use conn_init() to initialize the connections
841 - MINOR: http: use conn_init() to reinitialize the server connection
842 - MEDIUM: connection: replace conn_prepare with conn_assign
843 - MINOR: get rid of si_takeover_conn()
844 - MINOR: connection: add conn_new() / conn_free()
845 - MAJOR: connection: add two new flags to indicate readiness of control/transport
846 - MINOR: stream-interface: introduce si_reset() and si_set_state()
847 - MINOR: connection: reintroduce conn_prepare to set the protocol and transport
848 - MINOR: connection: replace conn_assign with conn_attach
849 - MEDIUM: stream-interface: introduce si_attach_conn to replace si_prepare_conn
850 - MAJOR: stream interface: dynamically allocate the outgoing connection
851 - MEDIUM: connection: move the send_proxy offset to the connection
852 - MINOR: connection: check for send_proxy during the connect(), not the SI
853 - MEDIUM: connection: merge the send_proxy and local_send_proxy calls
854 - MEDIUM: stream-int: replace occurrences of si->appctx with si_appctx()
855 - MEDIUM: stream-int: return the allocated appctx in stream_int_register_handler()
856 - MAJOR: stream-interface: dynamically allocate the applet context
857 - MEDIUM: session: automatically register the applet designated by the target
858 - MEDIUM: stats: delay appctx initialization
859 - CLEANUP: peers: use less confusing state/status code names
860 - MEDIUM: peers: delay appctx initialization
861 - MINOR: stats: provide some appctx information in "show sess all"
862 - DIET/MINOR: obj: pack the obj_type enum to 8 bits
863 - DIET/MINOR: connection: rearrange a few fields to save 8 bytes in the struct
864 - DIET/MINOR: listener: rearrange a few fields in struct listener to save 16 bytes
865 - DIET/MINOR: proxy: rearrange a few fields in struct proxy to save 16 bytes
866 - DIET/MINOR: session: reduce the struct session size by 8 bytes
867 - DIET/MINOR: stream-int: rearrange a few fields in struct stream_interface to save 8 bytes
868 - DIET/MINOR: http: reduce the size of struct http_txn by 8 bytes
869 - MINOR: http: switch the http state to an enum
870 - MINOR: http: use an enum for the auth method in http_auth_data
871 - DIET/MINOR: task: reduce struct task size by 8 bytes
872 - MINOR: stream_interface: add reporting of ressouce allocation errors
873 - MINOR: session: report lack of resources using the new stream-interface's error code
874 - BUILD: simplify the date and version retrieval in the makefile
875 - BUILD: prepare the makefile to skip format lines in SUBVERS and VERDATE
876 - BUILD: use format tags in VERDATE and SUBVERS files
877 - BUG/MEDIUM: channel: bo_getline() must wait for \n until buffer is full
878 - CLEANUP: check: server port is unsigned
879 - BUG/MEDIUM: checks: agent doesn't get the response if server does not closes
880 - MINOR: tools: buf2ip6 must not modify output on failure
881 - MINOR: pattern: do not assign SMP_TYPES by default to patterns
882 - MINOR: sample: make sample_parse_expr() use memprintf() to report parse errors
883 - MINOR: arg: improve wording on error reporting
884 - BUG/MEDIUM: sample: simplify and fix the argument parsing
885 - MEDIUM: acl: fix the argument parser to let the lower layer report detailed errors
886 - MEDIUM: acl: fix the initialization order of the ACL expression
887 - CLEANUP: acl: remove useless blind copy-paste from sample converters
888 - TESTS: add regression tests for ACL and sample expression parsers
889 - BUILD: time: adapt the type of TV_ETERNITY to the local system
890 - MINOR: chunks: allocate the trash chunks before parsing the config
891 - BUILD: definitely silence some stupid GCC warnings
892 - MINOR: chunks: always initialize the output chunk in get_trash_chunk()
893 - MINOR: checks: improve handling of the servers tracking chain
894 - REORG: checks: retrieve the check-specific defines from server.h to checks.h
895 - MINOR: checks: use an enum instead of flags to report a check result
896 - MINOR: checks: rename the state flags
897 - MINOR: checks: replace state DISABLED with CONFIGURED and ENABLED
898 - MINOR: checks: use check->state instead of srv->state & SRV_CHECKED
899 - MINOR: checks: fix agent check interval computation
900 - MINOR: checks: add a PAUSED state for the checks
901 - MINOR: checks: create the agent tasks even when no check is configured
902 - MINOR: checks: add a flag to indicate what check is an agent
903 - MEDIUM: checks: enable agent checks even if health checks are disabled
904 - BUG/MEDIUM: checks: ensure we can enable a server after boot
905 - BUG/MEDIUM: checks: tracking servers must not inherit the MAINT flag
906 - BUG/MAJOR: session: repair tcp-request connection rules
907 - BUILD: fix SUBVERS extraction in the Makefile
908 - BUILD: pattern: silence a warning about uninitialized value
909 - BUILD: log: fix build warning on Solaris
910 - BUILD: dumpstats: fix build error on Solaris
911 - DOC: move option pgsql-check to the correct place
912 - DOC: move option tcp-check to the proper place
913 - MINOR: connection: add simple functions to report connection readiness
914 - MEDIUM: connection: centralize handling of nolinger in fd management
915 - OPTIM: http: set CF_READ_DONTWAIT on response message
916 - OPTIM: http: do not re-enable reading on client side while closing the server side
917 - MINOR: config: add option http-keep-alive
918 - MEDIUM: connection: inform si_alloc_conn() whether existing conn is OK or not
919 - MAJOR: stream-int: handle the connection reuse in si_connect()
920 - MAJOR: http: add the keep-alive transition on the server side
921 - MAJOR: backend: enable connection reuse
922 - MINOR: http: add option prefer-last-server
923 - MEDIUM: http: do not report connection errors for second and further requests
924
Willy Tarreaueab1dc62013-06-17 15:10:25 +02009252013/06/17 : 1.5-dev19
926 - MINOR: stats: remove the autofocus on the scope input field
927 - BUG/MEDIUM: Fix crt-list file parsing error: filtered name was ignored.
928 - BUG/MEDIUM: ssl: EDH ciphers are not usable if no DH parameters present in pem file.
929 - BUG/MEDIUM: shctx: makes the code independent on SSL runtime version.
930 - MEDIUM: ssl: improve crt-list format to support negation
931 - BUG: ssl: fix crt-list for clients not supporting SNI
932 - MINOR: stats: show soft-stopped servers in different color
933 - BUG/MINOR: config: "source" does not work in defaults section
934 - BUG: regex: fix pcre compile error when using JIT
935 - MINOR: ssl: add pattern fetch 'ssl_c_sha1'
936 - BUG: ssl: send payload gets corrupted if tune.ssl.maxrecord is used
937 - MINOR: show PCRE version and JIT status in -vv
938 - BUG/MINOR: jit: don't rely on USE flag to detect support
939 - DOC: readme: add suggestion to link against static openssl
940 - DOC: examples: provide simplified ssl configuration
941 - REORG: tproxy: prepare the transparent proxy defines for accepting other OSes
942 - MINOR: tproxy: add support for FreeBSD
943 - MINOR: tproxy: add support for OpenBSD
944 - DOC: examples: provide an example of transparent proxy configuration for FreeBSD 8
945 - CLEANUP: fix minor typo in error message.
946 - CLEANUP: fix missing include <string.h> in proto/listener.h
947 - CLEANUP: protect checks.h from multiple inclusions
948 - MINOR: compression: acl "res.comp" and fetch "res.comp_algo"
949 - BUG/MINOR: http: add-header/set-header did not accept the ACL condition
950 - BUILD: mention in the Makefile that USE_PCRE_JIT is for libpcre >= 8.32
951 - BUG/MEDIUM: splicing is broken since 1.5-dev12
952 - BUG/MAJOR: acl: add implicit arguments to the resolve list
953 - BUG/MINOR: tcp: fix error reporting for TCP rules
954 - CLEANUP: peers: remove a bit of spaghetti to prepare for the next bugfix
955 - MINOR: stick-table: allow to allocate an entry without filling it
956 - BUG/MAJOR: peers: fix an overflow when syncing strings larger than 16 bytes
957 - MINOR: session: only call http_send_name_header() when changing the server
958 - MINOR: tcp: report the erroneous word in tcp-request track*
959 - BUG/MAJOR: backend: consistent hash can loop forever in certain circumstances
960 - BUG/MEDIUM: log: fix regression on log-format handling
961 - MEDIUM: log: report file name, line number, and directive name with log-format errors
962 - BUG/MINOR: cli: "clear table" did not work anymore without a key
963 - BUG/MINOR: cli: "clear table xx data.xx" does not work anymore
964 - BUG/MAJOR: http: compression still has defects on chunked responses
965 - BUG/MINOR: stats: fix confirmation links on the stats interface
966 - BUG/MINOR: stats: the status bar does not appear anymore after a change
967 - BUG/MEDIUM: stats: allocate the stats frontend also on "stats bind-process"
968 - BUG/MEDIUM: stats: fix a regression when dealing with POST requests
969 - BUG/MINOR: fix unterminated ACL array in compression
970 - BUILD: last fix broke non-linux platforms
971 - MINOR: init: indicate the SSL runtime version on -vv.
972 - BUG/MEDIUM: compression: the deflate algorithm must use global settings as well
973 - BUILD: stdbool is not portable (again)
974 - DOC: readme: add a small reminder about restrictions to respect in the code
975 - MINOR: ebtree: add new eb_next_dup/eb_prev_dup() functions to visit duplicates
976 - BUG/MINOR: acl: fix a double free during exit when using PCRE_JIT
977 - DOC: fix wrong copy-paste in the rspdel example
978 - MINOR: counters: make it easier to extend the amount of tracked counters
979 - MEDIUM: counters: add support for tracking a third counter
980 - MEDIUM: counters: add a new "gpc0_rate" counter in stick-tables
981 - BUG/MAJOR: http: always ensure response buffer has some room for a response
982 - MINOR: counters: add fetch/acl sc*_tracked to indicate whether a counter is tracked
983 - MINOR: defaults: allow REQURI_LEN and CAPTURE_LEN to be redefined
984 - MINOR: log: add a new flag 'L' for locally processed requests
985 - MINOR: http: add full-length header fetch methods
986 - MEDIUM: protocol: implement a "drain" function in protocol layers
987 - MEDIUM: http: add a new "http-response" ruleset
988 - MEDIUM: http: add the "set-nice" action to http-request and http-response
989 - MEDIUM: log: add a log level override value in struct session
990 - MEDIUM: http: add support for action "set-log-level" in http-request/http-response
991 - MEDIUM: http: add support for "set-tos" in http-request/http-response
992 - MEDIUM: http: add the "set-mark" action on http-request/http-response rules
993 - MEDIUM: tcp: add "tcp-request connection expect-proxy layer4"
994 - MEDIUM: acl: automatically detect the type of certain fetches
995 - MEDIUM: acl: remove a lot of useless ACLs that are equivalent to their fetches
996 - MEDIUM: acl: remove 15 additional useless ACLs that are equivalent to their fetches
997 - DOC: major reorg of ACL + sample fetch
998 - CLEANUP: http: remove the bogus urlp_ip ACL match
999 - MINOR: acl: add the new "env()" fetch method to retrieve an environment variable
1000 - BUG/MINOR: acl: correctly consider boolean fetches when doing casts
1001 - BUG/CRITICAL: fix a possible crash when using negative header occurrences
1002 - DOC: update ROADMAP file
1003 - MEDIUM: counters: use sc0/sc1/sc2 instead of sc1/sc2/sc3
1004 - MEDIUM: stats: add proxy name filtering on the statistic page
1005
Willy Tarreau289dd922013-04-03 02:26:31 +020010062013/04/03 : 1.5-dev18
1007 - DOCS: Add explanation of intermediate certs to crt paramater
1008 - DOC: typo and minor fixes in compression paragraph
1009 - MINOR: config: http-request configuration error message misses new keywords
1010 - DOC: minor typo fix in documentation
1011 - BUG/MEDIUM: ssl: ECDHE ciphers not usable without named curve configured.
1012 - MEDIUM: ssl: add bind-option "strict-sni"
1013 - MEDIUM: ssl: add mapping from SNI to cert file using "crt-list"
1014 - MEDIUM: regex: Use PCRE JIT in acl
1015 - DOC: simplify bind option "interface" explanation
1016 - DOC: tfo: bump required kernel to linux-3.7
1017 - BUILD: add explicit support for TFO with USE_TFO
1018 - MEDIUM: New cli option -Ds for systemd compatibility
1019 - MEDIUM: add haproxy-systemd-wrapper
1020 - MEDIUM: add systemd service
1021 - BUG/MEDIUM: systemd-wrapper: don't leak zombie processes
1022 - BUG/MEDIUM: remove supplementary groups when changing gid
1023 - BUG/MEDIUM: config: fix parser crash with bad bind or server address
1024 - BUG/MINOR: Correct logic in cut_crlf()
1025 - CLEANUP: checks: Make desc argument to set_server_check_status const
1026 - CLEANUP: dumpstats: Make cli_release_handler() static
1027 - MEDIUM: server: Break out set weight processing code
1028 - MEDIUM: server: Allow relative weights greater than 100%
1029 - MEDIUM: server: Tighten up parsing of weight string
1030 - MEDIUM: checks: Add agent health check
1031 - BUG/MEDIUM: ssl: openssl 0.9.8 doesn't open /dev/random before chroot
1032 - BUG/MINOR: time: frequency counters are not totally accurate
1033 - BUG/MINOR: http: don't process abortonclose when request was sent
1034 - BUG/MEDIUM: stream_interface: don't close outgoing connections on shutw()
1035 - BUG/MEDIUM: checks: ignore late resets after valid responses
1036 - DOC: fix bogus recommendation on usage of gpc0 counter
1037 - BUG/MINOR: http-compression: lookup Cache-Control in the response, not the request
1038 - MINOR: signal: don't block SIGPROF by default
1039 - OPTIM: epoll: make use of EPOLLRDHUP
1040 - OPTIM: splice: detect shutdowns and avoid splice() == 0
1041 - OPTIM: splice: assume by default that splice is working correctly
1042 - BUG/MINOR: log: temporary fix for lost SSL info in some situations
1043 - BUG/MEDIUM: peers: only the last peers section was used by tables
1044 - BUG/MEDIUM: config: verbosely reject peers sections with multiple local peers
1045 - BUG/MINOR: epoll: use a fix maxevents argument in epoll_wait()
1046 - BUG/MINOR: config: fix improper check for failed memory alloc in ACL parser
1047 - BUG/MINOR: config: free peer's address when exiting upon parsing error
1048 - BUG/MINOR: config: check the proper variable when parsing log minlvl
1049 - BUG/MEDIUM: checks: ensure the health_status is always within bounds
1050 - BUG/MINOR: cli: show sess should always validate s->listener
1051 - BUG/MINOR: log: improper NULL return check on utoa_pad()
1052 - CLEANUP: http: remove a useless null check
1053 - CLEANUP: tcp/unix: remove useless NULL check in {tcp,unix}_bind_listener()
1054 - BUG/MEDIUM: signal: signal handler does not properly check for signal bounds
1055 - BUG/MEDIUM: tools: off-by-one in quote_arg()
1056 - BUG/MEDIUM: uri_auth: missing NULL check and memory leak on memory shortage
1057 - BUG/MINOR: unix: remove the 'level' field from the ux struct
1058 - CLEANUP: http: don't try to deinitialize http compression if it fails before init
1059 - CLEANUP: config: slowstart is never negative
1060 - CLEANUP: config: maxcompcpuusage is never negative
1061 - BUG/MEDIUM: log: emit '-' for empty fields again
1062 - BUG/MEDIUM: checks: fix a race condition between checks and observe layer7
1063 - BUILD: fix a warning emitted by isblank() on non-c99 compilers
1064 - BUILD: improve the makefile's support for libpcre
1065 - MEDIUM: halog: add support for counting per source address (-ic)
1066 - MEDIUM: tools: make str2sa_range support all address syntaxes
1067 - MEDIUM: config: make use of str2sa_range() instead of str2sa()
1068 - MEDIUM: config: use str2sa_range() to parse server addresses
1069 - MEDIUM: config: use str2sa_range() to parse peers addresses
1070 - MINOR: tests: add a config file to ease address parsing tests.
1071 - MINOR: ssl: add a global tunable for the max SSL/TLS record size
1072 - BUG/MINOR: syscall: fix NR_accept4 system call on sparc/linux
1073 - BUILD/MINOR: syscall: add definition of NR_accept4 for ARM
1074 - MINOR: config: report missing peers section name
1075 - BUG/MEDIUM: tools: fix bad character handling in str2sa_range()
1076 - BUG/MEDIUM: stats: never apply "unix-bind prefix" to the global stats socket
1077 - MINOR: tools: prepare str2sa_range() to return an error message
1078 - BUG/MEDIUM: checks: don't call connect() on unsupported address families
1079 - MINOR: tools: prepare str2sa_range() to accept a prefix
1080 - MEDIUM: tools: make str2sa_range() parse unix addresses too
1081 - MEDIUM: config: make str2listener() use str2sa_range() to parse unix addresses
1082 - MEDIUM: config: use a single str2sa_range() call to parse bind addresses
1083 - MEDIUM: config: use str2sa_range() to parse log addresses
1084 - CLEANUP: tools: remove str2sun() which is not used anymore.
1085 - MEDIUM: config: add complete support for str2sa_range() in dispatch
1086 - MEDIUM: config: add complete support for str2sa_range() in server addr
1087 - MEDIUM: config: add complete support for str2sa_range() in 'server'
1088 - MEDIUM: config: add complete support for str2sa_range() in 'peer'
1089 - MEDIUM: config: add complete support for str2sa_range() in 'source' and 'usesrc'
1090 - CLEANUP: minor cleanup in str2sa_range() and str2ip()
1091 - CLEANUP: config: do not use multiple errmsg at once
1092 - MEDIUM: tools: support specifying explicit address families in str2sa_range()
1093 - MAJOR: listener: support inheriting a listening fd from the parent
1094 - MAJOR: tools: support environment variables in addresses
1095 - BUG/MEDIUM: http: add-header should not emit "-" for empty fields
1096 - BUG/MEDIUM: config: ACL compatibility check on "redirect" was wrong
1097 - BUG/MEDIUM: http: fix another issue caused by http-send-name-header
1098 - DOC: mention the new HTTP 307 and 308 redirect statues
1099 - MEDIUM: poll: do not use FD_* macros anymore
1100 - BUG/MAJOR: ev_select: disable the select() poller if maxsock > FD_SETSIZE
1101 - BUG/MINOR: acl: ssl_fc_{alg,use}_keysize must parse integers, not strings
1102 - BUG/MINOR: acl: ssl_c_used, ssl_fc{,_has_crt,_has_sni} take no pattern
1103 - BUILD: fix usual isdigit() warning on solaris
1104 - BUG/MEDIUM: tools: vsnprintf() is not always reliable on Solaris
1105 - OPTIM: buffer: remove one jump in buffer_count()
1106 - OPTIM: http: improve branching in chunk size parser
1107 - OPTIM: http: optimize the response forward state machine
1108 - BUILD: enable poll() by default in the makefile
1109 - BUILD: add explicit support for Mac OS/X
1110 - BUG/MAJOR: http: use a static storage for sample fetch context
1111 - BUG/MEDIUM: ssl: improve error processing and reporting in ssl_sock_load_cert_list_file()
1112 - BUG/MAJOR: http: fix regression introduced by commit a890d072
1113 - BUG/MAJOR: http: fix regression introduced by commit d655ffe
1114 - BUG/CRITICAL: using HTTP information in tcp-request content may crash the process
1115 - MEDIUM: acl: remove flag ACL_MAY_LOOKUP which is improperly used
1116 - MEDIUM: samples: use new flags to describe compatibility between fetches and their usages
1117 - MINOR: log: indicate it when some unreliable sample fetches are logged
1118 - MEDIUM: samples: move payload-based fetches and ACLs to their own file
1119 - MINOR: backend: rename sample fetch functions and declare the sample keywords
1120 - MINOR: frontend: rename sample fetch functions and declare the sample keywords
1121 - MINOR: listener: rename sample fetch functions and declare the sample keywords
1122 - MEDIUM: http: unify acl and sample fetch functions
1123 - MINOR: session: rename sample fetch functions and declare the sample keywords
1124 - MAJOR: acl: make all ACLs reference the fetch function via a sample.
1125 - MAJOR: acl: remove the arg_mask from the ACL definition and use the sample fetch's
1126 - MAJOR: acl: remove fetch argument validation from the ACL struct
1127 - MINOR: http: add new direction-explicit sample fetches for headers and cookies
1128 - MINOR: payload: add new direction-explicit sample fetches
1129 - CLEANUP: acl: remove ACL hooks which were never used
1130 - MEDIUM: proxy: remove acl_requires and just keep a flag "http_needed"
1131 - MINOR: sample: provide a function to report the name of a sample check point
1132 - MAJOR: acl: convert all ACL requires to SMP use+val instead of ->requires
1133 - CLEANUP: acl: remove unused references to ACL_USE_*
1134 - MINOR: http: replace acl_parse_ver with acl_parse_str
1135 - MEDIUM: acl: move the ->parse, ->match and ->smp fields to acl_expr
1136 - MAJOR: acl: add option -m to change the pattern matching method
1137 - MINOR: acl: remove the use_count in acl keywords
1138 - MEDIUM: acl: have a pointer to the keyword name in acl_expr
1139 - MEDIUM: acl: support using sample fetches directly in ACLs
1140 - MEDIUM: http: remove val_usr() to validate user_lists
1141 - MAJOR: sample: maintain a per-proxy list of the fetch args to resolve
1142 - MINOR: ssl: add support for the "alpn" bind keyword
1143 - MINOR: http: status code 303 is HTTP/1.1 only
1144 - MEDIUM: http: implement redirect 307 and 308
1145 - MINOR: http: status 301 should not be marked non-cacheable
1146
Willy Tarreaua3ecbd92012-12-28 15:04:05 +010011472012/12/28 : 1.5-dev17
1148 - MINOR: ssl: Setting global tune.ssl.cachesize value to 0 disables SSL session cache.
1149 - BUG/MEDIUM: stats: fix stats page regression introduced by commit 20b0de5
1150 - BUG/MINOR: stats: last fix was still wrong
1151 - BUG/MINOR: stats: http-request rules still don't cope with stats
1152 - BUG/MINOR: http: http-request add-header emits a corrupted header
1153 - BUG/MEDIUM: stats: disable request analyser when processing POST or HEAD
1154 - BUG/MINOR: log: make log-format, unique-id-format and add-header more independant
1155 - BUILD: log: unused variable svid
1156 - CLEANUP: http: rename the misleading http_check_access_rule
1157 - MINOR: http: move redirect rule processing to its own function
1158 - REORG: config: move the http redirect rule parser to proto_http.c
1159 - MEDIUM: http: add support for "http-request redirect" rules
1160 - MEDIUM: http: add support for "http-request tarpit" rule
1161
Willy Tarreau69eda352012-12-24 16:48:14 +010011622012/12/24 : 1.5-dev16
1163 - BUG/MEDIUM: ssl: Prevent ssl error from affecting other connections.
1164 - BUG/MINOR: ssl: error is not reported if it occurs simultaneously with peer close detection.
1165 - MINOR: ssl: add fetch and acl "ssl_c_used" to check if current SSL session uses a client certificate.
1166 - MINOR: contrib: make the iprange tool grep for addresses
1167 - CLEANUP: polling: gcc doesn't always optimize constants away
1168 - OPTIM: poll: optimize fd management functions for low register count CPUs
1169 - CLEANUP: poll: remove a useless double-check on fdtab[fd].owner
1170 - OPTIM: epoll: use a temp variable for intermediary flag computations
1171 - OPTIM: epoll: current fd does not count as a new one
1172 - BUG/MINOR: poll: the I/O handler was called twice for polled I/Os
1173 - MINOR: http: make resp_ver and status ACLs check for the presence of a response
1174 - BUG/MEDIUM: stream-interface: fix possible stalls during transfers
1175 - BUG/MINOR: stream_interface: don't return when the fd is already set
1176 - BUG/MEDIUM: connection: always update connection flags prior to computing polling
1177 - CLEANUP: buffer: use buffer_empty() instead of buffer_len()==0
1178 - BUG/MAJOR: stream_interface: fix occasional data transfer freezes
1179 - BUG/MEDIUM: stream_interface: fix another case where the reader might not be woken up
1180 - BUG/MINOR: http: don't abort client connection on premature responses
1181 - BUILD: no need to clean up when making git-tar
1182 - MINOR: log: add a tag for amount of bytes uploaded from client to server
1183 - BUG/MEDIUM: log: fix possible segfault during config parsing
1184 - MEDIUM: log: change a few log tokens to make them easier to remember
1185 - BUG/MINOR: log: add_to_logformat_list() used the wrong constants
1186 - MEDIUM: log-format: make the format parser more robust and more extensible
1187 - MINOR: sample: support cast from bool to string
1188 - MINOR: samples: add a function to fetch and convert any sample to a string
1189 - MINOR: log: add lf_text_len
1190 - MEDIUM: log: add the ability to include samples in logs
1191 - REORG: stats: massive code reorg and cleanup
1192 - REORG: stats: move the HTTP header injection to proto_http
1193 - REORG: stats: functions are now HTTP/CLI agnostic
1194 - BUG/MINOR: log: fix regression introduced by commit 8a3f52
1195 - MINOR: chunks: centralize the trash chunk allocation
1196 - MEDIUM: stats: use hover boxes instead of title to report details
1197 - MEDIUM: stats: use multi-line tips to display detailed counters
1198 - MINOR: tools: simplify the use of the int to ascii macros
1199 - MINOR: stats: replace STAT_FMT_CSV with STAT_FMT_HTML
1200 - MINOR: http: prepare to support more http-request actions
1201 - MINOR: log: make parse_logformat_string() take a const char *
1202 - MEDIUM: http: add http-request 'add-header' and 'set-header' to build headers
1203
Willy Tarreau0cae4b32012-12-12 00:39:52 +010012042012/12/12 : 1.5-dev15
1205 - DOC: add a few precisions on compression
1206 - BUG/MEDIUM: ssl: Fix handshake failure on session resumption with client cert.
1207 - BUG/MINOR: ssl: One free session in cache remains unused.
1208 - BUG/MEDIUM: ssl: first outgoing connection would fail with {ca,crt}-ignore-err
1209 - MEDIUM: ssl: manage shared cache by blocks for huge sessions.
1210 - MINOR: acl: add fetch for server session rate
1211 - BUG/MINOR: compression: Content-Type is case insensitive
1212 - MINOR: compression: disable on multipart or status != 200
1213 - BUG/MINOR: http: don't report client aborts as server errors
1214 - MINOR: stats: compute the ratio of compressed response based on 2xx responses
1215 - MINOR: http: factor out the content-type checks
1216 - BUG/MAJOR: stats: correctly check for a possible divide error when showing compression ratios
1217 - BUILD: ssl: OpenSSL 0.9.6 has no renegociation
1218 - BUG/MINOR: http: disable compression when message has no body
1219 - MINOR: compression: make the stats a bit more robust
1220 - BUG/MEDIUM: comp: DEFAULT_MAXZLIBMEM was expressed in bytes and not megabytes
1221 - MINOR: connection: don't remove failed handshake flags
1222 - MEDIUM: connection: add an error code in connections
1223 - MEDIUM: connection: add minimal error reporting in logs for incomplete connections
1224 - MEDIUM: connection: add error reporting for the PROXY protocol header
1225 - MEDIUM: connection: add error reporting for the SSL
1226 - DOC: document the connection error format in logs
1227 - BUG/MINOR: http: don't log a 503 on client errors while waiting for requests
1228 - BUILD: stdbool is not portable
1229 - BUILD: ssl: NAME_MAX is not portable, use MAXPATHLEN instead
1230 - BUG/MAJOR: raw_sock: must check error code on hangup
1231 - BUG/MAJOR: polling: do not set speculative events on ERR nor HUP
1232 - BUG/MEDIUM: session: fix FD leak when transport layer logging is enabled
1233 - MINOR: stats: add a few more information on session dump
1234 - BUG/MINOR: tcp: set the ADDR_TO_SET flag on outgoing connections
1235 - CLEANUP: connection: remove unused server/proxy/task/si_applet declarations
1236 - BUG/MEDIUM: tcp: process could theorically crash on lack of source ports
1237 - MINOR: cfgparse: mention "interface" in the list of allowed "source" options
1238 - MEDIUM: connection: introduce "struct conn_src" for servers and proxies
1239 - CLEANUP: proto_tcp: use the same code to bind servers and backends
1240 - CLEANUP: backend: use the same tproxy address selection code for servers and backends
1241 - BUG/MEDIUM: stick-tables: conversions to strings were broken in dev13
1242 - MEDIUM: proto_tcp: add support for tracking L7 information
1243 - MEDIUM: counters: add sc1_trackers/sc2_trackers
1244 - MINOR: http: add the "base32" pattern fetch function
1245 - MINOR: http: add the "base32+src" fetch method.
1246 - CLEANUP: session: use an array for the stick counters
1247 - BUG/MINOR: proto_tcp: fix parsing of "table" in track-sc1/2
1248 - BUG/MINOR: proto_tcp: bidirectional fetches not supported anymore in track-sc1/2
1249 - BUG/MAJOR: connection: always recompute polling status upon I/O
1250 - BUG/MINOR: connection: remove a few synchronous calls to polling updates
1251 - MINOR: config: improve error checking on TCP stick-table tracking
1252 - DOC: add some clarifications to the readme
1253
Willy Tarreaufee48ce2012-11-26 03:11:05 +010012542012/11/26 : 1.5-dev14
1255 - DOC: fix minor typos
1256 - BUG/MEDIUM: compression: does not forward trailers
1257 - MINOR: buffer_dump with ASCII
1258 - BUG/MEDIUM: checks: mark the check as stopped after a connect error
1259 - BUG/MEDIUM: checks: ensure we completely disable polling upon success
1260 - BUG/MINOR: checks: don't mark the FD as closed before transport close
1261 - MEDIUM: checks: avoid accumulating TIME_WAITs during checks
1262 - MINOR: cli: report the msg state in full text in "show sess $PTR"
1263 - CLEANUP: checks: rename some server check flags
1264 - MAJOR: checks: rework completely bogus state machine
1265 - BUG/MINOR: checks: slightly clean the state machine up
1266 - MEDIUM: checks: avoid waking the application up for pure TCP checks
1267 - MEDIUM: checks: close the socket as soon as we have a response
1268 - BUG/MAJOR: checks: close FD on all timeouts
1269 - MINOR: checks: fix recv polling after connect()
1270 - MEDIUM: connection: provide a common conn_full_close() function
1271 - BUG/MEDIUM: checks: prevent TIME_WAITs from appearing also on timeouts
1272 - BUG/MAJOR: peers: the listener's maxaccept was not set and caused loops
1273 - MINOR: listeners: make the accept loop more robust when maxaccept==0
1274 - BUG/MEDIUM: acl: correctly resolve all args, not just the first one
1275 - BUG/MEDIUM: acl: make prue_acl_expr() correctly free ACL expressions upon exit
1276 - BUG/MINOR: stats: fix inversion of the report of a check in progress
1277 - MEDIUM: tcp: add explicit support for delayed ACK in connect()
1278 - BUG/MEDIUM: connection: always disable polling upon error
1279 - MINOR: connection: abort earlier when errors are detected
1280 - BUG/MEDIUM: checks: report handshake failures
1281 - BUG/MEDIUM: connection: local_send_proxy must wait for connection to establish
1282 - MINOR: tcp: add support for the "v6only" bind option
1283 - MINOR: stats: also report the computed compression savings in html stats
1284 - MINOR: stats: report the total number of compressed responses per front/back
1285 - MINOR: tcp: add support for the "v4v6" bind option
1286 - DOC: stats: document the comp_rsp stats column
1287 - BUILD: buffer: fix another isprint() warning on solaris
1288 - MINOR: cli: add support for the "show sess all" command
1289 - BUG/MAJOR: cli: show sess <id> may randomly corrupt the back-ref list
1290 - MINOR: cli: improve output format for show sess $ptr
1291
Willy Tarreauad15d122012-11-22 01:11:33 +010012922012/11/22 : 1.5-dev13
1293 - BUILD: fix build issue without USE_OPENSSL
1294 - BUILD: fix compilation error with DEBUG_FULL
1295 - DOC: ssl: remove prefer-server-ciphers documentation
1296 - DOC: ssl: surround keywords with quotes
1297 - DOC: fix minor typo on http-send-name-header
1298 - BUG/MEDIUM: acls using IPv6 subnets patterns incorrectly match IPs
1299 - BUG/MAJOR: fix a segfault on option http_proxy and url_ip acl
1300 - MEDIUM: http: accept IPv6 values with (s)hdr_ip acl
1301 - BUILD: report zlib support in haproxy -vv
1302 - DOC: compression: add some details and clean up the formatting
1303 - DOC: Change is_ssl acl to ssl_fc acl in example
1304 - DOC: make it clear what the HTTP request size is
1305 - MINOR: ssl: try to load Diffie-Hellman parameters from cert file
1306 - DOC: ssl: update 'crt' statement on 'bind' about Diffie-Hellman parameters loading
1307 - MINOR: ssl: add elliptic curve Diffie-Hellman support for ssl key generation
1308 - DOC: ssl: add 'ecdhe' statement on 'bind'
1309 - MEDIUM: ssl: add client certificate authentication support
1310 - DOC: ssl: add 'verify', 'cafile' and 'crlfile' statements on 'bind'
1311 - MINOR: ssl: add fetch and ACL 'client_crt' to test a client cert is present
1312 - DOC: ssl: add fetch and ACL 'client_cert'
1313 - MINOR: ssl: add ignore verify errors options
1314 - DOC: ssl: add 'ca-ignore-err' and 'crt-ignore-err' statements on 'bind'
1315 - MINOR: ssl: add fetch and ACL 'ssl_verify_result'
1316 - DOC: ssl: add fetch and ACL 'ssl_verify_result'
1317 - MINOR: ssl: add fetches and ACLs to return verify errors
1318 - DOC: ssl: add fetches and ACLs 'ssl_verify_crterr', 'ssl_verify_caerr', and 'ssl_verify_crterr_depth'
1319 - MINOR: ssl: disable shared memory and locks on session cache if nbproc == 1
1320 - MINOR: ssl: add build param USE_PRIVATE_CACHE to build cache without shared memory
1321 - MINOR: ssl : add statements 'notlsv11' and 'notlsv12' and rename 'notlsv1' to 'notlsv10'.
1322 - DOC: ssl : add statements 'notlsv11' and 'notlsv12' and rename 'notlsv1' to 'notlsv10'.
1323 - MEDIUM: config: authorize frontend and listen without bind.
1324 - MINOR: ssl: add statement 'no-tls-tickets' on bind to disable stateless session resumption
1325 - DOC: ssl: add 'no-tls-tickets' statement documentation.
1326 - BUG/MINOR: ssl: Fix CRL check was not enabled when crlfile was specified.
1327 - BUG/MINOR: build: Fix compilation issue on openssl 0.9.6 due to missing CRL feature.
1328 - BUG/MINOR: conf: Fix 'maxsslconn' statement error if built without OPENSSL.
1329 - BUG/MINOR: build: Fix failure with USE_OPENSSL=1 and USE_FUTEX=1 on archs i486 and i686.
1330 - MINOR: ssl: remove prefer-server-ciphers statement and set it as the default on ssl listeners.
1331 - BUG/MEDIUM: ssl: subsequent handshakes fail after server configuration changes
1332 - MINOR: ssl: add 'crt-base' and 'ca-base' global statements.
1333 - MEDIUM: conf: rename 'nosslv3' and 'notlsvXX' statements 'no-sslv3' and 'no-tlsvXX'.
1334 - MEDIUM: conf: rename 'cafile' and 'crlfile' statements 'ca-file' and 'crl-file'
1335 - MINOR: ssl: use bit fields to store ssl options instead of one int each
1336 - MINOR: ssl: add 'force-sslv3' and 'force-tlsvXX' statements on bind.
1337 - MINOR: ssl: add 'force-sslv3' and 'force-tlsvXX' statements on server
1338 - MINOR: ssl: add defines LISTEN_DEFAULT_CIPHERS and CONNECT_DEFAULT_CIPHERS.
1339 - BUG/MINOR: ssl: Fix issue on server statements 'no-tls*' and 'no-sslv3'
1340 - MINOR: ssl: move ssl context init for servers from cfgparse.c to ssl_sock.c
1341 - MEDIUM: ssl: reject ssl server keywords in default-server statement
1342 - MINOR: ssl: add statement 'no-tls-tickets' on server side.
1343 - MINOR: ssl: add statements 'verify', 'ca-file' and 'crl-file' on servers.
1344 - DOC: Fix rename of options cafile and crlfile to ca-file and crl-file.
1345 - MINOR: sample: manage binary to string type convertion in stick-table and samples.
1346 - MINOR: acl: add parse and match primitives to use binary type on ACLs
1347 - MINOR: sample: export 'sample_get_trash_chunk(void)'
1348 - MINOR: conf: rename all ssl modules fetches using prefix 'ssl_fc' and 'ssl_c'
1349 - MINOR: ssl: add pattern and ACLs fetches 'ssl_fc_protocol', 'ssl_fc_cipher', 'ssl_fc_use_keysize' and 'ssl_fc_alg_keysize'
1350 - MINOR: ssl: add pattern fetch 'ssl_fc_session_id'
1351 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_version' and 'ssl_f_version'
1352 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_s_dn', 'ssl_c_i_dn', 'ssl_f_s_dn' and 'ssl_c_i_dn'
1353 - MINOR: ssl: add pattern and ACLs 'ssl_c_sig_alg' and 'ssl_f_sig_alg'
1354 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_key_alg' and 'ssl_f_key_alg'
1355 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_notbefore', 'ssl_c_notafter', 'ssl_f_notbefore' and 'ssl_f_notafter'
1356 - MINOR: ssl: add 'crt' statement on server.
1357 - MINOR: ssl: checks the consistency of a private key with the corresponding certificate
1358 - BUG/MEDIUM: ssl: review polling on reneg.
1359 - BUG/MEDIUM: ssl: Fix some reneg cases not correctly handled.
1360 - BUG/MEDIUM: ssl: Fix sometimes reneg fails if requested by server.
1361 - MINOR: build: allow packagers to specify the ssl cache size
1362 - MINOR: conf: add warning if ssl is not enabled and a certificate is present on bind.
1363 - MINOR: ssl: Add tune.ssl.lifetime statement in global.
1364 - MINOR: compression: Enable compression for IE6 w/SP2, IE7 and IE8
1365 - BUG: http: revert broken optimisation from 82fe75c1a79dac933391501b9d293bce34513755
1366 - DOC: duplicate ssl_sni section
1367 - MEDIUM: HTTP compression (zlib library support)
1368 - CLEANUP: use struct comp_ctx instead of union
1369 - BUILD: remove dependency to zlib.h
1370 - MINOR: compression: memlevel and windowsize
1371 - MEDIUM: use pool for zlib
1372 - MINOR: compression: try init in cfgparse.c
1373 - MINOR: compression: init before deleting headers
1374 - MEDIUM: compression: limit RAM usage
1375 - MINOR: compression: tune.comp.maxlevel
1376 - MINOR: compression: maximum compression rate limit
1377 - MINOR: log-format: check number of arguments in cfgparse.c
1378 - BUG/MEDIUM: compression: no Content-Type header but type in configuration
1379 - BUG/MINOR: compression: deinit zlib only when required
1380 - MEDIUM: compression: don't compress when no data
1381 - MEDIUM: compression: use pool for comp_ctx
1382 - MINOR: compression: rate limit in 'show info'
1383 - MINOR: compression: report zlib memory usage
1384 - BUG/MINOR: compression: dynamic level increase
1385 - DOC: compression: unsupported cases.
1386 - MINOR: compression: CPU usage limit
1387 - MEDIUM: http: add "redirect scheme" to ease HTTP to HTTPS redirection
1388 - BUG/MAJOR: ssl: missing tests in ACL fetch functions
1389 - MINOR: config: add a function to indent error messages
1390 - REORG: split "protocols" files into protocol and listener
1391 - MEDIUM: config: replace ssl_conf by bind_conf
1392 - CLEANUP: listener: remove unused conf->file and conf->line
1393 - MEDIUM: listener: add a minimal framework to register "bind" keyword options
1394 - MEDIUM: config: move the "bind" TCP parameters to proto_tcp
1395 - MEDIUM: move bind SSL parsing to ssl_sock
1396 - MINOR: config: improve error reporting for "bind" lines
1397 - MEDIUM: config: move the common "bind" settings to listener.c
1398 - MEDIUM: config: move all unix-specific bind keywords to proto_uxst.c
1399 - MEDIUM: config: enumerate full list of registered "bind" keywords upon error
1400 - MINOR: listener: add a scope field in the bind keyword lists
1401 - MINOR: config: pass the file and line to config keyword parsers
1402 - MINOR: stats: fill the file and line numbers in the stats frontend
1403 - MINOR: config: set the bind_conf entry on listeners created from a "listen" line.
1404 - MAJOR: listeners: use dual-linked lists to chain listeners with frontends
1405 - REORG: listener: move unix perms from the listener to the bind_conf
1406 - BUG: backend: balance hdr was broken since 1.5-dev11
1407 - MINOR: standard: make memprintf() support a NULL destination
1408 - MINOR: config: make str2listener() use memprintf() to report errors.
1409 - MEDIUM: stats: remove the stats_sock struct from the global struct
1410 - MINOR: ssl: set the listeners' data layer to ssl during parsing
1411 - MEDIUM: stats: make use of the standard "bind" parsers to parse global socket
1412 - DOC: move bind options to their own section
1413 - DOC: stats: refer to "bind" section for "stats socket" settings
1414 - DOC: fix index to reference bind and server options
1415 - BUG: http: do not print garbage on invalid requests in debug mode
1416 - BUG/MINOR: config: check the proper pointer to report unknown protocol
1417 - CLEANUP: connection: offer conn_prepare() to set up a connection
1418 - CLEANUP: config: fix typo inteface => interface
1419 - BUG: stats: fix regression introduced by commit 4348fad1
1420 - MINOR: cli: allow to set frontend maxconn to zero
1421 - BUG/MAJOR: http: chunk parser was broken with buffer changes
1422 - MEDIUM: monitor: simplify handling of monitor-net and mode health
1423 - MINOR: connection: add a pointer to the connection owner
1424 - MEDIUM: connection: make use of the owner instead of container_of
1425 - BUG/MINOR: ssl: report the L4 connection as established when possible
1426 - BUG/MEDIUM: proxy: must not try to stop disabled proxies upon reload
1427 - BUG/MINOR: config: use a copy of the file name in proxy configurations
1428 - BUG/MEDIUM: listener: don't pause protocols that do not support it
1429 - MEDIUM: proxy: add the global frontend to the list of normal proxies
1430 - BUG/MINOR: epoll: correctly disable FD polling in fd_rem()
1431 - MINOR: signal: really ignore signals configured with no handler
1432 - MINOR: buffers: add a few functions to write chars, strings and blocks
1433 - MINOR: raw_sock: always report asynchronous connection errors
1434 - MEDIUM: raw_sock: improve connection error reporting
1435 - REORG: connection: rename the data layer the "transport layer"
1436 - REORG: connection: rename app_cb "data"
1437 - MINOR: connection: provide a generic data layer wakeup callback
1438 - MINOR: connection: split conn_prepare() in two functions
1439 - MINOR: connection: add an init callback to the data_cb struct
1440 - MEDIUM: session: use a specific data_cb for embryonic sessions
1441 - MEDIUM: connection: use a generic data-layer init() callback
1442 - MEDIUM: connection: reorganize connection flags
1443 - MEDIUM: connection: only call the data->wake callback on activity
1444 - MEDIUM: connection: make it possible for data->wake to return an error
1445 - MEDIUM: session: register a data->wake callback to process errors
1446 - MEDIUM: connection: don't call the data->init callback upon error
1447 - MEDIUM: connection: it's not the data layer's role to validate the connection
1448 - MEDIUM: connection: automatically disable polling on error
1449 - REORG: connection: move the PROXY protocol management to connection.c
1450 - MEDIUM: connection: add a new local send-proxy transport callback
1451 - MAJOR: checks: make use of the connection layer to send checks
1452 - REORG: server: move the check-specific parts into a check subsection
1453 - MEDIUM: checks: use real buffers to store requests and responses
1454 - MEDIUM: check: add the ctrl and transport layers in the server check structure
1455 - MAJOR: checks: completely use the connection transport layer
1456 - MEDIUM: checks: add the "check-ssl" server option
1457 - MEDIUM: checks: enable the PROXY protocol with health checks
1458 - CLEANUP: checks: remove minor warnings for assigned but not used variables
1459 - MEDIUM: tcp: enable TCP Fast Open on systems which support it
1460 - BUG: connection: fix regression from commit 9e272bf9
1461 - CLEANUP: cttproxy: remove a warning on undeclared close()
1462 - BUG/MAJOR: ensure that hdr_idx is always reserved when L7 fetches are used
1463 - MEDIUM: listener: add support for linux's accept4() syscall
1464 - MINOR: halog: sort output by cookie code
1465 - BUG/MINOR: halog: -ad/-ac report the correct number of output lines
1466 - BUG/MINOR: halog: fix help message for -ut/-uto
1467 - MINOR: halog: add a parameter to limit output line count
1468 - BUILD: accept4: move the socketcall declaration outside of accept4()
1469 - MINOR: server: add minimal infrastructure to parse keywords
1470 - MINOR: standard: make indent_msg() support empty messages
1471 - MEDIUM: server: check for registered keywords when parsing unknown keywords
1472 - MEDIUM: server: move parsing of keyword "id" to server.c
1473 - BUG/MEDIUM: config: check-send-proxy was ignored if SSL was not builtin
1474 - MEDIUM: ssl: move "server" keyword SSL options parsing to ssl_sock.c
1475 - MEDIUM: log: suffix the frontend's name with '~' when using SSL
1476 - MEDIUM: connection: always unset the transport layer upon close
1477 - BUG/MINOR: session: fix some leftover from debug code
1478 - BUG/MEDIUM: session: enable the conn_session_update() callback
1479 - MEDIUM: connection: add a flag to hold the transport layer
1480 - MEDIUM: log: add a new LW_XPRT flag to pin the transport layer
1481 - MINOR: log: make lf_text use a const char *
1482 - MEDIUM: log: report SSL ciphers and version in logs using logformat %sslc/%sslv
1483 - REORG: http: rename msg->buf to msg->chn since it's a channel
1484 - CLEANUP: http: use 'chn' to name channel variables, not 'buf'
1485 - CLEANUP: channel: use 'chn' instead of 'buf' as local variable names
1486 - CLEANUP: tcp: use 'chn' instead of 'buf' or 'b' for channel pointer names
1487 - CLEANUP: stream_interface: use 'chn' instead of 'b' to name channel pointers
1488 - CLEANUP: acl: use 'chn' instead of 'b' to name channel pointers
1489 - MAJOR: channel: replace the struct buffer with a pointer to a buffer
1490 - OPTIM: channel: reorganize struct members to improve cache efficiency
1491 - CLEANUP: session: remove term_trace which is not used anymore
1492 - OPTIM: session: reorder struct session fields
1493 - OPTIM: connection: pack the struct target
1494 - DOC: document relations between internal entities
1495 - MINOR: ssl: add 'ssl_npn' sample/acl to extract TLS/NPN information
1496 - BUILD: ssl: fix shctx build on older compilers
1497 - MEDIUM: ssl: add support for the "npn" bind keyword
1498 - BUG: ssl: fix ssl_sni ACLs to correctly process regular expressions
1499 - MINOR: chunk: provide string compare functions
1500 - MINOR: sample: accept fetch keywords without parenthesis
1501 - MEDIUM: sample: pass an empty list instead of a null for fetch args
1502 - MINOR: ssl: improve socket behaviour upon handshake abort.
1503 - BUG/MEDIUM: http: set DONTWAIT on data when switching to tunnel mode
1504 - MEDIUM: listener: provide a fallback for accept4() when not supported
1505 - BUG/MAJOR: connection: risk of crash on certain tricky close scenario
1506 - MEDIUM: cli: allow the stats socket to be bound to a specific set of processes
1507 - OPTIM: channel: inline channel_forward's fast path
1508 - OPTIM: http: inline http_parse_chunk_size() and http_skip_chunk_crlf()
1509 - OPTIM: tools: inline hex2i()
1510 - CLEANUP: http: rename HTTP_MSG_DATA_CRLF state
1511 - MINOR: compression: automatically disable compression for older browsers
1512 - MINOR: compression: optimize memLevel to improve byte rate
1513 - BUG/MINOR: http: compression should consider all Accept-Encoding header values
1514 - BUILD: fix coexistence of openssl and zlib
1515 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_serial' and 'ssl_f_serial'
1516 - BUG/MEDIUM: command-line option -D must have precedence over "debug"
1517 - MINOR: tools: add a clear_addr() function to unset an address
1518 - BUG/MEDIUM: tcp: transparent bind to the source only when address is set
1519 - CLEANUP: remove trashlen
1520 - MAJOR: session: detach the connections from the stream interfaces
1521 - DOC: update document describing relations between internal entities
1522 - BUILD: make it possible to specify ZLIB path
1523 - MINOR: compression: add an offload option to remove the Accept-Encoding header
1524 - BUG: compression: disable auto-close and enable MSG_MORE during transfer
1525 - CLEANUP: completely remove trashlen
1526 - MINOR: chunk: add a function to reset a chunk
1527 - CLEANUP: replace chunk_printf() with chunk_appendf()
1528 - MEDIUM: make the trash be a chunk instead of a char *
1529 - MEDIUM: remove remains of BUFSIZE in HTTP auth and sample conversions
1530 - MEDIUM: stick-table: allocate the table key of size buffer size
1531 - BUG/MINOR: stream_interface: don't loop over ->snd_buf()
1532 - BUG/MINOR: session: ensure that we don't retry connection if some data were sent
1533 - OPTIM: session: don't process the whole session when only timers need a refresh
1534 - BUG/MINOR: session: mark the handshake as complete earlier
1535 - MAJOR: connection: remove the CO_FL_CURR_*_POL flag
1536 - BUG/MAJOR: always clear the CO_FL_WAIT_* flags after updating polling flags
1537 - MAJOR: sepoll: make the poller totally event-driven
1538 - OPTIM: stream_interface: disable reading when CF_READ_DONTWAIT is set
1539 - BUILD: compression: remove a build warning
1540 - MEDIUM: fd: don't unset fdtab[].updated upon delete
1541 - REORG: fd: move the speculative I/O management from ev_sepoll
1542 - REORG: fd: move the fd state management from ev_sepoll
1543 - REORG: fd: centralize the processing of speculative events
1544 - BUG: raw_sock: also consider ENOTCONN in addition to EAGAIN
1545 - BUILD: stream_interface: remove si_fd() and its references
1546 - BUILD: compression: enable build in BSD and OSX Makefiles
1547 - MAJOR: ev_select: make the poller support speculative events
1548 - MAJOR: ev_poll: make the poller support speculative events
1549 - MAJOR: ev_kqueue: make the poller support speculative events
1550 - MAJOR: polling: replace epoll with sepoll and remove sepoll
1551 - MAJOR: polling: remove unused callbacks from the poller struct
1552 - MEDIUM: http: refrain from sending "Connection: close" when Upgrade is present
1553 - CLEANUP: channel: remove any reference of the hijackers
1554 - CLEANUP: stream_interface: remove the external task type target
1555 - MAJOR: connection: replace struct target with a pointer to an enum
1556 - BUG: connection: fix typo in previous commit
1557 - BUG: polling: don't skip polled events in the spec list
1558 - MINOR: splice: disable it when the system returns EBADF
1559 - MINOR: build: allow packagers to specify the default maxzlibmem
1560 - BUG: halog: fix broken output limitation
1561 - BUG: proxy: fix server name lookup in get_backend_server()
1562 - BUG: compression: do not always increment the round counter on allocation failure
1563 - BUG/MEDIUM: compression: release the zlib pools between keep-alive requests
1564 - MINOR: global: don't prevent nbproc from being redefined
1565 - MINOR: config: support process ranges for "bind-process"
1566 - MEDIUM: global: add support for CPU binding on Linux ("cpu-map")
1567 - MINOR: ssl: rename and document the tune.ssl.cachesize option
1568 - DOC: update the PROXY protocol spec to support v2
1569 - MINOR: standard: add a simple popcount function
1570 - MEDIUM: adjust the maxaccept per listener depending on the number of processes
1571 - BUG: compression: properly disable compression when content-type does not match
1572 - MINOR: cli: report connection status in "show sess xxx"
1573 - BUG/MAJOR: stream_interface: certain workloads could cause get stuck
1574 - BUILD: cli: fix build when SSL is enabled
1575 - MINOR: cli: report the fd state in "show sess xxx"
1576 - MINOR: cli: report an error message on missing argument to compression rate
1577 - MINOR: http: add some debugging functions to pretty-print msg state names
1578 - BUG/MAJOR: stream_interface: read0 not always handled since dev12
1579 - DOC: documentation on http header capture is wrong
1580 - MINOR: http: allow the cookie capture size to be changed
1581 - DOC: http header capture has not been limited in size for a long time
1582 - DOC: update readme with build methods for BSD
1583 - BUILD: silence a warning on Solaris about usage of isdigit()
1584 - MINOR: stats: report HTTP compression stats per frontend and per backend
1585 - MINOR: log: add '%Tl' to log-format
1586 - MINOR: samples: update the url_param fetch to match parameters in the path
1587
Willy Tarreau16216822012-09-10 09:46:55 +020015882012/09/10 : 1.5-dev12
1589 - CONTRIB: halog: sort URLs by avg bytes_read or total bytes_read
1590 - MEDIUM: ssl: add support for prefer-server-ciphers option
1591 - MINOR: IPv6 support for transparent proxy
1592 - MINOR: protocol: add SSL context to listeners if USE_OPENSSL is defined
1593 - MINOR: server: add SSL context to servers if USE_OPENSSL is defined
1594 - MEDIUM: connection: add a new handshake flag for SSL (CO_FL_SSL_WAIT_HS).
1595 - MEDIUM: ssl: add new files ssl_sock.[ch] to provide the SSL data layer
1596 - MEDIUM: config: add the 'ssl' keyword on 'bind' lines
1597 - MEDIUM: config: add support for the 'ssl' option on 'server' lines
1598 - MEDIUM: ssl: protect against client-initiated renegociation
1599 - BUILD: add optional support for SSL via the USE_OPENSSL flag
1600 - MEDIUM: ssl: add shared memory session cache implementation.
1601 - MEDIUM: ssl: replace OpenSSL's session cache with the shared cache
1602 - MINOR: ssl add global setting tune.sslcachesize to set SSL session cache size.
1603 - MEDIUM: ssl: add support for SNI and wildcard certificates
1604 - DOC: Typos cleanup
1605 - DOC: fix name for "option independant-streams"
1606 - DOC: specify the default value for maxconn in the context of a proxy
1607 - BUG/MINOR: to_log erased with unique-id-format
1608 - LICENSE: add licence exception for OpenSSL
1609 - BUG/MAJOR: cookie prefix doesn't support cookie-less servers
1610 - BUILD: add an AIX 5.2 (and later) target.
1611 - MEDIUM: fd/si: move peeraddr from struct fdinfo to struct connection
1612 - MINOR: halog: use the more recent dual-mode fgets2 implementation
1613 - BUG/MEDIUM: ebtree: ebmb_insert() must not call cmp_bits on full-length matches
1614 - CLEANUP: halog: make clean should also remove .o files
1615 - OPTIM: halog: make use of memchr() on platforms which provide a fast one
1616 - OPTIM: halog: improve cold-cache behaviour when loading a file
1617 - BUG/MINOR: ACL implicit arguments must be created with unresolved flag
1618 - MINOR: replace acl_fetch_{path,url}* with smp_fetch_*
1619 - MEDIUM: pattern: add the "base" sample fetch method
1620 - OPTIM: i386: make use of kernel-mode-linux when available
1621 - BUG/MINOR: tarpit: fix condition to return the HTTP 500 message
1622 - BUG/MINOR: polling: some events were not set in various pollers
1623 - MINOR: http: add the urlp_val ACL match
1624 - BUG: stktable: tcp_src_to_stktable_key() must return NULL on invalid families
1625 - MINOR: stats/cli: add plans to support more stick-table actions
1626 - MEDIUM: stats/cli: add support for "set table key" to enter values
1627 - REORG/MEDIUM: fd: remove FD_STCLOSE from struct fdtab
1628 - REORG/MEDIUM: fd: remove checks for FD_STERROR in ev_sepoll
1629 - REORG/MEDIUM: fd: get rid of FD_STLISTEN
1630 - REORG/MINOR: connection: move declaration to its own include file
1631 - REORG/MINOR: checks: put a struct connection into the server
1632 - MINOR: connection: add flags to the connection struct
1633 - MAJOR: get rid of fdtab[].state and use connection->flags instead
1634 - MINOR: fd: add a new I/O handler to fdtab
1635 - MEDIUM: polling: prepare to call the iocb() function when defined.
1636 - MEDIUM: checks: make use of fdtab->iocb instead of cb[]
1637 - MEDIUM: protocols: use the generic I/O callback for accept callbacks
1638 - MINOR: connection: add a handler for fd-based connections
1639 - MAJOR: connection: replace direct I/O callbacks with the connection callback
1640 - MINOR: fd: make fdtab->owner a connection and not a stream_interface anymore
1641 - MEDIUM: connection: remove the FD_POLL_* flags only once
1642 - MEDIUM: connection: extract the send_proxy callback from proto_tcp
1643 - MAJOR: tcp: remove the specific I/O callbacks for TCP connection probes
1644 - CLEANUP: remove the now unused fdtab direct I/O callbacks
1645 - MAJOR: remove the stream interface and task management code from sock_*
1646 - MEDIUM: stream_interface: pass connection instead of fd in sock_ops
1647 - MEDIUM: stream_interface: centralize the SI_FL_ERR management
1648 - MAJOR: connection: add a new CO_FL_CONNECTED flag
1649 - MINOR: rearrange tcp_connect_probe() and fix wrong return codes
1650 - MAJOR: connection: call data layer handshakes from the handler
1651 - MEDIUM: fd: remove the EV_FD_COND_* primitives
1652 - MINOR: sock_raw: move calls to si_data_close upper
1653 - REORG: connection: replace si_data_close() with conn_data_close()
1654 - MEDIUM: sock_raw: introduce a read0 callback that is different from shutr
1655 - MAJOR: stream_int: use a common stream_int_shut*() functions regardless of the data layer
1656 - MAJOR: fd: replace all EV_FD_* macros with new fd_*_* inline calls
1657 - MEDIUM: fd: add fd_poll_{recv,send} for use when explicit polling is required
1658 - MEDIUM: connection: add definitions for dual polling mechanisms
1659 - MEDIUM: connection: make use of the new polling functions
1660 - MAJOR: make use of conn_{data|sock}_{poll|stop|want}* in connection handlers
1661 - MEDIUM: checks: don't use FD_WAIT_* anymore
1662 - MINOR: fd: get rid of FD_WAIT_*
1663 - MEDIUM: stream_interface: offer a generic function for connection updates
1664 - MEDIUM: stream-interface: offer a generic chk_rcv function for connections
1665 - MEDIUM: stream-interface: add a snd_buf() callback to sock_ops
1666 - MEDIUM: stream-interface: provide a generic stream_int_chk_snd_conn() function
1667 - MEDIUM: stream-interface: provide a generic si_conn_send_cb callback
1668 - MEDIUM: stream-interface: provide a generic stream_sock_read0() function
1669 - REORG/MAJOR: use "struct channel" instead of "struct buffer"
1670 - REORG/MAJOR: extract "struct buffer" from "struct channel"
1671 - MINOR: connection: provide conn_{data|sock}_{read0|shutw} functions
1672 - REORG: sock_raw: rename the files raw_sock*
1673 - MAJOR: raw_sock: extract raw_sock_to_buf() from raw_sock_read()
1674 - MAJOR: raw_sock: temporarily disable splicing
1675 - MINOR: stream-interface: add an rcv_buf callback to sock_ops
1676 - REORG: stream-interface: move sock_raw_read() to si_conn_recv_cb()
1677 - MAJOR: connection: split the send call into connection and stream interface
1678 - MAJOR: stream-interface: restore splicing mechanism
1679 - MAJOR: stream-interface: make conn_notify_si() more robust
1680 - MEDIUM: proxy-proto: don't use buffer flags in conn_si_send_proxy()
1681 - MAJOR: stream-interface: don't commit polling changes in every callback
1682 - MAJOR: stream-interface: fix splice not to call chk_snd by itself
1683 - MEDIUM: stream-interface: don't remove WAIT_DATA when a handshake is in progress
1684 - CLEANUP: connection: split sock_ops into data_ops, app_cp and si_ops
1685 - REORG: buffers: split buffers into chunk,buffer,channel
1686 - MAJOR: channel: remove the BF_OUT_EMPTY flag
1687 - REORG: buffer: move buffer_flush, b_adv and b_rew to buffer.h
1688 - MINOR: channel: rename bi_full to channel_full as it checks the whole channel
1689 - MINOR: buffer: provide a new buffer_full() function
1690 - MAJOR: channel: stop relying on BF_FULL to take action
1691 - MAJOR: channel: remove the BF_FULL flag
1692 - REORG: channel: move buffer_{replace,insert_line}* to buffer.{c,h}
1693 - CLEANUP: channel: usr CF_/CHN_ prefixes instead of BF_/BUF_
1694 - CLEANUP: channel: use "channel" instead of "buffer" in function names
1695 - REORG: connection: move the target pointer from si to connection
1696 - MAJOR: connection: move the addr field from the stream_interface
1697 - MEDIUM: stream_interface: remove CAP_SPLTCP/CAP_SPLICE flags
1698 - MEDIUM: proto_tcp: remove any dependence on stream_interface
1699 - MINOR: tcp: replace tcp_src_to_stktable_key with addr_to_stktable_key
1700 - MEDIUM: connection: add an ->init function to data layer
1701 - MAJOR: session: introduce embryonic sessions
1702 - MAJOR: connection: make the PROXY decoder a handshake handler
1703 - CLEANUP: frontend: remove the old proxy protocol decoder
1704 - MAJOR: connection: rearrange the polling flags.
1705 - MEDIUM: connection: only call tcp_connect_probe when nothing was attempted yet
1706 - MEDIUM: connection: complete the polling cleanups
1707 - MEDIUM: connection: avoid calling handshakes when polling is required
1708 - MAJOR: stream_interface: continue to update data polling flags during handshakes
1709 - CLEANUP: fd: remove fdtab->flags
1710 - CLEANUP: fdtab: flatten the struct and merge the spec struct with the rest
1711 - CLEANUP: includes: fix includes for a number of users of fd.h
1712 - MINOR: ssl: disable TCP quick-ack by default on SSL listeners
1713 - MEDIUM: config: add a "ciphers" keyword to set SSL cipher suites
1714 - MEDIUM: config: add "nosslv3" and "notlsv1" on bind and server lines
1715 - BUG: ssl: mark the connection as waiting for an SSL connection during the handshake
1716 - BUILD: http: rename error_message http_error_message to fix conflicts on RHEL
1717 - BUILD: ssl: fix shctx build on RHEL with futex
1718 - BUILD: include sys/socket.h to fix build failure on FreeBSD
1719 - BUILD: fix build error without SSL (ssl_cert)
1720 - BUILD: ssl: use MAP_ANON instead of MAP_ANONYMOUS
1721 - BUG/MEDIUM: workaround an eglibc bug which truncates the pidfiles when nbproc > 1
1722 - MEDIUM: config: support per-listener backlog and maxconn
1723 - MINOR: session: do not send an HTTP/500 error on SSL sockets
1724 - MEDIUM: config: implement maxsslconn in the global section
1725 - BUG: tcp: close socket fd upon connect error
1726 - MEDIUM: connection: improve error handling around the data layer
1727 - MINOR: config: make the tasks "nice" value configurable on "bind" lines.
1728 - BUILD: shut a gcc warning introduced by commit 269ab31
1729 - MEDIUM: config: centralize handling of SSL config per bind line
1730 - BUILD: makefile: report USE_OPENSSL status in build options
1731 - BUILD: report openssl build settings in haproxy -vv
1732 - MEDIUM: ssl: add sample fetches for is_ssl, ssl_has_sni, ssl_sni_*
1733 - DOC: add a special acknowledgement for the stud project
1734 - DOC: add missing SSL options for servers and listeners
1735 - BUILD: automatically add -lcrypto for SSL
1736 - DOC: add some info about openssl build in the README
1737
Willy Tarreau02c7c142012-06-04 00:43:45 +020017382012/06/04 : 1.5-dev11
1739 - BUG/MEDIUM: option forwardfor if-none doesn't work with some configurations
1740 - BUG/MAJOR: trash must always be the size of a buffer
1741 - DOC: fix minor regex example issue and improve doc on stats
1742 - MINOR: stream_interface: add a pointer to the listener for TARG_TYPE_CLIENT
1743 - MEDIUM: protocol: add a pointer to struct sock_ops to the listener struct
1744 - MINOR: checks: add on-marked-up option
1745 - MINOR: balance uri: added 'whole' parameter to include query string in hash calculation
1746 - MEDIUM: stream_interface: remove the si->init
1747 - MINOR: buffers: add a rewind function
1748 - BUG/MAJOR: fix regression on content-based hashing and http-send-name-header
1749 - MAJOR: http: stop using msg->sol outside the parsers
1750 - CLEANUP: http: make it more obvious that msg->som is always null outside of chunks
1751 - MEDIUM: http: get rid of msg->som which is not used anymore
1752 - MEDIUM: http: msg->sov and msg->sol will never wrap
1753 - BUG/MAJOR: checks: don't call set_server_status_* when no LB algo is set
1754 - BUG/MINOR: stop connect timeout when connect succeeds
1755 - REORG: move the send-proxy code to tcp_connect_write()
1756 - REORG/MINOR: session: detect the TCP monitor checks at the protocol accept
1757 - MINOR: stream_interface: introduce a new "struct connection" type
1758 - REORG/MINOR: stream_interface: move si->fd to struct connection
1759 - REORG/MEDIUM: stream_interface: move applet->state and private to connection
1760 - MINOR: stream_interface: add a data channel close function
1761 - MEDIUM: stream_interface: call si_data_close() before releasing the si
1762 - MINOR: peers: use the socket layer operations from the peer instead of sock_raw
1763 - BUG/MINOR: checks: expire on timeout.check if smaller than timeout.connect
1764 - MINOR: add a new function call tracer for debugging purposes
1765 - BUG/MINOR: perform_http_redirect also needs to rewind the buffer
1766 - BUG/MAJOR: b_rew() must pass a signed offset to b_ptr()
1767 - BUG/MEDIUM: register peer sync handler in the proper order
1768 - BUG/MEDIUM: buffers: fix bi_putchr() to correctly advance the pointer
1769 - BUG/MINOR: fix option httplog validation with TCP frontends
1770 - BUG/MINOR: log: don't report logformat errors in backends
1771 - REORG/MINOR: use dedicated proxy flags for the cookie handling
1772 - BUG/MINOR: config: do not report twice the incompatibility between cookie and non-http
1773 - MINOR: http: add support for "httponly" and "secure" cookie attributes
1774 - BUG/MEDIUM: ensure that unresolved arguments are freed exactly once
1775 - BUG/MINOR: commit 196729ef used wrong condition resulting in freeing constants
1776 - MEDIUM: stats: add support for soft stop/soft start in the admin interface
1777 - MEDIUM: stats: add the ability to kill sessions from the admin interface
1778 - BUILD: add support for linux kernels >= 2.6.28
1779
Willy Tarreauffb89472012-05-14 07:26:56 +020017802012/05/14 : 1.5-dev10
1781 - BUG/MINOR: stats admin: "Unexpected result" was displayed unconditionally
1782 - BUG/MAJOR: acl: http_auth_group() must not accept any user from the userlist
1783 - CLEANUP: auth: make the code build again with DEBUG_AUTH
1784 - BUG/MEDIUM: config: don't crash at config load time on invalid userlist names
1785 - REORG: use the name sock_raw instead of stream_sock
1786 - MINOR: stream_interface: add a client target : TARG_TYPE_CLIENT
1787 - BUG/MEDIUM: stream_interface: restore get_src/get_dst
1788 - CLEANUP: sock_raw: remove last references to stream_sock
1789 - CLEANUP: stream_interface: stop exporting socket layer functions
1790 - MINOR: stream_interface: add an init callback to sock_ops
1791 - MEDIUM: stream_interface: derive the socket operations from the target
1792 - MAJOR: fd: remove the need for the socket layer to recheck the connection
1793 - MINOR: session: call the socket layer init function when a session establishes
1794 - MEDIUM: session: add support for tunnel timeouts
1795 - MINOR: standard: add a new debug macro : fddebug()
1796 - CLEANUP: fd: remove unused cb->b pointers in the struct fdtab
1797 - OPTIM: proto_http: don't enable quick-ack on empty buffers
1798 - OPTIM/MAJOR: ev_sepoll: process spec events after polled events
1799 - OPTIM/MEDIUM: stream_interface: add a new SI_FL_NOHALF flag
1800
Willy Tarreaua0564f32012-05-08 21:56:27 +020018012012/05/08 : 1.5-dev9
1802 - MINOR: Add release callback to si_applet
1803 - CLEANUP: Fix some minor typos
1804 - MINOR: Add TO/FROM_SET flags to struct stream_interface
1805 - CLEANUP: Fix some minor whitespace issues
1806 - MINOR: stats admin: allow unordered parameters in POST requests
1807 - CLEANUP: fix typo in findserver() log message
1808 - MINOR: stats admin: use the backend id instead of its name in the form
1809 - MINOR: stats admin: reduce memcmp()/strcmp() calls on status codes
1810 - DOC: cleanup indentation, alignment, columns and chapters
1811 - DOC: fix some keywords arguments documentation
1812 - MINOR: cli: display the 4 IP addresses and ports on "show sess XXX"
1813 - BUG/MAJOR: log: possible segfault with logformat
1814 - MEDIUM: log: split of log_format generation
1815 - MEDIUM: log: New format-log flags: %Fi %Fp %Si %Sp %Ts %rt %H %pid
1816 - MEDIUM: log: Unique ID
1817 - MINOR: log: log-format: usable without httplog and tcplog
1818 - BUG/MEDIUM: balance source did not properly hash IPv6 addresses
1819 - MINOR: contrib/iprange: add a network IP range to mask converter
1820 - MEDIUM: session: implement the "use-server" directive
1821 - MEDIUM: log: add a new cookie flag 'U' to report situations where cookie is not used
1822 - MEDIUM: http: make extract_cookie_value() iterate over cookie values
1823 - MEDIUM: http: add cookie and scookie ACLs
1824 - CLEANUP: lb_first: add reference to a paper describing the original idea
1825 - MEDIUM: stream_sock: add a get_src and get_dst callback and remove SN_FRT_ADDR_SET
1826 - BUG/MINOR: acl: req_ssl_sni would randomly fail if a session ID is present
1827 - BUILD: http: make extract_cookie_value() return an int not size_t
1828 - BUILD: http: stop gcc-4.1.2 from complaining about possibly uninitialized values
1829 - CLEANUP: http: message parser must ignore HTTP_MSG_ERROR
1830 - MINOR: standard: add a memprintf() function to build formatted error messages
1831 - CLEANUP: remove a few warning about unchecked return values in debug code
1832 - MEDIUM: move message-related flags from transaction to message
1833 - DOC: add a diagram to explain how circular buffers work
1834 - MAJOR: buffer rework: replace ->send_max with ->o
1835 - MAJOR: buffer: replace buf->l with buf->{o+i}
1836 - MINOR: buffers: provide simple pointer normalization functions
1837 - MINOR: buffers: remove unused function buffer_contig_data()
1838 - MAJOR: buffers: replace buf->w with buf->p - buf->o
1839 - MAJOR: buffers: replace buf->r with buf->p + buf->i
1840 - MAJOR: http: move buffer->lr to http_msg->next
1841 - MAJOR: http: change msg->{som,col,sov,eoh} to be relative to buffer origin
1842 - CLEANUP: http: remove unused http_msg->col
1843 - MAJOR: http: turn http_msg->eol to a buffer-relative offset
1844 - MEDIUM: http: add a pointer to the buffer in http_msg
1845 - MAJOR: http: make http_msg->sol relative to buffer's origin
1846 - MEDIUM: http: http_send_name_header: remove references to msg and buffer
1847 - MEDIUM: http: remove buffer arg in a few header manipulation functions
1848 - MEDIUM: http: remove buffer arg in http_capture_bad_message
1849 - MEDIUM: http: remove buffer arg in http_msg_analyzer
1850 - MEDIUM: http: remove buffer arg in http_upgrade_v09_to_v10
1851 - MEDIUM: http: remove buffer arg in http_buffer_heavy_realign
1852 - MEDIUM: http: remove buffer arg in chunk parsing functions
1853 - MINOR: http: remove useless wrapping checks in http_msg_analyzer
1854 - MEDIUM: buffers: fix unsafe use of buffer_ignore at some places
1855 - MEDIUM: buffers: add new pointer wrappers and get rid of almost all buffer_wrap_add calls
1856 - MEDIUM: buffers: implement b_adv() to advance a buffer's pointer
1857 - MEDIUM: buffers: rename a number of buffer management functions
1858 - MEDIUM: http: add a prefetch function for ACL pattern fetch
1859 - MEDIUM: http: make all ACL fetch function use acl_prefetch_http()
1860 - BUG/MINOR: http_auth: ACLs are volatile, not permanent
1861 - MEDIUM: http/acl: merge all request and response ACL fetches of headers and cookies
1862 - MEDIUM: http/acl: make acl_fetch_hdr_{ip,val} rely on acl_fetch_hdr()
1863 - MEDIUM: add a new typed argument list parsing framework
1864 - MAJOR: acl: make use of the new argument parsing framework
1865 - MAJOR: acl: store the ACL argument types in the ACL keyword declaration
1866 - MEDIUM: acl: acl_find_target() now resolves arguments based on their types
1867 - MAJOR: acl: make acl_find_targets also resolve proxy names at config time
1868 - MAJOR: acl: ensure that implicit table and proxies are valid
1869 - MEDIUM: acl: remove unused tests for missing args when args are mandatory
1870 - MEDIUM: pattern: replace type pattern_arg with type arg
1871 - MEDIUM: pattern: get rid of arg_i in all functions making use of arguments
1872 - MEDIUM: pattern: use the standard arg parser
1873 - MEDIUM: pattern: add an argument validation callback to pattern descriptors
1874 - MEDIUM: pattern: report the precise argument parsing error when known.
1875 - MEDIUM: acl: remove the ACL_TEST_F_NULL_MATCH flag
1876 - MINOR: pattern: add a new 'sample' type to store fetched data
1877 - MEDIUM: pattern: add new sample types to replace pattern types
1878 - MAJOR: acl: make use of the new sample struct and get rid of acl_test
1879 - MEDIUM: pattern/acl: get rid of temp_pattern in ACLs
1880 - MEDIUM: acl: get rid of the SET_RES flags
1881 - MEDIUM: get rid of SMP_F_READ_ONLY and SMP_F_MUST_FREE
1882 - MINOR: pattern: replace struct pattern with struct sample
1883 - MEDIUM: pattern: integrate pattern_data into sample and use sample everywhere
1884 - MEDIUM: pattern: retrieve the sample type in the sample, not in the keyword description
1885 - MEDIUM: acl/pattern: switch rdp_cookie functions stack up-down
1886 - MEDIUM: acl: replace acl_expr with args in acl fetch_* functions
1887 - MINOR: tcp: replace acl_fetch_rdp_cookie with smp_fetch_rdp_cookie
1888 - MEDIUM: acl/pattern: use the same direction scheme
1889 - MEDIUM: acl/pattern: start merging common sample fetch functions
1890 - MEDIUM: pattern: ensure that sample types always cast into other types.
1891 - MEDIUM: acl/pattern: factor out the src/dst address fetches
1892 - MEDIUM: acl: implement payload and payload_lv
1893 - CLEANUP: pattern: ensure that payload and payload_lv always stay in the buffer
1894 - MINOR: stick_table: centralize the handling of empty keys
1895 - MINOR: pattern: centralize handling of unstable data in pattern_process()
1896 - MEDIUM: pattern: use smp_fetch_rdp_cookie instead of the pattern specific version
1897 - MINOR: acl: set SMP_OPT_ITERATE on fetch functions
1898 - MINOR: acl: add a val_args field to keywords
1899 - MINOR: proto_tcp: validate arguments of payload and payload_lv ACLs
1900 - MEDIUM: http: merge acl and pattern header fetch functions
1901 - MEDIUM: http: merge ACL and pattern cookie fetches into a single one
1902 - MEDIUM: acl: report parsing errors to the caller
1903 - MINOR: arg: improve error reporting on invalid arguments
1904 - MINOR: acl: report errors encountered when loading patterns from files
1905 - MEDIUM: acl: extend the pattern parsers to report meaningful errors
1906 - REORG: use the name "sample" instead of "pattern" to designate extracted data
1907 - REORG: rename "pattern" files
1908 - MINOR: acl: add types to ACL patterns
1909 - MINOR: standard: add an IPv6 parsing function (str62net)
1910 - MEDIUM: acl: support IPv6 address matching
1911 - REORG: stream_interface: create a struct sock_ops to hold socket operations
1912 - REORG/MEDIUM: move protocol->{read,write} to sock_ops
1913 - REORG/MEDIUM: stream_interface: initialize socket ops from descriptors
1914 - REORG/MEDIUM: replace stream interface protocol functions by a proto pointer
1915 - REORG/MEDIUM: move the default accept function from sockstream to protocols.c
1916 - MEDIUM: proto_tcp: remove src6 and dst6 pattern fetch methods
1917 - BUG/MINOR: http: error snapshots are wrong if buffer wraps
1918 - BUG/MINOR: http: ensure that msg->err_pos is always relative to buf->p
1919 - MEDIUM: http: improve error capture reports
1920 - MINOR: acl: add the cook_val() match to match a cookie against an integer
1921 - BUG/MEDIUM: send_proxy: fix initialisation of send_proxy_ofs
1922 - MEDIUM: memory: add the ability to poison memory at run time
1923 - BUG/MEDIUM: log: ensure that unique_id is properly initialized
1924 - MINOR: cfgparse: use a common errmsg pointer for all parsers
1925 - MEDIUM: cfgparse: make backend_parse_balance() use memprintf to report errors
1926 - MEDIUM: cfgparse: use the new error reporting framework for remaining cfg_keywords
1927 - MINOR: http: replace http_message_realign() with buffer_slow_realign()
1928
Willy Tarreau9eeb57b2012-03-26 06:15:29 +020019292012/03/26 : 1.5-dev8
1930 - MINOR: patch for minor typo (ressources/resources)
1931 - MEDIUM: http: add support for sending the server's name in the outgoing request
1932 - DOC: mention that default checks are TCP connections
1933 - BUG/MINOR: fix options forwardfor if-none when an alternative header name is specified
1934 - CLEANUP: Make check_statuses, analyze_statuses and process_chk static
1935 - CLEANUP: Fix HCHK spelling errors
1936 - BUG/MINOR: fix typo in processing of http-send-name-header
1937 - MEDIUM: log: Use linked lists for loggers
1938 - BUILD: fix declaration inside a scope block
1939 - REORG: log: split send_log function
1940 - MINOR: config: Parse the string of the log-format config keyword
1941 - MINOR: add ultoa, ulltoa, ltoa, lltoa implementations
1942 - MINOR: Date and time fonctions that don't use snprintf
1943 - MEDIUM: log: make http_sess_log use log_format
1944 - DOC: log-format documentation
1945 - MEDIUM: log: use log_format for mode tcplog
1946 - MEDIUM: log-format: backend source address %Bi %Bp
1947 - BUG/MINOR: log-format: fix %o flag
1948 - BUG/MEDIUM: bad length in log_format and __send_log
1949 - MINOR: logformat %st is signed
1950 - BUILD/MINOR: fix the source URL in the spec file
1951 - DOC: acl is http_first_req, not http_req_first
1952 - BUG/MEDIUM: don't trim last spaces from headers consisting only of spaces
1953 - MINOR: acl: add new matches for header/path/url length
1954 - BUILD: halog: make halog build on solaris
1955 - BUG/MINOR: don't use a wrong port when connecting to a server with mapped ports
1956 - MINOR: remove the client/server side distinction in SI addresses
1957 - MINOR: halog: add support for matching queued requests
1958 - DOC: indicate that cookie "prefix" and "indirect" should not be mixed
1959 - OPTIM/MINOR: move struct sockaddr_storage to the tail of structs
1960 - OPTIM/MINOR: make it possible to change pipe size (tune.pipesize)
1961 - BUILD/MINOR: silent a build warning in src/pipe.c (fcntl)
1962 - OPTIM/MINOR: move the hdr_idx pools out of the proxy struct
1963 - MEDIUM: tune.http.maxhdr makes it possible to configure the maximum number of HTTP headers
1964 - BUG/MINOR: fix a segfault when parsing a config with undeclared peers
1965 - CLEANUP: rename possibly confusing struct field "tracked"
1966 - BUG/MEDIUM: checks: fix slowstart behaviour when server tracking is in use
1967 - MINOR: config: tolerate server "cookie" setting in non-HTTP mode
1968 - MEDIUM: buffers: add some new primitives and rework existing ones
1969 - BUG: buffers: don't return a negative value on buffer_total_space_res()
1970 - MINOR: buffers: make buffer_pointer() support negative pointers too
1971 - CLEANUP: kill buffer_replace() and use an inline instead
1972 - BUG: tcp: option nolinger does not work on backends
1973 - CLEANUP: ebtree: remove a few annoying signedness warnings
1974 - CLEANUP: ebtree: clarify licence and update to 6.0.6
1975 - CLEANUP: ebtree: remove 4-year old harmless typo in duplicates insertion code
1976 - CLEANUP: ebtree: remove another typo, a wrong initialization in insertion code
1977 - BUG: ebtree: ebst_lookup() could return the wrong entry
1978 - OPTIM: stream_sock: reduce the amount of in-flight spliced data
1979 - OPTIM: stream_sock: save a failed recv syscall when splice returns EAGAIN
1980 - MINOR: acl: add support for TLS server name matching using SNI
1981 - BUG: http: re-enable TCP quick-ack upon incomplete HTTP requests
1982 - BUG: proto_tcp: don't try to bind to a foreign address if sin_family is unknown
1983 - MINOR: pattern: export the global temporary pattern
1984 - CLEANUP: patterns: get rid of pattern_data_setstring()
1985 - MEDIUM: acl: use temp_pattern to store fetched information in the "method" match
1986 - MINOR: acl: include pattern.h to make pattern migration more transparent
1987 - MEDIUM: pattern: change the pattern data integer from unsigned to signed
1988 - MEDIUM: acl: use temp_pattern to store any integer-type information
1989 - MEDIUM: acl: use temp_pattern to store any address-type information
1990 - CLEANUP: acl: integer part of acl_test is not used anymore
1991 - MEDIUM: acl: use temp_pattern to store any string-type information
1992 - CLEANUP: acl: remove last data fields from the acl_test struct
1993 - MEDIUM: http: replace get_ip_from_hdr2() with http_get_hdr()
1994 - MEDIUM: patterns: the hdr() pattern is now of type string
1995 - DOC: add minimal documentation on how ACLs work internally
1996 - DOC: add a coding-style file
1997 - OPTIM: halog: keep a fast path for the lines-count only
1998 - CLEANUP: silence a warning when building on sparc
1999 - BUG: http: tighten the list of allowed characters in a URI
2000 - MEDIUM: http: block non-ASCII characters in URIs by default
2001 - DOC: add some documentation from RFC3986 about URI format
2002 - BUG/MINOR: cli: correctly remove the whole table on "clear table"
2003 - BUG/MEDIUM: correctly disable servers tracking another disabled servers.
2004 - BUG/MEDIUM: zero-weight servers must not dequeue requests from the backend
2005 - MINOR: halog: add some help on the command line
2006 - BUILD: fix build error on FreeBSD
2007 - BUG: fix double free in peers config error path
2008 - MEDIUM: improve config check return codes
2009 - BUILD: make it possible to look for pcre in the default system paths
2010 - MINOR: config: emit a warning when 'default_backend' masks servers
2011 - MINOR: backend: rework the LC definition to support other connection-based algos
2012 - MEDIUM: backend: add the 'first' balancing algorithm
2013 - BUG: fix httplog trailing LF
2014 - MEDIUM: increase chunk-size limit to 2GB-1
2015 - BUG: queue: fix dequeueing sequence on HTTP keep-alive sessions
2016 - BUG: http: disable TCP delayed ACKs when forwarding content-length data
2017 - BUG: checks: fix server maintenance exit sequence
2018 - BUG/MINOR: stream_sock: don't remove BF_EXPECT_MORE and BF_SEND_DONTWAIT on partial writes
2019 - DOC: enumerate valid status codes for "observe layer7"
2020 - MINOR: buffer: switch a number of buffer args to const
2021 - CLEANUP: silence signedness warning in acl.c
2022 - BUG: stream_sock: si->release was not called upon shutw()
2023 - MINOR: log: use "%ts" to log term status only and "%tsc" to log with cookie
2024 - BUG/CRITICAL: log: fix risk of crash in development snapshot
2025 - BUG/MAJOR: possible crash when using capture headers on TCP frontends
2026 - MINOR: config: disable header captures in TCP mode and complain
2027
Willy Tarreau60612eb2011-09-10 23:43:11 +020020282011/09/10 : 1.5-dev7
2029 - [BUG] fix binary stick-tables
2030 - [MINOR] http: *_dom matching header functions now also split on ":"
2031 - [BUG] checks: fix support of Mysqld >= 5.5 for mysql-check
2032 - [MINOR] acl: add srv_conn acl to count connections on a specific backend server
2033 - [MINOR] check: add redis check support
2034 - [DOC] small fixes to clearly distinguish between keyword and variables
2035 - [MINOR] halog: add support for termination code matching (-tcn/-TCN)
2036 - [DOC] Minor spelling fixes and grammatical enhancements
2037 - [CLEANUP] dumpstats: make symbols static where possible
2038 - [MINOR] Break out dumping table
2039 - [MINOR] Break out processing of clear table
2040 - [MINOR] Allow listing of stick table by key
2041 - [MINOR] Break out all stick table socat command parsing
2042 - [MINOR] More flexible clearing of stick table
2043 - [MINOR] Allow showing and clearing by key of ipv6 stick tables
2044 - [MINOR] Allow showing and clearing by key of integer stick tables
2045 - [MINOR] Allow showing and clearing by key of string stick tables
2046 - [CLEANUP] Remove assigned but unused variables
2047 - [CLEANUP] peers.h: fix declarations
2048 - [CLEANUP] session.c: Make functions static where possible
2049 - [MINOR] Add active connection list to server
2050 - [MINOR] Allow shutdown of sessions when a server becomes unavailable
2051 - [MINOR] Add down termination condition
2052 - [MINOR] Make appsess{,ion}_refresh static
2053 - [MINOR] Add rdp_cookie pattern fetch function
2054 - [CLEANUP] Remove unnecessary casts
2055 - [MINOR] Add non-stick server option
2056 - [MINOR] Consistently use error in tcp_parse_tcp_req()
2057 - [MINOR] Consistently free expr on error in cfg_parse_listen()
2058 - [MINOR] Free rdp_cookie_name on denint()
2059 - [MINOR] Free tcp rules on denint()
2060 - [MINOR] Free stick table pool on denint()
2061 - [MINOR] Free stick rules on denint()
2062 - [MEDIUM] Fix stick-table replication on soft-restart
2063 - [MEDIUM] Correct ipmask() logic
2064 - [MINOR] Correct type in table dump examples
2065 - [MINOR] Fix build error in stream_int_register_handler()
2066 - [MINOR] Use DPRINTF in assign_server()
2067 - [BUG] checks: http-check expect could fail a check on multi-packet responses
2068 - [DOC] fix minor typo in the "dispatch" doc
2069 - [BUG] proto_tcp: fix address binding on remote source
2070 - [MINOR] http: don't report the "haproxy" word on the monitoring response
2071 - [REORG] http: move HTTP error codes back to proto_http.h
2072 - [MINOR] http: make the "HTTP 200" status code configurable.
2073 - [MINOR] http: partially revert the chunking optimization for now
2074 - [MINOR] stream_sock: always clear BF_EXPECT_MORE upon complete transfer
2075 - [CLEANUP] stream_sock: remove unneeded FL_TCP and factor out test
2076 - [MEDIUM] http: add support for "http-no-delay"
2077 - [OPTIM] http: optimize chunking again in non-interactive mode
2078 - [OPTIM] stream_sock: avoid fast-forwarding of partial data
2079 - [OPTIM] stream_sock: don't use splice on too small payloads
2080 - [MINOR] config: make it possible to specify a cookie even without a server
2081 - [BUG] stats: support url-encoded forms
2082 - [MINOR] config: automatically compute a default fullconn value
2083 - [CLEANUP] config: remove some left-over printf debugging code from previous patch
2084 - [DOC] add missing entry or stick store-response
2085 - [MEDIUM] http: add support for 'cookie' and 'set-cookie' patterns
2086 - [BUG] halog: correctly handle truncated last line
2087 - [MINOR] halog: make SKIP_CHAR stop on field delimiters
2088 - [MINOR] halog: add support for HTTP log matching (-H)
2089 - [MINOR] halog: gain back performance before SKIP_CHAR fix
2090 - [OPTIM] halog: cache some common fields positions
2091 - [OPTIM] halog: check once for correct line format and reuse the pointer
2092 - [OPTIM] halog: remove many 'if' by using a function pointer for the filters
2093 - [OPTIM] halog: remove support for tab delimiters in input data
2094 - [BUG] session: risk of crash on out of memory (1.5-dev regression)
2095 - [MINOR] session: try to emit a 500 response on memory allocation errors
2096 - [OPTIM] stream_sock: reduce the default number of accepted connections at once
2097 - [BUG] stream_sock: disable listener when system resources are exhausted
2098 - [MEDIUM] proxy: add a PAUSED state to listeners and move socket tricks out of proxy.c
2099 - [BUG] stream_sock: ensure orphan listeners don't accept too many connections
2100 - [MINOR] listeners: add listen_full() to mark a listener full
2101 - [MINOR] listeners: add support for queueing resource limited listeners
2102 - [MEDIUM] listeners: put listeners in queue upon resource shortage
2103 - [MEDIUM] listeners: queue proxy-bound listeners at the proxy's
2104 - [MEDIUM] listeners: don't stop proxies when global maxconn is reached
2105 - [MEDIUM] listeners: don't change listeners states anymore in maintain_proxies
2106 - [CLEANUP] proxy: rename a few proxy states (PR_STIDLE and PR_STRUN)
2107 - [MINOR] stats: report a "WAITING" state for sockets waiting for resource
2108 - [MINOR] proxy: make session rate-limit more accurate
2109 - [MINOR] sessions: only wake waiting listeners up if rate limit is OK
2110 - [BUG] proxy: peers must only be stopped once, not upon every call to maintain_proxies
2111 - [CLEANUP] proxy: merge maintain_proxies() operation inside a single loop
2112 - [MINOR] task: new function task_schedule() to schedule a wake up
2113 - [MAJOR] proxy: finally get rid of maintain_proxies()
2114 - [BUG] proxy: stats frontend and peers were missing many initializers
2115 - [MEDIUM] listeners: add a global listener management task
2116 - [MINOR] proxy: make findproxy() return proxies from numeric IDs too
2117 - [DOC] fix typos, "#" is a sharp, not a dash
2118 - [MEDIUM] stats: add support for changing frontend's maxconn at runtime
2119 - [MEDIUM] checks: group health checks methods by values and save option bits
2120 - [MINOR] session-counters: add the ability to clear the counters
2121 - [BUG] check: http-check expect + regex would crash in defaults section
2122 - [MEDIUM] http: make x-forwarded-for addition conditional
2123 - [REORG] build: move syscall redefinition to specific places
2124 - [CLEANUP] update the year in the copyright banner
2125 - [BUG] possible crash in 'show table' on stats socket
2126 - [BUG] checks: use the correct destination port for sending checks
2127 - [BUG] backend: risk of picking a wrong port when mapping is used with crossed families
2128 - [MINOR] make use of set_host_port() and get_host_port() to get rid of family mismatches
2129 - [DOC] fixed a few "sensible" -> "sensitive" errors
2130 - [MINOR] make use of addr_to_str() and get_host_port() to replace many inet_ntop()
2131 - [BUG] http: trailing white spaces must also be trimmed after headers
2132 - [MINOR] stats: display "<NONE>" instead of the frontend name when unknown
2133 - [MINOR] http: take a capture of too large requests and responses
2134 - [MINOR] http: take a capture of truncated responses
2135 - [MINOR] http: take a capture of bad content-lengths.
2136 - [DOC] add a few old and uncommitted docs
2137 - [CLEANUP] cfgparse: fix reported options for the "bind" keyword
2138 - [MINOR] halog: add -hs/-HS to filter by HTTP status code range
2139 - [MINOR] halog: support backslash-escaped quotes
2140 - [CLEANUP] remove dirty left-over of a debugging message
2141 - [MEDIUM] stats: disable complex socket reservation for stats socket
2142 - [CLEANUP] remove a useless test in manage_global_listener_queue()
2143 - [MEDIUM] stats: add the "set maxconn" setting to the command line interface
2144 - [MEDIUM] add support for global.maxconnrate to limit the per-process conn rate.
2145 - [MINOR] stats: report the current and max global connection rates
2146 - [MEDIUM] stats: add the ability to adjust the global maxconnrate
2147 - [BUG] peers: don't pre-allocate 65000 connections to each peer
2148 - [MEDIUM] don't limit peers nor stats socket to maxconn nor maxconnrate
2149 - [BUG] peers: the peer frontend must not emit any log
2150 - [CLEANUP] proxy: make pause_proxy() perform the required controls and emit the logs
2151 - [BUG] peers: don't keep a peers section which has a NULL frontend
2152 - [BUG] peers: ensure the peers are resumed if they were paused
2153 - [MEDIUM] stats: add the ability to enable/disable/shutdown a frontend at runtime
2154 - [MEDIUM] session: make session_shutdown() an independant function
2155 - [MEDIUM] stats: offer the possibility to kill a session from the CLI
2156 - [CLEANUP] stats: centralize tests for backend/server inputs on the CLI
2157 - [MEDIUM] stats: offer the possibility to kill sessions by server
2158 - [MINOR] halog: do not consider byte 0x8A as end of line
2159 - [MINOR] frontend: ensure debug message length is always initialized
2160 - [OPTIM] halog: make fgets parse more bytes by blocks
2161 - [OPTIM] halog: add assembly version of the field lookup code
2162 - [MEDIUM] poll: add a measurement of idle vs work time
2163 - [CLEANUP] startup: report only the basename in the usage message
2164 - [MINOR] startup: add an option to change to a new directory
2165 - [OPTIM] task: don't scan the run queue if we know it's empty
2166 - [BUILD] stats: stdint is not present on solaris
2167 - [DOC] update the README file to reflect new naming rules for patches
2168 - [MINOR] stats: report the number of requests intercepted by the frontend
2169 - [DOC] update ROADMAP file
2170
Willy Tarreau04df1122011-04-08 00:56:41 +020021712011/04/08 : 1.5-dev6
2172 - [BUG] stream_sock: use get_addr_len() instead of sizeof() on sockaddr_storage
2173 - [BUG] TCP source tracking was broken with IPv6 changes
2174 - [BUG] stick-tables did not work when converting IPv6 to IPv4
2175 - [CRITICAL] fix risk of crash when dealing with space in response cookies
2176
Willy Tarreaub06ed2c2011-03-29 01:10:33 +020021772011/03/29 : 1.5-dev5
2178 - [BUG] standard: is_addr return value for IPv4 was inverted
2179 - [MINOR] update comment about IPv6 support for server
2180 - [MEDIUM] use getaddrinfo to resolve names if gethostbyname fail
2181 - [DOC] update IPv6 support for bind
2182 - [DOC] document IPv6 support for server
2183 - [DOC] fix a minor typo
2184 - [MEDIUM] IPv6 support for syslog
2185 - [DOC] document IPv6 support for syslog
2186 - [MEDIUM] IPv6 support for stick-tables
2187 - [DOC] document IPv6 support for stick-tables
2188 - [DOC] update ROADMAP file
2189 - [BUG] session: src_conn_cur was returning src_conn_cnt instead
2190 - [MINOR] frontend: add a make_proxy_line function
2191 - [MEDIUM] stream_sock: add support for sending the proxy protocol header line
2192 - [MEDIUM] server: add support for the "send-proxy" option
2193 - [DOC] update the spec on the proxy protocol
2194 - [BUILD] proto_tcp: fix build issue with CTTPROXY
2195 - [DOC] update ROADMAP file
2196 - [MEDIUM] config: rework the IPv4/IPv6 address parser to support host-only addresses
2197 - [MINOR] cfgparse: better report wrong listening addresses and make use of str2sa_range
2198 - [BUILD] add the USE_GETADDRINFO build option
2199 - [TESTS] provide a test case for various address formats
2200 - [BUG] session: conn_retries was not always initialized
2201 - [BUG] log: retrieve the target from the session, not the SI
2202 - [BUG] http: fix possible incorrect forwarded wrapping chunk size (take 2)
2203 - [MINOR] tools: add two macros MID_RANGE and MAX_RANGE
2204 - [BUG] http: fix content-length handling on 32-bit platforms
2205 - [OPTIM] buffers: uninline buffer_forward()
2206 - [BUG] stream_sock: fix handling for server side PROXY protocol
2207 - [MINOR] acl: add support for table_cnt and table_avl matches
2208 - [DOC] update ROADMAP file
2209
Willy Tarreaue0052cc2011-03-13 22:15:02 +010022102011/03/13 : 1.5-dev4
2211 - [MINOR] cfgparse: Check whether the path given for the stats socket actually fits into the sockaddr_un structure to avoid truncation.
2212 - [MINOR] unix sockets : inherits the backlog size from the listener
2213 - [CLEANUP] unix sockets : move create_uxst_socket() in uxst_bind_listener()
2214 - [DOC] fix a minor typo
2215 - [DOC] fix ignore-persist documentation
2216 - [MINOR] add warnings on features not compatible with multi-process mode
2217 - [BUG] http: fix http-pretend-keepalive and httpclose/tunnel mode
2218 - [MINOR] stats: add support for several packets in stats admin
2219 - [BUG] stats: admin commands must check the proxy state
2220 - [BUG] stats: admin web interface must check the proxy state
2221 - [MINOR] http: add pattern extraction method to stick on query string parameter
2222 - [MEDIUM] add internal support for IPv6 server addresses
2223 - [MINOR] acl: add be_id/srv_id to match backend's and server's id
2224 - [MINOR] log: add support for passing the forwarded hostname
2225 - [MINOR] log: ability to override the syslog tag
2226 - [MINOR] checks: add PostgreSQL health check
2227 - [DOC] update ROADMAP file
2228 - [BUILD] pattern: use 'int' instead of 'int32_t'
2229 - [OPTIM] linux: add support for bypassing libc to force using vsyscalls
2230 - [BUG] debug: report the correct poller list in verbose mode
2231 - [BUG] capture: do not capture a cookie if there is no memory left
2232 - [BUG] appsession: fix possible double free in case of out of memory
2233 - [CRITICAL] cookies: mixing cookies in indirect mode and appsession can crash the process
2234 - [BUG] http: correctly update the header list when removing two consecutive headers
2235 - [BUILD] add the CPU=native and ARCH=32/64 build options
2236 - [BUILD] add -fno-strict-aliasing to fix warnings with gcc >= 4.4
2237 - [CLEANUP] hash: move the avalanche hash code globally available
2238 - [MEDIUM] hash: add support for an 'avalanche' hash-type
2239 - [DOC] update roadmap file
2240 - [BUG] http: do not re-enable the PROXY analyser on keep-alive
2241 - [OPTIM] http: don't send each chunk in a separate packet
2242 - [DOC] fix minor typos reported recently in the peers section
2243 - [DOC] fix another typo in the doc
2244 - [MINOR] stats: report HTTP message state and buffer flags in error dumps
2245 - [BUG] http chunking: don't report a parsing error on connection errors
2246 - [BUG] stream_interface: truncate buffers when sending error messages
2247 - [MINOR] http: support wrapping messages in error captures
2248 - [MINOR] http: capture incorrectly chunked message bodies
2249 - [MINOR] stats: add global event ID and count
2250 - [BUG] http: analyser optimizations broke pipelining
2251 - [CLEANUP] frontend: only apply TCP-specific settings to TCP/TCP6 sockets
2252 - [BUG] http: fix incorrect error reporting during data transfers
2253 - [CRITICAL] session: correctly leave turn-around and queue states on abort
2254 - [BUG] session: release slot before processing pending connections
2255 - [MINOR] tcp: add support for dynamic MSS setting
2256 - [BUG] stick-table: correctly terminate string keys during lookups
2257 - [BUG] acl: fix handling of empty lines in pattern files
2258 - [BUG] stick-table: use the private buffer when padding strings
2259 - [BUG] ebtree: fix ebmb_lookup() with len smaller than the tree's keys
2260 - [OPTIM] ebtree: ebmb_lookup: reduce stack usage by moving the return code out of the loop
2261 - [OPTIM] ebtree: inline ebst_lookup_len and ebis_lookup_len
2262 - [REVERT] undo the stick-table string key lookup fixes
2263 - [MINOR] http: improve url_param pattern extraction to ignore empty values
2264 - [BUILD] frontend: shut a warning with TCP_MAXSEG
2265 - [BUG] http: update the header list's tail when removing the last header
2266 - [DOC] fix minor typo in the proxy protocol doc
2267 - [DOC] fix typos (http-request instead of http-check)
2268 - [BUG] http: use correct ACL pointer when evaluating authentication
2269 - [BUG] cfgparse: correctly count one socket per port in ranges
2270 - [BUG] startup: set the rlimits before binding ports, not after.
2271 - [BUG] acl: srv_id must return no match when the server is NULL
2272 - [MINOR] acl: add ability to check for internal response-only parameters
2273 - [MINOR] acl: srv_id is only valid in responses
2274 - [MINOR] config: warn if response-only conditions are used in "redirect" rules
2275 - [BUG] acl: fd leak when reading patterns from file
2276 - [DOC] fix minor typo in "usesrc"
2277 - [BUG] http: fix possible incorrect forwarded wrapping chunk size
2278 - [BUG] http: fix computation of message body length after forwarding has started
2279 - [BUG] http: balance url_param did not work with first parameters on POST
2280 - [TESTS] update the url_param regression test to test check_post too
2281 - [DOC] update ROADMAP
2282 - [DOC] internal: reflect the fact that SI_ST_ASS is transient
2283 - [BUG] config: don't crash on empty pattern files.
2284 - [MINOR] stream_interface: make use of an applet descriptor for IO handlers
2285 - [REORG] stream_interface: move the st0, st1 and private members to the applet
2286 - [REORG] stream_interface: split the struct members in 3 parts
2287 - [REORG] session: move client and server address to the stream interface
2288 - [REORG] tcp: make tcpv4_connect_server() take the target address from the SI
2289 - [MEDIUM] stream_interface: store the target pointer and type
2290 - [CLEANUP] stream_interface: remove the applet.handler pointer
2291 - [MEDIUM] log: take the logged server name from the stream interface
2292 - [CLEANUP] session: remove data_source from struct session
2293 - [CLEANUP] stats: make all dump functions only rely on the stream interface
2294 - [REORG] session: move the data_ctx struct to the stream interface's applet
2295 - [MINOR] proxy: add PR_O2_DISPATCH to detect dispatch mode
2296 - [MINOR] cfgparse: only keep one of dispatch, transparent, http_proxy
2297 - [MINOR] session: add a pointer to the new target into the session
2298 - [MEDIUM] session: remove s->prev_srv which is not needed anymore
2299 - [CLEANUP] stream_interface: use inline functions to manipulate targets
2300 - [MAJOR] session: remove the ->srv pointer from struct session
2301 - [MEDIUM] stats: split frontend and backend stats
2302 - [MEDIUM] http: always evaluate http-request rules before stats http-request
2303 - [REORG] http: move the http-request rules to proto_http
2304 - [BUG] http: stats were not incremented on http-request deny
2305 - [MINOR] checks: report it if checks fail due to socket creation error
2306
Willy Tarreau442e8342010-11-11 23:29:35 +010023072010/11/11 : 1.5-dev3
2308 - [DOC] fix http-request documentation
2309 - [MEDIUM] enable/disable servers from the stats web interface
2310 - [MEDIUM] stats: add an admin level
2311 - [DOC] stats: document the "stats admin" statement
2312 - [MINOR] startup: print the proxy socket which caused an error
2313 - [CLEANUP] Remove unneeded chars allocation
2314 - [MINOR] config: detect options not supported due to compilation options
2315 - [MINOR] Add pattern's fetchs payload and payload_lv
2316 - [MINOR] frontend: improve accept-proxy header parsing
2317 - [MINOR] frontend: add tcpv6 support on accept-proxy bind
2318 - [MEDIUM] Enhance message errors management on binds
2319 - [MINOR] Manage unix socket source field on logs
2320 - [MINOR] Manage unix socket source field on session dump on sock stats
2321 - [MINOR] Support of unix listener sockets for debug and log event messages on frontend.c
2322 - [MINOR] Add some tests on sockets family for port remapping and mode transparent.
2323 - [MINOR] Manage socket type unix for some logs
2324 - [MINOR] Enhance controls of socket's family on acls and pattern fetch
2325 - [MINOR] Support listener's sockets unix on http logs.
2326 - [MEDIUM] Add supports of bind on unix sockets.
2327 - [BUG] stick table purge failure if size less than 255
2328 - [BUG] stick table entries expire on counters updates/read or show table, even if there is no "expire" parameter
2329 - [MEDIUM] Implement tcp inspect response rules
2330 - [DOC] tcp-response content and inspect
2331 - [MINOR] new acls fetch req_ssl_hello_type and rep_ssl_hello_type
2332 - [DOC] acls rep_ssl_hello and req_ssl_hello
2333 - [MEDIUM] Create new protected pattern types CONSTSTRING and CONSTDATA to force memcpy if data from protected areas need to be manipulated.
2334 - [DOC] new type binary in stick-table
2335 - [DOC] stick store-response and new patterns payload and payload_lv
2336 - [MINOR] Manage all types (ip, integer, string, binary) on cli "show table" command
2337 - [MEDIUM] Create updates tree on stick table to manage sync.
2338 - [MAJOR] Add new files src/peer.c, include/proto/peers.h and include/types/peers.h for sync stick table management
2339 - [MEDIUM] Manage peers section parsing and stick table registration on peers.
2340 - [MEDIUM] Manage soft stop on peers proxy
2341 - [DOC] add documentation for peers section
2342 - [MINOR] checks: add support for LDAPv3 health checks
2343 - [MINOR] add better support to "mysql-check"
2344 - [BUG] Restore info about available active/backup servers
2345 - [CONTRIB] Update haproxy.pl
2346 - [CONTRIB] Update Cacti Tempates
2347 - [CONTRIB] add templates for Cacti.
2348 - [BUG] http: don't consider commas as a header delimitor within quotes
2349 - [MINOR] support a global jobs counter
2350 - [DOC] add a summary about cookie incompatibilities between specs and browsers
2351 - [DOC] fix description of cookie "insert" and "indirect" modes
2352 - [MEDIUM] http: fix space handling in the request cookie parser
2353 - [MEDIUM] http: fix space handling in the response cookie parser
2354 - [DOC] fix typo in the queue() definition (backend, not frontend)
2355 - [BUG] deinit: unbind listeners before freeing them
2356 - [BUG] stream_interface: only call si->release when both dirs are closed
2357 - [MEDIUM] buffers: rework the functions to exchange between SI and buffers
2358 - [DOC] fix typo in the avg_queue() and be_conn() definition (backend, not frontend)
2359 - [MINOR] halog: add '-tc' to sort by termination codes
2360 - [MINOR] halog: skip non-traffic logs for -st and -tc
2361 - [BUG] stream_sock: cleanly disable the listener in case of resource shortage
2362 - [BUILD] stream_sock: previous fix lacked the #include, causing a warning.
2363 - [DOC] bind option is "defer-accept", not "defer_accept"
2364 - [DOC] missing index entry for http-check send-state
2365 - [DOC] tcp-request inspect-delay is for backends too
2366 - [BUG] ebtree: string_equal_bits() could return garbage on identical strings
2367 - [BUG] stream_sock: try to flush any extra pending request data after a POST
2368 - [BUILD] proto_http: eliminate some build warnings with gcc-2.95
2369 - [MEDIUM] make it possible to combine http-pretend-keepalived with httpclose
2370 - [MEDIUM] tcp-request : don't wait for inspect-delay to expire when the buffer is full
2371 - [MEDIUM] checks: add support for HTTP contents lookup
2372 - [TESTS] add test-check-expect to test various http-check methods
2373 - [MINOR] global: add "tune.chksize" to change the default check buffer size
2374 - [MINOR] cookie: add options "maxidle" and "maxlife"
2375 - [MEDIUM] cookie: support client cookies with some contents appended to their value
2376 - [MINOR] http: make some room in the transaction flags to extend cookies
2377 - [MINOR] cookie: add the expired (E) and old (O) flags for request cookies
2378 - [MEDIUM] cookie: reassign set-cookie status flags to store more states
2379 - [MINOR] add encode/decode function for 30-bit integers from/to base64
2380 - [MEDIUM] cookie: check for maxidle and maxlife for incoming dated cookies
2381 - [MEDIUM] cookie: set the date in the cookie if needed
2382 - [DOC] document the cookie maxidle and maxlife parameters
2383 - [BUG] checks: don't log backend down for all zero-weight servers
2384 - [MEDIUM] checks: set server state to one state from failure when leaving maintenance
2385 - [BUG] config: report correct keywords for "observe"
2386 - [MINOR] checks: ensure that we can inherit binary checks from the defaults section
2387 - [MINOR] acl: add the http_req_first match
2388 - [DOC] fix typos about bind-process syntax
2389 - [BUG] cookie: correctly unset default cookie parameters
2390 - [MINOR] cookie: add support for the "preserve" option
2391 - [BUG] ebtree: fix duplicate strings insertion
2392 - [CONTRIB] halog: report per-url counts, errors and times
2393 - [CONTRIB] halog: minor speed improvement in timer parser
2394 - [MINOR] buffers: add a new request analyser flag for PROXY mode
2395 - [MINOR] listener: add the "accept-proxy" option to the "bind" keyword
2396 - [MINOR] standard: add read_uint() to parse a delimited unsigned integer
2397 - [MINOR] standard: change arg type from const char* to char*
2398 - [MINOR] frontend: add a new analyser to parse a proxied connection
2399 - [MEDIUM] session: call the frontend_decode_proxy analyser on proxied connections
2400 - [DOC] add the proxy protocol's specifications
2401 - [DOC] document the 'accept-proxy' bind option
2402 - [MINOR] cfgparse: report support of <path> for the 'bind' statements
2403 - [DOC] add references to unix socket handling
2404 - [MINOR] move MAXPATHLEN definition to compat.h
2405 - [MEDIUM] unix sockets: cleanup the error reporting path
2406 - [BUG] session: don't stop forwarding of data upon last packet
2407 - [CLEANUP] accept: replace some inappropriate Alert() calls with send_log()
2408 - [BUILD] peers: shut a printf format warning (key_size is a size_t)
2409 - [BUG] accept: don't close twice upon error
2410 - [OPTIM] session: don't recheck analysers when buffer flags have not changed
2411 - [OPTIM] stream_sock: don't clear FDs that are already cleared
2412 - [BUG] proto_tcp: potential bug on pattern fetch dst and dport
2413
Willy Tarreau37242fa2010-08-28 19:21:00 +020024142010/08/28 : 1.5-dev2
2415 - [MINOR] startup: release unused structs after forking
2416 - [MINOR] startup: don't wait for nothing when no old pid remains
2417 - [CLEANUP] reference product branch 1.5
2418 - [MEDIUM] signals: add support for registering functions and tasks
2419 - [MEDIUM] signals: support redistribution of signal zero when stopping
2420 - [BUG] http: don't set auto_close if more data are expected
2421
Willy Tarreaufc815fd2010-08-25 10:56:53 +020024222010/08/25 : 1.5-dev1
2423 - [BUG] stats: session rate limit gets garbaged in the stats
2424 - [DOC] mention 'option http-server-close' effect in Tq section
2425 - [DOC] summarize and highlight persistent connections behaviour
2426 - [DOC] add configuration samples
2427 - [BUG] http: dispatch and http_proxy modes were broken for a long time
2428 - [BUG] http: the transaction must be initialized even in TCP mode
2429 - [BUG] tcp: dropped connections must be counted as "denied" not "failed"
2430 - [BUG] consistent hash: balance on all servers, not only 2 !
2431 - [CONTRIB] halog: report per-server status codes, errors and response times
2432 - [BUG] http: the transaction must be initialized even in TCP mode (part 2)
2433 - [BUG] client: always ensure to zero rep->analysers
2434 - [BUG] session: clear BF_READ_ATTACHED before next I/O
2435 - [BUG] http: automatically close response if req is aborted
2436 - [BUG] proxy: connection rate limiting was eating lots of CPU
2437 - [BUG] http: report correct flags in case of client aborts during body
2438 - [TESTS] refine non-regression tests and add 4 new tests
2439 - [BUG] debug: wrong pointer was used to report a status line
2440 - [BUG] debug: correctly report truncated messages
2441 - [DOC] document the "dispatch" keyword
2442 - [BUG] stick_table: fix possible memory leak in case of connection error
2443 - [CLEANUP] acl: use 'L6' instead of 'L4' in ACL flags relying on contents
2444 - [MINOR] accept: count the incoming connection earlier
2445 - [CLEANUP] tcp: move some non tcp-specific layer6 processing out of proto_tcp
2446 - [CLEANUP] client: move some ACLs away to their respective locations
2447 - [CLEANUP] rename client -> frontend
2448 - [MEDIUM] separate protocol-level accept() from the frontend's
2449 - [MINOR] proxy: add a list to hold future layer 4 rules
2450 - [MEDIUM] config: parse tcp layer4 rules (tcp-request accept/reject)
2451 - [MEDIUM] tcp: check for pure layer4 rules immediately after accept()
2452 - [OPTIM] frontend: tell the compiler that errors are unlikely to occur
2453 - [MEDIUM] frontend: check for LI_O_TCP_RULES in the listener
2454 - [MINOR] frontend: only check for monitor-net rules if LI_O_CHK_MONNET is set
2455 - [CLEANUP] buffer->cto is not used anymore
2456 - [MEDIUM] session: finish session establishment sequence in with I/O handlers
2457 - [MEDIUM] session: initialize server-side timeouts after connect()
2458 - [MEDIUM] backend: initialize the server stream_interface upon connect()
2459 - [MAJOR] frontend: don't initialize the server-side stream_int anymore
2460 - [MEDIUM] session: move the conn_retries attribute to the stream interface
2461 - [MEDIUM] session: don't assign conn_retries upon accept() anymore
2462 - [MINOR] frontend: rely on the frontend and not the backend for INDEPSTR
2463 - [MAJOR] frontend: reorder the session initialization upon accept
2464 - [MINOR] proxy: add an accept() callback for the application layer
2465 - [MAJOR] frontend: split accept() into frontend_accept() and session_accept()
2466 - [MEDIUM] stats: rely on the standard session_accept() function
2467 - [MINOR] buffer: refine the flags that may wake an analyser up.
2468 - [MINOR] stream_sock: don't dereference a non-existing frontend
2469 - [MINOR] session: differenciate between accepted connections and received connections
2470 - [MEDIUM] frontend: count the incoming connection earlier
2471 - [MINOR] frontend: count denied TCP requests separately
2472 - [CLEANUP] stick_table: add/clarify some comments
2473 - [BUILD] memory: add a few missing parenthesis to the pool management macros
2474 - [MINOR] stick_table: add support for variable-sized data
2475 - [CLEANUP] stick_table: rename some stksess struct members to avoid confusion
2476 - [CLEANUP] stick_table: move pattern to key functions to stick_table.c
2477 - [MEDIUM] stick_table: add room for extra data types
2478 - [MINOR] stick_table: add support for "conn_cum" data type.
2479 - [MEDIUM] stick_table: don't overwrite data when storing an entry
2480 - [MINOR] config: initialize stick tables after all the parsing
2481 - [MINOR] stick_table: provide functions to return stksess data from a type
2482 - [MEDIUM] stick_table: move the server ID to a generic data type
2483 - [MINOR] stick_table: enable it for frontends too
2484 - [MINOR] stick_table: export the stick_table_key
2485 - [MINOR] tcp: add per-source connection rate limiting
2486 - [MEDIUM] stick_table: separate storage and update of session entries
2487 - [MEDIUM] stick-tables: add a reference counter to each entry
2488 - [MINOR] session: add a pointer to the tracked counters for the source
2489 - [CLEANUP] proto_tcp: make the config parser a little bit more flexible
2490 - [BUG] config: report the correct proxy type in tcp-request errors
2491 - [MINOR] config: provide a function to quote args in a more friendly way
2492 - [BUG] stick_table: the fix for the memory leak caused a regression
2493 - [MEDIUM] backend: support servers on 0.0.0.0
2494 - [BUG] stick-table: correctly refresh expiration timers
2495 - [MEDIUM] stream-interface: add a ->release callback
2496 - [MINOR] proxy: add a "parent" member to the structure
2497 - [MEDIUM] session: make it possible to call an I/O handler on both SI
2498 - [MINOR] tools: add a fast div64_32 function
2499 - [MINOR] freq_ctr: add new types and functions for periods different from 1s
2500 - [MINOR] errors: provide new status codes for config parsing functions
2501 - [BUG] http: denied requests must not be counted as denied resps in listeners
2502 - [MINOR] tools: add a get_std_op() function to parse operators
2503 - [MEDIUM] acl: make use of get_std_op() to parse intger ranges
2504 - [MAJOR] stream_sock: better wakeup conditions on read()
2505 - [BUG] session: analysers must be checked when SI state changes
2506 - [MINOR] http: reset analysers to listener's, not frontend's
2507 - [MEDIUM] session: support "tcp-request content" rules in backends
2508 - [BUILD] always match official tags when doing git-tar
2509 - [MAJOR] stream_interface: fix the wakeup conditions for embedded iohandlers
2510 - [MEDIUM] buffer: make buffer_feed* support writing non-contiguous chunks
2511 - [MINOR] tcp: src_count acl does not have a permanent result
2512 - [MAJOR] session: add track-counters to track counters related to the session
2513 - [MINOR] stick-table: provide a table lookup function
2514 - [MINOR] stick-table: use suffix "_cnt" for cumulated counts
2515 - [MEDIUM] session: move counter ACL fetches from proto_tcp
2516 - [MEDIUM] session: add concurrent connections counter
2517 - [MEDIUM] session: add data in and out volume counters
2518 - [MINOR] session: add the trk_conn_cnt ACL keyword to track connection counts
2519 - [MEDIUM] session-counters: automatically update tracked connection count
2520 - [MINOR] session: add the trk_conn_cur ACL keyword to track concurrent connection
2521 - [MINOR] session: add trk_kbytes_* ACL keywords to track data size
2522 - [MEDIUM] session: add a counter on the cumulated number of sessions
2523 - [MINOR] config: support a comma-separated list of store data types in stick-table
2524 - [MEDIUM] stick-tables: add support for arguments to data_types
2525 - [MEDIUM] stick-tables: add stored data argument type checking
2526 - [MEDIUM] session counters: add conn_rate and sess_rate counters
2527 - [MEDIUM] session counters: add bytes_in_rate and bytes_out_rate counters
2528 - [MINOR] stktable: add a stktable_update_key() function
2529 - [MINOR] session-counters: add a general purpose counter (gpc0)
2530 - [MEDIUM] session-counters: add HTTP req/err tracking
2531 - [MEDIUM] stats: add "show table [<name>]" to dump a stick-table
2532 - [MEDIUM] stats: add "clear table <name> key <value>" to clear table entries
2533 - [CLEANUP] stick-table: declare stktable_data_types as extern
2534 - [MEDIUM] stick-table: make use of generic types for stored data
2535 - [MINOR] stats: correctly report errors on "show table" and "clear table"
2536 - [MEDIUM] stats: add the ability to dump table entries matching criteria
2537 - [DOC] configuration: document all the new tracked counters
2538 - [DOC] stats: document "show table" and "clear table"
2539 - [MAJOR] session-counters: split FE and BE track counters
2540 - [MEDIUM] tcp: accept the "track-counters" in "tcp-request content" rules
2541 - [MEDIUM] session counters: automatically remove expired entries.
2542 - [MEDIUM] config: replace 'tcp-request <action>' with "tcp-request connection"
2543 - [MEDIUM] session-counters: make it possible to count connections from frontend
2544 - [MINOR] session-counters: use "track-sc{1,2}" instead of "track-{fe,be}-counters"
2545 - [MEDIUM] session-counters: correctly unbind the counters tracked by the backend
2546 - [CLEANUP] stats: use stksess_kill() to remove table entries
2547 - [DOC] update the references to session counters and to tcp-request connection
2548 - [DOC] cleanup: split a few long lines
2549 - [MEDIUM] http: forward client's close when abortonclose is set
2550 - [BUG] queue: don't dequeue proxy-global requests on disabled servers
2551 - [BUG] stats: global stats timeout may be specified before stats socket.
2552 - [BUG] conf: add tcp-request content rules to the correct list
2553
Willy Tarreau21475e32010-05-23 08:46:08 +020025542010/05/23 : 1.5-dev0
2555 - exact copy of 1.4.6
2556
Willy Tarreau5fdd77d2010-05-16 22:34:28 +020025572010/05/16 : 1.4.6
2558 - [BUILD] ebtree: update to v6.0.1 to remove references to dprintf()
2559 - [CLEANUP] acl: make use of eb_is_empty() instead of open coding the tree's emptiness test
2560 - [MINOR] acl: add srv_is_up() to check that a specific server is up or not
2561 - [DOC] add a few precisions about the use of RDP cookies
2562
Willy Tarreau9d4d9e32010-05-13 22:17:08 +020025632010/05/13 : 1.4.5
2564 - [DOC] report minimum kernel version for tproxy in the Makefile
2565 - [MINOR] add the "ignore-persist" option to conditionally ignore persistence
2566 - [DOC] add the "ignore-persist" option to conditionally ignore persistence
2567 - [DOC] fix ignore-persist/force-persist documentation
2568 - [BUG] cttproxy: socket fd leakage in check_cttproxy_version
2569 - [DOC] doc/configuration.txt: fix typos
2570 - [MINOR] option http-pretend-keepalive is both for FEs and BEs
2571 - [MINOR] fix possible crash in debug mode with invalid responses
2572 - [MINOR] halog: add support for statisticts on status codes
2573 - [OPTIM] halog: use a faster zero test in fgets()
2574 - [OPTIM] halog: minor speedup by using unlikely()
2575 - [OPTIM] halog: speed up fgets2-64 by about 10%
2576 - [DOC] refresh the README file and merge the CONTRIB file into it
2577 - [MINOR] acl: support loading values from files
2578 - [MEDIUM] ebtree: upgrade to version 6.0
2579 - [MINOR] acl trees: add flags and union members to store values in trees
2580 - [MEDIUM] acl: add ability to insert patterns in trees
2581 - [MEDIUM] acl: add tree-based lookups of exact strings
2582 - [MEDIUM] acl: add tree-based lookups of networks
2583 - [MINOR] acl: ignore empty lines and comments in pattern files
2584 - [MINOR] stick-tables: add support for "stick on hdr"
2585
Willy Tarreau9508c1c2010-04-07 23:12:24 +020025862010/04/07 : 1.4.4
2587 - [BUG] appsession should match the whole cookie name
2588 - [CLEANUP] proxy: move PR_O_SSL3_CHK to options2 to release one flag
2589 - [MEDIUM] backend: move the transparent proxy address selection to backend
2590 - [MINOR] add very fast IP parsing functions
2591 - [MINOR] add new tproxy flags for dynamic source address binding
2592 - [MEDIUM] add ability to connect to a server from an IP found in a header
2593 - [BUILD] config: last patch breaks build without CONFIG_HAP_LINUX_TPROXY
2594 - [MINOR] http: make it possible to pretend keep-alive when doing close
2595 - [MINOR] config: report "default-server" instead of "(null)" in error messages
2596
Willy Tarreau75934a12010-03-30 09:50:08 +020025972010/03/30 : 1.4.3
2598 - [CLEANUP] stats: remove printf format warning in stats_dump_full_sess_to_buffer()
2599 - [MEDIUM] session: better fix for connection to servers with closed input
2600 - [DOC] indicate in the doc how to bind to port ranges
2601 - [BUG] backend: L7 hashing must not be performed on incomplete requests
2602 - [TESTS] add a simple program to test connection resets
2603 - [MINOR] cli: "show errors" should display "backend <NONE>" when backend was not used
2604 - [MINOR] config: emit warnings when HTTP-only options are used in TCP mode
2605 - [MINOR] config: allow "slowstart 0s"
2606 - [BUILD] 'make tags' did not consider files ending in '.c'
2607 - [MINOR] checks: add the ability to disable a server in the config
2608
Willy Tarreauda618cb2010-03-17 23:41:57 +010026092010/03/17 : 1.4.2
2610 - [CLEANUP] product branch update
2611 - [DOC] Some more documentation cleanups
2612 - [BUG] clf logs segfault when capturing a non existant header
2613 - [OPTIM] config: only allocate check buffer when checks are enabled
2614 - [MEDIUM] checks: support multi-packet health check responses
2615 - [CLEANUP] session: remove duplicate test
2616 - [BUG] http: don't wait for response data to leave buffer is client has left
2617 - [MINOR] proto_uxst: set accept_date upon accept() to the wall clock time
2618 - [MINOR] stats: don't send empty lines in "show errors"
2619 - [MINOR] stats: make the data dump function reusable for other purposes
2620 - [MINOR] stats socket: add show sess <id> to dump details about a session
2621 - [BUG] stats: connection reset counters must be plain ascii, not HTML
2622 - [BUG] url_param hash may return a down server
2623 - [MINOR] force null-termination of hostname
2624 - [MEDIUM] connect to servers even when the input has already been closed
2625 - [BUG] don't merge anonymous ACLs !
2626 - [BUG] config: fix endless loop when parsing "on-error"
2627 - [MINOR] http: don't mark a server as failed when it returns 501/505
2628 - [OPTIM] checks: try to detect the end of response without polling again
2629 - [BUG] checks: don't report an error when recv() returns an error after data
2630 - [BUG] checks: don't abort when second poll returns an error
2631 - [MINOR] checks: make shutdown() silently fail
2632 - [BUG] http: fix truncated responses on chunk encoding when size divides buffer size
2633 - [BUG] init: unconditionally catch SIGPIPE
2634 - [BUG] checks: don't wait for a close to start parsing the response
2635
Willy Tarreauc5e60c32010-03-04 23:39:19 +010026362010/03/04 : 1.4.1
2637 - [BUG] Clear-cookie path issue
2638 - [DOC] fix typo on stickiness rules
2639 - [BUILD] fix BSD and OSX makefiles for missing files
2640 - [BUILD] includes order breaks OpenBSD build
2641 - [BUILD] fix some build warnings on Solaris with is* macros
2642 - [BUG] logs: don't report "last data" when we have just closed after an error
2643 - [BUG] logs: don't report "proxy request" when server closes early
2644 - [BUILD] fix platform-dependant build issues related to crypt()
2645 - [STATS] count transfer aborts caused by client and by server
2646 - [STATS] frontend requests were not accounted for failed requests
2647 - [MINOR] report total number of processed connections when stopping a proxy
2648 - [DOC] be more clear about the limitation to one single monitor-net entry
2649
Willy Tarreaue18fdfd2010-02-26 14:55:22 +010026502010/02/26 : 1.4.0
2651 - [MINOR] stats: report maint state for tracking servers too
2652 - [DOC] fix summary to add pattern extraction
2653 - [DOC] Documentation cleanups
2654 - [BUG] cfgparse memory leak and missing free calls in deinit()
2655 - [BUG] pxid/puid/luid: don't shift IDs when some of them are forced
2656 - [EXAMPLES] add auth.cfg
2657 - [BUG] uri_auth: ST_SHLGNDS should be 0x00000008 not 0x0000008
2658 - [BUG] uri_auth: do not attemp to convert uri_auth -> http-request more than once
2659 - [BUILD] auth: don't use unnamed unions
2660 - [BUG] config: report unresolvable host names as errors
2661 - [BUILD] fix build breakage with DEBUG_FULL
2662 - [DOC] fix a typo about timeout check and clarify the explanation.
2663 - [MEDIUM] http: don't use trash to realign large buffers
2664 - [STATS] report HTTP requests (total and rate) in frontends
2665 - [STATS] separate frontend and backend HTTP stats
2666 - [MEDIUM] http: revert to use a swap buffer for realignment
2667 - [MINOR] stats: report the request rate in frontends as cell titles
2668 - [MINOR] stats: mark areas with an underline when tooltips are available
2669 - [DOC] reorder some entries to maintain the alphabetical order
2670 - [DOC] cleanup of the keyword matrix
2671
Willy Tarreaub05613d2010-02-02 10:18:28 +010026722010/02/02 : 1.4-rc1
2673 - [MEDIUM] add a maintenance mode to servers
2674 - [MINOR] http-auth: last fix was wrong
2675 - [CONTRIB] add base64rev-gen.c that was used to generate the base64rev table.
2676 - [MINOR] Base64 decode
2677 - [MINOR] generic auth support with groups and encrypted passwords
2678 - [MINOR] add ACL_TEST_F_NULL_MATCH
2679 - [MINOR] http-request: allow/deny/auth support for frontend/backend/listen
2680 - [MINOR] acl: add http_auth and http_auth_group
2681 - [MAJOR] use the new auth framework for http stats
2682 - [DOC] add info about userlists, http-request and http_auth/http_auth_group acls
2683 - [STATS] make it possible to change a CLI connection timeout
2684 - [BUG] patterns: copy-paste typo in type conversion arguments
2685 - [MINOR] pattern: make the converter more flexible by supporting void* and int args
2686 - [MINOR] standard: str2mask: string to netmask converter
2687 - [MINOR] pattern: add support for argument parsers for converters
2688 - [MINOR] pattern: add the "ipmask()" converting function
2689 - [MINOR] config: off-by-one in "stick-table" after list of converters
2690 - [CLEANUP] acl, patterns: make use of my_strndup() instead of malloc+memcpy
2691 - [BUG] restore accidentely removed line in last patch !
2692 - [MINOR] checks: make the HTTP check code add the CRLF itself
2693 - [MINOR] checks: add the server's status in the checks
2694 - [BUILD] halog: make without arch-specific optimizations
2695 - [BUG] halog: fix segfault in case of empty log in PCT mode (cherry picked from commit fe362fe4762151d209b9656639ee1651bc2b329d)
2696 - [MINOR] http: disable keep-alive when process is going down
2697 - [MINOR] acl: add build_acl_cond() to make it easier to add ACLs in config
2698 - [CLEANUP] config: use build_acl_cond() instead of parse_acl_cond()
2699 - [CLEANUP] config: use warnif_cond_requires_resp() to check for bad ACLs
2700 - [MINOR] prepare req_*/rsp_* to receive a condition
2701 - [CLEANUP] config: specify correct const char types to warnif_* functions
2702 - [MEDIUM] config: factor out the parsing of 20 req*/rsp* keywords
2703 - [MEDIUM] http: make the request filter loop check for optional conditions
2704 - [MEDIUM] http: add support for conditional request filter execution
2705 - [DOC] add some build info about the AIX platform (cherry picked from commit e41914c77edbc40aebf827b37542d37d758e371e)
2706 - [MEDIUM] http: add support for conditional request header addition
2707 - [MEDIUM] http: add support for conditional response header rewriting
2708 - [DOC] add some missing ACLs about response header matching
2709 - [MEDIUM] http: add support for proxy authentication
2710 - [MINOR] http-auth: make the 'unless' keyword work as expected
2711 - [CLEANUP] config: use build_acl_cond() to simplify http-request ACL parsing
2712 - [MEDIUM] add support for anonymous ACLs
2713 - [MEDIUM] http: switch to tunnel mode after status 101 responses
2714 - [MEDIUM] http: stricter processing of the CONNECT method
2715 - [BUG] config: reset check request to avoid double free when switching to ssl/sql
2716 - [MINOR] config: fix too large ssl-hello-check message.
2717 - [BUG] fix error response in case of server error
2718
Willy Tarreau2eba6aa2010-01-25 23:28:05 +010027192010/01/25 : 1.4-dev8
2720 - [CLEANUP] Keep in sync "defaults" support between documentation and code
2721 - [MEDIUM] http: add support for Proxy-Connection header
2722 - [CRITICAL] buffers: buffer_insert_line2 must not change the ->w entry
2723 - [MINOR] http: remove a copy-paste typo in transaction cleaning
2724 - [BUG] http: trim any excess buffer data when recycling a connection
2725
Willy Tarreau6939b552010-01-25 01:54:37 +010027262010/01/25 : 1.4-dev7
2727 - [BUG] appsession: possible memory leak in case of out of memory condition
2728 - [MINOR] config: don't accept 'appsession' in defaults section
2729 - [MINOR] Add function to parse a size in configuration
2730 - [MEDIUM] Add stick table (persistence) management functions and types
2731 - [MEDIUM] Add pattern fetch management types and functions
2732 - [MEDIUM] Add src dst and dport pattern fetches.
2733 - [MEDIUM] Add stick table configuration and init.
2734 - [MEDIUM] Add stick and store rules analysers.
2735 - [MINOR] add option "mysql-check" to use MySQL health checks
2736 - [BUG] health checks: fix requeued message
2737 - [OPTIM] remove SSP_O_VIA and SSP_O_STATUS
2738 - [BUG] checks: fix newline termination
2739 - [MINOR] acl: add fe_id/so_id to match frontend's and socket's id
2740 - [BUG] appsession's sessid must be reset at end of transaction
2741 - [BUILD] appsession did not build anymore under gcc-2.95
2742 - [BUG] server redirection used an uninitialized string.
2743 - [MEDIUM] http: fix handling of message pointers
2744 - [MINOR] http: fix double slash prefix with server redirect
2745 - [MINOR] http redirect: add the ability to append a '/' to the URL
2746 - [BUG] stream_interface: fix retnclose and remove cond_close
2747 - [MINOR] http redirect: don't explicitly state keep-alive on 1.1
2748 - [MINOR] http: move appsession 'sessid' from session to http_txn
2749 - [OPTIM] reorder http_txn to optimize cache lines placement
2750 - [MINOR] http: differentiate waiting for new request and waiting for a complete requst
2751 - [MINOR] http: add a separate "http-keep-alive" timeout
2752 - [MINOR] config: remove undocumented and buggy 'timeout appsession'
2753 - [DOC] fix various too large lines
2754 - [DOC] remove several trailing spaces
2755 - [DOC] add the doc about stickiness
2756 - [BUILD] remove a warning in standard.h on AIX
2757 - [BUG] checks: chars are unsigned on AIX, check was always true
2758 - [CLEANUP] stream_sock: MSG_NOSIGNAL is only for send(), not recv()
2759 - [BUG] check: we must not check for error before reading a response
2760 - [BUG] buffers: remove remains of wrong obsolete length check
2761 - [OPTIM] stream_sock: don't shutdown(write) when the socket is in error
2762 - [BUG] http: don't count req errors on client resets or t/o during keep-alive
2763 - [MEDIUM] http: don't switch to tunnel mode upon close
2764 - [DOC] add documentation about connection header processing
2765 - [MINOR] http: add http_remove_header2() to remove a header value.
2766 - [MINOR] tools: add a "word_match()" function to match words and ignore spaces
2767 - [MAJOR] http: rework request Connection header handling
2768 - [MAJOR] http: rework response Connection header handling
2769 - [MINOR] add the ability to force kernel socket buffer size.
2770 - [BUG] http_server_error() must not purge a previous pending response
2771 - [OPTIM] http: don't delay response if next request is incomplete
2772 - [MINOR] add the "force-persist" statement to force persistence on down servers
2773 - [MINOR] http: logs must report persistent connections to down servers
2774 - [BUG] buffer_replace2 must never change the ->w entry
2775
Willy Tarreau11f8f542010-01-08 07:49:44 +010027762010/01/08 : 1.4-dev6
2777 - [BUILD] warning in stream_interface.h
2778 - [BUILD] warning ultoa_r returns char *
2779 - [MINOR] hana: only report stats if it is enabled
2780 - [MINOR] stats: add "a link" & "a href" for sockets
2781 - [MINOR]: stats: add show-legends to report additional informations
2782 - [MEDIUM] default-server support
2783 - [BUG]: add 'observer', 'on-error', 'error-limit' to supported options list
2784 - [MINOR] stats: add href to tracked server
2785 - [BUG] stats: show UP/DOWN status also in tracking servers
2786 - [DOC] Restore ability to search a keyword at the beginning of a line
2787 - [BUG] stats: cookie should be reported under backend not under proxy
2788 - [BUG] cfgparser/stats: fix error message
2789 - [BUG] http: disable auto-closing during chunk analysis
2790 - [BUG] http: fix hopefully last closing issue on data forwarding
2791 - [DEBUG] add an http_silent_debug function to debug HTTP states
2792 - [MAJOR] http: fix again the forward analysers
2793 - [BUG] http_process_res_common() must not skip the forward analyser
2794 - [BUG] http: some possible missed close remain in the forward chain
2795 - [BUG] http: redirect needed to be updated after recent changes
2796 - [BUG] http: don't set no-linger on response in case of forced close
2797 - [MEDIUM] http: restore the original behaviour of option httpclose
2798 - [TESTS] add a file to test various connection modes
2799 - [BUG] http: check options before the connection header
2800 - [MAJOR] session: fix the order by which the analysers are run
2801 - [MEDIUM] session: also consider request analysers added during response
2802 - [MEDIUM] http: make safer use of the DONT_READ and AUTO_CLOSE flags
2803 - [BUG] http: memory leak with captures when using keep-alive
2804 - [BUG] http: fix for capture memory leak was incorrect
2805 - [MINOR] http redirect: use proper call to return last response
2806 - [MEDIUM] http: wait for some flush of the response buffer before a new request
2807 - [MEDIUM] session: limit the number of analyser loops
2808
Willy Tarreau1f445892010-01-03 23:23:36 +010028092010/01/03 : 1.4-dev5
2810 - [MINOR] server tracking: don't care about the tracked server's mode
2811 - [MEDIUM] appsession: add "len", "prefix" and "mode" options
2812 - [MEDIUM] appsession: add the "request-learn" option
2813 - [BUG] Configuration parser bug when escaping characters
2814 - [MINOR] CSS & HTML fun
2815 - [MINOR] Collect & provide http response codes received from servers
2816 - [BUG] Fix silly typo: hspr_other -> hrsp_other
2817 - [MINOR] Add "a name" to stats page
2818 - [MINOR] add additional "a href"s to stats page
2819 - [MINOR] Collect & provide http response codes for frontends, fix backends
2820 - [DOC] some small spell fixes and unifications
2821 - [MEDIUM] Decrease server health based on http responses / events, version 3
2822 - [BUG] format '%d' expects type 'int', but argument 5 has type 'long int'
2823 - [BUG] config: fix erroneous check on cookie domain names, again
2824 - [BUG] Healthchecks: get a proper error code if connection cannot be completed immediately
2825 - [DOC] trivial fix for man page
2826 - [MINOR] config: report all supported options for the "bind" keyword
2827 - [MINOR] tcp: add support for the defer_accept bind option
2828 - [MINOR] unix socket: report the socket path in case of bind error
2829 - [CONTRIB] halog: support searching by response time
2830 - [DOC] add a reminder about obsolete documents
2831 - [DOC] point to 1.4 doc, not 1.3
2832 - [DOC] option tcp-smart-connect was missing from index
2833 - [MINOR] http: detect connection: close earlier
2834 - [CLEANUP] sepoll: clean up the fd_clr/fd_set functions
2835 - [OPTIM] move some rarely used fields out of fdtab
2836 - [MEDIUM] fd: merge fd_list into fdtab
2837 - [MAJOR] buffer: flag BF_DONT_READ to disable reads when not required
2838 - [MINOR] http: add new transaction flags for keep-alive and content-length
2839 - [MEDIUM] http request: parse connection, content-length and transfer-encoding
2840 - [MINOR] http request: update the TX_SRV_CONN_KA flag on rewrite
2841 - [MINOR] http request: simplify the test of no-data
2842 - [MEDIUM] http request: simplify POST length detection
2843 - [MEDIUM] http request: make use of pre-parsed transfer-encoding header
2844 - [MAJOR] http: create the analyser which waits for a response
2845 - [MINOR] http: pre-set the persistent flags in the transaction
2846 - [MEDIUM] http response: check body length and set transaction flags
2847 - [MINOR] http response: update the TX_CLI_CONN_KA flag on rewrite
2848 - [MINOR] http: remove the last call to stream_int_return
2849 - [IMPORT] import ebtree v5.0 into directory ebtree/
2850 - [MEDIUM] build: switch ebtree users to use new ebtree version
2851 - [CLEANUP] ebtree: remove old unused files
2852 - [BUG] definitely fix regparm issues between haproxy core and ebtree
2853 - [CLEANUP] ebtree: cast to char * to get rid of gcc warning
2854 - [BUILD] missing #ifndef in ebmbtree.h
2855 - [BUILD] missing #ifndef in ebsttree.h
2856 - [MINOR] tools: add hex2i() function to convert hex char to int
2857 - [MINOR] http: create new MSG_BODY sub-states
2858 - [BUG] stream_sock: BUF_INFINITE_FORWARD broke splice on 64-bit platforms
2859 - [DOC] option is "defer-accept", not "defer_accept"
2860 - [MINOR] http: keep pointer to beginning of data
2861 - [BUG] x-original-to: name was not set in default instance
2862 - [MINOR] http: detect tunnel mode and set it in the session
2863 - [BUG] config: fix error message when config file is not found
2864 - [BUG] config: fix wrong handling of too large argument count
2865 - [BUG] config: disable 'option httplog' on TCP proxies
2866 - [BUG] config: fix erroneous check on cookie domain names
2867 - [BUG] config: cookie domain was ignored in defaults sections
2868 - [MINOR] config: support passing multiple "domain" statements to cookies
2869 - [MINOR] ebtree: add functions to lookup non-null terminated strings
2870 - [MINOR] config: don't report error on all subsequent files on failure
2871 - [BUG] second fix for the printf format warning
2872 - [BUG] check_post: limit analysis to the buffer length
2873 - [MEDIUM] http: process request body in a specific analyser
2874 - [MEDIUM] backend: remove HTTP POST parsing from get_server_ph_post()
2875 - [MAJOR] http: completely process the "connection" header
2876 - [MINOR] http: only consider chunk encoding with HTTP/1.1
2877 - [MAJOR] buffers: automatically compute the maximum buffer length
2878 - [MINOR] http: move the http transaction init/cleanup code to proto_http
2879 - [MINOR] http: move 1xx handling earlier to eliminate a lot of ifs
2880 - [MINOR] http: introduce a new synchronisation state : HTTP_MSG_DONE
2881 - [MEDIUM] http: rework chunk-size parser
2882 - [MEDIUM] http: add a new transaction flags indicating if we know the transfer length
2883 - [MINOR] buffers: add buffer_ignore() to skip some bytes
2884 - [BUG] http: offsets are relative to the buffer, not to ->som
2885 - [MEDIUM] http: automatically re-aling request buffer
2886 - [BUG] http: body parsing must consider the start of message
2887 - [MINOR] new function stream_int_cond_close()
2888 - [MAJOR] http: implement body parser
2889 - [BUG] http: typos on several unlikely() around header insertion
2890 - [BUG] stream_sock: wrong max computation on recv
2891 - [MEDIUM] http: rework the buffer alignment logic
2892 - [BUG] buffers: wrong size calculation for displaced data
2893 - [MINOR] stream_sock: prepare for closing when all pending data are sent
2894 - [MEDIUM] http: add two more states for the closing period
2895 - [MEDIUM] http: properly handle "option forceclose"
2896 - [MINOR] stream_sock: add SI_FL_NOLINGER for faster close
2897 - [MEDIUM] http: make forceclose use SI_FL_NOLINGER
2898 - [MEDIUM] session: set SI_FL_NOLINGER when aborting on write timeouts
2899 - [MEDIUM] http: add some SI_FL_NOLINGER around server errors
2900 - [MINOR] config: option forceclose is valid in frontends too
2901 - [BUILD] halog: insufficient include path in makefile
2902 - [MEDIUM] http: make the analyser not rely on msg being initialized anymore
2903 - [MEDIUM] http: make the parsers able to wait for a buffer flush
2904 - [MAJOR] http: add support for option http-server-close
2905 - [BUG] http: ensure we abort data transfer on write error
2906 - [BUG] last fix was overzealous and disabled server-close
2907 - [BUG] http: fix erroneous trailers size computation
2908 - [MINOR] stream_sock: enable MSG_MORE when forwarding finite amount of data
2909 - [OPTIM] http: set MSG_MORE on response when a pipelined request is pending
2910 - [BUG] http: redirects were broken by chunk changes
2911 - [BUG] http: the request URI pointer is relative to the buffer
2912 - [OPTIM] http: don't immediately enable reading on request
2913 - [MINOR] http: move redirect messages to HTTP/1.1 with a content-length
2914 - [BUG] http: take care of errors, timeouts and aborts during the data phase
2915 - [MINOR] http: don't wait for sending requests to the server
2916 - [MINOR] http: make the conditional redirect support keep-alive
2917 - [BUG] http: fix cookie parser to support spaces and commas in values
2918 - [MINOR] config: some options were missing for "redirect"
2919 - [MINOR] redirect: add support for unconditional rules
2920 - [MINOR] config: centralize proxy struct initialization
2921 - [MEDIUM] config: remove the limitation of 10 reqadd/rspadd statements
2922 - [MEDIUM] config: remove the limitation of 10 config files
2923 - [CLEANUP] http: remove a remaining impossible condition
2924 - [OPTIM] http: optimize a bit the construct of the forward loops
2925
Willy Tarreauc82a9e52009-10-12 06:40:53 +020029262009/10/12 : 1.4-dev4
2927 - [DOC] add missing rate_lim and rate_max
2928 - [MAJOR] struct chunk rework
2929 - [MEDIUM] Health check reporting code rework + health logging, v3
2930 - [BUG] check if rise/fall has an argument and it is > 0
2931 - [MINOR] health checks logging unification
2932 - [MINOR] add "description", "node" and show-node"/"show-desc", remove "node-name", v2
2933 - [MINOR] Allow dots in show-node & add "white-space: nowrap" in th.pxname.
2934 - [DOC] Add information about http://haproxy.1wt.eu/contrib.html
2935 - [MINOR] Introduce include/types/counters.h
2936 - [CLEANUP] Move counters to dedicated structures
2937 - [MINOR] Add "clear counters" to clear statistics counters
2938 - [MEDIUM] Collect & provide separate statistics for sockets, v2
2939 - [BUG] Fix NULL pointer dereference in stats_check_uri_auth(), v2
2940 - [MINOR] acl: don't report valid acls as potential mistakes
2941 - [MINOR] Add cut_crlf(), ltrim(), rtrim() and alltrim()
2942 - [MINOR] Add chunk_htmlencode and chunk_asciiencode
2943 - [MINOR] Capture & display more data from health checks, v2
2944 - [BUG] task.c: don't assing last_timer to node-less entries
2945 - [BUG] http stats: large outputs sometimes got some parts chopped off
2946 - [MINOR] backend: export some functions to recount servers
2947 - [MINOR] backend: uninline some LB functions
2948 - [MINOR] include time.h from freq_ctr.h as is uses "now".
2949 - [CLEANUP] backend: move LB algos to individual files
2950 - [MINOR] lb_map: reorder code in order to ease integration of new hash functions
2951 - [CLEANUP] proxy: move last lb-specific bits to their respective files
2952 - [MINOR] backend: separate declarations of LB algos from their lookup method
2953 - [MINOR] backend: reorganize the LB algorithm selection
2954 - [MEDIUM] backend: introduce the "static-rr" LB algorithm
2955 - [MINOR] report list of supported pollers with -vv
2956 - [DOC] log-health-checks is an option, not a directive
2957 - [MEDIUM] new option "independant-streams" to stop updating read timeout on writes
2958 - [BUG] stats: don't call buffer_shutw(), but ->shutw() instead
2959 - [MINOR] stats: strip CR and LF from the input command line
2960 - [BUG] don't refresh timeouts late after detected activity
2961 - [MINOR] stats_dump_errors_to_buffer: use buffer_feed_chunk()
2962 - [MINOR] stats_dump_sess_to_buffer: use buffer_feed_chunk()
2963 - [MINOR] stats: make stats_dump_raw_to_buffer() use buffer_feed_chunk
2964 - [MEDIUM] stats: don't use s->ana_state anymore
2965 - [MINOR] remove now obsolete ana_state from the session struct
2966 - [MEDIUM] stats: make HTTP stats use an I/O handler
2967 - [MEDIUM] stream_int: adjust WAIT_ROOM handling
2968 - [BUG] config: look for ID conflicts in all sockets, not only last ones.
2969 - [MINOR] config: reference file and line with any listener/proxy/server declaration
2970 - [MINOR] config: report places of duplicate names or IDs
2971 - [MINOR] config: add pointer to file name in block/redirect/use_backend/monitor rules
2972 - [MINOR] tools: add a new get_next_id() function
2973 - [MEDIUM] config: automatically find unused IDs for proxies, servers and listeners
2974 - [OPTIM] counters: move some max numbers to the counters struct
2975 - [BUG] counters: fix segfault on missing counters for a listener
2976 - [MEDIUM] backend: implement consistent hashing variation
2977 - [MINOR] acl: add fe_conn, be_conn, queue, avg_queue
2978 - [MINOR] stats: use 'clear counters all' to clear all values
2979 - [MEDIUM] add access restrictions to the stats socket
2980 - [MINOR] buffers: add buffer_feed2() and make buffer_feed() measure string length
2981 - [MINOR] proxy: provide function to retrieve backend/server pointers
2982 - [MINOR] add the "initial weight" to the server struct.
2983 - [MEDIUM] stats: add the "get weight" command to report a server's weight
2984 - [MEDIUM] stats: add the "set weight" command
2985 - [BUILD] add a 'make tags' target
2986 - [MINOR] stats: add support for numeric IDs in set weight/get weight
2987 - [MINOR] stats: use a dedicated state to output static data
2988 - [OPTIM] stats: check free space before trying to print
2989
Willy Tarreau9f389e02009-09-24 00:12:50 +020029902009/09/24 : 1.4-dev3
2991 - [BUILD] compilation of haproxy-1.4-dev2 on FreeBSD
2992 - [MEDIUM] Collect & show information about last health check, v3
2993 - [MINOR] export the hostname variable so that all the code can access it
2994 - [MINOR] stats: add a new node-name setting
2995 - [MEDIUM] remove old experimental tcpsplice option
2996 - [BUILD] fix build for systems without SOL_TCP
2997 - [MEDIUM] move connection establishment from backend to the SI.
2998 - [MEDIUM] make the global stats socket part of a frontend
2999 - [MEDIUM] session: account per-listener connections
3000 - [MINOR] session: switch to established state if no connect function
3001 - [MEDIUM] make the unix stats sockets use the generic session handler
3002 - [CLEANUP] unix: remove uxst_process_session()
3003 - [CLEANUP] move remaining stats sockets code to dumpstats
3004 - [MINOR] move the initial task's nice value to the listener
3005 - [MINOR] cleanup set_session_backend by using pre-computed analysers
3006 - [MINOR] set s->srv_error according to the analysers
3007 - [MEDIUM] set rep->analysers from fe and be analysers
3008 - [MEDIUM] replace BUFSIZE with buf->size in computations
3009 - [MEDIUM] make it possible to change the buffer size in the configuration
3010 - [MEDIUM] report error on buffer writes larger than buffer size
3011 - [MEDIUM] stream_interface: add and use ->update function to resync
3012 - [CLEANUP] remove ifdef MSG_NOSIGNAL and define it instead
3013 - [MEDIUM] remove TCP_CORK and make use of MSG_MORE instead
3014 - [BUG] tarpit did not work anymore
3015 - [MINOR] acl: add support for hdr_ip to match IP addresses in headers
3016 - [MAJOR] buffers: fix misuse of the BF_SHUTW_NOW flag
3017 - [MINOR] buffers: provide more functions to handle buffer data
3018 - [MEDIUM] buffers: provide new buffer_feed*() function
3019 - [MINOR] buffers: add peekchar and peekline functions for stream interfaces
3020 - [MINOR] buffers: provide buffer_si_putchar() to send a char from a stream interface
3021 - [BUG] buffer_forward() would not correctly consider data already scheduled
3022 - [MINOR] buffers: add buffer_cut_tail() to cut only unsent data
3023 - [MEDIUM] stream_interface: make use of buffer_cut_tail() to report errors
3024 - [MAJOR] http: add support for HTTP 1xx informational responses
3025 - [MINOR] buffers: inline buffer_si_putchar()
3026 - [MAJOR] buffers: split BF_WRITE_ENA into BF_AUTO_CONNECT and BF_AUTO_CLOSE
3027 - [MAJOR] buffers: fix the BF_EMPTY flag's meaning
3028 - [BUG] stream_interface: SI_ST_CLO must have buffers SHUT
3029 - [MINOR] stream_sock: don't set SI_FL_WAIT_DATA if BF_SHUTW_NOW is set
3030 - [MEDIUM] add support for infinite forwarding
3031 - [BUILD] stream_interface: fix conflicting declaration
3032 - [BUG] buffers: buffer_forward() must not always clear BF_OUT_EMPTY
3033 - [BUG] variable buffer size ignored at initialization time
3034 - [MINOR] ensure that buffer_feed() and buffer_skip() set BF_*_PARTIAL
3035 - [BUG] fix buffer_skip() and buffer_si_getline() to correctly handle wrap-arounds
3036 - [MINOR] stream_interface: add SI_FL_DONT_WAKE flag
3037 - [MINOR] stream_interface: add iohandler callback
3038 - [MINOR] stream_interface: add functions to support running as internal/external tasks
3039 - [MEDIUM] session: call iohandler for embedded tasks (applets)
3040 - [MINOR] add a ->private member to the stream_interface
3041 - [MEDIUM] stats: prepare the connection for closing before dumping
3042 - [MEDIUM] stats: replace the stats socket analyser with an SI applet
3043
Willy Tarreau68dcd252009-08-09 22:57:09 +020030442009/08/09 : 1.4-dev2
3045 - [BUG] task: fix possible crash when some timeouts are not configured
3046 - [BUG] log: option tcplog would log to global if no logger was defined
3047
Willy Tarreaub03d2982009-07-29 22:38:32 +020030482009/07/29 : 1.4-dev1
3049 - [MINOR] acl: add support for matching of RDP cookies
3050 - [MEDIUM] add support for RDP cookie load-balancing
3051 - [MEDIUM] add support for RDP cookie persistence
3052 - [MINOR] add a new CLF log format
3053 - [MINOR] startup: don't imply -q with -D
3054 - [BUG] ensure that we correctly re-start old process in case of error
3055 - [MEDIUM] add support for binding to source port ranges during connect
3056 - [MINOR] config: track "no option"/"option" changes
3057 - [MINOR] config: support resetting options do default values
3058 - [MEDIUM] implement option tcp-smart-accept at the frontend
3059 - [MEDIUM] stream_sock: implement tcp-cork for use during shutdowns on Linux
3060 - [MEDIUM] implement tcp-smart-connect option at the backend
3061 - [MEDIUM] add support for TCP MSS adjustment for listeners
3062 - [MEDIUM] support setting a server weight to zero
3063 - [MINOR] make DEFAULT_MAXCONN user-configurable at build time
3064 - [MAJOR] session: don't clear buffer status flags anymore
3065 - [MAJOR] session: only check for timeouts when they have just occurred.
3066 - [MAJOR] session: simplify buffer error handling
3067 - [MEDIUM] config: split parser and checker in two functions
3068 - [MEDIUM] config: support loading multiple configuration files
3069 - [MEDIUM] stream_sock: don't close prematurely when nolinger is set
3070 - [MEDIUM] session: rework buffer analysis to permit permanent analysers
3071 - [MEDIUM] splice: set the capability on each stream_interface
3072 - [BUG] http: redirect rules were processed too early
3073 - [CLEANUP] remove unused DEBUG_PARSE_NO_SPEEDUP define
3074 - [MEDIUM] http: split request waiter from request processor
3075 - [MEDIUM] session: tell analysers what bit they were called for
3076 - [MAJOR] http: complete splitting of the remaining stages
3077 - [MINOR] report in the proxies the requirements for ACLs
3078 - [MINOR] http: rely on proxy->acl_requires to allocate hdr_idx
3079 - [MINOR] acl: add HTTP protocol detection (req_proto_http)
3080 - [MINOR] prepare callers of session_set_backend to handle errors
3081 - [BUG] default ACLs did not properly set the ->requires flag
3082 - [MEDIUM] allow a TCP frontend to switch to an HTTP backend
3083 - [MINOR] ensure we can jump from swiching rules to http without data
3084 - [MINOR] http: take http request timeout from the backend
3085 - [MINOR] allow TCP inspection rules to make use of HTTP ACLs
3086 - [BUILD] report commit date and not author's date as build date
3087 - [MINOR] acl: don't complain anymore when using L7 acls in TCP
3088 - [BUG] stream_sock: always shutdown(SHUT_WR) before closing
3089 - [BUG] stream_sock: don't stop reading when the poller reports an error
3090 - [BUG] config: tcp-request content only accepts "if" or "unless"
3091 - [BUG] task: fix possible timer drift after update
3092 - [MINOR] apply tcp-smart-connect option for the checks too
3093 - [MINOR] stats: better displaying in MSIE
3094 - [MINOR] config: improve error reporting in global section
3095 - [MINOR] config: improve error reporting in listen sections
3096 - [MINOR] config: the "capture" keyword is not allowed in backends
3097 - [MINOR] config: improve error reporting when checking configuration
3098 - [BUILD] fix a minor build warning on AIX
3099 - [BUILD] use "git cmd" instead of "git-cmd"
3100 - [CLEANUP] report 2009 not 2008 in the copyright banner.
3101 - [MINOR] print usage on the stats sockets upon invalid commands
3102 - [MINOR] acl: detect and report potential mistakes in ACLs
3103 - [BUILD] fix incorrect printf arg count with tcp_splice
3104 - [BUG] fix random pauses on last segment of a series
3105 - [BUILD] add support for build under Cygwin
3106
Willy Tarreau79158882009-06-09 11:59:08 +020031072009/06/09 : 1.4-dev0
3108 - exact copy of 1.3.18
3109
Willy Tarreaubeb05ae2009-05-10 20:27:47 +020031102009/05/10 : 1.3.18
3111 - [MEDIUM] add support for "balance hdr(name)"
3112 - [CLEANUP] give a little bit more information in error message
3113 - [MINOR] add X-Original-To: header
3114 - [BUG] x-original-to: fix missing initialization to default value
3115 - [BUILD] spec file: fix broken pipe during rpmbuild and add man file
3116 - [MINOR] improve reporting of misplaced acl/reqxxx rules
3117 - [MEDIUM] http: add options to ignore invalid header names
3118 - [MEDIUM] http: capture invalid requests/responses even if accepted
3119 - [BUILD] add format(printf) to printf-like functions
3120 - [MINOR] fix several printf formats and missing arguments
3121 - [BUG] stats: total and lbtot are unsigned
3122 - [MINOR] fix a few remaining printf-like formats on 64-bit platforms
3123 - [CLEANUP] remove unused make option from haproxy.spec
3124 - [BUILD] make it possible to pass alternative arch at build time
3125 - [MINOR] switch all stat counters to 64-bit
3126 - [MEDIUM] ensure we don't recursively call pool_gc2()
3127 - [CRITICAL] uninitialized response field can sometimes cause crashes
3128 - [BUG] fix wrong pointer arithmetics in HTTP message captures
3129 - [MINOR] rhel init script : support the reload operation
3130 - [MINOR] add basic signal handling functions
3131 - [BUILD] add signal.o to all makefiles
3132 - [MEDIUM] call signal_process_queue from run_poll_loop
3133 - [MEDIUM] pollers: don't wait if a signal is pending
3134 - [MEDIUM] convert all signals to asynchronous signals
3135 - [BUG] O(1) pollers should check their FD before closing it
3136 - [MINOR] don't close stdio fds twice
3137 - [MINOR] add options dontlog-normal and log-separate-errors
3138 - [DOC] minor fixes and rearrangements
3139 - [BUG] fix parser crash on unconditional tcp content rules
3140 - [DOC] rearrange the configuration manual and add a summary
3141 - [MINOR] standard: provide a new 'my_strndup' function
3142 - [MINOR] implement per-logger log level limitation
3143 - [MINOR] compute the max of sessions/s on fe/be/srv
3144 - [MINOR] stats: report max sessions/s and limit in CSV export
3145 - [MINOR] stats: report max sessions/s and limit in HTML stats
3146 - [MINOR] stats/html: use the arial font before helvetica
3147
Willy Tarreauf459b422009-03-29 15:26:57 +020031482009/03/29 : 1.3.17
3149 - Update specfile to build for v2.6 kernel.
3150 - [BUG] reset the stream_interface connect timeout upon connect or error
3151 - [BUG] reject unix accepts when connection limit is reached
3152 - [MINOR] show sess: report number of calls to each task
3153 - [BUG] don't call epoll_ctl() on closed sockets
3154 - [BUG] stream_sock: disable I/O on fds reporting an error
3155 - [MINOR] sepoll: don't count two events on the same FD.
3156 - [MINOR] show sess: report a lot more information about sessions
3157 - [BUG] stream_sock: check for shut{r,w} before refreshing some timeouts
3158 - [BUG] don't set an expiration date directly from now_ms
3159 - [MINOR] implement ulltoh() to write HTML-formatted numbers
3160 - [MINOR] stats/html: group digits by 3 to clarify numbers
3161 - [BUILD] remove haproxy-small.spec
3162 - [BUILD] makefile: remove unused references to linux24eold and EPOLL_CTL_WORKAROUND
3163
Willy Tarreau8019ffa2009-03-22 23:46:12 +010031642009/03/22 : 1.3.16
3165 - [BUILD] Fixed Makefile for linking pcre
3166 - [CONTRIB] selinux policy for haproxy
3167 - [MINOR] show errors: encode backslash as well as non-ascii characters
3168 - [MINOR] cfgparse: some cleanups in the consistency checks
3169 - [MINOR] cfgparse: set backends to "balance roundrobin" by default
3170 - [MINOR] tcp-inspect: permit the use of no-delay inspection
3171 - [MEDIUM] reverse internal proxy declaration order to match configuration
3172 - [CLEANUP] config: catch and report some possibly wrong rule ordering
3173 - [BUG] connect timeout is in the stream interface, not the buffer
3174 - [BUG] session: errors were not reported in termination flags in TCP mode
3175 - [MINOR] tcp_request: let the caller take care of errors and timeouts
3176 - [CLEANUP] http: remove some commented out obsolete code in process_response
3177 - [MINOR] update ebtree to version 4.1
3178 - [MEDIUM] scheduler: get rid of the 4 trees thanks and use ebtree v4.1
3179 - [BUG] sched: don't leave 3 lasts tasks unprocessed when niced tasks are present
3180 - [BUG] scheduler: fix improper handling of duplicates __task_queue()
3181 - [MINOR] sched: permit a task to stay up between calls
3182 - [MINOR] task: keep a task count and clean up task creators
3183 - [MINOR] stats: report number of tasks (active and running)
3184 - [BUG] server check intervals must not be null
3185 - [OPTIM] stream_sock: don't retry to read after a large read
3186 - [OPTIM] buffer: new BF_READ_DONTWAIT flag reduces EAGAIN rates
3187 - [MEDIUM] session: don't resync FSMs on non-interesting changes
3188 - [BUG] check for global.maxconn before doing accept()
3189 - [OPTIM] sepoll: do not re-check whole list upon accepts
3190
Willy Tarreau8185ced2009-03-09 22:45:53 +010031912009/03/09 : 1.3.16-rc2
3192 - [BUG] stream_sock: write timeout must be updated when forwarding !
3193
Willy Tarreauff63b432009-03-09 01:03:42 +010031942009/03/09 : 1.3.16-rc1
3195 - appsessions: cleanup DEBUG_HASH and initialize request_counter
3196 - [MINOR] acl: add new keyword "connslots"
3197 - [MINOR] cfgparse: fix off-by 2 in error message size
3198 - [BUILD] fix build with gcc 4.3
3199 - [BUILD] fix MANDIR default location to match documentation
3200 - [TESTS] add a debug patch to help trigger the stats bug
3201 - [BUG] Flush buffers also where there are exactly 0 bytes left
3202 - [MINOR] Allow to specify a domain for a cookie
3203 - [BUG/CLEANUP] cookiedomain -> cookie_domain rename + free(p->cookie_domain)
3204 - [MEDIUM] Fix memory freeing at exit
3205 - [MEDIUM] Fix memory freeing at exit, part 2
3206 - [BUG] Fix listen & more of 2 couples <ip>:<port>
3207 - [DOC] remove buggy comment for use_backend
3208 - [CRITICAL] fix server state tracking: it was O(n!) instead of O(n)
3209 - [MEDIUM] add support for URI hash depth and length limits
3210 - [MINOR] permit renaming of x-forwarded-for header
3211 - [BUILD] fix Makefile.bsd and Makefile.osx for stream_interface
3212 - [BUILD] Haproxy won't compile if DEBUG_FULL is defined
3213 - [MEDIUM] upgrade to ebtree v4.0
3214 - [DOC] update the README file with new build options
3215 - [MEDIUM] reduce risk of event starvation in ev_sepoll
3216 - [MEDIUM] detect streaming buffers and tag them as such
3217 - [MEDIUM] add support for conditional HTTP redirection
3218 - [BUILD] make install should depend on haproxy not "all"
3219 - [DEBUG] add a TRACE macro to facilitate runtime data extraction
3220 - [BUG] event pollers must not wait if a task exists in the run queue
3221 - [BUG] queue management: wake oldest request in queues
3222 - [BUG] log: reported queue position was offed-by-one
3223 - [BUG] fix the dequeuing logic to ensure that all requests get served
3224 - [DOC] documentation for the "retries" parameter was missing.
3225 - [MEDIUM] implement a monotonic internal clock
3226 - [MEDIUM] further improve monotonic clock by check forward jumps
3227 - [OPTIM] add branch prediction hints in list manipulations
3228 - [MAJOR] replace ultree with ebtree in wait-queues
3229 - [BUG] we could segfault during exit while freeing uri_auths
3230 - [BUG] wqueue: perform proper timeout comparisons with wrapping values
3231 - [MINOR] introduce now_ms, the current date in milliseconds
3232 - [BUG] disable buffer read timeout when reading stats
3233 - [MEDIUM] rework the wait queue mechanism
3234 - [BUILD] change declaration of base64tab to fix build with Intel C++
3235 - [OPTIM] shrink wake_expired_tasks() by using task_wakeup()
3236 - [MAJOR] use an ebtree instead of a list for the run queue
3237 - [MEDIUM] introduce task->nice and boot access to statistics
3238 - [OPTIM] task_queue: assume most consecutive timers are equal
3239 - [BUILD] silent a warning in unlikely() with gcc 4.x
3240 - [MAJOR] convert all expiration timers from timeval to ticks
3241 - [BUG] use_backend would not correctly consider "unless"
3242 - [TESTS] added test-acl.cfg to test some ACL combinations
3243 - [MEDIUM] add support for configuration keyword registration
3244 - [MEDIUM] modularize the global "stats" keyword configuration parser
3245 - [MINOR] cfgparse: add support for warnings in external functions
3246 - [MEDIUM] modularize the "timeout" keyword configuration parser
3247 - [MAJOR] implement tcp request content inspection
3248 - [MINOR] acl: add a new parsing function: parse_dotted_ver
3249 - [MINOR] acl: add req_ssl_ver in TCP, to match an SSL version
3250 - [CLEANUP] remove unused include/types/client.h
3251 - [CLEANUP] remove many #include <types/xxx> from C files
3252 - [CLEANUP] remove dependency on obsolete INTBITS macro
3253 - [DOC] document the new "tcp-request" keyword and associated ACLs
3254 - [MINOR] acl: add REQ_CONTENT to the list of default acls
3255 - [MEDIUM] acl: permit fetch() functions to set the result themselves
3256 - [MEDIUM] acl: get rid of dummy values in always_true/always_false
3257 - [MINOR] acl: add the "wait_end" acl verb
3258 - [MEDIUM] acl: enforce ACL type checking
3259 - [MEDIUM] acl: set types on all currently known ACL verbs
3260 - [MEDIUM] acl: when possible, report the name and requirements of ACLs in warnings
3261 - [CLEANUP] remove 65 useless NULL checks before free
3262 - [MEDIUM] memory: update pool_free2() to support NULL pointers
3263 - [MEDIUM] buffers: ensure buffer_shut* are properly called upon shutdowns
3264 - [MEDIUM] process_srv: rely on buffer flags for client shutdown
3265 - [MEDIUM] process_srv: don't rely at all on client state
3266 - [MEDIUM] process_cli: don't rely at all on server state
3267 - [BUG] fix segfault with url_param + check_post
3268 - [BUG] server timeout was not considered in some circumstances
3269 - [BUG] client timeout incorrectly rearmed while waiting for server
3270 - [MAJOR] kill CL_STINSPECT and CL_STHEADERS (step 1)
3271 - [MAJOR] get rid of SV_STANALYZE (step 2)
3272 - [MEDIUM] simplify and centralize request timeout cancellation and request forwarding
3273 - [MAJOR] completely separate HTTP and TCP states on the request path
3274 - [BUG] fix recently introduced loop when client closes early
3275 - [MAJOR] get rid of the SV_STHEADERS state
3276 - [MAJOR] better separation of response processing and server state
3277 - [MAJOR] clearly separate HTTP response processing from TCP server state
3278 - [MEDIUM] remove unused references to {CL|SV}_STSHUT*
3279 - [MINOR] term_trace: add better instrumentations to trace the code
3280 - [BUG] ev_sepoll: closed file descriptors could persist in the spec list
3281 - [BUG] process_response must not enable the read FD
3282 - [BUG] buffers: remove BF_MAY_CONNECT and fix forwarding issue
3283 - [BUG] process_response: do not touch srv_state
3284 - [BUG] maintain_proxies must not disable backends
3285 - [CLEANUP] get rid of BF_SHUT*_PENDING
3286 - [MEDIUM] buffers: add BF_EMPTY and BF_FULL to remove dependency on req/rep->l
3287 - [MAJOR] process_session: rely only on buffer flags
3288 - [MEDIUM] use buffer->wex instead of buffer->cex for connect timeout
3289 - [MEDIUM] centralize buffer timeout checks at the top of process_session
3290 - [MINOR] ensure the termination flags are set by process_xxx
3291 - [MEDIUM] session: move the analysis bit field to the buffer
3292 - [OPTIM] process_cli/process_srv: reduce the number of tests
3293 - [BUG] regparm is broken on gcc < 3
3294 - [BUILD] fix warning in proto_tcp.c with gcc >= 4
3295 - [MEDIUM] merge inspect_exp and txn->exp into request buffer
3296 - [BUG] process_cli/process_srv: don't call shutdown when already done
3297 - [BUG] process_request: HTTP body analysis must return zero if missing data
3298 - [TESTS] test-fsm: 22 regression tests for state machines
3299 - [BUG] Fix empty X-Forwarded-For header name when set in defaults section
3300 - [BUG] fix harmless but wrong fd insertion sequence
3301 - [MEDIUM] make it possible for analysers to follow the whole session
3302 - [MAJOR] rework of the server FSM
3303 - [OPTIM] remove useless fd_set(read) upon shutdown(write)
3304 - [MEDIUM] massive cleanup of process_srv()
3305 - [MEDIUM] second level of code cleanup for process_srv_data
3306 - [MEDIUM] third cleanup and optimization of process_srv_data()
3307 - [MEDIUM] process_srv_data: ensure that we always correctly re-arm timeouts
3308 - [MEDIUM] stream_sock_process_data moved to stream_sock.c
3309 - [MAJOR] make the client side use stream_sock_process_data()
3310 - [MEDIUM] split stream_sock_process_data
3311 - [OPTIM] stream_sock_read must check for null-reads more often
3312 - [MINOR] only call flow analysers when their read side is connected.
3313 - [MEDIUM] reintroduce BF_HIJACK with produce_content
3314 - [MINOR] re-arrange buffer flags and rename some of them
3315 - [MINOR] do not check for BF_SHUTR when computing write timeout
3316 - [OPTIM] ev_sepoll: detect newly created FDs and check them once
3317 - [OPTIM] reduce the number of calls to task_wakeup()
3318 - [OPTIM] force inlining of large functions with gcc >= 3
3319 - [MEDIUM] indicate a reason for a task wakeup
3320 - [MINOR] change type of fdtab[]->owner to void*
3321 - [MAJOR] make stream sockets aware of the stream interface
3322 - [MEDIUM] stream interface: add the ->shutw method as well as in and out buffers
3323 - [MEDIUM] buffers: add BF_READ_ATTACHED and BF_ANA_TIMEOUT
3324 - [MEDIUM] process_session: make use of the new buffer flags
3325 - [CLEANUP] process_session: move debug outputs out of the critical loop
3326 - [MEDIUM] move QUEUE and TAR timers to stream interfaces
3327 - [OPTIM] add compiler hints in tick_is_expired()
3328 - [MINOR] add buffer_check_timeouts() to check what timeouts have fired.
3329 - [MEDIUM] use buffer_check_timeouts instead of stream_sock_check_timeouts()
3330 - [MINOR] add an expiration flag to the stream_sock_interface
3331 - [MAJOR] migrate the connection logic to stream interface
3332 - [MAJOR] add a connection error state to the stream_interface
3333 - [MEDIUM] add the SN_CURR_SESS flag to the session to track open sessions
3334 - [MEDIUM] continue layering cleanups.
3335 - [MEDIUM] stream_interface: added a DISconnected state between CON/EST and CLO
3336 - [MEDIUM] remove stream_sock_update_data()
3337 - [MINOR] maintain a global session list in order to ease debugging
3338 - [BUG] shutw must imply close during a connect
3339 - [MEDIUM] process shutw during connection attempt
3340 - [MEDIUM] make the stream interface control the SHUT{R,W} bits
3341 - [MAJOR] complete layer4/7 separation
3342 - [CLEANUP] move the session-related functions to session.c
3343 - [MINOR] call session->do_log() for logging
3344 - [MINOR] replace the ambiguous client_return function by stream_int_return
3345 - [MINOR] replace client_retnclose() with stream_int_retnclose()
3346 - [MINOR] replace srv_close_with_err() with http_server_error()
3347 - [MEDIUM] make the http server error function a pointer in the session
3348 - [CLEANUP] session.c: removed some migration left-overs in sess_establish()
3349 - [MINOR] stream_sock_data_finish() should not expose fd
3350 - [MEDIUM] extract TCP request processing from HTTP
3351 - [MEDIUM] extract the HTTP tarpit code from process_request().
3352 - [MEDIUM] move the HTTP request body analyser out of process_request().
3353 - [MEDIUM] rename process_request to http_process_request
3354 - [BUG] fix forgotten server session counter
3355 - [MINOR] declare process_session in session.h, not proto_http.h
3356 - [MEDIUM] first pass of lifting to proto_uxst.c:uxst_event_accept()
3357 - [MINOR] add an analyser code for UNIX stats request
3358 - [MINOR] pre-set analyser flags on the listener at registration time
3359 - [BUG] do not forward close from cons to prod with analysers
3360 - [MEDIUM] ensure that sock->shutw() also closes read for init states
3361 - [MINOR] add an analyser state in struct session
3362 - [MAJOR] make unix sockets work again with stats
3363 - [MEDIUM] remove cli_fd, srv_fd, cli_state and srv_state from the session
3364 - [MINOR] move the listener reference from fd to session
3365 - [MEDIUM] reference the current hijack function in the buffer itself
3366 - [MINOR] slightly rebalance stats_dump_{raw,http}
3367 - [MINOR] add a new back-reference type : struct bref
3368 - [MINOR] add back-references to sessions for later use by a dumper.
3369 - [MEDIUM] add support for "show sess" in unix stats socket
3370 - [BUG] do not release the connection slot during a retry
3371 - [BUG] dynamic connection throttling could return a max of zero conns
3372 - [BUG] do not try to pause backends during reload
3373 - [BUG] ensure that listeners from disabled proxies are correctly unbound.
3374 - [BUG] acl-related keywords are not allowed in defaults sections
3375 - [BUG] cookie capture is declared in the frontend but checked on the backend
3376 - [BUG] critical errors should be reported even in daemon mode
3377 - [MINOR] redirect: add support for the "drop-query" option
3378 - [MINOR] redirect: add support for "set-cookie" and "clear-cookie"
3379 - [MINOR] redirect: in prefix mode a "/" means not to change the URI
3380 - [BUG] do not dequeue requests on a dead server
3381 - [BUG] do not dequeue the backend's pending connections on a dead server
3382 - [MINOR] stats: indicate if a task is running in "show sess"
3383 - [BUG] check timeout must not be changed if timeout.check is not set
3384 - [BUG] "option transparent" is for backend, not frontend !
3385 - [MINOR] transfer errors were not reported anymore in data phase
3386 - [MEDIUM] add a send limit to a buffer
3387 - [MEDIUM] don't report buffer timeout when there is I/O activity
3388 - [MEDIUM] indicate when we don't care about read timeout
3389 - [MINOR] add flags to indicate when a stream interface is waiting for space/data
3390 - [MEDIUM] enable inter-stream_interface wakeup calls
3391 - [MAJOR] implement autonomous inter-socket forwarding
3392 - [MINOR] add the splice_len member to the buffer struct in preparation of splice support
3393 - [MEDIUM] stream_sock: factor out the return path in case of no-writes
3394 - [MEDIUM] i/o: rework ->to_forward and ->send_max
3395 - [OPTIM] stream_sock: do not ask for polling on EAGAIN if we have read
3396 - [OPTIM] buffer: replace rlim by max_len
3397 - [OPTIM] stream_sock: factor out the buffer full handling out of the loop
3398 - [CLEANUP] replace a few occurrences of (flags & X) && !(flags & Y)
3399 - [CLEANUP] stream_sock: move the write-nothing condition out of the loop
3400 - [MEDIUM] split stream_sock_write() into callback and core functions
3401 - [MEDIUM] stream_sock_read: call ->chk_snd whenever there are data pending
3402 - [MINOR] stream_sock: fix a few wrong empty calculations
3403 - [MEDIUM] stream_sock: try to send pending data on chk_snd()
3404 - [MINOR] global.maxpipes: add the ability to reserve file descriptors for pipes
3405 - [MEDIUM] splice: add configuration options and set global.maxpipes
3406 - [MINOR] introduce structures required to support Linux kernel splicing
3407 - [MEDIUM] add definitions for Linux kernel splicing
3408 - [MAJOR] complete support for linux 2.6 kernel splicing
3409 - [BUG] reserve some pipes for backends with splice enabled
3410 - [MEDIUM] splice: add hints to support older buggy kernels
3411 - [MEDIUM] introduce pipe pools
3412 - [MEDIUM] splice: make use of pipe pools
3413 - [STATS] report pipe usage in the statistics
3414 - [OPTIM] make global.maxpipes default to global.maxconn/4 when not specified
3415 - [BUILD] fix snapshot date extraction with negative timezones
3416 - [MEDIUM] move global tuning options to the global structure
3417 - [MEDIUM] splice: add the global "nosplice" option
3418 - [BUILD] add USE_LINUX_SPLICE to enable LINUX_SPLICE on linux 2.6
3419 - [BUG] we must not exit if protocol binding only returns a warning
3420 - [MINOR] add support for bind interface name
3421 - [BUG] inform the user when root is expected but not set
3422 - [MEDIUM] add support for source interface binding
3423 - [MEDIUM] add support for source interface binding at the server level
3424 - [MEDIUM] implement bind-process to limit service presence by process
3425 - [DOC] document maxpipes, nosplice, option splice-{auto,request,response}
3426 - [DOC] filled the logging section of the configuration manual
3427 - [DOC] document HTTP status codes
3428 - [DOC] document a few missing info about errorfile
3429 - [BUG] fix random memory corruption using "show sess"
3430 - [BUG] fix unix socket processing of interrupted output
3431 - [DOC] add diagrams of queuing and future ACL design
3432 - [BUILD] proto_http did not build on gcc-2.95
3433 - [BUG] the "source" keyword must first clear optional settings
3434 - [BUG] global.tune.maxaccept must be limited even in mono-process mode
3435 - [MINOR] ensure that http_msg_analyzer updates pointer to invalid char
3436 - [MEDIUM] store a complete dump of request and response errors in proxies
3437 - [MEDIUM] implement error dump on unix socket with "show errors"
3438 - [DOC] document "show errors"
3439 - [MINOR] errors dump must use user-visible date, not internal date.
3440 - [MINOR] time: add __usec_to_1024th to convert usecs to 1024th of second
3441 - [MINOR] add curr_sec_ms and curr_sec_ms_scaled for current second.
3442 - [MEDIUM] measure and report session rate on frontend, backends and servers
3443 - [BUG] the "connslots" keyword was matched as "connlots"
3444 - [MINOR] acl: add 2 new verbs: fe_sess_rate and be_sess_rate
3445 - [MEDIUM] implement "rate-limit sessions" for the frontend
3446 - [BUG] interface binding: length must include the trailing zero
3447 - [BUG] typo in timeout error reporting : report *res and not *err
3448 - [OPTIM] maintain_proxies: only wake up when the frontend will be ready
3449 - [OPTIM] rate-limit: cleaner behaviour on low rates and reduce consumption
3450 - [BUG] switch server-side stream interface to close in case of abort
3451 - [CLEANUP] remove last references to term_trace
3452 - [OPTIM] freq_ctr: do not rotate the counters when reading
3453 - [BUG] disable any analysers for monitoring requests
3454 - [BUG] rate-limit in defaults section was ignored
3455 - [BUG] task: fix handling of duplicate keys
3456 - [OPTIM] task: don't unlink a task from a wait queue when waking it up
3457 - [OPTIM] displace tasks in the wait queue only if absolutely needed
3458 - [MEDIUM] minor update to the task api: let the scheduler queue itself
3459 - [BUG] event_accept() must always wake the task up, even in health mode
3460 - [CLEANUP] task: distinguish between clock ticks and timers
3461 - [OPTIM] task: reduce the number of calls to task_queue()
3462 - [OPTIM] do not re-check req buffer when only response has changed
3463 - [CLEANUP] don't enable kernel splicing when socket is closed
3464 - [CLEANUP] buffer_flush() was misleading, rename it as buffer_erase
3465 - [MINOR] buffers: implement buffer_flush()
3466 - [MEDIUM] rearrange forwarding condition to enable splice during analysis
3467 - [BUILD] build fixes for Solaris
3468 - [BUILD] proto_http did not build on gcc-2.95 (again)
3469 - [CONTRIB] halog: fast log parser for haproxy
3470 - [CONTRIB] halog: faster fgets() and add support for percentile reporting
3471
Willy Tarreau7b4c5ae2008-04-19 21:06:14 +020034722008/04/19 : 1.3.15
3473 - [BUILD] Added support for 'make install'
3474 - [BUILD] Added 'install-man' make target for installing the man page
3475 - [BUILD] Added 'install-bin' make target
3476 - [BUILD] Added 'install-doc' make target
3477 - [BUILD] Removed "/" after '$(DESTDIR)' in install targets
3478 - [BUILD] Changed 'install' target to install the binaries first
3479 - [BUILD] Replace hardcoded 'LD = gcc' with 'LD = $(CC)'
3480 - [MEDIUM]: Inversion for options
3481 - [MEDIUM]: Count retries and redispatches also for servers, fix redistribute_pending, extend logs, %d->%u cleanup
3482 - [BUG]: Restore clearing t->logs.bytes
3483 - [MEDIUM]: rework checks handling
3484 - [DOC] Update a "contrib" file with a hint about a scheme used for formathing subjects
3485 - [MEDIUM] Implement "track [<backend>/]<server>"
3486 - [MINOR] Implement persistent id for proxies and servers
3487 - [BUG] Don't increment server connections too much + fix retries
3488 - [MEDIUM]: Prevent redispatcher from selecting the same server, version #3
3489 - [MAJOR] proto_uxst rework -> SNMP support
3490 - [BUG] appsession lookup in URL does not work
3491 - [BUG] transparent proxy address was ignored in backend
3492 - [BUG] hot reconfiguration failed because of a wrong error check
3493 - [DOC] big update to the configuration manual
3494 - [DOC] large update to the configuration manual
3495 - [DOC] document more options
3496 - [BUILD] major rework of the GNU Makefile
3497 - [STATS] add support for "show info" on the unix socket
3498 - [DOC] document options forwardfor to logasap
3499 - [MINOR] add support for the "backlog" parameter
3500 - [OPTIM] introduce global parameter "tune.maxaccept"
3501 - [MEDIUM] introduce "timeout http-request" in frontends
3502 - [MINOR] tarpit timeout is also allowed in backends
3503 - [BUG] increment server connections for each connect()
3504 - [MEDIUM] add a turn-around state of one second after a connection failure
3505 - [BUG] fix typo in redispatched connection
3506 - [DOC] document options nolinger to ssl-hello-chk
3507 - [DOC] added documentation for "option tcplog" to "use_backend"
3508 - [BUG] connect_server: server might not exist when sending error report
3509 - [MEDIUM] support fully transparent proxy on Linux (USE_LINUX_TPROXY)
3510 - [MEDIUM] add non-local bind to connect() on Linux
3511 - [MINOR] add transparent proxy support for balabit's Tproxy v4
3512 - [BUG] use backend's source and not server's source with tproxy
3513 - [BUG] fix overlapping server flags
3514 - [MEDIUM] fix server health checks source address selection
3515 - [BUG] build failed on CONFIG_HAP_LINUX_TPROXY without CONFIG_HAP_CTTPROXY
3516 - [DOC] added "server", "source" and "stats" keywords
3517 - [DOC] all server parameters have been documented
3518 - [DOC] document all req* and rsp* keywords.
3519 - [DOC] added documentation about HTTP header manipulations
3520 - [BUG] log response byte count, not request
3521 - [BUILD] code did not build in full debug mode
3522 - [BUG] fix truncated responses with sepoll
3523 - [MINOR] use s->frt_addr as the server's address in transparent proxy
3524 - [MINOR] fix configuration hint about timeouts
3525 - [DOC] minor cleanup of the doc and notice to contributors
3526 - [MINOR] report correct section type for unknown keywords.
3527 - [BUILD] update MacOS Makefile to build on newer versions
3528 - [DOC] fix erroneous "useallbackups" option in the doc
3529 - [DOC] applied small fixes from early readers
3530 - [MINOR] add configuration support for "redir" server keyword
3531 - [MEDIUM] completely implement the server redirection method
3532 - [TESTS] add a test case for the server redirection mechanism
3533 - [DOC] add a configuration entry for "server ... redir <prefix>"
3534 - [BUILD] backend.c and checks.c did not build without tproxy !
3535 - Revert "[BUILD] backend.c and checks.c did not build without tproxy !"
3536 - [BUILD] backend.c and checks.c did not build without tproxy !
3537 - [OPTIM] used unsigned ints for HTTP state and message offsets
3538 - [OPTIM] GCC4's builtin_expect() is suboptimal
3539 - [BUG] failed conns were sometimes incremented in the frontend!
3540 - [BUG] timeout.check was not pre-set to eternity
3541 - [TESTS] add test-pollers.cfg to easily report pollers in use
3542 - [BUG] do not apply timeout.connect in checks if unset
3543 - [BUILD] ensure that makefile understands USE_DLMALLOC=1
3544 - [MINOR] silent gcc for a wrong warning
3545 - [CLEANUP] update .gitignore to ignore more temporary files
3546 - [CLEANUP] report dlmalloc's source path only if explictly specified
3547 - [BUG] str2sun could leak a small buffer in case of error during parsing
3548 - [BUG] option allbackups was not working anymore in roundrobin mode
3549 - [MAJOR] implementation of the "leastconn" load balancing algorithm
3550 - [BUILD] ensure that users don't build without setting the target anymore.
3551 - [DOC] document the leastconn LB algo
3552 - [MEDIUM] fix stats socket limitation to 16 kB
3553 - [DOC] fix unescaped space in httpchk example.
3554 - [BUG] fix double-decrement of server connections
3555 - [TESTS] add a test case for port mapping
3556 - [TESTS] add a benchmark for integer hashing
3557 - [TESTS] add new methods in ip-hash test file
3558 - [MAJOR] implement parameter hashing for POST requests
3559
Willy Tarreaue5b77e82007-12-06 01:25:44 +010035602007/12/06 : 1.3.14
3561 - New option http_proxy (Alexandre Cassen)
3562 - add support for "maxqueue" to limit server queue overload (Elijah Epifanov)
3563 - Check for duplicated conflicting proxies (Krzysztof Oledzki)
3564 - stats: report server and backend cumulated downtime (Krzysztof Oledzki)
3565 - use backends only with use_backend directive (Krzysztof Oledzki)
3566 - Handle long lines properly (Krzysztof Oledzki)
3567 - Implement and use generic findproxy and relax duplicated proxy check (Krzysztof Oledzki)
3568 - continous statistics (Krzysztof Oledzki)
3569 - add support for logging via a UNIX socket (Robert Tsai)
3570 - fix error checking in strl2ic/strl2uic()
3571 - fix calls to localtime()
3572 - provide easier-to-use ultoa_* functions
3573 - provide easy-to-use limit_r and LIM2A* macros
3574 - add a simple test for the status page
3575 - move error codes to common/errors.h
3576 - silent warning about LIST_* being redefined on OpenBSD
3577 - add socket address length to the protocols
3578 - group PR_O_BALANCE_* bits into a checkable value
3579 - externalize the "balance" option parser to backend.c
3580 - introduce the "url_param" balance method
3581 - make default_backend work in TCP mode too
3582 - disable warning about localtime_r on Solaris
3583 - adjust error messages about conflicting proxies
3584 - avoid calling some layer7 functions if not needed
3585 - simplify error path in event_accept()
3586 - add an options field to the listeners
3587 - added a new state to listeners
3588 - unbind_listener() must use fd_delete() and not close()
3589 - add a generic unbind_listener() primitive
3590 - add a generic delete_listener() primitive
3591 - add a generic unbind_all_listeners() primitive
3592 - create proto_tcp and move initialization of proxy listeners
3593 - stats: report numerical process ID, proxy ID and server ID
3594 - relative_pid was not initialized
3595 - missing header names in raw stats output
3596 - fix missing parenthesis in check_response_for_cacheability
3597 - small optimization on session_process_counters()
3598 - merge ebtree version 3.0
3599 - make ebtree headers multiple-include compatible
3600 - ebtree: include config.h for REGPRM*
3601 - differentiate between generic LB params and map-specific ones
3602 - add a weight divisor to the struct proxy
3603 - implement the Fast Weighted Round Robin (FWRR) algo
3604 - include filltab25.c to experiment on FWRR for dynamic weights
3605 - merge test-fwrr.cfg to validate dynamic weights
3606 - move the load balancing algorithm to be->lbprm.algo
3607 - change server check result to a bit field
3608 - implement "http-check disable-on-404" for graceful shutdown
3609 - secure the calling conditions of ->set_server_status_{up,down}
3610 - report disabled servers as "NOLB" when they are still UP
3611 - document the "http-check disable-on-404" option
3612 - http-check disable-on-404 is not limited to HTTP mode
3613 - add a test file for disable-on-404
3614 - use distinct bits per load-balancing algorithm type
3615 - implement the slowstart parameter for servers
3616 - document the server's slowstart parameter
3617 - stats: report the server warm up status in a "throttle" column
3618 - fix 2 minor issues on AIX
3619 - add the "nbsrv" ACL verb
3620 - add the "fail" condition to monitor requests
3621 - remove a warning from gcc due to htons() in standard.c
3622 - fwrr: ensure that we never overflow in placements
3623 - store the build options to report with -vv
3624 - fix the status return of the init script (R.I. Pienaar)
3625 - stats: real time monitoring script for unix socket (Prizee)
3626 - document "nbsrv" and "monitor fail"
3627 - restrict the set of allowed characters for identifiers
3628 - implement a time parsing function
3629 - add support for time units in the configuration
3630 - add a bit of documentation about timers
3631 - introduce separation between contimeout, and tarpit + queue
3632 - introduce the "timeout" keyword
3633 - grouped all timeouts in one structure
3634 - slowstart is in ms, not seconds
3635 - slowstart: ensure we don't start with a null weight
3636 - report the number of times each server was selected
3637 - fix build on AIX due to recent log changes
3638 - fix build on Solaris due to recent log changes
3639
Willy Tarreaue855f422007-10-18 22:38:22 +020036402007/10/18 : 1.3.13
3641 - replace the code under O'Reilly license (Arnaud Cornet)
3642 - add a small man page (Arnaud Cornet)
3643 - stats: report haproxy's version by default (Krzysztof Oledzki)
3644 - stats: count server retries and redispatches (Krzysztof Oledzki)
3645 - core: added easy support for Doug Lea's malloc (dlmalloc)
3646 - core: fade out memory usage when stopping proxies
3647 - core: moved the sockaddr pointer to the fdtab structure
3648 - core: add generic protocol support
3649 - core: implement client-side support for PF_UNIX sockets
3650 - stats: implement the CSV output
3651 - stats: add a link to the CSV export HTML page
3652 - stats: implement the statistics output on a unix socket
3653 - config: introduce the "stats" keyword in global section
3654 - build: centralize version and date into one file for each
3655 - tests: added a new hash algorithm
3656
36572007/10/18 : 1.3.12.3
3658 - add the "nolinger" option to disable data lingering (Alexandre Cassen)
3659 - fix double-free during clean exit (Krzysztof Oledzki)
3660 - prevent the system from sending an RST when closing health-checks
3661 (Krzysztof Oledzki)
3662 - do not add a cache-control header when on non-cacheable responses
3663 (Krzysztof Oledzki)
3664 - spread health checks even more (Krzysztof Oledzki)
3665 - stats: scope "." must match the backend and not the frontend
3666 - fixed call to chroot() during startup
3667 - fix wrong timeout computation in event_accept()
3668 - remove condition for exit() under fork() failure
3669
36702007/09/20 : 1.3.12.2
3671 - fix configuration sanity checks for TCP listeners
3672 - set the log socket receive window to zero bytes
3673 - pre-initialize timeouts to infinity, not zero
3674 - fix the SIGHUP message not to alert on server-less proxies
3675 - timeouts and retries could be ignored when switching backend
3676 - added a file to check that "retries" works.
3677 - O'Reilly has clarified its license
3678
36792007/09/05 : 1.3.12.1
3680 - spec I/O: fix allocations of spec entries for an FD
3681 - ensure we never overflow in chunk_printf()
3682 - improve behaviour with large number of servers per proxy
3683 - add support for "stats refresh <interval>"
3684 - stats page: added links for 'refresh' and 'hide down'
3685 - fix backend's weight in the stats page.
3686 - the "stats" keyword is not allowed in a pure frontend.
3687 - provide a test configuration file for stats and checks
3688
Willy Tarreaub21152b2007-06-17 23:41:40 +020036892007/06/17 : 1.3.12
3690 - fix segfault at exit when using captures
3691 - bug: negation in ACL conds was not cleared between terms
3692 - errorfile: use a local file to feed error messages
3693 - acl: support '-i' to ignore case when matching
3694 - acl: smarter integer comparison with operators eq,lt,gt,le,ge
3695 - acl: support maching on 'path' component
3696 - acl: implement matching on header values
3697 - acl: distinguish between request and response headers
3698 - acl: permit to return any header when no name specified
3699 - acl: provide default ACLs
3700 - added the 'use_backend' keyword for full content-switching
3701 - acl: specify the direction during fetches
3702 - acl: provide the argument length for fetch functions
3703 - acl: provide a reference to the expr to fetch()
3704 - improve memory freeing upon exit
3705 - str2net() must not change the const char *
3706 - shut warnings 'is*' macros from ctype.h on solaris
3707
Willy Tarreaua3503e02007-06-03 17:27:07 +020037082007/06/03 : 1.3.11.4
3709 - do not re-arm read timeout in SHUTR state !
3710 - optimize I/O by detecting system starvation
3711 - the epoll FD must not be shared between processes
3712 - limit the number of events returned by *poll*
3713
Willy Tarreau3c6fc072007-05-14 14:40:25 +020037142007/05/14 : 1.3.11.3
3715 - pre-initialize timeouts with tv_eternity during parsing
3716
Willy Tarreaufc273c22007-05-14 03:42:47 +020037172007/05/14 : 1.3.11.2
3718 - fixed broken health-checks since switch to timeval
3719
Willy Tarreau3c5340c2007-05-14 03:18:43 +020037202007/05/14 : 1.3.11.1
3721 - fixed ev_kqueue which was forgotten during the switch to timeval
3722 - allowed null timeouts for past events in select
3723
Willy Tarreau544eb402007-05-14 02:42:33 +020037242007/05/14 : 1.3.11
3725 - fixed ev_sepoll again by rewriting the state machine
3726 - switched all timeouts to timevals instead of milliseconds
3727 - improved memory management using mempools v2.
3728 - several minor optimizations
3729
Willy Tarreau9ca931f2007-05-10 07:51:17 +020037302007/05/09 : 1.3.10.2
3731 - fixed build on OpenBSD (missing types.h)
3732
Willy Tarreau13398d32007-05-09 22:58:28 +020037332007/05/09 : 1.3.10.1
3734 - fixed sepoll transition matrix (two states were missing)
3735
Willy Tarreau61beedf2007-05-09 01:44:58 +020037362007/05/08 : 1.3.10
3737 - several fixes in ev_sepoll
3738 - fixed some expiration dates on some tasks
3739 - fixed a bug in connection establishment detection due to speculative I/O
3740 - fixed rare bug occuring on TCP with early close (reported by Andy Smith)
3741 - implemented URI hashing algorithm (Guillaume Dallaire)
3742 - implemented SMTP health checks (Peter van Dijk)
3743 - replaced the rbtree with ul2tree from old scheduler project
3744 - new framework for generic ACL support
3745 - added the 'acl' and 'block' keywords to the config language
3746 - added several ACL criteria and matches (IP, port, URI, ...)
3747 - cleaned up and better modularization for some time functions
3748 - fixed list macros
3749 - fixed useless memory allocation in str2net()
3750 - store the original destination address in the session
3751
Willy Tarreau6e0433f2007-04-16 01:18:12 +020037522007/04/15 : 1.3.9
3753 - modularized the polling mechanisms and use function pointers instead
3754 of macros at many places
3755 - implemented support for FreeBSD's kqueue() polling mechanism
3756 - fixed a warning on OpenBSD : MIN/MAX redefined
3757 - change socket registration order at startup to accomodate kqueue.
3758 - several makefile cleanups to support old shells
3759 - fix build with limits.h once for all
3760 - ev_epoll: do not rely on fd_sets anymore, use changes stacks instead.
3761 - fdtab now holds the results of polling
3762 - implemented support for speculative I/O processing with epoll()
3763 - remove useless calls to shutdown(SHUT_RD), resulting in small speed boost
3764 - auto-registering of pollers at load time
3765
Willy Tarreau42c76592007-04-03 20:30:13 +020037662007/04/03 : 1.3.8.2
3767 - rewriting either the status line or request line could crash the
3768 process due to a pointer which ought to be reset before parsing.
3769 - rewriting the status line in the response did not work, it caused
3770 a 502 Bad Gateway due to an erroneous state during parsing
3771
Willy Tarreauef6d7612007-04-01 11:06:22 +020037722007/04/01 : 1.3.8.1
3773 - fix reqadd when no option httpclose is used.
3774 - removed now unused fiprm and beprm from proxies
3775 - split logs into two versions : TCP and HTTP
3776 - added some docs about http headers storage and acls
3777 - added a VIM script for syntax color highlighting (Bruno Michel)
3778
Willy Tarreaud661cc02007-03-26 00:24:56 +020037792007/03/25 : 1.3.8
3780 - fixed several bugs which might have caused a crash with bad configs
3781 - several optimizations in header processing
3782 - many progresses towards transaction-based processing
3783 - option forwardfor may be used in frontends
3784 - completed HTTP response processing
3785 - some code refactoring between request and response processing
3786 - new HTTP header manipulation functions
3787 - optimizations on the recv() patch to reduce CPU usage under very
3788 high data rates.
3789 - more user-friendly help about the 'usesrc' keyword (CTTPROXY)
3790 - username/groupname support from Marcus Rueckert
3791 - added the "except" keyword to the "forwardfor" option (Bryan German)
3792 - support for health-checks on other addresses (Fabrice Dulaunoy)
3793 - makefile for MacOS 10.4 / Darwin (Dan Zinngrabe)
3794 - do not insert "Connection: close" in HTTP/1.0 messages
3795
Willy Tarreau9cabf702007-01-26 23:49:01 +010037962007/01/26 : 1.3.7
3797 - fix critical bug introduced with 1.3.6 : an empty request header
3798 may lead to a crash due to missing pointer assignment
3799 - hdr_idx might be left uninitialized in debug mode
3800 - fixed build on FreeBSD due to missing fd_set declaration
3801
Willy Tarreaue7a24382007-01-22 08:57:44 +010038022007/01/22 : 1.3.6.1
3803 - change in the header chaining broke cookies and authentication
3804
Willy Tarreau49e1ee82007-01-22 00:56:46 +010038052007/01/22 : 1.3.6
3806 - stats now support the HEAD method too
3807 - extracted http request from the session
3808 - huge rework of the HTTP parser which is now a 28-state FSM.
3809 - linux-style likely/unlikely macros for optimization hints
3810 - do not create a server socket when there's no server
3811 - imported lots of docs
3812
Willy Tarreau5871f8e2007-01-07 02:47:01 +010038132007/01/07 : 1.3.5
3814 - stats: swap color sets for active and backup servers
3815 - try to guess server check port when unset
3816 - added complete support and doc for TCP Splicing
3817 - replace the wait-queue linked list with an rbtree.
3818 - a few bugfixes and cleanups
3819
Willy Tarreau85270da2007-01-02 00:59:39 +010038202007/01/02 : 1.3.4
3821 - support for cttproxy on the server side to present the client
3822 address to the server.
3823 - added support for SO_REUSEPORT on Linux (needs kernel patch)
3824 - new RFC2616-compliant HTTP request parser with header indexing
3825 - split proxies in frontends, rulesets and backends
3826 - implemented the 'req[i]setbe' to select a backend depending
3827 on the contents
3828 - added the 'default_backend' keyword to select a default BE.
3829 - new stats page featuring FEs and BEs + bytes in both dirs
3830 - improved log format to indicate the backend and the time in ms.
3831 - lots of cleanups
3832
Willy Tarreau9c9fea42006-10-16 00:03:35 +020038332006/10/15 : 1.3.3
3834 - fix broken redispatch option in case the connection has already
3835 been marked "in progress" (ie: nearly always).
3836 - support regparm on x86 to speed up some often called functions
3837 - removed a few useless calls to gettimeofday() in log functions.
3838 - lots of 'const char*' cleanups
3839 - turn every FD_* into functions which are faster on recent CPUs
3840
Willy Tarreau690f9aa2006-09-03 11:23:06 +020038412006/09/03 : 1.3.2
3842 - started the changes towards I/O completion callbacks. stream_sock* have
3843 replaced event_*.
3844 - added the new "reqtarpit" and "reqitarpit" protection features
3845
Willy Tarreau8f2b8552006-07-09 17:11:39 +020038462006/07/09 : 1.3.1 (1.2.15)
3847 - now, haproxy warns about missing timeout during startup to try to
3848 eliminate all those buggy configurations.
3849 - added "Content-Type: text/html" in responses wherever appropriate, as
3850 suggested by Cameron Simpson.
3851 - implemented "option ssl-hello-chk" to use SSLv3 CLIENT HELLO messages to
3852 test server's health
3853 - implemented "monitor-uri" so that haproxy can reply to a specific URI with
3854 an "HTTP/1.0 200 OK" response. This is useful to validate multiple proxies
3855 at once.
3856
Willy Tarreaub9e98b62006-07-03 10:32:46 +020038572006/06/29 : 1.3.0
3858 - exploded the whole file into multiple .c and .h. No functionnal
Willy Tarreau8f2b8552006-07-09 17:11:39 +02003859 difference is expected at all.
3860 - fixed a bug by which neither stats nor error messages could be returned if
3861 'clitimeout' was missing.
Willy Tarreaub9e98b62006-07-03 10:32:46 +02003862
willy tarreau7e6328d2006-05-21 23:26:20 +020038632006/05/21 : 1.2.14
3864 - new HTML status report with the 'stats' keyword.
3865 - added the 'abortonclose' option to better resist traffic surges
3866 - implemented dynamic traffic regulation with the 'minconn' option
3867 - show request time on denied requests
3868 - definitely fixed hot reconf on OpenBSD by the use of SO_REUSEPORT
3869 - now a proxy instance is allowed to run without servers, which is
3870 useful to dedicate one instance to stats
3871 - added lots of error counters
3872 - a missing parenthesis preventd matching of cacheable cookies
3873 - a missing parenthesis in poll_loop() might have caused missed events.
3874
Willy TARREAU4404b7e2006-05-14 10:00:09 +020038752006/05/14 : 1.2.13.1
3876 - an uninitialized field in the struct session could cause a crash when
3877 the session was freed. This has been encountered on Solaris only.
3878 - Solaris and OpenBSD no not support shutdown() on listening socket. Let's
3879 be nice to them by performing a soft stop if pause fails.
3880
willy tarreauc3a2e072006-05-13 18:51:38 +020038812006/05/13 : 1.2.13
3882 - 'maxconn' server parameter to do per-server session limitation
3883 - queueing to support non-blocking session limitation
3884 - fixed removal of cookies for cookie-less servers such as backup servers
3885 - two separate wait queues for expirable and non-expirable tasks provide
3886 better performance with lots of sessions.
3887 - some code cleanups and performance improvements
3888 - made state dumps a bit more verbose
3889 - fixed missing checks for NULL srv in dispatch mode
3890 - load balancing on backup servers was not possible in source hash mode.
3891 - two session flags shared the same bit, but fortunately they were not
3892 compatible.
3893
willy tarreauc0d4bbd2006-04-15 21:47:50 +020038942006/04/15 : 1.2.12
3895 Very few changes preparing for more important changes to support per-server
3896 session limitations and queueing :
3897 - ignore leading empty lines in HTTP requests as suggested by RFC2616.
3898 - added the 'weight' parameter to the servers, limited to 1..256. It applies
3899 to roundrobin and source hash.
3900 - the optional '-s' option could clobber '-st' and '-sf' if compiled in.
3901
willy tarreaue0dd2692006-03-30 16:27:34 +020039022006/03/30 : 1.2.11.1
3903 - under some conditions, it might have been possible that when the
3904 last dead server became available, it would not have been used
3905 till another one would have changed state. Could not be reproduced
3906 at all, however seems possible from the code.
3907
willy tarreaud2058dc2006-03-25 20:35:41 +010039082006/03/25 : 1.2.11
3909 - added the '-db' command-line option to disable backgrounding.
3910 - added the -sf/-st command-line arguments which are used to specify
3911 a list of pids to send a FINISH or TERMINATE signal upon startup.
3912 They will also be asked to release their port if a bind fails.
3913 - reworked the startup mechanism to allow the sending of a signal to a list
3914 of old pids if a socket cannot be bound, with a retry for a limited amount
3915 of time (1 second by default).
3916 - added the ability to enforce limits on memory usage.
3917 - added the 'source' load-balancing algorithm which uses the source IP(v4|v6)
3918 - re-architectured the server round-robin mechanism to ease integration of
3919 other algorithms. It now relies on the number of active and backup servers.
3920 - added a counter for the number of active and backup servers, and report
3921 these numbers upon SIGHUP or state change.
3922
willy tarreaubfad5742006-03-23 14:19:11 +010039232006/03/23 : 1.2.10.1
3924 - while fixing the backup server round-robin "feature", a new bug was
3925 introduced which could miss some backup servers.
3926 - the displayed proxy name was wrong when dumping upon SIGHUP.
3927
willy tarreauaaff30e2006-03-19 21:30:41 +010039282006/03/19 : 1.2.10
3929 - assert.h is needed when DEBUG is defined.
3930 - ENORMOUS long standing bug affecting the epoll polling system :
3931 event_data is a union, not a structure !
3932 - Make fd management more robust and easier to debug. Also some
3933 micro-optimisations.
3934 - Limit the number of consecutive accept() in multi-process mode.
3935 This produces a more evenly distributed load across the processes and
3936 slightly improves performance by reducing bottlenecks.
3937 - Make health-checks be more regular, and faster to retry after a timeout.
3938 - Fixed some messages to ease parsing of alerts.
3939 - provided a patch to enable epoll on RHEL3 kernels.
3940 - Separated OpenBSD build from the main Makefile into a new one.
3941
willy tarreau50be0172006-03-15 19:41:19 +010039422006/03/15 : 1.2.9
3943 - haproxy could not be stopped after being paused, it had to be woken up
3944 first. This has been fixed.
3945 - the 'ulimit-n' parameter is now optional and by default computed from
3946 maxconn + the number of listeners + the number of health-checks.
3947 - it is now possible to specify a maximum number of connections at build
3948 time with the SYSTEM_MAXCONN define. The value set in the configuration
3949 file will then be limited to this value, and only the command-line '-n'
3950 option will be able to bypass it. It will prevent against accidental
3951 high memory usage on small systems.
3952 - RFC2616 expects that any HTTP agent accepts multi-line headers. Earlier
3953 versions did not detect a line beginning with a space as the continuation
3954 of previous header. It is now correct.
3955 - health checks sent to servers configured with identical intervals were
3956 sent in perfect synchronisation because the initial time was the same
3957 for all. This could induce high load peaks when fragile servers were
3958 hosting tens of instances for the same application. Now the load is
3959 spread evenly across the smallest interval amongst a listener.
3960 - a new 'forceclose' option was added to make the proxy close the outgoing
3961 channel to the server once it has sent all its headers and the server
3962 starts responding. This helps some servers which don't close upon the
3963 'Connection: close' header. It implies 'option httpclose'.
3964 - there was a bug in the way the backup servers were handled. They were
3965 erroneously load-balanced while the doc said the opposite. Since
3966 load-balanced backup servers is one of the features some people have
3967 been asking for, the problem was fixed to reflect the documented
3968 behaviour and a new option 'allbackups' was introduced to provide the
3969 feature to those who need it.
3970 - a never ending connect() could lead to a fast select() loop if its
3971 timeout times the number of retransmits exceeded the server read or write
3972 timeout, because the later was used to compute select()'s timeout while
3973 the connection timeout was not reached.
3974 - now we initialize the libc's localtime structures very early so that even
3975 under OOM conditions, we can still send dated error messages without
3976 segfaulting.
3977 - the 'daemon' mode implies 'quiet' and disables 'verbose' because file
3978 descriptors are closed.
3979
willy tarreau065f1c02006-01-29 22:10:07 +010039802006/01/29 : 1.2.8
3981 - fixed a nasty bug affecting poll/epoll which could return unmodified data
3982 from the server to the client, and sometimes lead to memory corruption
3983 crashing the process.
3984 - added the new pause/play mechanism with SIGTTOU/SIGTTIN for hot-reconf.
3985
39862005/12/18 : 1.2.7.1
3987 - the "retries" option was ignored because connect() could not return an
3988 error if the connection failed before the timeout.
3989 - TCP health-checks could not detect a connection refused in poll/epoll
3990 mode.
3991
willy tarreaua56eca72005-12-18 01:34:42 +010039922005/11/13 : 1.2.7
willy tarreau77bc8542005-12-18 01:31:43 +01003993 - building with -DUSE_PCRE should include PCRE headers and not regex.h. At
3994 least on Solaris, this caused the libc's regex primitives to be used instead
3995 of PCRE, which caused trouble on group references. This is now fixed.
willy tarreaud0fb4652005-12-18 01:32:04 +01003996 - delayed the quiet mode during startup so that most of the startup alerts can
3997 be displayed even in quiet mode.
3998 - display an alert when a listener has no address, invalid or no port, or when
3999 there are no enabled listeners upon startup.
willy tarreau4373b962005-12-18 01:32:31 +01004000 - added "static-pcre" to the list of supported regex options in the Makefile.
willy tarreau77bc8542005-12-18 01:31:43 +01004001
willy tarreaub952e1d2005-12-18 01:31:20 +010040022005/10/09 : 1.2.7rc (1.1.33rc)
4003 - second batch of socklen_t changes.
4004 - clean-ups from Cameron Simpson.
4005 - because tv_remain() does not know about eternity, using no timeout can
4006 make select() spin around a null time-out. Bug reported by Cameron Simpson.
4007 - client read timeout was not properly set to eternity initialized after an
4008 accept() if it was not set in the config. It remained undetected so long
4009 because eternity is 0 and newly allocated pages are zeroed by the system.
4010 - do not call get_original_dst() when not in transparent mode.
4011 - implemented a workaround for a bug in certain epoll() implementations on
4012 linux-2.4 kernels (epoll-lt <= 0.21).
4013 - implemented TCP keepalive with new options : tcpka, clitcpka, srvtcpka.
4014
willy tarreauc5f73ed2005-12-18 01:26:38 +010040152005/08/07 : 1.2.6
4016 - clean-up patch from Alexander Lazic fixes build on Debian 3.1 (socklen_t).
4017
40182005/07/06 : 1.2.6-pre5 (1.1.32)
willy tarreau0fe39652005-12-18 01:25:24 +01004019 - added the number of active sessions (proxy/process) in the logs
4020
40212005/07/06 : 1.2.6-pre4 (1.1.32-pre4)
willy tarreaub1285d52005-12-18 01:20:14 +01004022 - the time-out fix introduced in 1.1.25 caused a corner case where it was
4023 possible for a client to keep a connection maintained regardless of the
4024 timeout if the server closed the connection during the HEADER phase,
4025 while the client ignored the close request while doing nothing in the
4026 other direction. This has been fixed now by ensuring that read timeouts
4027 are re-armed when switching to any SHUTW state.
4028
40292005/07/05 : 1.2.6-pre3 (1.1.32-pre3)
4030 - enhanced error reporting in the logs. Now the proxy will precisely detect
4031 various error conditions related to the system and/or process limits, and
4032 generate LOG_EMERG logs indicating that a resource has been exhausted.
4033 - logs will contain two new characters for the error cause : 'R' indicates
4034 a resource exhausted, and 'I' indicates an internal error, though this
4035 one should never happen.
4036 - server connection timeouts can now be reported in the logs (sC), as well
4037 as connections refused because of maxconn limitations (PC).
4038
40392005/07/05 : 1.2.6-pre2 (1.1.32-pre2)
4040 - new global configuration keyword "ulimit-n" may be used to raise the FD
4041 limit to usable values.
4042 - a warning is now displayed on startup if the FD limit is lower than the
4043 configured maximum number of sockets.
4044
40452005/07/05 : 1.2.6-pre1 (1.1.32-pre1)
4046 - new configuration keyword "monitor-net" makes it possible to be monitored
4047 by external devices which connect to the proxy without being logged nor
4048 forwarded to any server. Particularly useful on generic TCPv4 relays.
4049
willy tarreau5dffb602005-12-18 01:15:23 +010040502005/06/21 : 1.2.5.2
4051 - fixed build on PPC where chars are unsigned by default
4052
willy tarreau08dedbe2005-12-18 01:13:48 +010040532005/05/02 : 1.2.5.1
4054 - dirty hack to fix a bug introduced with epoll : if we close an FD and
4055 immediately reassign it to another session through a connect(), the
4056 Prev{Read,Write}Events are not updated, which causes trouble detecting
4057 changes, thus leading to many timeouts at high loads.
4058
willy tarreau64a3cc32005-12-18 01:13:11 +010040592005/04/30 : 1.2.5 (1.1.31)
4060 - changed the runtime argument to disable epoll() to '-de'
4061 - changed the runtime argument to disable poll() to '-dp'
4062 - added global options 'nopoll' and 'noepoll' to do the same at the
4063 configuration level.
4064 - added a 'linux24e' target to the Makefile for Linux 2.4 systems patched to
4065 support epoll().
4066 - changed default FD_SETSIZE to 65536 on Solaris (default=1024)
4067 - conditionned signals redirection to #ifdef DEBUG_MEMORY
4068
willy tarreau1c2ad212005-12-18 01:11:29 +010040692005/04/26 : 1.2.5-pre4
4070 - made epoll() support a compile-time option : ENABLE_EPOLL
4071 - provided a very little libc replacement for a possibly missing epoll()
4072 implementation which can be enabled by -DUSE_MY_EPOLL
4073 - implemented the poll() poller, which can be enabled with -DENABLE_POLL.
4074 The equivalent runtime argument becomes '-P'. A few tests show that it
4075 performs like select() with many fds, but slightly slower (certainly
4076 because of the higher amount of memory involved).
4077 - separated the 3 polling methods and the tasks scheduler into 4 distinct
4078 functions which makes the code a lot more modular.
4079 - moved some event tables to private static declarations inside the poller
4080 functions.
4081 - the poller functions can now initialize themselves, run, and cleanup.
4082 - changed the runtime argument to enable epoll() to '-E'.
4083 - removed buggy epoll_ctl() code in the client_retnclose() function. This
4084 function was never meant to remove anything.
4085 - fixed a typo which caused glibc to yell about a double free on exit.
4086 - removed error checking after epoll_ctl(DEL) because we can never know if
4087 the fd is still active or already closed.
4088 - added a few entries in the makefile
4089
willy tarreauad90a0c2005-12-18 01:09:15 +010040902005/04/25 : 1.2.5-pre3
4091 - experimental epoll() support (use temporary '-e' argument)
4092
40932005/04/24 : 1.2.5-pre2
willy tarreauc1f47532005-12-18 01:08:26 +01004094 - implemented the HTTP 303 code for error redirection. This forces the
4095 browser to fetch the given URI with a GET request. The new keyword for
4096 this is 'errorloc303', and a new 'errorloc302' keyword has been created
4097 to make them easily distinguishable.
4098 - added more controls in the parser for valid use of '\x' sequence.
4099 - few fixes from Alex & Klaus
4100
willy tarreauad90a0c2005-12-18 01:09:15 +010041012005/02/17 : 1.2.5-pre1
willy tarreauc1f47532005-12-18 01:08:26 +01004102 - fixed a few errors in the documentation
4103
41042005/02/13
4105 - do not pre-initialize unused file-descriptors before select() anymore.
4106
willy tarreau12350152005-12-18 01:03:27 +010041072005/01/22 : 1.2.4
4108 - merged Alexander Lazic's and Klaus Wagner's work on application
4109 cookie-based persistence. Since this is the first merge, this version is
4110 not intended for general use and reports are more than welcome. Some
4111 documentation is really needed though.
4112
willy tarreau0174f312005-12-18 01:02:42 +010041132005/01/22 : 1.2.3 (1.1.30)
4114 - add an architecture guide to the documentation
4115 - released without any changes
4116
41172004/12/26 : 1.2.3-pre1 (1.1.30-pre1)
4118 - increased default BUFSIZE to 16 kB to accept max headers of 8 kB which is
4119 compatible with Apache. This limit can be configured in the makefile now.
4120 Thanks to Eric Fehr for the checks.
4121 - added a per-server "source" option which now makes it possible to bind to
4122 a different source for each (potentially identical) server.
4123 - changed cookie-based server selection slightly to allow several servers to
4124 share a same cookie, thus making it possible to associate backup servers to
4125 live servers and ease soft-stop for maintenance periods. (Alexander Lazic)
4126 - added the cookie 'prefix' mode which makes it possible to use persistence
4127 with thin clients which support only one cookie. The server name is prefixed
4128 before the application cookie, and restore back.
4129 - fixed the order of servers within an instance to match documentation. Now
4130 the servers are *really* used in the order of their declaration. This is
4131 particularly important when multiple backup servers are in use.
4132
willy tarreau4302f492005-12-18 01:00:37 +010041332004/10/18 : 1.2.2 (1.1.29)
4134 - fixed a bug where a TCP connection would be logged twice if the 'logasap'
4135 option was enabled without the 'tcplog' option.
4136 - encode_string() would use hdr_encode_map instead of the map argument.
4137
41382004/08/10 : (1.1.29-pre2)
4139 - the logged request is now encoded with '#XX' for unprintable characters
4140 - new keywords 'capture request header' and 'capture response header' enable
4141 logging of arbitrary HTTP headers in requests and responses
4142 - removed "-DSOLARIS" after replacing the last inet_aton() with inet_pton()
4143
willy tarreau982249e2005-12-18 00:57:06 +010041442004/06/06 : 1.2.1 (1.1.28)
4145 - added the '-V' command line option to verbosely report errors even though
4146 the -q or 'quiet' options are specified. This is useful with '-c'.
4147 - added a Red Hat init script and a .spec from Simon Matter <simon.matter@invoca.ch>
willy tarreau036e1ce2005-12-17 13:46:33 +01004148
willy tarreau982249e2005-12-18 00:57:06 +010041492004/06/05 :
4150 - added the "logasap" option which produces a log without waiting for the data
4151 to be transferred from the server to the client.
4152 - added the "httpclose" option which removes any "connection:" header and adds
4153 "Connection: close" in both direction.
willy tarreau97f58572005-12-18 00:53:44 +01004154 - added the 'checkcache' option which blocks cacheable responses containing
4155 dangerous headers, such as 'set-cookie'.
willy tarreau982249e2005-12-18 00:57:06 +01004156 - added 'rspdeny' and 'rspideny' to block certain responses to avoid sensible
4157 information leak from servers.
willy tarreau25c4ea52005-12-18 00:49:49 +01004158
41592004/04/18 :
willy tarreaudd07e972005-12-18 00:48:48 +01004160 - send an EMERG log when no server is available for a given proxy
4161 - added the '-c' command line option to syntactically check the
4162 configuration file without starting the service.
4163
willy tarreau8a86dbf2005-12-18 00:45:59 +010041642003/11/09 : 1.2.0
4165 - the same as 1.1.27 + IPv6 support on the client side
4166
willy tarreaufe2c5c12005-12-17 14:14:34 +010041672003/10/27 : 1.1.27
4168 - the configurable HTTP health check introduced in 1.1.23 revealed a shameful
4169 bug : the code still assumed that HTTP requests were the same size as the
4170 original ones (22 bytes), and failed if they were not.
4171 - added support for pidfiles.
4172
willy tarreauc58fc692005-12-17 14:13:08 +010041732003/10/22 : 1.1.26
4174 - the fix introduced in 1.1.25 for client timeouts while waiting for servers
4175 broke almost all compatibility with POST requests, because the proxy
4176 stopped to read anything from the client as soon as it got all of its
4177 headers.
4178
willy tarreauc1cae632005-12-17 14:12:23 +010041792003/10/15 : 1.1.25
4180 - added the 'tcplog' option, which provides enhanced, HTTP-like logs for
4181 generic TCP proxies, or lighter logs for HTTP proxies.
4182 - fixed a time-out condition wrongly reported as client time-out in data
4183 phase if the client timeout was lower than the connect timeout times the
4184 number of retries.
4185
willy tarreau197e8ec2005-12-17 14:10:59 +010041862003/09/21 : 1.1.24
4187 - if a client sent a full request then shut its write connection down, then
4188 the request was aborted. This case was detected only when using haproxy
4189 both as health-check client and as a server.
4190 - if 'option httpchk' is used in a 'health' mode server, then responses will
4191 change from 'OK' to 'HTTP/1.0 200 OK'.
4192 - fixed a Linux-only bug in case of HTTP server health-checks, where a single
4193 server response followed by a close could be ignored, and the server seen
4194 as failed.
4195
willy tarreaueedaa9f2005-12-17 14:08:03 +010041962003/09/19 : 1.1.23
4197 - fixed a stupid bug introduced in 1.1.22 which caused second and subsequent
4198 'default' sections to keep previous parameters, and not initialize logs
4199 correctly.
4200 - fixed a second stupid bug introduced in 1.1.22 which caused configurations
4201 relying on 'dispatch' mode to segfault at the first connection.
4202 - 'option httpchk' now supports method, HTTP version and a few headers.
4203 - now, 'option httpchk', 'cookie' and 'capture' can be specified in
4204 'defaults' section
4205
42062003/09/10 : 1.1.22
willy tarreaua41a8b42005-12-17 14:02:24 +01004207 - 'listen' now supports optionnal address:port-range lists
4208 - 'bind' introduced to add new listen addresses
4209 - fixed a bug which caused a session to be kept established on a server till
4210 it timed out if the client closed during the DATA phase.
4211 - the port part of each server address can now be empty to make the proxy
4212 connect to the server on the same port it was connected to, be an absolute
4213 unsigned number to reflect a single port (as in older versions), or an
4214 explicitly signed number (+N/-N) to indicate that this offset must be
4215 applied to the port the proxy was connected to, when connecting to the
4216 server.
4217 - the 'port' server option allows the user to specify a different
4218 health-check port than the service one. It is mandatory when only relative
4219 ports have been specified and check is required. By default, the checks are
4220 sent to the service port.
4221 - new 'defaults' section which is rather similar to 'listen' except that all
4222 values are only used as default values for future 'listen' sections, until
4223 a new 'defaults' resets them. At the moment, server options, regexes,
4224 cookie names and captures cannot be set in the 'defaults' section.
4225
willy tarreau2f6ba652005-12-17 13:57:42 +010042262003/05/06 : 1.1.21
4227 - changed the debug output format so that it now includes the session unique
4228 ID followed by the instance name at the beginning of each line.
4229 - in debug mode, accept now shows the client's IP and port.
4230 - added one 3 small debugging scripts to search and pretty print debug output
4231 - changed the default health check request to "OPTIONS /" instead of
4232 "OPTIONS *" since not all servers implement the later one.
4233 - "option httpchk" now accepts an optional parameter allowing the user to
4234 specify and URI other than '/' during health-checks.
4235
willy tarreaub1ff9db2005-12-17 13:51:03 +010042362003/04/21 : 1.1.20
4237 - fixed two problems with time-outs, one where a server would be logged as
4238 timed out during transfer that take longer to complete than the fixed
4239 time-out, and one where clients were logged as timed-out during the data
4240 phase because they didn't have anything to send. This sometimes caused
4241 slow client connections to close too early while in fact there was no
4242 problem. The proper fix would be to have a per-fd time-out with
4243 conditions depending on the state of the HTTP FSM.
4244
willy tarreau906b2682005-12-17 13:49:52 +010042452003/04/16 : 1.1.19
4246 - haproxy was NOT RFC compliant because it was case-sensitive on HTTP
4247 "Cookie:" and "Set-Cookie:" headers. This caused JVM 1.4 to fail on
4248 cookie persistence because it uses "cookie:". Two memcmp() have been
4249 replaced with strncasecmp().
4250
willy tarreau036e1ce2005-12-17 13:46:33 +010042512003/04/02 : 1.1.18
4252 - Haproxy can be compiled with PCRE regex instead of libc regex, by setting
4253 REGEX=pcre on the make command line.
4254 - HTTP health-checks now use "OPTIONS *" instead of "OPTIONS /".
4255 - when explicit source address binding is required, it is now also used for
4256 health-checks.
4257 - added 'reqpass' and 'reqipass' to allow certain headers but not the request
4258 itself.
4259 - factored several strings to reduce binary size by about 2 kB.
4260 - replaced setreuid() and setregid() with more standard setuid() and setgid().
4261 - added 4 status flags to the log line indicating who ended the connection
4262 first, the sessions state, the validity of the cookie, and action taken on
4263 the set-cookie header.
4264
42652002/10/18 : 1.1.17
4266 - add the notion of "backup" servers, which are used only when all other
4267 servers are down.
4268 - make Set-Cookie return "" instead of "(null)" when the server has no
4269 cookie assigned (useful for backup servers).
4270 - "log" now supports an optionnal level name (info, notice, err ...) above
4271 which nothing is sent.
4272 - replaced some strncmp() with memcmp() for better efficiency.
4273 - added "capture cookie" option which logs client and/or server cookies
4274 - cleaned up/down messages and dump servers states upon SIGHUP
4275 - added a redirection feature for errors : "errorloc <errnum> <url>"
4276 - now we won't insist on connecting to a dead server, even with a cookie,
4277 unless option "persist" is specified.
4278 - added HTTP/408 response for client request time-out and HTTP/50[234] for
4279 server reply time-out or errors.
4280
42812002/09/01 : 1.1.16
4282 - implement HTTP health checks when option "httpchk" is specified.
4283
42842002/08/07 : 1.1.15
4285 - replaced setpgid()/setpgrp() with setsid() for better portability, because
4286 setpgrp() doesn't have the same meaning under Solaris, Linux, and OpenBSD.
4287
42882002/07/20 : 1.1.14
4289 - added "postonly" cookie mode
4290
42912002/07/15 : 1.1.13
4292 - tv_diff used inverted parameters which led to negative times !
4293
42942002/07/13 : 1.1.12
4295 - fixed stats monitoring, and optimized some tv_* for most common cases.
4296 - replaced temporary 'newhdr' with 'trash' to reduce stack size
4297 - made HTTP errors more HTML-fiendly.
4298 - renamed strlcpy() to strlcpy2() because of a slightly difference between
4299 their behaviour (return value), to avoid confusion.
4300 - restricted HTTP messages to HTTP proxies only
4301 - added a 502 message when the connection has been refused by the server,
4302 to prevent clients from believing this is a zero-byte HTTP 0.9 reply.
4303 - changed 'Cache-control:' from 'no-cache="set-cookie"' to 'private' when
4304 inserting a cookie, because some caches (apache) don't understand it.
4305 - fixed processing of server headers when client is in SHUTR state
4306
43072002/07/04 :
4308 - automatically close fd's 0,1 and 2 when going daemon ; setpgrp() after
4309 setpgid()
4310
43112002/06/04 : 1.1.11
4312 - fixed multi-cookie handling in client request to allow clean deletion
4313 in insert+indirect mode. Now, only the server cookie is deleted and not
willy tarreau906b2682005-12-17 13:49:52 +01004314 all the header. Should now be compliant to RFC2965.
willy tarreau036e1ce2005-12-17 13:46:33 +01004315 - added a "nocache" option to "cookie" to specify that we explicitly want
4316 to add a "cache-control" header when we add a cookie.
4317 It is also possible to add an "Expires: <old-date>" to keep compatibility
4318 with old/broken caches.
4319
43202002/05/10 : 1.1.10
4321 - if a cookie is used in insert+indirect mode, it's desirable that the
4322 the servers don't see it. It was not possible to remove it correctly
4323 with regexps, so now it's removed automatically.
4324
43252002/04/19 : 1.1.9
4326 - don't use snprintf()'s return value as an end of message since it may
4327 be larger. This caused bus errors and segfaults in internal libc's
4328 getenv() during localtime() in send_log().
4329 - removed dead insecure send_syslog() function and all references to it.
4330 - fixed warnings on Solaris due to buggy implementation of isXXXX().
4331
43322002/04/18 : 1.1.8
4333 - option "dontlognull"
4334 - fixed "double space" bug in config parser
4335 - fixed an uninitialized server field in case of dispatch
4336 with no existing server which could cause a segfault during
4337 logging.
4338 - the pid logged was always the father's, which was wrong for daemons.
4339 - fixed wrong level "LOG_INFO" for message "proxy started".
4340
43412002/04/13 :
4342 - http logging is now complete :
4343 - ip:port, date, proxy, server
4344 - req_time, conn_time, hdr_time, tot_time
4345 - status, size, request
4346 - source address
4347
43482002/04/12 : 1.1.7
4349 - added option forwardfor
4350 - added reqirep, reqidel, reqiallow, reqideny, rspirep, rspidel
4351 - added "log global" in "listen" section.
4352
43532002/04/09 :
4354 - added a new "global" section :
4355 - logs
4356 - debug, quiet, daemon modes
4357 - uid, gid, chroot, nbproc, maxconn
4358
43592002/04/08 : 1.1.6
4360 - regex are now chained and not limited anymore.
4361 - unavailable server now returns HTTP/502.
4362 - increased per-line args limit to 40
4363 - added reqallow/reqdeny to block some request on matches
4364 - added HTTP 400/403 responses
4365
43662002/04/03 : 1.1.5
4367 - connection logging displayed incorrect source address.
4368 - added proxy start/stop and server up/down log events.
4369 - replaced log message short buffers with larger trash.
4370 - enlarged buffer to 8 kB and replace buffer to 4 kB.
4371
43722002/03/25 : 1.1.4
4373 - made rise/fall/interval time configurable
4374
43752002/03/22 : 1.1.3
4376 - fixed a bug : cr_expire and cw_expire were inverted in CL_STSHUT[WR]
4377 which could lead to loops.
4378
43792002/03/21 : 1.1.2
4380 - fixed a bug in buffer management where we could have a loop
4381 between event_read() and process_{cli|srv} if R==BUFSIZE-MAXREWRITE.
4382 => implemented an adjustable buffer limit.
4383 - fixed a bug : expiration of tasks in wait queue timeout is used again,
4384 and running tasks are skipped.
4385 - added some debug lines for accept events.
4386 - send warnings for servers up/down.
4387
43882002/03/12 : 1.1.1
4389 - fixed a bug in total failure handling
4390 - fixed a bug in timestamp comparison within same second (tv_cmp_ms)
4391
43922002/03/10 : 1.1.0
4393 - fixed a few timeout bugs
4394 - rearranged the task scheduler subsystem to improve performance,
4395 add new tasks, and make it easier to later port to librt ;
4396 - allow multiple accept() for one select() wake up ;
4397 - implemented internal load balancing with basic health-check ;
4398 - cookie insertion and header add/replace/delete, with better strings
4399 support.
4400
44012002/03/08
4402 - reworked buffer handling to fix a few rewrite bugs, and
4403 improve overall performance.
4404 - implement the "purge" option to delete server cookies in direct mode.
4405
44062002/03/07
4407 - fixed some error cases where the maxfd was not decreased.
4408
44092002/02/26
4410 - now supports transparent proxying, at least on linux 2.4.
4411
44122002/02/12
4413 - soft stop works again (fixed select timeout computation).
4414 - it seems that TCP proxies sometimes cannot timeout.
4415 - added a "quiet" mode.
4416 - enforce file descriptor limitation on socket() and accept().
4417
44182001/12/30 : release of version 1.0.2 : fixed a bug in header processing
44192001/12/19 : release of version 1.0.1 : no MSG_NOSIGNAL on solaris
44202001/12/16 : release of version 1.0.0.
44212001/12/16 : added syslog capability for each accepted connection.
44222001/11/19 : corrected premature end of files and occasional SIGPIPE.
44232001/10/31 : added health-check type servers (mode health) which replies OK then closes.
44242001/10/30 : added the ability to support standard TCP proxies and HTTP proxies
4425 with or without cookies (use keyword http for this).
44262001/09/01 : added client/server header replacing with regexps.
4427 eg:
4428 cliexp ^(Host:\ [^:]*).* Host:\ \1:80
4429 srvexp ^Server:\ .* Server:\ Apache
44302000/11/29 : first fully working release with complete FSMs and timeouts.
44312000/11/28 : major rewrite
44322000/11/26 : first write