blob: c092bd34b138c4b094f36c04cfc1d1d6fcb1416d [file] [log] [blame]
willy tarreau036e1ce2005-12-17 13:46:33 +01001ChangeLog :
2===========
willy tarreau4302f492005-12-18 01:00:37 +01003
Willy Tarreaue855f422007-10-18 22:38:22 +020042007/10/18 : 1.3.13
5 - replace the code under O'Reilly license (Arnaud Cornet)
6 - add a small man page (Arnaud Cornet)
7 - stats: report haproxy's version by default (Krzysztof Oledzki)
8 - stats: count server retries and redispatches (Krzysztof Oledzki)
9 - core: added easy support for Doug Lea's malloc (dlmalloc)
10 - core: fade out memory usage when stopping proxies
11 - core: moved the sockaddr pointer to the fdtab structure
12 - core: add generic protocol support
13 - core: implement client-side support for PF_UNIX sockets
14 - stats: implement the CSV output
15 - stats: add a link to the CSV export HTML page
16 - stats: implement the statistics output on a unix socket
17 - config: introduce the "stats" keyword in global section
18 - build: centralize version and date into one file for each
19 - tests: added a new hash algorithm
20
212007/10/18 : 1.3.12.3
22 - add the "nolinger" option to disable data lingering (Alexandre Cassen)
23 - fix double-free during clean exit (Krzysztof Oledzki)
24 - prevent the system from sending an RST when closing health-checks
25 (Krzysztof Oledzki)
26 - do not add a cache-control header when on non-cacheable responses
27 (Krzysztof Oledzki)
28 - spread health checks even more (Krzysztof Oledzki)
29 - stats: scope "." must match the backend and not the frontend
30 - fixed call to chroot() during startup
31 - fix wrong timeout computation in event_accept()
32 - remove condition for exit() under fork() failure
33
342007/09/20 : 1.3.12.2
35 - fix configuration sanity checks for TCP listeners
36 - set the log socket receive window to zero bytes
37 - pre-initialize timeouts to infinity, not zero
38 - fix the SIGHUP message not to alert on server-less proxies
39 - timeouts and retries could be ignored when switching backend
40 - added a file to check that "retries" works.
41 - O'Reilly has clarified its license
42
432007/09/05 : 1.3.12.1
44 - spec I/O: fix allocations of spec entries for an FD
45 - ensure we never overflow in chunk_printf()
46 - improve behaviour with large number of servers per proxy
47 - add support for "stats refresh <interval>"
48 - stats page: added links for 'refresh' and 'hide down'
49 - fix backend's weight in the stats page.
50 - the "stats" keyword is not allowed in a pure frontend.
51 - provide a test configuration file for stats and checks
52
Willy Tarreaub21152b2007-06-17 23:41:40 +0200532007/06/17 : 1.3.12
54 - fix segfault at exit when using captures
55 - bug: negation in ACL conds was not cleared between terms
56 - errorfile: use a local file to feed error messages
57 - acl: support '-i' to ignore case when matching
58 - acl: smarter integer comparison with operators eq,lt,gt,le,ge
59 - acl: support maching on 'path' component
60 - acl: implement matching on header values
61 - acl: distinguish between request and response headers
62 - acl: permit to return any header when no name specified
63 - acl: provide default ACLs
64 - added the 'use_backend' keyword for full content-switching
65 - acl: specify the direction during fetches
66 - acl: provide the argument length for fetch functions
67 - acl: provide a reference to the expr to fetch()
68 - improve memory freeing upon exit
69 - str2net() must not change the const char *
70 - shut warnings 'is*' macros from ctype.h on solaris
71
Willy Tarreaua3503e02007-06-03 17:27:07 +0200722007/06/03 : 1.3.11.4
73 - do not re-arm read timeout in SHUTR state !
74 - optimize I/O by detecting system starvation
75 - the epoll FD must not be shared between processes
76 - limit the number of events returned by *poll*
77
Willy Tarreau3c6fc072007-05-14 14:40:25 +0200782007/05/14 : 1.3.11.3
79 - pre-initialize timeouts with tv_eternity during parsing
80
Willy Tarreaufc273c22007-05-14 03:42:47 +0200812007/05/14 : 1.3.11.2
82 - fixed broken health-checks since switch to timeval
83
Willy Tarreau3c5340c2007-05-14 03:18:43 +0200842007/05/14 : 1.3.11.1
85 - fixed ev_kqueue which was forgotten during the switch to timeval
86 - allowed null timeouts for past events in select
87
Willy Tarreau544eb402007-05-14 02:42:33 +0200882007/05/14 : 1.3.11
89 - fixed ev_sepoll again by rewriting the state machine
90 - switched all timeouts to timevals instead of milliseconds
91 - improved memory management using mempools v2.
92 - several minor optimizations
93
Willy Tarreau9ca931f2007-05-10 07:51:17 +0200942007/05/09 : 1.3.10.2
95 - fixed build on OpenBSD (missing types.h)
96
Willy Tarreau13398d32007-05-09 22:58:28 +0200972007/05/09 : 1.3.10.1
98 - fixed sepoll transition matrix (two states were missing)
99
Willy Tarreau61beedf2007-05-09 01:44:58 +02001002007/05/08 : 1.3.10
101 - several fixes in ev_sepoll
102 - fixed some expiration dates on some tasks
103 - fixed a bug in connection establishment detection due to speculative I/O
104 - fixed rare bug occuring on TCP with early close (reported by Andy Smith)
105 - implemented URI hashing algorithm (Guillaume Dallaire)
106 - implemented SMTP health checks (Peter van Dijk)
107 - replaced the rbtree with ul2tree from old scheduler project
108 - new framework for generic ACL support
109 - added the 'acl' and 'block' keywords to the config language
110 - added several ACL criteria and matches (IP, port, URI, ...)
111 - cleaned up and better modularization for some time functions
112 - fixed list macros
113 - fixed useless memory allocation in str2net()
114 - store the original destination address in the session
115
Willy Tarreau6e0433f2007-04-16 01:18:12 +02001162007/04/15 : 1.3.9
117 - modularized the polling mechanisms and use function pointers instead
118 of macros at many places
119 - implemented support for FreeBSD's kqueue() polling mechanism
120 - fixed a warning on OpenBSD : MIN/MAX redefined
121 - change socket registration order at startup to accomodate kqueue.
122 - several makefile cleanups to support old shells
123 - fix build with limits.h once for all
124 - ev_epoll: do not rely on fd_sets anymore, use changes stacks instead.
125 - fdtab now holds the results of polling
126 - implemented support for speculative I/O processing with epoll()
127 - remove useless calls to shutdown(SHUT_RD), resulting in small speed boost
128 - auto-registering of pollers at load time
129
Willy Tarreau42c76592007-04-03 20:30:13 +02001302007/04/03 : 1.3.8.2
131 - rewriting either the status line or request line could crash the
132 process due to a pointer which ought to be reset before parsing.
133 - rewriting the status line in the response did not work, it caused
134 a 502 Bad Gateway due to an erroneous state during parsing
135
Willy Tarreauef6d7612007-04-01 11:06:22 +02001362007/04/01 : 1.3.8.1
137 - fix reqadd when no option httpclose is used.
138 - removed now unused fiprm and beprm from proxies
139 - split logs into two versions : TCP and HTTP
140 - added some docs about http headers storage and acls
141 - added a VIM script for syntax color highlighting (Bruno Michel)
142
Willy Tarreaud661cc02007-03-26 00:24:56 +02001432007/03/25 : 1.3.8
144 - fixed several bugs which might have caused a crash with bad configs
145 - several optimizations in header processing
146 - many progresses towards transaction-based processing
147 - option forwardfor may be used in frontends
148 - completed HTTP response processing
149 - some code refactoring between request and response processing
150 - new HTTP header manipulation functions
151 - optimizations on the recv() patch to reduce CPU usage under very
152 high data rates.
153 - more user-friendly help about the 'usesrc' keyword (CTTPROXY)
154 - username/groupname support from Marcus Rueckert
155 - added the "except" keyword to the "forwardfor" option (Bryan German)
156 - support for health-checks on other addresses (Fabrice Dulaunoy)
157 - makefile for MacOS 10.4 / Darwin (Dan Zinngrabe)
158 - do not insert "Connection: close" in HTTP/1.0 messages
159
Willy Tarreau9cabf702007-01-26 23:49:01 +01001602007/01/26 : 1.3.7
161 - fix critical bug introduced with 1.3.6 : an empty request header
162 may lead to a crash due to missing pointer assignment
163 - hdr_idx might be left uninitialized in debug mode
164 - fixed build on FreeBSD due to missing fd_set declaration
165
Willy Tarreaue7a24382007-01-22 08:57:44 +01001662007/01/22 : 1.3.6.1
167 - change in the header chaining broke cookies and authentication
168
Willy Tarreau49e1ee82007-01-22 00:56:46 +01001692007/01/22 : 1.3.6
170 - stats now support the HEAD method too
171 - extracted http request from the session
172 - huge rework of the HTTP parser which is now a 28-state FSM.
173 - linux-style likely/unlikely macros for optimization hints
174 - do not create a server socket when there's no server
175 - imported lots of docs
176
Willy Tarreau5871f8e2007-01-07 02:47:01 +01001772007/01/07 : 1.3.5
178 - stats: swap color sets for active and backup servers
179 - try to guess server check port when unset
180 - added complete support and doc for TCP Splicing
181 - replace the wait-queue linked list with an rbtree.
182 - a few bugfixes and cleanups
183
Willy Tarreau85270da2007-01-02 00:59:39 +01001842007/01/02 : 1.3.4
185 - support for cttproxy on the server side to present the client
186 address to the server.
187 - added support for SO_REUSEPORT on Linux (needs kernel patch)
188 - new RFC2616-compliant HTTP request parser with header indexing
189 - split proxies in frontends, rulesets and backends
190 - implemented the 'req[i]setbe' to select a backend depending
191 on the contents
192 - added the 'default_backend' keyword to select a default BE.
193 - new stats page featuring FEs and BEs + bytes in both dirs
194 - improved log format to indicate the backend and the time in ms.
195 - lots of cleanups
196
Willy Tarreau9c9fea42006-10-16 00:03:35 +02001972006/10/15 : 1.3.3
198 - fix broken redispatch option in case the connection has already
199 been marked "in progress" (ie: nearly always).
200 - support regparm on x86 to speed up some often called functions
201 - removed a few useless calls to gettimeofday() in log functions.
202 - lots of 'const char*' cleanups
203 - turn every FD_* into functions which are faster on recent CPUs
204
Willy Tarreau690f9aa2006-09-03 11:23:06 +02002052006/09/03 : 1.3.2
206 - started the changes towards I/O completion callbacks. stream_sock* have
207 replaced event_*.
208 - added the new "reqtarpit" and "reqitarpit" protection features
209
Willy Tarreau8f2b8552006-07-09 17:11:39 +02002102006/07/09 : 1.3.1 (1.2.15)
211 - now, haproxy warns about missing timeout during startup to try to
212 eliminate all those buggy configurations.
213 - added "Content-Type: text/html" in responses wherever appropriate, as
214 suggested by Cameron Simpson.
215 - implemented "option ssl-hello-chk" to use SSLv3 CLIENT HELLO messages to
216 test server's health
217 - implemented "monitor-uri" so that haproxy can reply to a specific URI with
218 an "HTTP/1.0 200 OK" response. This is useful to validate multiple proxies
219 at once.
220
Willy Tarreaub9e98b62006-07-03 10:32:46 +02002212006/06/29 : 1.3.0
222 - exploded the whole file into multiple .c and .h. No functionnal
Willy Tarreau8f2b8552006-07-09 17:11:39 +0200223 difference is expected at all.
224 - fixed a bug by which neither stats nor error messages could be returned if
225 'clitimeout' was missing.
Willy Tarreaub9e98b62006-07-03 10:32:46 +0200226
willy tarreau7e6328d2006-05-21 23:26:20 +02002272006/05/21 : 1.2.14
228 - new HTML status report with the 'stats' keyword.
229 - added the 'abortonclose' option to better resist traffic surges
230 - implemented dynamic traffic regulation with the 'minconn' option
231 - show request time on denied requests
232 - definitely fixed hot reconf on OpenBSD by the use of SO_REUSEPORT
233 - now a proxy instance is allowed to run without servers, which is
234 useful to dedicate one instance to stats
235 - added lots of error counters
236 - a missing parenthesis preventd matching of cacheable cookies
237 - a missing parenthesis in poll_loop() might have caused missed events.
238
Willy TARREAU4404b7e2006-05-14 10:00:09 +02002392006/05/14 : 1.2.13.1
240 - an uninitialized field in the struct session could cause a crash when
241 the session was freed. This has been encountered on Solaris only.
242 - Solaris and OpenBSD no not support shutdown() on listening socket. Let's
243 be nice to them by performing a soft stop if pause fails.
244
willy tarreauc3a2e072006-05-13 18:51:38 +02002452006/05/13 : 1.2.13
246 - 'maxconn' server parameter to do per-server session limitation
247 - queueing to support non-blocking session limitation
248 - fixed removal of cookies for cookie-less servers such as backup servers
249 - two separate wait queues for expirable and non-expirable tasks provide
250 better performance with lots of sessions.
251 - some code cleanups and performance improvements
252 - made state dumps a bit more verbose
253 - fixed missing checks for NULL srv in dispatch mode
254 - load balancing on backup servers was not possible in source hash mode.
255 - two session flags shared the same bit, but fortunately they were not
256 compatible.
257
willy tarreauc0d4bbd2006-04-15 21:47:50 +02002582006/04/15 : 1.2.12
259 Very few changes preparing for more important changes to support per-server
260 session limitations and queueing :
261 - ignore leading empty lines in HTTP requests as suggested by RFC2616.
262 - added the 'weight' parameter to the servers, limited to 1..256. It applies
263 to roundrobin and source hash.
264 - the optional '-s' option could clobber '-st' and '-sf' if compiled in.
265
willy tarreaue0dd2692006-03-30 16:27:34 +02002662006/03/30 : 1.2.11.1
267 - under some conditions, it might have been possible that when the
268 last dead server became available, it would not have been used
269 till another one would have changed state. Could not be reproduced
270 at all, however seems possible from the code.
271
willy tarreaud2058dc2006-03-25 20:35:41 +01002722006/03/25 : 1.2.11
273 - added the '-db' command-line option to disable backgrounding.
274 - added the -sf/-st command-line arguments which are used to specify
275 a list of pids to send a FINISH or TERMINATE signal upon startup.
276 They will also be asked to release their port if a bind fails.
277 - reworked the startup mechanism to allow the sending of a signal to a list
278 of old pids if a socket cannot be bound, with a retry for a limited amount
279 of time (1 second by default).
280 - added the ability to enforce limits on memory usage.
281 - added the 'source' load-balancing algorithm which uses the source IP(v4|v6)
282 - re-architectured the server round-robin mechanism to ease integration of
283 other algorithms. It now relies on the number of active and backup servers.
284 - added a counter for the number of active and backup servers, and report
285 these numbers upon SIGHUP or state change.
286
willy tarreaubfad5742006-03-23 14:19:11 +01002872006/03/23 : 1.2.10.1
288 - while fixing the backup server round-robin "feature", a new bug was
289 introduced which could miss some backup servers.
290 - the displayed proxy name was wrong when dumping upon SIGHUP.
291
willy tarreauaaff30e2006-03-19 21:30:41 +01002922006/03/19 : 1.2.10
293 - assert.h is needed when DEBUG is defined.
294 - ENORMOUS long standing bug affecting the epoll polling system :
295 event_data is a union, not a structure !
296 - Make fd management more robust and easier to debug. Also some
297 micro-optimisations.
298 - Limit the number of consecutive accept() in multi-process mode.
299 This produces a more evenly distributed load across the processes and
300 slightly improves performance by reducing bottlenecks.
301 - Make health-checks be more regular, and faster to retry after a timeout.
302 - Fixed some messages to ease parsing of alerts.
303 - provided a patch to enable epoll on RHEL3 kernels.
304 - Separated OpenBSD build from the main Makefile into a new one.
305
willy tarreau50be0172006-03-15 19:41:19 +01003062006/03/15 : 1.2.9
307 - haproxy could not be stopped after being paused, it had to be woken up
308 first. This has been fixed.
309 - the 'ulimit-n' parameter is now optional and by default computed from
310 maxconn + the number of listeners + the number of health-checks.
311 - it is now possible to specify a maximum number of connections at build
312 time with the SYSTEM_MAXCONN define. The value set in the configuration
313 file will then be limited to this value, and only the command-line '-n'
314 option will be able to bypass it. It will prevent against accidental
315 high memory usage on small systems.
316 - RFC2616 expects that any HTTP agent accepts multi-line headers. Earlier
317 versions did not detect a line beginning with a space as the continuation
318 of previous header. It is now correct.
319 - health checks sent to servers configured with identical intervals were
320 sent in perfect synchronisation because the initial time was the same
321 for all. This could induce high load peaks when fragile servers were
322 hosting tens of instances for the same application. Now the load is
323 spread evenly across the smallest interval amongst a listener.
324 - a new 'forceclose' option was added to make the proxy close the outgoing
325 channel to the server once it has sent all its headers and the server
326 starts responding. This helps some servers which don't close upon the
327 'Connection: close' header. It implies 'option httpclose'.
328 - there was a bug in the way the backup servers were handled. They were
329 erroneously load-balanced while the doc said the opposite. Since
330 load-balanced backup servers is one of the features some people have
331 been asking for, the problem was fixed to reflect the documented
332 behaviour and a new option 'allbackups' was introduced to provide the
333 feature to those who need it.
334 - a never ending connect() could lead to a fast select() loop if its
335 timeout times the number of retransmits exceeded the server read or write
336 timeout, because the later was used to compute select()'s timeout while
337 the connection timeout was not reached.
338 - now we initialize the libc's localtime structures very early so that even
339 under OOM conditions, we can still send dated error messages without
340 segfaulting.
341 - the 'daemon' mode implies 'quiet' and disables 'verbose' because file
342 descriptors are closed.
343
willy tarreau065f1c02006-01-29 22:10:07 +01003442006/01/29 : 1.2.8
345 - fixed a nasty bug affecting poll/epoll which could return unmodified data
346 from the server to the client, and sometimes lead to memory corruption
347 crashing the process.
348 - added the new pause/play mechanism with SIGTTOU/SIGTTIN for hot-reconf.
349
3502005/12/18 : 1.2.7.1
351 - the "retries" option was ignored because connect() could not return an
352 error if the connection failed before the timeout.
353 - TCP health-checks could not detect a connection refused in poll/epoll
354 mode.
355
willy tarreaua56eca72005-12-18 01:34:42 +01003562005/11/13 : 1.2.7
willy tarreau77bc8542005-12-18 01:31:43 +0100357 - building with -DUSE_PCRE should include PCRE headers and not regex.h. At
358 least on Solaris, this caused the libc's regex primitives to be used instead
359 of PCRE, which caused trouble on group references. This is now fixed.
willy tarreaud0fb4652005-12-18 01:32:04 +0100360 - delayed the quiet mode during startup so that most of the startup alerts can
361 be displayed even in quiet mode.
362 - display an alert when a listener has no address, invalid or no port, or when
363 there are no enabled listeners upon startup.
willy tarreau4373b962005-12-18 01:32:31 +0100364 - added "static-pcre" to the list of supported regex options in the Makefile.
willy tarreau77bc8542005-12-18 01:31:43 +0100365
willy tarreaub952e1d2005-12-18 01:31:20 +01003662005/10/09 : 1.2.7rc (1.1.33rc)
367 - second batch of socklen_t changes.
368 - clean-ups from Cameron Simpson.
369 - because tv_remain() does not know about eternity, using no timeout can
370 make select() spin around a null time-out. Bug reported by Cameron Simpson.
371 - client read timeout was not properly set to eternity initialized after an
372 accept() if it was not set in the config. It remained undetected so long
373 because eternity is 0 and newly allocated pages are zeroed by the system.
374 - do not call get_original_dst() when not in transparent mode.
375 - implemented a workaround for a bug in certain epoll() implementations on
376 linux-2.4 kernels (epoll-lt <= 0.21).
377 - implemented TCP keepalive with new options : tcpka, clitcpka, srvtcpka.
378
willy tarreauc5f73ed2005-12-18 01:26:38 +01003792005/08/07 : 1.2.6
380 - clean-up patch from Alexander Lazic fixes build on Debian 3.1 (socklen_t).
381
3822005/07/06 : 1.2.6-pre5 (1.1.32)
willy tarreau0fe39652005-12-18 01:25:24 +0100383 - added the number of active sessions (proxy/process) in the logs
384
3852005/07/06 : 1.2.6-pre4 (1.1.32-pre4)
willy tarreaub1285d52005-12-18 01:20:14 +0100386 - the time-out fix introduced in 1.1.25 caused a corner case where it was
387 possible for a client to keep a connection maintained regardless of the
388 timeout if the server closed the connection during the HEADER phase,
389 while the client ignored the close request while doing nothing in the
390 other direction. This has been fixed now by ensuring that read timeouts
391 are re-armed when switching to any SHUTW state.
392
3932005/07/05 : 1.2.6-pre3 (1.1.32-pre3)
394 - enhanced error reporting in the logs. Now the proxy will precisely detect
395 various error conditions related to the system and/or process limits, and
396 generate LOG_EMERG logs indicating that a resource has been exhausted.
397 - logs will contain two new characters for the error cause : 'R' indicates
398 a resource exhausted, and 'I' indicates an internal error, though this
399 one should never happen.
400 - server connection timeouts can now be reported in the logs (sC), as well
401 as connections refused because of maxconn limitations (PC).
402
4032005/07/05 : 1.2.6-pre2 (1.1.32-pre2)
404 - new global configuration keyword "ulimit-n" may be used to raise the FD
405 limit to usable values.
406 - a warning is now displayed on startup if the FD limit is lower than the
407 configured maximum number of sockets.
408
4092005/07/05 : 1.2.6-pre1 (1.1.32-pre1)
410 - new configuration keyword "monitor-net" makes it possible to be monitored
411 by external devices which connect to the proxy without being logged nor
412 forwarded to any server. Particularly useful on generic TCPv4 relays.
413
willy tarreau5dffb602005-12-18 01:15:23 +01004142005/06/21 : 1.2.5.2
415 - fixed build on PPC where chars are unsigned by default
416
willy tarreau08dedbe2005-12-18 01:13:48 +01004172005/05/02 : 1.2.5.1
418 - dirty hack to fix a bug introduced with epoll : if we close an FD and
419 immediately reassign it to another session through a connect(), the
420 Prev{Read,Write}Events are not updated, which causes trouble detecting
421 changes, thus leading to many timeouts at high loads.
422
willy tarreau64a3cc32005-12-18 01:13:11 +01004232005/04/30 : 1.2.5 (1.1.31)
424 - changed the runtime argument to disable epoll() to '-de'
425 - changed the runtime argument to disable poll() to '-dp'
426 - added global options 'nopoll' and 'noepoll' to do the same at the
427 configuration level.
428 - added a 'linux24e' target to the Makefile for Linux 2.4 systems patched to
429 support epoll().
430 - changed default FD_SETSIZE to 65536 on Solaris (default=1024)
431 - conditionned signals redirection to #ifdef DEBUG_MEMORY
432
willy tarreau1c2ad212005-12-18 01:11:29 +01004332005/04/26 : 1.2.5-pre4
434 - made epoll() support a compile-time option : ENABLE_EPOLL
435 - provided a very little libc replacement for a possibly missing epoll()
436 implementation which can be enabled by -DUSE_MY_EPOLL
437 - implemented the poll() poller, which can be enabled with -DENABLE_POLL.
438 The equivalent runtime argument becomes '-P'. A few tests show that it
439 performs like select() with many fds, but slightly slower (certainly
440 because of the higher amount of memory involved).
441 - separated the 3 polling methods and the tasks scheduler into 4 distinct
442 functions which makes the code a lot more modular.
443 - moved some event tables to private static declarations inside the poller
444 functions.
445 - the poller functions can now initialize themselves, run, and cleanup.
446 - changed the runtime argument to enable epoll() to '-E'.
447 - removed buggy epoll_ctl() code in the client_retnclose() function. This
448 function was never meant to remove anything.
449 - fixed a typo which caused glibc to yell about a double free on exit.
450 - removed error checking after epoll_ctl(DEL) because we can never know if
451 the fd is still active or already closed.
452 - added a few entries in the makefile
453
willy tarreauad90a0c2005-12-18 01:09:15 +01004542005/04/25 : 1.2.5-pre3
455 - experimental epoll() support (use temporary '-e' argument)
456
4572005/04/24 : 1.2.5-pre2
willy tarreauc1f47532005-12-18 01:08:26 +0100458 - implemented the HTTP 303 code for error redirection. This forces the
459 browser to fetch the given URI with a GET request. The new keyword for
460 this is 'errorloc303', and a new 'errorloc302' keyword has been created
461 to make them easily distinguishable.
462 - added more controls in the parser for valid use of '\x' sequence.
463 - few fixes from Alex & Klaus
464
willy tarreauad90a0c2005-12-18 01:09:15 +01004652005/02/17 : 1.2.5-pre1
willy tarreauc1f47532005-12-18 01:08:26 +0100466 - fixed a few errors in the documentation
467
4682005/02/13
469 - do not pre-initialize unused file-descriptors before select() anymore.
470
willy tarreau12350152005-12-18 01:03:27 +01004712005/01/22 : 1.2.4
472 - merged Alexander Lazic's and Klaus Wagner's work on application
473 cookie-based persistence. Since this is the first merge, this version is
474 not intended for general use and reports are more than welcome. Some
475 documentation is really needed though.
476
willy tarreau0174f312005-12-18 01:02:42 +01004772005/01/22 : 1.2.3 (1.1.30)
478 - add an architecture guide to the documentation
479 - released without any changes
480
4812004/12/26 : 1.2.3-pre1 (1.1.30-pre1)
482 - increased default BUFSIZE to 16 kB to accept max headers of 8 kB which is
483 compatible with Apache. This limit can be configured in the makefile now.
484 Thanks to Eric Fehr for the checks.
485 - added a per-server "source" option which now makes it possible to bind to
486 a different source for each (potentially identical) server.
487 - changed cookie-based server selection slightly to allow several servers to
488 share a same cookie, thus making it possible to associate backup servers to
489 live servers and ease soft-stop for maintenance periods. (Alexander Lazic)
490 - added the cookie 'prefix' mode which makes it possible to use persistence
491 with thin clients which support only one cookie. The server name is prefixed
492 before the application cookie, and restore back.
493 - fixed the order of servers within an instance to match documentation. Now
494 the servers are *really* used in the order of their declaration. This is
495 particularly important when multiple backup servers are in use.
496
willy tarreau4302f492005-12-18 01:00:37 +01004972004/10/18 : 1.2.2 (1.1.29)
498 - fixed a bug where a TCP connection would be logged twice if the 'logasap'
499 option was enabled without the 'tcplog' option.
500 - encode_string() would use hdr_encode_map instead of the map argument.
501
5022004/08/10 : (1.1.29-pre2)
503 - the logged request is now encoded with '#XX' for unprintable characters
504 - new keywords 'capture request header' and 'capture response header' enable
505 logging of arbitrary HTTP headers in requests and responses
506 - removed "-DSOLARIS" after replacing the last inet_aton() with inet_pton()
507
willy tarreau982249e2005-12-18 00:57:06 +01005082004/06/06 : 1.2.1 (1.1.28)
509 - added the '-V' command line option to verbosely report errors even though
510 the -q or 'quiet' options are specified. This is useful with '-c'.
511 - added a Red Hat init script and a .spec from Simon Matter <simon.matter@invoca.ch>
willy tarreau036e1ce2005-12-17 13:46:33 +0100512
willy tarreau982249e2005-12-18 00:57:06 +01005132004/06/05 :
514 - added the "logasap" option which produces a log without waiting for the data
515 to be transferred from the server to the client.
516 - added the "httpclose" option which removes any "connection:" header and adds
517 "Connection: close" in both direction.
willy tarreau97f58572005-12-18 00:53:44 +0100518 - added the 'checkcache' option which blocks cacheable responses containing
519 dangerous headers, such as 'set-cookie'.
willy tarreau982249e2005-12-18 00:57:06 +0100520 - added 'rspdeny' and 'rspideny' to block certain responses to avoid sensible
521 information leak from servers.
willy tarreau25c4ea52005-12-18 00:49:49 +0100522
5232004/04/18 :
willy tarreaudd07e972005-12-18 00:48:48 +0100524 - send an EMERG log when no server is available for a given proxy
525 - added the '-c' command line option to syntactically check the
526 configuration file without starting the service.
527
willy tarreau8a86dbf2005-12-18 00:45:59 +01005282003/11/09 : 1.2.0
529 - the same as 1.1.27 + IPv6 support on the client side
530
willy tarreaufe2c5c12005-12-17 14:14:34 +01005312003/10/27 : 1.1.27
532 - the configurable HTTP health check introduced in 1.1.23 revealed a shameful
533 bug : the code still assumed that HTTP requests were the same size as the
534 original ones (22 bytes), and failed if they were not.
535 - added support for pidfiles.
536
willy tarreauc58fc692005-12-17 14:13:08 +01005372003/10/22 : 1.1.26
538 - the fix introduced in 1.1.25 for client timeouts while waiting for servers
539 broke almost all compatibility with POST requests, because the proxy
540 stopped to read anything from the client as soon as it got all of its
541 headers.
542
willy tarreauc1cae632005-12-17 14:12:23 +01005432003/10/15 : 1.1.25
544 - added the 'tcplog' option, which provides enhanced, HTTP-like logs for
545 generic TCP proxies, or lighter logs for HTTP proxies.
546 - fixed a time-out condition wrongly reported as client time-out in data
547 phase if the client timeout was lower than the connect timeout times the
548 number of retries.
549
willy tarreau197e8ec2005-12-17 14:10:59 +01005502003/09/21 : 1.1.24
551 - if a client sent a full request then shut its write connection down, then
552 the request was aborted. This case was detected only when using haproxy
553 both as health-check client and as a server.
554 - if 'option httpchk' is used in a 'health' mode server, then responses will
555 change from 'OK' to 'HTTP/1.0 200 OK'.
556 - fixed a Linux-only bug in case of HTTP server health-checks, where a single
557 server response followed by a close could be ignored, and the server seen
558 as failed.
559
willy tarreaueedaa9f2005-12-17 14:08:03 +01005602003/09/19 : 1.1.23
561 - fixed a stupid bug introduced in 1.1.22 which caused second and subsequent
562 'default' sections to keep previous parameters, and not initialize logs
563 correctly.
564 - fixed a second stupid bug introduced in 1.1.22 which caused configurations
565 relying on 'dispatch' mode to segfault at the first connection.
566 - 'option httpchk' now supports method, HTTP version and a few headers.
567 - now, 'option httpchk', 'cookie' and 'capture' can be specified in
568 'defaults' section
569
5702003/09/10 : 1.1.22
willy tarreaua41a8b42005-12-17 14:02:24 +0100571 - 'listen' now supports optionnal address:port-range lists
572 - 'bind' introduced to add new listen addresses
573 - fixed a bug which caused a session to be kept established on a server till
574 it timed out if the client closed during the DATA phase.
575 - the port part of each server address can now be empty to make the proxy
576 connect to the server on the same port it was connected to, be an absolute
577 unsigned number to reflect a single port (as in older versions), or an
578 explicitly signed number (+N/-N) to indicate that this offset must be
579 applied to the port the proxy was connected to, when connecting to the
580 server.
581 - the 'port' server option allows the user to specify a different
582 health-check port than the service one. It is mandatory when only relative
583 ports have been specified and check is required. By default, the checks are
584 sent to the service port.
585 - new 'defaults' section which is rather similar to 'listen' except that all
586 values are only used as default values for future 'listen' sections, until
587 a new 'defaults' resets them. At the moment, server options, regexes,
588 cookie names and captures cannot be set in the 'defaults' section.
589
willy tarreau2f6ba652005-12-17 13:57:42 +01005902003/05/06 : 1.1.21
591 - changed the debug output format so that it now includes the session unique
592 ID followed by the instance name at the beginning of each line.
593 - in debug mode, accept now shows the client's IP and port.
594 - added one 3 small debugging scripts to search and pretty print debug output
595 - changed the default health check request to "OPTIONS /" instead of
596 "OPTIONS *" since not all servers implement the later one.
597 - "option httpchk" now accepts an optional parameter allowing the user to
598 specify and URI other than '/' during health-checks.
599
willy tarreaub1ff9db2005-12-17 13:51:03 +01006002003/04/21 : 1.1.20
601 - fixed two problems with time-outs, one where a server would be logged as
602 timed out during transfer that take longer to complete than the fixed
603 time-out, and one where clients were logged as timed-out during the data
604 phase because they didn't have anything to send. This sometimes caused
605 slow client connections to close too early while in fact there was no
606 problem. The proper fix would be to have a per-fd time-out with
607 conditions depending on the state of the HTTP FSM.
608
willy tarreau906b2682005-12-17 13:49:52 +01006092003/04/16 : 1.1.19
610 - haproxy was NOT RFC compliant because it was case-sensitive on HTTP
611 "Cookie:" and "Set-Cookie:" headers. This caused JVM 1.4 to fail on
612 cookie persistence because it uses "cookie:". Two memcmp() have been
613 replaced with strncasecmp().
614
willy tarreau036e1ce2005-12-17 13:46:33 +01006152003/04/02 : 1.1.18
616 - Haproxy can be compiled with PCRE regex instead of libc regex, by setting
617 REGEX=pcre on the make command line.
618 - HTTP health-checks now use "OPTIONS *" instead of "OPTIONS /".
619 - when explicit source address binding is required, it is now also used for
620 health-checks.
621 - added 'reqpass' and 'reqipass' to allow certain headers but not the request
622 itself.
623 - factored several strings to reduce binary size by about 2 kB.
624 - replaced setreuid() and setregid() with more standard setuid() and setgid().
625 - added 4 status flags to the log line indicating who ended the connection
626 first, the sessions state, the validity of the cookie, and action taken on
627 the set-cookie header.
628
6292002/10/18 : 1.1.17
630 - add the notion of "backup" servers, which are used only when all other
631 servers are down.
632 - make Set-Cookie return "" instead of "(null)" when the server has no
633 cookie assigned (useful for backup servers).
634 - "log" now supports an optionnal level name (info, notice, err ...) above
635 which nothing is sent.
636 - replaced some strncmp() with memcmp() for better efficiency.
637 - added "capture cookie" option which logs client and/or server cookies
638 - cleaned up/down messages and dump servers states upon SIGHUP
639 - added a redirection feature for errors : "errorloc <errnum> <url>"
640 - now we won't insist on connecting to a dead server, even with a cookie,
641 unless option "persist" is specified.
642 - added HTTP/408 response for client request time-out and HTTP/50[234] for
643 server reply time-out or errors.
644
6452002/09/01 : 1.1.16
646 - implement HTTP health checks when option "httpchk" is specified.
647
6482002/08/07 : 1.1.15
649 - replaced setpgid()/setpgrp() with setsid() for better portability, because
650 setpgrp() doesn't have the same meaning under Solaris, Linux, and OpenBSD.
651
6522002/07/20 : 1.1.14
653 - added "postonly" cookie mode
654
6552002/07/15 : 1.1.13
656 - tv_diff used inverted parameters which led to negative times !
657
6582002/07/13 : 1.1.12
659 - fixed stats monitoring, and optimized some tv_* for most common cases.
660 - replaced temporary 'newhdr' with 'trash' to reduce stack size
661 - made HTTP errors more HTML-fiendly.
662 - renamed strlcpy() to strlcpy2() because of a slightly difference between
663 their behaviour (return value), to avoid confusion.
664 - restricted HTTP messages to HTTP proxies only
665 - added a 502 message when the connection has been refused by the server,
666 to prevent clients from believing this is a zero-byte HTTP 0.9 reply.
667 - changed 'Cache-control:' from 'no-cache="set-cookie"' to 'private' when
668 inserting a cookie, because some caches (apache) don't understand it.
669 - fixed processing of server headers when client is in SHUTR state
670
6712002/07/04 :
672 - automatically close fd's 0,1 and 2 when going daemon ; setpgrp() after
673 setpgid()
674
6752002/06/04 : 1.1.11
676 - fixed multi-cookie handling in client request to allow clean deletion
677 in insert+indirect mode. Now, only the server cookie is deleted and not
willy tarreau906b2682005-12-17 13:49:52 +0100678 all the header. Should now be compliant to RFC2965.
willy tarreau036e1ce2005-12-17 13:46:33 +0100679 - added a "nocache" option to "cookie" to specify that we explicitly want
680 to add a "cache-control" header when we add a cookie.
681 It is also possible to add an "Expires: <old-date>" to keep compatibility
682 with old/broken caches.
683
6842002/05/10 : 1.1.10
685 - if a cookie is used in insert+indirect mode, it's desirable that the
686 the servers don't see it. It was not possible to remove it correctly
687 with regexps, so now it's removed automatically.
688
6892002/04/19 : 1.1.9
690 - don't use snprintf()'s return value as an end of message since it may
691 be larger. This caused bus errors and segfaults in internal libc's
692 getenv() during localtime() in send_log().
693 - removed dead insecure send_syslog() function and all references to it.
694 - fixed warnings on Solaris due to buggy implementation of isXXXX().
695
6962002/04/18 : 1.1.8
697 - option "dontlognull"
698 - fixed "double space" bug in config parser
699 - fixed an uninitialized server field in case of dispatch
700 with no existing server which could cause a segfault during
701 logging.
702 - the pid logged was always the father's, which was wrong for daemons.
703 - fixed wrong level "LOG_INFO" for message "proxy started".
704
7052002/04/13 :
706 - http logging is now complete :
707 - ip:port, date, proxy, server
708 - req_time, conn_time, hdr_time, tot_time
709 - status, size, request
710 - source address
711
7122002/04/12 : 1.1.7
713 - added option forwardfor
714 - added reqirep, reqidel, reqiallow, reqideny, rspirep, rspidel
715 - added "log global" in "listen" section.
716
7172002/04/09 :
718 - added a new "global" section :
719 - logs
720 - debug, quiet, daemon modes
721 - uid, gid, chroot, nbproc, maxconn
722
7232002/04/08 : 1.1.6
724 - regex are now chained and not limited anymore.
725 - unavailable server now returns HTTP/502.
726 - increased per-line args limit to 40
727 - added reqallow/reqdeny to block some request on matches
728 - added HTTP 400/403 responses
729
7302002/04/03 : 1.1.5
731 - connection logging displayed incorrect source address.
732 - added proxy start/stop and server up/down log events.
733 - replaced log message short buffers with larger trash.
734 - enlarged buffer to 8 kB and replace buffer to 4 kB.
735
7362002/03/25 : 1.1.4
737 - made rise/fall/interval time configurable
738
7392002/03/22 : 1.1.3
740 - fixed a bug : cr_expire and cw_expire were inverted in CL_STSHUT[WR]
741 which could lead to loops.
742
7432002/03/21 : 1.1.2
744 - fixed a bug in buffer management where we could have a loop
745 between event_read() and process_{cli|srv} if R==BUFSIZE-MAXREWRITE.
746 => implemented an adjustable buffer limit.
747 - fixed a bug : expiration of tasks in wait queue timeout is used again,
748 and running tasks are skipped.
749 - added some debug lines for accept events.
750 - send warnings for servers up/down.
751
7522002/03/12 : 1.1.1
753 - fixed a bug in total failure handling
754 - fixed a bug in timestamp comparison within same second (tv_cmp_ms)
755
7562002/03/10 : 1.1.0
757 - fixed a few timeout bugs
758 - rearranged the task scheduler subsystem to improve performance,
759 add new tasks, and make it easier to later port to librt ;
760 - allow multiple accept() for one select() wake up ;
761 - implemented internal load balancing with basic health-check ;
762 - cookie insertion and header add/replace/delete, with better strings
763 support.
764
7652002/03/08
766 - reworked buffer handling to fix a few rewrite bugs, and
767 improve overall performance.
768 - implement the "purge" option to delete server cookies in direct mode.
769
7702002/03/07
771 - fixed some error cases where the maxfd was not decreased.
772
7732002/02/26
774 - now supports transparent proxying, at least on linux 2.4.
775
7762002/02/12
777 - soft stop works again (fixed select timeout computation).
778 - it seems that TCP proxies sometimes cannot timeout.
779 - added a "quiet" mode.
780 - enforce file descriptor limitation on socket() and accept().
781
7822001/12/30 : release of version 1.0.2 : fixed a bug in header processing
7832001/12/19 : release of version 1.0.1 : no MSG_NOSIGNAL on solaris
7842001/12/16 : release of version 1.0.0.
7852001/12/16 : added syslog capability for each accepted connection.
7862001/11/19 : corrected premature end of files and occasional SIGPIPE.
7872001/10/31 : added health-check type servers (mode health) which replies OK then closes.
7882001/10/30 : added the ability to support standard TCP proxies and HTTP proxies
789 with or without cookies (use keyword http for this).
7902001/09/01 : added client/server header replacing with regexps.
791 eg:
792 cliexp ^(Host:\ [^:]*).* Host:\ \1:80
793 srvexp ^Server:\ .* Server:\ Apache
7942000/11/29 : first fully working release with complete FSMs and timeouts.
7952000/11/28 : major rewrite
7962000/11/26 : first write