1ChangeLog : 2=========== 3 42021/12/23 : 2.4.10 5 - BUILD/MINOR: server: fix compilation without SSL 6 - BUG/MEDIUM: cli: Properly set stream analyzers to process one command at a time 7 - BUG/MINOR: server: Don't rely on last default-server to init server SSL context 8 - BUG/MEDIUM: resolvers: Detach query item on response error 9 - BUG/MAJOR: segfault using multiple log forward sections. 10 - MINOR: mux-h1: Improve H1 traces by adding info about http parsers 11 - BUILD: bug: Fix error when compiling with -DDEBUG_STRICT_NOCRASH 12 - CI: Github Actions: temporarily disable BoringSSL builds 13 - MINOR: cli: "show version" displays the current process version 14 - BUILD: tree-wide: avoid warnings caused by redundant checks of obj_types 15 - IMPORT: slz: use the correct CRC32 instruction when running in 32-bit mode 16 - BUG/MINOR: cli/server: Don't crash when a server is added with a custom id 17 - DOC: spoe: Clarify use of the event directive in spoe-message section 18 - DOC: config: Specify %Ta is only available in HTTP mode 19 - DOC: config: retry-on list is space-delimited 20 - BUG/MEDIUM: mworker/cli: crash when trying to access an old PID in prompt mode 21 - MINOR: pools: work around possibly slow malloc_trim() during gc 22 - BUG/MINOR: backend: do not set sni on connection reuse 23 - BUG/MINOR: backend: restore the SF_SRV_REUSED flag original purpose 24 252021/11/24 : 2.4.9 26 - MINOR: connection: add a new CO_FL_WANT_DRAIN flag to force drain on close 27 - MINOR: mux-h2: perform a full cycle shutdown+drain on close 28 - MINOR: mux-h2: add trace on extended connect usage 29 - BUG/MEDIUM: mux-h2: reject upgrade if no RFC8441 support 30 - BUG/MINOR: resolvers: fix sent messages were counted twice 31 - BUG/MINOR: resolvers: throw log message if trash not large enough for query 32 - BUG/MINOR: cache: properly ignore unparsable max-age in quotes 33 - DOC: config: Fix typo in ssl_fc_unique_id description 34 - BUG/MINOR: http-ana: Apply stop to the current section for http-response rules 35 - Revert "BUG/MINOR: http-ana: Don't eval front after-response rules if stopped on back" 36 - DOC: lua: Be explicit with the Reply object limits 37 - MINOR: mux-h1: Slightly Improve H1 traces 38 - BUG/MEDIUM: conn-stream: Don't reset CS flags on close 39 - BUG/MINOR: mworker: doesn't launch the program postparser 40 - BUG/MINOR: mux-h2: Fix H2_CF_DEM_SHORT_READ value 41 - BUG/MEDIUM: connection: make cs_shutr/cs_shutw//cs_close() idempotent 42 - BUG/MINOR: stick-table/cli: Check for invalid ipv6 key 43 - BUG/MEDIUM: mux-h1: Handle delayed silent shut in h1_process() to release H1C 44 - BUILD: makefile: simplify detection of libatomic 45 - BUG/MEDIUM: ssl: backend TLS resumption with sni and TLSv1.3 46 - BUG/MINOR: ssl: free correctly the sni in the backend SSL cache 47 - CLEANUP: ssl: fix wrong #else commentary 48 - BUG/MEDIUM: ssl: abort with the correct SSL error when SNI not found 49 - BUG/MEDIUM: mux-h2: always process a pending shut read 50 - BUG/MEDIUM: cache/cli: make "show cache" thread-safe 51 - BUG/MEDIUM: shctx: leave the block allocator when enough blocks are found 52 - BUG/MINOR: shctx: do not look for available blocks when the first one is enough 53 - MINOR: shctx: add a few BUG_ON() for consistency checks 54 - BUG/MINOR: ssl: make SSL counters atomic 55 - MINOR: stream/mux: implement websocket stream flag 56 - MINOR: connection: implement function to update ALPN 57 - MINOR: connection: add alternative mux_ops param for conn_install_mux_be 58 - MEDIUM: server/backend: implement websocket protocol selection 59 - MINOR: server: add ws keyword 60 - MINOR: promex: backend aggregated server check status 61 - BUG/MINOR: cache: Fix loop on cache entries in "show cache" 62 632021/11/03 : 2.4.8 64 - CLEANUP: server: always include the storage for SSL settings 65 - CLEANUP: sample: rename sample_conv_var2smp() to *_sint 66 - CLEANUP: sample: uninline sample_conv_var2smp_str() 67 - MINOR: sample: provide a generic var-to-sample conversion function 68 - BUG/MEDIUM: sample: properly verify that variables cast to sample 69 - BUG/MEDIUM: mux_h2: Handle others remaining read0 cases on partial frames 70 - DOC: configuration: add clarification on escaping in keyword arguments 71 - MINOR: initcall: Rename __GLOBL and __GLOBL1. 72 - BUG/MINOR: http-ana: Don't eval front after-response rules if stopped on back 73 - BUG/MINOR: sample: Fix 'fix_tag_value' sample when waiting for more data 74 - BUG/MEDIUM: cpuset: fix cpuset size for FreeBSD 75 - BUG/MEDIUM: stream: Keep FLT_END analyzers if a stream detects a channel error 76 - Revert "CLEANUP: server: always include the storage for SSL settings" 77 - BUG/MEDIUM: tcpcheck: Properly catch early HTTP parsing errors 78 - BUG/MAJOR: dns: tcp session can remain attached to a list after a free 79 - BUG/MAJOR: dns: attempt to lock globaly for msg waiter list instead of use barrier 80 - MINOR: resolvers: fix the resolv_str_to_dn_label() API about trailing zero 81 - BUG/MEDIUM: resolver: make sure to always use the correct hostname length 82 - BUG/MINOR: resolvers: do not reject host names of length 255 in SRV records 83 - MINOR: resolvers: fix the resolv_dn_label_to_str() API about trailing zero 84 - BUG/MEDIUM: resolvers: fix truncated TLD consecutive to the API fix 85 - BUG/MEDIUM: resolvers: use correct storage for the target address 86 - MINOR: resolvers: merge address and target into a union "data" 87 - BUG/MAJOR: resolvers: add other missing references during resolution removal 88 - BUILD: resolvers: avoid a possible warning on null-deref 89 - BUG/MEDIUM: resolvers: always check a valid item in query_list 90 - BUG/MAJOR: buf: fix varint API post- vs pre- increment 91 - BUG/MINOR: task: do not set TASK_F_USR1 for no reason 92 - BUG/MINOR: mux-h2: do not prevent from sending a final GOAWAY frame 93 - BUG/MEDIUM: lua: fix memory leaks with realloc() on non-glibc systems 94 - MINOR: memprof: report the delta between alloc and free on realloc() 95 - MINOR: memprof: add one pointer size to the size of allocations 96 - BUILD: fix compilation on NetBSD 97 - BUG/MINOR: backend: fix improper insert in avail tree for always reuse 98 - BUILD: atomic: fix build on mac/arm64 99 - BUG/MINOR: mux-h1: Save shutdown mode if the shutdown is delayed 100 - BUG/MEDIUM: mux-h1: Perform a connection shutdown when the h1c is released 101 - CLEANUP: resolvers: do not export resolv_purge_resolution_answer_records() 102 - CLEANUP: always initialize the answer_list 103 - CLEANUP: resolvers: simplify resolv_link_resolution() regarding requesters 104 - CLEANUP: resolvers: replace all LIST_DELETE with LIST_DEL_INIT 105 - MEDIUM: resolvers: use a kill list to preserve the list consistency 106 - MEDIUM: resolvers: remove the last occurrences of the "safe" argument 107 - BUG/MEDIUM: resolvers: Don't recursively perform requester unlink 108 - BUG/MEDIUM: resolvers: Track api calls with a counter to free resolutions 109 - MINOR: halog: Add -qry parameter allowing to preserve the query string in -uX 110 - DOC: halog: Move the `-qry` parameter into the correct section in help text 111 - MINOR: halog: Rename -qry to -query 112 - CLEANUP: halog: Use consistent indentation in help() 113 - BUG/MINOR: halog: Add missing newlines in die() messages 114 - MINOR: halog: Add support for extracting captures using -hdr 115 - BUG/MEDIUM: http-ana: Drain request data waiting the tarpit timeout expiration 116 - BUG/MINOR: http: Authorization value can have multiple spaces after the scheme 117 - BUG/MEDIUM: stream-int: Block reads if channel cannot receive more data 118 - BUG/MEDIUM: sample: Cumulate frontend and backend sample validity flags 119 - BUG/MINOR: sample: fix backend direction flags consecutive to last fix 120 - DOC: config: Fix alphabetical order of fc_* samples 121 - BUILD/MINOR: cpuset freebsd build fix 122 - MINOR: stream: Improve dump of bogus streams 123 - DOC/peers: some grammar fixes for peers 2.1 spec 124 - SCRIPTS: git-show-backports: re-enable file-based filtering 125 1262021/10/04 : 2.4.7 127 - BUG/MEDIUM: http-ana: Clear request analyzers when applying redirect rule 128 1292021/10/04 : 2.4.6 130 - BUG/MEDIUM: filters: Fix a typo when a filter is attached blocking the release 131 1322021/10/01 : 2.4.5 133 - MINOR: lua: Add a flag on lua context to know the yield capability at run time 134 - BUG/MINOR: lua: Yield in channel functions only if lua context can yield 135 - BUG/MINOR: lua: Don't yield in channel.append() and channel.set() 136 - BUG/MINOR: stream: Don't release a stream if FLT_END is still registered 137 - BUG/MEDIUM: http-ana: Reset channels analysers when returning an error 138 - BUG/MINOR: filters: Always set FLT_END analyser when CF_FLT_ANALYZE flag is set 139 - BUG/MINOR: filters: Set right FLT_END analyser depending on channel 140 - BUG/MINOR: systemd: ExecStartPre must use -Ws 141 - BUG/MEDIUM: mux-h1: Remove "Upgrade:" header for requests with payload 142 - MINOR: htx: Skip headers with no value when adding a header list to a message 143 - CLEANUP: mux-h1: Remove condition rejecting upgrade requests with payload 144 - BUG/MEDIUM: stream-int: Don't block SI on a channel policy if EOI is reached 145 - BUG/MINOR: compat: make sure __WORDSIZE is always defined 146 - CLEANUP: pools: factor all malloc_trim() calls into trim_all_pools() 147 - MINOR: pools: automatically disable malloc_trim() with external allocators 148 - MINOR: pools: use mallinfo2() when available instead of mallinfo() 149 - BUG/MAJOR: mux-h1: Don't eval input data if an error was reported 150 - BUG/MINOR: tcpcheck: Improve LDAP response parsing to fix LDAP check 151 - DOC: management: certificate files must be sanitized before injection 152 - BUG/MINOR: connection: prevent null deref on mux cleanup task allocation 153 - BUILD: ist: prevent gcc11 maybe-uninitialized warning on istalloc 154 - BUG/MINOR: cli/payload: do not search for args inside payload 155 - BUG/MINOR: flt-trace: fix an infinite loop when random-parsing is set 156 - BUILD: tools: get the absolute path of the current binary on NetBSD. 157 - MINOR: tools: add FreeBSD support to get_exec_path() 158 - MINOR: proc: setting the process to produce a core dump on FreeBSD. 159 - BUILD: activity: use #ifdef not #if on USE_MEMORY_PROFILING 160 - BUILD/MINOR: defaults: eliminate warning on MAXHOSTNAMELEN with -Wundef 161 - BUILD/MINOR: ssl: avoid a build warning on LIBRESSL_VERSION with -Wundef 162 - IMPORT: slz: silence a build warning with -Wundef 163 - BUILD/MINOR: regex: avoid a build warning on USE_PCRE2 with -Wundef 164 - BUILD: ssl: next round of build warnings on LIBRESSL_VERSION_NUMBER 165 - BUILD: ssl: fix two remaining occurrences of #if USE_OPENSSL 166 - BUILD: tools: properly guard __GLIBC__ with defined() 167 - BUG/MINOR: vars: improve accuracy of the rules used to check expression validity 168 - MINOR: sample: add missing ARGC_ entries 169 - BUG/MINOR: vars: properly set the argument parsing context in the expression 170 - BUG/MINOR: vars: truncate the variable name in error reports about scope. 171 - BUG/MINOR: vars: do not talk about global section in CLI errors for set-var 172 - BUILD: fix dragonfly build again on __read_mostly 173 - BUILD: compiler: fixed a missing test on defined(__GNUC__) 174 - BUILD: halog: fix a -Wundef warning on non-glibc systems 175 - BUILD: threads: fix -Wundef for _POSIX_PRIORITY_SCHEDULING on libmusl 176 - BUG/MINOR: server: allow 'enable health' only if check configured 177 - BUG/MEDIUM: leastconn: fix rare possibility of divide by zero 178 - BUG/MINOR: h1-htx: Fix a typo when request parser is reset 179 - BUG/MINOR: http-ana: increment internal_errors counter on response error 180 - MINOR: server: implement a refcount for dynamic servers 181 - MINOR: global: define MODE_STOPPING 182 - BUG/MINOR: server: do not use refcount in free_server in stopping mode 183 - MINOR: server: return the next srv instance on free_server 184 - BUG/MINOR: stats: use refcount to protect dynamic server on dump 185 - BUG/MEDIUM: mux-h1: Adjust conditions to ask more space in the channel buffer 186 - BUG/MEDIUM: stream-int: Notify stream that the mux wants more room to xfer data 187 - BUG/MEDIUM: stream: Stop waiting for more data if SI is blocked on RXBLK_ROOM 188 - MINOR: stream-int: Set CO_RFL transient/persistent flags apart in si_cs_rcv() 189 - MINOR: htx: Add an HTX flag to know when a message is fragmented 190 - MINOR: htx: Add a function to know if the free space wraps 191 - BUG/MEDIUM: stream-int: Defrag HTX message in si_cs_recv() if necessary 192 - MINOR: stream-int: Notify mux when the buffer is not stuck when calling rcv_buf 193 - BUG/MINOR: mux-h1/mux-fcgi: Sanitize TE header to only send "trailers" 194 - DOC: peers: fix doc "enable" statement on "peers" sections 195 - MINOR: Makefile: add MEMORY_POOLS to the list of DEBUG_xxx options 196 - BUG/MEDIUM: lua: fix wakeup condition from sleep() 197 - BUG/MAJOR: lua: use task_wakeup() to properly run a task once 198 - MINOR: arg: Be able to forbid unresolved args when building an argument list 199 - BUG/MINOR: tcpcheck: Don't use arg list for default proxies during parsing 200 - BUG/MINOR: tcp-rules: Stop content rules eval on read error and end-of-input 201 - MINOR: tasks: catch TICK_ETERNITY with BUG_ON() in __task_queue() 202 2032021/09/07 : 2.4.4 204 - BUG/MEDIUM: h2: match absolute-path not path-absolute for :path 205 - REGTESTS: http_upgrade: fix incorrect expectation on TCP->H1->H2 206 - REGTESTS: abortonclose: after retries, 503 is expected, not close 207 - MINOR: hlua: take the global Lua lock inside a global function 208 - BUG/MINOR: stick-table: fix the sc-set-gpt* parser when using expressions 209 - BUG/MEDIUM: base64: check output boundaries within base64{dec,urldec} 210 - BUG/MINOR: base64: base64urldec() ignores padding in output size check 211 - MINOR: compiler: implement an ONLY_ONCE() macro 212 - BUG/MINOR: lua: use strlcpy2() not strncpy() to copy sample keywords 213 - BUG/MINOR: time: fix idle time computation for long sleeps 214 - MINOR: time: add report_idle() to report process-wide idle time 215 - BUG/MINOR: ebtree: remove dependency on incorrect macro for bits per long 216 - BUG/MINOR threads: Use get_(local|gm)time instead of (local|gm)time 217 - BUG/MINOR: tools: Fix loop condition in dump_text() 218 - CLEANUP: Add missing include guard to signal.h 219 - BUG/MINOR: vars: fix set-var/unset-var exclusivity in the keyword parser 220 - DOC: configuration: remove wrong tcp-request examples in tcp-response 221 - BUG/MINOR: config: reject configs using HTTP with bufsize >= 256 MB 222 - CLEANUP: htx: remove comments about "must be < 256 MB" 223 - BUG/MAJOR: htx: fix missing header name length check in htx_add_header/trailer 224 - Revert "BUG/MINOR: stream-int: Don't block reads in si_update_rx() if chn may receive" 225 2262021/08/17 : 2.4.3 227 - BUILD: http_htx: fix ci compilation error with isdigit for Windows 228 - MINOR: mux_h2: define config to disable h2 websocket support 229 - BUG/MINOR: ssl: Default-server configuration ignored by server 230 - BUILD: add detection of missing important CFLAGS 231 - BUILD: lua: silence a build warning with TCC 232 - BUG/MEDIUM: mworker: do not register an exit handler if exit is expected 233 - BUG/MINOR: mworker: do not export HAPROXY_MWORKER_REEXEC across programs 234 - BUILD/MINOR: memprof fix macOs build. 235 - BUG/MEDIUM: ssl_sample: fix segfault for srv samples on invalid request 236 - BUG/MINOR: stats: Add missing agent stats on servers 237 - BUG/MINOR: check: fix the condition to validate a port-less server 238 - BUG/MINOR: resolvers: Use a null-terminated string to lookup in servers tree 239 - BUG/MINOR: systemd: must check the configuration using -Ws 240 - BUG/MINOR: mux-h1: Obey dontlognull option for empty requests 241 - BUG/MINOR: mux-h2: Obey dontlognull option during the preface 242 - BUG/MINOR: mux-h1: Be sure to swap H1C to splice mode when rcv_pipe() is called 243 - BUG/MEDIUM: mux-h2: Handle remaining read0 cases on partial frames 244 - BUG/MINOR: connection: Add missing error labels to conn_err_code_str 245 - BUG/MEDIUM: connection: close a rare race between idle conn close and takeover 246 - BUG/MEDIUM: pollers: clear the sleeping bit after waking up, not before 247 - BUG/MINOR: select: fix excess number of dead/skip reported 248 - BUG/MINOR: poll: fix abnormally high skip_fd counter 249 - BUG/MINOR: pollers: always program an update for migrated FDs 250 - BUG/MINOR: fd: protect fd state harder against a concurrent takeover 251 - DOC: internals: document the FD takeover process 252 - BUILD: opentracing: fixed build when using pkg-config utility 253 - BUG/MINOR: server: remove srv from px list on CLI 'add server' error 254 - BUG/MINOR: server: update last_change on maint->ready transitions too 255 - MINOR: server: unmark deprecated on enable health/agent cli 256 - ADMIN: dyncookie: implement a simple dynamic cookie calculator 257 - MINOR: spoe: Add a pointer on the filter config in the spoe_agent structure 258 - BUG/MEDIUM: spoe: Create a SPOE applet if necessary when the last one is released 259 - BUG/MINOR: buffer: fix buffer_dump() formatting 260 - BUG/MINOR: tcpcheck: Properly detect pending HTTP data in output buffer 261 - DOC: Improve the lua documentation 262 - DOC: config: Fix 'http-response send-spoe-group' documentation 263 - BUG/MEDIUM: spoe: Fix policy to close applets when SPOE connections are queued 264 - BUG/MEDIUM: cfgcheck: verify existing log-forward listeners during config check 265 - CLEANUP: assorted typo fixes in the code and comments 266 - DOC/MINOR: fix typo in management document 267 - MINOR: http: add a new function http_validate_scheme() to validate a scheme 268 - BUG/MAJOR: h2: verify early that non-http/https schemes match the valid syntax 269 - BUG/MAJOR: h2: verify that :path starts with a '/' before concatenating it 270 - BUG/MAJOR: h2: enforce stricter syntax checks on the :method pseudo-header 271 - BUG/MEDIUM: h2: give :authority precedence over Host 272 - REGTESTS: add a test to prevent h2 desync attacks 273 2742021/07/07 : 2.4.2 275 - BUG/MINOR: server-state: load SRV resolution only if params match the config 276 - BUG/MINOR: server: Forbid to set fqdn on the CLI if SRV resolution is enabled 277 - BUG/MEDIUM: server/cli: Fix ABBA deadlock when fqdn is set from the CLI 278 - MINOR: resolvers: Clean server in a dedicated function when removing a SRV item 279 - MINOR: resolvers: Remove server from named_servers tree when removing a SRV item 280 - BUG/MEDIUM: resolvers: Add a task on servers to check SRV resolution status 281 - BUG/MINOR: resolvers: Use resolver's lock in resolv_srvrq_expire_task() 282 - BUG/MINOR: server/cli: Fix locking in function processing "set server" command 283 - BUG/MINOR: cache: Correctly handle existing-but-empty 'accept-encoding' header 284 - BUG/MAJOR: server: fix deadlock when changing maxconn via agent-check 285 - REGTESTS: fix maxconn update with agent-check 286 - MINOR: tcp-act: Add set-src/set-src-port for "tcp-request content" rules 287 - DOC: config: Add missing actions in "tcp-request session" documentation 288 - CLEANUP: dns: Remove a forgotten debug message 289 - BUG/MINOR: resolvers: Always attach server on matching record on resolution 290 - BUG/MINOR: resolvers: Reset server IP when no ip is found in the response 291 - MINOR: resolvers: Reset server IP on error in resolv_get_ip_from_response() 292 - BUG/MINOR: checks: return correct error code for srv_parse_agent_check 293 - BUILD: Makefile: fix linkage for Haiku. 294 - BUG/MINOR: tcpcheck: Fix numbering of implicit HTTP send/expect rules 295 - BUG/MINOR: mqtt: Fix parser for string with more than 127 characters 296 - BUG/MINOR: mqtt: Support empty client ID in CONNECT message 297 - BUG/MEDIUM: resolvers: Make 1st server of a template take part to SRV resolution 298 - DOC: config: use CREATE USER for mysql-check 299 - BUG/MINOR: stick-table: fix several printf sign errors dumping tables 300 - BUG/MINOR: peers: fix data_type bit computation more than 32 data_types 301 - DOC: stick-table: add missing documentation about gpt0 stored type 302 - BUG/MEDIUM: sock: make sure to never miss early connection failures 303 - BUG/MINOR: cli: fix server name output in "show fd" 304 - Revert "MINOR: tcp-act: Add set-src/set-src-port for "tcp-request content" rules" 305 - MINOR: http: implement http_get_scheme 306 - MEDIUM: http: implement scheme-based normalization 307 - MEDIUM: h1-htx: apply scheme-based normalization on h1 requests 308 - MEDIUM: h2: apply scheme-based normalization on h2 requests 309 - REGTESTS: add http scheme-based normalization test 310 3112021/06/17 : 2.4.1 312 - BUG/MEDIUM: ebtree: Invalid read when looking for dup entry 313 - BUG/MAJOR: server: prevent deadlock when using 'set maxconn server' 314 - BUILD/MINOR: opentracing: fixed build when using clang 315 - BUG/MEDIUM: filters: Exec pre/post analysers only one time per filter 316 - BUG/MINOR: http-comp: Preserve HTTP_MSGF_COMPRESSIONG flag on the response 317 - Revert "MEDIUM: http-ana: Deal with L7 retries in HTTP analysers" 318 - BUG/MINOR: http-ana: Send the right error if max retries is reached on L7 retry 319 - BUG/MINOR: http-ana: Handle L7 retries on refused early data before K/A aborts 320 - MINOR: http-ana: Perform L7 retries because of status codes in response analyser 321 - MINOR: cfgparse: Fail when encountering extra arguments in macro 322 - DOC: intro: Fix typo in starter guide 323 - BUG/MINOR: server: Missing calloc return value check in srv_parse_source 324 - BUG/MINOR: peers: Missing calloc return value check in peers_register_table 325 - BUG/MINOR: ssl: Missing calloc return value check in ssl_init_single_engine 326 - BUG/MINOR: http: Missing calloc return value check in parse_http_req_capture 327 - BUG/MINOR: proxy: Missing calloc return value check in proxy_parse_declare 328 - BUG/MINOR: proxy: Missing calloc return value check in proxy_defproxy_cpy 329 - BUG/MINOR: http: Missing calloc return value check while parsing tcp-request/tcp-response 330 - BUG/MINOR: http: Missing calloc return value check while parsing tcp-request rule 331 - BUG/MINOR: compression: Missing calloc return value check in comp_append_type/algo 332 - BUG/MINOR: worker: Missing calloc return value check in mworker_env_to_proc_list 333 - BUG/MINOR: http: Missing calloc return value check while parsing redirect rule 334 - BUG/MINOR: http: Missing calloc return value check in make_arg_list 335 - BUG/MINOR: proxy: Missing calloc return value check in chash_init_server_tree 336 - CLEANUP: http-ana: Remove useless if statement about L7 retries 337 - BUG/MINOR: vars: Be sure to have a session to get checks variables 338 - DOC/MINOR: move uuid in the configuration to the right alphabetical order 339 - BUG/MAJOR: stream-int: Release SI endpoint on server side ASAP on retry 340 - MINOR: errors: allow empty va_args for diag variadic macro 341 - DOC: use the req.ssl_sni in examples 342 - BUILD: make tune.ssl.keylog available again 343 - BUG/MINOR: ssl: OCSP stapling does not work if expire too far in the future 344 - Revert "BUG/MINOR: opentracing: initialization after establishing daemon mode" 345 - BUG/MEDIUM: opentracing: initialization before establishing daemon and/or chroot mode 346 - BUG/MEDIUM: compression: Fix loop skipping unused blocks to get the next block 347 - BUG/MEDIUM: compression: Properly get the next block to iterate on payload 348 - BUG/MEDIUM: compression: Add a flag to know the filter is still processing data 349 - BUG/MINOR: pools: fix a possible memory leak in the lockless pool_flush() 350 - BUG/MINOR: pools: make DEBUG_UAF always write to the to-be-freed location 351 - MINOR: pools: do not maintain the lock during pool_flush() 352 - MINOR: pools: call malloc_trim() under thread isolation 353 - MEDIUM: pools: use a single pool_gc() function for locked and lockless 354 - BUG/MAJOR: pools: fix possible race with free() in the lockless variant 355 - CLEANUP: pools: remove now unused seq and pool_free_list 356 - BUG/MAJOR: htx: Fix htx_defrag() when an HTX block is expanded 357 - BUG/MINOR: mux-fcgi: Expose SERVER_SOFTWARE parameter by default 358 - CLEANUP: l7-retries: do not test the buffer before calling b_alloc() 359 - BUG/MINOR: resolvers: answser item list was randomly purged or errors 360 - MEDIUM: resolvers: add a ref on server to the used A/AAAA answer item 361 - MEDIUM: resolvers: add a ref between servers and srv request or used SRV record 362 - BUG/MAJOR: resolvers: segfault using server template without SRV RECORDs 363 - DOC: lua: Add a warning about buffers modification in HTTP 364 - BUG/MINOR: stick-table: insert srv in used_name tree even with fixed id 365 - BUG/MEDIUM: server: extend thread-isolate over much of CLI 'add server' 366 - BUG/MEDIUM: server: clear dynamic srv on delete from proxy id/name trees 367 - BUG/MEDIUM: server: do not forget to generate the dynamic servers ids 368 - BUG/MINOR: server: do not keep an invalid dynamic server in px ids tree 369 - BUG/MEDIUM: server: do not auto insert a dynamic server in px addr_node 370 - BUG/MEDIUM: shctx: use at least thread-based locking on USE_PRIVATE_CACHE 371 - BUG/MINOR: ssl: use atomic ops to update global shctx stats 372 - BUG/MINOR: mworker: fix typo in chroot error message 373 - CLEANUP: global: remove unused definition of stopping_task[] 374 - BUG/MAJOR: queue: set SF_ASSIGNED when setting strm->target on dequeue 375 - MINOR: backend: only skip LB when there are actual connections 376 - BUG/MINOR: mux-h1: do not skip the error response on bad requests 377 - BUG/MINOR: server: explicitly set "none" init-addr for dynamic servers 378 - MINOR: connection: add helper conn_append_debug_info() 379 - MINOR: mux-h2/trace: report a few connection-level info during h2_init() 380 - CLEANUP: mux-h2/traces: better align user messages 381 - BUG/MINOR: stats: make "show stat typed desc" work again 382 - MINOR: mux-h2: obey http-ignore-probes during the preface 383 - BUG/MINOR: mux-h2/traces: bring back the lost "rcvd H2 REQ" trace 384 - BUG/MINOR: mux-h2/traces: bring back the lost "sent H2 REQ/RES" traces 385 3862021/05/14 : 2.4.0 387 - BUG/MINOR: http_fetch: fix possible uninit sockaddr in fetch_url_ip/port 388 - CLEANUP: cli/activity: Remove double spacing in set profiling command 389 - CI: Build VTest with clang 390 - CI: extend spellchecker whitelist, add "ists" as well 391 - CLEANUP: assorted typo fixes in the code and comments 392 - BUG/MINOR: memprof: properly account for differences for realloc() 393 - MINOR: memprof: also report the method used by each call 394 - MINOR: memprof: also report the totals and delta alloc-free 395 - CLEANUP: pattern: remove the unused and dangerous pat_ref_reload() 396 - BUG/MINOR: http_act: Fix normalizer names in error messages 397 - MINOR: uri_normalizer: Add `fragment-strip` normalizer 398 - MINOR: uri_normalizer: Add `fragment-encode` normalizer 399 - IMPORT: slz: use the generic function for the last bytes of the crc32 400 - IMPORT: slz: do not produce the crc32_fast table when CRC is natively supported 401 - BUILD/MINOR: opentracing: fixed compilation with filter enabled 402 - BUILD: makefile: add a few popular ARMv8 CPU targets 403 - BUG/MEDIUM: stick_table: fix crash when using tcp smp_fetch_src 404 - REGTESTS: stick-table: add src_conn_rate test 405 - CLEANUP: stick-table: remove a leftover of an old keyword declaration 406 - BUG/MINOR: stats: fix lastchk metric that got accidently lost 407 - EXAMPLES: add a "basic-config-edge" example config 408 - EXAMPLES: add a trivial config for quick testing 409 - DOC: management: Correct example reload command in the document 410 - Revert "CI: Build VTest with clang" 411 - MINOR: activity/cli: optionally support sorting by address on "show profiling" 412 - DEBUG: ssl: export ssl_sock_close() to see its symbol resolved in profiling 413 - BUG/MINOR: lua/vars: prevent get_var() from allocating a new name 414 - DOC: config: Fix configuration example for mqtt 415 - BUG/MAJOR: config: properly initialize cpu_map.thread[] up to MAX_THREADS 416 - BUILD: config: avoid a build warning on numa_detect_topology() without threads 417 - DOC: update min requirements in INSTALL 418 - IMPORT: slz: use inttypes.h instead of stdint.h 419 - BUILD: sample: use strtoll() instead of atoll() 420 - MINOR: version: mention that it's LTS now. 421 4222021/05/10 : 2.4-dev19 423 - BUG/MINOR: hlua: Don't rely on top of the stack when using Lua buffers 424 - BUG/MEDIUM: cli: prevent memory leak on write errors 425 - BUG/MINOR: ssl/cli: fix a lock leak when no memory available 426 - MINOR: debug: add a new "debug dev sym" command in expert mode 427 - MINOR: pools/debug: slightly relax DEBUG_DONT_SHARE_POOLS 428 - CI: Github Actions: switch to LibreSSL-3.3.3 429 - MINOR: srv: close all idle connections on shutdown 430 - MINOR: connection: move session_list member in a union 431 - MEDIUM: mux_h1: release idling frontend conns on soft-stop 432 - MEDIUM: connection: close front idling connection on soft-stop 433 - MINOR: tools: add functions to retrieve the address of a symbol 434 - CLEANUP: activity: mark the profiling and task_profiling_mask __read_mostly 435 - MINOR: activity: add a "memory" entry to "profiling" 436 - MINOR: activity: declare the storage for memory usage statistics 437 - MEDIUM: activity: collect memory allocator statistics with USE_MEMORY_PROFILING 438 - MINOR: activity: clean up the show profiling io_handler a little bit 439 - MINOR: activity: make "show profiling" support a few arguments 440 - MINOR: activity: make "show profiling" also dump the memoery usage 441 - MINOR: activity: add the profiling.memory global setting 442 - BUILD: makefile: add new option USE_MEMORY_PROFILING 443 - MINOR: channel: Rely on HTX version if appropriate in channel_may_recv() 444 - BUG/MINOR: stream-int: Don't block reads in si_update_rx() if chn may receive 445 - MINOR: conn-stream: Force mux to wait for read events if abortonclose is set 446 - MEDIUM: mux-h1: Don't block reads when waiting for the other side 447 - BUG/MEDIUM: mux-h1: Properly report client close if abortonclose option is set 448 - REGTESTS: Add script to test abortonclose option 449 - MINOR: mux-h1: clean up conditions to enabled and disabled splicing 450 - MINOR: mux-h1: Subscribe for sends if output buffer is not empty in h1_snd_pipe 451 - MINOR: mux-h1: Always subscribe for reads when splicing is disabled 452 - MEDIUM: mux-h1: Wake H1 stream when both sides a synchronized 453 - CLEANUP: mux-h1: rename WAIT_INPUT/WAIT_OUTPUT flags 454 - MINOR: mux-h1: Manage processing blocking flags on the H1 stream 455 - BUG/MINOR: stream: Decrement server current session counter on L7 retry 456 - BUG/MINOR: config: fix uninitialized initial state in ".if" block evaluator 457 - BUG/MINOR: config: add a missing "ELIF_TAKE" test for ".elif" condition evaluator 458 - BUG/MINOR: config: .if/.elif should also accept negative integers 459 - MINOR: config: centralize the ".if"/".elif" condition parser and evaluator 460 - MINOR: config: keep up-to-date current file/line/section in the global struct 461 - MINOR: config: support some pseudo-variables for file/line/section 462 - BUILD: activity: do not include malloc.h 463 - MINOR: arg: improve the error message on missing closing parenthesis 464 - MINOR: global: export the build features string list 465 - MINOR: global: add version comparison functions 466 - MINOR: config: improve .if condition error reporting 467 - MINOR: config: make cfg_eval_condition() support predicates with arguments 468 - MINOR: config: add predicate "defined()" to conditional expression blocks 469 - MINOR: config: add predicates "streq()" and "strneq()" to conditional expressions 470 - MINOR: config: add predicate "feature" to detect certain built-in features 471 - MINOR: config: add predicates "version_atleast" and "version_before" to cond blocks 472 - BUG/MINOR: activity: use the new pointer to calculate the new size in realloc() 473 - BUG/MINOR: stream: properly clear the previous error mask on L7 retries 474 - MEDIUM: log: slightly refine the output format of alerts/warnings/etc 475 - MINOR: config: add a new message directive: .diag 476 - CLEANUP: cli/tree-wide: properly re-align the CLI commands' help messages 477 - BUG/MINOR: stream: Reset stream final state and si error type on L7 retry 478 - BUG/MINOR: checks: Handle synchronous connect when a tcpcheck is started 479 - BUG/MINOR: checks: Reschedule check on observe mode only if fastinter is set 480 - MINOR: global: define tainted flag 481 - MINOR: cfgparse: add a new field flags in cfg_keyword 482 - MINOR: cfgparse: implement experimental config keywords 483 - MINOR: action: replace match_pfx by a keyword flags field 484 - MINOR: action: implement experimental actions 485 - MINOR: cli: set tainted when using CLI expert/experimental mode 486 - MINOR: stats: report tainted on show info 487 - MINOR: http_act: mark normalize-uri as experimental 488 - BUILD: fix usage of ha_alert without format string 489 - MINOR: proxy: define PR_CAP_LB 490 - BUG/MINOR: server: do not report diag for peer servers with null weight 491 - DOC: ssl: Extra files loading now works for backends too 492 - ADDONS: make addons/ discoverable by git via .gitignore 493 - DOC: ssl: Add information about crl-file option 494 - MINOR: sample: improve error reporting on missing arg to strcmp() converter 495 - DOC: management: mention that some fields may be emitted as floats 496 - MINOR: tools: implement trimming of floating point numbers 497 - MINOR: tools: add a float-to-ascii conversion function 498 - MINOR: freq_ctr: add new functions to report float measurements 499 - MINOR: stats: avoid excessive padding of float values with trailing zeroes 500 - MINOR: stats: add the HTML conversion for float types 501 - MINOR: stats: pass the appctx flags to stats_fill_info() 502 - MINOR: stats: support an optional "float" option to "show info" 503 - MINOR: stats: use tv_remain() to precisely compute the uptime 504 - MINOR: stats: report uptime and start time as floats with subsecond resolution 505 - MINOR: stats: make "show info" able to report rates as floats when asked 506 - MINOR: config: mark tune.fd.edge-triggered as experimental 507 - REORG: vars: move the "proc" scope variables out of the global struct 508 - REORG: threads: move all_thread_mask() to thread.h 509 - BUILD: wdt: include signal-t.h 510 - BUILD: auth: include missing list.h 511 - REORG: mworker: move proc_self from global to mworker 512 - BUILD: ssl: ssl_utils requires chunk.h 513 - BUILD: config: cfgparse-ssl.c needs tools.h 514 - BUILD: wurfl: wurfl.c needs tools.h 515 - BUILD: spoe: flt_spoe.c needs tools.h 516 - BUILD: promex: service-prometheus.c needs tools.h 517 - BUILD: resolvers: include tools.h 518 - BUILD: config: include tools.h in cfgparse-listen.c 519 - BUILD: htx: include tools.h in http_htx.c 520 - BUILD: proxy: include tools.h in proxy.c 521 - BUILD: session: include tools.h in session.c 522 - BUILD: cache: include tools.h in cache.c 523 - BUILD: sink: include tools.h in sink.c 524 - BUILD: connection: include tools.h in connection.c 525 - BUILD: server-state: include tools.h from server_state.c 526 - BUILD: dns: include tools.h in dns.c 527 - BUILD: payload: include tools.h in payload.c 528 - BUILD: vars: include tools.h in vars.c 529 - BUILD: compression: include tools.h in compression.c 530 - BUILD: mworker: include tools.h from mworker.c 531 - BUILD: queue: include tools.h from queue.c 532 - BUILD: udp: include tools.h from proto_udp.c 533 - BUILD: stick-table: include freq_ctr.h from stick_table.h 534 - BUILD: server: include tools.h from server.c 535 - BUILD: server: include missing proxy.h in server.c 536 - BUILD: sink: include proxy.h in sink.c 537 - BUILD: mworker: include proxy.h in mworker.c 538 - BUILD: filters: include proxy.h in filters.c 539 - BUILD: fcgi-app: include proxy.h in fcgi-app.c 540 - BUILD: connection: move list_mux_proto() to connection.c 541 - REORG: stick-table: uninline stktable_alloc_data_type() 542 - REORG: stick-table: move composite address functions to stick_table.h 543 - REORG: config: uninline warnifnotcap() and failifnotcap() 544 - BUILD: task: remove unused includes from task.c 545 - MINOR: task: stop including stream.h from task.c 546 - BUILD: connection: stop including listener-t.h 547 - BUILD: hlua: include proxy.h from hlua.c 548 - BUILD: mux-h1: include proxy.h from mux-h1.c 549 - BUILD: mux-fcgi: include proxy.h from mux-fcgi.c 550 - BUILD: listener: include proxy.h from listener.c 551 - BUILD: http-rules: include proxy.h from http_rules.c 552 - BUILD: thread: include log.h from thread.c 553 - BUILD: comp: include proxy.h from flt_http_comp.c 554 - BUILD: fd: include log.h from fd.c 555 - BUILD: config: do not include proxy.h nor errors.h anymore in cfgparse.h 556 - BUILD: makefile: reorder object files by build time 557 - DOC: Fix a few grammar/spelling issues and casing of HAProxy 558 - REGTESTS: run-regtests: match both "HAProxy" and "HA-Proxy" in the version 559 - MINOR: version: report "HAProxy" not "HA-Proxy" in the version output 560 - DOC: remove last occurrences of "HA-Proxy" syntax 561 - DOC: peers: fix the protocol tag name in the doc 562 - ADMIN: netsnmp: report "HAProxy" and not "Haproxy" in output descriptions 563 - MEDIUM: mailers: use "HAProxy" nor "HAproxy" in the subject of messages 564 - DOC: fix a few remainig cases of "Haproxy" and "HAproxy" in doc and comments 565 - MINOR: tools/rnd: compute the result outside of the CAS loop 566 - BUILD: http_fetch: address a few aliasing warnings with older compilers 567 - BUILD: ssl: define HAVE_CRYPTO_memcmp() based on the library version 568 - BUILD: errors: include stdarg in errors.h 569 - REGTESTS: disable inter-thread idle connection sharing on sensitive tests 570 - MINOR: cli: make "help" support a command in argument 571 - MINOR: cli: sort the output of the "help" keywords 572 - CLEANUP: cli/mworker: properly align the help messages 573 - BUILD: memprof: make the old caller pointer a const in get_prof_bin() 574 - BUILD: compat: include malloc_np.h for USE_MEMORY_PROFILING on FreeBSD 575 - CI: Github Actions: enable USE_QUIC=1 for BoringSSL builds 576 - BUG/MEDIUM: quic: fix null deref on error path in qc_conn_init() 577 - BUILD: cli: appease a null-deref warning in cli_gen_usage_msg() 578 5792021/05/01 : 2.4-dev18 580 - DOC: Fix indentation for `path-strip-dot` normalizer 581 - DOC: Fix RFC reference for the percent-to-uppercase normalizer 582 - DOC: Add RFC references for the path-strip-dot(dot)? normalizers 583 - MINOR: uri_normalizer: Add a `percent-decode-unreserved` normalizer 584 - BUG/MINOR: mux-fcgi: Don't send normalized uri to FCGI application 585 - REORG: htx: Inline htx functions to add HTX blocks in a message 586 - CLEANUP: assorted typo fixes in the code and comments 587 - DOC: general: fix white spaces for HTML converter 588 - BUG/MINOR: ssl: ssl_sock_prepare_ssl_ctx does not return an error code 589 - BUG/MINOR: cpuset: move include guard at the very beginning 590 - BUG/MAJOR: fix build on musl with cpu_set_t support 591 - BUG/MEDIUM: cpuset: fix build on MacOS 592 - BUG/MINOR: htx: Preserve HTX flags when draining data from an HTX message 593 - MEDIUM: htx: Refactor htx_xfer_blks() to not rely on hdrs_bytes field 594 - CLEANUP: htx: Remove unsued hdrs_bytes field from the HTX start-line 595 - BUG/MINOR: mux-h2: Don't encroach on the reserve when decoding headers 596 - MEDIUM: http-ana: handle read error on server side if waiting for response 597 - MINOR: htx: Limit length of headers name/value when a HTX message is dumped 598 - BUG/MINOR: applet: Notify the other side if data were consumed by an applet 599 - BUG/MINOR: hlua: Don't consume headers when starting an HTTP lua service 600 - BUG/MEDIUM: mux-h2: Handle EOM flag when sending a DATA frame with zero-copy 601 - CLEANUP: channel: No longer notify the producer in co_skip()/co_htx_skip() 602 - DOC: general: fix example in set-timeout 603 - CLEANUP: cfgparse: de-uglify early file error handling in readcfgfile() 604 - MINOR: config: add a new "default-path" global directive 605 - BUG/MEDIUM: peers: initialize resync timer to get an initial full resync 606 - BUG/MEDIUM: peers: register last acked value as origin receiving a resync req 607 - BUG/MEDIUM: peers: stop considering ack messages teaching a full resync 608 - BUG/MEDIUM: peers: reset starting point if peers appears longly disconnected 609 - BUG/MEDIUM: peers: reset commitupdate value in new conns 610 - BUG/MEDIUM: peers: re-work updates lookup during the sync on the fly 611 - BUG/MEDIUM: peers: reset tables stage flags stages on new conns 612 - MINOR: peers: add informative flags about resync process for debugging 613 - BUG/MEDIUM: time: fix updating of global_now upon clock drift 614 - CLEANUP: freq_ctr: make arguments of freq_ctr_total() const 615 - CLEANUP: hlua: rename hlua_appctx* appctx to luactx 616 - MINOR: server: fix doc/trace on lb algo for dynamic server creation 617 - REGTESTS: server: fix cli_add_server due to previous trace update 618 - REGTESTS: add minimal CLI "add map" tests 619 - DOC: management: move "set var" to the proper place 620 - CLEANUP: map: slightly reorder the add map function 621 - MINOR: map: get rid of map_add_key_value() 622 - MINOR: map: show the current and next pattern version in "show map" 623 - MINOR: map/acl: add the possibility to specify the version in "show map/acl" 624 - MINOR: pattern: support purging arbitrary ranges of generations 625 - MINOR: map/acl: add the possibility to specify the version in "clear map/acl" 626 - MINOR: map/acl: add the "prepare map/acl" CLI command 627 - MINOR: map/acl: add the "commit map/acl" CLI command 628 - MINOR: map/acl: make "add map/acl" support an optional version number 629 - CLEANUP: map/cli: properly align the map/acl help 630 - BUILD: compiler: do not use already defined __read_mostly on dragonfly 631 6322021/04/23 : 2.4-dev17 633 - MINOIR: mux-pt/trace: Register a new trace source with its events 634 - BUG/MINOR: mux-pt: Fix a possible UAF because of traces in mux_pt_io_cb 635 - CI: travis: Drastically clean up .travis.yml 636 - CLEANUP: pattern: make all pattern tables read-only 637 - MINOR: trace: replace the trace() inline function with an equivalent macro 638 - MINOR: initcall: uniformize the section names between MacOS and other unixes 639 - CLEANUP: initcall: rename HA_SECTION to HA_INIT_SECTION 640 - MINOR: compiler: add macros to declare section names 641 - CLEANUP: initcall: rely on HA_SECTION_* instead of defining its own 642 - MINOR: global: declare a read_mostly section 643 - MINOR: fd: move a few read-mostly variables to their own section 644 - MINOR: epoll: move epoll_fd to read_mostly 645 - MINOR: kqueue: move kqueue_fd to read_mostly 646 - MINOR: pool: move pool declarations to read_mostly 647 - MINOR: threads: mark all_threads_mask as read_mostly 648 - MINOR: server: move idle_conn_task to read_mostly 649 - MINOR: protocol: move __protocol_by_family to read_mostly 650 - MINOR: pattern: make the pat_lru_seed read_mostly 651 - MINOR: trace: make trace sources read_mostly 652 - MINOR: freq_ctr: add a generic function to report the total value 653 - MEDIUM: freq_ctr: make read_freq_ctr_period() use freq_ctr_total() 654 - MEDIUM: freq_ctr: reimplement freq_ctr_remain_period() from freq_ctr_total() 655 - MINOR: freq_ctr: add the missing next_event_delay_period() 656 - MINOR: freq_ctr: unify freq_ctr and freq_ctr_period into freq_ctr 657 - MEDIUM: freq_ctr: replace the per-second counters with the generic ones 658 - MINOR: freq_ctr: add cpu_relax in the rotation loop of update_freq_ctr_period() 659 - MINOR: freq_ctr: simplify and improve the update function 660 - CLEANUP: time: remove the now unused ms_left_scaled 661 - MINOR: time: move the time initialization out of tv_update_date() 662 - MINOR: time: remove useless variable copies in tv_update_date() 663 - MINOR: time: change the global timeval and the the global tick at once 664 - MEDIUM: time: make the clock offset global and no per-thread 665 - MINOR: atomic: reimplement the relaxed version of x86 BTS/BTR 666 - MINOR: trace: Add the checks as a possible trace source 667 - MINOIR: checks/trace: Register a new trace source with its events 668 - MINOR: hlua: Add function to release a lua function 669 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a task 670 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a converter 671 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a fetch 672 - BUG/MINOR: hlua: Fix memory leaks on error path when parsing a lua action 673 - BUG/MINOR: hlua: Fix memory leaks on error path when registering an action 674 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a service 675 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a cli keyword 676 - BUG/MINOR: cfgparse/proxy: Fix some leaks during proxy section parsing 677 - BUG/MINOR: listener: Handle allocation error when allocating a new bind_conf 678 - BUG/MINOR: cfgparse/proxy: Hande allocation errors during proxy section parsing 679 - MINOR: cfgparse/proxy: Group alloc error handling during proxy section parsing 680 - DOC: internals: update the SSL architecture schema 681 - BUG/MEDIUM: sample: Fix adjusting size in field converter 682 - MINOR: sample: add ub64dec and ub64enc converters 683 - CLEANUP: sample: align samples list in sample.c 684 - MINOR: ist: Add `istclear(struct ist*)` 685 - CI: cirrus: install "pcre" package 686 - MINOR: opentracing: correct calculation of the number of arguments in the args[] 687 - MINOR: opentracing: transfer of context names without prefix 688 - MINOR: sample: converter: Add mjson library. 689 - MINOR: sample: converter: Add json_query converter 690 - CI: travis-ci: enable weekly graviton2 builds 691 - DOC: ssl: Certificate hot update only works on fronted certificates 692 - DOC: ssl: Certificate hot update works on server certificates 693 - BUG/MEDIUM: threads: Ignore current thread to end its harmless period 694 - MINOR: threads: Only consider running threads to end a thread harmeless period 695 - BUG/MINOR: checks: Set missing id to the dummy checks frontend 696 - MINOR: logs: Add support of checks as session origin to format lf strings 697 - BUG/MINOR: connection: Fix fc_http_major and bc_http_major for TCP connections 698 - MINOR: connection: Make bc_http_major compatible with tcp-checks 699 - BUG/MINOR: ssl-samples: Fix ssl_bc_* samples when called from a health-check 700 - BUG/MINOR: http-fetch: Make method smp safe if headers were already forwarded 701 - MINOR: tcp_samples: Add samples to get src/dst info of the backend connection 702 - MINOR: tcp_samples: Be able to call bc_src/bc_dst from the health-checks 703 - BUG/MINOR: http_htx: Remove BUG_ON() from http_get_stline() function 704 - BUG/MINOR: logs: Report the true number of retries if there was no connection 705 - BUILD: makefile: Redirect stderr to /dev/null when probing options 706 - MINOR: uri_normalizer: Add uri_normalizer module 707 - MINOR: uri_normalizer: Add `enum uri_normalizer_err` 708 - MINOR: uri_normalizer: Add `http-request normalize-uri` 709 - MINOR: uri_normalizer: Add a `merge-slashes` normalizer to http-request normalize-uri 710 - MINOR: uri_normalizer: Add a `dotdot` normalizer to http-request normalize-uri 711 - MINOR: uri_normalizer: Add support for supressing leading `../` for dotdot normalizer 712 - MINOR: uri_normalizer: Add a `sort-query` normalizer 713 - MINOR: uri_normalizer: Add a `percent-upper` normalizer 714 - MEDIUM: http_act: Rename uri-normalizers 715 - DOC: Add introduction to http-request normalize-uri 716 - DOC: Note that URI normalization is experimental 717 - BUG/MINOR: pools: maintain consistent ->allocated count on alloc failures 718 - BUG/MINOR: pools/buffers: make sure to always reserve the required buffers 719 - MINOR: pools: drop the unused static history of artificially failed allocs 720 - CLEANUP: pools: remove unused arguments to pool_evict_from_cache() 721 - MEDIUM: pools: move the cache into the pool header 722 - MINOR: pool: remove the size field from pool_cache_head 723 - MINOR: pools: rename CONFIG_HAP_LOCAL_POOLS to CONFIG_HAP_POOLS 724 - MINOR: pools: enable the fault injector in all allocation modes 725 - MINOR: pools: make the basic pool_refill_alloc()/pool_free() update needed_avg 726 - MEDIUM: pools: unify pool_refill_alloc() across all models 727 - CLEANUP: pools: re-merge pool_refill_alloc() and __pool_refill_alloc() 728 - MINOR: pools: call pool_alloc_nocache() out of the pool's lock 729 - CLEANUP: pools: move the lock to the only __pool_get_first() that needs it 730 - CLEANUP: pools: rename __pool_get_first() to pool_get_from_shared_cache() 731 - CLEANUP: pools: rename pool_*_{from,to}_cache() to *_local_cache() 732 - CLEANUP: pools: rename __pool_free() to pool_put_to_shared_cache() 733 - MINOR: tools: add statistical_prng_range() to get a random number over a range 734 - MINOR: pools: use cheaper randoms for fault injections 735 - MINOR: pools: move the fault injector to __pool_alloc() 736 - MINOR: pools: split the OS-based allocator in two 737 - MINOR: pools: always use atomic ops to maintain counters 738 - MINOR: pools: move pool_free_area() out of the lock in the locked version 739 - MINOR: pools: factor the release code into pool_put_to_os() 740 - MEDIUM: pools: make CONFIG_HAP_POOLS control both local and shared pools 741 - MINOR: pools: create unified pool_{get_from,put_to}_cache() 742 - MINOR: pools: evict excess objects using pool_evict_from_local_cache() 743 - MEDIUM: pools: make pool_put_to_cache() always call pool_put_to_local_cache() 744 - CLEANUP: pools: make the local cache allocator fall back to the shared cache 745 - CLEANUP: pools: merge pool_{get_from,put_to}_local_caches with generic ones 746 - CLEANUP: pools: uninline pool_put_to_cache() 747 - CLEANUP: pools: declare dummy pool functions to remove some ifdefs 748 - BUILD: pools: fix build with DEBUG_FAIL_ALLOC 749 - BUG/MINOR: server: make srv_alloc_lb() allocate lb_nodes for consistent hash 750 - CONTRIB: mod_defender: import the minimal number of includes 751 - CONTRIB: mod_defender: make the code build with the embedded includes 752 - CONTRIB: modsecurity: import the minimal number of includes 753 - CONTRIB: modsecurity: make the code build with the embedded includes 754 - CLEANUP: sample: Improve local variables in sample_conv_json_query 755 - CLEANUP: sample: Explicitly handle all possible enum values from mjson 756 - CLEANUP: sample: Use explicit return for successful `json_query`s 757 - CLEANUP: lists/tree-wide: rename some list operations to avoid some confusion 758 - CONTRIB: move spoa_example out of the tree 759 - BUG/MINOR: server: free srv.lb_nodes in free_server 760 - BUG/MINOR: logs: free logsrv.conf.file on exit 761 - BUG/MEDIUM: server: ensure thread-safety of server runtime creation 762 - MINOR: server: add log on dynamic server creation 763 - MINOR: server: implement delete server cli command 764 - CONTRIB: move spoa_server out of the tree 765 - CONTRIB: move modsecurity out of the tree 766 - BUG/MINOR: server: fix potential null gcc error in delete server 767 - BUG/MAJOR: mux-h2: Properly detect too large frames when decoding headers 768 - BUG/MEDIUM: mux-h2: Fix dfl calculation when merging CONTINUATION frames 769 - BUG/MINOR: uri_normalizer: Use delim parameter when building the sorted query in uri_normalizer_query_sort 770 - CLEANUP: uri_normalizer: Remove trailing whitespace 771 - MINOR: uri_normalizer: Add a `strip-dot` normalizer 772 - CONTRIB: move mod_defender out of the tree 773 - CLEANUP: contrib: remove the last references to the now dead contrib/ directory 774 - BUG/MEDIUM: config: fix cpu-map notation with both process and threads 775 - MINOR: config: add a diag for invalid cpu-map statement 776 - BUG/MINOR: mworker/init: don't reset nb_oldpids in non-mworker cases 777 - BUG/MINOR: mworker: don't use oldpids[] anymore for reload 778 - BUILD: makefile: fix the "make clean" target on strict bourne shells 779 - IMPORT: slz: import slz into the tree 780 - BUILD: compression: switch SLZ from out-of-tree to in-tree 781 - CI: github: do not build libslz any more 782 - CLEANUP: compression: remove calls to SLZ init functions 783 - BUG/MEDIUM: mux-h2: Properly handle shutdowns when received with data 784 - MINOR: cpuset: define a platform-independent cpuset type 785 - MINOR: cfgparse: use hap_cpuset for parse_cpu_set 786 - MEDIUM: config: use platform independent type hap_cpuset for cpu-map 787 - MINOR: thread: implement the detection of forced cpu affinity 788 - MINOR: cfgparse: support the comma separator on parse_cpu_set 789 - MEDIUM: cfgparse: detect numa and set affinity if needed 790 - MINOR: global: add option to disable numa detection 791 - BUG/MINOR: haproxy: fix compilation on macOS 792 - BUG/MINOR: cpuset: fix compilation on platform without cpu affinity 793 - MINOR: time: avoid unneeded updates to now_offset 794 - MINOR: time: avoid overwriting the same values of global_now 795 - CLEANUP: time: use __tv_to_ms() in tv_update_date() instead of open-coding 796 - MINOR: time: avoid u64 needlessly expensive computations for the 32-bit now_ms 797 - BUG/MINOR: peers: remove useless table check if initial resync is finished 798 - BUG/MEDIUM: peers: re-work connection to new process during reload. 799 - BUG/MEDIUM: peers: re-work refcnt on table to protect against flush 800 - BUG/MEDIUM: config: fix missing initialization in numa_detect_topology() 801 8022021/04/09 : 2.4-dev16 803 - CLEANUP: dev/flags: remove useless test in the stdin number parser 804 - MINOR: No longer rely on deprecated sample fetches for predefined ACLs 805 - MINOR: acl: Add HTTP_2.0 predefined macro 806 - BUG/MINOR: hlua: Detect end of request when reading data for an HTTP applet 807 - BUG/MINOR: tools: fix parsing "us" unit for timers 808 - MINOR: server/bind: add support of new prefixes for addresses. 809 - MINOR: log: register config file and line number on log servers. 810 - MEDIUM: log: support tcp or stream addresses on log lines. 811 - BUG/MEDIUM: log: fix config parse error logging on stdout/stderr or any raw fd 812 - CLEANUP: fd: remove FD_POLL_DATA and FD_POLL_STICKY 813 - MEDIUM: fd: prepare FD_POLL_* to move to bits 8-15 814 - MEDIUM: fd: merge fdtab[].ev and state for FD_EV_* and FD_POLL_* into state 815 - MINOR: fd: move .linger_risk into fdtab[].state 816 - MINOR: fd: move .cloned into fdtab[].state 817 - MINOR: fd: move .initialized into fdtab[].state 818 - MINOR: fd: move .et_possible into fdtab[].state 819 - MINOR: fd: move .exported into fdtab[].state 820 - MINOR: fd: implement an exclusive syscall bit to remove the ugly "log" lock 821 - MINOR: cli/show-fd: slightly reorganize the FD status flags 822 - MINOR: atomic/arm64: detect and use builtins for the double-word CAS 823 - CLEANUP: atomic: add an explicit _FETCH variant for add/sub/and/or 824 - CLEANUP: atomic: make all standard add/or/and/sub operations return void 825 - CLEANUP: atomic: add a fetch-and-xxx variant for common operations 826 - CLEANUP: atomic: add HA_ATOMIC_INC/DEC for unit increments 827 - CLEANUP: atomic/tree-wide: replace single increments/decrements with inc/dec 828 - CLEANUP: atomic: use the __atomic variant of BTS/BTR on modern compilers 829 - MINOR: atomic: implement native BTS/BTR for x86 830 - MINOR: ist: Add `istappend(struct ist, char)` 831 - MINOR: ist: Add `istshift(struct ist*)` 832 - MINOR: ist: Add `istsplit(struct ist*, char)` 833 - BUG/MAJOR: fd: switch temp values to uint in fd_stop_both() 834 - MINOR: opentracing: register config file and line number on log servers 835 - MEDIUM: resolvers: add support of tcp address on nameserver line. 836 - MINOR: ist: Rename istappend() to __istappend() 837 - CLEANUP: htx: Make http_get_stline take a `const struct` 838 - CLEANUP: ist: Remove unused `count` argument from `ist2str*` 839 - CLEANUP: Remove useless malloc() casts 840 8412021/04/02 : 2.4-dev15 842 - BUG/MINOR: payload: Wait for more data if buffer is empty in payload/payload_lv 843 - BUG/MINOR: stats: Apply proper styles in HTML status page. 844 - BUG/MEDIUM: time: make sure to always initialize the global tick 845 - BUG/MINOR: tcp: fix silent-drop workaround for IPv6 846 - BUILD: tcp: use IPPROTO_IPV6 instead of SOL_IPV6 on FreeBSD/MacOS 847 - CLEANUP: socket: replace SOL_IP/IPV6/TCP with IPPROTO_IP/IPV6/TCP 848 - BUG/MINOR: http_fetch: make hdr_ip() resistant to empty fields 849 - BUG/MINOR: mux-h2: Don't emit log twice if an error occurred on the preface 850 - MINOR: stream: Don't trigger errors on destructive HTTP upgrades 851 - MINOR: frontend: Create HTTP txn for HTX streams 852 - MINOR: stream: Be sure to set HTTP analysers when creating an HTX stream 853 - BUG/MINOR: stream: Properly handle TCP>H1>H2 upgrades in http_wait_for_request 854 - BUG/MINOR: config: Add warning for http-after-response rules in TCP mode 855 - MINOR: muxes: Add a flag to notify a mux does not support any upgrade 856 - MINOR: mux-h1: Don't perform implicit HTTP/2 upgrade if not supported by mux 857 - MINOR: mux-pt: Don't perform implicit HTTP upgrade if not supported by mux 858 - MEDIUM: mux-h1: Expose h1 in the list of supported mux protocols 859 - MEDIUM: mux-pt: Expose passthrough in the list of supported mux protocols 860 - MINOR: muxes: Show muxes flags when the mux list is displayed 861 - DOC: config: Improve documentation about proto/check-proto keywords 862 - MINOR: stream: Use stream type instead of proxy mode when appropriate 863 - MINOR: filters/http-ana: Decide to filter HTTP headers in HTTP analysers 864 - MINOR: http-ana: Simplify creation/destruction of HTTP transactions 865 - MINOR: stream: Handle stream HTTP upgrade in a dedicated function 866 - MEDIUM: Add tcp-request switch-mode action to perform HTTP upgrade 867 - MINOR: config/proxy: Don't warn for HTTP rules in TCP if 'switch-mode http' set 868 - MINOR: config/proxy: Warn if a TCP proxy without backend is upgradable to HTTP 869 - DOC: config: Add documentation about TCP to HTTP upgrades 870 - REGTESTS: Add script to tests TCP to HTTP upgrades 871 - BUG/MINOR: payload/htx: Ingore L6 sample fetches for HTX streams/checks 872 - MINOR: htx: Make internal.strm.is_htx an internal sample fetch 873 - MINOR: action: Use a generic function to check validity of an action rule list 874 - MINOR: payload/config: Warn if a L6 sample fetch is used from an HTTP proxy 875 - MEDIUM: http-rules: Add wait-for-body action on request and response side 876 - REGTESTS: Add script to tests the wait-for-body HTTP action 877 - BUG/MINOR: http-fetch: Fix test on message state to capture the version 878 - CLEANUP: vars: always pre-initialize smp in vars_parse_cli_get_var() 879 - MINOR: global: define diagnostic mode of execution 880 - MINOR: cfgparse: diag for multiple nbthread statements 881 - MINOR: server: diag for 0 weight server 882 - MINOR: diag: create cfgdiag module 883 - MINOR: diag: diag if servers use the same cookie value 884 - MINOR: config: diag if global section after non-global 885 - TESTS: slightly reorganize the code in the tests/ directory 886 - TESTS: move tests/*.cfg to tests/config 887 - REGTESTS: ssl: "set ssl cert" and multi-certificates bundle 888 - REGTESTS: ssl: mark set_ssl_cert_bundle.vtc as broken 889 - CONTRIB: halog: fix issue with array of type char 890 - CONTRIB: tcploop: add a shutr command 891 - CONTRIB: debug: add the show-fd-to-flags script 892 - CONTRIB: debug: split poll from flags 893 - CONTRIB: move some dev-specific tools to dev/ 894 - BUILD: makefile: always build the flags utility 895 - DEV: flags: replace the unneeded makefile with a README 896 - BUILD: makefile: integrate the hpack tools 897 - CONTRIB: merge ip6range with iprange 898 - CONTRIB: move some admin-related sub-projects to admin/ 899 - CONTRIB: move halog to admin/ 900 - ADMIN: halog: automatically enable USE_MEMCHR on the right glibc version 901 - BUILD: makefile: build halog with the correct flags 902 - BUILD: makefile: add a "USE_PROMEX" variable to ease building prometheus-exporter 903 - CONTRIB: move prometheus-exporter to addons/promex 904 - DOC: add a few words about USE_* and the addons directory 905 - CONTRIB: move 51Degrees to addons/51degrees 906 - CONTRIB: move src/da.c and contrib/deviceatlas to addons/deviceatlas 907 - CONTRIB: move src/wurfl.c and contrib/wurfl to addons/wurfl 908 - CONTRIB: move contrib/opentracing to addons/ot 909 - BUG/MINOR: opentracing: initialization after establishing daemon mode 910 - DOC: clarify that compression works for HTTP/2 911 9122021/03/27 : 2.4-dev14 913 - MEDIUM: quic: Fix build. 914 - MEDIUM: quic: Fix build. 915 - CI: codespell: whitelist "Dragan Dosen" 916 - CLEANUP: assorted typo fixes in the code and comments 917 - CI: github actions: update LibreSSL to 3.2.5 918 - REGTESTS: revert workaround for a crash with recent libressl on http-reuse sni 919 - CLEANUP: mark defproxy as const on parse tune.fail-alloc 920 - REGTESTS: remove unneeded experimental-mode in cli add server test 921 - REGTESTS: wait for proper return of enable server in cli add server test 922 - MINOR: compression: use pool_alloc(), not pool_alloc_dirty() 923 - MINOR: spoe: use pool_alloc(), not pool_alloc_dirty() 924 - MINOR: fcgi-app: use pool_alloc(), not pool_alloc_dirty() 925 - MINOR: cache: use pool_alloc(), not pool_alloc_dirty() 926 - MINOR: ssl: use pool_alloc(), not pool_alloc_dirty() 927 - MINOR: opentracing: use pool_alloc(), not pool_alloc_dirty() 928 - MINOR: dynbuf: make b_alloc() always check if the buffer is allocated 929 - CLEANUP: compression: do not test for buffer before calling b_alloc() 930 - CLEANUP: l7-retries: do not test the buffer before calling b_alloc() 931 - MINOR: channel: simplify the channel's buffer allocation 932 - MEDIUM: dynbuf: remove last usages of b_alloc_margin() 933 - CLEANUP: dynbuf: remove b_alloc_margin() 934 - CLEANUP: dynbuf: remove the unused b_alloc_fast() function 935 - CLEANUP: pools: remove the unused pool_get_first() function 936 - MINOR: pools: make the pool allocator support a few flags 937 - MINOR: pools: add pool_zalloc() to return a zeroed area 938 - CLEANUP: connection: use pool_zalloc() in conn_alloc_hash_node() 939 - CLEANUP: filters: use pool_zalloc() in flt_stream_add_filter() 940 - CLEANUP: spoe: use pool_zalloc() instead of pool_alloc+memset 941 - CLEANUP: frontend: use pool_zalloc() in frontend_accept() 942 - CLEANUP: mailers: use pool_zalloc() in enqueue_one_email_alert() 943 - CLEANUP: resolvers: use pool_zalloc() in resolv_link_resolution() 944 - CLEANUP: ssl: use pool_zalloc() in ssl_init_keylog() 945 - CLEANUP: tcpcheck: use pool_zalloc() instead of pool_alloc+memset 946 - CLEANUP: quic: use pool_zalloc() instead of pool_alloc+memset 947 - MINOR: time: also provide a global, monotonic global_now_ms timer 948 - BUG/MEDIUM: freq_ctr/threads: use the global_now_ms variable 949 - MINOR: tools: introduce new option PA_O_DEFAULT_DGRAM on str2sa_range. 950 - BUILD: tools: fix build error with new PA_O_DEFAULT_DGRAM 951 - BUG/MINOR: ssl: Prevent disk access when using "add ssl crt-list" 952 - CLEANUP: ssl: remove unused definitions 953 - BUILD: ssl: guard ecdh functions with SSL_CTX_set_tmp_ecdh macro 954 - MINOR: lua: Slightly improve function dumping the lua traceback 955 - BUG/MEDIUM: debug/lua: Use internal hlua function to dump the lua traceback 956 - BUG/MEDIUM: lua: Always init the lua stack before referencing the context 957 - MINOR: fd: make fd_clr_running() return the remaining running mask 958 - MINOR: fd: remove the unneeded running bit from fd_insert() 959 - BUG/MEDIUM: fd: do not wait on FD removal in fd_delete() 960 - CLEANUP: fd: remove unused fd_set_running_excl() 961 - CLEANUP: fd: slightly simplify up _fd_delete_orphan() 962 - BUG/MEDIUM: fd: Take the fd_mig_lock when closing if no DWCAS is available. 963 - BUG/MEDIUM: release lock on idle conn killing on reached pool high count 964 - BUG/MEDIUM: thread: Fix a deadlock if an isolated thread is marked as harmless 965 - MINOR: tools: make url2ipv4 return the exact number of bytes parsed 966 - BUG/MINOR: http_fetch: make hdr_ip() reject trailing characters 967 - BUG/MEDIUM: mux-h1: make h1_shutw_conn() idempotent 968 - BUG/MINOR: ssl: Fix update of default certificate 969 - BUG/MINOR: ssl: Prevent removal of crt-list line if the instance is a default one 970 - BUILD: ssl: introduce fine guard for ssl random extraction functions 971 - REORG: global: move initcall register code in a dedicated file 972 - REORG: global: move free acl/action in their related source files 973 - REORG: split proxy allocation functions 974 - MINOR: proxy: implement a free_proxy function 975 - MINOR: proxy: define cap PR_CAP_LUA 976 - MINOR: lua: properly allocate the lua Socket proxy 977 - MINOR: lua: properly allocate the lua Socket servers 978 - MINOR: vars: make get_vars() allow the session to be null 979 - MINOR: vars: make the var() sample fetch keyword depend on nothing 980 - CLEANUP: sample: remove duplicate "stopping" sample fetch keyword 981 - MINOR: sample: make smp_resolve_args() return an allocate error message 982 - MINOR: sample: add a new SMP_SRC_CONST sample capability 983 - MINOR: sample: mark the truly constant sample fetch keywords as such 984 - MINOR: sample: add a new CFG_PARSER context for samples 985 - MINOR: action: add a new ACT_F_CFG_PARSER origin designation 986 - MEDIUM: vars: add support for a "set-var" global directive 987 - REGTESTS: add a basic reg-test for some "set-var" commands 988 - MINOR: sample: add a new CLI_PARSER context for samples 989 - MINOR: action: add a new ACT_F_CLI_PARSER origin designation 990 - MINOR: vars/cli: add a "get var" CLI command to retrieve global variables 991 - MEDIUM: cli: add a new experimental "set var" command 992 - MINOR: compat: add short aliases for a few very commonly used types 993 - BUILD: ssl: use EVP_CIPH_GCM_MODE macro instead of HA_OPENSSL_VERSION 994 - MEDIUM: backend: use a trylock to grab a connection on high FD counts as well 995 9962021/03/19 : 2.4-dev13 997 - BUG/MEDIUM: cli: fix "help" crashing since recent spelling fixes 998 - BUG/MINOR: cfgparse: use the GLOBAL not LISTEN keywords list for spell checking 999 - MINOR: tools: improve word fingerprinting by counting presence 1000 - MINOR: tools: do not sum squares of differences for word fingerprints 1001 - MINOR: cli: improve fuzzy matching to work on all remaining words at once 1002 - MINOR: cli: sort the suggestions by order of relevance 1003 - MINOR: cli: limit spelling suggestions to 5 1004 - MINOR: cfgparse/proxy: also support spelling fixes on options 1005 - BUG/MINOR: resolvers: Add missing case-insensitive comparisons of DNS hostnames 1006 - MINOR: time: export the global_now variable 1007 - BUG/MINOR: freq_ctr/threads: make use of the last updated global time 1008 - MINOR: freq_ctr/threads: relax when failing to update a sliding window value 1009 - MINOR/BUG: mworker/cli: do not use the unix_bind prefix for the master CLI socket 1010 - MINOR: mworker/cli: alert the user if we enabled a master CLI but not the master-worker mode 1011 - MINOR: cli: implement experimental-mode 1012 - REORG: server: add a free server function 1013 - MINOR: cfgparse: always alloc idle conns task 1014 - REORG: server: move keywords in srv_kws 1015 - MINOR: server: remove fastinter from mistyped kw list 1016 - REORG: server: split parse_server 1017 - REORG: server: move alert traces in parse_server 1018 - REORG: server: rename internal functions from parse_server 1019 - REORG: server: attach servers in parse_server 1020 - REORG: server: use flags for parse_server 1021 - MINOR: server: prepare parsing for dynamic servers 1022 - MINOR: stats: export function to allocate extra proxy counters 1023 - MEDIUM: server: implement 'add server' cli command 1024 - REGTESTS: implement test for 'add server' cli 1025 - MINOR: server: enable standard options for dynamic servers 1026 - MINOR: server: support keyword proto in 'add server' cli 1027 - BUG/MINOR: protocol: add missing support of dgram unix socket. 1028 - CLEANUP: Fix a typo in fix_is_valid description 1029 - MINOR: raw_sock: Add a close method. 1030 - MEDIUM: connections: Introduce a new XPRT method, start(). 1031 - MEDIUM: connections: Implement a start() method for xprt_handshake. 1032 - MEDIUM: connections: Implement a start() method in ssl_sock. 1033 - MINOR: muxes: garbage collect the reset() method. 1034 - CLEANUP: tcp-rules: Fix a typo in error messages about expect-netscaler-cip 1035 - MEDIUM: lua: Use a per-thread counter to track some non-reentrant parts of lua 1036 - BUG/MEDIUM: debug/lua: Don't dump the lua stack if not dumpable 1037 10382021/03/13 : 2.4-dev12 1039 - CLEANUP: connection: Use `VAR_ARRAY` in `struct tlv` definition 1040 - CLEANUP: connection: Remove useless test for NULL before calling `pool_free()` 1041 - CLEANUP: connection: Use istptr / istlen for proxy_unique_id 1042 - MINOR: connection: Use a `struct ist` to store proxy_authority 1043 - CLEANUP: connection: Consistently use `struct ist` to process all TLV types 1044 - BUILD: task: fix build at -O0 with threads disabled 1045 - BUILD: bug: refine HA_LINK_ERROR() to only be used on gcc and derivatives 1046 - CLEANUP: config: make the cfg_keyword parsers take a const for the defproxy 1047 - BUILD: connection: do not use VAR_ARRAY in struct tlv 1048 - BUG/MEDIUM: session: NULL dereference possible when accessing the listener 1049 - MINOR: build: force CC to set a return code when probing options 1050 - CLEANUP: stream: rename a few remaining occurrences of "stream *sess" 1051 - BUG/MEDIUM: resolvers: handle huge responses over tcp servers. 1052 - CLEANUP: config: also address the cfg_keyword API change in the compression code 1053 - BUG/MEDIUM: ssl: properly remove the TASK_HEAVY flag at end of handshake 1054 - BUG/MINOR: sample: Rename SenderComID/TargetComID to SenderCompID/TargetCompID 1055 - MINOR: task: give the scheduler a bit more flexibility in the runqueue size 1056 - OPTIM: task: automatically adjust the default runqueue-depth to the threads 1057 - BUG/MINOR: connection: Missing QUIC initialization 1058 - BUG/MEDIUM: stick-tables: fix ref counter in table entry using multiple http tracksc. 1059 - BUILD: atomic/arm64: force the register pairs to use in __ha_cas_dw() 1060 - BUG/MEDIUM: filters: Set CF_FL_ANALYZE on channels when filters are attached 1061 - BUG/MINOR: tcpcheck: Update .health threshold of agent inside an agent-check 1062 - BUG/MINOR: proxy/session: Be sure to have a listener to increment its counters 1063 - BUG/MINOR: tcpcheck: Fix double free on error path when parsing tcp/http-check 1064 - BUG/MINOR: server-state: properly handle the case where the base is not set 1065 - BUG/MINOR: server-state: use the argument, not the global state 1066 - CLEANUP: tcp-rules: add missing actions in the tcp-request error message 1067 - CLEANUP: vars: make the error message clearer on missing arguments for set-var 1068 - CLEANUP: http-rules: remove the unexpected comma before the list of action keywords 1069 - CLEANUP: actions: the keyword must always be const from the rule 1070 - MINOR: tools: add simple word fingerprinting to find similar-looking words 1071 - MINOR: cfgparse: add cfg_find_best_match() to suggest an existing word 1072 - MINOR: cfgparse: suggest correct spelling for unknown words in proxy sections 1073 - MINOR: cfgparse: suggest correct spelling for unknown words in global section 1074 - MINOR: cfgparse/server: try to fix spelling mistakes on server lines 1075 - MINOR: cfgparse/bind: suggest correct spelling for unknown bind keywords 1076 - MINOR: actions: add a function to suggest an action ressembling a given word 1077 - MINOR: http-rules: suggest approaching action names on mismatch 1078 - MINOR: tcp-rules: suggest approaching action names on mismatch 1079 - BUG/MINOR: cfgparse/server: increment the extra keyword counter one at a time 1080 - Revert "BUG/MINOR: resolvers: Only renew TTL for SRV records with an additional record" 1081 - BUG/MINOR: resolvers: Consider server to have no IP on DNS resolution error 1082 - BUG/MINOR: resolvers: Reset server address on DNS error only on status change 1083 - BUG/MINOR: resolvers: Unlink DNS resolution to set RMAINT on SRV resolution 1084 - BUG/MEDIUM: resolvers: Don't set an address-less server as UP 1085 - BUG/MEDIUM: resolvers: Fix the loop looking for an existing ADD item 1086 - MINOR: resolvers: new function find_srvrq_answer_record() 1087 - BUG/MINOR; resolvers: Ignore DNS resolution for expired SRV item 1088 - BUG/MEDIUM: resolvers: Trigger a DNS resolution if an ADD item is obsolete 1089 - MINOR: resolvers: Use a function to remove answers attached to a resolution 1090 - MINOR: resolvers: Purge answer items when a SRV resolution triggers an error 1091 - MINOR: resolvers: Add function to change the srv status based on SRV resolution 1092 - MINOR: resolvers: Directly call srvrq_update_srv_state() when possible 1093 - BUG/MEDIUM: resolvers: Don't release resolution from a requester callbacks 1094 - BUG/MEDIUM: resolvers: Skip DNS resolution at startup if SRV resolution is set 1095 - MINOR: resolvers: Use milliseconds for cached items in resolver responses 1096 - MINOR: resolvers: Don't try to match immediatly renewed ADD items 1097 - CLEANUP: resolvers: Use ha_free() in srvrq_resolution_error_cb() 1098 - CLEANUP: resolvers: Perform unsafe loop on requester list when possible 1099 - BUG/MINOR: cli: make sure "help", "prompt", "quit" are enabled at master level 1100 - CLEANUP: cli: fix misleading comment and better indent the access level flags 1101 - MINOR: cli: set the ACCESS_MASTER* bits on the master bind_conf 1102 - MINOR: cli: test the appctx level for master access instead of comparing pointers 1103 - MINOR: cli: print the error message in the parser function itself 1104 - MINOR: cli: filter the list of commands to the matching part 1105 - MEDIUM: cli: apply spelling fixes for known commands before listing them 1106 - MINOR: tools: add the ability to update a word fingerprint 1107 - MINOR: cli: apply the fuzzy matching on the whole command instead of words 1108 - CLEANUP: cli: rename MAX_STATS_ARGS to MAX_CLI_ARGS 1109 - CLEANUP: cli: rename the last few "stats_" to "cli_" 1110 - CLEANUP: task: make sure tasklet handlers always indicate their statuses 1111 - CLEANUP: assorted typo fixes in the code and comments 1112 11132021/03/05 : 2.4-dev11 1114 - CI: codespell: skip Makefile for spell check 1115 - CLEANUP: assorted typo fixes in the code and comments 1116 - BUG/MINOR: tcp-act: Don't forget to set the original port for IPv4 set-dst rule 1117 - BUG/MINOR: connection: Use the client's dst family for adressless servers 1118 - BUG/MEDIUM: spoe: Kill applets if there are pending connections and nbthread > 1 1119 - CLEANUP: Use ist2(const void*, size_t) whenever possible 1120 - CLEANUP: Use IST_NULL whenever possible 1121 - BUILD: proxy: Missing header inclusion for quic_transport_params_init() 1122 - BUILD: quic: Implicit conversion between SSL related enums. 1123 - DOC: spoe: Add a note about fragmentation support in HAProxy 1124 - MINOR: contrib: add support for heartbeat control messages. 1125 - MINOR: contrib: Enhance peers dissector heuristic. 1126 - BUG/MINOR: mux-h2: Fix typo in scheme adjustment 1127 - CLEANUP: Reapply the ist2() replacement patch 1128 - CLEANUP: Use istadv(const struct ist, const size_t) whenever possible 1129 - CLEANUP: Use isttest(const struct ist) whenever possible 1130 - Revert "CI: Pin VTest to a known good commit" 1131 - CLEANUP: backend: fix a wrong comment 1132 - BUG/MINOR: backend: free allocated bind_addr if reuse conn 1133 - MINOR: backend: handle reuse for conns with no server as target 1134 - REGTESTS: test http-reuse if no server target 1135 - BUG/MINOR: hlua: Don't strip last non-LWS char in hlua_pushstrippedstring() 1136 - BUG/MINOR: server-state: Don't load server-state file for disabled backends 1137 - CLEANUP: dns: Use DISGUISE() on a never-failing ring_attach() call 1138 - CLEANUP: dns: Remove useless test on ns->dgram in dns_connect_nameserver() 1139 - DOC: fix originalto except clause on destination address 1140 - CLEANUP: Use the ist() macro whenever possible 1141 - CLEANUP: Replace for loop with only a condition by while 1142 - REORG: atomic: reimplement pl_cpu_relax() from atomic-ops.h 1143 - BUG/MINOR: mt-list: always perform a cpu_relax call on failure 1144 - MINOR: atomic: add armv8.1-a atomics variant for cas-dw 1145 - MINOR: atomic: implement a more efficient arm64 __ha_cas_dw() using pairs 1146 - BUG/MINOR: ssl: don't truncate the file descriptor to 16 bits in debug mode 1147 - MEDIUM: pools: add CONFIG_HAP_NO_GLOBAL_POOLS and CONFIG_HAP_GLOBAL_POOLS 1148 - MINOR: pools: double the local pool cache size to 1 MB 1149 - MINOR: stream: use ABORT_NOW() and not abort() in stream_dump_and_crash() 1150 - CLEANUP: stream: explain why we queue the stream at the head of the server list 1151 - MEDIUM: backend: use a trylock when trying to grab an idle connection 1152 - REORG: tools: promote the debug PRNG to more general use as a statistical one 1153 - OPTIM: lb-random: use a cheaper PRNG to pick a server 1154 - MINOR: task: stop abusing the nice field to detect a tasklet 1155 - MINOR: task: move the nice field to the struct task only 1156 - MEDIUM: task: extend the state field to 32 bits 1157 - MINOR: task: add an application specific flag to the state: TASK_F_USR1 1158 - MEDIUM: muxes: mark idle conns tasklets with TASK_F_USR1 1159 - MINOR: xprt: add new xprt_set_idle and xprt_set_used methods 1160 - MEDIUM: ssl: implement xprt_set_used and xprt_set_idle to relax context checks 1161 - MINOR: server: don't read curr_used_conns multiple times 1162 - CLEANUP: global: reorder some fields to respect cache lines 1163 - CLEANUP: sockpair: silence a coverity check about fcntl() 1164 - CLEANUP: lua: set a dummy file name and line number on the dummy servers 1165 - MINOR: server: add a global list of all known servers 1166 - MINOR: cfgparse: finish to set up servers outside of the proxy setup loop 1167 - MINOR: server: allocate a per-thread struct for the per-thread connections stuff 1168 - MINOR: server: move actconns to the per-thread structure 1169 - CLEANUP: server: reorder some fields in the server struct to respect cache lines 1170 - MINOR: backend: add a BUG_ON if conn mux NULL in connect_server 1171 - BUG/MINOR: backend: fix condition for reuse on mode HTTP 1172 - BUILD: Fix build when using clang without optimizing. 1173 - CLEANUP: assorted typo fixes in the code and comments 1174 11752021/02/26 : 2.4-dev10 1176 - BUILD: SSL: introduce fine guard for RAND_keep_random_devices_open 1177 - MINOR: Configure the `cpp` userdiff driver for *.[ch] in .gitattributes 1178 - BUG/MINOR: ssl/cli: potential null pointer dereference in "set ssl cert" 1179 - BUG/MINOR: sample: secure convs that accept base64 string and var name as args 1180 - BUG/MEDIUM: vars: make functions vars_get_by_{name,desc} thread-safe 1181 - CLEANUP: vars: make smp_fetch_var() to reuse vars_get_by_desc() 1182 - DOC: muxes: add a diagram of the exchanges between muxes and outer world 1183 - BUG/MEDIUM: proxy: use thread-safe stream killing on hard-stop 1184 - BUG/MEDIUM: cli/shutdown sessions: make it thread-safe 1185 - BUG/MINOR: proxy: wake up all threads when sending the hard-stop signal 1186 - MINOR: stream: add an "epoch" to figure which streams appeared when 1187 - MINOR: cli/streams: make "show sess" dump all streams till the new epoch 1188 - MINOR: streams: use one list per stream instead of a global one 1189 - MEDIUM: streams: do not use the streams lock anymore 1190 - BUILD: dns: avoid a build warning when threads are disabled (dss unused) 1191 - MEDIUM: task: remove the tasks_run_queue counter and have one per thread 1192 - MINOR: tasks: do not maintain the rqueue_size counter anymore 1193 - CLEANUP: tasks: use a less confusing name for task_list_size 1194 - CLEANUP: task: move the tree root detection from __task_wakeup() to task_wakeup() 1195 - MINOR: task: limit the remote thread wakeup to the global runqueue only 1196 - MINOR: task: move the allocated tasks counter to the per-thread struct 1197 - CLEANUP: task: split the large tasklet_wakeup_on() function in two 1198 - BUG/MINOR: fd: properly wait for !running_mask in fd_set_running_excl() 1199 - BUG/MINOR: resolvers: Fix condition to release received ARs if not assigned 1200 - BUG/MINOR: resolvers: Only renew TTL for SRV records with an additional record 1201 - BUG/MINOR: resolvers: new callback to properly handle SRV record errors 1202 - BUG/MEDIUM: resolvers: Reset server address and port for obselete SRV records 1203 - BUG/MEDIUM: resolvers: Reset address for unresolved servers 1204 - DOC: Update the module list in MAINTAINERS file 1205 - MINOR: htx: Add function to reserve the max possible size for an HTX DATA block 1206 - DOC: Update the HTX API documentation 1207 - DOC: Update the filters guide 1208 - BUG/MEDIUM: contrib/prometheus-exporter: fix segfault in listener name dump 1209 - MINOR: task: split the counts of local and global tasks picked 1210 - MINOR: task: do not use __task_unlink_rq() from process_runnable_tasks() 1211 - MINOR: task: don't decrement then increment the local run queue 1212 - CLEANUP: task: re-merge __task_unlink_rq() with task_unlink_rq() 1213 - MINOR: task: make grq_total atomic to move it outside of the grq_lock 1214 - MINOR: tasks: also compute the tasklet latency when DEBUG_TASK is set 1215 - MINOR: task: make tasklet wakeup latency measurements more accurate 1216 - MINOR: server: Be more strict on the server-state line parsing 1217 - MINOR: server: Only fill one array when parsing a server-state line 1218 - MEDIUM: server: Refactor apply_server_state() to make it more readable 1219 - CLEANUP: server: Rename state_line node to node instead of name_name 1220 - CLEANUP: server: Rename state_line structure into server_state_line 1221 - CLEANUP: server: Use a local eb-tree to store lines of the global server-state file 1222 - MINOR: server: Be more strict when reading the version of a server-state file 1223 - MEDIUM: server: Store parsed params of a server-state line in the tree 1224 - MINOR: server: Remove cached line from global server-state tree when found 1225 - MINOR: server: Move loading state of servers in a dedicated function 1226 - MEDIUM: server: Use a tree to store local server-state lines 1227 - MINOR: server: Parse and store server-state lines in a dedicated function 1228 - MEDIUM: server: Don't load server-state file if a line is corrupted 1229 - REORG: server: Export and rename some functions updating server info 1230 - REORG: server-state: Move functions to deal with server-state in its own file 1231 - MINOR: server-state: Don't load server-state file for serverless proxies 1232 - CLEANUP: muxes: Remove useless if condition in show_fd function 1233 - BUG/MINOR: stats: fix compare of no-maint url suffix 1234 - MINOR: task: limit the number of subsequent heavy tasks with flag TASK_HEAVY 1235 - MINOR: ssl: mark the SSL handshake tasklet as heavy 1236 - CLEANUP: server: rename srv_cleanup_{idle,toremove}_connections() 1237 - BUG/MINOR: ssl: potential null pointer dereference in ckchs_dup() 1238 - MINOR: task: add one extra tasklet class: TL_HEAVY 1239 - MINOR: task: place the heavy elements in TL_HEAVY 1240 - MINOR: task: only limit TL_HEAVY tasks but not others 1241 - BUG/MINOR: http-ana: Only consider dst address to process originalto option 1242 - MINOR: tools: Add net_addr structure describing a network addess 1243 - MINOR: tools: Add function to compare an address to a network address 1244 - MEDIUM: http-ana: Add IPv6 support for forwardfor and orignialto options 1245 - CLEANUP: hlua: Use net_addr structure internally to parse and compare addresses 1246 - REGTESTS: Add script to test except param for fowardedfor/originalto options 1247 - DOC: scheduler: add a diagram showing the different queues and their usages 1248 - CLEANUP: tree-wide: replace free(x);x=NULL with ha_free(&x) 1249 - CLEANUP: config: replace a few free() with ha_free() 1250 - CLEANUP: vars: always zero the pointers after a free() 1251 - CLEANUP: ssl: remove a useless "if" before freeing an error message 1252 - CLEANUP: ssl: make ssl_sock_free_srv_ctx() zero the pointers after free 1253 - CLEANUP: ssl: use realloc() instead of free()+malloc() 1254 12552021/02/20 : 2.4-dev9 1256 - BUG/MINOR: server: Remove RMAINT from admin state when loading server state 1257 - CLEANUP: check: fix get_check_status_info declaration 1258 - CLEANUP: contrib/prometheus-exporter: align for with srv status case 1259 - MEDIUM: stats: allow to select one field in `stats_fill_li_stats` 1260 - MINOR: stats: add helper to get status string 1261 - MEDIUM: contrib/prometheus-exporter: add listen stats 1262 - BUG/MINOR: dns: add test on result getting value from buffer into ring. 1263 - BUG/MINOR: dns: dns_connect_server must return -1 unsupported nameserver's type 1264 - BUG/MINOR: dns: missing test writing in output channel in session handler 1265 - BUG/MINOR: dns: fix ring attach control on dns_session_new 1266 - BUG/MEDIUM: dns: fix multiple double close on fd in dns.c 1267 - BUG/MAJOR: connection: prevent double free if conn selected for removal 1268 - BUG/MINOR: session: atomically increment the tracked sessions counter 1269 - REGTESTS: fix http_reuse_conn_hash proxy test 1270 - BUG/MINOR: backend: do not call smp_make_safe for sni conn hash 1271 - MINOR: connection: remove pointers for prehash in conn_hash_params 1272 - BUG/MINOR: checks: properly handle wrapping time in __health_adjust() 1273 - BUG/MEDIUM: checks: don't needlessly take the server lock in health_adjust() 1274 - DEBUG: thread: add 5 extra lock labels for statistics and debugging 1275 - OPTIM: server: switch the actconn list to an mt-list 1276 - Revert "MINOR: threads: change lock_t to an unsigned int" 1277 - MINOR: lb/api: let callers of take_conn/drop_conn tell if they have the lock 1278 - OPTIM: lb-first: do not take the server lock on take_conn/drop_conn 1279 - OPTIM: lb-leastconn: do not take the server lock on take_conn/drop_conn 1280 - OPTIM: lb-leastconn: do not unlink the server if it did not change 1281 - MINOR: tasks: add DEBUG_TASK to report caller info in a task 1282 - MINOR: tasks/debug: add some extra controls of use-after-free in DEBUG_TASK 1283 - BUG/MINOR: sample: Always consider zero size string samples as unsafe 1284 - MINOR: cli: add missing agent commands for set server 1285 - BUILD/MEDIUM: da Adding pcre2 support. 1286 - BUILD: ssl: introduce fine guard for OpenSSL specific SCTL functions 1287 - REGTESTS: reorder reuse conn proxy protocol test 1288 - DOC: explain the relation between pool-low-conn and tune.idle-pool.shared 1289 - MINOR: tasks: refine the default run queue depth 1290 - MINOR: listener: refine the default MAX_ACCEPT from 64 to 4 1291 - MINOR: mux_h2: do not try to remove front conn from idle trees 1292 - REGTESTS: workaround for a crash with recent libressl on http-reuse sni 1293 - BUG/MEDIUM: lists: Avoid an infinite loop in MT_LIST_TRY_ADDQ(). 1294 - MINOR: connection: allocate dynamically hash node for backend conns 1295 - DOC: DeviceAtlas documentation typo fix. 1296 - BUG/MEDIUM: spoe: Resolve the sink if a SPOE logs in a ring buffer 1297 - BUG/MINOR: http-rules: Always replace the response status on a return action 1298 - BUG/MINOR: server: Init params before parsing a new server-state line 1299 - BUG/MINOR: server: Be sure to cut the last parsed field of a server-state line 1300 - MEDIUM: server: Don't introduce a new server-state file version 1301 - DOC: contrib/prometheus-exporter: remove htx reference 1302 - REGTESTS: contrib/prometheus-exporter: test NaN values 1303 - REGTESTS: contrib/prometheus-exporter: test well known labels 1304 - CI: github actions: switch to stable LibreSSL release 1305 - BUG/MINOR: server: Fix test on number of fields allowed in a server-state line 1306 - MINOR: dynbuf: make the buffer wait queue per thread 1307 - MINOR: dynbuf: use regular lists instead of mt_lists for buffer_wait 1308 - MINOR: dynbuf: pass offer_buffers() the number of buffers instead of a threshold 1309 - MINOR: sched: have one runqueue ticks counter per thread 1310 13112021/02/13 : 2.4-dev8 1312 - BUILD: ssl: fix typo in HAVE_SSL_CTX_ADD_SERVER_CUSTOM_EXT macro 1313 - BUILD: ssl: guard SSL_CTX_add_server_custom_ext with special macro 1314 - BUG/MINOR: mux-h1: Don't emit extra CRLF for empty chunked messages 1315 - MINOR: contrib/prometheus-exporter: use stats desc when possible followup 1316 - MEDIUM: contrib/prometheus-exporter: export base stick table stats 1317 - CLEANUP: assorted typo fixes in the code and comments 1318 - CLEANUP: check: fix some typo in comments 1319 - CLEANUP: tools: typo in `strl2irc` mention 1320 - BUILD: ssl: guard SSL_CTX_set_msg_callback with SSL_CTRL_SET_MSG_CALLBACK macro 1321 - MEDIUM: ssl: add a rwlock for SSL server session cache 1322 - BUG/MINOR: intops: fix mul32hi()'s off-by-one 1323 - BUG/MINOR: freq_ctr: fix a wrong delay calculation in next_event_delay() 1324 - MINOR: stick-tables/counters: add http_fail_cnt and http_fail_rate data types 1325 - MINOR: ssl: add SSL_SERVER_LOCK label in threads.h 1326 - BUG/MINOR: mux-h1: Don't increment HTTP error counter for 408/500/501 errors 1327 - BUG/MINOR: http-ana: Don't increment HTTP error counter on internal errors 1328 - BUG/MEDIUM: mux-h1: Always set CS_FL_EOI for response in MSG_DONE state 1329 - BUG/MINOR: mux-h1: Fix data skipping for bodyless responses 1330 - BUG/MINOR: mux-h1: Don't blindly skip EOT block for non-chunked messages 1331 - BUG/MEDIUM: mux-h2: Add EOT block when EOM flag is set on an empty HTX message 1332 - MINOR: mux-h1: Be sure EOM flag is set when processing end of outgoing message 1333 - REGTESTS: Add a script to test payload skipping for bodyless HTTP responses 1334 - BUG/MINOR: server: re-align state file fields number 1335 - CLEANUP: muxes: Remove useless calls to b_realign_if_empty() 1336 - BUG/MINOR: tools: Fix a memory leak on error path in parse_dotted_uints() 1337 - CLEANUP: remove unused variable assigned found by Coverity 1338 - CLEANUP: queue: Remove useless tests on p or pp in pendconn_process_next_strm() 1339 - BUG/MINOR: backend: hold correctly lock when killing idle conn 1340 - MEDIUM: connection: protect idle conn lists with locks 1341 - MEDIUM: connection: replace idle conn lists by eb trees 1342 - MINOR: backend: search conn in idle/safe trees after available 1343 - MINOR: backend: search conn in idle tree after safe on always reuse 1344 - MINOR: connection: prepare hash calcul for server conns 1345 - MINOR: connection: use the srv pointer for the srv conn hash 1346 - MINOR: backend: compare conn hash for session conn reuse 1347 - MINOR: connection: use sni as parameter for srv conn hash 1348 - MINOR: reg-tests: test http-reuse with sni 1349 - MINOR: backend: rewrite alloc of stream target address 1350 - MINOR: connection: use dst addr as parameter for srv conn hash 1351 - MINOR: reg-test: test http-reuse with specific dst addr 1352 - MINOR: backend: rewrite alloc of connection src address 1353 - MINOR: connection: use src addr as parameter for srv conn hash 1354 - MINOR: connection: use proxy protocol as parameter for srv conn hash 1355 - MINOR: reg-tests: test http-reuse with proxy protocol 1356 - MINOR: doc: update http reuse for new eligilible connections 1357 - BUG/MINOR: backend: fix compilation without ssl 1358 - REGTESTS: adjust http_reuse_conn_hash requirements 1359 - REGTESTS: deactivate a failed test on CI in http_reuse_conn_hash 1360 - REGTESTS: fix sni used in http_reuse_conn_hash for libressl 3.3.0 1361 - CI: cirrus: update FreeBSD image to 12.2 1362 - MEDIUM: cli: add check-addr command 1363 - MEDIUM: cli: add agent-port command 1364 - MEDIUM: server: add server-states version 2 1365 - MEDIUM: server: support {check,agent}_addr, agent_port in server state 1366 - MINOR: server: enhance error precision when applying server state 1367 - BUG/MINOR: server: Fix server-state-file-name directive 1368 - CLEANUP: deinit: release global and per-proxy server-state variables on deinit 1369 - BUG/MEDIUM: config: don't pick unset values from last defaults section 1370 - BUG/MINOR: stats: revert the change on ST_CONVDONE 1371 - BUG/MINOR: cfgparse: do not mention "addr:port" as supported on proxy lines 1372 - BUG/MINOR: http-htx: defpx must be a const in proxy_dup_default_conf_errors() 1373 - BUG/MINOR: tcpheck: the source list must be a const in dup_tcpcheck_var() 1374 - BUILD: proxy: add missing compression-t.h to proxy-t.h 1375 - REORG: move init_default_instance() to proxy.c and pass it the defproxy pointer 1376 - REORG: proxy: centralize the proxy allocation code into alloc_new_proxy() 1377 - MEDIUM: proxy: only take defaults when a default proxy is passed. 1378 - MINOR: proxy: move the defproxy freeing code to proxy.c 1379 - MINOR: proxy: always properly reset the just freed default instance pointers 1380 - BUG/MINOR: extcheck: proxy_parse_extcheck() must take a const for the defproxy 1381 - BUG/MINOR: tcpcheck: proxy_parse_*check*() must take a const for the defproxy 1382 - BUG/MINOR: server: parse_server() must take a const for the defproxy 1383 - MINOR: cfgparse: move defproxy to cfgparse-listen as a static 1384 - MINOR: proxy: add a new capability PR_CAP_DEF 1385 - MINOR: cfgparse: check PR_CAP_DEF instead of comparing poiner against defproxy 1386 - MINOR: cfgparse: use a pointer to the current default proxy 1387 - MINOR: proxy: also store the name for a defaults section 1388 - MINOR: proxy: support storing defaults sections into their own tree 1389 - MEDIUM: proxy: store the default proxies in a tree by name 1390 - MEDIUM: cfgparse: allow a proxy to designate the defaults section to use 1391 - MINOR: http: add baseq sample fetch 1392 - CLEANUP: tcpcheck: Remove a useless test on port variable 1393 - BUG/MINOR: server: Don't call fopen() with server-state filepath set to NULL 1394 - CLEANUP: server: Remove useless "filepath" variable in apply_server_state() 1395 - MINOR: peers/cli: do not dump the peers dictionaries by default on "show peers" 1396 - MINOR: cfgparse: implement a simple if/elif/else/endif macro block handler 1397 - DOC: tune: explain the origin of block size for ssl.cachesize 1398 - MINOR: tcp: add support for defer-accept on FreeBSD. 1399 - MINOR: ring: adds new ring_init function. 1400 - CLEANUP: channel: fix comment in ci_putblk. 1401 - BUG/MINOR: dns: add missing sent counter and parent id to dns counters. 1402 - BUG/MINOR: resolvers: fix attribute packed struct for dns 1403 - MINOR: resolvers: renames some resolvers internal types and removes dns prefix 1404 - MINOR: resolvers: renames type dns_resolvers to resolvers. 1405 - MINOR: resolvers: renames some resolvers specific types to not use dns prefix 1406 - MINOR: resolvers: renames some dns prefixed types using resolv prefix. 1407 - MINOR: resolvers: renames resolvers DNS_RESP_* errcodes RSLV_RESP_* 1408 - MINOR: resolvers: renames resolvers DNS_UPD_* returncodes to RSLV_UPD_* 1409 - MINOR: resolvers: rework prototype suffixes to split resolving and dns. 1410 - MEDIUM: resolvers: move resolvers section parsing from cfgparse.c to dns.c 1411 - MINOR: resolvers: replace nameserver's resolver ref by generic parent pointer 1412 - MINOR: resolvers: rework dns stats prototype because specific to resolvers 1413 - MEDIUM: resolvers: split resolving and dns message exchange layers. 1414 - MEDIUM: resolvers/dns: split dns.c into dns.c and resolvers.c 1415 - MEDIUM: dns: adds code to support pipelined DNS requests over TCP. 1416 - MEDIUM: resolvers: add supports of TCP nameservers in resolvers. 1417 14182021/02/05 : 2.4-dev7 1419 - BUG/MINOR: stats: Continue to fill frontend stats on unimplemented metric 1420 - BUILD: ssl: guard Client Hello callbacks with HAVE_SSL_CLIENT_HELLO_CB macro instead of openssl version 1421 - BUG/MINOR: stats: Init the metric variable when frontend stats are filled 1422 - MINOR: contrib/prometheus-exporter: better output of Not-a-Number 1423 - CLEANUP: stats: improve field selection for frontend http fields 1424 - CLEANUP: assorted typo fixes in the code and comments 1425 - DOC: Improve documentation of the various hdr() fetches 1426 - MEDIUM: stats: allow to select one field in `stats_fill_be_stats` 1427 - MINOR: contrib/prometheus-exporter: use fill_be_stats for backend dump 1428 - MEDIUM: stats: allow to select one field in `stats_fill_sv_stats` 1429 - MINOR: contrib/prometheus-exporter: use fill_sv_stats for server dump 1430 - MINOR: abort() on my_unreachable() when DEBUG_USE_ABORT is set. 1431 - BUG/MEDIUM: filters/htx: Fix data forwarding when payload length is unknown 1432 - BUG/MINOR: config: fix leak on proxy.conn_src.bind_hdr_name 1433 - MINOR: reg-tests: add http-reuse test 1434 - CLEANUP: srv: fix comment for pool-max-conn 1435 - CLEANUP: backend: remove an obsolete comment on conn_backend_get 1436 - REORG: backend: simplify conn_backend_get 1437 - MINOR: ssl: Server ssl context prepare function refactoring 1438 - MINOR: ssl: Certificate chain loading refactorization 1439 - MEDIUM: ssl: Load client certificates in a ckch for backend servers 1440 - MEDIUM: ssl: Enable backend certificate hot update 1441 - MINOR: ssl: Remove client_crt member of the server's ssl context 1442 - CLEANUP: ssl/cli: rework free in cli_io_handler_commit_cert() 1443 - CLEANUP: ssl: remove SSL_CTX function parameter 1444 - CLEANUP: ssl: make load_srv_{ckchs,cert} match their bind counterpart 1445 - BUILD: Include stdlib.h in compiler.h if DEBUG_USE_ABORT is set 1446 - CI: Fix DEBUG_STRICT definition for Coverity 1447 - BUG/MINOR: stats: Remove a break preventing ST_F_QCUR to be set for servers 1448 - BUG/MINOR: stats: Add a break after filling ST_F_MODE field for servers 1449 - CLEANUP: ssl: remove dead code in ckch_inst_new_load_srv_store() 1450 - BUG/MINOR: ssl: init tmp chunk correctly in ssl_sock_load_sctl_from_file() 1451 - BUG/MEDIUM: session: only retrieve ready idle conn from session 1452 - BUG/MEDIUM: backend: never reuse a connection for tcp mode 1453 - REGTESTS: set_ssl_server_cert.vtc: remove the abort command 1454 - REGTESTS: set_ssl_server_cert.vtc: check the Sha1 Fingerprint 1455 - REGTESTS: set_ssl_server_cert.vtc: check the sha1 from the server 1456 - MEDIUM: stream-int: Take care of EOS if the SI wake callback function 1457 - MINOR: mux-h1: Try to wake up data layer first before calling its wake callback 1458 - MINOR: mux-h1: Wake up H1C after its creation if input buffer is not empty 1459 - MEDIUM: mux-h1: Add ST_READY state for the H1 connections 1460 - MINOR: stream: Add a function to validate TCP to H1 upgrades 1461 - MEDIUM: http-ana: Do nothing in wait-for-request analyzer if not htx 1462 - BUG/MEDIUM: stream: Don't immediatly ack the TCP to H1 upgrades 1463 - BUG/MAJOR: mux-h1: Properly handle TCP to H1 upgrades 1464 - MINOR: htx/http-ana: Save info about Upgrade option in the Connection header 1465 - MEDIUM: http-ana: Refuse invalid 101-switching-protocols responses 1466 - BUG/MINOR: h2/mux-h2: Reject 101 responses with a PROTOCOL_ERROR h2s error 1467 - MINOR: mux-h1/mux-fcgi: Don't set TUNNEL mode if payload length is unknown 1468 - MINOR: mux-h1: Split H1C_F_WAIT_OPPOSITE flag to separate input/output sides 1469 - MINOR: mux-h2: Add 2 flags to help to properly handle tunnel mode 1470 - MEDIUM: mux-h2: Block client data on server side waiting tunnel establishment 1471 - MEDIUM: mux-h2: Close streams when processing data for an aborted tunnel 1472 - MEDIUM: mux-h1: Properly handle tunnel establishments and aborts 1473 - BUG/MAJOR: mux-h1/mux-h2/htx: Fix HTTP tunnel management at the mux level 1474 - MINOR: htx: Rename HTX_FL_EOI flag into HTX_FL_EOM 1475 - REGTESTS: Don't run http_msg_full_on_eom script on the 2.4 anymore 1476 - MINOR: htx: Add a function to know if a block is the only one in a message 1477 - MAJOR: htx: Remove the EOM block type and use HTX_FL_EOM instead 1478 - MINOR: mux-h1: Add a flag on H1 streams with a response known to be bodyless 1479 - MEDIUM: mux-h1: Don't emit any payload for bodyless responses 1480 - MINOR: mux-h1: Don't emit C-L and T-E headers for 204 and 1xx responses 1481 - MINOR: mux-h1: Don't add Connection close/keep-alive header for 1xx messages 1482 - MINOR: h2/mux-h2: Add flags to notify the response is known to have no body 1483 - MEDIUM: mux-h2: Don't emit DATA frame for bodyless responses 1484 - MEDIUM: http-ana: Deal with L7 retries in HTTP analysers 1485 - MINOR: h1: reject websocket handshake if missing key 1486 - MEDIUM: h1: generate WebSocket key on response if needed 1487 - MINOR: mux_h2: define H2_SF_EXT_CONNECT_SENT stream flag 1488 - MEDIUM: h2: parse Extended CONNECT reponse to htx 1489 - MEDIUM: mux_h2: generate Extended CONNECT from htx upgrade 1490 - MEDIUM: h1: add a WebSocket key on handshake if needed 1491 - MEDIUM: mux_h2: generate Extended CONNECT response 1492 - MEDIUM: h2: parse Extended CONNECT request to htx 1493 - MEDIUM: h2: send connect protocol h2 settings 1494 - MINOR: vtc: add test for h1/h2 protocol upgrade translation 1495 - MINOR: vtc: add websocket test 1496 - REGTESTS: Fix required versions for several scripts 1497 - REGTEST: Don't use the websocket to validate http-check 1498 - MINOR: mux-h1/trace: add traces at level ERROR for all kind of errors 1499 - MINOR: mux-fcgi/trace: add traces at level ERROR for all kind of errors 1500 - MINOR: h1: Raise the chunk size limit up to (2^52 - 1) 1501 - BUG/MEDIUM: listener: do not accept connections faster than we can process them 1502 - REGTESTS: set_ssl_server_cert.vtc: set as broken 1503 - Revert "BUG/MEDIUM: listener: do not accept connections faster than we can process them" 1504 - BUG/MINOR: backend: check available list allocation for reuse 1505 - CI: Fix the coverity builds 1506 - DOC: management: fix "show resolvers" alphabetical ordering 1507 - MINOR: tools: add print_time_short() to print a condensed duration value 1508 - MINOR: activity: make profiling more manageable 1509 - MINOR: activity: declare a new structure to collect per-function activity 1510 - MEDIUM: tasks/activity: collect per-task statistics when profiling is enabled 1511 - MINOR: activity: also report collected tasks stats in "show profiling" 1512 - MINOR: activity: flush scheduler stats on "set profiling tasks on" 1513 - MINOR: activity: add a new "show tasks" command to list currently active tasks 1514 - MINOR: listener: export accept_queue_process 1515 - MINOR: session: export session_expire_embryonic() 1516 - MINOR: muxes: export the timeout and shutr task handlers 1517 - MINOR: checks: export a few functions that appear often in trace dumps 1518 - MINOR: peers: export process_peer_sync() to improve traces 1519 - MINOR: stick-tables: export process_table_expire() 1520 - MINOR: mux-h1: Remove first useless test on count in h1_process_output() 1521 - BUG/MINOR: stick-table: Always call smp_fetch_src() with a valid arg list 1522 - MINOR: http-fetch: Don't check if argument list is set in sample fetches 1523 - MINOR: http-conv: Don't check if argument list is set in sample converters 1524 - MINOR: sample: Don't check if argument list is set in sample fetches 1525 - MINOR: ssl-sample: Don't check if argument list is set in sample fetches 1526 - MINOR: mux-h2: Don't tests the start-line when sending HEADERS frame 1527 - MINOR: mux-h2: Slightly improve request HEADERS frames sending 1528 - MINOR: contrib/prometheus-exporter: declare states for objects 1529 - MAJOR: contrib/prometheus-exporter: move ftd/bkd/srv states to labels 1530 - MEDIUM: contrib/prometheus-exporter: Use dynamic labels instead of static ones 1531 - MINOR: listener: export manage_global_listener_queue() 1532 - BUG/MINOR: activity: take care of late wakeups in "show tasks" 1533 - REGTESTS: set_ssl_server_cert.vtc: remove SSL caching and set as working 1534 - REGTESTS: set_ssl_server_cert: cleanup the SSL caching option 1535 - MINOR: checks: Add function to get the result code corresponding to a status 1536 - MAJOR: contrib/prometheus-exporter: move health check status to labels 1537 - MINOR: contrib/prometheus-exporter: improve service status description field 1538 - MINOR: stats: improve pending connections description 1539 - MINOR: stats: improve max stats descriptions 1540 - MINOR: contrib/prometheus-exporter: use stats desc when possible 1541 - MINOR: contrib/prometheus-exporter: add uweight field 1542 - MINOR: contrib/prometheus-exporter: add recv logs_logs_total field 1543 - CLEANUP: contrib/prometheus-exporter: remove unused includes 1544 - CLEANUP: contrib/prometheus-exporter: align and reorder fields 1545 - CLEANUP: contrib/prometheus-exporter: remove description in README 1546 - DOC: contrib/prometheus-exporter: Add missing metrics in README 1547 - BUG/MINOR: contrib/prometheus-exporter: Add missing label for ST_F_HRSP_1XX 1548 - BUG/MINOR: contrib/prometheus-exporter: Restart labels dump at the right pos 1549 - BUG/MEDIUM: ssl/cli: abort ssl cert is freeing the old store 1550 - BUG/MEDIUM: ssl: check a connection's status before computing a handshake 1551 - BUG/MINOR: mux_h2: fix incorrect stat titles 1552 - MINOR: ssl/cli: flush the server session cache upon 'commit ssl cert' 1553 - BUG/MINOR: cli: fix set server addr/port coherency with health checks 1554 - MINOR: server: Don't set the check port during the update from a state file 1555 - MINOR: dns: Don't set the check port during a server dns resolution 1556 - MEDIUM: check: remove checkport checkaddr flag 1557 - MEDIUM: server: adding support for check_port in server state 1558 - BUG/MINOR: check: consitent way to set agentaddr 1559 - MEDIUM: check: align agentaddr and agentport behaviour 1560 - DOC: server: Add missing params in comment of the server state line parsing 1561 - BUG/MINOR: xxhash: make sure armv6 uses memcpy() 1562 - REGTESTS: mark http-check-send.vtc as 2.4-only 1563 - REGTESTS: mark sample_fetches/hashes.vtc as 2.4-only 1564 - BUG/MINOR: ssl: do not try to use early data if not configured 1565 - REGTESTS: unbreak http-check-send.vtc 1566 - MINOR: cli/show_fd: report local and report ports when known 1567 - BUILD: Makefile: move REGTESTST_TYPE default setting 1568 - BUG/MEDIUM: mux-h2: handle remaining read0 cases 1569 - CLEANUP: http-htx: Set buffer area to NULL instead of malloc(0) 1570 - BUG/MINOR: sock: Unclosed fd in case of connection allocation failure 1571 - BUG/MEDIUM: mux-h2: do not quit the demux loop before setting END_REACHED 1572 15732021/01/22 : 2.4-dev6 1574 - MINOR: converter: adding support for url_enc 1575 - BUILD: SSL: guard TLS13 ciphersuites with HAVE_SSL_CTX_SET_CIPHERSUITES 1576 - BUILD: ssl: guard EVP_PKEY_get_default_digest_nid with ASN1_PKEY_CTRL_DEFAULT_MD_NID 1577 - BUILD: ssl: guard openssl specific with SSL_READ_EARLY_DATA_SUCCESS 1578 - BUILD: Makefile: exclude broken tests by default 1579 - CLEANUP: cfgparse: replace "realloc" with "my_realloc2" to fix to memory leak on error 1580 - BUG/MINOR: hlua: Fix memory leak in hlua_alloc 1581 - MINOR: contrib/prometheus-exporter: export build_info 1582 - DOC: fix some spelling issues over multiple files 1583 - CLEANUP: Fix spelling errors in comments 1584 - SCRIPTS: announce-release: fix typo in help message 1585 - CI: github: add a few more words to the codespell ignore list 1586 - DOC: Add maintainers for the Prometheus exporter 1587 - BUG/MINOR: sample: fix concat() converter's corruption with non-string variables 1588 - BUG/MINOR: server: Memory leak of proxy.used_server_addr during deinit 1589 - CLEANUP: sample: remove uneeded check in json validation 1590 - MINOR: reg-tests: add a way to add service dependency 1591 - BUG/MINOR: sample: check alloc_trash_chunk return value in concat() 1592 - BUG/MINOR: reg-tests: fix service dependency script 1593 - MINOR: reg-tests: add base prometheus test 1594 - Revert "BUG/MINOR: dns: SRV records ignores duplicated AR records" 1595 - BUG/MINOR: sample: Memory leak of sample_expr structure in case of error 1596 - BUG/MINOR: check: Don't perform any check on servers defined in a frontend 1597 - BUG/MINOR: init: enforce strict-limits when using master-worker 1598 - MINOR: contrib/prometheus-exporter: avoid connection close header 1599 - MINOR: contrib/prometheus-exporter: use fill_info for process dump 1600 - BUG/MINOR: init: Use a dynamic buffer to set HAPROXY_CFGFILES env variable 1601 - MINOR: config: Add failifnotcap() to emit an alert on proxy capabilities 1602 - MINOR: server: Forbid server definitions in frontend sections 1603 - BUG/MINOR: threads: Fixes the number of possible cpus report for Mac. 1604 - CLEANUP: pattern: rename pat_ref_commit() to pat_ref_commit_elt() 1605 - MINOR: pattern: add the missing generation ID manipulation functions 1606 - MINOR: peers: Add traces for peer control messages. 1607 - BUG/MINOR: dns: SRV records ignores duplicated AR records (v2) 1608 - BUILD: peers: fix build warning about unused variable 1609 - BUG/MEDIUM: stats: add missing INF_BUILD_INFO definition 1610 - MINOR: cache: Do not store responses with an unknown encoding 1611 - BUG/MINOR: peers: Possible appctx pointer dereference. 1612 - MINOR: build: discard echoing in help target 1613 - MINOR: cache: Remove the `hash` part of the accept-encoding secondary key 1614 - CLEANUP: cache: Use proper data types in secondary_key_cmp() 1615 - CLEANUP: Rename accept_encoding_hash_cmp to accept_encoding_bitmap_cmp 1616 - BUG/MINOR: peers: Wrong "new_conn" value for "show peers" CLI command. 1617 - MINOR: contrib: Make the wireshark peers dissector compile for more distribs. 1618 - BUG/MINOR: mux_h2: missing space between "st" and ".flg" in the "show fd" helper 1619 - CLEANUP: tools: make resolve_sym_name() take a const pointer 1620 - CLEANUP: cli: make "show fd" use a const connection to access other fields 1621 - MINOR: cli: make "show fd" also report the xprt and xprt_ctx 1622 - MINOR: xprt: add a new show_fd() helper to complete some "show fd" dumps. 1623 - MINOR: ssl: provide a "show fd" helper to report important SSL information 1624 - MINOR: xprt/mux: export all *_io_cb functions so that "show fd" resolves them 1625 - MINOR: mux-h2: make the "show fd" helper also decode the h2s subscriber when known 1626 - MINOR: mux-h1: make the "show fd" helper also decode the h1s subscriber when known 1627 - MINOR: mux-fcgi: make the "show fd" helper also decode the fstrm subscriber when known 1628 - CI: Pin VTest to a known good commit 1629 - MINOR: cli: give the show_fd helpers the ability to report a suspicious entry 1630 - MINOR: cli/show_fd: report some easily detectable suspicious states 1631 - MINOR: ssl/show_fd: report some FDs as suspicious when possible 1632 - MINOR: mux-h2/show_fd: report as suspicious an entry with too many calls 1633 - MINOR: mux-h1/show_fd: report as suspicious an entry with too many calls 1634 - BUG/MINOR: mworker: define _GNU_SOURCE for strsignal() 1635 - BUG/MEDIUM: tcpcheck: Don't destroy connection in the wake callback context 1636 - BUG/MEDIUM: mux-h2: Xfer rxbuf to the upper layer when creating a front stream 1637 - MINOR: http: Add HTTP 501-not-implemented error message 1638 - MINOR: muxes: Add exit status for errors about not implemented features 1639 - MINOR: mux-h1: Be prepared to return 501-not-implemented error during parsing 1640 - MEDIUM: mux-h1: Return a 501-not-implemented for upgrade requests with a body 1641 - DOC: Remove space after comma in converter signature 1642 - DOC: Rename '<var name>' to '<var>' in converter signature 1643 - MINOR: stats: duplicate 3 fields in bytes in info 1644 - MINOR: stats: add new start time field 1645 - MINOR: contrib/prometheus-exporter: merge info description from stats 1646 - MEDIUM: stats: allow to select one field in `stats_fill_fe_stats` 1647 - MINOR: contrib/prometheus-exporter: use fill_fe_stats for frontend dump 1648 - MINOR: contrib/prometheus-exporter: Don't needlessly set empty label for metrics 1649 - MINOR: contrib/prometheus-exporter: Split the PROMEX_FL_STATS_METRIC flag 1650 - MINOR: contrib/prometheus-exporter: Add promex_metric struct defining a metric 1651 - MEDIUM: contrib/prometheus-exporter: Rework matrices defining Promex metrics 1652 - BUG/MINOR: stream: Don't update counters when TCP to H2 upgrades are performed 1653 - BUG/MEDIUM: mux-h2: fix read0 handling on partial frames 1654 - MINOR: debug: always export the my_backtrace function 1655 - MINOR: debug: extract the backtrace dumping code to its own function 1656 - MINOR: debug: create ha_backtrace_to_stderr() to dump an instant backtrace 1657 - MEDIUM: debug: now always print a backtrace on CRASH_NOW() and friends 1658 - MINOR: debug: let ha_dump_backtrace() dump a bit further for some callers 1659 - BUILD: debug: fix build warning by consuming the write() result 1660 - MINOR: lua: remove unused variable 1661 - BUILD/MINOR: lua: define _GNU_SOURCE for LLONG_MAX 1662 16632021/01/06 : 2.4-dev5 1664 - BUG/MEDIUM: mux_h2: Add missing braces in h2_snd_buf()around trace+wakeup 1665 - BUILD: hpack: hpack-tbl-t.h uses VAR_ARRAY but does not include compiler.h 1666 - MINOR: time: increase the minimum wakeup interval to 60s 1667 - MINOR: check: do not ignore a connection header for http-check send 1668 - REGTESTS: complete http-check test 1669 - CI: travis-ci: drop coverity scan builds 1670 - MINOR: atomic: don't use ; to separate instruction on aarch64. 1671 - IMPORT: xxhash: update to v0.8.0 that introduces stable XXH3 variant 1672 - MEDIUM: xxhash: use the XXH3 functions to generate 64-bit hashes 1673 - MEDIUM: xxhash: use the XXH_INLINE_ALL macro to inline all functions 1674 - CLEANUP: xxhash: remove the unused src/xxhash.c 1675 - MINOR: sample: add the xxh3 converter 1676 - REGTESTS: add tests for the xxh3 converter 1677 - MINOR: protocol: Create proto_quic QUIC protocol layer. 1678 - MINOR: connection: Attach a "quic_conn" struct to "connection" struct. 1679 - MINOR: quic: Redefine control layer callbacks which are QUIC specific. 1680 - MINOR: ssl_sock: Initialize BIO and SSL objects outside of ssl_sock_init() 1681 - MINOR: connection: Add a new xprt to connection. 1682 - MINOR: ssl: Export definitions required by QUIC. 1683 - MINOR: cfgparse: Do not modify the QUIC xprt when parsing "ssl". 1684 - MINOR: tools: Add support for QUIC addresses parsing. 1685 - MINOR: quic: Add definitions for QUIC protocol. 1686 - MINOR: quic: Import C source code files for QUIC protocol. 1687 - MINOR: listener: Add QUIC info to listeners and receivers. 1688 - MINOR: server: Add QUIC definitions to servers. 1689 - MINOR: ssl: SSL CTX initialization modifications for QUIC. 1690 - MINOR: ssl: QUIC transport parameters parsing. 1691 - MINOR: quic: QUIC socket management finalization. 1692 - MINOR: cfgparse: QUIC default server transport parameters init. 1693 - MINOR: quic: Enable the compilation of QUIC modules. 1694 - MAJOR: quic: Make usage of ebtrees to store QUIC ACK ranges. 1695 - MINOR: quic: Attempt to make trace more readable 1696 - MINOR: quic: Make usage of the congestion control window. 1697 - MINOR: quic: Flag RX packet as ack-eliciting from the generic parser. 1698 - MINOR: quic: Code reordering to help in reviewing/modifying. 1699 - MINOR: quic: Add traces to congestion avoidance NewReno callback. 1700 - MINOR: quic: Display the SSL alert in ->ssl_send_alert() callback. 1701 - MINOR: quic: Update the initial salt to that of draft-29. 1702 - MINOR: quic: Add traces for in flght ack-eliciting packet counter. 1703 - MINOR: quic: make a packet build fails when qc_build_frm() fails. 1704 - MINOR: quic: Add traces for quic_packet_encrypt(). 1705 - MINOR: cache: Refactoring of secondary_key building functions 1706 - MINOR: cache: Avoid storing responses whose secondary key was not correctly calculated 1707 - BUG/MINOR: cache: Manage multiple headers in accept-encoding normalization 1708 - MINOR: cache: Add specific secondary key comparison mechanism 1709 - MINOR: http: Add helper functions to trim spaces and tabs 1710 - MEDIUM: cache: Manage a subset of encodings in accept-encoding normalizer 1711 - REGTESTS: cache: Simplify vary.vtc file 1712 - REGTESTS: cache: Add a specific test for the accept-encoding normalizer 1713 - MINOR: cache: Remove redundant test in http_action_req_cache_use 1714 - MINOR: cache: Replace the "process-vary" option's expected values 1715 - CI: GitHub Actions: enable daily Coverity scan 1716 - BUG/MEDIUM: cache: Fix hash collision in `accept-encoding` handling for `Vary` 1717 - MEDIUM: stick-tables: Add srvkey option to stick-table 1718 - REGTESTS: add test for stickiness using "srvkey addr" 1719 - BUILD: Makefile: disable -Warray-bounds until it's fixed in gcc 11 1720 - BUG/MINOR: sink: Return an allocation failure in __sink_new if strdup() fails 1721 - BUG/MINOR: lua: Fix memory leak error cases in hlua_config_prepend_path 1722 - MINOR: lua: Use consistent error message 'memory allocation failed' 1723 - CLEANUP: Compare the return value of `XXXcmp()` functions with zero 1724 - CLEANUP: Apply the coccinelle patch for `XXXcmp()` on include/ 1725 - CLEANUP: Apply the coccinelle patch for `XXXcmp()` on contrib/ 1726 - MINOR: qpack: Add static header table definitions for QPACK. 1727 - CLEANUP: qpack: Wrong comment about the draft for QPACK static header table. 1728 - CLEANUP: quic: Remove useless QUIC event trace definitions. 1729 - BUG/MINOR: quic: Possible CRYPTO frame building errors. 1730 - MINOR: quic: Pass quic_conn struct to frame parsers. 1731 - BUG/MINOR: quic: Wrong STREAM frames parsing. 1732 - MINOR: quic: Drop packets with STREAM frames with wrong direction. 1733 - CLEANUP: ssl: Remove useless loop in tlskeys_list_get_next() 1734 - CLEANUP: ssl: Remove useless local variable in tlskeys_list_get_next() 1735 - MINOR: ssl: make tlskeys_list_get_next() take a list element 1736 - Revert "BUILD: Makefile: disable -Warray-bounds until it's fixed in gcc 11" 1737 - BUG/MINOR: cfgparse: Fail if the strdup() for `rule->be.name` for `use_backend` fails 1738 - CLEANUP: mworker: remove duplicate pointer tests in cfg_parse_program() 1739 - CLEANUP: Reduce scope of `header_name` in http_action_store_cache() 1740 - CLEANUP: Reduce scope of `hdr_age` in http_action_store_cache() 1741 - CLEANUP: spoe: fix typo on `var_check_arg` comment 1742 - BUG/MINOR: tcpcheck: Report a L7OK if the last evaluated rule is a send rule 1743 - CI: github actions: build several popular "contrib" tools 1744 - DOC: Improve the message printed when running `make` w/o `TARGET` 1745 - BUG/MEDIUM: server: srv_set_addr_desc() crashes when a server has no address 1746 - REGTESTS: add unresolvable servers to srvkey-addr 1747 - BUG/MINOR: stats: Make stat_l variable used to dump a stat line thread local 1748 - BUG/MINOR: quic: NULL pointer dereferences when building post handshake frames. 1749 - SCRIPTS: improve announce-release to support different tag and versions 1750 - SCRIPTS: make announce release support preparing announces before tag exists 1751 - CLEANUP: assorted typo fixes in the code and comments 1752 - BUG/MINOR: srv: do not init address if backend is disabled 1753 - BUG/MINOR: srv: do not cleanup idle conns if pool max is null 1754 - CLEANUP: assorted typo fixes in the code and comments 1755 - CLEANUP: few extra typo and fixes over last one ("ot" -> "to") 1756 17572020/12/21 : 2.4-dev4 1758 - BUG/MEDIUM: lb-leastconn: Reposition a server using the right eweight 1759 - BUG/MEDIUM: mux-h1: Fix a deadlock when a 408 error is pending for a client 1760 - BUG/MEDIUM: ssl/crt-list: bad behavior with "commit ssl cert" 1761 - BUG/MAJOR: cache: Crash because of disabled entry not removed from the tree 1762 - BUILD: SSL: fine guard for SSL_CTX_add_server_custom_ext call 1763 - MEDIUM: cache: Add a secondary entry counter and insertion limitation 1764 - MEDIUM: cache: Avoid going over duplicates lists too often 1765 - MINOR: cache: Add a max-secondary-entries cache option 1766 - CI: cirrus: drop CentOS 6 builds 1767 - BUILD: Makefile: have "make clean" destroy .o/.a/.s in contrib subdirs as well 1768 - MINOR: vars: replace static functions with global ones 1769 - MINOR: opentracing: add ARGC_OT enum 1770 - CONTRIB: opentracing: add the OpenTracing filter 1771 - DOC: opentracing: add the OpenTracing filter section 1772 - REGTESTS: make use of HAPROXY_ARGS and pass -dM by default 1773 - BUG/MINOR: http: Establish a tunnel for all 2xx responses to a CONNECT 1774 - BUG/MINOR: mux-h1: Don't set CS_FL_EOI too early for protocol upgrade requests 1775 - BUG/MEDIUM: http-ana: Never for sending data in TUNNEL mode 1776 - CLEANUP: mux-h2: Rename h2s_frt_make_resp_data() to be generic 1777 - CLEANUP: mux-h2: Rename h2c_frt_handle_data() to be generic 1778 - BUG/MEDIUM: mux-h1: Handle h1_process() failures on a pipelined request 1779 - CLEANUP: debug: mark the RNG's seed as unsigned 1780 - CONTRIB: halog: fix build issue caused by %L printf format 1781 - CONTRIB: halog: mark the has_zero* functions unused 1782 - CONTRIB: halog: fix signed/unsigned build warnings on counts and timestamps 1783 - CONTRIB: debug: address "poll" utility build on non-linux platforms 1784 - BUILD: plock: remove dead code that causes a warning in gcc 11 1785 - BUILD: ssl: fine guard for SSL_CTX_get0_privatekey call 1786 - BUG/MINOR: dns: SRV records ignores duplicated AR records 1787 - DOC: fix "smp_size" vs "sample_size" in "log" directive arguments 1788 - CLEANUP: assorted typo fixes in the code and comments 1789 - DOC: assorted typo fixes in the documentation 1790 - CI: codespell: whitelist "te" and "nd" words 1791 17922020/12/11 : 2.4-dev3 1793 - MINOR: log: Logging HTTP path only with %HPO 1794 - BUG/MINOR: mux-h2/stats: make stream/connection proto errors more accurate 1795 - MINOR: traces: add a new level "error" below the "user" level 1796 - MINOR: mux-h2/trace: add traces at level ERROR for protocol errors 1797 - BUG/MINOR: mux-h2/stats: not all GOAWAY frames are errors 1798 - BUG/MINOR: lua: missing "\n" in error message 1799 - BUG/MINOR: lua: lua-load doesn't check its parameters 1800 - BUG/MINOR: lua: Post init register function are not executed beyond the first one 1801 - BUG/MINOR: lua: Some lua init operation are processed unsafe 1802 - MINOR: actions: Export actions lookup functions 1803 - MINOR: actions: add a function returning a service pointer from its name 1804 - MINOR: cli: add a function to look up a CLI service description 1805 - BUG/MINOR: lua: warn when registering action, conv, sf, cli or applet multiple times 1806 - MINOR: cache: Improve accept_encoding_normalizer 1807 - MINOR: cache: Add entry to the tree as soon as possible 1808 - BUG/MINOR: trace: Wrong displayed trace level 1809 - BUG/MAJOR: ring: tcp forward on ring can break the reader counter. 1810 - MINOR: lua: simplify hlua_alloc() to only rely on realloc() 1811 - MEDIUM: lua-thread: use atomics for memory accounting 1812 - MINOR: lua-thread: remove struct hlua from function hlua_prepend_path() 1813 - MEDIUM: lua-thread: make hlua_post_init() no longer use the runtime execution function 1814 - MINOR: lua-thread: hlua_ctx_renew() is never called with main gL lua state 1815 - MINOR: lua-thread: Use NULL context for main lua state 1816 - MINOR: lua-thread: Stop usage of struct hlua for the global lua state 1817 - MINOR: lua-thread: Replace embedded struct hlua_function by a pointer 1818 - MINOR: lua-thread: Split hlua_init() function in two parts 1819 - MINOR: lua-thread: make hlua_ctx_init() get L from its caller 1820 - MINOR: lua-thread: Split hlua_load function in two parts 1821 - MINOR: lua-thread: Split hlua_post_init() function in two parts 1822 - MINOR: lua-thread: Add the "thread" core variable 1823 - MEDIUM: lua-thread: No longer use locked context in initialization parts 1824 - MEDIUM: lua-thread: Apply lock only if the parent state is the main thread 1825 - MINOR: lua-thread: Replace global gL var with an array of states 1826 - MINOR: lua-thread: Replace "struct hlua_function" allocation by dedicated function 1827 - MINOR: lua-thread: Replace state_from by state_id 1828 - MINOR: lua-thread: Store each function reference and init reference in array 1829 - MEDIUM: lua-thread: Add the lua-load-per-thread directive 1830 - MINOR: lua-thread: Add verbosity in errors 1831 - REGTESTS: add a test for the threaded Lua code 1832 - BUILD/MINOR: haproxy DragonFlyBSD affinity build update. 1833 - DOC/MINOR: Fix formatting in Management Guide 1834 - MINOR: cache: Do not store stale entry 1835 - MINOR: cache: Add extra "cache-control" value checks 1836 - MEDIUM: cache: Remove cache entry in case of POST on the same resource 1837 - MINOR: cache: Consider invalid Age values as stale 1838 - BUG/MEDIUM: lua-thread: some parts must be initialized once 1839 - BUG/MINOR: lua-thread: close all states on deinit 1840 - BUG/MINOR: listener: use sockaddr_in6 for IPv6 1841 - BUG/MINOR: mux-h1: Handle keep-alive timeout for idle frontend connections 1842 - MINOR: session: Add the idle duration field into the session 1843 - MINOR: mux-h1: Update session idle duration when data are received 1844 - MINOR: mux-h1: Reset session dates and durations info when the CS is detached 1845 - MINOR: logs: Use session idle duration when no stream is provided 1846 - MINOR: stream: Always get idle duration from the session 1847 - MINOR: stream: Don't retrieve anymore timing info from the mux csinfo 1848 - MINOR: mux-h1: Don't provide anymore timing info using cs_info structure 1849 - MINOR: muxes: Remove get_cs_info callback function now useless 1850 - MINOR: stream: Pass an optional input buffer when a stream is created 1851 - MINOR: mux-h1: Add a flag to disable reads to wait opposite side 1852 - MEDIUM: mux-h1: Use a h1c flag to block reads when splicing is in-progress 1853 - MINOR: mux-h1: Introduce H1C_F_IS_BACK flag on the H1 connection 1854 - MINOR: mux-h1: Separate parsing and formatting errors at H1 stream level 1855 - MINOR: mux-h1: Split front/back h1 stream creation in 2 functions 1856 - MINOR: mux-h1: Add a rxbuf into the H1 stream 1857 - MINOR: mux-h1: Don't set CS flags in internal parsing functions 1858 - MINOR: mux-h1: Add embryonic and attached states on the H1 connection 1859 - MINOR: mux-h1: rework the h1_timeout_task() function 1860 - MINOR: mux-h1: Reset more H1C flags when a H1 stream is destroyed 1861 - MINOR: mux-h1: Disable reads if an error was reported on the H1 stream 1862 - MINOR: mux-h1: Rework how shutdowns are handled 1863 - MINOR: mux-h1: Rework h1_refresh_timeout to be easier to read 1864 - MINOR: mux-h1: Process next request for IDLE connection only 1865 - MINOR: mux-h1: Add a idle expiration date on the H1 connection 1866 - MINOR: stick-tables: Add functions to update some values of a tracked counter 1867 - MINOR: session: Add functions to increase http values of tracked counters 1868 - MINOR: mux: Add a ctl parameter to get the exit status of the multiplexers 1869 - MINOR: logs: Get the multiplexer exist status when no stream is provided 1870 - MINOR: mux-h1: Add functions to send HTTP errors from the mux 1871 - MAJOR: mux-h1: Create the client stream as later as possible 1872 - DOC: config: Add notes about errors emitted by H1 mux 1873 - CLEANUP: mux-h1: Rename H1C_F_CS_* flags and reorder H1C flags 1874 - MINOR: http-ana: Remove useless update of t_idle duration of the stream 1875 - CLEANUP: htx: Remove HTX_FL_UPGRADE unsued flag 1876 - MEDIUM: http-ana: Don't process partial or empty request anymore 1877 - CLEANUP: http-ana: Remove TX_WAIT_NEXT_RQ unsued flag 1878 - CLEANUP: connection: Remove CS_FL_READ_PARTIAL flag 1879 - REGTESTS: Fix proxy_protocol_tlv_validation 1880 - MINOR: http-ana: Properly set message flags from the start-line flags 1881 - MINOR: h1-htx/http-ana: Set BODYLESS flag on message in TUNNEL state 1882 - MINOR: protocol: add a ->set_port() helper to address families 1883 - MINOR: listener: automatically set the port when creating listeners 1884 - MINOR: listener: now use a generic add_listener() function 1885 - MEDIUM: ssl: fatal error with bundle + openssl < 1.1.1 1886 - BUG/MEDIUM: stream: Xfer the input buffer to a fully created stream 1887 - BUG/MINOR: stream: Don't use input buffer after the ownership xfer 1888 - MINOR: protocol: remove the redundant ->sock_domain field 1889 - MINOR: protocol: export protocol definitions 1890 - CLEANUP: protocol: group protocol struct members by usage 1891 - MINOR: protocol: add a set of ctrl_init/ctrl_close methods for setup/teardown 1892 - MINOR: connection: use the control layer's init/close 1893 - MINOR: udp: export udp_suspend_receiver() and udp_resume_receiver() 1894 - BUG/MAJOR: spoa/python: Fixing return None 1895 - DOC: spoa/python: Fixing typo in IP related error messages 1896 - DOC: spoa/python: Rephrasing memory related error messages 1897 - DOC: spoa/python: Fixing typos in comments 1898 - BUG/MINOR: spoa/python: Cleanup references for failed Module Addobject operations 1899 - BUG/MINOR: spoa/python: Cleanup ipaddress objects if initialization fails 1900 - BUG/MEDIUM: spoa/python: Fixing PyObject_Call positional arguments 1901 - BUG/MEDIUM: spoa/python: Fixing references to None 1902 - DOC: email change of the DeviceAtlas maintainer 1903 - MINOR: cache: Dump secondary entries in "show cache" 1904 - CLEANUP: connection: use fd_stop_both() instead of conn_stop_polling() 1905 - MINOR: stream-int: don't touch polling anymore on shutdown 1906 - MINOR: connection: implement cs_drain_and_close() 1907 - MINOR: mux-pt: take care of CS_SHR_DRAIN in shutr() 1908 - MINOR: checks: use cs_drain_and_close() instead of draining the connection 1909 - MINOR: checks: don't call conn_cond_update_polling() anymore 1910 - CLEANUP: connection: open-code conn_cond_update_polling() and update the comment 1911 - CLEANUP: connection: remove the unused conn_{stop,cond_update}_polling() 1912 - BUG/MINOR: http-check: Use right condition to consider HTX message as full 1913 - BUG/MINOR: tcpcheck: Don't rearm the check timeout on each read 1914 - MINOR: tcpcheck: Only wait for more payload data on HTTP expect rules 1915 - BUG/MINOR: tools: make parse_time_err() more strict on the timer validity 1916 - BUG/MINOR: tools: Reject size format not starting by a digit 1917 - MINOR: action: define enum for timeout type of the set-timeout rule 1918 - MINOR: stream: prepare the hot refresh of timeouts 1919 - MEDIUM: stream: support a dynamic server timeout 1920 - MEDIUM: stream: support a dynamic tunnel timeout 1921 - MEDIUM: http_act: define set-timeout server/tunnel action 1922 - MINOR: frontend: add client timeout sample fetch 1923 - MINOR: backend: add timeout sample fetches 1924 - MINOR: stream: add sample fetches 1925 - MINOR: stream: add timeout sample fetches 1926 - REGTESTS: add regtest for http-request set-timeout 1927 - CLEANUP: remove the unused fd_stop_send() in conn_xprt_shutw{,_hard}() 1928 - CLEANUP: connection: remove the unneeded fd_stop_{recv,send} on read0/shutw 1929 - MINOR: connection: remove sock-specific code from conn_sock_send() 1930 - REORG: connection: move the socket iocb (conn_fd_handler) to sock.c 1931 - MINOR: protocol: add a ->drain() function at the connection control layer 1932 - MINOR: connection: make conn_sock_drain() use the control layer's ->drain() 1933 - MINOR: protocol: add a pair of check_events/ignore_events functions at the ctrl layer 1934 - MEDIUM: connection: make use of the control layer check_events/ignore_events 1935 19362020/12/01 : 2.4-dev2 1937 - BUILD: Make DEBUG part of .build_opts 1938 - BUILD: Show the value of DEBUG= in haproxy -vv 1939 - CI: Set DEBUG=-DDEBUG_STRICT=1 in GitHub Actions 1940 - MINOR: stream: Add level 7 retries on http error 401, 403 1941 - CLEANUP: remove unused function "ssl_sock_is_ckch_valid" 1942 - BUILD: SSL: add BoringSSL guarding to "RAND_keep_random_devices_open" 1943 - BUILD: SSL: do not "update" BoringSSL version equivalent anymore 1944 - BUG/MEDIUM: http_act: Restore init of log-format list 1945 - DOC: better describes how to configure a fallback crt 1946 - BUG/MAJOR: filters: Always keep all offsets up to date during data filtering 1947 - MINOR: cache: Prepare helper functions for Vary support 1948 - MEDIUM: cache: Add the Vary header support 1949 - MINOR: cache: Add a process-vary option that can enable/disable Vary processing 1950 - BUG/CRITICAL: cache: Fix trivial crash by sending accept-encoding header 1951 - BUG/MAJOR: peers: fix partial message decoding 1952 - DOC: cache: Add new caching limitation information 1953 - DOC: cache: Add information about Vary support 1954 - DOC: better document the config file format and escaping/quoting rules 1955 - DOC: Clarify %HP description in log-format 1956 - CI: github actions: update LibreSSL to 3.3.0 1957 - CI: github actions: enable 51degrees feature 1958 - MINOR: fd/threads: silence a build warning with threads disabled 1959 - BUG/MINOR: tcpcheck: Don't forget to reset tcp-check flags on new kind of check 1960 - MINOR: tcpcheck: Don't handle anymore in-progress send rules in tcpcheck_main 1961 - BUG/MAJOR: tcpcheck: Allocate input and output buffers from the buffer pool 1962 - MINOR: tcpcheck: Don't handle anymore in-progress connect rules in tcpcheck_main 1963 - MINOR: config: Deprecate and ignore tune.chksize global option 1964 - MINOR: config: Add a warning if tune.chksize is used 1965 - REORG: tcpcheck: Move check option parsing functions based on tcp-check 1966 - MINOR: check: Always increment check health counter on CONPASS 1967 - MINOR: tcpcheck: Add support of L7OKC on expect rules error-status argument 1968 - DOC: config: Make disable-on-404 option clearer on transition conditions 1969 - DOC: config: Move req.hdrs and req.hdrs_bin in L7 samples fetches section 1970 - BUG/MINOR: http-fetch: Fix smp_fetch_body() when called from a health-check 1971 - MINOR: plock: use an ARMv8 instruction barrier for the pause instruction 1972 - MINOR: debug: add "debug dev sched" to stress the scheduler. 1973 - MINOR: debug: add a trivial PRNG for scheduler stress-tests 1974 - BUG/MEDIUM: lists: Lock the element while we check if it is in a list. 1975 - MINOR: task: remove tasklet_insert_into_tasklet_list() 1976 - MINOR: task: perform atomic counter increments only once per wakeup 1977 - MINOR: task: remove __tasklet_remove_from_tasklet_list() 1978 - BUG/MEDIUM: task: close a possible data race condition on a tasklet's list link 1979 - BUG/MEDIUM: local log format regression. 1980 19812020/11/21 : 2.4-dev1 1982 - MINOR: ist: Add istend() function to return a pointer to the end of the string 1983 - MINOR: sample: Add converters to parse FIX messages 1984 - REGTEST: converter: Add a regtest for fix converters 1985 - MINOR: sample: Add converts to parses MQTT messages 1986 - REGTEST: converter: Add a regtest for MQTT converters 1987 - MINOR: compat: automatically include malloc.h on glibc 1988 - MEDIUM: pools: call malloc_trim() from pool_gc() 1989 - MEDIUM: pattern: call malloc_trim() on pat_ref_reload() 1990 - MINOR: pattern: move the update revision to the pat_ref, not the expression 1991 - CLEANUP: pattern: delete the back refs at once during pat_ref_reload() 1992 - MINOR: pattern: new sflag PAT_SF_REGFREE indicates regex_free() is needed 1993 - MINOR: pattern: make the delete and prune functions more generic 1994 - MEDIUM: pattern: link all final elements from the reference 1995 - MEDIUM: pattern: change the pat_del_* functions to delete from the references 1996 - MINOR: pattern: remerge the list and tree deletion functions 1997 - MINOR: pattern: perform a single call to pat_delete_gen() under the expression 1998 - CLEANUP: acl: don't reference the generic pattern deletion function anymore 1999 - CLEANUP: pattern: remove pat_delete_fcts[] and pattern_head->delete() 2000 - MINOR: pattern: introduce pat_ref_delete_by_ptr() to delete a valid reference 2001 - MINOR: pattern: store a generation number in the reference patterns 2002 - MEDIUM: pattern: only match patterns that match the current generation 2003 - MINOR: pattern: add pat_ref_commit() to commit a previously inserted element 2004 - MINOR: pattern: implement pat_ref_load() to load a pattern at a given generation 2005 - MINOR: pattern: add pat_ref_purge_older() to purge old entries 2006 - MEDIUM: pattern: make pat_ref_prune() rely on pat_ref_purge_older() 2007 - MINOR: pattern: during reload, delete elements frem the ref, not the expression 2008 - MINOR: pattern: prepare removal of a pattern from the list head 2009 - MEDIUM: pattern: turn the pattern chaining to single-linked list 2010 - CLEANUP: cfgparse: remove duplicate registration for transparent build options 2011 - BUG/MINOR: ssl: don't report 1024 bits DH param load error when it's higher 2012 - MINOR: http-htx: Add understandable errors for the errorfiles parsing 2013 - MINOR: ssl: instantiate stats module 2014 - MINOR: ssl: count client hello for stats 2015 - MINOR: ssl: add counters for ssl sessions 2016 - DOC: config: Fix a typo on ssl_c_chain_der 2017 - MINOR: server: remove idle lock in srv_cleanup_connections 2018 - BUILD: ssl: silence build warning on uninitialised counters 2019 - BUILD: http-htx: fix build warning regarding long type in printf 2020 - REGTEST: ssl: test wildcard and multi-type + exclusions 2021 - BUG/MEDIUM: ssl/crt-list: correctly insert crt-list line if crt already loaded 2022 - CI: Expand use of GitHub Actions for CI 2023 - REGTEST: ssl: mark reg-tests/ssl/ssl_crt-list_filters.vtc as broken 2024 - BUG/MINOR: pattern: a sample marked as const could be written 2025 - BUG/MINOR: lua: set buffer size during map lookups 2026 - MEDIUM: cache: Change caching conditions 2027 - BUG/MINOR: stats: free dynamically stats fields/lines on shutdown 2028 - BUG/MEDIUM: stats: prevent crash if counters not alloc with dummy one 2029 - MINOR: peers: Add traces to peer_treat_updatemsg(). 2030 - BUG/MINOR: peers: Do not ignore a protocol error for dictionary entries. 2031 - BUG/MINOR: peers: Missing TX cache entries reset. 2032 - BUG/MEDIUM: peers: fix decoding of multi-byte length in stick-table messages 2033 - BUG/MINOR: http-fetch: Extract cookie value even when no cookie name 2034 - BUG/MINOR: http-fetch: Fix calls w/o parentheses of the cookie sample fetches 2035 - BUG/MEDIUM: check: reuse srv proto only if using same mode 2036 - MINOR: check: report error on incompatible proto 2037 - MINOR: check: report error on incompatible connect proto 2038 - BUG/MINOR: http-htx: Handle warnings when parsing http-error and http-errors 2039 - BUG/MAJOR: spoe: Be sure to remove all references on a released spoe applet 2040 - MINOR: spoe: Don't close connection in sync mode on processing timeout 2041 - BUG/MINOR: tcpcheck: Don't warn on unused rules if check option is after 2042 - MINOR: init: Fix the prototype for per-thread free callbacks 2043 - MINOR: config/mux-h2: Return ERR_ flags from init_h2() instead of a status 2044 - CLEANUP: config: Return ERR_NONE from config callbacks instead of 0 2045 - MINOR: cfgparse: tighten the scope of newnameserver variable, free it on error. 2046 - REGTEST: make ssl_client_samples and ssl_server_samples require to 2.2 2047 - REGTESTS: Add sample_fetches/cook.vtc 2048 - BUG/MEDIUM: filters: Forward all filtered data at the end of http filtering 2049 - BUG/MINOR: http-ana: Don't wait for the body of CONNECT requests 2050 - CLEANUP: flt-trace: Remove unused random-parsing option 2051 - MINOR: flt-trace: Add an option to inhibits trace messages 2052 - MINOR: flt-trace: Use a bitfield for the trace options 2053 - REGTESTS: Add a script to test the random forwarding with several filters 2054 - REGTESTS: mark the abns test as broken again 2055 - REGTESTS: converter: add url_dec test 2056 - CI: Stop hijacking the hosts file 2057 - CI: Make the h2spec workflow more consistent with the VTest workflow 2058 - CI: travis-ci: remove amd64, osx builds 2059 - CI: travis-ci: arm64 are not allowed to fail anymore 2060 - DOC: add missing 3.10 in the summary 2061 - MINOR: ssl: remove client hello counters 2062 - MEDIUM: stats: add counters for failed handshake 2063 - MINOR: ssl: create common ssl_ctx init 2064 - MEDIUM: cli/ssl: configure ssl on server at runtime 2065 - REGTEST: server/cli_set_ssl.vtc requires OpenSSL 2066 - DOC: coding-style: update a few rules about pointers 2067 - BUG/MINOR: ssl: segv on startup when AKID but no keyid 2068 - BUILD: ssl: use SSL_MODE_ASYNC macro instead of OPENSSL_VERSION 2069 - BUG/MEDIUM: http-ana: Don't eval http-after-response ruleset on empty messages 2070 - BUG/MEDIUM: ssl/crt-list: bundle support broken in crt-list 2071 - BUG/MEDIUM: ssl: error when no certificate are found 2072 - BUG/MINOR: ssl/crt-list: load bundle in crt-list only if activated 2073 - BUG/MEDIUM: ssl/crt-list: fix error when no file found 2074 - CI: Github Actions: enable prometheus exporter 2075 - CI: Github Actions: remove LibreSSL-3.0.2 builds 2076 - CI: Github Actions: enable BoringSSL builds 2077 - CI: travis-ci: remove builds migrated to GH actions 2078 - BUILD: makefile: enable crypt(3) for OpenBSD 2079 - CI: Github Action: run "apt-get update" before packages restore 2080 - BUILD: SSL: guard TLS13 ciphersuites with HAVE_SSL_CTX_SET_CIPHERSUITES 2081 - CI: Pass the github.event_name to matrix.py 2082 - CI: Clean up Windows CI 2083 - DOC: clarify how to create a fallback crt 2084 - CLEANUP: connection: do not use conn->owner when the session is known 2085 - BUG/MAJOR: connection: reset conn->owner when detaching from session list 2086 - REGTESTS: mark proxy_protocol_random_fail as broken 2087 - BUG/MINOR: http_htx: Fix searching headers by substring 2088 - MINOR: http_act: Add -m flag for del-header name matching method 2089 20902020/11/05 : 2.4-dev0 2091 - MINOR: version: it's development again. 2092 - DOC: mention in INSTALL that it's development again 2093 20942020/11/05 : 2.3.0 2095 - CLEANUP: pattern: remove unused entry "tree" in pattern.val 2096 - BUILD: ssl: use SSL_CTRL_GET_RAW_CIPHERLIST instead of OpenSSL versions 2097 - BUG/MEDIUM: filters: Don't try to init filters for disabled proxies 2098 - BUG/MINOR: proxy/server: Skip per-proxy/server post-check for disabled proxies 2099 - BUG/MINOR: checks: Report a socket error before any connection attempt 2100 - BUG/MINOR: server: Set server without addr but with dns in RMAINT on startup 2101 - MINOR: server: Copy configuration file and line for server templates 2102 - BUG/MEDIUM: mux-pt: Release the tasklet during an HTTP upgrade 2103 - BUILD: ssl: use HAVE_OPENSSL_KEYLOG instead of OpenSSL versions 2104 - MINOR: debug: don't count free(NULL) in memstats 2105 - BUG/MINOR: filters: Skip disabled proxies during startup only 2106 - MINOR: mux_h2: capitalize frame type in stats 2107 - MINOR: mux_h2: add stat for total count of connections/streams 2108 - MINOR: stats: do not display empty stat module title on html 2109 - BUG/MEDIUM: stick-table: limit the time spent purging old entries 2110 - BUG/MEDIUM: listener: only enable a listening listener if needed 2111 - BUG/MEDIUM: listener: never suspend inherited sockets 2112 - BUG/MEDIUM: listener: make the master also keep workers' inherited FDs 2113 - MINOR: fd: add fd_want_recv_safe() 2114 - MEDIUM: listeners: make use of fd_want_recv_safe() to enable early receivers 2115 - REGTESTS: mark abns_socket as working now 2116 - CLEANUP: mux-h2: Remove the h1 parser state from the h2 stream 2117 - MINOR: sock: add a check against cross worker<->master socket activities 2118 - CI: github actions: limit OpenSSL no-deprecated builds to "default,bug,devel" reg-tests 2119 - BUG/MEDIUM: server: make it possible to kill last idle connections 2120 - MINOR: mworker/cli: the master CLI use its own applet 2121 - MINOR: ssl: define SSL_CTX_set1_curves_list to itself on BoringSSL 2122 - BUILD: ssl: use feature macros for detecting ec curves manipulation support 2123 - DOC: Add dns as an available domain to show stat 2124 - BUILD: makefile: usual reorder of objects for faster builds 2125 - DOC: update INSTALL to mention that TCC is supported 2126 - DOC: mention in INSTALL that haproxy 2.3 is a stable version 2127 - MINOR: version: mention that it's stable now 2128 21292020/10/31 : 2.3-dev9 2130 - CLEANUP: http_ana: remove unused assignation of `att_beg` 2131 - BUG/MEDIUM: ssl: OCSP must work with BoringSSL 2132 - BUG/MINOR: log: fix memory leak on logsrv parse error 2133 - BUG/MINOR: log: fix risk of null deref on error path 2134 - BUILD: ssl: more elegant OpenSSL early data support check 2135 - CI: github actions: update h2spec to 2.6.0 2136 - BUG/MINOR: cache: Check the return value of http_replace_res_status 2137 - MINOR: cache: Store the "Last-Modified" date in the cache_entry 2138 - MINOR: cache: Process the If-Modified-Since header in conditional requests 2139 - MINOR: cache: Create res.cache_hit and res.cache_name sample fetches 2140 - MINOR: mux-h2: register a stats module 2141 - MINOR: mux-h2: add counters instance to h2c 2142 - MINOR: mux-h2: add stats for received frame types 2143 - MINOR: mux-h2: report detected error on stats 2144 - MINOR: mux-h2: count open connections/streams on stats 2145 - BUG/MINOR: server: fix srv downtime calcul on starting 2146 - BUG/MINOR: server: fix down_time report for stats 2147 - BUG/MINOR: lua: initialize sample before using it 2148 - MINOR: cache: Add Expires header value parsing 2149 - MINOR: ist: Add a case insensitive istmatch function 2150 - BUG/MINOR: cache: Manage multiple values in cache-control header value 2151 - BUG/MINOR: cache: Inverted variables in http_calc_maxage function 2152 - MINOR: pattern: make pat_ref_append() return the newly added element 2153 - MINOR: pattern: make pat_ref_add() rely on pat_ref_append() 2154 - MINOR: pattern: export pat_ref_push() 2155 - CLEANUP: pattern: use calloc() rather than malloc for structures 2156 - CLEANUP: pattern: fix spelling/grammatical/copy-paste in comments 2157 21582020/10/24 : 2.3-dev8 2159 - MINOR: backend: replace the lbprm lock with an rwlock 2160 - MINOR: lb/map: use seek lock and read locks where appropriate 2161 - MINOR: lb/leastconn: only take a read lock in fwlc_get_next_server() 2162 - MINOR: lb/first: use a read lock in fas_get_next_server() 2163 - MINOR: lb/chash: use a read lock in chash_get_server_hash() 2164 - BUG/MINOR: disable dynamic OCSP load with BoringSSL 2165 - BUILD: ssl: make BoringSSL use its own version numbers 2166 - CLEANUP: threads: don't register an initcall when not debugging 2167 - MINOR: threads: change lock_t to an unsigned int 2168 - CLEANUP: tree-wide: reorder a few structures to plug some holes around locks 2169 - CLEANUP: task: remove the unused and mishandled global_rqueue_size 2170 - BUG/MEDIUM: connection: Never cleanup server lists when freeing private conns 2171 - MEDIUM: config: report that "nbproc" is deprecated 2172 - BUG/MINOR: listener: close before free in `listener_accept` 2173 - MINOR: ssl: 'ssl-load-extra-del-ext' removes the certificate extension 2174 - BUG/MINOR: queue: properly report redistributed connections 2175 - CONTRIB: tcploop: remove unused local variables in tcp_pause() 2176 - BUILD: makefile: add entries to build common debugging tools 2177 - BUG/MEDIUM: server: support changing the slowstart value from state-file 2178 - MINOR: http: Add `enum etag_type http_get_etag_type(const struct ist)` 2179 - MINOR: http: Add etag comparison function 2180 - MEDIUM: cache: Store the ETag information in the cache_entry 2181 - MEDIUM: cache: Add support for 'If-None-Match' request header 2182 - REGTEST: cache: Add if-none-match test case 2183 - CLEANUP: compression: Make use of http_get_etag_type() 2184 - BUG/MINOR: http-ana: Don't send payload for internal responses to HEAD requests 2185 - BUG/MAJOR: mux-h2: Don't try to send data if we know it is no longer possible 2186 - MINOR: threads/debug: only report used lock stats 2187 - MINOR: threads/debug: only report lock stats for used operations 2188 - MINOR: proxy; replace the spinlock with an rwlock 2189 - MINOR: server: read-lock the cookie during srv_set_dyncookie() 2190 - MINOR: proxy/cli: only take a read lock in "show errors" 2191 - OPTIM: queue: don't call pendconn_unlink() when the pendconn is not queued 2192 - MINOR: queue: split __pendconn_unlink() in per-srv and per-prx 2193 - MINOR: queue: reduce the locked area in pendconn_add() 2194 - OPTIM: queue: make the nbpend counters atomic 2195 - OPTIM: queue: decrement the nbpend and totpend counters outside of the lock 2196 - MINOR: leastconn: take the queue length into account when queuing servers 2197 - MEDIUM: fwlc: re-enable per-server queuing up to maxqueue 2198 - Revert "OPTIM: queue: don't call pendconn_unlink() when the pendconn is not queued" 2199 - MINOR: stats: support the "up" output modifier for "show stat" 2200 - MINOR: stats: also support a "no-maint" show stat modifier 2201 - MINOR: stats: indicate the number of servers in a backend's status 2202 - MEDIUM: ssl: ssl-load-extra-del-ext work only with .crt 2203 - REGTEST: ssl: test "set ssl cert" with separate key / crt 2204 - DOC: management: apply the "show stat" modifiers to "show stat", not "show info" 2205 - MINOR: stats: report server's user-configured weight next to effective weight 2206 - CI: travis-ci: switch to Ubuntu 20.04 2207 - CONTRIB: release-estimator: Add release estimating tool 2208 - BUG/MEDIUM: queue: fix unsafe proxy pointer when counting nbpend 2209 - BUG/MINOR: extcheck: add missing checks on extchk_setenv() 2210 22112020/10/17 : 2.3-dev7 2212 - CI: travis-ci: replace not defined SSL_LIB, SSL_INC for BotringSSL builds 2213 - BUG/MINOR: init: only keep rlim_fd_cur if max is unlimited 2214 - BUG/MINOR: mux-h2: do not stop outgoing connections on stopping 2215 - MINOR: fd: report an error message when failing initial allocations 2216 - MINOR: proto-tcp: make use of connect(AF_UNSPEC) for the pause 2217 - MINOR: sock: add sock_accept_conn() to test a listening socket 2218 - MINOR: protocol: make proto_tcp & proto_uxst report listening sockets 2219 - MINOR: sockpair: implement the .rx_listening function 2220 - CLEANUP: tcp: make use of sock_accept_conn() where relevant 2221 - CLEANUP: unix: make use of sock_accept_conn() where relevant 2222 - BUG/MINOR: listener: detect and handle shared sockets stopped in other processes 2223 - CONTRIB: tcploop: implement a disconnect operation 'D' 2224 - CLEANUP: protocol: intitialize all of the sockaddr when disconnecting 2225 - BUG/MEDIUM: deinit: check fdtab before fdtab[fd].owner 2226 - BUG/MINOR: connection: fix loop iter on connection takeover 2227 - BUG/MEDIUM: connection: fix srv idle count on conn takeover 2228 - MINOR: connection: improve list api usage 2229 - MINOR: mux/connection: add a new mux flag for HOL risk 2230 - MINOR: connection: don't check priv flag on free 2231 - MEDIUM: backend: add new conn to session if mux marked as HOL blocking 2232 - MEDIUM: backend: add reused conn to sess if mux marked as HOL blocking 2233 - MEDIUM: h2: remove conn from session on detach 2234 - MEDIUM: fcgi: remove conn from session on detach 2235 - DOC: Describe reuse safe for HOL handling 2236 - MEDIUM: proxy: remove obsolete "mode health" 2237 - MEDIUM: proxy: remove obsolete "monitor-net" 2238 - CLEANUP: protocol: remove the ->drain() function 2239 - CLEANUP: fd: finally get rid of fd_done_recv() 2240 - MINOR: connection: make sockaddr_alloc() take the address to be copied 2241 - MEDIUM: listener: allocate the connection before queuing a new connection 2242 - MINOR: session: simplify error path in session_accept_fd() 2243 - MINOR: connection: add new error codes for accept_conn() 2244 - MINOR: sock: rename sock_accept_conn() to sock_accepting_conn() 2245 - MINOR: protocol: add a new function accept_conn() 2246 - MINOR: sock: implement sock_accept_conn() to accept a connection 2247 - MINOR: sockpair: implement sockpair_accept_conn() to accept a connection 2248 - MEDIUM: listener: use protocol->accept_conn() to accept a connection 2249 - MEDIUM: listener: remove the second pass of fd manipulation at the end 2250 - MINOR: protocol: add a default I/O callback and put it into the receiver 2251 - MINOR: log: set the UDP receiver's I/O handler in the receiver 2252 - MINOR: protocol: register the receiver's I/O handler and not the protocol's 2253 - CLEANUP: protocol: remove the now unused <handler> field of proto_fam->bind() 2254 - DOC: improve the documentation for "option nolinger" 2255 - BUG/MEDIUM: proxy: properly stop backends 2256 - BUG/MEDIUM: task: bound the number of tasks picked from the wait queue at once 2257 - MINOR: threads: augment rwlock debugging stats to report seek lock stats 2258 - MINOR: threads: add the transitions to/from the seek state 2259 - MEDIUM: task: use an upgradable seek lock when scanning the wait queue 2260 - BUILD: listener: avoir a build warning when threads are disabled 2261 - BUG/MINOR: peers: Possible unexpected peer seesion reset after collisions. 2262 - MINOR: ssl: add volatile flags to ssl samples 2263 - MEDIUM: backend: reuse connection if using a static sni 2264 - BUG/MEDIUM: spoe: Unset variable instead of set it if no data provided 2265 - BUG/MEDIUM: mux-h1: Get the session from the H1S when capturing bad messages 2266 - BUG/MEDIUM: lb: Always lock the server when calling server_{take,drop}_conn 2267 - DOC: fix typo in MAX_SESS_STKCTR 2268 22692020/10/10 : 2.3-dev6 2270 - REGTESTS: use "command" instead of "which" for better POSIX compatibility 2271 - BUILD: makefile: Update feature flags for OpenBSD 2272 - DOC: agent-check: fix typo in "fail" word expected reply 2273 - DOC: crt: advise to move away from cert bundle 2274 - BUG/MINOR: ssl/crt-list: exit on warning out of crtlist_parse_line() 2275 - REGTEST: fix host part in balance-uri-path-only.vtc 2276 - REGTEST: make ssl_client_samples and ssl_server_samples requiret to 2.3 2277 - REGTEST: the iif converter test requires 2.3 2278 - REGTEST: make agent-check.vtc require 1.8 2279 - REGTEST: make abns_socket.vtc require 1.8 2280 - REGTEST: make map_regm_with_backref require 1.7 2281 - BUILD: makefile: Update feature flags for FreeBSD 2282 - OPTIM: backend/random: never queue on the server, always on the backend 2283 - OPTIM: backend: skip LB when we know the backend is full 2284 - BUILD: makefile: Fix building with closefrom() support enabled 2285 - BUILD: makefile: add an EXTRAVERSION variable to ease local naming 2286 - MINOR: tools: support for word expansion of environment in parse_line 2287 - BUILD: tools: fix minor build issue on isspace() 2288 - BUILD: makefile: Enable closefrom() support on Solaris 2289 - CLEANUP: ssl: Use structured format for error line report during crt-list parsing 2290 - MINOR: ssl: Add error if a crt-list might be truncated 2291 - MINOR: ssl: remove uneeded check in crtlist_parse_file 2292 - BUG/MINOR: Fix several leaks of 'log_tag' in init(). 2293 - DOC: tcp-rules: Refresh details about L7 matching for tcp-request content rules 2294 - MEDIUM: tcp-rules: Warn if a track-sc* content rule doesn't depend on content 2295 - BUG/MINOR: tcpcheck: Set socks4 and send-proxy flags before the connect call 2296 - DOC: ssl: new "cert bundle" behavior 2297 - BUG/MEDIUM: queue: make pendconn_cond_unlink() really thread-safe 2298 - CLEANUP: ssl: "bundle" is not an OpenSSL wording 2299 - MINOR: counters: fix a typo in comment 2300 - BUG/MINOR: stats: fix validity of the json schema 2301 - REORG: stats: export some functions 2302 - MINOR: stats: add stats size as a parameter for csv/json dump 2303 - MINOR: stats: hide px/sv/li fields in applet struct 2304 - REORG: stats: extract proxy json dump 2305 - REORG: stats: extract proxies dump loop in a function 2306 - MINOR: hlua: Display debug messages on stderr only in debug mode 2307 - MINOR: stats: define the concept of domain for statistics 2308 - MINOR: stats: define additional flag px cap on domain 2309 - MEDIUM: stats: add delimiter for static proxy stats on csv 2310 - MEDIUM: stats: define an API to register stat modules 2311 - MEDIUM: stats: add abstract type to store counters 2312 - MEDIUM: stats: integrate static proxies stats in new stats 2313 - MINOR: stats: support clear counters for dynamic stats 2314 - MINOR: stats: display extra proxy stats on the html page 2315 - MINOR: stats: add config "stats show modules" 2316 - MINOR: dns/stats: integrate dns counters in stats 2317 - MINOR: stats: remove for loop declaration 2318 - DOC: ssl: fix typo about ocsp files 2319 - BUG/MINOR: peers: Inconsistency when dumping peer status codes. 2320 - DOC: update INSTALL with supported OpenBSD / FreeBSD versions 2321 - BUG/MINOR: proto_tcp: Report warning messages when listeners are bound 2322 - CLEANUP: cache: Fix leak of cconf->c.name during config check 2323 - CLEANUP: ssl: Release cached SSL sessions on deinit 2324 - BUG/MINOR: mux-h1: Be sure to only set CO_RFL_READ_ONCE for the first read 2325 - BUG/MINOR: mux-h1: Always set the session on frontend h1 stream 2326 - MINOR: mux-h1: Don't wakeup the H1C when output buffer become available 2327 - CLEANUP: sock-unix: Remove an unreachable goto clause 2328 - BUG/MINOR: proxy: inc req counter on new syslog messages. 2329 - BUG/MEDIUM: log: old processes with log foward section don't die on soft stop. 2330 - MINOR: stats: inc req counter on listeners. 2331 - MINOR: channel: new getword and getchar functions on channel. 2332 - MEDIUM: log: syslog TCP support on log forward section. 2333 - BUG/MINOR: proxy/log: frontend/backend and log forward names must differ 2334 - DOC: re-work log forward bind statement documentation. 2335 - DOC: fix a confusing typo on a regsub example 2336 - BUILD: Add a DragonFlyBSD target 2337 - BUG/MINOR: makefile: fix a tiny typo in the target list 2338 - BUILD: makefile: Update feature flags for NetBSD 2339 - CI: travis-ci: help Coverity to detect BUG_ON() as a real stop 2340 - DOC: Add missing stats fields in the management doc 2341 - BUG/MEDIUM: mux-fcgi: Don't handle pending read0 too early on streams 2342 - BUG/MEDIUM: mux-h2: Don't handle pending read0 too early on streams 2343 - DOC: Fix typos in configuration.txt 2344 - BUG/MINOR: http: Fix content-length of the default 500 error 2345 - BUG/MINOR: http-htx: Expect no body for 204/304 internal HTTP responses 2346 - REGTESTS: mark abns_socket as broken 2347 - MEDIUM: fd: always wake up one thread when enabling a foreing FD 2348 - MEDIUM: listeners: don't bounce listeners management between queues 2349 - MEDIUM: init: stop disabled proxies after initializing fdtab 2350 - MEDIUM: listeners: make unbind_listener() converge if needed 2351 - MEDIUM: deinit: close all receivers/listeners before scanning proxies 2352 - MEDIUM: listeners: remove the now unused ZOMBIE state 2353 - MINOR: listeners: do not uselessly try to close zombie listeners in soft_stop() 2354 - CLEANUP: proxy: remove the first_to_listen hack in zombify_proxy() 2355 - MINOR: listeners: introduce listener_set_state() 2356 - MINOR: proxy: maintain per-state counters of listeners 2357 - MEDIUM: proxy: remove the unused PR_STFULL state 2358 - MEDIUM: proxy: remove the PR_STERROR state 2359 - MEDIUM: proxy: remove state PR_STPAUSED 2360 - MINOR: startup: don't rely on PR_STNEW to check for listeners 2361 - CLEANUP: peers: don't use the PR_ST* states to mark enabled/disabled 2362 - MEDIUM: proxy: replace proxy->state with proxy->disabled 2363 - MEDIUM: proxy: remove start_proxies() 2364 - MEDIUM: proxy: merge zombify_proxy() with stop_proxy() 2365 - MINOR: listeners: check the current listener state in pause_listener() 2366 - MINOR: listeners: check the current listener earlier state in resume_listener() 2367 - MEDIUM: listener/proxy: make the listeners notify about proxy pause/resume 2368 - MINOR: protocol: introduce protocol_{pause,resume}_all() 2369 - MAJOR: signals: use protocol_pause_all() and protocol_resume_all() 2370 - CLEANUP: proxy: remove the now unused pause_proxies() and resume_proxies() 2371 - MEDIUM: proto_tcp: make the pause() more robust in multi-process 2372 - BUG/MEDIUM: listeners: correctly report pause() errors 2373 - MINOR: listeners: move fd_stop_recv() to the receiver's socket code 2374 - CLEANUP: protocol: remove the ->disable_all method 2375 - CLEANUP: listeners: remove unused disable_listener and disable_all_listeners 2376 - MINOR: listeners: export enable_listener() 2377 - MINOR: protocol: directly call enable_listener() from protocol_enable_all() 2378 - CLEANUP: protocol: remove the ->enable_all method 2379 - CLEANUP: listeners: remove the now unused enable_all_listeners() 2380 - MINOR: protocol: rename the ->listeners field to ->receivers 2381 - MINOR: protocol: replace ->pause(listener) with ->rx_suspend(receiver) 2382 - MINOR: protocol: implement an ->rx_resume() method 2383 - MINOR: listener: use the protocol's ->rx_resume() method when available 2384 - MINOR: sock: provide a set of generic enable/disable functions 2385 - MINOR: protocol: add a new pair of rx_enable/rx_disable methods 2386 - MINOR: protocol: add a new pair of enable/disable methods for listeners 2387 - MEDIUM: listeners: now use the listener's ->enable/disable 2388 - MINOR: listeners: split delete_listener() in two versions 2389 - MINOR: listeners: count unstoppable jobs on creation, not deletion 2390 - MINOR: listeners: add a new stop_listener() function 2391 - MEDIUM: proxy: make stop_proxy() now use stop_listener() 2392 - MEDIUM: proxy: add mode PR_MODE_PEERS to flag peers frontends 2393 - MEDIUM: proxy: centralize proxy status update and reporting 2394 - MINOR: protocol: add protocol_stop_now() to instant-stop listeners 2395 - MEDIUM: proxy: make soft_stop() stop most listeners using protocol_stop_now() 2396 - MEDIUM: udp: implement udp_suspend() and udp_resume() 2397 - MINOR: listener: add a few BUG_ON() statements to detect inconsistencies 2398 - MEDIUM: listeners: always close master vs worker listeners 2399 - BROKEN/MEDIUM: listeners: rework the unbind logic to make it idempotent 2400 - MEDIUM: listener: let do_unbind_listener() decide whether to close or not 2401 - CLEANUP: listeners: remove the do_close argument to unbind_listener() 2402 - MINOR: listeners: move the LI_O_MWORKER flag to the receiver 2403 - MEDIUM: receivers: add an rx_unbind() method in the protocols 2404 - MINOR: listeners: split do_unbind_listener() in two 2405 - MEDIUM: listeners: implement protocol level ->suspend/resume() calls 2406 - MEDIUM: config: mark "grace" as deprecated 2407 - MEDIUM: config: remove the deprecated and dangerous global "debug" directive 2408 - BUG/MINOR: proxy: respect the proper format string in sig_pause/sig_listen 2409 - MINOR: peers: heartbeat, collisions and handshake information for "show peers" command. 2410 - BUILD: makefile: Enable getaddrinfo() on OS/X 2411 24122020/09/25 : 2.3-dev5 2413 - DOC: Fix typo in iif() example 2414 - CLEANUP: Update .gitignore 2415 - BUILD: introduce possibility to define ABORT_NOW() conditionally 2416 - CI: travis-ci: help Coverity to recognize abort() 2417 - BUG/MINOR: Fix type passed of sizeof() for calloc() 2418 - CLEANUP: Do not use a fixed type for 'sizeof' in 'calloc' 2419 - CLEANUP: tree-wide: use VAR_ARRAY instead of [0] in various definitions 2420 - BUILD: connection: fix build on clang after the VAR_ARRAY cleanup 2421 - BUG/MINOR: ssl: verifyhost is case sensitive 2422 - BUILD: makefile: change default value of CC from gcc to cc 2423 - CI: travis-ci: split asan step out of running tests 2424 - BUG/MINOR: server: report correct error message for invalid port on "socks4" 2425 - BUG/MEDIUM: ssl: Don't call ssl_sock_io_cb() directly. 2426 - BUG/MINOR: ssl/crt-list: crt-list could end without a \n 2427 - BUG/MINOR: log-forward: fail on unknown keywords 2428 - MEDIUM: log-forward: use "dgram-bind" instead of "bind" for the listener 2429 - BUG/MEDIUM: log-forward: always quit on parsing errors 2430 - MEDIUM: ssl: remove bundle support in crt-list and directories 2431 - MEDIUM: ssl/cli: remove support for multi certificates bundle 2432 - MINOR: ssl: crtlist_dup_ssl_conf() duplicates a ssl_bind_conf 2433 - MINOR: ssl: crtlist_entry_dup() duplicates a crtlist_entry 2434 - MEDIUM: ssl: emulates the multi-cert bundles in the crtlist 2435 - MEDIUM: ssl: emulate multi-cert bundles loading in standard loading 2436 - CLEANUP: ssl: remove test on "multi" variable in ckch functions 2437 - CLEANUP: ssl/cli: remove test on 'multi' variable in CLI functions 2438 - CLEANUP: ssl: remove utility functions for bundle 2439 - DOC: explain bundle emulation in configuration.txt 2440 - BUILD: fix build with openssl < 1.0.2 since bundle removal 2441 - BUG/MINOR: log: gracefully handle the "udp@" address format for log servers 2442 - BUG/MINOR: dns: gracefully handle the "udp@" address format for nameservers 2443 - MINOR: listener: create a new struct "settings" in bind_conf 2444 - MINOR: listener: move bind_proc and bind_thread to struct settings 2445 - MINOR: listener: move the interface to the struct settings 2446 - MINOR: listener: move the network namespace to the struct settings 2447 - REORG: listener: create a new struct receiver 2448 - REORG: listener: move the listening address to a struct receiver 2449 - REORG: listener: move the receiving FD to struct receiver 2450 - REORG: listener: move the listener's proto to the receiver 2451 - MINOR: listener: make sock_find_compatible_fd() check the socket type 2452 - REORG: listener: move the receiver part to a new file 2453 - MINOR: receiver: link the receiver to its settings 2454 - MINOR: receiver: link the receiver to its owner 2455 - MINOR: listener: prefer to retrieve the socket's settings via the receiver 2456 - MINOR: receiver: add a receiver-specific flag to indicate the socket is bound 2457 - MINOR: listener: move the INHERITED flag down to the receiver 2458 - MINOR: receiver: move the FOREIGN and V6ONLY options from listener to settings 2459 - MINOR: sock: make sock_find_compatible_fd() only take a receiver 2460 - MINOR: protocol: rename the ->bind field to ->listen 2461 - MINOR: protocol: add a new ->bind() entry to bind the receiver 2462 - MEDIUM: sock_inet: implement sock_inet_bind_receiver() 2463 - MEDIUM: tcp: make use of sock_inet_bind_receiver() 2464 - MEDIUM: udp: make use of sock_inet_bind_receiver() 2465 - MEDIUM: sock_unix: implement sock_unix_bind_receiver() 2466 - MEDIUM: uxst: make use of sock_unix_bind_receiver() 2467 - MEDIUM: sockpair: implement sockpair_bind_receiver() 2468 - MEDIUM: proto_sockpair: make use of sockpair_bind_receiver() 2469 - MEDIUM: protocol: explicitly start the receiver before the listener 2470 - MEDIUM: protocol: do not call proto->bind() anymore from bind_listener() 2471 - MINOR: protocol: add a new proto_fam structure for protocol families 2472 - MINOR: protocol: retrieve the family-specific fields from the family 2473 - CLEANUP: protocol: remove family-specific fields from struct protocol 2474 - MINOR: protocol: add a real family for existing FDs 2475 - CLEANUP: tools: make str2sa_range() less awful for fd@ and sockpair@ 2476 - MINOR: tools: make str2sa_range() take more options than just resolve 2477 - MINOR: tools: add several PA_O_PORT_* flags in str2sa_range() callers 2478 - MEDIUM: tools: make str2sa_range() validate callers' port specifications 2479 - MEDIUM: config: remove all checks for missing/invalid ports/ranges 2480 - MINOR: tools: add several PA_O_* flags in str2sa_range() callers 2481 - MINOR: listener: remove the inherited arg to create_listener() 2482 - MINOR: tools: make str2sa_range() optionally return the fd 2483 - MINOR: log: detect LOG_TARGET_FD from the fd and not from the syntax 2484 - MEDIUM: tools: make str2sa_range() resolve pre-bound listeners 2485 - MINOR: config: do not test an inherited socket again 2486 - MEDIUM: tools: make str2sa_range() check for the sockpair's FD usability 2487 - MINOR: tools: start to distinguish stream and dgram in str2sa_range() 2488 - MEDIUM: tools: make str2sa_range() only report AF_CUST_UDP on listeners 2489 - MINOR: tools: remove the central test for "udp" in str2sa_range() 2490 - MINOR: cfgparse: add str2receiver() to parse dgram receivers 2491 - MINOR: log-forward: use str2receiver() to parse the dgram-bind address 2492 - MEDIUM: config: make str2listener() not accept datagram sockets anymore 2493 - MINOR: listener: pass the chosen protocol to create_listeners() 2494 - MINOR: tools: make str2sa_range() directly return the protocol 2495 - MEDIUM: tools: make str2sa_range() check that the protocol has ->connect() 2496 - MINOR: protocol: add the control layer type in the protocol struct 2497 - MEDIUM: protocol: store the socket and control type in the protocol array 2498 - MEDIUM: tools: make str2sa_range() use protocol_lookup() 2499 - MEDIUM: proto_udp: replace last AF_CUST_UDP* with AF_INET* 2500 - MINOR: tools: drop listener detection hack from str2sa_range() 2501 - BUILD: sock_unix: add missing errno.h 2502 - MINOR: sock_inet: report the errno string in binding errors 2503 - MINOR: sock_unix: report the errno string in binding errors 2504 - BUILD: sock_inet: include errno.h 2505 - MINOR: h2/trace: also display the remaining frame length in traces 2506 - BUG/MINOR: h2/trace: do not display "stream error" after a frame ACK 2507 - BUG/MEDIUM: h2: report frame bits only for handled types 2508 - BUG/MINOR: http-fetch: Don't set the sample type during the htx prefetch 2509 - BUG/MINOR: Fix memory leaks cfg_parse_peers 2510 - BUG/MINOR: config: Fix memory leak on config parse listen 2511 - MINOR: backend: make the "whole" option of balance uri take only one bit 2512 - MINOR: backend: add a new "path-only" option to "balance uri" 2513 - REGTESTS: add a few load balancing tests 2514 - BUG/MEDIUM: listeners: do not pause foreign listeners 2515 - BUG/MINOR: listeners: properly close listener FDs 2516 - BUILD: trace: include tools.h 2517 25182020/09/11 : 2.3-dev4 2519 - MINOR: hlua: Add error message relative to the Channel manipulation and HTTP mode 2520 - BUG/MEDIUM: ssl: crt-list negative filters don't work 2521 - DOC: overhauling github issue templates 2522 - MEDIUM: cfgparse: Emit hard error on truncated lines 2523 - DOC: cache: Use '<name>' instead of '<id>' in error message 2524 - MINOR: cache: Reject duplicate cache names 2525 - REGTEST: remove stray leading spaces in converteers_ref_cnt_never_dec.vtc 2526 - MINOR: stats: prevent favicon.ico requests for stats page 2527 - BUILD: tools: include auxv a bit later 2528 - BUILD: task: work around a bogus warning in gcc 4.7/4.8 at -O1 2529 - MEDIUM: ssl: Support certificate chaining for certificate generation 2530 - MINOR: ssl: Support SAN extension for certificate generation 2531 - MINOR: tcp: don't try to set/clear v6only on inherited sockets 2532 - BUG/MINOR: reload: detect the OS's v6only status before choosing an old socket 2533 - MINOR: reload: determine the foreing binding status from the socket 2534 - MEDIUM: reload: stop passing listener options along with FDs 2535 - BUG/MEDIUM: ssl: fix ssl_bind_conf double free w/ wildcards 2536 - MEDIUM: fd: replace usages of fd_remove() with fd_stop_both() 2537 - CLEANUP: fd: remove fd_remove() and rename fd_dodelete() to fd_delete() 2538 - MINOR: fd: add a new "exported" flag and use it for all regular listeners 2539 - MEDIUM: reload: pass all exportable FDs, not just listeners 2540 - DOC: add description of pidfile in master-worker mode 2541 - BUG/MINOR: reload: do not fail when no socket is sent 2542 - REORG: tcp: move TCP actions from proto_tcp.c to tcp_act.c 2543 - CLEANUP: tcp: stop exporting smp_fetch_src() 2544 - REORG: tcp: move TCP sample fetches from proto_tcp.c to tcp_sample.c 2545 - REORG: tcp: move TCP bind/server keywords from proto_tcp.c to cfgparse-tcp.c 2546 - REORG: unix: move UNIX bind/server keywords from proto_uxst.c to cfgparse-unix.c 2547 - REORG: sock: start to move some generic socket code to sock.c 2548 - MINOR: sock: introduce sock_inet and sock_unix 2549 - MINOR: tcp/udp/unix: make use of proto->addrcmp() to compare addresses 2550 - MINOR: sock_inet: implement sock_inet_get_dst() 2551 - REORG: inet: replace tcp_is_foreign() with sock_inet_is_foreign() 2552 - REORG: sock_inet: move v6only_default from proto_tcp.c to sock_inet.c 2553 - REORG: sock_inet: move default_tcp_maxseg from proto_tcp.c 2554 - REORG: listener: move xfer_sock_list to sock.{c,h}. 2555 - MINOR: sock: add interface and namespace length to xfer_sock_list 2556 - MINOR: sock: implement sock_find_compatible_fd() 2557 - MINOR: sock_inet: move the IPv4/v6 transparent mode code to sock_inet 2558 - REORG: sock: move get_old_sockets() from haproxy.c 2559 - MINOR: sock: do not use LI_O_* in xfer_sock_list anymore 2560 - MINOR: sock: distinguish dgram from stream types when retrieving old sockets 2561 - BUILD: sock_unix: fix build issue with isdigit() 2562 - BUG/MEDIUM: http-ana: Don't wait to send 1xx responses received from servers 2563 - MINOR: http-htx: Add an option to eval query-string when the path is replaced 2564 - BUG/MINOR: http-rules: Replace path and query-string in "replace-path" action 2565 - MINOR: http-htx: Handle an optional reason when replacing the response status 2566 - MINOR: contrib/spoa-server: allow MAX_FRAME_SIZE override 2567 - BUG/MAJOR: contrib/spoa-server: Fix unhandled python call leading to memory leak 2568 - BUG/MINOR: contrib/spoa-server: Ensure ip address references are freed 2569 - BUG/MINOR: contrib/spoa-server: Do not free reference to NULL 2570 - BUG/MINOR: contrib/spoa-server: Updating references to free in case of failure 2571 - BUG/MEDIUM: contrib/spoa-server: Fix ipv4_address used instead of ipv6_address 2572 - CLEANUP: http: silence a cppcheck warning in get_http_auth() 2573 - REGTEST: increase some short timeouts to make tests more reliable 2574 - BUG/MINOR: threads: work around a libgcc_s issue with chrooting 2575 - BUILD: thread: limit the libgcc_s workaround to glibc only 2576 - MINOR: protocol: do not call proto->bind_all() anymore 2577 - MINOR: protocol: do not call proto->unbind_all() anymore 2578 - CLEANUP: protocol: remove all ->bind_all() and ->unbind_all() functions 2579 - MAJOR: init: start all listeners via protocols and not via proxies anymore 2580 - BUG/MINOR: startup: haproxy -s cause 100% cpu 2581 - Revert "BUG/MINOR: http-rules: Replace path and query-string in "replace-path" action" 2582 - BUG/MEDIUM: doc: Fix replace-path action description 2583 - MINOR: http-rules: Add set-pathq and replace-pathq actions 2584 - MINOR: http-fetch: Add pathq sample fetch 2585 - REGTEST: Add a test for request path manipulations, with and without the QS 2586 - MINOR: Commit .gitattributes 2587 - CLEANUP: Update .gitignore 2588 - BUG/MEDIUM: dns: Don't store additional records in a linked-list 2589 - BUG/MEDIUM: dns: Be sure to renew IP address for already known servers 2590 - MINOR: server: Improve log message sent when server address is updated 2591 - DOC: ssl-load-extra-files only applies to certificates on bind lines 2592 - BUG/MINOR: auth: report valid crypto(3) support depending on build options 2593 - BUG/MEDIUM: mux-h1: always apply the timeout on half-closed connections 2594 - BUILD: threads: better workaround for late loading of libgcc_s 2595 - BUILD: compiler: reserve the gcc version checks to the gcc compiler 2596 - BUILD: compiler: workaround a glibc madness around __attribute__() 2597 - BUILD: intops: on x86_64, the bswap instruction is called bswapq 2598 - BUILD: trace: always have an argument before variadic args in macros 2599 - BUILD: traces: don't pass an empty argument for missing ones 2600 - BUG/MINOR: haproxy: Free uri_auth->scope during deinit 2601 - CLEANUP: Free old_argv on deinit 2602 - CLEANUP: haproxy: Free post_proxy_check_list in deinit() 2603 - CLEANUP: haproxy: Free per_thread_*_list in deinit() 2604 - CLEANUP: haproxy: Free post_check_list in deinit() 2605 - BUG/MEDIUM: pattern: Renew the pattern expression revision when it is pruned 2606 - REORG: tools: move PARSE_OPT_* from tools.h to tools-t.h 2607 - MINOR: sample: Add iif(<true>,<false>) converter 2608 26092020/08/14 : 2.3-dev3 2610 - SCRIPTS: git-show-backports: make -m most only show the left branch 2611 - SCRIPTS: git-show-backports: emit the shell command to backport a commit 2612 - BUILD: Makefile: require SSL_LIB, SSL_INC to be explicitly set 2613 - CI: travis-ci: specify SLZ_LIB, SLZ_INC for travis builds 2614 - BUG/MEDIUM: mux-h1: Refresh H1 connection timeout after a synchronous send 2615 - CLEANUP: dns: typo in reported error message 2616 - BUG/MAJOR: dns: disabled servers through SRV records never recover 2617 - BUG/MINOR: spoa-server: fix size_t format printing 2618 - DOC: spoa-server: fix false friends `actually` 2619 - BUG/MINOR: ssl: fix memory leak at OCSP loading 2620 - BUG/MEDIUM: ssl: memory leak of ocsp data at SSL_CTX_free() 2621 - BUG/MEDIUM: map/lua: Return an error if a map is loaded during runtime 2622 - MINOR: arg: Add an argument type to keep a reference on opaque data 2623 - BUG/MINOR: converters: Store the sink in an arg pointer for debug() converter 2624 - BUG/MINOR: lua: Duplicate map name to load it when a new Map object is created 2625 - BUG/MINOR: arg: Fix leaks during arguments validation for fetches/converters 2626 - BUG/MINOR: lua: Check argument type to convert it to IPv4/IPv6 arg validation 2627 - BUG/MINOR: lua: Check argument type to convert it to IP mask in arg validation 2628 - MINOR: hlua: Don't needlessly copy lua strings in trash during args validation 2629 - BUG/MINOR: lua: Duplicate lua strings in sample fetches/converters arg array 2630 - MEDIUM: lua: Don't filter exported fetches and converters 2631 - MINOR: lua: Add support for userlist as fetches and converters arguments 2632 - MINOR: lua: Add support for regex as fetches and converters arguments 2633 - MINOR: arg: Use chunk_destroy() to release string arguments 2634 - BUG/MINOR: snapshots: leak of snapshots on deinit() 2635 - CLEANUP: ssl: ssl_sock_crt2der semicolon and spaces 2636 - MINOR: ssl: add ssl_{c,s}_chain_der fetch methods 2637 - CLEANUP: fix all duplicated semicolons 2638 - BUG/MEDIUM: ssl: fix the ssl-skip-self-issued-ca option 2639 - BUG/MINOR: ssl: ssl-skip-self-issued-ca requires >= 1.0.2 2640 - BUG/MINOR: stats: use strncmp() instead of memcmp() on health states 2641 - BUILD: makefile: don't disable -Wstringop-overflow anymore 2642 - BUG/MINOR: ssl: double free w/ smp_fetch_ssl_x_chain_der() 2643 - BUG/MEDIUM: htx: smp_prefetch_htx() must always validate the direction 2644 - BUG/MEDIUM: ssl: never generates the chain from the verify store 2645 - OPTIM: regex: PCRE2 use JIT match when JIT optimisation occured. 2646 - BUG/MEDIUM: ssl: does not look for all SNIs before chosing a certificate 2647 - CLEANUP: ssl: remove poorly readable nested ternary 2648 26492020/07/31 : 2.3-dev2 2650 - DOC: ssl: req_ssl_sni needs implicit TLS 2651 - BUG/MEDIUM: arg: empty args list must be dropped 2652 - BUG/MEDIUM: resolve: fix init resolving for ring and peers section. 2653 - BUG/MAJOR: tasks: don't requeue global tasks into the local queue 2654 - MINOR: tasks/debug: make the thread affinity BUG_ON check a bit stricter 2655 - MINOR: tasks/debug: add a few BUG_ON() to detect use of wrong timer queue 2656 - MINOR: tasks/debug: add a BUG_ON() check to detect requeued task on free 2657 - BUG/MAJOR: dns: Make the do-resolve action thread-safe 2658 - BUG/MEDIUM: dns: Release answer items when a DNS resolution is freed 2659 - MEDIUM: htx: Add a flag on a HTX message when no more data are expected 2660 - BUG/MEDIUM: stream-int: Don't set MSG_MORE flag if no more data are expected 2661 - BUG/MEDIUM: http-ana: Only set CF_EXPECT_MORE flag on data filtering 2662 - CLEANUP: dns: remove 45 "return" statements from dns_validate_dns_response() 2663 - BUG/MINOR: htx: add two missing HTX_FL_EOI and remove an unexpected one 2664 - BUG/MINOR: mux-fcgi: Don't url-decode the QUERY_STRING parameter anymore 2665 - BUILD: tools: fix build with static only toolchains 2666 - DOC: Use gender neutral language 2667 - BUG/MINOR: debug: Don't dump the lua stack if it is not initialized 2668 - BUG/MAJOR: dns: fix null pointer dereference in snr_update_srv_status 2669 - BUG/MAJOR: dns: don't treat Authority records as an error 2670 - CI : travis-ci : prepare for using stock OpenSSL 2671 - CI: travis-ci : switch to stock openssl when openssl-1.1.1 is used 2672 - MEDIUM: lua: Add support for the Lua 5.4 2673 - BUG/MEDIUM: dns: Don't yield in do-resolve action on a final evaluation 2674 - BUG/MINOR: lua: Abort execution of actions that yield on a final evaluation 2675 - MINOR: tcp-rules: Return an internal error if an action yields on a final eval 2676 - BUG/MINOR: tcp-rules: Preserve the right filter analyser on content eval abort 2677 - BUG/MINOR: tcp-rules: Set the inspect-delay when a tcp-response action yields 2678 - MEDIUM: tcp-rules: Use a dedicated expiration date for tcp ruleset 2679 - MEDIUM: lua: Set the analyse expiration date with smaller wake_time only 2680 - BUG/MEDIUM: connection: Be sure to always install a mux for sync connect 2681 - MINOR: connection: Preinstall the mux for non-ssl connect 2682 - MINOR: stream-int: Be sure to have a mux to do sends and receives 2683 - BUG/MINOR: lua: Fix a possible null pointer deref on lua ctx 2684 - SCRIPTS: announce-release: add the link to the wiki in the announce messages 2685 - CI: travis-ci: use better name for Coverity scan job 2686 - CI: travis-ci: use proper linking flags for SLZ build 2687 - BUG/MEDIUM: backend: always attach the transport before installing the mux 2688 - BUG/MEDIUM: tcp-checks: always attach the transport before installing the mux 2689 - MINOR: connection: avoid a useless recvfrom() on outgoing connections 2690 - MINOR: mux-h1: do not even try to receive if the connection is not fully set up 2691 - MINOR: mux-h1: do not try to receive on backend before sending a request 2692 - CLEANUP: assorted typo fixes in the code and comments 2693 - BUG/MEDIUM: ssl: check OCSP calloc in ssl_sock_load_ocsp() 2694 26952020/07/17 : 2.3-dev1 2696 - MINOR: config: make strict limits enabled by default 2697 - BUG/MINOR: acl: Fix freeing of expr->smp in prune_acl_expr 2698 - BUG/MINOR: sample: Fix freeing of conv_exprs in release_sample_expr 2699 - BUG/MINOR: haproxy: Free proxy->format_unique_id during deinit 2700 - BUG/MINOR: haproxy: Add missing free of server->(hostname|resolvers_id) 2701 - BUG/MINOR: haproxy: Free proxy->unique_id_header during deinit 2702 - BUG/MINOR: haproxy: Free srule->file during deinit 2703 - BUG/MINOR: haproxy: Free srule->expr during deinit 2704 - BUG/MINOR: sample: Free str.area in smp_check_const_bool 2705 - BUG/MINOR: sample: Free str.area in smp_check_const_meth 2706 - CLEANUP: haproxy: Free proxy_deinit_list in deinit() 2707 - CLEANUP: haproxy: Free post_deinit_list in deinit() 2708 - CLEANUP: haproxy: Free server_deinit_list in deinit() 2709 - CLEANUP: haproxy: Free post_server_check_list in deinit() 2710 - CLEANUP: Add static void vars_deinit() 2711 - CLEANUP: Add static void hlua_deinit() 2712 - CLEANUP: contrib/prometheus-exporter: typo fixes for ssl reuse metric 2713 - BUG/MEDIUM: lists: add missing store barrier on MT_LIST_BEHEAD() 2714 - BUG/MEDIUM: lists: add missing store barrier in MT_LIST_ADD/MT_LIST_ADDQ 2715 - MINOR: tcp: Support TCP keepalive parameters customization 2716 - BUILD: tcp: condition TCP keepalive settings to platforms providing them 2717 - MINOR: lists: rename some MT_LIST operations to clarify them 2718 - MINOR: buffer: use MT_LIST_ADDQ() for buffer_wait lists additions 2719 - MINOR: connection: use MT_LIST_ADDQ() to add connections to idle lists 2720 - MINOR: tasks: use MT_LIST_ADDQ() when killing tasks. 2721 - CONTRIB: da: fix memory leak in dummy function da_atlas_open() 2722 - CI: travis-ci: speed up osx build by running brew scripted, switch to latest osx image 2723 - BUG/MEDIUM: mux-h2: Don't add private connections in available connection list 2724 - BUG/MEDIUM: mux-fcgi: Don't add private connections in available connection list 2725 - MINOR: connection: Set the SNI on server connections before installing the mux 2726 - MINOR: connection: Set new connection as private on reuse never 2727 - MINOR: connection: Add a wrapper to mark a connection as private 2728 - MEDIUM: connection: Add private connections synchronously in session server list 2729 - MINOR: connection: Use a dedicated function to look for a session's connection 2730 - MINOR: connection: Set the conncetion target during its initialisation 2731 - MINOR: session: Take care to decrement idle_conns counter in session_unown_conn 2732 - MINOR: server: Factorize code to deal with reuse of server idle connections 2733 - MINOR: server: Factorize code to deal with connections removed from an idle list 2734 - CLEANUP: connection: remove unused field idle_time from the connection struct 2735 - BUG/MEDIUM: mux-h1: Continue to process request when switching in tunnel mode 2736 - MINOR: raw_sock: Report the number of bytes emitted using the splicing 2737 - MINOR: contrib/prometheus-exporter: Add missing global and per-server metrics 2738 - MINOR: backend: Add sample fetches to get the server's weight 2739 - BUG/MINOR: mux-fcgi: Handle empty STDERR record 2740 - BUG/MINOR: mux-fcgi: Set conn state to RECORD_P when skipping the record padding 2741 - BUG/MINOR: mux-fcgi: Set flags on the right stream field for empty FCGI_STDOUT 2742 - BUG/MINOR: backend: fix potential null deref on srv_conn 2743 - BUG/MEDIUM: log: issue mixing sampled to not sampled log servers. 2744 - MEDIUM: udp: adds minimal proto udp support for message listeners. 2745 - MEDIUM: log/sink: re-work and merge of build message API. 2746 - MINOR: log: adds syslog udp message handler and parsing. 2747 - MEDIUM: log: adds log forwarding section. 2748 - MINOR: log: adds counters on received syslog messages. 2749 - BUG/MEDIUM: fcgi-app: fix memory leak in fcgi_flt_http_headers 2750 - BUG/MEDIUM: server: resolve state file handle leak on reload 2751 - BUG/MEDIUM: server: fix possibly uninitialized state file on close 2752 - BUG/MEDIUM: channel: Be aware of SHUTW_NOW flag when output data are peeked 2753 - BUILD: config: address build warning on raspbian+rpi4 2754 - BUG/MAJOR: tasks: make sure to always lock the shared wait queue if needed 2755 - BUILD: config: fix again bugs gcc warnings on calloc 2756 27572020/07/07 : 2.3-dev0 2758 - [RELEASE] Released version 2.3-dev0 2759 - MINOR: version: back to development, update status message 2760 27612020/07/07 : 2.3-dev0 2762 - exact copy of 2.2.0 2763 27642020/07/07 : 2.2.0 2765 - BUILD: mux-h2: fix typo breaking build when using DEBUG_LOCK 2766 - CLEANUP: makefile: update the outdated list of DEBUG_xxx options 2767 - BUILD: tools: make resolve_sym_name() return a const 2768 - CLEANUP: auth: fix useless self-include of auth-t.h 2769 - BUILD: tree-wide: cast arguments to tolower/toupper to unsigned char 2770 - CLEANUP: assorted typo fixes in the code and comments 2771 - WIP/MINOR: ssl: add sample fetches for keylog in frontend 2772 - DOC: fix tune.ssl.keylog sample fetches array 2773 - BUG/MINOR: ssl: check conn in keylog sample fetch 2774 - DOC: configuration: various typo fixes 2775 - MINOR: log: Remove unused case statement during the log-format string parsing 2776 - BUG/MINOR: mux-h1: Fix the splicing in TUNNEL mode 2777 - BUG/MINOR: mux-h1: Don't read data from a pipe if the mux is unable to receive 2778 - BUG/MINOR: mux-h1: Disable splicing only if input data was processed 2779 - BUG/MEDIUM: mux-h1: Disable splicing for the conn-stream if read0 is received 2780 - MINOR: mux-h1: Improve traces about the splicing 2781 - BUG/MINOR: backend: Remove CO_FL_SESS_IDLE if a client remains on the last server 2782 - BUG/MEDIUM: connection: Don't consider new private connections as available 2783 - BUG/MINOR: connection: See new connection as available only on reuse always 2784 - DOC: configuration: remove obsolete mentions of H2 being converted to HTTP/1.x 2785 - CLEANUP: ssl: remove unrelevant comment in smp_fetch_ssl_x_keylog() 2786 - DOC: update INSTALL with new compiler versions 2787 - DOC: minor update to coding style file 2788 - MINOR: version: mention that it's an LTS release now 2789 27902020/07/04 : 2.2-dev12 2791 - BUG/MINOR: mux_h2: don't lose the leaving trace in h2_io_cb() 2792 - MINOR: cli: make "show sess" stop at the last known session 2793 - CLEANUP: buffers: remove unused buffer_wq_lock lock 2794 - BUG/MEDIUM: buffers: always allocate from the local cache first 2795 - MINOR: connection: align toremove_{lock,connections} and cleanup into idle_conns 2796 - CONTRIB: debug: add missing flags SI_FL_L7_RETRY & SI_FL_D_L7_RETRY 2797 - BUG/MEDIUM: connections: Don't increase curr_used_conns for shared connections. 2798 - BUG/MEDIUM: checks: Increment the server's curr_used_conns 2799 - REORG: buffer: rename buffer.c to dynbuf.c 2800 - REORG: includes: create tinfo.h for the thread_info struct 2801 - CLEANUP: pool: only include the type files from types 2802 - MINOR: pools: move the LRU cache heads to thread_info 2803 - BUG/MINOR: debug: fix "show fd" null-deref when built with DEBUG_FD 2804 - MINOR: stats: add 3 new output values for the per-server idle conn state 2805 - MINOR: activity: add per-thread statistics on FD takeover 2806 - BUG/MINOR: server: start cleaning idle connections from various points 2807 - MEDIUM: server: improve estimate of the need for idle connections 2808 - MINOR: stats: add the estimated need of concurrent connections per server 2809 - BUG/MINOR: threads: Don't forget to init each thread toremove_lock. 2810 - BUG/MEDIUM: lists: Lock the element while we check if it is in a list. 2811 - Revert "BUG/MEDIUM: lists: Lock the element while we check if it is in a list." 2812 - BUG/MINOR: haproxy: don't wake already stopping threads on exit 2813 - BUG/MINOR: server: always count one idle slot for current thread 2814 - MEDIUM: server: use the two thresholds for the connection release algorithm 2815 - BUG/MINOR: http-rules: Fix ACLs parsing for http deny rules 2816 - BUG/MINOR: sched: properly cover for a rare MT_LIST_ADDQ() race 2817 - MINOR: mux-h1: avoid taking the toremove_lock in on dying tasks 2818 - MINOR: mux-h2: avoid taking the toremove_lock in on dying tasks 2819 - MINOR: mux-fcgi: avoid taking the toremove_lock in on dying tasks 2820 - MINOR: pools: increase MAX_BASE_POOLS to 64 2821 - DOC: ssl: add "allow-0rtt" and "ciphersuites" in crt-list 2822 - BUG/MEDIUM: pattern: Add a trailing \0 to match strings only if possible 2823 - BUG/MEDIUM: log-format: fix possible endless loop in parse_logformat_string() 2824 - BUG/MINOR: proxy: fix dump_server_state()'s misuse of the trash 2825 - BUG/MINOR: proxy: always initialize the trash in show servers state 2826 - MINOR: cli/proxy: add a new "show servers conn" command 2827 - MINOR: server: skip servers with no idle conns earlier 2828 - BUG/MINOR: server: fix the connection release logic regarding nearly full conditions 2829 - MEDIUM: server: add a new pool-low-conn server setting 2830 - BUG/MEDIUM: backend: always search in the safe list after failing on the idle one 2831 - MINOR: backend: don't always takeover from the same threads 2832 - MINOR: sched: make sched->task_list_size atomic 2833 - MEDIUM: sched: create a new TASK_KILLED task flag 2834 - MEDIUM: sched: implement task_kill() to kill a task 2835 - MEDIUM: mux-h1: use task_kill() during h1_takeover() instead of task_wakeup() 2836 - MEDIUM: mux-h2: use task_kill() during h2_takeover() instead of task_wakeup() 2837 - MEDIUM: mux-fcgi: use task_kill() during fcgi_takeover() instead of task_wakeup() 2838 - MINOR: list: Add MT_LIST_DEL_SAFE_NOINIT() and MT_LIST_ADDQ_NOCHECK() 2839 - CLEANUP: connections: rename the toremove_lock to takeover_lock 2840 - MEDIUM: connections: Don't use a lock when moving connections to remove. 2841 - DOC: configuration: add missing index entries for tune.pool-{low,high}-fd-ratio 2842 - DOC: configuration: fix alphabetical ordering for tune.pool-{high,low}-fd-ratio 2843 - MINOR: config: add a new tune.idle-pool.shared global setting. 2844 - MINOR: 51d: silence a warning about null pointer dereference 2845 - MINOR: debug: add a new "debug dev memstats" command 2846 - MINOR: log-format: allow to preserve spacing in log format strings 2847 - BUILD: debug: avoid build warnings with DEBUG_MEM_STATS 2848 - BUG/MAJOR: sched: make sure task_kill() always queues the task 2849 - BUG/MEDIUM: muxes: Make sure nobody stole the connection before using it. 2850 - BUG/MEDIUM: cli/proxy: don't try to dump idle connection state if there's none 2851 - BUILD: haproxy: fix build error when RLIMIT_AS is not set 2852 - BUG/MAJOR: sched: make it work also when not building with DEBUG_STRICT 2853 - MINOR: log: add time second fraction field to rfc5424 log timestamp. 2854 - BUG/MINOR: log: missing timezone on iso dates. 2855 - BUG/MEDIUM: server: don't kill all idle conns when there are not enough 2856 - MINOR: sched: split tasklet_wakeup() into tasklet_wakeup_on() 2857 - BUG/MEDIUM: connections: Set the tid for the old tasklet on takeover. 2858 - BUG/MEDIUM: connections: Let the xprt layer know a takeover happened. 2859 - BUG/MINOR: http_act: don't check capture id in backend (2) 2860 - BUILD: makefile: disable threads by default on OpenBSD 2861 - BUILD: peers: fix build warning with gcc 4.2.1 2862 - CI: cirrus-ci: exclude slow reg-tests 2863 28642020/06/26 : 2.2-dev11 2865 - REGTEST: Add a simple script to tests errorfile directives in proxy sections 2866 - BUG/MEDIUM: fcgi-app: Resolve the sink if a fcgi-app logs in a ring buffer 2867 - BUG/MINOR: spoe: correction of setting bits for analyzer 2868 - BUG/MINOR: cfgparse: Support configurations without newline at EOF 2869 - MINOR: cfgparse: Warn on truncated lines / files 2870 - BUG/MINOR: http_ana: clarify connection pointer check on L7 retry 2871 - MINOR: debug: add a new DEBUG_FD build option 2872 - BUG/MINOR: tasks: make sure never to exceed max_processed 2873 - MINOR: task: add a new pointer to current tasklet queue 2874 - BUG/MEDIUM: task: be careful not to run too many tasks at TL_URGENT 2875 - BUG/MINOR: cfgparse: Fix argument reference in PARSE_ERR_TOOMANY message 2876 - BUG/MINOR: cfgparse: Fix calculation of position for PARSE_ERR_TOOMANY message 2877 - BUG/MEDIUM: ssl: fix ssl_bind_conf double free 2878 - MINOR: ssl: free bind_conf_node in crtlist_free() 2879 - MINOR: ssl: free the crtlist and the ckch during the deinit() 2880 - BUG/MINOR: ssl: fix build with ckch_deinit() and crtlist_deinit() 2881 - BUG/MINOR: ssl/cli: certs added from the CLI can't be deleted 2882 - MINOR: ssl: move the ckch/crtlist deinit to ssl_sock.c 2883 - MEDIUM: tasks: apply a fair CPU distribution between tasklet classes 2884 - MINOR: tasks: make current_queue an index instead of a pointer 2885 - MINOR: tasks: add a mask of the queues with active tasklets 2886 - MINOR: tasks: pass the queue index to run_task_from_list() 2887 - MINOR: tasks: make run_tasks_from_lists() scan the queues itself 2888 - MEDIUM: tasks: add a tune.sched.low-latency option 2889 - BUG/MEDIUM: ssl/cli: 'commit ssl cert' crashes when no private key 2890 - BUG/MINOR: cfgparse: don't increment linenum on incomplete lines 2891 - MINOR: tools: make parse_line() always terminate the args list 2892 - BUG/MINOR: cfgparse: report extraneous args *after* the string is allocated 2893 - MINOR: cfgparse: sanitize the output a little bit 2894 - MINOR: cli/ssl: handle trailing slashes in crt-list commands 2895 - MINOR: ssl: add the ssl_s_* sample fetches for server side certificate 2896 - BUG/MEDIUM: http-ana: Don't loop trying to generate a malformed 500 response 2897 - BUG/MINOR: stream-int: Don't wait to send truncated HTTP messages 2898 - BUG/MINOR: http-ana: Set CF_EOI on response channel for generated responses 2899 - BUG/MINOR: http-ana: Don't wait to send 1xx responses generated by HAProxy 2900 - MINOR: spoe: Don't systematically create new applets if processing rate is low 2901 - DOC: fix some typos in the ssl_s_{s|i}_dn documentation 2902 - BUILD: fix ssl_sample.c when building against BoringSSL 2903 - CI: travis-ci: switch BoringSSL builds to ninja 2904 - CI: extend spellchecker whitelist 2905 - DOC: assorted typo fixes in the documentation 2906 - CLEANUP: assorted typo fixes in the code and comments 2907 - MINOR: http: Add support for http 413 status 2908 - REGTEST: ssl: tests the ssl_f_* sample fetches 2909 - REGTEST: ssl: add some ssl_c_* sample fetches test 2910 - DOC: ssl: update the documentation of "commit ssl cert" 2911 - BUG/MINOR: cfgparse: correctly deal with empty lines 2912 - BUG/MEDIUM: fetch: Fix hdr_ip misparsing IPv4 addresses due to missing NUL 2913 29142020/06/19 : 2.2-dev10 2915 - BUILD: include: add sys/types before netinet/tcp.h 2916 - BUG/MEDIUM: log: don't hold the log lock during writev() on a file descriptor 2917 - BUILD: Remove nowarn for warnings that do not trigger 2918 - BUG/MEDIUM: pattern: fix thread safety of pattern matching 2919 - BUILD: Re-enable -Wimplicit-fallthrough 2920 - BUG/MINOR: ssl: fix ssl-{min,max}-ver with openssl < 1.1.0 2921 - BUILD: thread: add parenthesis around values of locking macros 2922 - BUILD: proto_uxst: shut up yet another gcc's absurd warning 2923 - BUG/MEDIUM: checks: Fix off-by-one in allocation of SMTP greeting cmd 2924 - CI: travis-ci: use "-O1" for clang builds 2925 - MINOR: haproxy: Add void deinit_and_exit(int) 2926 - MINOR: haproxy: Make use of deinit_and_exit() for clean exits 2927 - BUG/MINOR: haproxy: Free rule->arg.vars.expr during deinit_act_rules 2928 - BUILD: compression: make gcc 10 happy with free_zlib() 2929 - BUILD: atomic: add string.h for memcpy() on ARM64 2930 - BUG/MINOR: http: make smp_fetch_body() report that the contents may change 2931 - BUG/MINOR: tcp-rules: tcp-response must check the buffer's fullness 2932 - BUILD: haproxy: mark deinit_and_exit() as noreturn 2933 - BUG/MAJOR: vars: Fix bogus free() during deinit() for http-request rules 2934 - BUG/MEDIUM: ebtree: use a byte-per-byte memcmp() to compare memory blocks 2935 - MINOR: tools: add a new configurable line parse, parse_line() 2936 - BUG/MEDIUM: cfgparse: use parse_line() to expand/unquote/unescape config lines 2937 - BUG/MEDIUM: cfgparse: stop after a reasonable amount of fatal error 2938 - MINOR: http: do not close connections anymore after internal responses 2939 - BUG/MINOR: cfgparse: Add missing fatal++ in PARSE_ERR_HEX case 2940 - BUG/MINOR: spoe: add missing key length check before checking key names 2941 - MINOR: version: put the compiler version output into version.c not haproxy.c 2942 - MINOR: compiler: always define __has_feature() 2943 - MINOR: version: report the presence of the compiler's address sanitizer 2944 - BUILD: Fix build by including haproxy/global.h 2945 - BUG/MAJOR: connection: always disable ready events once reported 2946 - CLEANUP: activity: remove unused counter fd_lock 2947 - DOC: fd: make it clear that some fields ordering must absolutely be respected 2948 - MINOR: activity: report the number of times poll() reports I/O 2949 - MINOR: activity: rename confusing poll_* fields in the output 2950 - MINOR: fd: Fix a typo in a coment. 2951 - BUG/MEDIUM: fd: Don't fd_stop_recv() a fd we don't own. 2952 - BUG/MEDIUM: fd: Call fd_stop_recv() when we just got a fd. 2953 - MINOR: activity: group the per-loop counters at the top 2954 - MINOR: activity: rename the "stream" field to "stream_calls" 2955 - MEDIUM: fd: refine the fd_takeover() migration lock 2956 - MINOR: fd: slightly optimize the fd_takeover double-CAS loop 2957 - MINOR: fd: factorize the fd_takeover() exit path to make it safer 2958 - MINOR: peers: do not use localpeer as an array anymore 2959 - MEDIUM: peers: add the "localpeer" global option 2960 - MEDIUM: fd: add experimental support for edge-triggered polling 2961 - CONTRIB: debug: add the missing flags CO_FL_SAFE_LIST and CO_FL_IDLE_LIST 2962 - MINOR: haproxy: process signals before runnable tasks 2963 - MEDIUM: tasks: clean up the front side of the wait queue in wake_expired_tasks() 2964 - MEDIUM: tasks: also process late wakeups in process_runnable_tasks() 2965 - BUG/MINOR: cli: allow space escaping on the CLI 2966 - BUG/MINOR: mworker/cli: fix the escaping in the master CLI 2967 - BUG/MINOR: mworker/cli: fix semicolon escaping in master CLI 2968 - REGTEST: http-rules: test spaces in ACLs 2969 - REGTEST: http-rules: test spaces in ACLs with master CLI 2970 - BUG/MAJOR: init: properly compute the default global.maxpipes value 2971 - MEDIUM: map: make the "clear map" operation yield 2972 - BUG/MEDIUM: stream-int: fix loss of CO_SFL_MSG_MORE flag in forwarding 2973 - MINOR: mux_h1: Set H1_F_CO_MSG_MORE if we know we have more to send. 2974 - BUG/MINOR: systemd: Wait for network to be online 2975 - DOC: configuration: Unindent non-code sentences in the protobuf example 2976 - DOC: configuration: http-check send was missing from matrix 2977 29782020/06/11 : 2.2-dev9 2979 - BUG/MINOR: http-htx: Don't forget to release the http reply in release function 2980 - BUG/MINOR: http-htx: Fix a leak on error path during http reply parsing 2981 - MINOR: checks: Remove dead code from process_chk_conn() 2982 - REGTESTS: checks: Fix tls_health_checks when IPv6 addresses are used 2983 - REGTESTS: Add missing OPENSSL to REQUIRE_OPTIONS for lua/txn_get_priv 2984 - MINOR: lua: Use vars_unset_by_name_ifexist() 2985 - CLEANUP: vars: Remove void vars_unset_by_name(const char*, size_t, struct sample*) 2986 - MINOR: vars: Make vars_(un|)set_by_name(_ifexist|) return a success value 2987 - MINOR: lua: Make `set_var()` and `unset_var()` return success 2988 - MEDIUM: lua: Add `ifexist` parameter to `set_var` 2989 - MEDIUM: ring: new section ring to declare custom ring buffers. 2990 - REGTESTS: Add missing OPENSSL to REQUIRE_OPTIONS for compression/lua_validation 2991 - REGTESTS: Require the version 2.2 to execute lua/set_var 2992 - BUG/MEDIUM: checks: Refresh the conn-stream and the connection after a connect 2993 - MINOR: checks: Remove useless tests on the connection and conn-stream 2994 - BUG/MEDIUM: contrib/spoa: do not register python3.8 if --embed fail 2995 - BUG/MEDIUM: connection: Ignore PP2 unique ID for stream-less connections 2996 - BUG/MINOR: connection: Always get the stream when available to send PP2 line 2997 - BUG/MEDIUM: backend: set the connection owner to the session when using alpn. 2998 - MINOR: pools: compute an estimate of each pool's average needed objects 2999 - MEDIUM: pools: directly free objects when pools are too much crowded 3000 - REGTEST: Add connection/proxy_protocol_send_unique_id_alpn 3001 - MINOR: http-ana: Make the function http_reply_to_htx() public 3002 - MINOR: http-ana: Use proxy's error replies to emit 401/407 responses 3003 - MINOR: http-rules: Use an action function to eval http-request auth rules 3004 - CLEANUP: http: Remove unused HTTP message templates 3005 - BUG/MEDIUM: checks: Don't blindly subscribe for receive if waiting for connect 3006 - MINOR: checks: I/O callback function only rely on the data layer wake callback 3007 - BUG/MINOR: lua: Add missing string length for lua sticktable lookup 3008 - BUG/MEDIUM: logs: fix trailing zeros on log message. 3009 - CI: cirrus-ci: skip reg-tests/connection/proxy_protocol_send_unique_id_alpn.vtc on CentOS 6 3010 - BUG/MINOR: nameservers: fix error handling in parsing of resolv.conf 3011 - BUG/MEDIUM: checks: Don't add a tcpcheck ruleset twice in the shared tree 3012 - MEDIUM: ssl: use TLSv1.2 as the minimum default on bind lines 3013 - CLEANUP: pools: use the regular lock for the flush operation on lockless pools 3014 - SCRIPTS: publish-release: pass -n to gzip to remove timestamp 3015 - MINOR: ring: re-work ring attach generic API. 3016 - BUG/MINOR: error on unknown statement in ring section. 3017 - MEDIUM: ring: add server statement to forward messages from a ring 3018 - MEDIUM: ring: add new srv statement to support octet counting forward 3019 - MINOR: ssl: set ssl-min-ver in ambiguous configurations 3020 - CLEANUP: ssl: remove comment from dump_crtlist_sslconf() 3021 - BUILD: sink: address build warning on 32-bit architectures 3022 - BUG/MINOR: peers: fix internal/network key type mapping. 3023 - CLEANUP: regex: remove outdated support for regex actions 3024 - Revert "MINOR: ssl: rework add cert chain to CTX to be libssl independent" 3025 - MINOR: mux-h1/proxy: Add a proxy option to disable clear h2 upgrade 3026 - BUG/MEDIUM: lua: Reset analyse expiration timeout before executing a lua action 3027 - DOC: add a line about comments in crt-list 3028 - BUG/MEDIUM: hlua: Lock pattern references to perform set/add/del operations 3029 - BUG/MINOR: checks: Fix test on http-check rulesets during config validity check 3030 - BUG/MEDIUM: contrib/prometheus-exporter: Properly set flags to dump metrics 3031 - BUG/MEDIUM: mworker: fix the copy of options in copy_argv() 3032 - BUG/MINOR: init: -x can have a parameter starting with a dash 3033 - BUG/MINOR: init: -S can have a parameter starting with a dash 3034 - BUG/MEDIUM: mworker: fix the reload with an -- option 3035 - BUG/MINOR: ssl: fix a trash buffer leak in some error cases 3036 - BUG/MINOR: mworker: fix a memleak when execvp() failed 3037 - MINOR: sample: Add secure_memcmp converter 3038 - REORG: ebtree: move the C files from ebtree/ to src/ 3039 - REORG: ebtree: move the include files from ebtree to include/import/ 3040 - REORG: ebtree: clean up remains of the ebtree/ directory 3041 - REORG: include: create new file haproxy/api-t.h 3042 - REORG: include: create new file haproxy/api.h 3043 - REORG: include: update all files to use haproxy/api.h or api-t.h if needed 3044 - CLEANUP: include: remove common/config.h 3045 - CLEANUP: include: remove unused template.h 3046 - REORG: include: move MIN/MAX from tools.h to compat.h 3047 - REORG: include: move SWAP/MID_RANGE/MAX_RANGE from tools.h to standard.h 3048 - CLEANUP: include: remove unused common/tools.h 3049 - REORG: include: move the base files from common/ to haproxy/ 3050 - REORG: include: move version.h to haproxy/ 3051 - REORG: include: move base64.h, errors.h and hash.h from common to to haproxy/ 3052 - REORG: include: move openssl-compat.h from common/ to haproxy/ 3053 - REORG: include: move ist.h from common/ to import/ 3054 - REORG: include: move the BUG_ON() code to haproxy/bug.h 3055 - REORG: include: move debug.h from common/ to haproxy/ 3056 - CLEANUP: debug: drop unused function p_malloc() 3057 - REORG: include: split buf.h into haproxy/buf-t.h and haproxy/buf.h 3058 - REORG: include: move istbuf.h to haproxy/ 3059 - REORG: include: split mini-clist into haproxy/list and list-t.h 3060 - REORG: threads: extract atomic ops from hathreads.h 3061 - CLEANUP: threads: remove a few needless includes of hathreads.h 3062 - REORG: include: split hathreads into haproxy/thread.h and haproxy/thread-t.h 3063 - CLEANUP: thread: rename __decl_hathreads() to __decl_thread() 3064 - REORG: include: move time.h from common/ to haproxy/ 3065 - REORG: include: move integer manipulation functions from standard.h to intops.h 3066 - CLEANUP: include: remove excessive includes of common/standard.h 3067 - REORG: include: move freq_ctr to haproxy/ 3068 - CLEANUP: pool: include freq_ctr.h and remove locally duplicated functions 3069 - REORG: memory: move the pool type definitions to haproxy/pool-t.h 3070 - REORG: memory: move the OS-level allocator to haproxy/pool-os.h 3071 - MINOR: memory: don't let __pool_get_first() pick from the cache 3072 - MEDIUM: memory: don't let pool_put_to_cache() free the objects itself 3073 - MINOR: memory: move pool-specific path of the locked pool_free() to __pool_free() 3074 - MEDIUM: memory: make local pools independent on lockless pools 3075 - REORG: include: move common/memory.h to haproxy/pool.h 3076 - REORG: include: move common/chunk.h to haproxy/chunk.h 3077 - REORG: include: move activity to haproxy/ 3078 - REORG: include: move common/buffer.h to haproxy/dynbuf{,-t}.h 3079 - REORG: include: move common/net_helper.h to haproxy/net_helper.h 3080 - REORG: include: move common/namespace.h to haproxy/namespace{,-t}.h 3081 - REORG: include: split common/regex.h into haproxy/regex{,-t}.h 3082 - REORG: include: split common/xref.h into haproxy/xref{,-t}.h 3083 - REORG: include: move common/ticks.h to haproxy/ticks.h 3084 - REORG: include: split common/http.h into haproxy/http{,-t}.h 3085 - REORG: include: split common/http-hdr.h into haproxy/http-hdr{,-t}.h 3086 - REORG: include: move common/h1.h to haproxy/h1.h 3087 - REORG: include: split common/htx.h into haproxy/htx{,-t}.h 3088 - REORG: include: move hpack*.h to haproxy/ and split hpack-tbl 3089 - REORG: include: move common/h2.h to haproxy/h2.h 3090 - REORG: include: move common/fcgi.h to haproxy/ 3091 - REORG: include: move protocol.h to haproxy/protocol{,-t}.h 3092 - REORG: tools: split common/standard.h into haproxy/tools{,-t}.h 3093 - REORG: include: move dict.h to hparoxy/dict{,-t}.h 3094 - REORG: include: move shctx to haproxy/shctx{,-t}.h 3095 - REORG: include: move port_range.h to haproxy/port_range{,-t}.h 3096 - REORG: include: move fd.h to haproxy/fd{,-t}.h 3097 - REORG: include: move ring to haproxy/ring{,-t}.h 3098 - REORG: include: move sink.h to haproxy/sink{,-t}.h 3099 - REORG: include: move pipe.h to haproxy/pipe{,-t}.h 3100 - CLEANUP: include: remove empty raw_sock.h 3101 - REORG: include: move proto_udp.h to haproxy/proto_udp{,-t}.h 3102 - REORG: include: move proto/proto_sockpair.h to haproxy/proto_sockpair.h 3103 - REORG: include: move compression.h to haproxy/compression{,-t}.h 3104 - REORG: include: move h1_htx.h to haproxy/h1_htx.h 3105 - REORG: include: move http_htx.h to haproxy/http_htx{,-t}.h 3106 - REORG: include: move hlua.h to haproxy/hlua{,-t}.h 3107 - REORG: include: move hlua_fcn.h to haproxy/hlua_fcn.h 3108 - REORG: include: move action.h to haproxy/action{,-t}.h 3109 - REORG: include: move arg.h to haproxy/arg{,-t}.h 3110 - REORG: include: move auth.h to haproxy/auth{,-t}.h 3111 - REORG: include: move dns.h to haproxy/dns{,-t}.h 3112 - REORG: include: move flt_http_comp.h to haproxy/ 3113 - REORG: include: move counters.h to haproxy/counters-t.h 3114 - REORG: include: split mailers.h into haproxy/mailers{,-t}.h 3115 - REORG: include: move capture.h to haproxy/capture{,-t}.h 3116 - REORG: include: move frontend.h to haproxy/frontend.h 3117 - REORG: include: move obj_type.h to haproxy/obj_type{,-t}.h 3118 - REORG: include: move http_rules.h to haproxy/http_rules.h 3119 - CLEANUP: include: remove unused mux_pt.h 3120 - REORG: include: move mworker.h to haproxy/mworker{,-t}.h 3121 - REORG: include: move ssl_utils.h to haproxy/ssl_utils.h 3122 - REORG: include: move ssl_ckch.h to haproxy/ssl_ckch{,-t}.h 3123 - REORG: move ssl_crtlist.h to haproxy/ssl_crtlist{,-t}.h 3124 - REORG: include: move lb_chash.h to haproxy/lb_chash{,-t}.h 3125 - REORG: include: move lb_fas.h to haproxy/lb_fas{,-t}.h 3126 - REORG: include: move lb_fwlc.h to haproxy/lb_fwlc{,-t}.h 3127 - REORG: include: move lb_fwrr.h to haproxy/lb_fwrr{,-t}.h 3128 - REORG: include: move listener.h to haproxy/listener{,-t}.h 3129 - REORG: include: move pattern.h to haproxy/pattern{,-t}.h 3130 - REORG: include: move map to haproxy/map{,-t}.h 3131 - REORG: include: move payload.h to haproxy/payload.h 3132 - REORG: include: move sample.h to haproxy/sample{,-t}.h 3133 - REORG: include: move protocol_buffers.h to haproxy/protobuf{,-t}.h 3134 - REORG: include: move vars.h to haproxy/vars{,-t}.h 3135 - REORG: include: split global.h into haproxy/global{,-t}.h 3136 - REORG: include: move task.h to haproxy/task{,-t}.h 3137 - REORG: include: move proto_tcp.h to haproxy/proto_tcp.h 3138 - REORG: include: move signal.h to haproxy/signal{,-t}.h 3139 - REORG: include: move tcp_rules.h to haproxy/tcp_rules.h 3140 - REORG: include: move connection.h to haproxy/connection{,-t}.h 3141 - REORG: include: move checks.h to haproxy/check{,-t}.h 3142 - REORG: include: move http_fetch.h to haproxy/http_fetch.h 3143 - REORG: include: move peers.h to haproxy/peers{,-t}.h 3144 - REORG: include: move stick_table.h to haproxy/stick_table{,-t}.h 3145 - REORG: include: move session.h to haproxy/session{,-t}.h 3146 - REORG: include: move trace.h to haproxy/trace{,-t}.h 3147 - REORG: include: move acl.h to haproxy/acl.h{,-t}.h 3148 - REORG: include: split common/uri_auth.h into haproxy/uri_auth{,-t}.h 3149 - REORG: move applet.h to haproxy/applet{,-t}.h 3150 - REORG: include: move stats.h to haproxy/stats{,-t}.h 3151 - REORG: include: move cli.h to haproxy/cli{,-t}.h 3152 - REORG: include: move lb_map.h to haproxy/lb_map{,-t}.h 3153 - REORG: include: move ssl_sock.h to haproxy/ssl_sock{,-t}.h 3154 - REORG: include: move stream_interface.h to haproxy/stream_interface{,-t}.h 3155 - REORG: include: move channel.h to haproxy/channel{,-t}.h 3156 - REORG: include: move http_ana.h to haproxy/http_ana{,-t}.h 3157 - REORG: include: move filters.h to haproxy/filters{,-t}.h 3158 - REORG: include: move fcgi-app.h to haproxy/fcgi-app{,-t}.h 3159 - REORG: include: move log.h to haproxy/log{,-t}.h 3160 - REORG: include: move proxy.h to haproxy/proxy{,-t}.h 3161 - REORG: include: move spoe.h to haproxy/spoe{,-t}.h 3162 - REORG: include: move backend.h to haproxy/backend{,-t}.h 3163 - REORG: include: move queue.h to haproxy/queue{,-t}.h 3164 - REORG: include: move server.h to haproxy/server{,-t}.h 3165 - REORG: include: move stream.h to haproxy/stream{,-t}.h 3166 - REORG: include: move cfgparse.h to haproxy/cfgparse.h 3167 - CLEANUP: hpack: export debug functions and move inlines to .h 3168 - REORG: check: move the e-mail alerting code to mailers.c 3169 - REORG: check: move tcpchecks away from check.c 3170 - REORG: check: move email_alert* from proxy-t.h to mailers-t.h 3171 - REORG: check: extract the external checks from check.{c,h} 3172 - CLEANUP: include: don't include stddef.h directly 3173 - CLEANUP: include: don't include proxy-t.h in global-t.h 3174 - CLEANUP: include: move sample_data out of sample-t.h 3175 - REORG: include: move the error reporting functions to from log.h to errors.h 3176 - BUILD: reorder objects in the Makefile for faster builds 3177 - CLEANUP: compiler: add a THREAD_ALIGNED macro and use it where appropriate 3178 - CLEANUP: include: make atomic.h part of the base API 3179 - REORG: include: move MAX_THREADS to defaults.h 3180 - REORG: include: move THREAD_LOCAL and __decl_thread() to compiler.h 3181 - CLEANUP: include: tree-wide alphabetical sort of include files 3182 - REORG: include: make list-t.h part of the base API 3183 - REORG: dgram: rename proto_udp to dgram 3184 31852020/05/22 : 2.2-dev8 3186 - MINOR: checks: Improve report of unexpected errors for expect rules 3187 - MEDIUM: checks: Add matching on log-format string for expect rules 3188 - DOC: Fix req.body and co documentation to be accurate 3189 - MEDIUM: checks: Remove dedicated sample fetches and use response ones instead 3190 - CLEANUP: checks: sort and rename tcpcheck_expect_type types 3191 - MINOR: checks: Use dedicated actions to send log-format strings in send rules 3192 - MINOR: checks: Simplify matching on HTTP headers in HTTP expect rules 3193 - MINOR: checks/sample: Remove unnecessary tests on the sample session 3194 - REGTEST: checks: Adapt SSL error message reported when connection is rejected 3195 - MINOR: mworker: replace ha_alert by ha_warning when exiting successfuly 3196 - MINOR: checks: Support log-format string to set the URI for HTTP send rules 3197 - MINOR: checks: Support log-format string to set the body for HTTP send rules 3198 - DOC: Be more explicit about configurable check ok/error/timeout status 3199 - MINOR: checks: Make matching on HTTP headers for expect rules less obscure 3200 - BUG/MEDIUM: lua: Fix dumping of stick table entries for STD_T_DICT 3201 - BUG/MINOR: config: Make use_backend and use-server post-parsing less obscur 3202 - REGTESTS: make the http-check-send test require version 2.2 3203 - BUG/MINOR: http-ana: fix NTLM response parsing again 3204 - BUG/MEDIUM: http_ana: make the detection of NTLM variants safer 3205 - BUG/MINOR: cfgparse: Abort parsing the current line if an invalid \x sequence is encountered 3206 - MINOR: cfgparse: Improve error message for invalid \x sequences 3207 - CI: travis-ci: enable arm64 builds again 3208 - MEDIUM: ssl: increase default-dh-param to 2048 3209 - CI: travis-ci: skip pcre2 on arm64 build 3210 - CI: travis-ci: extend the build time for SSL to 60 minutes 3211 - CLEANUP: config: drop unused setting CONFIG_HAP_MEM_OPTIM 3212 - CLEANUP: config: drop unused setting CONFIG_HAP_INLINE_FD_SET 3213 - CLENAUP: config: move CONFIG_HAP_LOCKLESS_POOLS out of config.h 3214 - CLEANUP: remove THREAD_LOCAL from config.h 3215 - CI: travis-ci: upgrade LibreSSL versions 3216 - DOC: assorted typo fixes in the documentation 3217 - CI: extend spellchecker whitelist 3218 - CLEANUP: assorted typo fixes in the code and comments 3219 - MAJOR: contrib: porting spoa_server to support python3 3220 - BUG/MEDIUM: checks: Subscribe to I/O events on an unfinished connect 3221 - BUG/MINOR: checks: Don't subscribe to I/O events if it is already done 3222 - BUG/MINOR: checks: Rely on next I/O oriented rule when waiting for a connection 3223 - MINOR: checks: Don't try to send outgoing data if waiting to be able to send 3224 - MINOR: sample: Move aes_gcm_dec implementation into sample.c 3225 - MINOR: sample: Add digest and hmac converters 3226 - BUG/MEDIUM: checks: Subscribe to I/O events only if a mux was installed 3227 - BUG/MINOR: sample/ssl: Fix digest converter for openssl < 1.1.0 3228 - BUG/MINOR: pools: use %u not %d to report pool stats in "show pools" 3229 - BUG/MINOR: pollers: remove uneeded free in global init 3230 - CLEANUP: select: enhance readability in init 3231 - BUG/MINOR: soft-stop: always wake up waiting threads on stopping 3232 - MINOR: soft-stop: let the first stopper only signal other threads 3233 - BUILD: select: only declare existing local labels to appease clang 3234 - BUG/MEDIUM: streams: Remove SF_ADDR_SET if we're retrying due to L7 retry. 3235 - BUG/MEDIUM: stream: Only allow L7 retries when using HTTP. 3236 - DOC: retry-on can only be used with mode http 3237 - MEDIUM: ssl: allow to register callbacks for SSL/TLS protocol messages 3238 - MEDIUM: ssl: split ssl_sock_msgcbk() and use a new callback mechanism 3239 - MINOR: ssl: add a new function ssl_sock_get_ssl_object() 3240 - MEDIUM: ssl: use ssl_sock_get_ssl_object() in fetchers where appropriate 3241 - REORG: ssl: move macros and structure definitions to ssl_sock.h 3242 - CLEANUP: ssl: remove the shsess_* macros 3243 - REORG: move the crt-list structures in their own .h 3244 - REORG: ssl: move the ckch structures to types/ssl_ckch.h 3245 - CLEANUP: ssl: add ckch prototypes in proto/ssl_ckch.h 3246 - REORG: ssl: move crtlist functions to src/ssl_crtlist.c 3247 - CLEANUP: ssl: avoid circular dependencies in ssl_crtlist.h 3248 - REORG: ssl: move the ckch_store related functions to src/ssl_ckch.c 3249 - REORG: ssl: move ckch_inst functions to src/ssl_ckch.c 3250 - REORG: ssl: move the crt-list CLI functions in src/ssl_crtlist.c 3251 - REORG: ssl: move the CLI 'cert' functions to src/ssl_ckch.c 3252 - REORG: ssl: move ssl configuration to cfgparse-ssl.c 3253 - MINOR: ssl: remove static keyword in some SSL utility functions 3254 - REORG: ssl: move ssl_sock_ctx and fix cross-dependencies issues 3255 - REORG: ssl: move sample fetches to src/ssl_sample.c 3256 - REORG: ssl: move utility functions to src/ssl_utils.c 3257 - DOC: ssl: update MAINTAINERS file 3258 - CI: travis-ci: switch arm64 builds to use openssl from distro 3259 - MINOR: stats: Prepare for more accurate moving averages 3260 - MINOR: stats: Expose native cum_req metric for a server 3261 - MEDIUM: stats: Enable more accurate moving average calculation for stats 3262 - BUILD: ssl: include buffer common headers for ssl_sock_ctx 3263 - BUILD: ssl: include errno.h in ssl_crtlist.c 3264 - CLEANUP: acl: remove unused assignment 3265 - DOC/MINOR: halog: Add long help info for ic flag 3266 - BUILD: ssl: fix build without OPENSSL_NO_ENGINE 3267 - DOC: SPOE is no longer experimental 3268 - BUG/MINOR: cache: Don't needlessly test "cache" keyword in parse_cache_flt() 3269 - MINOR: config: Don't dump keywords if argument is NULL 3270 - MEDIUM: checks: Make post-41 the default mode for mysql checks 3271 - BUG/MINOR: logs: prevent double line returns in some events. 3272 - MEDIUM: sink: build header in sink_write for log formats 3273 - MEDIUM: logs: buffer targets now rely on new sink_write 3274 - MEDIUM: sink: add global statement to create a new ring (sink buffer) 3275 - MEDIUM: hpack: use a pool for the hpack table 3276 - BUG/MAJOR: mux-fcgi: Stop sending loop if FCGI stream is blocked for any reason 3277 - BUG/MEDIUM: ring: write-lock the ring while attaching/detaching 3278 - MINOR: applet: adopt the wait list entry from the CLI 3279 - MINOR: ring: make the applet code not depend on the CLI 3280 - Revert "MEDIUM: sink: add global statement to create a new ring (sink buffer)" 3281 - CI: travis-ci: fix libslz download URL 3282 - MINOR: ssl: split config and runtime variable for ssl-{min,max}-ver 3283 - CLEANUP: http_ana: Remove unused TXN flags 3284 - BUG/MINOR: http-rules: Mark http return rules as final 3285 - MINOR: http-htx: Add http_reply type based on what is used for http return rules 3286 - CLEANUP: http-htx: Rename http_error structure into http_error_msg 3287 - MINOR: http-rules: Use http_reply structure for http return rules 3288 - MINOR: http-htx: Use a dedicated function to release http_reply objects 3289 - MINOR: http-htx: Use a dedicated function to parse http reply arguments 3290 - MINOR: http-htx: Use a dedicated function to check http reply validity 3291 - MINOR: http-ana: Use a dedicated function to send a response from an http reply 3292 - MEDIUM: http-rules: Rely on http reply for http deny/tarpit rules 3293 - MINOR: http-htx: Store default error messages in a global http reply array 3294 - MINOR: http-htx: Store messages of an http-errors section in a http reply array 3295 - MINOR: http-htx: Store errorloc/errorfile messages in http replies 3296 - MINOR: proxy: Add references on http replies for proxy error messages 3297 - MINOR: http-htx: Use http reply from the http-errors section 3298 - MINOR: http-ana: Use a TXN flag to prevent after-response ruleset evaluation 3299 - MEDIUM: http-ana: Use http replies for HTTP error messages 3300 - CLEANUP: http-htx: Remove unused storage of error messages in buffers 3301 - MINOR: htx: Add a function to copy a buffer in an HTX message 3302 - CLEANUP: channel: Remove channel_htx_copy_msg() function 3303 - MINOR: http-ana: Add a function to write an http reply in an HTX message 3304 - MINOR: http-htx/proxy: Add http-error directive using http return syntax 3305 - DOC: Fix "errorfile" description in the configuration manual 3306 - BUG/MINOR: checks: Respect check-ssl param when a port or an addr is specified 3307 - BUILD: hpack: make sure the hpack table can still be built standalone 3308 - CONTRIB: hpack: make use of the simplified standalone HPACK API 3309 - MINOR: connection: add pp2-never-send-local to support old PP2 behavior 3310 33112020/05/05 : 2.2-dev7 3312 - MINOR: version: Show uname output in display_version() 3313 - CI: run weekly OpenSSL "no-deprecated" builds 3314 - CLEANUP: log: fix comment of parse_logformat_string() 3315 - DOC: Improve documentation on http-request set-src 3316 - MINOR: ssl/cli: disallow SSL options for directory in 'add ssl crt-list' 3317 - MINOR: ssl/cli: restrain certificate path when inserting into a directory 3318 - MINOR: ssl: add ssl-skip-self-issued-ca global option 3319 - BUG/MINOR: ssl: default settings for ssl server options are not used 3320 - MINOR: config: add a global directive to set default SSL curves 3321 - BUG/MEDIUM: http-ana: Handle NTLM messages correctly. 3322 - DOC: internals: update the SSL architecture schema 3323 - BUG/MINOR: tools: fix the i386 version of the div64_32 function 3324 - BUG/MINOR: mux-fcgi/trace: fix wrong set of trace flags in fcgi_strm_add_eom() 3325 - BUG/MINOR: http: make url_decode() optionally convert '+' to SP 3326 - DOC: option logasap does not depend on mode 3327 - MEDIUM: memory: make pool_gc() run under thread isolation 3328 - MINOR: contrib: make the peers wireshark dissector a plugin 3329 - BUG/MINOR: http-ana: Throw a 500 error if after-response ruleset fails on errors 3330 - BUG/MINOR: check: Update server address and port to execute an external check 3331 - MINOR: mini-clist: Add functions to iterate backward on a list 3332 - MINOR: checks: Add a way to send custom headers and payload during http chekcs 3333 - MINOR: server: respect warning and alert semantic 3334 - BUG/MINOR: checks: Respect the no-check-ssl option 3335 - BUG/MEDIUM: server/checks: Init server check during config validity check 3336 - CLEANUP: checks: Don't export anymore init_check and srv_check_healthcheck_port 3337 - BUG/MINOR: checks: chained expect will not properly wait for enough data 3338 - BUG/MINOR: checks: Forbid tcp-check lines in default section as documented 3339 - MINOR: checks: Use an enum to describe the tcp-check rule type 3340 - MINOR: checks: Simplify connection flag parsing in tcp-check connect 3341 - MEDIUM: checks: rewind to the first inverse expect rule of a chain on new data 3342 - MINOR: checks: simplify tcp expect config parser 3343 - MINOR: checks: add min-recv tcp-check expect option 3344 - MINOR: checks: add linger option to tcp connect 3345 - MINOR: checks: define a tcp expect type 3346 - MEDIUM: checks: rewrite tcp-check expect block 3347 - MINOR: checks: Stop xform buffers to null-terminated string for tcp-check rules 3348 - MINOR: checks: add rbinary expect match type 3349 - MINOR: checks: Simplify functions to get step id and comment 3350 - MEDIUM: checks: capture groups in expect regexes 3351 - MINOR: checks: Don't use a static tcp rule list head 3352 - MEDIUM: checks: Use a non-comment rule iterator to get next rule 3353 - MEDIUM: proxy/checks: Register a keyword to parse tcp-check rules 3354 - MINOR: checks: Set the tcp-check rule index during parsing 3355 - MINOR: checks: define tcp-check send type 3356 - MINOR: checks: define a tcp-check connect type 3357 - MEDIUM: checks: Add implicit tcp-check connect rule 3358 - MAJOR: checks: Refactor and simplify the tcp-check loop 3359 - MEDIUM: checks: Associate a session to each tcp-check healthcheck 3360 - MINOR: checks/vars: Add a check scope for variables 3361 - MEDIUM: checks: Parse custom action rules in tcp-checks 3362 - MINOR: checks: Add support to set-var and unset-var rules in tcp-checks 3363 - MINOR: checks: Add the sni option for tcp-check connect rules 3364 - MINOR: checks: Add the via-socks4 option for tcp-check connect rules 3365 - MINOR: checks: Add the alpn option for tcp-check connect rules 3366 - MINOR: ssl: Export a generic function to parse an alpn string 3367 - MINOR: checks: Add the default option for tcp-check connect rules 3368 - MINOR: checks: Add the addr option for tcp-check connect rule 3369 - MEDIUM: checks: Support expression to set the port 3370 - MEDIUM: checks: Support log-format strings for tcp-check send rules 3371 - MINOR: log: Don't depends on a stream to process samples in log-format string 3372 - MINOR: log: Don't systematically set LW_REQ when a sample expr is added 3373 - MEDIUM: checks: Add a shared list of tcp-check rules 3374 - MINOR: sample: add htonl converter 3375 - MINOR: sample: add cut_crlf converter 3376 - MINOR: sample: add ltrim converter 3377 - MINOR: sample: add rtrim converter 3378 - MINOR: checks: Use a name for the healthcheck status enum 3379 - MINOR: checks: Add option to tcp-check expect rules to customize error status 3380 - MINOR: checks: Merge tcp-check comment rules with the others at config parsing 3381 - MINOR: checks: Add a sample fetch to extract a block from the input check buffer 3382 - MEDIUM: checks: Add on-error/on-success option on tcp-check expect rules 3383 - MEDIUM: checks: Add status-code sample expression on tcp-check expect rules 3384 - MINOR: checks: Relax the default option for tcp-check connect rules 3385 - MEDIUM: checks: Add a list of vars to set before executing a tpc-check ruleset 3386 - MINOR: checks: Export the tcpcheck_eval_ret enum 3387 - MINOR: checks: Use dedicated function to handle onsuccess/onerror messages 3388 - MINOR: checks: Support custom functions to eval a tcp-check expect rules 3389 - MEDIUM: checks: Implement redis check using tcp-check rules 3390 - MEDIUM: checks: Implement ssl-hello check using tcp-check rules 3391 - MEDIUM: checks: Implement smtp check using tcp-check rules 3392 - MEDIUM: checks: Implement postgres check using tcp-check rules 3393 - MEDIUM: checks: Implement MySQL check using tcp-check rules 3394 - MEDIUM: checks: Implement LDAP check using tcp-check rules 3395 - MEDIUM: checks: Implement SPOP check using tcp-check rules 3396 - MINOR: server/checks: Move parsing of agent keywords in checks.c 3397 - MINOR: server/checks: Move parsing of server check keywords in checks.c 3398 - MEDIUM: checks: Implement agent check using tcp-check rules 3399 - REGTEST: Adapt regtests about checks to recent changes 3400 - MINOR: Produce tcp-check info message for pure tcp-check rules only 3401 - MINOR: checks: Add an option to set success status of tcp-check expect rules 3402 - MINOR: checks: Improve log message of tcp-checks on success 3403 - MINOR: proxy/checks: Move parsing of httpchk option in checks.c 3404 - MINOR: proxy/checks: Move parsing of tcp-check option in checks.c 3405 - MINOR: proxy/checks: Register a keyword to parse http-check rules 3406 - MINOR: proxy/checks: Move parsing of external-check option in checks.c 3407 - MINOR: proxy/checks: Register a keyword to parse external-check rules 3408 - MEDIUM: checks: Use a shared ruleset to store tcp-check rules 3409 - MINOR: checks: Use an indirect string to represent the expect matching string 3410 - MINOR: checks: Introduce flags to configure in tcp-check expect rules 3411 - MINOR: standard: Add my_memspn and my_memcspn 3412 - MINOR: checks: Add a reverse non-comment rule iterator to get last rule 3413 - MAJOR: checks: Implement HTTP check using tcp-check rules 3414 - MINOR: checks: Make resume conditions more explicit in tcpcheck_main() 3415 - MINOR: connection: Add macros to know if a conn or a cs uses an HTX mux 3416 - MEDIUM: checks: Refactor how data are received in tcpcheck_main() 3417 - MINOR: checks/obj_type: Add a new object type for checks 3418 - BUG/MINOR: obj_type: Handle stream object in obj_base_ptr() function 3419 - MINOR: checks: Use the check as origin when a session is created 3420 - MINOR: checks: Add a mux proto to health-check and tcp-check connect rule 3421 - MINOR: connection: Add a function to install a mux for a health-check 3422 - MAJOR: checks: Use the best mux depending on the protocol for health checks 3423 - MEDIUM: checks: Implement default TCP check using tcp-check rules 3424 - MINOR: checks: Remove unused code about pure TCP checks 3425 - CLEANUP: checks: Reorg checks.c file to be more readable 3426 - REGTEST: Fix reg-tests about health-checks to adapt them to recent changes 3427 - MINOR: ist: Add a function to retrieve the ist pointer 3428 - MINOR: checks: Use ist API as far as possible 3429 - BUG/MEDIUM: checks: Be sure to subscribe for sends if outgoing data remains 3430 - MINOR: checks: Use a tree instead of a list to store tcp-check rulesets 3431 - BUG/MINOR: checks: Send the right amount of outgoing data for HTTP checks 3432 - REGTEST: Add scripts to test based tcp-check health-checks 3433 - Revert "MEDIUM: checks: capture groups in expect regexes" 3434 - DOC: Add documentation about comments for tcp-check and http-check directives 3435 - DOC: Fix the tcp-check and http-check directives layout 3436 - BUG/MEDIUM: checks: Use the mux protocol specified on the server line 3437 - MINOR: checks: Support mux protocol definition for tcp and http health checks 3438 - BUG/MINOR: mux-fcgi: Be sure to have a connection as session's origin to use it 3439 - MINOR: checks: Support list of status codes on http-check expect rules 3440 - BUG/MEDIUM: checks: Unsubscribe to mux events when a conn-stream is destroyed 3441 - REGTEST: Add a script to validate agent checks 3442 - BUG/MINOR: server: Fix server_finalize_init() to avoid unused variable 3443 - BUG/MEDIUM: checks: unsubscribe for events on the old conn-stream on connect 3444 - BUG/MINOR: checks: Only use ssl_sock_is_ssl() if compiled with SSL support 3445 - BUG/MINOR: checks/server: use_ssl member must be signed 3446 - BUG/MEDIUM: sessions: Always pass the mux context as argument to destroy a mux 3447 - BUG/MEDIUM: checks: Destroy the conn-stream before the session 3448 - BUG/MINOR: checks: Fix PostgreSQL regex on the authentication packet 3449 - CI: cirrus-ci: remove reg-tests/checks/tcp-check-ssl.vtc on CentOS 6 3450 - MINOR: checks: Support HTTP/2 version (without '.0') for http-check send rules 3451 - MINOR: checks: Use ver keyword to specify the HTTP version for http checks 3452 - BUG/MINOR: checks: Remove wrong variable redeclaration 3453 - BUG/MINOR: checks: Properly handle truncated mysql server messages 3454 - CLEANUP: checks: Remove unused code when ldap server message is parsed 3455 - MINOR: checks: Make the use of the check's server more explicit on connect 3456 - BUG/MINOR: checks: Avoid incompatible cast when a binary string is parsed 3457 - BUG/MINOR: checks: Remove bad call to free() when an expect rule is parsed 3458 - BUG/MINOR: checks: Don't lose warning on proxy capability 3459 - MINOR: log: Add "Tu" timer 3460 - BUG/MINOR: checks: Set the output buffer length before calling parse_binary() 3461 - BUG/MEDIUM: mux-h1: make sure we always have a timeout on front connections 3462 - REGTEST: ssl: test the client certificate authentication 3463 - DOC: give a more accurate description of what check does 3464 - BUG/MEDIUM: capture: capture-req/capture-res converters crash without a stream 3465 - BUG/MEDIUM: capture: capture.{req,res}.* crash without a stream 3466 - BUG/MEDIUM: http: the "http_first_req" sample fetch could crash without a steeam 3467 - BUG/MEDIUM: http: the "unique-id" sample fetch could crash without a steeam 3468 - CLEANUP: http: add a few comments on certain functions' assumptions about streams 3469 - BUG/MEDIUM: sample: make the CPU and latency sample fetches check for a stream 3470 - MINOR: http-htx: Export functions to update message authority and host 3471 - MINOR: checks: Don't support multiple host header for http-check send rule 3472 - MINOR: checks: Skip some headers for http-check send rules 3473 - MINOR: checks: Keep the Host header and the request uri synchronized 3474 - CLEANUP: checks: Fix checks includes 3475 - DOC: Fix send rules in the http-check connect example 3476 - DOC: Add more info about request formatting in http-check send description 3477 - REGTEST: http-rules: Require PCRE or PCRE2 option to run map_redirect script 3478 - REGTEST: ssl: remove curl from the "add ssl crt-list" test 3479 - REGTEST: ssl: improve the "set ssl cert" test 3480 - CLEANUP: ssl: silence a build warning when threads are disabled 3481 - BUG/MEDIUM: listener: mark the thread as not stuck inside the loop 3482 - MINOR: threads: export the POSIX thread ID in panic dumps 3483 - BUG/MINOR: debug: properly use long long instead of long for the thread ID 3484 - BUG/MEDIUM: shctx: really check the lock's value while waiting 3485 - BUG/MEDIUM: shctx: bound the number of loops that can happen around the lock 3486 - MINOR: stream: report the list of active filters on stream crashes 3487 - BUG/MEDIUM: mux-fcgi: Return from detach if server don't keep the connection 3488 - BUG/MEDIUM: mux_fcgi: Free the FCGI connection at the end of fcgi_release() 3489 - BUG/MEDIUM: mux-fcgi: Fix wrong test on FCGI_CF_KEEP_CONN in fcgi_detach() 3490 - BUG/MEDIUM: connections: force connections cleanup on server changes 3491 - BUG/MEDIUM: h1: Don't compare host and authority if only h1 headers are parsed 3492 - BUG/MEDIUM: ssl: fix the id length check within smp_fetch_ssl_fc_session_id() 3493 - CLEANUP: connections: align function declaration 3494 - BUG/MINOR: sample: Set the correct type when a binary is converted to a string 3495 - MEDIUM: checks/http-fetch: Support htx prefetch from a check for HTTP samples 3496 - DOC: Document the log-format parameter for tcp-check send/send-binary rules 3497 - MINOR: checks: Add support of payload-based sample fetches 3498 - MINOR: checks: Add support of be_id, be_name, srv_id and srv_name sample fetches 3499 - MINOR: checks: Add support of server side ssl sample fetches 3500 - MINOR: checks: Add support of HTTP response sample fetches 3501 - MINOR: http-htx: Support different methods to look for header names 3502 - MINOR: checks: Set by default expect rule status to UNKNOWN during parsing 3503 - BUG/MINOR: checks: Support multiple HTTP expect rules 3504 - REGTEST: checks: Fix sync condition for agent-check 3505 - MEDIUM: checks: Support matching on headers for http-check expect rules 3506 - MINOR: lua: allow changing port with set_addr 3507 - BUG/MINOR: da: Fix HTX message prefetch 3508 - BUG/MINOR: wurfl: Fix HTX message prefetch 3509 - BUG/MINOR: 51d: Fix HTX message prefetch 3510 - MINOR: ist: add istadv() function 3511 - MINOR: ist: add istissame() function 3512 - MINOR: istbuf: add ist2buf() function 3513 - BUG/MINOR: threads: fix multiple use of argument inside HA_ATOMIC_CAS() 3514 - BUG/MINOR: threads: fix multiple use of argument inside HA_ATOMIC_UPDATE_{MIN,MAX}() 3515 - DOC: update intro.txt for 2.2 3516 - DOC: intro: add a contacts section 3517 35182020/04/17 : 2.2-dev6 3519 - BUG/MINOR: ssl: memory leak when find_chain is NULL 3520 - CLEANUP: ssl: rename ssl_get_issuer_chain to ssl_get0_issuer_chain 3521 - MINOR: ssl: rework add cert chain to CTX to be libssl independent 3522 - BUG/MINOR: peers: init bind_proc to 1 if it wasn't initialized 3523 - BUG/MINOR: peers: avoid an infinite loop with peers_fe is NULL 3524 - BUG/MINOR: peers: Use after free of "peers" section. 3525 - CI: github actions: add weekly h2spec test 3526 - BUG/MEDIUM: mux_h1: Process a new request if we already received it. 3527 - MINOR: build: Fix build in mux_h1 3528 - CLEANUP: remove obsolete comments 3529 - BUG/MEDIUM: dns: improper parsing of aditional records 3530 - MINOR: ssl: skip self issued CA in cert chain for ssl_ctx 3531 - MINOR: listener: add so_name sample fetch 3532 - MEDIUM: stream: support use-server rules with dynamic names 3533 - MINOR: servers: Add a counter for the number of currently used connections. 3534 - MEDIUM: connections: Revamp the way idle connections are killed 3535 - MINOR: cli: add a general purpose pointer in the CLI struct 3536 - MINOR: ssl: add a list of bind_conf in struct crtlist 3537 - REORG: ssl: move SETCERT enum to ssl_sock.h 3538 - BUG/MINOR: ssl: ckch_inst wrongly inserted in crtlist_entry 3539 - REORG: ssl: move some functions above crtlist_load_cert_dir() 3540 - MINOR: ssl: use crtlist_free() upon error in directory loading 3541 - MINOR: ssl: add a list of crtlist_entry in ckch_store 3542 - MINOR: ssl: store a ptr to crtlist in crtlist_entry 3543 - MINOR: ssl/cli: update pointer to store in 'commit ssl cert' 3544 - MEDIUM: ssl/cli: 'add ssl crt-list' command 3545 - REGTEST: ssl/cli: test the 'add ssl crt-list' command 3546 - BUG/MINOR: ssl: entry->ckch_inst not initialized 3547 - REGTEST: ssl/cli: change test type to devel 3548 - REGTEST: make the PROXY TLV validation depend on version 2.2 3549 - CLEANUP: assorted typo fixes in the code and comments 3550 - BUG/MINOR: stats: Fix color of draining servers on stats page 3551 - DOC: internals: Fix spelling errors in filters.txt 3552 - MINOR: connections: Don't mark conn flags 0x00000001 and 0x00000002 as unused. 3553 - REGTEST: make the unique-id test depend on version 2.0 3554 - BUG/MEDIUM: dns: Consider the fact that dns answers are case-insensitive 3555 - MINOR: ssl: split the line parsing of the crt-list 3556 - MINOR: ssl/cli: support filters and options in add ssl crt-list 3557 - MINOR: ssl: add a comment above the ssl_bind_conf keywords 3558 - REGTEST: ssl/cli: tests options and filters w/ add ssl crt-list 3559 - REGTEST: ssl: pollute the crt-list file 3560 - BUG/CRITICAL: hpack: never index a header into the headroom after wrapping 3561 - BUG/MINOR: protocol_buffer: Wrong maximum shifting. 3562 - CLEANUP: src/fd.c: mask setsockopt with DISGUISE 3563 - BUG/MINOR: ssl/cli: initialize fcount int crtlist_entry 3564 - REGTEST: ssl/cli: add other cases of 'add ssl crt-list' 3565 - CLEANUP: assorted typo fixes in the code and comments 3566 - DOC: management: add the new crt-list CLI commands 3567 - BUG/MINOR: ssl/cli: fix spaces in 'show ssl crt-list' 3568 - MINOR: ssl/cli: 'del ssl crt-list' delete an entry 3569 - MINOR: ssl/cli: replace dump/show ssl crt-list by '-n' option 3570 - CI: use better SSL library definition 3571 - CI: travis-ci: enable DEBUG_STRICT=1 for CI builds 3572 - CI: travis-ci: upgrade openssl to 1.1.1f 3573 - MINOR: ssl: improve the errors when a crt can't be open 3574 - CI: cirrus-ci: rename openssl package after it is renamed in FreeBSD 3575 - CI: adopt openssl download script to download all versions 3576 - BUG/MINOR: ssl/cli: lock the ckch structures during crt-list delete 3577 - MINOR: ssl/cli: improve error for bundle in add/del ssl crt-list 3578 - MINOR: ssl/cli: 'del ssl cert' deletes a certificate 3579 - BUG/MINOR: ssl: trailing slashes in directory names wrongly cached 3580 - BUG/MINOR: ssl/cli: memory leak in 'set ssl cert' 3581 - CLEANUP: ssl: use the refcount for the SSL_CTX' 3582 - CLEANUP: ssl/cli: use the list of filters in the crtlist_entry 3583 - BUG/MINOR: ssl: memleak of the struct cert_key_and_chain 3584 - CLEANUP: ssl: remove a commentary in struct ckch_inst 3585 - MINOR: ssl: initialize all list in ckch_inst_new() 3586 - MINOR: ssl: free instances and SNIs with ckch_inst_free() 3587 - MINOR: ssl: replace ckchs_free() by ckch_store_free() 3588 - BUG/MEDIUM: ssl/cli: trying to access to free'd memory 3589 - MINOR: ssl: ckch_store_new() alloc and init a ckch_store 3590 - MINOR: ssl: crtlist_new() alloc and initialize a struct crtlist 3591 - REORG: ssl: move some free/new functions 3592 - MINOR: ssl: crtlist_entry_{new, free} 3593 - BUG/MINOR: ssl: ssl_conf always set to NULL on crt-list parsing 3594 - MINOR: ssl: don't alloc ssl_conf if no option found 3595 - BUG/MINOR: connection: always send address-less LOCAL PROXY connections 3596 - BUG/MINOR: peers: Incomplete peers sections should be validated. 3597 - MINOR: init: report in "haproxy -c" whether there were warnings or not 3598 - MINOR: init: add -dW and "zero-warning" to reject configs with warnings 3599 - MINOR: init: report the compiler version in haproxy -vv 3600 - CLEANUP: assorted typo fixes in the code and comments 3601 - MINOR: init: report the haproxy version and executable path once on errors 3602 - DOC: Make how "option redispatch" works more explicit 3603 - BUILD: Makefile: add linux-musl to TARGET 3604 - CLEANUP: assorted typo fixes in the code and comments 3605 - CLEANUP: http: Fixed small typo in parse_http_return 3606 - DOC: hashing: update link to hashing functions 3607 36082020/03/23 : 2.2-dev5 3609 - CLEANUP: ssl: is_default is a bit in ckch_inst 3610 - BUG/MINOR: ssl/cli: sni_ctx' mustn't always be used as filters 3611 - DOC: ssl: clarify security implications of TLS tickets 3612 - CLEANUP: remove support for Linux i686 vsyscalls 3613 - CLEANUP: drop support for USE_MY_ACCEPT4 3614 - CLEANUP: remove support for USE_MY_EPOLL 3615 - CLEANUP: remove support for USE_MY_SPLICE 3616 - CLEANUP: remove the now unused common/syscall.h 3617 - BUILD: make dladdr1 depend on glibc version and not __USE_GNU 3618 - BUILD: wdt: only test for SI_TKILL when compiled with thread support 3619 - BUILD: Makefile: the compiler-specific flags should all be in SPEC_CFLAGS 3620 - CLEANUP: ssl: separate the directory loading in a new function 3621 - BUG/MINOR: buffers: MT_LIST_DEL_SAFE() expects the temporary pointer. 3622 - BUG/MEDIUM: mt_lists: Make sure we set the deleted element to NULL; 3623 - MINOR: init: move the maxsock calculation code to compute_ideal_maxsock() 3624 - MEDIUM: init: always try to push the FD limit when maxconn is set from -m 3625 - BUG/MAJOR: list: fix invalid element address calculation 3626 - BUILD: stream-int: fix a few includes dependencies 3627 - MINOR: mt_lists: Appease gcc. 3628 - MINOR: lists: Implement function to convert list => mt_list and mt_list => list 3629 - MINOR: servers: Kill priv_conns. 3630 - MINOR: lists: fix indentation. 3631 - BUG/MEDIUM: random: align the state on 2*64 bits for ARM64 3632 - BUG/MEDIUM: connections: Don't assume the connection has a valid session. 3633 - BUG/MEDIUM: pools: Always update free_list in pool_gc(). 3634 - BUG/MINOR: haproxy: always initialize sleeping_thread_mask 3635 - BUG/MINOR: listener/mq: do not dispatch connections to remote threads when stopping 3636 - BUG/MINOR: haproxy/threads: try to make all threads leave together 3637 - Revert "BUILD: travis-ci: enable s390x builds" 3638 - BUILD: travis-ci: enable regular s390x builds 3639 - DOC: proxy_protocol: Reserve TLV type 0x05 as PP2_TYPE_UNIQUE_ID 3640 - MINOR: proxy_protocol: Ingest PP2_TYPE_UNIQUE_ID on incoming connections 3641 - MEDIUM: proxy_protocol: Support sending unique IDs using PPv2 3642 - CLEANUP: connection: Add blank line after declarations in PP handling 3643 - CLEANUP: assorted typo fixes in the code and comments 3644 - CI: add spellcheck github action 3645 - DOC: correct typo in alert message about rspirep 3646 - CI: travis: switch linux builds to clang-9 3647 - MINOR: debug: add a new DISGUISE() macro to pass a value as identity 3648 - MINOR: debug: consume the write() result in BUG_ON() to silence a warning 3649 - MINOR: use DISGUISE() everywhere we deliberately want to ignore a result 3650 - BUILD: pools: silence build warnings with DEBUG_MEMORY_POOLS and DEBUG_UAF 3651 - CLEANUP: connection: Stop directly setting an ist's .ptr 3652 - CI: travis: revert to clang-7 for BoringSSL tests 3653 - BUILD: on ARM, must be linked to libatomic. 3654 - BUILD: makefile: fix regex syntax in ARM platform detection 3655 - BUG/MEDIUM: peers: resync ended with RESYNC_PARTIAL in wrong cases. 3656 - REORG: ssl: move ssl_sock_load_cert() 3657 - MINOR: ssl: pass ckch_inst to ssl_sock_load_ckchs() 3658 - MEDIUM: ssl: allow crt-list caching 3659 - MINOR: ssl: directories are loaded like crt-list 3660 - BUG/MINOR: ssl: can't open directories anymore 3661 - BUG/MEDIUM: spoe: dup agent's engine_id string from trash.area 3662 - MINOR: fd: Use a separate lock for logs instead of abusing the fd lock. 3663 - MINOR: mux_pt: Don't try to remove the connection from the idle list. 3664 - MINOR: ssl/cli: show/dump ssl crt-list 3665 - BUG/MINOR: ssl/cli: free the trash chunk in dump_crtlist 3666 - MEDIUM: fd: Introduce a running mask, and use it instead of the spinlock. 3667 - BUG/MINOR: ssl: memory leak in crtlist_parse_file() 3668 - MINOR: tasks: Provide the tasklet to the callback. 3669 - BUG/MINOR: ssl: memleak of struct crtlist_entry 3670 - BUG/MINOR: pattern: Do not pass len = 0 to calloc() 3671 - BUILD: makefile: fix expression again to detect ARM platform 3672 - CI: travis: re-enable ASAN on clang 3673 - CI: travis: proper group output redirection together with travis_wait 3674 - DOC: assorted typo fixes in the documentation 3675 - MINOR: wdt: Move the definitions of WDTSIG and DEBUGSIG into types/signal.h. 3676 - BUG/MEDIUM: wdt: Don't ignore WDTSIG and DEBUGSIG in __signal_process_queue(). 3677 - MINOR: memory: Change the flush_lock to a spinlock, and don't get it in alloc. 3678 - MINOR: ssl/cli: 'new ssl cert' command 3679 - MINOR: ssl/cli: show certificate status in 'show ssl cert' 3680 - MEDIUM: sessions: Don't be responsible for connections anymore. 3681 - MEDIUM: servers: Split the connections into idle, safe, and available. 3682 - MINOR: fd: Implement fd_takeover(). 3683 - MINOR: connections: Add a new mux method, "takeover". 3684 - MINOR: connections: Make the "list" element a struct mt_list instead of list. 3685 - MINOR: connections: Add a flag to know if we're in the safe or idle list. 3686 - MEDIUM: connections: Attempt to get idle connections from other threads. 3687 - MEDIUM: mux_h1: Implement the takeover() method. 3688 - MEDIUM: mux_h2: Implement the takeover() method. 3689 - MEDIUM: mux_fcgi: Implement the takeover() method. 3690 - MEDIUM: connections: Kill connections even if we are reusing one. 3691 - BUG/MEDIUM: connections: Don't forget to decrement idle connection counters. 3692 - BUG/MINOR: ssl: Do not free garbage pointers on memory allocation failure 3693 - BUG/MINOR: ssl: Correctly add the 1 for the sentinel to the number of elements 3694 - BUG/MINOR: ssl: crtlist_dup_filters() must return NULL with fcount == 0 3695 - BUG/MEDIUM: build: Fix compilation by spelling decl correctly. 3696 - BUILD/MEDIUM: fd: Declare fd_mig_lock as extern. 3697 - CI: run travis-ci builds on push only, skip pull requests 3698 - CI: temporarily disable unstable travis arm64 builds 3699 - BUG/MINOR: ssl/cli: free BIO upon error in 'show ssl cert' 3700 - BUG/MINOR: connections: Make sure we free the connection on failure. 3701 - BUG/MINOR: ssl/cli: fix a potential NULL dereference 3702 - BUG/MEDIUM: h1: Make sure we subscribe before going into idle list. 3703 - BUG/MINOR: connections: Set idle_time before adding to idle list. 3704 - MINOR: muxes: Note that we can't usee a connection when added to the srv idle. 3705 - REGTEST: increase timeouts on the seamless-reload test 3706 - BUG/MINOR: haproxy/threads: close a possible race in soft-stop detection 3707 - CLEANUP: haproxy/threads: don't check global_tasks_mask twice 3708 37092020/03/09 : 2.2-dev4 3710 - MEDIUM: buffer: remove the buffer_wq lock 3711 - MINOR: ssl: move find certificate chain code to its own function 3712 - MINOR: ssl: resolve issuers chain later 3713 - MINOR: ssl: resolve ocsp_issuer later 3714 - MINOR: ssl/cli: "show ssl cert" command should print the "Chain Filename:" 3715 - BUG/MINOR: h2: reject again empty :path pseudo-headers 3716 - MINOR: wdt: always clear sigev_value to make valgrind happy 3717 - MINOR: epoll: always initialize all of epoll_event to please valgrind 3718 - BUG/MINOR: sample: Make sure to return stable IDs in the unique-id fetch 3719 - BUG/MEDIUM: ssl: chain must be initialized with sk_X509_new_null() 3720 - BUILD: cirrus-ci: suppress OS version check when installing packages 3721 - BUG/MINOR: http_ana: make sure redirect flags don't have overlapping bits 3722 - CLEANUP: fd: remove the FD_EV_STATUS aggregate 3723 - CLEANUP: fd: remove some unneeded definitions of FD_EV_* flags 3724 - MINOR: fd: merge the read and write error bits into RW error 3725 - BUG/MINOR: dns: ignore trailing dot 3726 - MINOR: contrib/prometheus-exporter: Add the last heathcheck duration metric 3727 - BUG/MINOR: http-htx: Do case-insensive comparisons on Host header name 3728 - MINOR: mux-h1: Remove useless case-insensitive comparisons 3729 - MINOR: rawsock: always mark the FD not ready when we're certain it happens 3730 - MEDIUM: connection: make the subscribe() call able to wakeup if ready 3731 - MEDIUM: connection: don't stop receiving events in the FD handler 3732 - MEDIUM: mux-h1: do not blindly wake up the tasklet at end of request anymore 3733 - BUG/MINOR: arg: don't reject missing optional args 3734 - MINOR: tools: make sure to correctly check the returned 'ms' in date2std_log 3735 - MINOR: debug: report the task handler's pointer relative to main 3736 - BUG/MEDIUM: debug: make the debug_handler check for the thread in threads_to_dump 3737 - MINOR: haproxy: export main to ease access from debugger 3738 - MINOR: haproxy: export run_poll_loop 3739 - MINOR: task: export run_tasks_from_list 3740 - BUILD: tools: remove obsolete and conflicting trace() from standard.c 3741 - MINOR: tools: add new function dump_addr_and_bytes() 3742 - MINOR: tools: add resolve_sym_name() to resolve function pointers 3743 - MINOR: debug: use resolve_sym_name() to dump task handlers 3744 - MINOR: cli: make "show fd" rely on resolve_sym_name() 3745 - MEDIUM: debug: add support for dumping backtraces of stuck threads 3746 - MINOR: debug: call backtrace() once upon startup 3747 - MINOR: ssl: add "ca-verify-file" directive 3748 - BUG/MINOR: wdt: do not return an error when the watchdog couldn't be enabled 3749 - BUILD: Makefile: include librt before libpthread 3750 - MEDIUM: wdt: fall back to CLOCK_REALTIME if CLOCK_THREAD_CPUTIME is not available 3751 - MINOR: wdt: do not depend on USE_THREAD 3752 - MINOR: debug: report the number of entries in the backtrace 3753 - MINOR: debug: improve backtrace() on aarch64 and possibly other systems 3754 - MINOR: debug: use our own backtrace function on clang+x86_64 3755 - MINOR: debug: dump the whole trace if we can't spot the starting point 3756 - BUILD: tools: unbreak resolve_sym_name() on non-GNU platforms 3757 - BUILD: tools: rely on __ELF__ not USE_DL to enable use of dladdr() 3758 - CLEANUP: contrib/spoa_example: Fix several typos 3759 - BUILD: makefile: do not modify the build options during make reg-tests 3760 - BUG/MEDIUM: connection: stop polling for sending when the event is ready 3761 - MEDIUM: stream-int: make sure to try to immediately validate the connection 3762 - MINOR: tcp/uxst/sockpair: only ask for I/O when really waiting for a connect() 3763 - MEDIUM: connection: only call ->wake() for connect() without I/O 3764 - OPTIM: connection: disable receiving on disabled events when the run queue is too high 3765 - OPTIM: mux-h1: subscribe rather than waking up at a few other places 3766 - REGTEST: Add unique-id reg-test 3767 - MINOR: stream: Add stream_generate_unique_id function 3768 - MINOR: stream: Use stream_generate_unique_id 3769 - BUG/MINOR: connection/debug: do not enforce !event_type on subscribe() anymore 3770 - MINOR: ssl/cli: support crt-list filters 3771 - MINOR: ssl: reach a ckch_store from a sni_ctx 3772 - DOC: fix incorrect indentation of http_auth_* 3773 - BUG/MINOR: ssl-sock: do not return an uninitialized pointer in ckch_inst_sni_ctx_to_sni_filters 3774 - MINOR: debug: add CLI command "debug dev write" to write an arbitrary size 3775 - MINOR: ist: Add `IST_NULL` macro 3776 - MINOR: ist: Add `int isttest(const struct ist)` 3777 - MINOR: ist: Add `struct ist istalloc(size_t)` and `void istfree(struct ist*)` 3778 - CLEANUP: Use `isttest()` and `istfree()` 3779 - MINOR: ist: Add `struct ist istdup(const struct ist)` 3780 - MINOR: proxy: Make `header_unique_id` a `struct ist` 3781 - MEDIUM: stream: Make the `unique_id` member of `struct stream` a `struct ist` 3782 - OPTIM: startup: fast unique_id allocation for acl. 3783 - DOC: configuration.txt: fix various typos 3784 - DOC: assorted typo fixes in the documentation and Makefile 3785 - BUG/MINOR: init: make the automatic maxconn consider the max of soft/hard limits 3786 - BUG/MAJOR: proxy_protocol: Properly validate TLV lengths 3787 - CLEANUP: proxy_protocol: Use `size_t` when parsing TLVs 3788 - MINOR: buf: Add function to insert a string at an absolute offset in a buffer 3789 - MINOR: htx: Add a function to return a block at a specific offset 3790 - MINOR: htx: Use htx_find_offset() to truncate an HTX message 3791 - MINOR: flt_trace: Use htx_find_offset() to get the available payload length 3792 - BUG/MINOR: filters: Use filter offset to decude the amount of forwarded data 3793 - BUG/MINOR: filters: Forward everything if no data filters are called 3794 - BUG/MEDIUM: cache/filters: Fix loop on HTX blocks caching the response payload 3795 - BUG/MEDIUM: compression/filters: Fix loop on HTX blocks compressing the payload 3796 - BUG/MINOR: http-ana: Reset request analysers on a response side error 3797 - BUG/MINOR: lua: Abort when txn:done() is called from a Lua action 3798 - BUG/MINOR: lua: Ignore the reserve to know if a channel is full or not 3799 - MINOR: lua: Add function to know if a channel is a response one 3800 - MINOR: lua: Stop using the lua txn in hlua_http_get_headers() 3801 - MINOR: lua: Stop using the lua txn in hlua_http_rep_hdr() 3802 - MINOR: lua: Stop using lua txn in hlua_http_del_hdr() and hlua_http_add_hdr() 3803 - MINOR: lua: Remove the flag HLUA_TXN_HTTP_RDY 3804 - MINOR: lua: Rename hlua_action_wake_time() to hlua_set_wake_time() 3805 - BUG/MINOR: lua: Init the lua wake_time value before calling a lua function 3806 - BUG/MINOR: http-rules: Return ACT_RET_ABRT to abort a transaction 3807 - BUG/MINOR: http-rules: Preserve FLT_END analyzers on reject action 3808 - BUG/MINOR: http-rules: Fix a typo in the reject action function 3809 - MINOR: cache/filters: Initialize the cache filter when stream is created 3810 - MINOR: compression/filters: Initialize the comp filter when stream is created 3811 - BUG/MINOR: rules: Preserve FLT_END analyzers on silent-drop action 3812 - BUG/MINOR: rules: Return ACT_RET_ABRT when a silent-drop action is executed 3813 - BUG/MINOR: rules: Increment be_counters if backend is assigned for a silent-drop 3814 - BUG/MINOR: http-rules: Abort transaction when a redirect is applied on response 3815 - BUILD: buffer: types/{ring.h,checks.h} should include buf.h, not buffer.h 3816 - BUILD: ssl: include mini-clist.h 3817 - BUILD: global: must not include common/standard.h but only types/freq_ctr.h 3818 - BUILD: freq_ctr: proto/freq_ctr needs to include common/standard.h 3819 - BUILD: listener: types/listener.h must not include standard.h 3820 - BUG/MEDIUM: random: initialize the random pool a bit better 3821 - BUG/MEDIUM: random: implement per-thread and per-process random sequences 3822 - Revert "BUG/MEDIUM: random: implement per-thread and per-process random sequences" 3823 - BUILD: cirrus-ci: get rid of unstable freebsd images 3824 - MINOR: tools: add 64-bit rotate operators 3825 - BUG/MEDIUM: random: implement a thread-safe and process-safe PRNG 3826 - MINOR: backend: use a single call to ha_random32() for the random LB algo 3827 - BUG/MINOR: checks/threads: use ha_random() and not rand() 3828 - MINOR: sample: make all bits random on the rand() sample fetch 3829 - MINOR: tools: add a generic function to generate UUIDs 3830 - DOC: fix typo about no-tls-tickets 3831 - DOC: improve description of no-tls-tickets 3832 - DOC: assorted typo fixes in the documentation 3833 - CLEANUP: remove unused code in 'my_ffsl/my_flsl' functions 3834 38352020/02/25 : 2.2-dev3 3836 - SCRIPTS: announce-release: place the send command in the mail's header 3837 - SCRIPTS: announce-release: allow the user to force to overwrite old files 3838 - SCRIPTS: backport: fix the master branch detection 3839 - BUG/MINOR: http-act: Set stream error flag before returning an error 3840 - BUG/MINOR: http-act: Fix bugs on error path during parsing of return actions 3841 - BUG/MEDIUM: ssl/cli: 'commit ssl cert' wrong SSL_CTX init 3842 - BUG/MEDIUM: tcp-rules: Fix track-sc* actions for L4/L5 TCP rules 3843 - DOC: schematic of the SSL certificates architecture 3844 - BUG/MAJOR: mux-h2: don't wake streams after connection was destroyed 3845 - BUG/MINOR: unix: better catch situations where the unix socket path length is close to the limit 3846 - BUILD: cirrus-ci: switch to "snap" images to unify openssl naming 3847 - BUILD: cirrus-ci: workaround "pkg install" bug 3848 - BUILD: cirrus-ci: add ERR=1 to freebsd builds 3849 - BUG/MINOR: connection: correctly retry I/O on signals 3850 - CLEANUP: mini-clist: simplify nested do { while(1) {} } while (0) 3851 - BUILD: http_act: cast file sizes when reporting file size error 3852 - BUG/MEDIUM: listener: only consider running threads when resuming listeners 3853 - BUG/MINOR: listener: enforce all_threads_mask on bind_thread on init 3854 - BUG/MINOR: tcp: avoid closing fd when socket failed in tcp_bind_listener 3855 - MINOR: build: add aix72-gcc build TARGET and power{8,9} CPUs 3856 - BUILD: travis-ci: no more allowed failures for openssl-1.0.2 3857 - BUILD: travis-ci: harden builds, add ERR=1 (warning ought to be errors) 3858 - BUILD: scripts/build-ssl.sh: use "uname" instead of ${TRAVIS_OS_NAME} 3859 - BUG/MINOR: tcp: don't try to set defaultmss when value is negative 3860 - SCRIPTS: make announce-release executable again 3861 - BUG/MINOR: namespace: avoid closing fd when socket failed in my_socketat 3862 - BUG/MEDIUM: muxes: Use the right argument when calling the destroy method. 3863 - BUG/MINOR: mux-fcgi: Forbid special characters when matching PATH_INFO param 3864 - CLEANUP: ssl: remove unused functions in openssl-compat.h 3865 - MINOR: mux-fcgi: Make the capture of the path-info optional in pathinfo regex 3866 - MINOR: tools: add is_idchar() to tell if a char may belong to an identifier 3867 - MINOR: chunk: implement chunk_strncpy() to copy partial strings 3868 - MINOR: sample/acl: use is_idchar() to locate the fetch/conv name 3869 - MEDIUM: arg: make make_arg_list() stop after its own arguments 3870 - MEDIUM: arg: copy parsed arguments into the trash instead of allocating them 3871 - MEDIUM: arg: make make_arg_list() support quotes in arguments 3872 - MINOR: sample: make sample_parse_expr() able to return an end pointer 3873 - MEDIUM: log-format: make the LF parser aware of sample expressions' end 3874 - BUG/MINOR: arg: report an error if an argument is larger than bufsize 3875 - SCRIPTS: announce-release: use mutt -H instead of -i to include the draft 3876 - BUILD: enable ERR=1 in github cygwin builds 3877 - BUG/MINOR: arg: fix again incorrect argument length check 3878 - MINOR: sample: regsub now supports backreferences 3879 - BUG/MINOR: tools: also accept '+' as a valid character in an identifier 3880 - MINOR: http-htx: Add a function to retrieve the headers size of an HTX message 3881 - MINOR: filters: Forward data only if the last filter forwards something 3882 - BUG/MINOR: filters: Count HTTP headers as filtered data but don't forward them 3883 - BUG/MINOR: http-htx: Don't return error if authority is updated without changes 3884 - BUG/MINOR: stream: Don't incr frontend cum_req counter when stream is closed 3885 - BUG/MINOR: sample: exit regsub() in case of trash allocation error 3886 - MINOR: ssl: add "issuers-chain-path" directive. 3887 - REGTESTS: use "command -v" instead of "which" 3888 - BUG/MINOR: http-ana: Matching on monitor-uri should be case-sensitive 3889 - MINOR: http-ana: Match on the path if the monitor-uri starts by a / 3890 - BUG/MINOR: ssl: Stop passing dynamic strings as format arguments 3891 - BUG/MAJOR: http-ana: Always abort the request when a tarpit is triggered 3892 - BUG/MINOR: mux: do not call conn_xprt_stop_recv() on buffer shortage 3893 - MINOR: checks: do not call conn_xprt_stop_send() anymore 3894 - CLEANUP: epoll: place the struct epoll_event in the stack 3895 - MEDIUM: connection: remove the intermediary polling state from the connection 3896 - MINOR: raw_sock: directly call fd_stop_send() and not conn_xprt_stop_send() 3897 - MINOR: tcp/uxst/sockpair: use fd_want_send() instead of conn_xprt_want_send() 3898 - MINOR: connection: remove the last calls to conn_xprt_{want,stop}_* 3899 - CLEANUP: connection: remove the definitions of conn_xprt_{stop,want}_{send,recv} 3900 - MINOR: connection: introduce a new receive flag: CO_RFL_READ_ONCE 3901 - MINOR: mux-h1: pass CO_RFL_READ_ONCE to the lower layers when relevant 3902 - MINOR: ist: add an iststop() function 3903 - BUG/MINOR: http: http-request replace-path duplicates the query string 3904 - CLEANUP: sample: use iststop instead of a for loop 3905 - BUG/MEDIUM: shctx: make sure to keep all blocks aligned 3906 - MINOR: compiler: move CPU capabilities definition from config.h and complete them 3907 - BUG/MEDIUM: ebtree: don't set attribute packed without unaligned access support 3908 - CLEANUP: http/h1: rely on HA_UNALIGNED_LE instead of checking for CPU families 3909 - BUILD: fix recent build failure on unaligned archs 3910 - MINOR: ssl: load the key from a dedicated file 3911 - BUG/MINOR: ssl: load .key in a directory only after PEM 3912 - MINOR: compiler: drop special cases of likely/unlikely for older compilers 3913 - CLEANUP: conn: Do not pass a pointer to likely 3914 - CLEANUP: net_helper: Do not negate the result of unlikely 3915 - BUILD: remove obsolete support for -mregparm / USE_REGPARM 3916 - CLEANUP: cfgparse: Fix type of second calloc() parameter 3917 - BUILD: ssl: only pass unsigned chars to isspace() 3918 - BUILD: general: always pass unsigned chars to is* functions 3919 - BUG/MINOR: sample: fix the json converter's endian-sensitivity 3920 - BUG/MEDIUM: ssl: fix several bad pointer aliases in a few sample fetch functions 3921 - CLEANUP: fd: use a union in fd_rm_from_fd_list() to shut aliasing warnings 3922 - CLEANUP: cache: use read_u32/write_u32 to access the cache entry's hash 3923 - CLEANUP: stick-tables: use read_u32() to display a node's key 3924 - CLEANUP: sample: use read_u64() in ipmask() to apply an IPv6 mask 3925 - MINOR: pattern: fix all remaining strict aliasing issues 3926 - CLEANUP: lua: fix aliasing issues in the address matching code 3927 - CLEANUP: connection: use read_u32() instead of a cast in the netscaler parser 3928 - BUILD: makefile: re-enable strict aliasing 3929 - BUG/MINOR: connection: make sure to correctly tag local PROXY connections 3930 - MINOR: compiler: add new alignment macros 3931 - BUILD: ebtree: improve architecture-specific alignment 3932 - MINOR: config: mark global.debug as deprecated 3933 - BUILD: travis-ci: enable s390x builds 3934 - MINOR: ssl/cli: 'show ssl cert' displays the chain 3935 - MINOR: ssl/cli: 'show ssl cert'displays the issuer in the chain 3936 - MINOR: ssl/cli: reorder 'show ssl cert' output 3937 - CLEANUP: ssl: move issuer_chain tree and definition 3938 - DOC: proxy-protocol: clarify IPv6 address representation in the spec 3939 39402020/02/07 : 2.2-dev2 3941 - BUILD: CI: temporarily mark openssl-1.0.2 as allowed failure 3942 - MEDIUM: cli: Allow multiple filter entries for "show table" 3943 - BUG/MEDIUM: netscaler: Don't forget to allocate storage for conn->src/dst. 3944 - BUG/MINOR: ssl: ssl_sock_load_pem_into_ckch is not consistent 3945 - BUILD: stick-table: fix build errors introduced by last stick-table change 3946 - BUG/MINOR: cli: Missing arg offset for filter data values. 3947 - MEDIUM: streams: Always create a conn_stream in connect_server(). 3948 - MEDIUM: connections: Get ride of the xprt_done callback. 3949 - CLEANUP: changelog: remove the duplicate entry for 2.2-dev1 3950 - BUILD: CI: move cygwin builds to Github Actions 3951 - MINOR: cli: Report location of errors or any extra data for "show table" 3952 - BUG/MINOR: ssl/cli: free the previous ckch content once a PEM is loaded 3953 - CLEANUP: backend: remove useless test for inexistent connection 3954 - CLEANUP: backend: shut another false null-deref in back_handle_st_con() 3955 - CLEANUP: stats: shut up a wrong null-deref warning from gcc 9.2 3956 - BUG/MINOR: ssl: increment issuer refcount if in chain 3957 - BUG/MINOR: ssl: memory leak w/ the ocsp_issuer 3958 - BUG/MINOR: ssl: typo in previous patch 3959 - BUG/MEDIUM: connections: Set CO_FL_CONNECTED in conn_complete_session(). 3960 - BUG/MINOR: ssl/cli: ocsp_issuer must be set w/ "set ssl cert" 3961 - MEDIUM: connection: remove CO_FL_CONNECTED and only rely on CO_FL_WAIT_* 3962 - BUG/MEDIUM: 0rtt: Only consider the SSL handshake. 3963 - MINOR: stream-int: always report received shutdowns 3964 - MINOR: connection: remove CO_FL_SSL_WAIT_HS from CO_FL_HANDSHAKE 3965 - MEDIUM: connection: use CO_FL_WAIT_XPRT more consistently than L4/L6/HANDSHAKE 3966 - MINOR: connection: remove checks for CO_FL_HANDSHAKE before I/O 3967 - MINOR: connection: do not check for CO_FL_SOCK_RD_SH too early 3968 - MINOR: connection: don't check for CO_FL_SOCK_WR_SH too early in handshakes 3969 - MINOR: raw-sock: always check for CO_FL_SOCK_WR_SH before sending 3970 - MINOR: connection: remove some unneeded checks for CO_FL_SOCK_WR_SH 3971 - BUG/MINOR: stktable: report the current proxy name in error messages 3972 - BUG/MEDIUM: mux-h2: make sure we don't emit TE headers with anything but "trailers" 3973 - MINOR: lua: Add hlua_prepend_path function 3974 - MINOR: lua: Add lua-prepend-path configuration option 3975 - MINOR: lua: Add HLUA_PREPEND_C?PATH build option 3976 - BUILD: cfgparse: silence a bogus gcc warning on 32-bit machines 3977 - BUG/MINOR: http-ana: Increment the backend counters on the backend 3978 - BUG/MINOR: stream: Be sure to have a listener to increment its counters 3979 - BUG/MEDIUM: streams: Move the conn_stream allocation outside #IF USE_OPENSSL. 3980 - REGTESTS: make the set_ssl_cert test require version 2.2 3981 - BUG/MINOR: ssl: Possible memleak when allowing the 0RTT data buffer. 3982 - MINOR: ssl: Remove dead code. 3983 - BUG/MEDIUM: ssl: Don't forget to free ctx->ssl on failure. 3984 - BUG/MEDIUM: stream: Don't install the mux in back_handle_st_con(). 3985 - MEDIUM: streams: Don't close the connection in back_handle_st_con(). 3986 - MEDIUM: streams: Don't close the connection in back_handle_st_rdy(). 3987 - BUILD: CI: disable slow regtests on Travis 3988 - BUG/MINOR: tcpchecks: fix the connect() flags regarding delayed ack 3989 - BUG/MINOR: http-rules: Always init log-format expr for common HTTP actions 3990 - BUG/MINOR: connection: fix ip6 dst_port copy in make_proxy_line_v2 3991 - BUG/MINOR: dns: allow 63 char in hostname 3992 - MINOR: proxy: clarify number of connections log when stopping 3993 - DOC: word converter ignores delimiters at the start or end of input string 3994 - MEDIUM: raw-sock: remove obsolete calls to fd_{cant,cond,done}_{send,recv} 3995 - BUG/MINOR: ssl/cli: fix unused variable with openssl < 1.0.2 3996 - MEDIUM: pipe/thread: reduce the locking overhead 3997 - MEDIUM: pipe/thread: maintain a per-thread local cache of recently used pipes 3998 - BUG/MEDIUM: pipe/thread: fix atomicity of pipe counters 3999 - MINOR: tasks: move the list walking code to its own function 4000 - MEDIUM: tasks: implement 3 different tasklet classes with their own queues 4001 - MEDIUM: tasks: automatically requeue into the bulk queue an already running tasklet 4002 - OPTIM: task: refine task classes default CPU bandwidth ratios 4003 - BUG/MEDIUM: connections: Don't forget to unlock when killing a connection. 4004 - MINOR: task: permanently flag tasklets waking themselves up 4005 - MINOR: task: make sched->current also reflect tasklets 4006 - MINOR: task: detect self-wakeups on tl==sched->current instead of TASK_RUNNING 4007 - OPTIM: task: readjust CPU bandwidth distribution since last update 4008 - MINOR: task: don't set TASK_RUNNING on tasklets 4009 - BUG/MEDIUM: memory_pool: Update the seq number in pool_flush(). 4010 - MINOR: memory: Only init the pool spinlock once. 4011 - BUG/MEDIUM: memory: Add a rwlock before freeing memory. 4012 - BUG/MAJOR: memory: Don't forget to unlock the rwlock if the pool is empty. 4013 - MINOR: ssl: ssl-load-extra-files configure loading of files 4014 - SCRIPTS: add a new "backport" script to simplify long series of backports 4015 - BUG/MINOR: ssl: we may only ignore the first 64 errors 4016 - SCRIPTS: use /usr/bin/env bash instead of /bin/bash for scripts 4017 - BUG/MINOR: ssl: clear the SSL errors on DH loading failure 4018 - CLEANUP: hpack: remove a redundant test in the decoder 4019 - CLEANUP: peers: Remove unused static function `free_dcache` 4020 - CLEANUP: peers: Remove unused static function `free_dcache_tx` 4021 - CONTRIB: debug: add missing flags SF_HTX and SF_MUX 4022 - CONTRIB: debug: add the possibility to decode the value as certain types only 4023 - CONTRIB: debug: support reporting multiple values at once 4024 - BUG/MINOR: http-act: Use the good message to test strict rewritting mode 4025 - MINOR: global: Set default tune.maxrewrite value during global structure init 4026 - MINOR: http-rules: Set SF_ERR_PRXCOND termination flag when a header rewrite fails 4027 - MINOR: http-htx: Emit a warning if an error file runs over the buffer's reserve 4028 - MINOR: htx: Add a function to append an HTX message to another one 4029 - MINOR: htx/channel: Add a function to copy an HTX message in a channel's buffer 4030 - BUG/MINOR: http-ana: Don't overwrite outgoing data when an error is reported 4031 - MINOR: dns: Dynamically allocate dns options to reduce the act_rule size 4032 - MINOR: dns: Add function to release memory allocated for a do-resolve rule 4033 - BUG/MINOR: http-ana: Reset HTX first index when HAPRoxy sends a response 4034 - BUG/MINOR: http-ana: Set HTX_FL_PROXY_RESP flag if a server perform a redirect 4035 - MINOR: http-rules: Add a flag on redirect rules to know the rule direction 4036 - MINOR: http-rules: Handle the rule direction when a redirect is evaluated 4037 - MINOR: http-ana: Rely on http_reply_and_close() to handle server error 4038 - MINOR: http-ana: Add a function for forward internal responses 4039 - MINOR: http-ana/http-rules: Use dedicated function to forward internal responses 4040 - MEDIUM: http: Add a ruleset evaluated on all responses just before forwarding 4041 - MEDIUM: http-rules: Add the return action to HTTP rules 4042 - MEDIUM: http-rules: Support extra headers for HTTP return actions 4043 - CLEANUP: lua: Remove consistency check for sample fetches and actions 4044 - BUG/MINOR: http-ana: Increment failed_resp counters on invalid response 4045 - MINOR: lua: Get the action return code on the stack when an action finishes 4046 - MINOR: lua: Create the global 'act' object to register all action return codes 4047 - MINOR: lua: Add act:wake_time() function to set a timeout when an action yields 4048 - MEDIUM: lua: Add ability for actions to intercept HTTP messages 4049 - REGTESTS: Add reg tests for the HTTP return action 4050 - REGTESTS: Add a reg test for http-after-response rulesets 4051 - BUILD: lua: silence a warning on systems where longjmp is not marked as noreturn 4052 - MINOR: acl: Warn when an ACL is named 'or' 4053 - CONTRIB: debug: also support reading values from stdin 4054 - SCRIPTS: backport: use short revs and resolve the initial commit 4055 - BUG/MINOR: acl: Fix type of log message when an acl is named 'or' 4056 40572020/01/22 : 2.2-dev1 4058 - DOC: this is development again 4059 - MINOR: version: this is development again, update the status 4060 - SCRIPTS: update create-release to fix the changelog on new branches 4061 - CLEANUP: ssl: Clean up error handling 4062 - BUG/MINOR: contrib/prometheus-exporter: decode parameter and value only 4063 - BUG/MINOR: h1: Don't test the host header during response parsing 4064 - BUILD/MINOR: trace: fix use of long type in a few printf format strings 4065 - DOC: Clarify behavior of server maxconn in HTTP mode 4066 - MINOR: ssl: deduplicate ca-file 4067 - MINOR: ssl: compute ca-list from deduplicate ca-file 4068 - MINOR: ssl: deduplicate crl-file 4069 - CLEANUP: dns: resolution can never be null 4070 - BUG/MINOR: http-htx: Don't make http_find_header() fail if the value is empty 4071 - DOC: ssl/cli: set/commit/abort ssl cert 4072 - BUG/MINOR: ssl: fix SSL_CTX_set1_chain compatibility for openssl < 1.0.2 4073 - BUG/MINOR: fcgi-app: Make the directive pass-header case insensitive 4074 - BUG/MINOR: stats: Fix HTML output for the frontends heading 4075 - BUG/MINOR: ssl: fix X509 compatibility for openssl < 1.1.0 4076 - DOC: clarify matching strings on binary fetches 4077 - DOC: Fix ordered list in summary 4078 - DOC: move the "group" keyword at the right place 4079 - MEDIUM: init: prevent process and thread creation at runtime 4080 - BUG/MINOR: ssl/cli: 'ssl cert' cmd only usable w/ admin rights 4081 - BUG/MEDIUM: stream-int: don't subscribed for recv when we're trying to flush data 4082 - BUG/MINOR: stream-int: avoid calling rcv_buf() when splicing is still possible 4083 - BUG/MINOR: ssl/cli: don't overwrite the filters variable 4084 - BUG/MEDIUM: listener/thread: fix a race when pausing a listener 4085 - BUG/MINOR: ssl: certificate choice can be unexpected with openssl >= 1.1.1 4086 - BUG/MEDIUM: mux-h1: Never reuse H1 connection if a shutw is pending 4087 - BUG/MINOR: mux-h1: Don't rely on CO_FL_SOCK_RD_SH to set H1C_F_CS_SHUTDOWN 4088 - BUG/MINOR: mux-h1: Fix conditions to know whether or not we may receive data 4089 - BUG/MEDIUM: tasks: Make sure we switch wait queues in task_set_affinity(). 4090 - BUG/MEDIUM: checks: Make sure we set the task affinity just before connecting. 4091 - MINOR: debug: replace popen() with pipe+fork() in "debug dev exec" 4092 - MEDIUM: init: set NO_NEW_PRIVS by default when supported 4093 - BUG/MINOR: mux-h1: Be sure to set CS_FL_WANT_ROOM when EOM can't be added 4094 - BUG/MEDIUM: mux-fcgi: Handle cases where the HTX EOM block cannot be inserted 4095 - BUG/MINOR: proxy: make soft_stop() also close FDs in LI_PAUSED state 4096 - BUG/MINOR: listener/threads: always use atomic ops to clear the FD events 4097 - BUG/MINOR: listener: also clear the error flag on a paused listener 4098 - BUG/MEDIUM: listener/threads: fix a remaining race in the listener's accept() 4099 - MINOR: listener: make the wait paths cleaner and more reliable 4100 - MINOR: listener: split dequeue_all_listener() in two 4101 - REORG: listener: move the global listener queue code to listener.c 4102 - DOC: document the listener state transitions 4103 - BUG/MEDIUM: kqueue: Make sure we report read events even when no data. 4104 - BUG/MAJOR: dns: add minimalist error processing on the Rx path 4105 - BUG/MEDIUM: proto_udp/threads: recv() and send() must not be exclusive. 4106 - DOC: listeners: add a few missing transitions 4107 - BUG/MINOR: tasks: only requeue a task if it was already in the queue 4108 - MINOR: tasks: split wake_expired_tasks() in two parts to avoid useless wakeups 4109 - DOC: proxies: HAProxy only supports 3 connection modes 4110 - DOC: remove references to the outdated architecture.txt 4111 - BUG/MINOR: log: fix minor resource leaks on logformat error path 4112 - BUG/MINOR: mworker: properly pass SIGTTOU/SIGTTIN to workers 4113 - BUG/MINOR: listener: do not immediately resume on transient error 4114 - BUG/MINOR: server: make "agent-addr" work on default-server line 4115 - BUG/MINOR: listener: fix off-by-one in state name check 4116 - BUILD/MINOR: unix sockets: silence an absurd gcc warning about strncpy() 4117 - MEDIUM: h1-htx: Add HTX EOM block when the message is in H1_MSG_DONE state 4118 - MINOR: http-htx: Add some htx sample fetches for debugging purpose 4119 - REGTEST: Add an HTX reg-test to check an edge case 4120 - DOC: clarify the fact that replace-uri works on a full URI 4121 - BUG/MINOR: sample: fix the closing bracket and LF in the debug converter 4122 - BUG/MINOR: sample: always check converters' arguments 4123 - MINOR: sample: Validate the number of bits for the sha2 converter 4124 - BUG/MEDIUM: ssl: Don't set the max early data we can receive too early. 4125 - MINOR: ssl/cli: 'show ssl cert' give information on the certificates 4126 - BUG/MINOR: ssl/cli: fix build for openssl < 1.0.2 4127 - MINOR: debug: support logging to various sinks 4128 - MINOR: http: add a new "replace-path" action 4129 - REGTEST: ssl: test the "set ssl cert" CLI command 4130 - REGTEST: run-regtests: implement #REQUIRE_BINARIES 4131 - MINOR: task: only check TASK_WOKEN_ANY to decide to requeue a task 4132 - BUG/MAJOR: task: add a new TASK_SHARED_WQ flag to fix foreing requeuing 4133 - BUG/MEDIUM: ssl: Revamp the way early data are handled. 4134 - MINOR: fd/threads: make _GET_NEXT()/_GET_PREV() use the volatile attribute 4135 - BUG/MEDIUM: fd/threads: fix a concurrency issue between add and rm on the same fd 4136 - REGTEST: make the "set ssl cert" require version 2.1 4137 - BUG/MINOR: ssl: openssl-compat: Fix getm_ defines 4138 - BUG/MEDIUM: state-file: do not allocate a full buffer for each server entry 4139 - BUG/MINOR: state-file: do not store duplicates in the global tree 4140 - BUG/MINOR: state-file: do not leak memory on parse errors 4141 - BUG/MAJOR: mux-h1: Don't pretend the input channel's buffer is full if empty 4142 - BUG/MEDIUM: stream: Be sure to never assign a TCP backend to an HTX stream 4143 - BUILD: ssl: improve SSL_CTX_set_ecdh_auto compatibility 4144 - BUILD: travis-ci: link with ssl libraries using rpath instead of LD_LIBRARY_PATH/DYLD_LIBRARY_PATH 4145 - BUILD: travis-ci: reenable address sanitizer for clang builds 4146 - BUG/MINOR: checks: refine which errno values are really errors. 4147 - BUG/MINOR: connection: only wake send/recv callbacks if the FD is active 4148 - CLEANUP: connection: conn->xprt is never NULL 4149 - MINOR: pollers: add a new flag to indicate pollers reporting ERR & HUP 4150 - MEDIUM: tcp: make tcp_connect_probe() consider ERR/HUP 4151 - REORG: connection: move tcp_connect_probe() to conn_fd_check() 4152 - MINOR: connection: check for connection validation earlier 4153 - MINOR: connection: remove the double test on xprt_done_cb() 4154 - CLEANUP: connection: merge CO_FL_NOTIFY_DATA and CO_FL_NOTIFY_DONE 4155 - MINOR: poller: do not call the IO handler if the FD is not active 4156 - OPTIM: epoll: always poll for recv if neither active nor ready 4157 - OPTIM: polling: do not create update entries for FD removal 4158 - BUG/MEDIUM: checks: Only attempt to do handshakes if the connection is ready. 4159 - BUG/MEDIUM: connections: Hold the lock when wanting to kill a connection. 4160 - BUILD: CI: modernize cirrus-ci 4161 - MINOR: config: disable busy polling on old processes 4162 - MINOR: ssl: Remove unused variable "need_out". 4163 - BUG/MINOR: h1: Report the right error position when a header value is invalid 4164 - BUG/MINOR: proxy: Fix input data copy when an error is captured 4165 - BUG/MEDIUM: http-ana: Truncate the response when a redirect rule is applied 4166 - BUG/MINOR: channel: inject output data at the end of output 4167 - BUG/MEDIUM: session: do not report a failure when rejecting a session 4168 - MEDIUM: dns: implement synchronous send 4169 - MINOR: raw_sock: make sure to disable polling once everything is sent 4170 - MINOR: http: Add 410 to http-request deny 4171 - MINOR: http: Add 404 to http-request deny 4172 - CLEANUP: mux-h2: remove unused goto "out_free_h2s" 4173 - BUILD: cirrus-ci: choose proper openssl package name 4174 - BUG/MAJOR: listener: do not schedule a task-less proxy 4175 - CLEANUP: server: remove unused err section in server_finalize_init 4176 - REGTEST: set_ssl_cert.vtc: replace "echo" with "printf" 4177 - BUG/MINOR: stream-int: Don't trigger L7 retry if max retries is already reached 4178 - BUG/MEDIUM: tasks: Use the MT macros in tasklet_free(). 4179 - BUG/MINOR: mux-h2: use a safe list_for_each_entry in h2_send() 4180 - BUG/MEDIUM: mux-h2: fix missing test on sending_list in previous patch 4181 - CLEANUP: ssl: remove opendir call in ssl_sock_load_cert 4182 - MEDIUM: lua: don't call the GC as often when dealing with outgoing connections 4183 - BUG/MEDIUM: mux-h2: don't stop sending when crossing a buffer boundary 4184 - BUG/MINOR: cli/mworker: can't start haproxy with 2 programs 4185 - REGTEST: mcli/mcli_start_progs: start 2 programs 4186 - BUG/MEDIUM: mworker: remain in mworker mode during reload 4187 - DOC: clarify crt-base usage 4188 - CLEANUP: compression: remove unused deinit_comp_ctx section 4189 - BUG/MEDIUM: mux_h1: Don't call h1_send if we subscribed(). 4190 - BUG/MEDIUM: raw_sock: Make sur the fd and conn are sync. 4191 - CLEANUP: proxy: simplify proxy_parse_rate_limit proxy checks 4192 - BUG/MAJOR: hashes: fix the signedness of the hash inputs 4193 - REGTEST: add sample_fetches/hashes.vtc to validate hashes 4194 - BUG/MEDIUM: cli: _getsocks must send the peers sockets 4195 - CLEANUP: cli: deduplicate the code in _getsocks 4196 - BUG/MINOR: stream: don't mistake match rules for store-request rules 4197 - BUG/MEDIUM: connection: add a mux flag to indicate splice usability 4198 - BUG/MINOR: pattern: handle errors from fgets when trying to load patterns 4199 - MINOR: connection: move the CO_FL_WAIT_ROOM cleanup to the reader only 4200 - MINOR: stream-int: remove dependency on CO_FL_WAIT_ROOM for rcv_buf() 4201 - MEDIUM: connection: get rid of CO_FL_CURR_* flags 4202 - BUILD: pattern: include errno.h 4203 - MEDIUM: mux-h2: do not try to stop sending streams on blocked mux 4204 - MEDIUM: mux-fcgi: do not try to stop sending streams on blocked mux 4205 - MEDIUM: mux-h2: do not make an h2s subscribe to itself on deferred shut 4206 - MEDIUM: mux-fcgi: do not make an fstrm subscribe to itself on deferred shut 4207 - REORG: stream/backend: move backend-specific stuff to backend.c 4208 - MEDIUM: backend: move the connection finalization step to back_handle_st_con() 4209 - MEDIUM: connection: merge the send_wait and recv_wait entries 4210 - MEDIUM: xprt: merge recv_wait and send_wait in xprt_handshake 4211 - MEDIUM: ssl: merge recv_wait and send_wait in ssl_sock 4212 - MEDIUM: mux-h1: merge recv_wait and send_wait 4213 - MEDIUM: mux-h2: merge recv_wait and send_wait event notifications 4214 - MEDIUM: mux-fcgi: merge recv_wait and send_wait event notifications 4215 - MINOR: connection: make the last arg of subscribe() a struct wait_event* 4216 - MINOR: ssl: Add support for returning the dn samples from ssl_(c|f)_(i|s)_dn in LDAP v3 (RFC2253) format. 4217 - DOC: Fix copy and paste mistake in http-response replace-value doc 4218 - BUG/MINOR: cache: Fix leak of cache name in error path 4219 - BUG/MINOR: dns: Make dns_query_id_seed unsigned 4220 - BUG/MINOR: 51d: Fix bug when HTX is enabled 4221 - MINOR: http-htx: Move htx sample fetches in the scope "internal" 4222 - MINOR: http-htx: Rename 'internal.htx_blk.val' to 'internal.htx_blk.data' 4223 - MINOR: http-htx: Make 'internal.htx_blk_data' return a binary string 4224 - DOC: Add a section to document the internal sample fetches 4225 - MINOR: mux-h1: Inherit send flags from the upper layer 4226 - MINOR: contrib/prometheus-exporter: Add heathcheck status/code in server metrics 4227 - BUG/MINOR: http-ana/filters: Wait end of the http_end callback for all filters 4228 - BUG/MINOR: http-rules: Remove buggy deinit functions for HTTP rules 4229 - BUG/MINOR: stick-table: Use MAX_SESS_STKCTR as the max track ID during parsing 4230 - MEDIUM: http-rules: Register an action keyword for all http rules 4231 - MINOR: tcp-rules: Always set from which ruleset a rule comes from 4232 - MINOR: actions: Use ACT_RET_CONT code to ignore an error from a custom action 4233 - MINOR: tcp-rules: Kill connections when custom actions return ACT_RET_ERR 4234 - MINOR: http-rules: Return an error when custom actions return ACT_RET_ERR 4235 - MINOR: counters: Add a counter to report internal processing errors 4236 - MEDIUM: http-ana: Properly handle internal processing errors 4237 - MINOR: http-rules: Add a rule result to report internal error 4238 - MINOR: http-rules: Handle internal errors during HTTP rules evaluation 4239 - MINOR: http-rules: Add more return codes to let custom actions act as normal ones 4240 - MINOR: tcp-rules: Handle denied/aborted/invalid connections from TCP rules 4241 - MINOR: http-rules: Handle denied/aborted/invalid connections from HTTP rules 4242 - MINOR: stats: Report internal errors in the proxies/listeners/servers stats 4243 - MINOR: contrib/prometheus-exporter: Export internal errors per proxy/server 4244 - MINOR: counters: Remove failed_secu counter and use denied_resp instead 4245 - MINOR: counters: Review conditions to increment counters from analysers 4246 - MINOR: http-ana: Add a txn flag to support soft/strict message rewrites 4247 - MINOR: http-rules: Handle all message rewrites the same way 4248 - MINOR: http-rules: Add a rule to enable or disable the strict rewriting mode 4249 - MEDIUM: http-rules: Enable the strict rewriting mode by default 4250 - REGTEST: Fix format of set-uri HTTP request rule in h1or2_to_h1c.vtc 4251 - MINOR: actions: Add a function pointer to release args used by actions 4252 - MINOR: actions: Regroup some info about HTTP rules in the same struct 4253 - MINOR: http-rules/tcp-rules: Call the defined action function first if defined 4254 - MINOR: actions: Rename the act_flag enum into act_opt 4255 - MINOR: actions: Add flags to configure the action behaviour 4256 - MINOR: actions: Use an integer to set the action type 4257 - MINOR: http-rules: Use a specific action type for some custom HTTP actions 4258 - MINOR: http-rules: Make replace-header and replace-value custom actions 4259 - MINOR: http-rules: Make set-header and add-header custom actions 4260 - MINOR: http-rules: Make set/del-map and add/del-acl custom actions 4261 - MINOR: http-rules: Group all processing of early-hint rule in its case clause 4262 - MEDIUM: http-rules: Make early-hint custom actions 4263 - MINOR: http-rule/tcp-rules: Make track-sc* custom actions 4264 - MINOR: tcp-rules: Make tcp-request capture a custom action 4265 - MINOR: http-rules: Add release functions for existing HTTP actions 4266 - BUG/MINOR: http-rules: Fix memory releases on error path during action parsing 4267 - MINOR: tcp-rules: Add release functions for existing TCP actions 4268 - BUG/MINOR: tcp-rules: Fix memory releases on error path during action parsing 4269 - MINOR: http-htx: Add functions to read a raw error file and convert it in HTX 4270 - MINOR: http-htx: Add functions to create HTX redirect message 4271 - MINOR: config: Use dedicated function to parse proxy's errorfiles 4272 - MINOR: config: Use dedicated function to parse proxy's errorloc 4273 - MEDIUM: http-htx/proxy: Use a global and centralized storage for HTTP error messages 4274 - MINOR: proxy: Register keywords to parse errorfile and errorloc directives 4275 - MINOR: http-htx: Add a new section to create groups of custom HTTP errors 4276 - MEDIUM: proxy: Add a directive to reference an http-errors section in a proxy 4277 - MINOR: http-rules: Update txn flags and status when a deny rule is executed 4278 - MINOR: http-rules: Support an optional status on deny rules for http reponses 4279 - MINOR: http-rules: Use same function to parse request and response deny actions 4280 - MINOR: http-ana: Add an error message in the txn and send it when defined 4281 - MEDIUM: http-rules: Support an optional error message in http deny rules 4282 - REGTEST: Add a strict rewriting mode reg test 4283 - REGEST: Add reg tests about error files 4284 - MINOR: ssl: accept 'verify' bind option with 'set ssl cert' 4285 - BUG/MINOR: ssl: ssl_sock_load_ocsp_response_from_file memory leak 4286 - BUG/MINOR: ssl: ssl_sock_load_issuer_file_into_ckch memory leak 4287 - BUG/MINOR: ssl: ssl_sock_load_sctl_from_file memory leak 4288 - BUG/MINOR: http_htx: Fix some leaks on error path when error files are loaded 4289 - CLEANUP: http-ana: Remove useless test on txn when the error message is retrieved 4290 - BUILD: CI: introduce ARM64 builds 4291 - BUILD: ssl: more elegant anti-replay feature presence check 4292 - MINOR: proxy/http-ana: Add support of extra attributes for the cookie directive 4293 - MEDIUM: dns: use Additional records from SRV responses 4294 - CLEANUP: Consistently `unsigned int` for bitfields 4295 - CLEANUP: pattern: remove the pat_time definition 4296 - BUG/MINOR: http_act: don't check capture id in backend 4297 - BUG/MINOR: ssl: fix build on development versions of openssl-1.1.x 4298 42992019/11/25 : 2.2-dev0 4300 - exact copy of 2.1.0 4301 43022019/11/25 : 2.1.0 4303 - BUG/MINOR: init: fix set-dumpable when using uid/gid 4304 - MINOR: init: avoid code duplication while setting identify 4305 - BUG/MINOR: ssl: ssl_pkey_info_index ex_data can store a dereferenced pointer 4306 - BUG/MINOR: ssl: fix crt-list neg filter for openssl < 1.1.1 4307 - MINOR: peers: Alway show the table info for disconnected peers. 4308 - MINOR: peers: Add TX/RX heartbeat counters. 4309 - MINOR: peers: Add debugging information to "show peers". 4310 - BUG/MINOR: peers: Wrong null "server_name" data field handling. 4311 - MINOR: ssl/cli: 'abort ssl cert' deletes an on-going transaction 4312 - BUG/MEDIUM: mworker: don't fill the -sf argument with -1 during the reexec 4313 - BUG/MINOR: peers: "peer alive" flag not reset when deconnecting. 4314 - BUILD/MINOR: ssl: fix compiler warning about useless statement 4315 - BUG/MEDIUM: stream-int: Don't loose events on the CS when an EOS is reported 4316 - MINOR: contrib/prometheus-exporter: filter exported metrics by scope 4317 - MINOR: contrib/prometheus-exporter: Add a param to ignore servers in maintenance 4318 - BUILD: debug: Avoid warnings in dev mode with -02 because of some BUG_ON tests 4319 - BUG/MINOR: mux-h1: Fix tunnel mode detection on the response path 4320 - BUG/MINOR: http-ana: Properly catch aborts during the payload forwarding 4321 - DOC: Update http-buffer-request description to remove the part about chunks 4322 - BUG/MINOR: stream-int: Fix si_cs_recv() return value 4323 - DOC: internal: document the init calls 4324 - MEDIUM: dns: Add resolve-opts "ignore-weight" 4325 - MINOR: ssl: ssl_sock_prepare_ctx() return an error code 4326 - MEDIUM: ssl/cli: apply SSL configuration on SSL_CTX during commit 4327 - MINOR: ssl/cli: display warning during 'commit ssl cert' 4328 - MINOR: version: report the version status in "haproxy -v" 4329 - MINOR: version: emit the link to the known bugs in output of "haproxy -v" 4330 - DOC: Add documentation about the use-service action 4331 - MINOR: ssl: fix possible null dereference in error handling 4332 - BUG/MINOR: ssl: fix curve setup with LibreSSL 4333 - BUG/MINOR: ssl: Stop passing dynamic strings as format arguments 4334 - CLEANUP: ssl: check if a transaction exists once before setting it 4335 - BUG/MINOR: cli: fix out of bounds in -S parser 4336 - MINOR: ist: add ist_find_ctl() 4337 - BUG/MAJOR: h2: reject header values containing invalid chars 4338 - BUG/MAJOR: h2: make header field name filtering stronger 4339 - BUG/MAJOR: mux-h2: don't try to decode a response HEADERS frame in idle state 4340 - MINOR: h2: add a function to report H2 error codes as strings 4341 - MINOR: mux-h2/trace: report the connection and/or stream error code 4342 - SCRIPTS: create-release: show the correct origin name in suggested commands 4343 - SCRIPTS: git-show-backports: add "-s" to proposed cherry-pick commands 4344 - BUG/MEDIUM: trace: fix a typo causing an incorrect startup error 4345 - BUILD: reorder the objects in the makefile 4346 - DOC: mention in INSTALL haproxy 2.1 is a stable stable version 4347 - MINOR: version: indicate that this version is stable 4348 43492019/11/15 : 2.1-dev5 4350 - BUG/MEDIUM: ssl/cli: don't alloc path when cert not found 4351 - BUG/MINOR: ssl/cli: unable to update a certificate without bundle extension 4352 - BUG/MINOR: ssl/cli: fix an error when a file is not found 4353 - MINOR: ssl/cli: replace the default_ctx during 'commit ssl cert' 4354 - DOC: fix date and http_date keywords syntax 4355 - MINOR: peers: Add "log" directive to "peers" section. 4356 - BUG/MEDIUM: mux-h1: Disable splicing for chunked messages 4357 - BUG/MEDIUM: stream: Be sure to support splicing at the mux level to enable it 4358 - MINOR: flt_trace: Rename macros to print trace messages 4359 - MINOR: trace: Add a set of macros to trace events if HA is compiled with debug 4360 - MEDIUM: stream/trace: Register a new trace source with its events 4361 - MINOR: doc: http-reuse connection pool fix 4362 - BUG/MEDIUM: stream: Be sure to release allocated captures for TCP streams 4363 - MINOR: http-ana: Remove the unused function http_reset_txn() 4364 - BUG/MINOR: action: do-resolve now use cached response 4365 - BUG: dns: timeout resolve not applied for valid resolutions 4366 - DOC: management: fix typo on "cache_lookups" stats output 4367 - BUG/MINOR: stream: init variables when the list is empty 4368 - BUG/MEDIUM: tasks: Make tasklet_remove_from_tasklet_list() no matter the tasklet. 4369 - BUG/MINOR: queue/threads: make the queue unlinking atomic 4370 - BUG/MEDIUM: Make sure we leave the session list in session_free(). 4371 - CLEANUP: session: slightly simplify idle connection cleanup logic 4372 - MINOR: memory: also poison the area on freeing 4373 - CLEANUP: cli: use srv_shutdown_streams() instead of open-coding it 4374 - CLEANUP: stats: use srv_shutdown_streams() instead of open-coding it 4375 - BUG/MEDIUM: listeners: always pause a listener on out-of-resource condition 4376 - BUILD: contrib/da: remove an "unused" warning 4377 - BUG/MEDIUM: filters: Don't call TCP callbacks for HTX streams 4378 - MEDIUM: filters: Adapt filters API to allow again TCP filtering on HTX streams 4379 - MINOR: freq_ctr: Make the sliding window sums thread-safe 4380 - MINOR: stream: Remove the lock on the proxy to update time stats 4381 - MINOR: counters: Add fields to store the max observed for {q,c,d,t}_time 4382 - MINOR: stats: Report max times in addition of the averages for sessions 4383 - MINOR: contrib/prometheus-exporter: Report metrics about max times for sessions 4384 - BUG/MINOR: contrib/prometheus-exporter: Rename some metrics 4385 - MINOR: contrib/prometheus-exporter: report the number of idle conns per server 4386 - DOC: Add missing stats fields in the management manual 4387 - BUG/MINOR: mux-h1: Properly catch parsing errors on payload and trailers 4388 - BUG/MINOR: mux-h1: Don't set CS_FL_EOS on a read0 when receiving data to pipe 4389 - MINOR: mux-h1: Set EOI on the conn-stream when EOS is reported in TUNNEL state 4390 - MINOR: sink: Set the default max length for a message to BUFSIZE 4391 - MINOR: ring: make the parse function automatically set the handler/release 4392 - BUG/MINOR: log: make "show startup-log" use a ring buffer instead 4393 - MINOR: stick-table: allow sc-set-gpt0 to set value from an expression 4394 43952019/11/03 : 2.1-dev4 4396 - BUG/MINOR: cli: don't call the kw->io_release if kw->parse failed 4397 - BUG/MINOR: mux-h2: Don't pretend mux buffers aren't full anymore if nothing sent 4398 - BUG/MAJOR: stream-int: Don't receive data from mux until SI_ST_EST is reached 4399 - DOC: remove obsolete section about header manipulation 4400 - BUG/MINOR: ssl/cli: cleanup on cli_parse_set_cert error 4401 - MINOR: ssl/cli: rework the 'set ssl cert' IO handler 4402 - BUILD: CI: comment out cygwin build, upgrade various ssl libraries 4403 - DOC: Improve documentation of http-re(quest|sponse) replace-(header|value|uri) 4404 - BUILD/MINOR: tools: shut up the format truncation warning in get_gmt_offset() 4405 - BUG/MINOR: spoe: fix off-by-one length in UUID format string 4406 - BUILD/MINOR: ssl: shut up a build warning about format truncation 4407 - BUILD: do not disable -Wformat-truncation anymore 4408 - MINOR: chunk: add chunk_istcat() to concatenate an ist after a chunk 4409 - Revert "MINOR: istbuf: add b_fromist() to make a buffer from an ist" 4410 - MINOR: mux: Add a new method to get informations about a mux. 4411 - BUG/MEDIUM: stream_interface: Only use SI_ST_RDY when the mux is ready. 4412 - BUG/MEDIUM: servers: Only set SF_SRV_REUSED if the connection if fully ready. 4413 - MINOR: doc: fix busy-polling performance reference 4414 - MINOR: config: allow no set-dumpable config option 4415 - MINOR: init: always fail when setrlimit fails 4416 - MINOR: ssl/cli: rework 'set ssl cert' as 'set/commit' 4417 - CLEANUP: ssl/cli: remove leftovers of bundle/certs (it < 2) 4418 - REGTEST: vtest can now enable mcli with its own flag 4419 - BUG/MINOR: config: Update cookie domain warn to RFC6265 4420 - MINOR: sample: add us/ms support to date/http_date 4421 - BUG/MINOR: ssl/cli: check trash allocation in cli_io_handler_commit_cert() 4422 - BUG/MEDIUM: mux-h2: report no available stream on a connection having errors 4423 - BUG/MEDIUM: mux-h2: immediately remove a failed connection from the idle list 4424 - BUG/MEDIUM: mux-h2: immediately report connection errors on streams 4425 - BUG/MINOR: stats: properly check the path and not the whole URI 4426 - BUG/MINOR: ssl: segfault in cli_parse_set_cert with old openssl/boringssl 4427 - BUG/MINOR: ssl: ckch->chain must be initialized 4428 - BUG/MINOR: ssl: double free on error for ckch->{key,cert} 4429 - MINOR: ssl: BoringSSL ocsp_response does not need issuer 4430 - BUG/MEDIUM: ssl/cli: fix dot research in cli_parse_set_cert 4431 - MINOR: backend: Add srv_name sample fetche 4432 - DOC: Add GitHub issue config.yml 4433 44342019/10/25 : 2.1-dev3 4435 - MINOR: mux-h2/trace: missing conn pointer in demux full message 4436 - MINOR: mux-h2: add a per-connection list of blocked streams 4437 - BUILD: ebtree: make eb_is_empty() and eb_is_dup() take a const 4438 - BUG/MEDIUM: mux-h2: do not enforce timeout on long connections 4439 - BUG/MEDIUM: tasks: Don't forget to decrement tasks_run_queue. 4440 - BUG/MINOR: peers: crash on reload without local peer. 4441 - BUG/MINOR: mux-h2/trace: Fix traces on h2c initialization 4442 - MINOR: h1-htx: Update h1_copy_msg_data() to ease the traces in the mux-h1 4443 - MINOR: htx: Adapt htx_dump() to be used from traces 4444 - MINOR: mux-h1/trace: register a new trace source with its events 4445 - MINOR: proxy: Store http-send-name-header in lower case 4446 - MINOR: http: Remove headers matching the name of http-send-name-header option 4447 - BUG/MINOR: mux-h1: Adjust header case when the server name is add to a request 4448 - BUG/MINOR: mux-h1: Adjust header case when chunked encoding is add to a message 4449 - MINOR: mux-h1: Try to wakeup the stream on output buffer allocation 4450 - MINOR: fcgi: Add function to get the string representation of a record type 4451 - MINOR: mux-fcgi/trace: Register a new trace source with its events 4452 - BUG/MEDIUM: cache: make sure not to cache requests with absolute-uri 4453 - DOC: clarify some points around http-send-name-header's behavior 4454 - MEDIUM: mux-h2: support emitting CONTINUATION frames after HEADERS 4455 - BUG/MINOR: mux-h1/mux-fcgi/trace: Fix position of the 4th arg in some traces 4456 - DOC: fix typo in Prometheus exporter doc 4457 - MINOR: h2: clarify the rules for how to convert an H2 request to HTX 4458 - MINOR: htx: Add 2 flags on the start-line to have more info about the uri 4459 - MINOR: http: Add a function to get the authority into a URI 4460 - MINOR: h1-htx: Set the flag HTX_SL_F_HAS_AUTHORITY during the request parsing 4461 - MEDIUM: http-htx: Keep the Host header and the request start-line synchronized 4462 - MINOR: h1-htx: Only use the path of a normalized URI to format a request line 4463 - MEDIUM: h2: make the request parser rebuild a complete URI 4464 - MINOR: h2: report in the HTX flags when the request has an authority 4465 - MEDIUM: mux-h2: do not map Host to :authority on output 4466 - MEDIUM: h2: use the normalized URI encoding for absolute form requests 4467 - MINOR: stats: mention in the help message support for "json" and "typed" 4468 - MINOR: stats: get rid of the ST_CONVDONE flag 4469 - MINOR: stats: replace the ST_* uri_auth flags with STAT_* 4470 - MINOR: stats: always merge the uri_auth flags into the appctx flags 4471 - MINOR: stats: set the appctx flags when initializing the applet only 4472 - MINOR: stats: get rid of the STAT_SHOWADMIN flag 4473 - MINOR: stats: make stats_dump_fields_json() directly take flags 4474 - MINOR: stats: uniformize the calling convention of the dump functions 4475 - MINOR: stats: support the "desc" output format modifier for info and stat 4476 - MINOR: stats: prepare to add a description with each stat/info field 4477 - MINOR: stats: make "show stat" and "show info" 4478 - MINOR: stats: fill all the descriptions for "show info" and "show stat" 4479 - BUG/MEDIUM: applet: always check a fast running applet's activity before killing 4480 - BUILD: stats: fix missing '=' sign in array declaration 4481 - MINOR: lists: add new macro LIST_SPLICE_END_DETACHED 4482 - MINOR: list: add new macro MT_LIST_BEHEAD 4483 - MEDIUM: task: Split the tasklet list into two lists. 4484 - MINOR: h2: Document traps to be avoided on multithread. 4485 - MINOR: lists: Try to use local variables instead of macro arguments. 4486 - MINOR: lists: Fix alignement of \ when relevant. 4487 - MINOR: mux-h2: also support emitting CONTINUATION on trailers 4488 - MINOR: ssl: crt-list do ckchn_lookup 4489 - REORG: ssl: rename ckch_node to ckch_store 4490 - REORG: ssl: move structures to ssl_sock.h 4491 - MINOR: ssl: initialize the sni_keytypes_map as EB_ROOT 4492 - MINOR: ssl: initialize explicitly the sni_ctx trees 4493 - BUG/MINOR: ssl: abort on sni allocation failure 4494 - BUG/MINOR: ssl: free the sni_keytype nodes 4495 - BUG/MINOR: ssl: abort on sni_keytypes allocation failure 4496 - MEDIUM: ssl: introduce the ckch instance structure 4497 - MEDIUM: ssl: split ssl_sock_add_cert_sni() 4498 - MINOR: ssl: ssl_sock_load_ckchn() can properly fail 4499 - MINOR: ssl: ssl_sock_load_multi_ckchs() can properly fail 4500 - MEDIUM: ssl: ssl_sock_load_ckchs() alloc a ckch_inst 4501 - MINOR: ssl: ssl_sock_load_crt_file_into_ckch() is filling from a BIO 4502 - MEDIUM: ssl/cli: 'set ssl cert' updates a certificate from the CLI 4503 - MINOR: ssl: load the sctl in/from the ckch 4504 - MINOR: ssl: load the ocsp in/from the ckch 4505 - BUG/MEDIUM: ssl: NULL dereference in ssl_sock_load_cert_sni() 4506 - BUG/MINOR: ssl: fix build without SSL 4507 - BUG/MINOR: ssl: fix build without multi-cert bundles 4508 - BUILD: ssl: wrong #ifdef for SSL engines code 4509 - BUG/MINOR: ssl: fix OCSP build with BoringSSL 4510 - BUG/MEDIUM: htx: Catch chunk_memcat() failures when HTX data are formatted to h1 4511 - BUG/MINOR: chunk: Fix tests on the chunk size in functions copying data 4512 - BUG/MINOR: mux-h1: Mark the output buffer as full when the xfer is interrupted 4513 - MINOR: mux-h1: Xfer as much payload data as possible during output processing 4514 - CLEANUP: h1-htx: Move htx-to-h1 formatting functions from htx.c to h1_htx.c 4515 - BUG/MINOR: mux-h1: Capture ignored parsing errors 4516 - MINOR: h1: Reject requests with different occurrences of the header host 4517 - MINOR: h1: Reject requests if the authority does not match the header host 4518 - REGTESTS: Send valid URIs in peers reg-tests and fix HA config to avoid warnings 4519 - REGTESTS: Adapt proxy_protocol_random_fail.vtc to match normalized URI too 4520 - BUG/MINOR: WURFL: fix send_log() function arguments 4521 - BUG/MINOR: ssl: fix error messages for OCSP loading 4522 - BUG/MINOR: ssl: can't load ocsp files 4523 - MINOR: version: make the version strings variables, not constants 4524 - BUG/MINOR: http-htx: Properly set htx flags on error files to support keep-alive 4525 - MINOR: htx: Add a flag on HTX to known when a response was generated by HAProxy 4526 - MINOR: mux-h1: Force close mode for proxy responses with an unfinished request 4527 - BUILD: travis-ci: limit build to branches "master" and "next" 4528 - BUILD/MEDIUM: threads: rename thread_info struct to ha_thread_info 4529 - BUILD/SMALL: threads: enable threads on osx 4530 - BUILD/MEDIUM: threads: enable cpu_affinity on osx 4531 - MINOR: istbuf: add b_fromist() to make a buffer from an ist 4532 - BUG/MINOR: cache: also cache absolute URIs 4533 - BUG/MINOR: mworker/ssl: close openssl FDs unconditionally 4534 - BUG/MINOR: tcp: Don't alter counters returned by tcp info fetchers 4535 - BUG/MEDIUM: lists: Handle 1-element-lists in MT_LIST_BEHEAD(). 4536 - BUG/MEDIUM: mux_pt: Make sure we don't have a conn_stream before freeing. 4537 - BUG/MEDIUM: tasklet: properly compute the sleeping threads mask in tasklet_wakeup() 4538 - BUG/MAJOR: idle conns: schedule the cleanup task on the correct threads 4539 - BUG/MEDIUM: task: make tasklets either local or shared but not both at once 4540 - Revert e8826ded5fea3593d89da2be5c2d81c522070995. 4541 - BUG/MEDIUM: mux_pt: Don't destroy the connection if we have a stream attached. 4542 - BUG/MEDIUM: mux_pt: Only call the wake emthod if nobody subscribed to receive. 4543 - REGTEST: mcli/mcli_show_info: launch a 'show info' on the master CLI 4544 - CLEANUP: ssl: make ssl_sock_load_cert*() return real error codes 4545 - CLEANUP: ssl: make ssl_sock_load_ckchs() return a set of ERR_* 4546 - CLEANUP: ssl: make cli_parse_set_cert handle errcode and warnings. 4547 - CLEANUP: ssl: make ckch_inst_new_load_(multi_)store handle errcode/warn 4548 - CLEANUP: ssl: make ssl_sock_put_ckch_into_ctx handle errcode/warn 4549 - CLEANUP: ssl: make ssl_sock_load_dh_params handle errcode/warn 4550 - CLEANUP: bind: handle warning label on bind keywords parsing. 4551 - BUG/MEDIUM: ssl: 'tune.ssl.default-dh-param' value ignored with openssl > 1.1.1 4552 - BUG/MINOR: mworker/cli: reload fail with inherited FD 4553 - BUG/MINOR: ssl: Fix fd leak on error path when a TLS ticket keys file is parsed 4554 - BUG/MINOR: stick-table: Never exceed (MAX_SESS_STKCTR-1) when fetching a stkctr 4555 - BUG/MINOR: cache: alloc shctx after check config 4556 - BUG/MINOR: sample: Make the `field` converter compatible with `-m found` 4557 - BUG/MINOR: server: check return value of fopen() in apply_server_state() 4558 - REGTESTS: make seamless-reload depend on 1.9 and above 4559 - REGTESTS: server/cli_set_fqdn requires version 1.8 minimum 4560 - BUG/MINOR: dns: allow srv record weight set to 0 4561 - BUG/MINOR: ssl: fix memcpy overlap without consequences. 4562 - BUG/MINOR: stick-table: fix an incorrect 32 to 64 bit key conversion 4563 - BUG/MEDIUM: pattern: make the pattern LRU cache thread-local and lockless 4564 - BUG/MINOR: mux-h2: do not emit logs on backend connections 4565 - CLEANUP: ssl: remove old TODO commentary 4566 - CLEANUP: ssl: fix SNI/CKCH lock labels 4567 - MINOR: ssl: OCSP functions can load from file or buffer 4568 - MINOR: ssl: load sctl from buf OR from a file 4569 - MINOR: ssl: load issuer from file or from buffer 4570 - MINOR: ssl: split ssl_sock_load_crt_file_into_ckch() 4571 - BUG/MINOR: ssl/cli: fix looking up for a bundle 4572 - MINOR: ssl/cli: update ocsp/issuer/sctl file from the CLI 4573 - MINOR: ssl: update ssl_sock_free_cert_key_and_chain_contents 4574 - MINOR: ssl: copy a ckch from src to dst 4575 - MINOR: ssl: new functions duplicate and free a ckch_store 4576 - MINOR: ssl/cli: assignate a new ckch_store 4577 - MEDIUM: cli/ssl: handle the creation of SSL_CTX in an IO handler 4578 - BUG/MINOR: ssl/cli: fix build of SCTL and OCSP 4579 - BUG/MINOR: ssl/cli: out of bounds when built without ocsp/sctl 4580 - BUG/MINOR: ssl: fix build with openssl < 1.1.0 4581 - BUG/MINOR: ssl: fix build of X509_chain_up_ref() w/ libreSSL 4582 - MINOR: tcp: avoid confusion in time parsing init 4583 - MINOR: debug: add a new "debug dev stream" command 4584 - MINOR: cli/debug: validate addresses using may_access() in "debug dev stream" 4585 - REORG: move CLI access level definitions to cli.h 4586 - MINOR: cli: add an expert mode to hide dangerous commands 4587 - MINOR: debug: make most debug CLI commands accessible in expert mode 4588 - MINOR: stats/debug: maintain a counter of debug commands issued 4589 - BUG/MEDIUM: debug: address a possible null pointer dereference in "debug dev stream" 4590 45912019/10/01 : 2.1-dev2 4592 - DOC: management: document reuse and connect counters in the CSV format 4593 - DOC: management: document cache_hits and cache_lookups in the CSV format 4594 - BUG/MINOR: dns: remove irrelevant dependency on a client connection 4595 - MINOR: applet: make appctx use their own pool 4596 - BUG/MEDIUM: checks: Don't attempt to receive data if we already subscribed. 4597 - BUG/MEDIUM: http/htx: unbreak option http_proxy 4598 - BUG/MINOR: backend: do not try to install a mux when the connection failed 4599 - MINOR: mux-h2: Don't adjust anymore the amount of data sent in h2_snd_buf() 4600 - BUG/MINOR: http_fetch: Fix http_auth/http_auth_group when called from TCP rules 4601 - BUG/MINOR: http_htx: Initialize HTX error messages for TCP proxies 4602 - BUG/MINOR: cache/htx: Make maxage calculation HTX aware 4603 - BUG/MINOR: hlua: Make the function txn:done() HTX aware 4604 - MINOR: proto_htx: Directly call htx_check_response_for_cacheability() 4605 - MINOR: proto_htx: Rely on the HTX function to apply a redirect rules 4606 - MINOR: proto_htx: Add the function htx_return_srv_error() 4607 - MINOR: backend/htx: Don't rewind output data to set the sni on a srv connection 4608 - MINOR: proto_htx: Don't stop forwarding when there is a post-connect processing 4609 - DOC: htx: Update comments in HTX files 4610 - CLEANUP: htx: Remove the unsued function htx_add_blk_type_size() 4611 - MINOR: htx: Deduce the number of used blocks from tail and head values 4612 - MINOR: htx: Use an array of char to store HTX blocks 4613 - MINOR: htx: Slightly update htx_dump() to report better messages 4614 - DOC: htx: Add internal documentation about the HTX 4615 - MAJOR: http: Deprecate and ignore the option "http-use-htx" 4616 - MEDIUM: mux-h2: Remove support of the legacy HTTP mode 4617 - CLEANUP: h2: Remove functions converting h2 requests to raw HTTP/1.1 ones 4618 - MINOR: connection: Remove the multiplexer protocol PROTO_MODE_HTX 4619 - MINOR: stream: Rely on HTX analyzers instead of legacy HTTP ones 4620 - MEDIUM: http_fetch: Remove code relying on HTTP legacy mode 4621 - MINOR: config: Remove tests on the option 'http-use-htx' 4622 - MINOR: stream: Remove tests on the option 'http-use-htx' in stream_new() 4623 - MINOR: proxy: Remove tests on the option 'http-use-htx' during H1 upgrade 4624 - MINOR: hlua: Remove tests on the option 'http-use-htx' to reject TCP applets 4625 - MINOR: cache: Remove tests on the option 'http-use-htx' 4626 - MINOR: contrib/prometheus-exporter: Remove tests on the option 'http-use-htx' 4627 - CLEANUP: proxy: Remove the flag PR_O2_USE_HTX 4628 - MINOR: proxy: Don't adjust connection mode of HTTP proxies anymore 4629 - MEDIUM: backend: Remove code relying on the HTTP legacy mode 4630 - MEDIUM: hlua: Remove code relying on the legacy HTTP mode 4631 - MINOR: http_act: Remove code relying on the legacy HTTP mode 4632 - MEDIUM: cache: Remove code relying on the legacy HTTP mode 4633 - MEDIUM: compression: Remove code relying on the legacy HTTP mode 4634 - MINOR: flt_trace: Remove code relying on the legacy HTTP mode 4635 - MINOR: stats: Remove code relying on the legacy HTTP mode 4636 - MAJOR: filters: Remove code relying on the legacy HTTP mode 4637 - MINOR: stream: Remove code relying on the legacy HTTP mode 4638 - MAJOR: http: Remove the HTTP legacy code 4639 - MINOR: hlua: Remove useless test on TX_CON_WANT_* flags 4640 - MINOR: proto_http: Remove unused http txn flags 4641 - MINOR: proto_http: Remove the unused flag HTTP_MSGF_WAIT_CONN 4642 - CLEANUP: proto_http: Group remaining flags of the HTTP transaction 4643 - CLEANUP: channel: Remove the unused flag CF_WAKE_CONNECT 4644 - CLEANUP: proto_http: Remove unecessary includes and comments 4645 - CLEANUP: proto_http: Move remaining code from proto_http.c to proto_htx.c 4646 - REORG: proto_htx: Move HTX analyzers & co to http_ana.{c,h} files 4647 - BUG/MINOR: debug: Remove flags CO_FL_SOCK_WR_ENA/CO_FL_SOCK_RD_ENA 4648 - MINOR: proxy: Remove support of the option 'http-tunnel' 4649 - DOC: config: Update as a result of the legacy HTTP removal 4650 - MEDIUM: config: Remove parsing of req* and rsp* directives 4651 - MINOR: proxy: Remove the unused list of block rules 4652 - MINOR: proxy/http_ana: Remove unused req_exp/rsp_exp and req_add/rsp_add lists 4653 - DOC: config: Remove unsupported req* and rsp* keywords 4654 - MINOR: global: Preset tune.max_http_hdr to its default value 4655 - MINOR: http: Don't store raw HTTP errors in chunks anymore 4656 - BUG/MINOR: session: Emit an HTTP error if accept fails only for H1 connection 4657 - BUG/MINOR: session: Send a default HTTP error if accept fails for a H1 socket 4658 - CLEANUP: mux-h2: Remove unused flags H2_SF_CHNK_* 4659 - BUG/MINOR: checks: do not exit tcp-checks from the middle of the loop 4660 - MINOR: config: Warn only if the option http-use-htx is used with "no" prefix 4661 - BUG/MEDIUM: mux-h1: Trim excess server data at the end of a transaction 4662 - MINOR: connection: add conn_get_src() and conn_get_dst() 4663 - MINOR: frontend: switch to conn_get_{src,dst}() for logging and debugging 4664 - MINOR: backend: switch to conn_get_{src,dst}() for port and address mapping 4665 - MINOR: ssl: switch to conn_get_dst() to retrieve the destination address 4666 - MINOR: tcp: replace various calls to conn_get_{from,to}_addr with conn_get_{src,dst} 4667 - MINOR: stream-int: use conn_get_{src,dst} in conn_si_send_proxy() 4668 - MINOR: stream/cli: use conn_get_{src,dst} in "show sess" and "show peers" output 4669 - MINOR: log: use conn_get_{dst,src}() to retrieve the cli/frt/bck/srv/ addresses 4670 - MINOR: http/htx: use conn_get_dst() to retrieve the destination address 4671 - MINOR: lua: use conn_get_{src,dst} to retrieve connection addresses 4672 - MINOR: http: check the source address via conn_get_src() in sample fetch functions 4673 - CLEANUP: connection: remove the now unused conn_get_{from,to}_addr() 4674 - MINOR: connection: add new src and dst fields 4675 - MINOR: connection: use conn->{src,dst} instead of &conn->addr.{from,to} 4676 - MINOR: ssl-sock: use conn->dst instead of &conn->addr.to 4677 - MINOR: lua: switch to conn->dst for a connection's target address 4678 - MINOR: peers: use conn->dst for the peer's target address 4679 - MINOR: htx: switch from conn->addr.{from,to} to conn->{src,dst} 4680 - MINOR: stream: switch from conn->addr.{from,to} to conn->{src,dst} 4681 - MINOR: proxy: switch to conn->src in error snapshots 4682 - MINOR: session: use conn->src instead of conn->addr.from 4683 - MINOR: tcp: replace conn->addr.{from,to} with conn->{src,dst} 4684 - MINOR: unix: use conn->dst for the target address in ->connect() 4685 - MINOR: sockpair: use conn->dst for the target address in ->connect() 4686 - MINOR: log: use conn->{src,dst} instead of conn->addr.{from,to} 4687 - MINOR: checks: replace conn->addr.to with conn->dst 4688 - MINOR: frontend: switch from conn->addr.{from,to} to conn->{src,dst} 4689 - MINOR: http: convert conn->addr.from to conn->src in sample fetches 4690 - MEDIUM: backend: turn all conn->addr.{from,to} to conn->{src,dst} 4691 - MINOR: connection: create a new pool for struct sockaddr_storage 4692 - MEDIUM: connection: make sure all address producers allocate their address 4693 - MAJOR: connection: remove the addr field 4694 - MINOR: connection: don't use clear_addr() anymore, just release the address 4695 - MINOR: stream: add a new target_addr entry in the stream structure 4696 - MAJOR: stream: store the target address into s->target_addr 4697 - MINOR: peers: now remove the remote connection setup code 4698 - MEDIUM: lua: do not allocate the remote connection anymore 4699 - MEDIUM: backend: always release any existing prior connection in connect_server() 4700 - MEDIUM: backend: remove impossible cases from connect_server() 4701 - BUG/MINOR: mux-h1: Close server connection if input data remains in h1_detach() 4702 - BUG/MEDIUM: tcp-checks: do not dereference inexisting conn_stream 4703 - BUG/MINOR: http_ana: Be sure to have an allocated buffer to generate an error 4704 - BUG/MINOR: http_htx: Support empty errorfiles 4705 - BUG/CRITICAL: http_ana: Fix parsing of malformed cookies which start by a delimiter 4706 - BUG/MEDIUM: protocols: add a global lock for the init/deinit stuff 4707 - BUG/MINOR: proxy: always lock stop_proxy() 4708 - MEDIUM: mux-h1: Add the support of headers adjustment for bogus HTTP/1 apps 4709 - BUILD: threads: add the definition of PROTO_LOCK 4710 - BUG/MEDIUM: lb-chash: Fix the realloc() when the number of nodes is increased 4711 - BUG/MEDIUM: streams: Don't switch the SI to SI_ST_DIS if we have data to send. 4712 - BUG/MINOR: log: make sure writev() is not interrupted on a file output 4713 - DOC: improve the wording in CONTRIBUTING about how to document a bug fix 4714 - MEDIUM: h1: Don't try to subscribe if we managed to read data. 4715 - MEDIUM: h1: Don't wake the H1 tasklet if we got the whole request. 4716 - REGTESTS: checks: exclude freebsd target for tcp-check_multiple_ports.vtc 4717 - BUG/MINOR: hlua/htx: Reset channels analyzers when txn:done() is called 4718 - BUG/MEDIUM: hlua: Check the calling direction in lua functions of the HTTP class 4719 - MINOR: hlua: Don't set request analyzers on response channel for lua actions 4720 - MINOR: hlua: Add a flag on the lua txn to know in which context it can be used 4721 - BUG/MINOR: hlua: Only execute functions of HTTP class if the txn is HTTP ready 4722 - BUG/MINOR: htx: Fix free space addresses calculation during a block expansion 4723 - MINOR: ssl: merge ssl_sock_load_cert_file() and ssl_sock_load_cert_chain_file() 4724 - MEDIUM: ssl: use cert_key_and_chain struct in ssl_sock_load_cert_file() 4725 - MEDIUM: ssl: split the loading of the certificates 4726 - MEDIUM: ssl: lookup and store in a ckch_node tree 4727 - MEDIUM: ssl: load DH param in struct cert_key_and_chain 4728 - BUG/MAJOR: queue/threads: avoid an AB/BA locking issue in process_srv_queue() 4729 - MINOR: ssl: use STACK_OF for chain certs 4730 - MINOR: ssl: add extra chain compatibility 4731 - MINOR: ssl: check private key consistency in loading 4732 - MINOR: ssl: do not look at DHparam with OPENSSL_NO_DH 4733 - CLEANUP: ssl: ssl_sock_load_crt_file_into_ckch 4734 - MINOR: ssl: clean ret variable in ssl_sock_load_ckchn 4735 - MAJOR: fd: Get rid of the fd cache. 4736 - MEDIUM: pollers: Remember the state for read and write for each threads. 4737 - MEDIUM: mux-h2: don't try to read more than needed 4738 - BUG/BUILD: ssl: fix build with openssl < 1.0.2 4739 - BUG/MEDIUM: ssl: does not try to free a DH in a ckch 4740 - BUG/MINOR: debug: fix a small race in the thread dumping code 4741 - MINOR: wdt: also consider that waiting in the thread dumper is normal 4742 - REGTESTS: checks: make 4be_1srv_health_checks more reliable 4743 - BUILD: ssl: BoringSSL add EVP_PKEY_base_id 4744 - BUG/MEDIUM: ssl: don't free the ckch in multi-cert bundle 4745 - BUG/MINOR: ssl: fix ressource leaks on error 4746 - BUG/MEDIUM: lb-chash: Ensure the tree integrity when server weight is increased 4747 - BUG/MAJOR: http/sample: use a static buffer for raw -> htx conversion 4748 - BUG/MINOR: stream-int: make sure to always release empty buffers after sending 4749 - BUG/MEDIUM: ssl: open the right path for multi-cert bundle 4750 - BUG/MINOR: stream-int: also update analysers timeouts on activity 4751 - BUG/MEDIUM: mux-h2: unbreak receipt of large DATA frames 4752 - BUG/MEDIUM: mux-h2: split the stream's and connection's window sizes 4753 - BUG/MEDIUM: proxy: Make sure to destroy the stream on upgrade from TCP to H2 4754 - DOC: Add 'Question.md' issue template, discouraging asking questions 4755 - BUG/MEDIUM: fd: Always reset the polled_mask bits in fd_dodelete(). 4756 - BUG/MEDIUM: pollers: Clear the poll_send bits as well. 4757 - BUILD: travis-ci: enable daily Coverity scan 4758 - BUG/MINOR: mux-h2: don't refrain from sending an RST_STREAM after another one 4759 - BUG/MINOR: mux-h2: use CANCEL, not STREAM_CLOSED in h2c_frt_handle_data() 4760 - BUG/MINOR: mux-h2: do not send REFUSED_STREAM on aborted uploads 4761 - BUG/MEDIUM: mux-h2: do not recheck a frame type after a state transition 4762 - BUG/MINOR: mux-h2: always send stream window update before connection's 4763 - BUG/MINOR: mux-h2: always reset rcvd_s when switching to a new frame 4764 - BUG/MEDIUM: checks: make sure to close nicely when we're the last to speak 4765 - BUG/MEDIUM: stick-table: Wrong stick-table backends parsing. 4766 - CLEANUP: mux-h2: move the demuxed frame check code in its own function 4767 - MINOR: cache: add method to cache hash 4768 - MINOR: cache: allow caching of OPTIONS request 4769 - BUG/MINOR: ssl: fix 0-RTT for BoringSSL 4770 - MINOR: ssl: ssl_fc_has_early should work for BoringSSL 4771 - BUG/MINOR: pools: don't mark the thread harmless if already isolated 4772 - BUG/MINOR: buffers/threads: always clear a buffer's head before releasing it 4773 - CLEANUP: buffer: replace b_drop() with b_free() 4774 - CLEANUP: task: move the cpu_time field to the task-only part 4775 - MINOR: cli: add two new states to print messages on the CLI 4776 - MINOR: cli: add cli_msg(), cli_err(), cli_dynmsg(), cli_dynerr() 4777 - CLEANUP: cli: replace all occurrences of manual handling of return messages 4778 - BUG/MEDIUM: proxy: Don't forget the SF_HTX flag when upgrading TCP=>H1+HTX. 4779 - BUG/MEDIUM: proxy: Don't use cs_destroy() when freeing the conn_stream. 4780 - BUG/MINOR: lua: fix setting netfilter mark 4781 - BUG/MINOR: Fix prometheus '# TYPE' and '# HELP' headers 4782 - BUG/MEDIUM: lua: Fix test on the direction to set the channel exp timeout 4783 - BUG/MINOR: stats: Wait the body before processing POST requests 4784 - MINOR: fd: make sure to mark the thread as not stuck in fd_update_events() 4785 - BUG/MEDIUM: mux_pt: Don't call unsubscribe if we did not subscribe. 4786 - BUILD: travis-ci: trigger non-mainstream configurations only on daily builds. 4787 - MINOR: debug: indicate the applet name when the task is task_run_applet() 4788 - MINOR: tools: add append_prefixed_str() 4789 - MINOR: lua: export applet and task handlers 4790 - MEDIUM: debug: make the thread dump code show Lua backtraces 4791 - BUG/MEDIUM: h1: Always try to receive more in h1_rcv_buf(). 4792 - MINOR: list: add LIST_SPLICE() to merge one list into another 4793 - MINOR: tools: add a DEFNULL() macro to use NULL for empty args 4794 - REORG: trace: rename trace.c to calltrace.c and mention it's not thread-safe 4795 - MINOR: sink: create definitions a minimal code for event sinks 4796 - MINOR: sink: add a support for file descriptors 4797 - MINOR: trace: start to create a new trace subsystem 4798 - MINOR: trace: add allocation of buffer-sized trace buffers 4799 - MINOR: trace/cli: register the "trace" CLI keyword to list the sources 4800 - MINOR: trace/cli: parse the "level" argument to configure the trace verbosity 4801 - MINOR: trace/cli: add "show trace" to report trace state and statistics 4802 - MINOR: trace: implement a very basic trace() function 4803 - MINOR: trace: add the file name and line number in the prefix 4804 - MINOR: trace: make trace() now also take a level in argument 4805 - MINOR: trace: implement a call to a decode function 4806 - MINOR: trace: add per-level macros to produce traces 4807 - MINOR: trace: add a definition of typed arguments to trace() 4808 - MINOR: trace: make sure to always stop the locking when stopping or pausing 4809 - MINOR: trace: add the possibility to lock on some arguments 4810 - MINOR: trace: parse the "lock" argument to trace 4811 - MINOR: trace: retrieve useful pointers and enforce lock-on 4812 - DOC: management: document the "trace" and "show trace" commands 4813 - BUILD: trace: make the lockon_ptr const to silence a warning without threads 4814 - BUG/MEDIUM: mux-h1: do not truncate trailing 0CRLF on buffer boundary 4815 - BUG/MEDIUM: mux-h1: do not report errors on transfers ending on buffer full 4816 - DOC: fixed typo in management.txt 4817 - BUG/MINOR: mworker: disable SIGPROF on re-exec 4818 - BUG/MEDIUM: listener/threads: fix an AB/BA locking issue in delete_listener() 4819 - BUG/MEDIUM: url32 does not take the path part into account in the returned hash. 4820 - MINOR: backend: Add srv_queue converter 4821 - MINOR: sink: set the fd-type sinks to non-blocking 4822 - MINOR: tools: add a function varint_bytes() to report the size of a varint 4823 - MINOR: buffer: add functions to read/write varints from/to buffers 4824 - MINOR: fd: add fd_write_frag_line() to send a fragmented line to an fd 4825 - MINOR: sink: now call the generic fd write function 4826 - MINOR: ring: add a new mechanism for retrieving/storing ring data in buffers 4827 - MINOR: ring: add a ring_write() function 4828 - MINOR: ring: add a generic CLI io_handler to dump a ring buffer 4829 - MINOR: sink: add support for ring buffers 4830 - MINOR: sink: implement "show events" to show supported sinks and dump the rings 4831 - MINOR: sink: now report the number of dropped events on output 4832 - MINOR: trace: support a default callback for the source 4833 - MINOR: trace: extend the source location to 13 chars 4834 - MINOR: trace: show thread number and source name in the trace 4835 - MINOR: trace: change the TRACE() calling convention to put the args and cb last 4836 - MINOR: connection: add the fc_pp_authority fetch -- authority TLV, from PROXYv2 4837 - MINOR: tools: add a generic struct "name_desc" for name-description pairs 4838 - MINOR: trace: replace struct trace_lockon_args with struct name_desc 4839 - MINOR: trace: change the "payload" level to "data" and move it 4840 - MINOR: trace: prepend the function name for developer level traces 4841 - MINOR: trace: also report the trace level in the output 4842 - MINOR: trace: change the detail_level to per-source verbosity 4843 - MINOR: mux-h2/trace: register a new trace source with its events 4844 - MINOR: mux-h2/trace: add the default decoding callback 4845 - MEDIUM: mux-h2/trace: add lots of traces all over the code 4846 - MINOR: mux-h2: add functions to convert an h2c/h2s state to a string 4847 - MINOR: mux-h2/trace: add a new verbosity level "clean" 4848 - MINOR: mux-h2/trace: only decode the start-line at verbosity other than "minimal" 4849 - MINOR: mux-h2/trace: always report the h2c/h2s state and flags 4850 - MINOR: mux-h2/trace: report h2s->id before h2c->dsi for the stream ID 4851 - CLEANUP: mux-h2/trace: reformat the "received" messages for better alignment 4852 - CLEANUP: mux-h2/trace: lower-case event names 4853 - MINOR: trace: extend default event names to 12 chars 4854 - BUG/MINOR: ring: fix the way watchers are counted 4855 - MINOR: cli: extend the CLI context with a list and two offsets 4856 - MINOR: mux-h2/trace: report the connection pointer and state before FRAME_H 4857 - MEDIUM: ring: implement a wait mode for watchers 4858 - BUG/MEDIUM: mux-h2/trace: do not dereference h2c->conn after failed idle 4859 - BUG/MEDIUM: mux-h2/trace: fix missing braces added with traces 4860 - BUG/MINOR: ring: b_peek_varint() returns a uint64_t, not a size_t 4861 - CLEANUP: fd: remove leftovers of the fdcache 4862 - MINOR: fd: add a new "initialized" bit in the fdtab struct 4863 - MINOR: fd/log/sink: make the non-blocking initialization depend on the initialized bit 4864 - MEDIUM: log: use the new generic fd_write_frag_line() function 4865 - MINOR: log: add a target type instead of hacking the address family 4866 - MEDIUM: log: add support for logging to a ring buffer 4867 - MINOR: send-proxy-v2: sends authority TLV according to TLV received 4868 - MINOR: build: add linux-glibc-legacy build TARGET 4869 - BUG/MEDIUM: peers: local peer socket not bound. 4870 - BUILD: connection: silence gcc warning with extra parentheses 4871 - BUG/MINOR: http-ana: Reset response flags when 1xx messages are handled 4872 - BUG/MINOR: h1: Properly reset h1m when parsing is restarted 4873 - BUG/MINOR: mux-h1: Fix size evaluation of HTX messages after headers parsing 4874 - BUG/MINOR: mux-h1: Don't stop anymore input processing when the max is reached 4875 - BUG/MINOR: mux-h1: Be sure to update the count before adding EOM after trailers 4876 - BUG/MEDIUM: cache: Properly copy headers splitted on several shctx blocks 4877 - BUG/MEDIUM: cache: Don't cache objects if the size of headers is too big 4878 - BUG/MINOR: mux-h1: Fix a possible null pointer dereference in h1_subscribe() 4879 - MEDIUM: fd: remove the FD_EV_POLLED status bit 4880 - MEDIUM: fd: simplify the fd_*_{recv,send} functions using BTS/BTR 4881 - MINOR: fd: make updt_fd_polling() a normal function 4882 - CONTRIB: debug: add new program "poll" to test poll() events 4883 - BUG/MINOR: checks: stop polling for write when we have nothing left to send 4884 - BUG/MINOR: checks: start sending the request right after connect() 4885 - BUG/MINOR: checks: make __event_chk_srv_r() report success before closing 4886 - BUG/MINOR: checks: do not uselessly poll for reads before the connection is up 4887 - BUG/MINOR: mux-h1: Fix a UAF in cfg_h1_headers_case_adjust_postparser() 4888 - BUILD: CI: add basic CentOS 6 cirrus build 4889 - MINOR: contrib/prometheus-exporter: Report DRAIN/MAINT/NOLB status for servers 4890 - BUG/MINOR: lb/leastconn: ignore the server weights for empty servers 4891 - BUG/MAJOR: ssl: ssl_sock was not fully initialized. 4892 - MEDIUM: fd: mark the FD as ready when it's inserted 4893 - MINOR: fd: add two new calls fd_cond_{recv,send}() 4894 - MEDIUM: connection: enable reading only once the connection is confirmed 4895 - MINOR: fd: add two flags ERR and SHUT to describe FD states 4896 - MEDIUM: fd: do not use the FD_POLL_* flags in the pollers anymore 4897 - BUG/MEDIUM: connection: don't keep more idle connections than ever needed 4898 - MINOR: stats: report the number of idle connections for each server 4899 - BUILD: CI: skip reg-tests/connection/proxy_protocol_random_fail.vtc on CentOS 6 4900 - BUILD/MINOR: auth: enabling for osx 4901 - BUG/MINOR: listener: Fix a possible null pointer dereference 4902 - BUG/MINOR: ssl: always check for ssl connection before getting its XPRT context 4903 - MINOR: stats: Add JSON export from the stats page 4904 - BUG/MINOR: filters: Properly set the HTTP status code on analysis error 4905 - MINOR: sample: Add UUID-fetch 4906 - CLEANUP: mux-h2: Remove unused flag H2_SF_DATA_CHNK 4907 - BUG/MINOR: acl: Fix memory leaks when an ACL expression is parsed 4908 - BUG/MINOR: backend: Fix a possible null pointer dereference 4909 - BUG/MINOR: Missing stat_field_names (since f21d17bb) 4910 - BUG/MEDIUM: stick-table: Properly handle "show table" with a data type argument 4911 - BUILD: CI: temporarily disable ASAN 4912 - MINOR: htx: Add a flag on HTX message to report processing errors 4913 - MINOR: mux-h1: Report a processing error during output processing 4914 - MINOR: http-ana: Handle HTX errors first during message analysis 4915 - MINOR: http-ana: Remove err_state field from http_msg 4916 - MINOR: config: Support per-proxy and per-server deinit functions callbacks 4917 - MINOR: config: Support per-proxy and per-server post-check functions callbacks 4918 - MINOR: http_fetch: Add sample fetches to get auth method/user/pass 4919 - MINOR: istbuf: Add the function b_isteqi() 4920 - MINOR: log: Provide a function to emit a log for an application 4921 - MINOR: http: Add function to parse value of the header Status 4922 - MEDIUM: mux-h1/h1-htx: move HTX convertion of H1 messages in dedicated file 4923 - MINOR: h1-htx: Use the same function to copy message payload in all cases 4924 - MINOR: muxes/htx: Ignore pseudo header during message formatting 4925 - MINOR: fcgi: Add code related to FCGI protocol 4926 - MEDIUM: fcgi-app: Add FCGI application and filter 4927 - MEDIUM: mux-fcgi: Add the FCGI multiplexer 4928 - MINOR: doc: Add documentation about the FastCGI support 4929 - BUG/MINOR: build: Fix compilation of mux_fcgi.c when compiled without SSL 4930 - BUILD: CI: install golang-1.13 when building BoringSSL 4931 - BUG/MINOR: mux-h2: Be sure to have a connection to unsubcribe 4932 - BUG/MINOR: mux-fcgi: Be sure to have a connection to unsubcribe 4933 - CLEANUP: fcgi-app: Remove useless test on fcgi_conf pointer 4934 - BUG/MINOR: mux-fcgi: Don't compare the filter name in its parsing callback 4935 - BUG/MAJOR: mux-h2: Handle HEADERS frames received after a RST_STREAM frame 4936 - BUG/MEDIUM: check/threads: make external checks run exclusively on thread 1 4937 - MEDIUM: list: Separate "locked" list from regular list. 4938 - MINOR: mt_lists: Add new macroes. 4939 - MEDIUM: servers: Use LIST_DEL_INIT() instead of LIST_DEL(). 4940 - MINOR: mt_lists: Do nothing in MT_LIST_ADD/MT_LIST_ADDQ if already in list. 4941 - MINOR: mt_lists: Give MT_LIST_ADD, MT_LIST_ADDQ and MT_LIST_DEL a return value. 4942 - MEDIUM: tasklets: Make the tasklet list a struct mt_list. 4943 - TESTS: Add a stress-test for mt_lists. 4944 - BUILD: travis-ci: add PCRE2, SLZ build 4945 - BUG/MINOR: build: fix event ports (Solaris) 4946 - BUG/MEDIUM: namespace: fix fd leak in master-worker mode 4947 - OPTIM: listeners: use tasklets for the multi-queue rings 4948 - BUILD: makefile: work around yet another GCC fantasy (-Wstring-plus-int) 4949 - BUG/MINOR: stream-int: Process connection/CS errors first in si_cs_send() 4950 - BUG/MEDIUM: stream-int: Process connection/CS errors during synchronous sends 4951 - BUG/MEDIUM: checks: make sure the connection is ready before trying to recv 4952 - CLEANUP: task: remove impossible test 4953 - CLEANUP: task: cache the task_per_thread pointer 4954 - MINOR: task: split the tasklet vs task code in process_runnable_tasks() 4955 - MINOR: task: introduce a thread-local "sched" variable for local scheduler stuff 4956 - CLEANUP: mux-fcgi: Remove the unused function fcgi_strm_id() 4957 - BUG/MINOR: mux-fcgi: Use a literal string as format in app_log() 4958 - BUG/MEDIUM: tasklets: Make sure we're waking the target thread if it sleeps. 4959 - MINOR: h2/trace: indicate 'F' or 'B' to locate the side of an h2c in traces 4960 - MINOR: h2/trace: report the frame type when known 4961 - BUG/MINOR: mux-h2: do not wake up blocked streams before the mux is ready 4962 - BUG/MEDIUM: namespace: close open namespaces during soft shutdown 4963 - MINOR: time: add timeofday_as_iso_us() to return instant time as ISO 4964 - MINOR: sink: finally implement support for SINK_FMT_{TIMED,ISO} 4965 - MINOR: sink: change ring buffer "buf0"'s format to "timed" 4966 - BUG/MEDIUM: mux-h2: don't reject valid frames on closed streams 4967 - BUG/MINOR: mux-fcgi: silence a gcc warning about null dereference 4968 - BUG/MINOR: mux-h2: Fix missing braces because of traces in h2_detach() 4969 - BUG/MINOR: mux-h2: Use the dummy error when decoding headers for a closed stream 4970 - BUG/MAJOR: mux_h2: Don't consume more payload than received for skipped frames 4971 - BUG/MINOR: mux-h1: Do h2 upgrade only on the first request 4972 - BUG/MEDIUM: spoe: Use a different engine-id per process 4973 - MINOR: spoe: Improve generation of the engine-id 4974 - MINOR: spoe: Support the async mode with several threads 4975 - MINOR: http: Add server name header from HTTP multiplexers 4976 - CLEANUP: http-ana: Remove the unused function http_send_name_header() 4977 - MINOR: stats: Add the support of float fields in stats 4978 - BUG/MINOR: contrib/prometheus-exporter: Return the time averages in seconds 4979 - DOC: Fix documentation about the cli command to get resolver stats 4980 - BUG/MEDIUM: fcgi: fix missing list tail in sample fetch registration 4981 - BUG/MINOR: stats: Add a missing break in a switch statement 4982 - BUG/MINOR: lua: Properly initialize the buffer's fields for string samples in hlua_lua2(smp|arg) 4983 - CLEANUP: lua: Get rid of obsolete (size_t *) cast in hlua_lua2(smp|arg) 4984 - BUG/MEDIUM: lua: Store stick tables into the sample's `t` field 4985 - CLEANUP: proxy: Remove `proxy_tbl_by_name` 4986 - BUILD: ssl: fix a warning when built with openssl < 1.0.2 4987 - DOC: replace utf-8 quotes by ascii ones 4988 - BUG/MEDIUM: fd: HUP is an error only when write is active 4989 - BUG/MINOR: action: do-resolve does not yield on requests with body 4990 - Revert "MINOR: cache: allow caching of OPTIONS request" 4991 49922019/07/16 : 2.1-dev1 4993 - BUG/MEDIUM: h2/htx: Update data length of the HTX when the cookie list is built 4994 - DOC: this is a development branch again. 4995 - MEDIUM: Make 'block' directive fatal 4996 - MEDIUM: Make 'redispatch' directive fatal 4997 - MEDIUM: Make '(cli|con|srv)timeout' directive fatal 4998 - MEDIUM: Remove 'option independant-streams' 4999 - MINOR: sample: Add sha2([<bits>]) converter 5000 - MEDIUM: server: server-state global file stored in a tree 5001 - BUG/MINOR: lua/htx: Make txn.req_req_* and txn.res_rep_* HTX aware 5002 - BUG/MINOR: mux-h1: Add the header connection in lower case in outgoing messages 5003 - BUG/MEDIUM: compression: Set Vary: Accept-Encoding for compressed responses 5004 - MINOR: htx: Add the function htx_change_blk_value_len() 5005 - BUG/MEDIUM: htx: Fully update HTX message when the block value is changed 5006 - BUG/MEDIUM: mux-h2: Reset padlen when several frames are demux 5007 - BUG/MEDIUM: mux-h2: Remove the padding length when a DATA frame size is checked 5008 - BUG/MEDIUM: lb_fwlc: Don't test the server's lb_tree from outside the lock 5009 - BUG/MAJOR: sample: Wrong stick-table name parsing in "if/unless" ACL condition. 5010 - BUILD: mworker: silence two printf format warnings around getpid() 5011 - BUILD: makefile: use :space: instead of digits to count commits 5012 - BUILD: makefile: adjust the sed expression of "make help" for solaris 5013 - BUILD: makefile: do not rely on shell substitutions to determine git version 5014 - BUG/MINOR: mworker-prog: Fix segmentation fault during cfgparse 5015 - BUG/MINOR: spoe: Fix memory leak if failing to allocate memory 5016 - BUG/MEDIUM: mworker: don't call the thread and fdtab deinit 5017 - BUG/MEDIUM: stream_interface: Don't add SI_FL_ERR the state is < SI_ST_CON. 5018 - BUG/MEDIUM: connections: Always add the xprt handshake if needed. 5019 - BUG/MEDIUM: ssl: Don't do anything in ssl_subscribe if we have no ctx. 5020 - BUG/MEDIUM: mworker/cli: command pipelining doesn't work anymore 5021 - BUG/MINOR: htx: Save hdrs_bytes when the HTX start-line is replaced 5022 - BUG/MAJOR: mux-h1: Don't crush trash chunk area when outgoing message is formatted 5023 - BUG/MINOR: memory: Set objects size for pools in the per-thread cache 5024 - BUG/MINOR: log: Detect missing sampling ranges in config 5025 - BUG/MEDIUM: proto_htx: Don't add EOM on 1xx informational messages 5026 - BUG/MEDIUM: mux-h1: Use buf_room_for_htx_data() to detect too large messages 5027 - BUG/MINOR: mux-h1: Make format errors during output formatting fatal 5028 - BUG/MEDIUM: ssl: Don't attempt to set alpn if we're not using SSL. 5029 - BUG/MEDIUM: mux-h1: Always release H1C if a shutdown for writes was reported 5030 - BUG/MINOR: mworker/cli: don't output a \n before the response 5031 - BUG/MEDIUM: checks: unblock signals in external checks 5032 - BUG/MINOR: mux-h1: Skip trailers for non-chunked outgoing messages 5033 - BUG/MINOR: mux-h1: Don't return the empty chunk on HEAD responses 5034 - BUG/MEDIUM: connections: Always call shutdown, with no linger. 5035 - BUG/MEDIUM: checks: Make sure the tasklet won't run if the connection is closed. 5036 - BUG/MINOR: contrib/prometheus-exporter: Don't use channel_htx_recv_max() 5037 - BUG/MINOR: hlua: Don't use channel_htx_recv_max() 5038 - BUG/MEDIUM: channel/htx: Use the total HTX size in channel_htx_recv_limit() 5039 - BUG/MINOR: hlua/htx: Respect the reserve when HTX data are sent 5040 - BUG/MINOR: contrib/prometheus-exporter: Respect the reserve when data are sent 5041 - BUG/MEDIUM: connections: Make sure we're unsubscribe before upgrading the mux. 5042 - BUG/MEDIUM: servers: Authorize tfo in default-server. 5043 - BUG/MEDIUM: sessions: Don't keep an extra idle connection in sessions. 5044 - MINOR: server: Add "no-tfo" option. 5045 - BUG/MINOR: contrib/prometheus-exporter: Don't try to add empty data blocks 5046 - MINOR: action: Add the return code ACT_RET_DONE for actions 5047 - BUG/MEDIUM: http/applet: Finish request processing when a service is registered 5048 - BUG/MEDIUM: lb_fas: Don't test the server's lb_tree from outside the lock 5049 - BUG/MEDIUM: mux-h1: Handle TUNNEL state when outgoing messages are formatted 5050 - BUG/MINOR: mux-h1: Don't process input or ouput if an error occurred 5051 - MINOR: stream-int: Factorize processing done after sending data in si_cs_send() 5052 - BUG/MEDIUM: stream-int: Don't rely on CF_WRITE_PARTIAL to unblock opposite si 5053 - DOC: contrib: spoa_server Add some hints for building spoa_server 5054 - DOC: Fix typo in intro.txt 5055 - BUG/MEDIUM: servers: Don't forget to set srv_cs to NULL if we can't reuse it. 5056 - BUG/MINOR: ssl: revert empty handshake detection in OpenSSL <= 1.0.2 5057 - MINOR: pools: release the pool's lock during the malloc/free calls 5058 - MINOR: pools: always pre-initialize allocated memory outside of the lock 5059 - MINOR: pools: make the thread harmless during the mmap/munmap syscalls 5060 - BUG/MEDIUM: fd/threads: fix excessive CPU usage on multi-thread accept 5061 - BUG/MINOR: server: Be really able to keep "pool-max-conn" idle connections 5062 - BUG/MEDIUM: checks: Don't attempt to read if we destroyed the connection. 5063 - BUG/MEDIUM: da: cast the chunk to string. 5064 - DOC: Fix typos and grammer in configuration.txt 5065 - CLEANUP: proto_tcp: Remove useless header inclusions. 5066 - BUG/MEDIUM: servers: Fix a race condition with idle connections. 5067 - MINOR: task: introduce work lists 5068 - BUG/MAJOR: listener: fix thread safety in resume_listener() 5069 - BUG/MEDIUM: mux-h1: Don't release h1 connection if there is still data to send 5070 - BUG/MINOR: mux-h1: Correctly report Ti timer when HTX and keepalives are used 5071 - BUG/MEDIUM: streams: Don't give up if we couldn't send the request. 5072 - BUG/MEDIUM: streams: Don't redispatch with L7 retries if redispatch isn't set. 5073 - BUG/MINOR: mux-pt: do not pretend there's more data after a read0 5074 - BUG/MEDIUM: tcp-check: unbreak multiple connect rules again 5075 - MEDIUM: mworker-prog: Add user/group options to program section 5076 - REGTESTS: checks: tcp-check connect to multiple ports 5077 - BUG/MEDIUM: threads: cpu-map designating a single thread/process are ignored 5078 50792019/06/16 : 2.1-dev0 5080 - exact copy of 2.0.0 5081 50822019/06/16 : 2.0.0 5083 - MINOR: fd: Don't use atomic operations when it's not needed. 5084 - DOC: mworker-prog: documentation for the program section 5085 - MINOR: http: add a new "http-request replace-uri" action 5086 - BUG/MINOR: 51d/htx: The _51d_fetch method, and the methods it calls are now HTX aware. 5087 - MINOR: 51d: Added dummy libraries for the 51Degrees module for testing. 5088 - MINOR: mworker: change formatting in uptime field of "show proc" 5089 - MINOR: mworker: add the HAProxy version in "show proc" 5090 - MINOR: doc: Remove -Ds option in man page 5091 - MINOR: doc: add master-worker in the man page 5092 - MINOR: doc: mention HAPROXY_LOCALPEER in the man 5093 - BUILD: Silence gcc warning about unused return value 5094 - CLEANUP: 51d: move the 51d dummy lib to contrib/51d/src to match the real lib 5095 - BUILD: travis-ci: add 51Degree device detection, update openssl to 1.1.1c 5096 - MINOR: doc: update the manpage and usage message about -S 5097 - BUILD/MINOR: 51d: Updated build registration output to indicate thatif the library is a dummy one or not. 5098 - BUG/MEDIUM: h1: Don't wait for handshake if we had an error. 5099 - BUG/MEDIUM: h1: Wait for the connection if the handshake didn't complete. 5100 - BUG/MINOR: task: prevent schedulable tasks from starving under high I/O activity 5101 - BUG/MINOR: fl_trace/htx: Be sure to always forward trailers and EOM 5102 - BUG/MINOR: channel/htx: Call channel_htx_full() from channel_full() 5103 - BUG/MINOR: http: Use the global value to limit the number of parsed headers 5104 - BUG/MINOR: htx: Detect when tail_addr meet end_addr to maximize free rooms 5105 - BUG/MEDIUM: htx: Don't change position of the first block during HTX analysis 5106 - CLEANUP: channel: Remove channel_htx_fwd_payload() and channel_htx_fwd_all() 5107 - BUG/MEDIUM: proto_htx: Introduce the state ENDING during forwarding 5108 - MINOR: htx: Add 3 flags on the start-line to deal with the request schemes 5109 - MINOR: h2: Set flags about the request's scheme on the start-line 5110 - MINOR: mux-h1: Set flags about the request's scheme on the start-line 5111 - MINOR: mux-h2: Forward clients scheme to servers checking start-line flags 5112 - MEDIUM: server: server-state only rely on server name 5113 - CLEANUP: connection: rename the wait_event.task field to .tasklet 5114 - CLEANUP: tasks: rename task_remove_from_tasklet_list() to tasklet_remove_* 5115 - BUG/MEDIUM: connections: Don't call shutdown() if we want to disable linger. 5116 - DOC: add some environment variables in section 2.3 5117 - BUILD: makefile: clarify the "help" output and list options 5118 - BUG/MINOR: mux-h1: Wake busy mux for I/O when message is fully sent 5119 - BUG: tasks: fix bug introduced by latest scheduler cleanup 5120 - BUG/MEDIUM: mux-h2: fix early close with option abortonclose 5121 - BUG/MEDIUM: connections: Don't use ALPN to pick mux when in mode TCP. 5122 - BUG/MEDIUM: connections: Don't try to send early data if we have no mux. 5123 - BUG/MEDIUM: mux-h2: properly account for the appended data in HTX 5124 - BUILD: makefile: further clarify the "help" output and list targets 5125 - BUILD: makefile: rename "linux2628" to "linux-glibc" and remove older targets 5126 - BUILD: travis-ci: switch to linux-glibc instead of linux2628 5127 - DOC: update few references to the linux* targets and change them to linux-glibc 5128 - BUILD: makefile: detect and reject recently removed linux targets 5129 - BUILD: makefile: enable linux namespaces by default on linux 5130 - BUILD: makefile: enable TFO on linux platforms 5131 - BUILD: makefile: enable getaddrinfo on the linux-glibc target 5132 - DOC: small updates to the CONTRIBUTING file 5133 - BUG/MEDIUM: ssl: Make sure we initiate the handshake after using early data. 5134 - CLEANUP: removed obsolete examples an move a few to better places 5135 - DOC: Fix typos in CONTRIBUTING 5136 - DOC: update the outdated ROADMAP file 5137 - DOC: create a BRANCHES file to explain the life cycle 5138 - DOC: mention in INSTALL haproxy 2.0 is a long-term supported stable version 5139 - BUILD: travis-ci: TFO and GETADDRINFO are now enabled by default 5140 - BUILD: makefile: make the obsolete target detection compatible with make-3.80 5141 - BUILD: tools: work around an internal compiler bug in gcc-3.4 5142 - BUILD: pattern: work around an internal compiler bug in gcc-3.4 5143 - BUILD: makefile: enable USE_RT on Solaris 5144 - BUILD: makefile: do not use echo -n 5145 - DOC: mention a few common build errors in the INSTALL file 5146 51472019/06/11 : 2.0-dev7 5148 - BUG/MEDIUM: mux-h2: make sure the connection timeout is always set 5149 - MINOR: tools: add new bitmap manipulation functions 5150 - MINOR: logs: use the new bitmap functions instead of fd_sets for encoding maps 5151 - MINOR: chunks: Make sure trash_size is only set once. 5152 - Revert "MINOR: chunks: Make sure trash_size is only set once." 5153 - MINOR: threads: serialize threads initialization 5154 - MINOR peers: data structure simplifications for server names dictionary cache. 5155 - DOC: peers: Update for dictionary cache entries for peers protocol. 5156 - MINOR: dict: Store the length of the dictionary entries. 5157 - MINOR: peers: A bit of optimization when encoding cached server names. 5158 - MINOR: peers: Optimization for dictionary cache lookup. 5159 - MEDIUM: tools: improve time format error detection 5160 - BUG/MEDIUM: H1: When upgrading, make sure we don't free the buffer too early. 5161 - BUG/MEDIUM: stream_interface: Make sure we call si_cs_process() if CS_FL_EOI. 5162 - MINOR: threads: avoid clearing harmless twice in thread_release() 5163 - MEDIUM: threads: add thread_sync_release() to synchronize steps 5164 - BUG/MEDIUM: init/threads: prevent initialized threads from starting before others 5165 - OPTIM/MINOR: init/threads: only call protocol_enable_all() on first thread 5166 - BUG/MINOR: dict: race condition fix when inserting dictionary entries. 5167 - MEDIUM: init/threads: don't use spinlocks during the init phase 5168 - BUG/MINOR: cache/htx: Fix the counting of data already sent by the cache applet 5169 - BUG/MEDIUM: compression/htx: Fix the adding of the last data block 5170 - MINOR: flt_trace: Don't scrash the original offset during the random forwarding 5171 - MAJOR: htx: Rework how free rooms are tracked in an HTX message 5172 - MINOR: htx: Add the function htx_move_blk_before() 5173 - Revert "BUG/MEDIUM: H1: When upgrading, make sure we don't free the buffer too early." 5174 - BUG/MINOR: http-rules: mention "deny_status" for "deny" in the error message 5175 - MINOR: http: turn default error files to HTTP/1.1 5176 - BUG/MEDIUM: h1: Don't try to subscribe if we had a connection error. 5177 - BUG/MEDIUM: h1: Don't consider we're connected if the handshake isn't done. 5178 - MINOR: contrib/spoa_server: Upgrade SPOP to 2.0 5179 - BUG/MEDIUM: contrib/spoa_server: Set FIN flag on agent frames 5180 - MINOR: contrib/spoa_server: Add random IP score 5181 - DOC/MINOR: contrib/spoa_server: Fix typo in README 5182 51832019/06/07 : 2.0-dev6 5184 - BUG/MEDIUM: connection: fix multiple handshake polling issues 5185 - MINOR: connection: also stop receiving after a SOCKS4 response 5186 - MINOR: mux-h1: don't try to recv() before the connection is ready 5187 - BUG/MEDIUM: mux-h1: only check input data for the current stream, not next one 5188 - MEDIUM: mux-h1: don't use CS_FL_REOS anymore 5189 - CLEANUP: connection: remove the now unused CS_FL_REOS flag 5190 - CONTRIB: debug: add 4 missing connection/conn_stream flags 5191 - MEDIUM: stream: make a full process_stream() loop when completing I/O on exit 5192 - MINOR: server: increase the default pool-purge-delay to 5 seconds 5193 - BUILD: tools: do not use the weak attribute for trace() on obsolete linkers 5194 - BUG/MEDIUM: vars: make sure the scope is always valid when accessing vars 5195 - BUG/MEDIUM: vars: make the tcp/http unset-var() action support conditions 5196 - BUILD: task: fix a build warning when threads are disabled 5197 - CLEANUP: peers: Remove tabs characters. 5198 - CLEANUP: peers: Replace hard-coded values by macros. 5199 - BUG/MINOR: peers: Wrong stick-table update message building. 5200 - MINOR: dict: Add dictionary new data structure. 5201 - MINOR: peers: Add a LRU cache implementation for dictionaries. 5202 - MINOR: stick-table: Add "server_name" new data type. 5203 - MINOR: cfgparse: Space allocation for "server_name" stick-table data type. 5204 - MINOR: proxy: Add a "server by name" tree to proxy. 5205 - MINOR: server: Add a dictionary for server names. 5206 - MINOR: stream: Stickiness server lookup by name. 5207 - MINOR: peers: Make peers protocol support new "server_name" data type. 5208 - MINOR: stick-table: Make the CLI stick-table handler support dictionary entry data type. 5209 - REGTEST: Add a basic server by name stickiness reg test. 5210 - MINOR: peers: Add dictionary cache information to "show peers" CLI command. 5211 - MINOR: peers: Replace hard-coded for peer protocol 64-bits value encoding by macros. 5212 - MINOR: peers: Replace hard-coded values for peer protocol messaging by macros. 5213 - CLEANUP: ssl: remove unneeded defined(OPENSSL_IS_BORINGSSL) 5214 - BUILD: travis-ci improvements 5215 - MINOR: SSL: add client/server random sample fetches 5216 - BUG/MINOR: channel/htx: Don't alter channel during forward for empty HTX message 5217 - BUG/MINOR: contrib/prometheus-exporter: Add HTX data block in one time 5218 - BUG/MINOR: mux-h1: errflag must be set on H1S and not H1M during output processing 5219 - MEDIUM: mux-h1: refactor output processing 5220 - MINOR: mux-h1: Add the flag HAVE_O_CONN on h1s 5221 - MINOR: mux-h1: Add h1_eval_htx_hdrs_size() to estimate size of the HTX headers 5222 - MINOR: mux-h1: Don't count the EOM in the estimated size of headers 5223 - MEDIUM: cache/htx: Always store info about HTX blocks in the cache 5224 - MEDIUM: htx: Add the parsing of trailers of chunked messages 5225 - MINOR: htx: Don't use end-of-data blocks anymore 5226 - BUG/MINOR: mux-h1: Don't send more data than expected 5227 - BUG/MINOR: flt_trace/htx: Only apply the random forwarding on the message body. 5228 - BUG/MINOR: peers: Wrong "server_name" decoding. 5229 - BUG/MEDIUM: servers: Don't attempt to destroy idle connections if disabled. 5230 - MEDIUM: checks: Make sure we unsubscribe before calling cs_destroy(). 5231 - MEDIUM: connections: Wake the upper layer even if sending/receiving is disabled. 5232 - MEDIUM: ssl: Handle subscribe by itself. 5233 - MINOR: ssl: Make ssl_sock_handshake() static. 5234 - MINOR: connections: Add a new xprt method, remove_xprt. 5235 - MINOR: connections: Add a new xprt method, add_xprt(). 5236 - MEDIUM: connections: Introduce a handshake pseudo-XPRT. 5237 - MEDIUM: connections: Remove CONN_FL_SOCK* 5238 - BUG/MEDIUM: ssl: Don't forget to initialize ctx->send_recv and ctx->recv_wait. 5239 - BUG/MINOR: peers: Wrong server name parsing. 5240 - MINOR: server: really increase the pool-purge-delay default to 5 seconds 5241 - BUG/MINOR: stream: don't emit a send-name-header in conn error or disconnect states 5242 - MINOR: stream-int: use bit fields to match multiple stream-int states at once 5243 - MEDIUM: stream-int: remove dangerous interval checks for stream-int states 5244 - MEDIUM: stream-int: introduce a new state SI_ST_RDY 5245 - MAJOR: stream-int: switch from SI_ST_CON to SI_ST_RDY on I/O 5246 - MEDIUM: stream-int: make idle-conns switch to ST_RDY 5247 - MEDIUM: stream: re-arrange the connection setup status reporting 5248 - MINOR: stream-int: split si_update() into si_update_rx() and si_update_tx() 5249 - MINOR: stream-int: make si_sync_send() from the send code of si_update_both() 5250 - MEDIUM: stream: rearrange the events to remove the loop 5251 - MEDIUM: stream: only loop on flags relevant to the analysers 5252 - MEDIUM: stream: don't abusively loop back on changes on CF_SHUT*_NOW 5253 - BUILD: stream-int: avoid a build warning in dev mode in si_state_bit() 5254 - BUILD: peers: fix a build warning about an incorrect intiialization 5255 - BUG/MINOR: time: make sure only one thread sets global_now at boot 5256 - BUG/MEDIUM: tcp: Make sure we keep the polling consistent in tcp_probe_connect. 5257 52582019/06/02 : 2.0-dev5 5259 - BUILD: watchdog: use si_value.sival_int, not si_int for the timer's value 5260 - BUILD: signals: FreeBSD has SI_LWP instead of SI_TKILL 5261 - BUILD: watchdog: condition it to USE_RT 5262 - MINOR: raw_sock: report global traffic statistics 5263 - MINOR: stats: report the global output bit rate in human readable form 5264 - BUG/MINOR: proto-htx: Try to keep connections alive on redirect 5265 - BUG/MEDIUM: spoe: Don't use the SPOE applet after releasing it 5266 - BUG/MINOR: lua: Set right direction and flags on new HTTP objects 5267 - BUG/MINOR: mux-h2: Count EOM in bytes sent when a HEADERS frame is formatted 5268 - BUG/MINOR: mux-h1: Report EOI instead EOS on parsing error or H2 upgrade 5269 - BUG/MEDIUM: proto-htx: Not forward too much data when 1xx reponses are handled 5270 - BUG/MINOR: htx: Remove a forgotten while loop in htx_defrag() 5271 - DOC: fix typos 5272 - BUG/MINOR: ssl_sock: Fix memory leak when disabling compression 5273 - OPTIM: freq-ctr: don't take the date lock for most updates 5274 - MEDIUM: mux-h2: avoid doing expensive buffer realigns when not absolutely needed 5275 - CLEANUP: debug: remove the TRACE() macro 5276 - MINOR: buffer: introduce b_make() to make a buffer from its parameters 5277 - MINOR: buffer: add a new buffer ring API to manipulate rings of buffers 5278 - MEDIUM: mux-h2: replace all occurrences of mbuf with a buffer ring 5279 - MEDIUM: mux-h2: make the conditions to send based on mbuf, not just its tail 5280 - MINOR: mux-h2: introduce h2_release_mbuf() to release all buffers in the mbuf ring 5281 - MEDIUM: mux-h2: make the send() function iterate over all mux buffers 5282 - CLEANUP: mux-h2: consistently use a local variable for the mbuf 5283 - MINOR: mux-h2: report the mbuf's head and tail in "show fd" 5284 - MAJOR: mux-h2: switch to next mux buffer on buffer full condition. 5285 - BUILD: connections: shut up gcc about impossible out-of-bounds warning 5286 - BUILD: ssl: fix latest LibreSSL reg-test error 5287 - MINOR: cli/activity: remove "fd_del" and "fd_skip" from show activity 5288 - MINOR: cli/activity: add 3 general purpose counters in development mode 5289 - BUG/MAJOR: lb/threads: make sure the avoided server is not full on second pass 5290 - BUG/MEDIUM: queue: fix the tree walk in pendconn_redistribute. 5291 - BUG/MEDIUM: threads: fix double-word CAS on non-optimized 32-bit platforms 5292 - MEDIUM: config: now alert when two servers have the same name 5293 - MINOR: htx: Remove the macro IS_HTX_SMP() and always use IS_HTX_STRM() instead 5294 - MINOR: htx: Move the macro IS_HTX_STRM() in proto/stream.h 5295 - MINOR: htx: Store the head position instead of the wrap one 5296 - MINOR: htx: Store start-line block's position instead of address of its payload 5297 - MINOR: htx: Add functions to get the first block of an HTX message 5298 - MINOR: mux-h2/htx: Get the start-line from the head when HEADERS frame is built 5299 - MINOR: htx: Replace the function http_find_stline() by http_get_stline() 5300 - CLEANUP: htx: Remove unused function htx_get_stline() 5301 - MINOR: http/htx: Use sl_pos directly to replace the start-line 5302 - MEDIUM: http/htx: Perform analysis relatively to the first block 5303 - MINOR: channel/htx: Call channel_htx_recv_max() from channel_recv_max() 5304 - MINOR: htx: Add function htx_get_max_blksz() 5305 - BUG/MINOR: htx: Change htx_xfer_blk() to also count metadata 5306 - MEDIUM: mux-h1: Use the count value received from the SI in h1_rcv_buf() 5307 - MINOR: mux-h2: Use the count value received from the SI in h2_rcv_buf() 5308 - MINOR: stream-int: Don't use the flag CO_RFL_KEEP_RSV anymore in si_cs_recv() 5309 - MINOR: connection: Remove the unused flag CO_RFL_KEEP_RSV 5310 - MINOR: mux-h2/htx: Support zero-copy when possible in h2_rcv_buf() 5311 - MINOR: htx: Add a field to set the memory used by headers in the HTX start-line 5312 - MINOR: h2/htx: Set hdrs_bytes on the SL when an HTX message is produced 5313 - MINOR: mux-h1: Set hdrs_bytes on the SL when an HTX message is produced 5314 - MINOR: htx: Be sure to xfer all headers in one time in htx_xfer_blks() 5315 - MEDIUM: htx: 1xx messages are now part of the final reponses 5316 - MINOR: channel/htx: Add function to forward headers of an HTX message 5317 - MINOR: filters/htx: Use channel_htx_fwd_headers() after headers filtering 5318 - MINOR: proto-htx: Use channel_htx_fwd_headers() to forward 1xx responses 5319 - MEDIUM: htx: Store the first block position instead of the start-line one 5320 - MINOR: stats/htx: don't use the first block position but the head one 5321 - MINOR: channel/htx: Add functions to forward a part or all HTX payload 5322 - MINOR: proto-htx: Use channel_htx_fwd_all() when unfiltered body are forwarded 5323 - MEDIUM: filters/htx: Filter body relatively to the first block 5324 - MINOR: htx: Optimize htx_drain() when all data are drained 5325 - MINOR: htx: don't rely on htx_find_blk() anymore in the function htx_truncate() 5326 - MINOR: htx: remove the unused function htx_find_blk() 5327 - MINOR: htx: Remove support of pseudo headers because it is unused 5328 - BUG/MEDIUM: http: fix "http-request reject" when not final 5329 - MINOR: ssl: Make sure the underlying xprt's init method doesn't fail. 5330 - MINOR: ssl: Don't forget to call the close method of the underlying xprt. 5331 - MINOR: htx: rename htx_append_blk_value() to htx_add_data_atonce() 5332 - MINOR: htx: make htx_add_data() return the transmitted byte count 5333 - MEDIUM: htx: make htx_add_data() never defragment the buffer 5334 - MINOR: activity: write totals on the "show activity" output 5335 - MINOR: activity: report totals and average separately 5336 - MEDIUM: poller: separate the wait time from the wake events 5337 - MINOR: activity: report the number of failed pool/buffer allocations 5338 - MEDIUM: buffers: relax the buffer lock a little bit 5339 - MINOR: task: turn the WQ lock to an RW_LOCK 5340 - MEDIUM: task: don't grab the WR lock just to check the WQ 5341 - BUG/MEDIUM: mux-h1: Don't skip the TCP splicing when there is no more data to read 5342 - MEDIUM: sessions: Introduce session flags. 5343 - BUG/MEDIUM: h2: Don't forget to set h2s->cs to NULL after having free'd cs. 5344 - BUG/MEDIUM: mux-h2: fix the conditions to end the h2_send() loop 5345 - BUG/MEDIUM: mux-h2: don't refrain from offering oneself a used buffer 5346 - BUG/MEDIUM: connection: Use the session to get the origin address if needed. 5347 - MEDIUM: tasks: Get rid of active_tasks_mask. 5348 - MEDIUM: connection: Upstream SOCKS4 proxy support 5349 - BUILD: contrib/prometheus: fix build breakage caused by move of idle_pct 5350 - BUG/MINOR: deinit/threads: make hard-stop-after perform a clean exit 5351 53522019/05/22 : 2.0-dev4 5353 - BUILD: enable freebsd builds on cirrus-ci 5354 - BUG/MINOR: http_fetch: Rely on the smp direction for "cookie()" and "hdr()" 5355 - MEDIUM: Make 'option forceclose' actually warn 5356 - MEDIUM: Make 'resolution_pool_size' directive fatal 5357 - DOC: management: place "show activity" at the right place 5358 - MINOR: cli/activity: show the dumping thread ID starting at 1 5359 - MINOR: task: export global_task_mask 5360 - MINOR: cli/debug: add a thread dump function 5361 - BUG/MEDIUM: streams: Don't use CF_EOI to decide if the request is complete. 5362 - BUG/MEDIUM: streams: Try to L7 retry before aborting the connection. 5363 - BUG/MINOR: debug: make ha_task_dump() always check the task before dumping it 5364 - BUG/MINOR: debug: make ha_task_dump() actually dump the requested task 5365 - MINOR: debug: make ha_thread_dump() and ha_task_dump() take a buffer 5366 - BUG/MINOR: debug: don't check the call date on tasklets 5367 - MINOR: thread: implement ha_thread_relax() 5368 - MINOR: task: put barriers after each write to curr_task 5369 - MINOR: task: always reset curr_task when freeing a task or tasklet 5370 - MINOR: stream: detach the stream from its own task on stream_free() 5371 - MEDIUM: debug/threads: implement an advanced thread dump system 5372 - REGTEST: extend the check duration on tls_health_checks and mark it slow 5373 - DOC: fix "successful" typo 5374 - MINOR: init: setenv HAPROXY_CFGFILES 5375 - MINOR: threads/init: synchronize the threads startup 5376 - MEDIUM: init/mworker: make the pipe register function a regular initcall 5377 - CLEANUP: memory: make the fault injection code use the OTHER_LOCK label 5378 - CLEANUP: threads: remove the now unused START_LOCK label 5379 - MINOR: init/threads: make the global threads an array of structs 5380 - MINOR: threads: add each thread's clockid into the global thread_info 5381 - CLEANUP: stream: remove an obsolete debugging test 5382 - MINOR: tools: add dump_hex() 5383 - MINOR: debug: implement ha_panic() 5384 - MINOR: debug/cli: add some debugging commands for developers 5385 - MINOR: tools: provide a may_access() function and make dump_hex() use it 5386 - MINOR: debug: make ha_panic() report threads starting at 1 5387 - REORG: compat: move some integer limit definitions from standard.h to compat.h 5388 - REORG: threads: move the struct thread_info from global.h to hathreads.h 5389 - MINOR: compat: make sure to always define clockid_t 5390 - MINOR: threads: always place the clockid in the struct thread_info 5391 - MINOR: threads: add a thread-local thread_info pointer "ti" 5392 - MINOR: time: move the cpu, mono, and idle time to thread_info 5393 - MINOR: time: add a function to retrieve another thread's cputime 5394 - MINOR: debug: report each thread's cpu usage in "show thread" 5395 - BUILD: threads: only assign the clock_id when supported 5396 - BUILD: makefile: use USE_OBSOLETE_LINKER for solaris 5397 - BUILD: makefile: remove -fomit-frame-pointer optimisation (solaris) 5398 - MAJOR: polling: add event ports support (Solaris) 5399 - BUG/MEDIUM: streams: Don't switch from SI_ST_CON to SI_ST_DIS on read0. 5400 - CLEANUP: time: refine the test on _POSIX_TIMERS 5401 - MINOR: compat: define a new empty type empty_t for non-implemented fields 5402 - CLEANUP: time: switch clockid_t to empty_t when not available 5403 - BUG/MINOR: mworker: Fix memory leak of mworker_proc members 5404 - CLEANUP: objtype: make obj_type() and obj_type_name() take consts 5405 - MINOR: debug: switch to SIGURG for thread dumps 5406 - CLEANUP: threads: really move thread_info to hathreads.c 5407 - MINOR: threads: make threads_{harmless|want_rdv}_mask constant 0 without threads 5408 - CLEANUP: debug: always report harmless/want_rdv even without threads 5409 - MINOR: threads: implement ha_tkill() and ha_tkillall() 5410 - CLEANUP: debug: make use of ha_tkill() and remove ifdefs 5411 - MINOR: stream: introduce a stream_dump() function and use it in stream_dump_and_crash() 5412 - MINOR: debug: dump streams when an applet, iocb or stream is known 5413 - MINOR: threads: add a "stuck" flag to the thread_info struct 5414 - MINOR: threads: add a timer_t per thread in thread_info 5415 - MAJOR: watchdog: implement a thread lockup detection mechanism 5416 - MINOR: stream: remove the cpu time detection from process_stream() 5417 - MINOR: connection: report the mux names in "haproxy -vv" 5418 - CLEANUP: mux-h1: use "H1" and not "h1" as the mux's name 5419 - BUG/MEDIUM: WURFL: segfault in wurfl-get() with missing info. 5420 - MINOR: WURFL: call header_retireve_callback() in dummy library 5421 - MINOR: WURFL: fixed Engine load failed error when wurfl-information-list contains wurfl_root_id 5422 - MINOR: WURFL: shows log messages during module initialization 5423 - MINOR: WURFL: removes heading wurfl-information-separator from wurfl-get-all() and wurfl-get() results 5424 - MINOR: WURFL: wurfl_get() and wurfl_get_all() now return an empty string if device detection fails 5425 - MEDIUM: WURFL: HTX awareness. 5426 - MINOR: WURFL: module version bump to 2.0 5427 - MINOR: WURFL: do not emit warnings when not configured 5428 - CONTRIB: wurfl: address 3 build issues in the wurfl dummy library 5429 - BUG/MEDIUM: init/threads: provide per-thread alloc/free function callbacks 5430 - BUILD: travis: add sanitizers to travis-ci builds 5431 - BUILD: time: remove the test on _POSIX_C_SOURCE 5432 - CLEANUP: build: rename some build macros to use the USE_* ones 5433 - CLEANUP: raw_sock: remove support for very old linux splice bug workaround 5434 - BUG/MEDIUM: dns: make the port numbers unsigned 5435 - MEDIUM: config: deprecate the antique req* and rsp* commands 5436 54372019/05/15 : 2.0-dev3 5438 - BUG/MINOR: peers: Really close the sessions with no heartbeat. 5439 - CLEANUP: peers: remove useless annoying tabulations. 5440 - CLEANUP: peers: replace timeout constants by macros. 5441 - REGTEST: Enable again reg tests with HEAD HTTP method usage. 5442 - DOC: The option httplog is no longer valid in a backend. 5443 - DOC: peers: Peers protocol documentation update. 5444 - REGTEST: remove unexpected "nbthread" statement from Lua test cases 5445 - BUILD: Makefile: remove 11-years old workarounds for deprecated options 5446 - BUILD: remove 10-years old error message for obsolete option USE_TCPSPLICE 5447 - BUILD: Makefile: remove outdated support for dlmalloc 5448 - BUILD: Makefile: consider a variable's origin and not its value for the options list 5449 - BUILD: Makefile: also report disabled options in the BUILD_OPTIONS variable 5450 - BUILD: Makefile: shorten default settings declaration 5451 - BUILD: Makefile: clean up the target declarations 5452 - BUILD: report the whole feature set with their status in haproxy -vv 5453 - BUILD: pass all "USE_*" variables as -DUSE_* to the compiler 5454 - REGTEST: script: make the script use the new features list 5455 - REGTEST: script: remove platform-specific assigments of OPTIONS 5456 - BUG/MINOR: peers: Missing initializations after peer session shutdown. 5457 - BUG/MINOR: contrib/prometheus-exporter: Fix applet accordingly to recent changes 5458 - BUILD/MINOR: listener: Silent a few signedness warnings. 5459 - BUG/MINOR: mux-h1: Only skip invalid C-L headers on output 5460 - BUG/MEDIUM: mworker: don't free the wrong child when not found 5461 - BUG/MEDIUM: checks: Don't bother subscribing if we have a connection error. 5462 - BUG/MAJOR: checks: segfault during tcpcheck_main 5463 - BUILD: makefile: work around an old bug in GNU make-3.80 5464 - BUILD: makefile: work around another bug in make 3.80 5465 - BUILD: http: properly mark some struct as extern 5466 - BUILD: chunk: properly declare pool_head_trash as extern 5467 - BUILD: cache: avoid a build warning with some compilers/linkers 5468 - MINOR: tools: make memvprintf() never pass a NULL target to vsnprintf() 5469 - MINOR: tools: add an unsetenv() implementation 5470 - BUILD: re-implement an initcall variant without using executable sections 5471 - BUILD: use inttypes.h instead of stdint.h 5472 - BUILD: connection: fix naming of ip_v field 5473 - BUILD: makefile: fix build of IPv6 header on aix51 5474 - BUILD: makefile: add _LINUX_SOURCE_COMPAT to build on AIX-51 5475 - BUILD: define unsetenv on AIX 5.1 5476 - BUILD: Makefile: disable shared cache on AIX 5.1 5477 - MINOR: ssl: Add aes_gcm_dec converter 5478 - REORG: mworker: move serializing functions to mworker.c 5479 - REORG: mworker: move signals functions to mworker.c 5480 - REORG: mworker: move IPC functions to mworker.c 5481 - REORG: mworker: move signal handlers and related functions 5482 - REORG: mworker: move mworker_cleanlisteners to mworker.c 5483 - MINOR: mworker: calloc mworker_proc structures 5484 - MINOR: mworker: don't use children variable anymore 5485 - MINOR: cli: export cli_parse_default() definition in cli.h 5486 - REORG: mworker/cli: move CLI functions to mworker.c 5487 - MEDIUM: mworker-prog: implement program for master-worker 5488 - MINOR: mworker/cli: show programs in 'show proc' 5489 - BUG/MINOR: cli: correctly handle abns in 'show cli sockets' 5490 - MINOR: cli: start addresses by a prefix in 'show cli sockets' 5491 - MINOR: cli: export HAPROXY_CLI environment variable 5492 - BUG/MINOR: htx: Preserve empty HTX messages with an unprocessed parsing error 5493 - BUG/MINOR: proto_htx: Reset to_forward value when a message is set to DONE 5494 - REGTEST: http-capture/h00000: Relax a regex matching the log message 5495 - REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled 5496 - REGTEST: http-rules/h00003: Use a different client for requests expecting a 301 5497 - REGTEST: log/b00000: Be sure the client always hits its timeout 5498 - REGTEST: lua/b00003: Relax the regex matching the log message 5499 - REGTEST: lua/b00003: Specify the HAProxy pid when the command ss is executed 5500 - BUG/MEDIUM: peers: fix a case where peer session is not cleanly reset on release. 5501 - BUG/MEDIUM: h2: Don't attempt to recv from h2_process_demux if we subscribed. 5502 - BUG/MEDIUM: htx: fix random premature abort of data transfers 5503 - BUG/MEDIUM: streams: Don't remove the SI_FL_ERR flag in si_update_both(). 5504 - BUG/MEDIUM: streams: Store prev_state before calling si_update_both(). 5505 - BUG/MEDIUM: stream: Don't clear the stream_interface flags in si_update_both. 5506 - MINOR: initcall: Don't forget to define the __start/stop_init_##stg symbols. 5507 - MINOR: threads: Implement thread_cpus_enabled() for FreeBSD. 5508 - BUG/MEDIUM: pattern: assign pattern IDs after checking the config validity 5509 - MINOR: skip get_gmtime where tm is unused 5510 - MINOR: ssl: Activate aes_gcm_dec converter for BoringSSL 5511 - BUG/MEDIUM: streams: Only re-run process_stream if we're in a connected state. 5512 - BUG/MEDIUM: stream_interface: Don't bother doing chk_rcv/snd if not connected. 5513 - BUG/MEDIUM: task/threads: address a fairness issue between local and global tasks 5514 - BUG/MINOR: tasks: make sure the first task to be queued keeps its nice value 5515 - BUG/MINOR: listener: renice the accept ring processing task 5516 - MINOR: cli/listener: report the number of accepts on "show activity" 5517 - MINOR: cli/activity: report the accept queue sizes in "show activity" 5518 - BUG/MEDIUM: spoe: Queue message only if no SPOE applet is attached to the stream 5519 - BUG/MEDIUM: spoe: Return an error if nothing is encoded for fragmented messages 5520 - BUG/MINOR: spoe: Be sure to set tv_request when each message fragment is encoded 5521 - BUG/MEDIUM: htx: Defrag if blocks position is changed and the payloads wrap 5522 - BUG/MEDIUM: htx: Don't crush blocks payload when append is done on a data block 5523 - MEDIUM: htx: Deprecate the option 'http-tunnel' and ignore it in HTX 5524 - MINOR: proto_htx: Don't adjust transaction mode anymore in HTX analyzers 5525 - BUG/MEDIUM: htx: Fix the process of HTTP CONNECT with h2 connections 5526 - MINOR: mux-h1: Simplify handling of 1xx responses 5527 - MINOR: stats/htx: Don't add "Connection: close" header anymore in stats responses 5528 - MEDIUM: h1: Add an option to sanitize connection headers during parsing 5529 - MEDIUM: mux-h1: Simplify the connection mode management by sanitizing headers 5530 - MINOR: mux-h1: Don't release the conn_stream anymore when h1s is destroyed 5531 - BUG/MINOR: mux-h1: Handle the flag CS_FL_KILL_CONN during a shutdown read/write 5532 - MINOR: mux-h2: Add a mux_ops dedicated to the HTX mode 5533 - MINOR: muxes: Add a flag to specify a multiplexer uses the HTX 5534 - MINOR: stream: Set a flag when the stream uses the HTX 5535 - MINOR: http: update the macro IS_HTX_STRM() to check the stream flag SF_HTX 5536 - MINOR: http_fetch/htx: Use stream flags instead of px mode in smp_prefetch_htx 5537 - MINOR: filters/htx: Use stream flags instead of px mode to instanciate a filter 5538 - MINOR: muxes: Rely on conn_is_back() during init to handle front/back conn 5539 - MEDIUM: muxes: Add an optional input buffer during mux initialization 5540 - MINOR: muxes: Pass the context of the mux to destroy() instead of the connection 5541 - MEDIUM: muxes: Be prepared to don't own connection during the release 5542 - MEDIUM: connection: Add conn_upgrade_mux_fe() to handle mux upgrades 5543 - MEDIUM: htx: Allow the option http-use-htx to be used on TCP proxies too 5544 - MAJOR: proxy/htx: Handle mux upgrades from TCP to HTTP in HTX mode 5545 - MAJOR: muxes/htx: Handle inplicit upgrades from h1 to h2 5546 - MAJOR: htx: Enable the HTX mode by default for all proxies 5547 - REGTEST: Use HTX by default and add '--no-htx' option to disable it 5548 - BUG/MEDIUM: muxes: Don't dereference mux context if null in release functions 5549 - CLEANUP: task: do not export rq_next anymore 5550 - MEDIUM: tasks: improve fairness between the local and global queues 5551 - MEDIUM: tasks: only base the nice offset on the run queue depth 5552 - MINOR: tasks: restore the lower latency scheduling when niced tasks are present 5553 - BUG/MEDIUM: map: Fix memory leak in the map converter 5554 - BUG/MINOR: ssl: Fix 48 byte TLS ticket key rotation 5555 - BUILD: task/thread: fix single-threaded build of task.c 5556 - BUILD: cli/threads: fix build in single-threaded mode 5557 - BUG/MEDIUM: muxes: Make sure we unsubcribed when destroying mux ctx. 5558 - BUG/MEDIUM: h2: Make sure we're not already in the send_list in h2_subscribe(). 5559 - BUG/MEDIUM: h2: Revamp the way send subscriptions works. 5560 - MINOR: connections: Remove the SUB_CALL_UNSUBSCRIBE flag. 5561 - BUG/MEDIUM: Threads: Only use the gcc >= 4.7 builtins when using gcc >= 4.7. 5562 - BUILD: address a few cases of "static <type> inline foo()" 5563 - BUILD: do not specify "const" on functions returning structs or scalars 5564 - BUILD: htx: fix a used uninitialized warning on is_cookie2 5565 - MINOR: peers: Add a new command to the CLI for peers. 5566 - DOC: update for "show peers" CLI command. 5567 - BUG/MAJOR: lb/threads: fix insufficient locking on round-robin LB 5568 - MEDIUM: mworker: store the leaving state of a process 5569 - MEDIUM: mworker-prog: implements 'option start-on-reload' 5570 - CLEANUP: mworker: remove the type field in mworker_proc 5571 - MEDIUM: mworker/cli: export the HAPROXY_MASTER_CLI variable 5572 - MINOR: cli: don't add a semicolon at the end of HAPROXY_CLI 5573 - MINOR: mworker: export HAPROXY_MWORKER=1 when running in mworker mode 5574 - MINOR: init: add a "set-dumpable" global directive to enable core dumps 5575 - BUG/MINOR: listener/mq: correctly scan all bound threads under low load 5576 - BUG/MINOR: mworker: mworker_kill should apply on every children 5577 - BUG/MINOR: mworker: don't exit with an ambiguous value 5578 - BUG/MINOR: mworker: ensure that we still quits with SIGINT 5579 - REGTESTS: exclude tests that require ssl, pcre if no such feature is enabled 5580 - BUG/MINOR: mux-h1: Process input even if the input buffer is empty 5581 - BUG/MINOR: mux-h1: Don't switch the parser in busy mode if other side has done 5582 - BUG/MEDIUM: mux-h1: Notify the stream waiting for TCP splicing if ibuf is empty 5583 - BUG/MEDIUM: mux-h1: Enable TCP splicing to exchange data only 5584 - MINOR: mux-h1: Handle read0 during TCP splicing 5585 - BUG/MEDIUM: htx: Don't return the start-line if the HTX message is empty 5586 - BUG/MAJOR: http_fetch: Get the channel depending on the keyword used 5587 - BUG/MINOR: http_fetch/htx: Allow permissive sample prefetch for the HTX 5588 - BUG/MINOR: http_fetch/htx: Use HTX versions if the proxy enables the HTX mode 5589 - BUG/MEDIUM: tasks: Make sure we set TASK_QUEUED before adding a task to the rq. 5590 - BUG/MEDIUM: tasks: Make sure we modify global_tasks_mask with the rq_lock. 5591 - MINOR: tasks: Don't consider we can wake task with tasklet_wakeup(). 5592 - MEDIUM: tasks: No longer use rq.node.leaf_p as a lock. 5593 - MINOR: tasks: Don't set the TASK_RUNNING flag when adding in the tasklet list. 5594 - BUG/MEDIUM: applets: Don't use task_in_rq(). 5595 - BUG/MAJOR: task: make sure never to delete a queued task 5596 - MINOR: task/thread: factor out a wake-up condition 5597 - CLEANUP: task: remain consistent when using the task's handler 5598 - MEDIUM: tasks: Merge task_delete() and task_free() into task_destroy(). 5599 - MEDIUM: tasks: Don't account a destroyed task as a runned task. 5600 - BUG/MINOR: contrib/prometheus-exporter: Fix a typo in the run-queue metric type 5601 - MINOR: contrib/prometheus-exporter: Remove usless rate metrics 5602 - MINOR: contrib/prometheus-exporter: Rename some metrics to be more usable 5603 - MINOR: contrib/prometheus-exporter: Follow best practices about metrics type 5604 - BUG/MINOR: mworker: disable busy polling in the master process 5605 - MEDIUM: tasks: Use __ha_barrier_store after modifying global_tasks_mask. 5606 - MEDIUM: ssl: Give ssl_sock its own context. 5607 - MEDIUM: connections: Move some fields from struct connection to ssl_sock_ctx. 5608 - MEDIUM: ssl: provide its own subscribe/unsubscribe function. 5609 - MEDIUM: connections: Provide a xprt_ctx for each xprt method. 5610 - MEDIUM: ssl: provide our own BIO. 5611 - BUILD/medium: ssl: Fix build with OpenSSL < 1.1.0 5612 - MINOR: peers: adds counters on show peers about tasks calls. 5613 - MEDIUM: enable travis-ci builds 5614 - MINOR: fd: Add a counter of used fds. 5615 - MEDIUM: connections: Add a way to control the number of idling connections. 5616 - BUG/MEDIUM: maps: only try to parse the default value when it's present 5617 - BUG/MINOR: acl: properly detect pattern type SMP_T_ADDR 5618 - REGTEST: Missing REQUIRE_VERSION declarations. 5619 - MINOR: proto_tcp: tcp-request content: enable set-dst and set-dst-var 5620 - BUG/MEDIUM: h1: Don't parse chunks CRLF if not enough data are available 5621 - BUG/MEDIUM: thread/http: Add missing locks in set-map and add-acl HTTP rules 5622 - BUG/MEDIUM: stream: Don't request a server connection if a shutw was scheduled 5623 - BUG/MINOR: 51d: Get the request channel to call CHECK_HTTP_MESSAGE_FIRST() 5624 - BUG/MINOR: da: Get the request channel to call CHECK_HTTP_MESSAGE_FIRST() 5625 - MINOR: gcc: Fix a silly gcc warning in connect_server() 5626 - MINOR: ssl/cli: async fd io-handlers printable on show fd 5627 - Revert "CLEANUP: wurfl: remove dead, broken and unmaintained code" 5628 - BUILD: add USE_WURFL to the list of known build options 5629 - MINOR: wurfl: indicate in haproxy -vv the wurfl version in use 5630 - BUILD: wurfl: build fix for 1.9/2.0 code base 5631 - CLEANUP: wurfl: removed deprecated methods 5632 - DOC: wurfl: added point of contact in MAINTAINERS file 5633 - MINOR: wurfl: enabled multithreading mode 5634 - MINOR: contrib: dummy wurfl library 5635 - MINOR: dns: dns_requester structures are now in a memory pool 5636 - MINOR: dns: move callback affection in dns_link_resolution() 5637 - MINOR: obj_type: new object type for struct stream 5638 - MINOR: action: new '(http-request|tcp-request content) do-resolve' action 5639 - MINOR: log: Extract some code to send syslog messages. 5640 - REGTEST: replace LEVEL option by a more human readable one. 5641 - REGTEST: rename the reg test files. 5642 - REGTEST: adapt some reg tests after renaming. 5643 - REGTEST: make the "run-regtests" script search for tests in reg-tests by default 5644 - BUG/MAJOR: stream: Missing DNS context initializations. 5645 - BUG/MEDIUM: stream: Fix the way early aborts on the client side are handled 5646 - BUG/MINOR: spoe: Don't systematically wakeup SPOE stream in the applet handler 5647 - BUG/MEDIUM: ssl: Return -1 on recv/send if we got EAGAIN. 5648 - BUG/MAJOR: lb/threads: fix AB/BA locking issue in round-robin LB 5649 - BUG/MAJOR: muxes: Use the HTX mode to find the best mux for HTTP proxies only 5650 - BUG/MINOR: htx: Exclude TCP proxies when the HTX mode is handled during startup 5651 - CLEANUP: task: report calls as unsigned in show sess 5652 - MINOR: tasks/activity: report the context switch and task wakeup rates 5653 - MINOR: stream: measure and report a stream's call rate in "show sess" 5654 - MINOR: applet: measure and report an appctx's call rate in "show sess" 5655 - BUILD: extend Travis CI config to support more platforms 5656 - REGTEST: exclude osx and generic targets for 40be_2srv_odd_health_checks 5657 - REGTEST: relax the IPv6 address format checks in converters_ipmask_concat_strcmp_field_word 5658 - REGTEST: exclude OSX and generic targets from abns_socket.vtc 5659 - BUILD: travis: remove the "allow_failures" entry 5660 - BUG/MINOR: activity: always initialize the profiling variable 5661 - MINOR: activity: make the profiling status per thread and not global 5662 - MINOR: activity: enable automatic profiling turn on/off 5663 - CLEANUP: standard: use proper const to addr_to_str() and port_to_str() 5664 - BUG/MINOR: proto_http: properly reset the stream's call rate on keep-alive 5665 - MINOR: connection: make the debugging helper functions safer 5666 - MINOR: stream/debug: make a stream dump and crash function 5667 - MEDIUM: appctx/debug: force a crash if an appctx spins over itself forever 5668 - MEDIUM: stream/debug: force a crash if a stream spins over itself forever 5669 - MEDIUM: streams: measure processing time and abort when detecting bugs 5670 - BUILD/MEDIUM: contrib: Dummy DeviceAtlas API. 5671 - MEDIUM: da: HTX mode support. 5672 - BUG/MEDIUM: mux-h2: properly deal with too large headers frames 5673 - BUG/MINOR: http: Call stream_inc_be_http_req_ctr() only one time per request 5674 - BUG/MEDIUM: spoe: arg len encoded in previous frag frame but len changed 5675 - MINOR: spoe: Use the sample context to pass frag_ctx info during encoding 5676 - DOC: contrib/modsecurity: Typos and fix the reject example 5677 - BUG/MEDIUM: contrib/modsecurity: If host header is NULL, don't try to strdup it 5678 - MINOR: log: Add "sample" new keyword to "log" lines. 5679 - MINOR: log: Enable the log sampling and load-balancing feature. 5680 - DOC: log: Document the sampling and load-balancing logging feature. 5681 - REGTEST: Add a new reg test for log load-balancing feature. 5682 - BUG/MAJOR: map/acl: real fix segfault during show map/acl on CLI 5683 - REGTEST: Make this reg test be Linux specific. 5684 - CLEANUP: task: move the task_per_thread definition to task.h 5685 - MINOR: activity: report context switch counts instead of rates 5686 - MINOR: threads: Implement HA_ATOMIC_LOAD(). 5687 - BUG/MEDIUM: port_range: Make the ring buffer lock-free. 5688 - BUG/MEDIUM: listener: Fix how unlimited number of consecutive accepts is handled 5689 - MINOR: config: Test validity of tune.maxaccept during the config parsing 5690 - CLEANUP: config: Don't alter listener->maxaccept when nbproc is set to 1 5691 - BUG/MEDIUM: servers: fix typo "src" instead of "srv" 5692 - BUG/MEDIUM: ssl: Don't pretend we can retry a recv/send if we got a shutr/w. 5693 - BUG/MINOR: haproxy: fix rule->file memory leak 5694 - BUG/MINOR: log: properly free memory on logformat parse error and deinit() 5695 - BUG/MINOR: checks: free memory allocated for tasklets 5696 - BUG/MEDIUM: pattern: fix memory leak in regex pattern functions 5697 - BUG/MEDIUM: channels: Don't forget to reset output in channel_erase(). 5698 - BUG/MEDIUM: connections: Make sure we remove CO_FL_SESS_IDLE on disown. 5699 - MINOR: threads: flatten the per-thread cpu-map 5700 - MINOR: init/threads: remove the useless tids[] array 5701 - MINOR: init/threads: make the threads array global 5702 - BUG/MEDIUM: ssl: Use the early_data API the right way. 5703 - BUG/MEDIUM: streams: Don't add CF_WRITE_ERROR if early data were rejected. 5704 - MEDIUM: streams: Add the ability to retry a request on L7 failure. 5705 - MEDIUM: streams: Add a way to replay failed 0rtt requests. 5706 - MEDIUM: streams: Add a new keyword for retry-on, "junk-response" 5707 - BUG/MINOR: stream: also increment the retry stats counter on L7 retries 5708 - BUG/MEDIUM: checks: make sure the warmup task takes the server lock 5709 - BUG/MINOR: logs/threads: properly split the log area upon startup 5710 - BUILD: extend travis-ci matrix 5711 - CLEANUP: Remove appsession documentation 5712 - DOC: Fix typo in keyword matrix 5713 - BUILD: remove "build_libressl" duplicate declaration 5714 - BUILD: travis-ci: get back to osx without openssl support 5715 - BUILD: enable several LibreSSL hacks, including 5716 - BUILD: temporarily mark LibreSSL builds as allowed to fail 5717 - BUILD: travis: TMPDIR replacement. 5718 - BUG/MEDIUM: ssl: Don't attempt to use early data with libressl. 5719 - MINOR: doc: Document allow-0rtt on the server line. 5720 - MINOR: doc: Document the interaction of allow-0rtt and retry-on 0rtt-rejected. 5721 - MEDIUM: proto: Change the prototype of the connect() method. 5722 - MEDIUM: tcp: add the "tfo" option to support TCP fastopen on the server 5723 - MINOR: config: Extract the code of "stick-table" line parsing. 5724 - BUILD/MINOR: stick-table: Compilation fix. 5725 - MEDIUM: stick-table: Stop handling stick-tables as proxies. 5726 - MINOR: stick-tables: Add peers process binding computing. 5727 - MINOR: stick-table: Add prefixes to stick-table names. 5728 - MINOR: peers: Do not emit global stick-table names. 5729 - DOC: Update for "table" lines in "peers" section. 5730 - REGTEST: Add reg tests for "table" lines in "peers" sections. 5731 - MEDIUM: regex: modify regex_comp() to atomically allocate/free the my_regex struct 5732 - REGTEST: make the tls_health_checks test much faster 5733 - REGTEST: make the "table in peers" test require v2.0 5734 - BUG/MINOR: mux-h2: rely on trailers output not input to turn them to empty data 5735 - BUG/MEDIUM: h2/htx: always fail on too large trailers 5736 - MEDIUM: mux-h2: discard contents that are to be sent after a shutdown 5737 - BUG/MEDIUM: mux-h2/htx: never wait for EOM when processing trailers 5738 - BUG/MEDIUM: h2/htx: never leave a trailers block alone with no EOM block 5739 - REGTEST: Flag some slow reg tests. 5740 - REGTEST: Reg tests file renaming. 5741 - REGTEST: Wrong renaming for one reg test. 5742 - REGTEST: Wrong assumption in IP:port logging test. 5743 - BUG/MINOR: mworker/ssl: close OpenSSL FDs on reload 5744 - MINOR: systemd: Use the variables from /etc/default/haproxy 5745 - MINOR: systemd: Make use of master socket in systemd unit 5746 - MINOR: systemd: support /etc/sysconfig/ for redhat based distrib 5747 - BUG/MEDIUM: stick-table: fix regression caused by a change in proxy struct 5748 - BUG/MEDIUM: tasks: fix possible segfault on task_destroy() 5749 - CLEANUP: task: remove unneeded tests before task_destroy() 5750 - MINOR: mworker: support a configurable maximum number of reloads 5751 - BUG/MINOR: mux-h2: fix the condition to close a cs-less h2s on the backend 5752 - BUG/MEDIUM: spoe: Be sure the sample is found before setting its context 5753 - BUG/MINOR: mux-h1: Fix the parsing of trailers 5754 - BUG/MINOR: htx: Never transfer more than expected in htx_xfer_blks() 5755 - MINOR: htx: Split on DATA blocks only when blocks are moved to an HTX message 5756 - MINOR: htx: Don't try to append a trailer block with the previous one 5757 - MINOR: htx: Remove support for unused OOB HTX blocks 5758 - BUILD: travis-ci bugfixes and improvements 5759 - BUG/MEDIUM: servers: Don't use the same srv flag for cookie-set and TFO. 5760 - BUG/MEDIUM: h2: Make sure we set send_list to NULL in h2_detach(). 5761 - BUILD: ssl: fix again a libressl build failure after the openssl FD leak fix 5762 - CLEANUP: ssl-sock: use HA_OPENSSL_VERSION_NUMBER instead of OPENSSL_VERSION_NUMBER 5763 - BUILD: ssl: make libressl use its own version numbers 5764 - CLEANUP: ssl: remove 57 occurrences of useless tests on LIBRESSL_VERSION_NUMBER 5765 - MINOR: ssl: enable aes_gcm_dec on LibreSSL 5766 - BUILD: ssl: fix libressl build again after aes-gcm-enc 5767 - REORG: ssl: move openssl-compat from proto to common 5768 - REORG: ssl: move some OpenSSL defines from ssl_sock to openssl-compat 5769 - CLEANUP: ssl: never include openssl/*.h outside of openssl-compat.h anymore 5770 - CLEANUP: ssl: make inclusion of openssl headers safe 5771 - BUILD: add BoringSSL to travis-ci build matrix 5772 - BUILD: threads: Add __ha_cas_dw fallback for single threaded builds 5773 - BUG/MINOR: stream: Attach the read side on the response as soon as possible 5774 - BUG/MEDIUM: http: Use pointer to the begining of input to parse message headers 5775 - BUG/MEDIUM: h2: Don't check send_wait to know if we're in the send_list. 5776 - BUG/MEDIUM: streams: Make sur SI_FL_L7_RETRY is set before attempting a retry. 5777 - MEDIUM: streams: Add a new http action, disable-l7-retry. 5778 - MINOR: streams: Introduce a new retry-on keyword, all-retryable-errors. 5779 - BUG/MINOR: vars: Fix memory leak in vars_check_arg 5780 - BUILD: travis-ci: make TMPDIR global variable in travis-ci 5781 - CLEANUP: ssl: move the SSL_OP_* and SSL_MODE_* definitions to openssl-compat 5782 - CLEANUP: ssl: remove ifdef around SSL_CTX_get_extra_chain_certs() 5783 - CLEANUP: ssl: move all BIO_* definitions to openssl-compat 5784 - BUILD: threads: fix again the __ha_cas_dw() definition 5785 - BUG/MAJOR: mux-h2: do not add a stream twice to the send list 5786 - Revert "BUG/MINOR: vars: Fix memory leak in vars_check_arg" 5787 - BUG/MINOR: peers: Fix memory leak in cfg_parse_peers 5788 - BUG/MINOR: htx: make sure to always initialize the HTTP method when parsing a buffer 5789 - REGTEST: fix tls_health_checks random failures on MacOS in Travis-CI 5790 - MINOR: spoe: Set the argument chunk size to 0 when SPOE variables are checked 5791 - BUG/MINOR: vars: Fix memory leak in vars_check_arg 5792 - BUG/MAJOR: ssl: segfault upon an heartbeat request 5793 - MINOR: spoa-server: Clone the v1.7 spoa-example project 5794 - MINOR: spoa-server: move some definition from spoa_server.c to spoa_server.h 5795 - MINOR: spoa-server: Externalise debug functions 5796 - MINOR: spoe-server: rename "worker" functions 5797 - MINOR: spoa-server: Replace the thread init system by processes 5798 - MINOR: spoa-server: With debug mode, start only one process 5799 - MINOR: spoa-server: Allow registering external processes 5800 - MINOR: spoa-server: Allow registering message processors 5801 - MINOR: spoa-server: Load files 5802 - MINOR: spoa-server: Prepare responses 5803 - MINOR: spoa-server: Execute registered callbacks 5804 - MINOR: spoa-server: Add Lua processing 5805 - MINOR: spoa-server: Add python 5806 - MINOR/DOC: spoe-server: Add documentation 5807 - BUG/MEDIUM: connections: Don't forget to set xprt_ctx to NULL on close. 5808 - MINOR: lists: add LIST_ADDED() to check if an element belongs to a list 5809 - CLEANUP: mux-h2: use LIST_ADDED() instead of LIST_ISEMPTY() where relevant 5810 - MINOR: mux-h2: add two H2S flags to report the need for shutr/shutw 5811 - CLEANUP: mux-h2: simply use h2s->flags instead of ret in h2_deferred_shut() 5812 - CLEANUP: connection: remove the handle field from the wait_event struct 5813 - BUG/MINOR: log: Wrong log format initialization. 5814 - BUG/MINOR: mux-h2: make the do_shut{r,w} functions more robust against retries 5815 - BUG/MINOR: mworker: use after free when the PID not assigned 5816 - MINOR: mux-h2: remove useless test on stream ID vs last in wake function 5817 - MINOR: mux-h2: make h2_wake_some_streams() not depend on the CS flags 5818 - MINOR: mux-h2: make h2s_wake_one_stream() the only function to deal with CS 5819 - MINOR: mux-h2: make h2s_wake_one_stream() not depend on temporary CS flags 5820 - BUG/MINOR: mux-h2: make sure to honor KILL_CONN in do_shut{r,w} 5821 - CLEANUP: mux-h2: don't test for impossible CS_FL_REOS conditions 5822 - MINOR: mux-h2: add macros to check multiple stream states at once 5823 - MINOR: mux-h2: stop relying on CS_FL_REOS 5824 - BUG/MEDIUM: mux-h2: Set EOI on the conn_stream during h2_rcv_buf() 5825 - BUILD: debug: make gcc not complain on the ABORT_NOW() macro 5826 - MINOR: debug: add a new BUG_ON macro 5827 - MINOR: h2: Use BUG_ON() to enforce rules in subscribe/unsubscribe. 5828 - MINOR: h1: Use BUG_ON() to enforce rules in subscribe/unsubscribe. 5829 - MINOR: connections: Use BUG_ON() to enforce rules in subscribe/unsubscribe. 5830 - BUILD: ist: turn the lower/upper case tables to literal on obsolete linkers 5831 58322019/03/26 : 2.0-dev2 5833 - CLEANUP: http: Remove unreachable code in parse_http_req_capture 5834 - CLEANUP: stream: Remove bogus loop in conn_si_send_proxy 5835 - MINOR: lists: Implement locked variations. 5836 - MEDIUM: servers: Used a locked list for idle_orphan_conns. 5837 - MEDIUM: servers: Reorganize the way idle connections are cleaned. 5838 - BUG/MEDIUM: lists: Properly handle the case we're removing the first elt. 5839 - MINOR: cfgparse: Add a cast to make gcc happier. 5840 - BUG/MEDIUM: standard: Wrong reallocation size. 5841 - BUG/MINOR: listener: keep accept rate counters accurate under saturation 5842 - DOC: fix alphabetic ordering for "tune.fail-alloc" setting 5843 - MAJOR: config: disable support for nbproc and nbthread in parallel 5844 - MEDIUM: listener: keep a single thread-mask and warn on "process" misuse 5845 - MAJOR: listener: do not hold the listener lock in listener_accept() 5846 - MINOR: listener: maintain a per-thread count of the number of connections on a listener 5847 - MINOR: tools: implement functions to look up the nth bit set in a mask 5848 - MINOR: listener: pre-compute some thread counts per bind_conf 5849 - MINOR: listener: implement multi-queue accept for threads 5850 - MAJOR: listener: use the multi-queue for multi-thread listeners 5851 - MINOR: activity: add accept queue counters for pushed and overflows 5852 - MINOR: config: add global tune.listener.multi-queue setting 5853 - MAJOR: threads: enable one thread per CPU by default 5854 - DOC: update management.txt to reflect that threads are used by default 5855 - BUG/MINOR: config: don't over-count the global maxsock value 5856 - BUG/MEDIUM: list: fix the rollback on addq in the locked liss 5857 - BUG/MEDIUM: list: fix LIST_POP_LOCKED's removal of the last pointer 5858 - BUG/MEDIUM: list: add missing store barriers when updating elements and head 5859 - MINOR: list: make the delete and pop operations idempotent 5860 - MINOR: server: remove a few unneeded LIST_INIT calls after LIST_DEL_LOCKED 5861 - BUG/MEDIUM: listener: use a self-locked list for the dequeue lists 5862 - BUG/MEDIUM: listener: make sure the listener never accepts too many conns 5863 - BUG/MEDIUM: list: correct fix for LIST_POP_LOCKED's removal of last element 5864 - MINOR: listener: introduce listener_backlog() to report the backlog value 5865 - MINOR: listener: do not needlessly set l->maxconn 5866 - MINOR: proxy: do not change the listeners' maxconn when updating the frontend's 5867 - MEDIUM: config: don't enforce a low frontend maxconn value anymore 5868 - MINOR: peers: Add a message for heartbeat. 5869 - MINOR: global: keep a copy of the initial rlim_fd_cur and rlim_fd_max values 5870 - BUG/MINOR: init: never lower rlim_fd_max 5871 - BUG/MINOR: checks: make external-checks restore the original rlim_fd_cur/max 5872 - BUG/MINOR: mworker: be careful to restore the original rlim_fd_cur/max on reload 5873 - MINOR: init: make the maxpipe computation more accurate 5874 - MINOR: init: move some maxsock updates earlier 5875 - MEDIUM: init: make the global maxconn default to what rlim_fd_cur permits 5876 - REGTEST: fix a spurious "nbthread 4" in the connection test 5877 - DOC: update the text related to the global maxconn value 5878 - BUG/MAJOR: mux-h2: fix race condition between close on both ends 5879 - MINOR: sample: Replace "req.ungrpc" smp fetch by a "ungrpc" converter. 5880 - BUG/MEDIUM: list: fix again LIST_ADDQ_LOCKED 5881 - MINOR: htx: unconditionally handle parsing errors in requests or responses 5882 - MINOR: mux-h2: always pass HTX_FL_PARSING_ERROR between h2s and buf on RX 5883 - BUG/MEDIUM: h2/htx: verify that :path doesn't contain invalid chars 5884 - MINOR: sample: Code factorization "ungrpc" converter. 5885 - MINOR: sample: Rework gRPC converter code. 5886 - CLEANUP: wurfl: remove dead, broken and unmaintained code 5887 - MINOR: config: relax the range checks on cpu-map 5888 - BUG/MINOR: ssl: fix warning about ssl-min/max-ver support 5889 - MINOR: sample: Extract some protocol buffers specific code. 5890 - DOC: Remove tabs and fixed punctuation. 5891 - MINOR: sample: Add a protocol buffers specific converter. 5892 - REGTEST: Peers reg tests. 5893 - REGTEST: Enable reg tests with HEAD HTTP method usage. 5894 - MINOR: lists: add a LIST_DEL_INIT() macro 5895 - MINOR: task: use LIST_DEL_INIT() to remove a task from the queue 5896 - MINOR: listener: improve incoming traffic distribution 5897 - MINOR: tools: implement my_flsl() 5898 - MEDIUM: listener: change the LB algorithm again to use two round robins instead 5899 - CLEANUP: listener: remove old thread bit mapping 5900 - MINOR: listener: move thr_idx from the bind_conf to the listener 5901 - BUG/MEDIUM: logs: Only attempt to free startup_logs once. 5902 - BUG/MAJOR: config: Wrong maxconn adjustment. 5903 - BUG/MEDIUM: 51d: fix possible segfault on deinit_51degrees() 5904 - OPTIM: task: limit the impact of memory barriers in taks_remove_from_task_list() 5905 - MINOR: fd: Remove debugging code. 5906 - BUG/MEDIUM: listeners: Don't call fd_stop_recv() if fd_updt is NULL. 5907 - MINOR: threads: Implement __ha_barrier_atomic*. 5908 - MEDIUM: threads: Use __ATOMIC_SEQ_CST when using the newer atomic API. 5909 - MINOR: threads: Add macros to do atomic operation with no memory barrier. 5910 - MEDIUM: various: Use __ha_barrier_atomic* when relevant. 5911 - MEDIUM: applets: Use the new _HA_ATOMIC_* macros. 5912 - MEDIUM: xref: Use the new _HA_ATOMIC_* macros. 5913 - MEDIUM: fd: Use the new _HA_ATOMIC_* macros. 5914 - MEDIUM: freq_ctr: Use the new _HA_ATOMIC_* macros. 5915 - MEDIUM: proxy: Use the new _HA_ATOMIC_* macros. 5916 - MEDIUM: server: Use the new _HA_ATOMIC_* macros. 5917 - MEDIUM: task: Use the new _HA_ATOMIC_* macros. 5918 - MEDIUM: activity: Use the new _HA_ATOMIC_* macros. 5919 - MEDIUM: backend: Use the new _HA_ATOMIC_* macros. 5920 - MEDIUM: cache: Use the new _HA_ATOMIC_* macros. 5921 - MEDIUM: checks: Use the new _HA_ATOMIC_* macros. 5922 - MEDIUM: pollers: Use the new _HA_ATOMIC_* macros. 5923 - MEDIUM: compression: Use the new _HA_ATOMIC_* macros. 5924 - MEDIUM: spoe: Use the new _HA_ATOMIC_* macros. 5925 - MEDIUM: threads: Use the new _HA_ATOMIC_* macros. 5926 - MEDIUM: http: Use the new _HA_ATOMIC_* macros. 5927 - MEDIUM: lb/threads: Use the new _HA_ATOMIC_* macros. 5928 - MEDIUM: listeners: Use the new _HA_ATOMIC_* macros. 5929 - MEDIUM: logs: Use the new _HA_ATOMIC_* macros. 5930 - MEDIUM: memory: Use the new _HA_ATOMIC_* macros. 5931 - MEDIUM: peers: Use the new _HA_ATOMIC_* macros. 5932 - MEDIUM: proto_tcp: Use the new _HA_ATOMIC_* macros. 5933 - MEDIUM: queues: Use the new _HA_ATOMIC_* macros. 5934 - MEDIUM: sessions: Use the new _HA_ATOMIC_* macros. 5935 - MEDIUM: ssl: Use the new _HA_ATOMIC_* macros. 5936 - MEDIUM: stream: Use the new _HA_ATOMIC_* macros. 5937 - MEDIUM: tcp_rules: Use the new _HA_ATOMIC_* macros. 5938 - MEDIUM: time: Use the new _HA_ATOMIC_* macros. 5939 - MEDIUM: vars: Use the new _HA_ATOMIC_* macros. 5940 - MINOR: config: remove obsolete use of DEFAULT_MAXCONN at various places 5941 - MINOR: config: continue to rely on DEFAULT_MAXCONN to set the minimum maxconn 5942 - BUG/MEDIUM: list: fix incorrect pointer unlocking in LIST_DEL_LOCKED() 5943 - BUG/MEDIUM: listener: make sure we don't pick stopped threads 5944 - MEDIUM: list: Remove useless barriers. 5945 - MEDIUM: list: Use _HA_ATOMIC_* 5946 - MEDIUM: connections: Use _HA_ATOMIC_* 5947 - BUG/MAJOR: tasks: Use the TASK_GLOBAL flag to know if we're in the global rq. 5948 - BUG/MEDIUM: threads/fd: do not forget to take into account epoll_fd/pipes 5949 - BUG/MEDIUM: init/threads: consider epoll_fd/pipes for automatic maxconn calculation 5950 - BUG/MEDIUM: tasks: Make sure we wake sleeping threads if needed. 5951 - BUG/MINOR: mux-h1: Don't report an error on EOS if no message was received 5952 - BUG/MINOR: stats/htx: Call channel_add_input() when response headers are sent 5953 - BUG/MINOR: lua/htx: Use channel_add_input() when response data are added 5954 - BUG/MINOR: lua/htx: Don't forget to call htx_to_buf() when appropriate 5955 - MINOR: stats: Add the status code STAT_STATUS_IVAL to handle invalid requests 5956 - MINOR: stats: Move stuff about the stats status codes in stats files 5957 - BUG/MINOR: stats: Be more strict on what is a valid request to the stats applet 5958 - Revert "REGTEST: Enable reg tests with HEAD HTTP method usage." 5959 - BUILD: listener: shut up a build warning when threads are disabled 5960 - BUILD: Makefile: allow the reg-tests target to be verbose 5961 - BUILD: Makefile: resolve LEVEL before calling run-regtests 5962 - BUG/MAJOR: spoe: Fix initialization of thread-dependent fields 5963 - BUG/MAJOR: stats: Fix how huge POST data are read from the channel 5964 - BUG/MINOR: http/counters: fix missing increment of fe->srv_aborts 5965 - BUG/MEDIUM: mux-h2: Always wakeup streams with no id to avoid frozen streams 5966 - MINOR: mux-h2: Set REFUSED_STREAM error to reset a stream if no data was never sent 5967 - MINOR: muxes: Report the Last read with a dedicated flag 5968 - MINOR: proto-http/proto-htx: Make error handling clearer during data forwarding 5969 - BUILD: tools: fix a build warning on some 32-bit archs 5970 - MINOR: init: report the list of optionally available services 5971 - MEDIUM: proto_htx: Switch to infinite forwarding if there is no data filter 5972 - BUG/MINOR: cache: Fully consume large requests in the cache applet 5973 - BUG/MINOR: stats: Fully consume large requests in the stats applet 5974 - BUG/MEDIUM: lua: Fully consume large requests when an HTTP applet ends 5975 - MINOR: proto_http: Add function to handle the header "Expect: 100-continue" 5976 - MINOR: proto_htx: Add function to handle the header "Expect: 100-continue" 5977 - MINOR: stats/cache: Handle the header Expect when applets are registered 5978 - MINOR: http/applets: Handle all applets intercepting HTTP requests the same way 5979 - CLEANUP: cache: don't export http_cache_applet anymore 5980 - MINOR: lua: Don't handle the header Expect in lua HTTP applets anymore 5981 - BUG/MINOR: doc: Be accurate on the behavior on pool-purge-delay. 5982 - Revert "MEDIUM: proto_htx: Switch to infinite forwarding if there is no data filter" 5983 - BUG/MEDIUM: mux-h2: Make sure we destroyed the h2s once shutr/shutw is done. 5984 - BUG/MEDIUM: mux-h2: Don't bother keeping the h2s if detaching and nothing to send. 5985 - BUG/MEDIUM: mux-h2: Use the right list in h2_stop_senders(). 5986 - MINOR: mux-h2: copy small data blocks more often and reduce the number of pauses 5987 - CLEANUP: mux-h2: add some comments to help understand the code 5988 - BUG/MEDIUM: ssl: ability to set TLS 1.3 ciphers using ssl-default-server-ciphersuites 5989 - BUG/MINOR: log: properly format IPv6 address when LOG_OPT_HEXA modifier is used. 5990 - BUG/MEDIUM: h2: Try to be fair when sending data. 5991 - BUG/MINOR: proto-http: Don't forward request body anymore on error 5992 - MINOR: mux-h2: Remove useless test on ES flag in h2_frt_transfer_data() 5993 - MINOR: connection: and new flag to mark end of input (EOI) 5994 - MINOR: channel: Report EOI on the input channel if it was reached in the mux 5995 - MEDIUM: mux-h2: Don't mix the end of the message with the end of stream 5996 - MINOR: mux-h1: Set CS_FL_EOI the end of the message is reached 5997 - BUG/MEDIUM: http/htx: Fix handling of the option abortonclose 5998 - CLEANUP: muxes/stream-int: Remove flags CS_FL_READ_NULL and SI_FL_READ_NULL 5999 - MEDIUM: proto_htx: Reintroduce the infinite forwarding on data 6000 - BUG/MEDIUM: h2: only destroy the h2s if h2s->cs is NULL. 6001 - BUG/MEDIUM: h2: Use the new sending_list in h2s_notify_send(). 6002 - BUG/MEDIUM: h2: Follow the same logic in h2_deferred_shut than in h2_snd_buf. 6003 - BUG/MEDIUM: h2: Remove the tasklet from the task list if unsubscribing. 6004 - BUG/MEDIUM: task/h2: add an idempotent task removal fucntion 6005 - CLEANUP: task: only perform a LIST_DEL() when the list is not empty 6006 - BUG/MEDIUM: mux-h2: make sure to always notify streams of EOS condition 6007 - CONTRIB: debug: report the CS and CF's EOI flags 6008 - MINOR: channel: don't unset CF_SHUTR_NOW after shutting down. 6009 60102019/02/26 : 2.0-dev1 6011 - MINOR: mux-h2: only increase the connection window with the first update 6012 - REGTESTS: remove the expected window updates from H2 handshakes 6013 - BUG/MINOR: mux-h2: make empty HEADERS frame return a connection error 6014 - BUG/MEDIUM: mux-h2: mark that we have too many CS once we have more than the max 6015 - MEDIUM: mux-h2: remove padlen during headers phase 6016 - MINOR: h2: add a bit-based frame type representation 6017 - MINOR: mux-h2: remove useless check for empty frame length in h2s_decode_headers() 6018 - MEDIUM: mux-h2: decode HEADERS frames before allocating the stream 6019 - MINOR: mux-h2: make h2c_send_rst_stream() use the dummy stream's error code 6020 - MINOR: mux-h2: add a new dummy stream for the REFUSED_STREAM error code 6021 - MINOR: mux-h2: fail stream creation more cleanly using RST_STREAM 6022 - MINOR: buffers: add a new b_move() function 6023 - MINOR: mux-h2: make h2_peek_frame_hdr() support an offset 6024 - MEDIUM: mux-h2: handle decoding of CONTINUATION frames 6025 - CLEANUP: mux-h2: remove misleading comments about CONTINUATION 6026 - BUG/MEDIUM: servers: Don't try to reuse connection if we switched server. 6027 - BUG/MEDIUM: tasks: Decrement tasks_run_queue in tasklet_free(). 6028 - BUG/MINOR: htx: send the proper authenticate header when using http-request auth 6029 - BUG/MEDIUM: mux_h2: Don't add to the idle list if we're full. 6030 - BUG/MEDIUM: servers: Fail if we fail to allocate a conn_stream. 6031 - BUG/MAJOR: servers: Use the list api correctly to avoid crashes. 6032 - BUG/MAJOR: servers: Correctly use LIST_ELEM(). 6033 - BUG/MAJOR: sessions: Use an unlimited number of servers for the conn list. 6034 - BUG/MEDIUM: servers: Flag the stream_interface on handshake error. 6035 - MEDIUM: servers: Be smarter when switching connections. 6036 - MEDIUM: sessions: Keep track of which connections are idle. 6037 - MINOR: payload: add sample fetch for TLS ALPN 6038 - BUG/MEDIUM: log: don't mark log FDs as non-blocking on terminals 6039 - MINOR: channel: Add the function channel_add_input 6040 - MINOR: stats/htx: Call channel_add_input instead of updating channel state by hand 6041 - BUG/MEDIUM: cache: Be sure to end the forwarding when XFER length is unknown 6042 - BUG/MAJOR: htx: Return the good block address after a defrag 6043 - MINOR: lb: allow redispatch when using consistent hash 6044 - CLEANUP: mux-h2: fix end-of-stream flag name when processing headers 6045 - BUG/MEDIUM: mux-h2: always restart reading if data are available 6046 - BUG/MINOR: mux-h2: set the stream-full flag when leaving h2c_decode_headers() 6047 - BUG/MINOR: mux-h2: don't check the CS count in h2c_bck_handle_headers() 6048 - BUG/MINOR: mux-h2: mark end-of-stream after processing response HEADERS, not before 6049 - BUG/MINOR: mux-h2: only update rxbuf's length for H1 headers 6050 - BUG/MEDIUM: mux-h1: use per-direction flags to indicate transitions 6051 - BUG/MEDIUM: mux-h1: make HTX chunking consistent with H2 6052 - BUG/MAJOR: stream-int: Update the stream expiration date in stream_int_notify() 6053 - BUG/MEDIUM: proto-htx: Set SI_FL_NOHALF on server side when request is done 6054 - BUG/MEDIUM: mux-h1: Add a task to handle connection timeouts 6055 - MINOR: mux-h2: make h2c_decode_headers() return a status, not a count 6056 - MINOR: mux-h2: add a new dummy stream : h2_error_stream 6057 - MEDIUM: mux-h2: make h2c_decode_headers() support recoverable errors 6058 - BUG/MINOR: mux-h2: detect when the HTX EOM block cannot be added after headers 6059 - MINOR: mux-h2: remove a misleading and impossible test 6060 - CLEANUP: mux-h2: clean the stream error path on HEADERS frame processing 6061 - MINOR: mux-h2: check for too many streams only for idle streams 6062 - MINOR: mux-h2: set H2_SF_HEADERS_RCVD when a HEADERS frame was decoded 6063 - BUG/MEDIUM: mux-h2: decode trailers in HEADERS frames 6064 - MINOR: h2: add h2_make_h1_trailers to turn H2 headers to H1 trailers 6065 - MEDIUM: mux-h2: pass trailers to H1 (legacy mode) 6066 - MINOR: htx: add a new function to add a block without filling it 6067 - MINOR: h2: add h2_make_htx_trailers to turn H2 headers to HTX trailers 6068 - MEDIUM: mux-h2: pass trailers to HTX 6069 - MINOR: mux-h1: parse the content-length header on output and set H1_MF_CLEN 6070 - BUG/MEDIUM: mux-h1: don't enforce chunked encoding on requests 6071 - MINOR: mux-h2: make HTX_BLK_EOM processing idempotent 6072 - MINOR: h1: make the H1 headers block parser able to parse headers only 6073 - MEDIUM: mux-h2: emit HEADERS frames when facing HTX trailers blocks 6074 - MINOR: stream/htx: Add info about the HTX structs in "show sess all" command 6075 - MINOR: stream: Add the subscription events of SIs in "show sess all" command 6076 - MINOR: mux-h1: Add the subscription events in "show fd" command 6077 - BUG/MEDIUM: h1: Get the h1m state when restarting the headers parsing 6078 - BUG/MINOR: cache/htx: Be sure to count partial trailers 6079 - BUG/MEDIUM: h1: In h1_init(), wake the tasklet instead of calling h1_recv(). 6080 - BUG/MEDIUM: server: Defer the mux init until after xprt has been initialized. 6081 - MINOR: connections: Remove a stall comment. 6082 - BUG/MEDIUM: cli: make "show sess" really thread-safe 6083 - BUILD: add a new file "version.c" to carry version updates 6084 - MINOR: stream/htx: add the HTX flags output in "show sess all" 6085 - MINOR: stream/cli: fix the location of the waiting flag in "show sess all" 6086 - MINOR: stream/cli: report more info about the HTTP messages on "show sess all" 6087 - BUG/MINOR: lua: bad args are returned for Lua actions 6088 - BUG/MEDIUM: lua: dead lock when Lua tasks are trigerred 6089 - MINOR: htx: Add an helper function to get the max space usable for a block 6090 - MINOR: channel/htx: Add HTX version for some helper functions 6091 - BUG/MEDIUM: cache/htx: Respect the reserve when cached objects are served 6092 - BUG/MINOR: stats/htx: Respect the reserve when the stats page is dumped 6093 - DOC: regtest: make it clearer what the purpose of the "broken" series is 6094 - REGTEST: mailers: add new test for 'mailers' section 6095 - REGTEST: Add a reg test for health-checks over SSL/TLS. 6096 - BUG/MINOR: mux-h1: Close connection on shutr only when shutw was really done 6097 - MEDIUM: mux-h1: Clarify how shutr/shutw are handled 6098 - BUG/MINOR: compression: Disable it if another one is already in progress 6099 - BUG/MINOR: filters: Detect cache+compression config on legacy HTTP streams 6100 - BUG/MINOR: cache: Disable the cache if any compression filter precedes it 6101 - REGTEST: Add some informatoin to test results. 6102 - MINOR: htx: Add a function to truncate all blocks after a specific offset 6103 - MINOR: channel/htx: Add the HTX version of channel_truncate/erase 6104 - BUG/MINOR: proto_htx: Use HTX versions to truncate or erase a buffer 6105 - BUG/CRITICAL: mux-h2: re-check the frame length when PRIORITY is used 6106 - DOC: Fix typo in req.ssl_alpn example (commit 4afdd138424ab...) 6107 - DOC: http-request cache-use / http-response cache-store expects cache name 6108 - REGTEST: "capture (request|response)" regtest. 6109 - BUG/MINOR: lua/htx: Respect the reserve when data are send from an HTX applet 6110 - REGTEST: filters: add compression test 6111 - BUG/MEDIUM: init: Initialize idle_orphan_conns for first server in server-template 6112 - BUG/MEDIUM: ssl: Disable anti-replay protection and set max data with 0RTT. 6113 - DOC: Be a bit more explicit about allow-0rtt security implications. 6114 - MINOR: mux-h1: make the mux_h1_ops struct static 6115 - BUILD: makefile: add an EXTRA_OBJS variable to help build optional code 6116 - BUG/MEDIUM: connection: properly unregister the mux on failed initialization 6117 - BUG/MAJOR: cache: fix confusion between zero and uninitialized cache key 6118 - REGTESTS: test case for map_regm commit 271022150d 6119 - REGTESTS: Basic tests for concat,strcmp,word,field,ipmask converters 6120 - REGTESTS: Basic tests for using maps to redirect requests / select backend 6121 - DOC: REGTESTS README varnishtest -Dno-htx= define. 6122 - MINOR: spoe: Make the SPOE filter compatible with HTX proxies 6123 - MINOR: checks: Store the proxy in checks. 6124 - BUG/MEDIUM: checks: Avoid having an associated server for email checks. 6125 - REGTEST: Switch to vtest. 6126 - REGTEST: Adapt reg test doc files to vtest. 6127 - BUG/MEDIUM: h1: Make sure we destroy an inactive connectin that did shutw. 6128 - BUG/MINOR: base64: dec func ignores padding for output size checking 6129 - BUG/MEDIUM: ssl: missing allocation failure checks loading tls key file 6130 - MINOR: ssl: add support of aes256 bits ticket keys on file and cli. 6131 - BUG/MINOR: backend: don't use url_param_name as a hint for BE_LB_ALGO_PH 6132 - BUG/MINOR: backend: balance uri specific options were lost across defaults 6133 - BUG/MINOR: backend: BE_LB_LKUP_CHTREE is a value, not a bit 6134 - MINOR: backend: move url_param_name/len to lbprm.arg_str/len 6135 - MINOR: backend: make headers and RDP cookie also use arg_str/len 6136 - MINOR: backend: add new fields in lbprm to store more LB options 6137 - MINOR: backend: make the header hash use arg_opt1 for use_domain_only 6138 - MINOR: backend: remap the balance uri settings to lbprm.arg_opt{1,2,3} 6139 - MINOR: backend: move hash_balance_factor out of chash 6140 - MEDIUM: backend: move all LB algo parameters into an union 6141 - MINOR: backend: make the random algorithm support a number of draws 6142 - BUILD/MEDIUM: da: Necessary code changes for new buffer API. 6143 - BUG/MINOR: stick_table: Prevent conn_cur from underflowing 6144 - BUG: 51d: Changes to the buffer API in 1.9 were not applied to the 51Degrees code. 6145 - BUG/MEDIUM: stats: Get the right scope pointer depending on HTX is used or not 6146 - DOC: add a missing space in the documentation for bc_http_major 6147 - REGTEST: checks basic stats webpage functionality 6148 - BUG/MEDIUM: servers: Make assign_tproxy_address work when ALPN is set. 6149 - BUG/MEDIUM: connections: Add the CO_FL_CONNECTED flag if a send succeeded. 6150 - DOC: add github issue templates 6151 - MINOR: cfgparse: Extract some code to be re-used. 6152 - CLEANUP: cfgparse: Return asap from cfg_parse_peers(). 6153 - CLEANUP: cfgparse: Code reindentation. 6154 - MINOR: cfgparse: Useless frontend initialization in "peers" sections. 6155 - MINOR: cfgparse: Rework peers frontend init. 6156 - MINOR: cfgparse: Simplication. 6157 - MINOR: cfgparse: Make "peer" lines be parsed as "server" lines. 6158 - MINOR: peers: Make outgoing connection to SSL/TLS peers work. 6159 - MINOR: cfgparse: SSL/TLS binding in "peers" sections. 6160 - DOC: peers: SSL/TLS documentation for "peers" 6161 - BUG/MINOR: startup: certain goto paths in init_pollers fail to free 6162 - BUG/MEDIUM: checks: fix recent regression on agent-check making it crash 6163 - BUG/MINOR: server: don't always trust srv_check_health when loading a server state 6164 - BUG/MINOR: check: Wake the check task if the check is finished in wake_srv_chk() 6165 - BUG/MEDIUM: ssl: Fix handling of TLS 1.3 KeyUpdate messages 6166 - DOC: mention the effect of nf_conntrack_tcp_loose on src/dst 6167 - BUG/MINOR: proto-htx: Return an error if all headers cannot be received at once 6168 - BUG/MEDIUM: mux-h2/htx: Respect the channel's reserve 6169 - BUG/MINOR: mux-h1: Apply the reserve on the channel's buffer only 6170 - BUG/MINOR: mux-h1: avoid copying output over itself in zero-copy 6171 - BUG/MAJOR: mux-h2: don't destroy the stream on failed allocation in h2_snd_buf() 6172 - BUG/MEDIUM: backend: also remove from idle list muxes that have no more room 6173 - BUG/MEDIUM: mux-h2: properly abort on trailers decoding errors 6174 - MINOR: h2: declare new sets of frame types 6175 - BUG/MINOR: mux-h2: CONTINUATION in closed state must always return GOAWAY 6176 - BUG/MINOR: mux-h2: headers-type frames in HREM are always a connection error 6177 - BUG/MINOR: mux-h2: make it possible to set the error code on an already closed stream 6178 - BUG/MINOR: hpack: return a compression error on invalid table size updates 6179 - MINOR: server: make sure pool-max-conn is >= -1 6180 - BUG/MINOR: stream: take care of synchronous errors when trying to send 6181 - CLEANUP: server: fix indentation mess on idle connections 6182 - BUG/MINOR: mux-h2: always check the stream ID limit in h2_avail_streams() 6183 - BUG/MINOR: mux-h2: refuse to allocate a stream with too high an ID 6184 - BUG/MEDIUM: backend: never try to attach to a mux having no more stream available 6185 - MINOR: server: add a max-reuse parameter 6186 - MINOR: mux-h2: always consider a server's max-reuse parameter 6187 - MEDIUM: stream-int: always mark pending outgoing SI_ST_CON 6188 - MINOR: stream: don't wait before retrying after a failed connection reuse 6189 - MEDIUM: h2: always parse and deduplicate the content-length header 6190 - BUG/MINOR: mux-h2: always compare content-length to the sum of DATA frames 6191 - CLEANUP: h2: Remove debug printf in mux_h2.c 6192 - MINOR: cfgparse: make the process/thread parser support a maximum value 6193 - MINOR: threads: make MAX_THREADS configurable at build time 6194 - DOC: nbthread is no longer experimental. 6195 - BUG/MINOR: listener: always fill the source address for accepted socketpairs 6196 - BUG/MINOR: mux-h2: do not report available outgoing streams after GOAWAY 6197 - BUG/MINOR: spoe: corrected fragmentation string size 6198 - BUG/MINOR: task: fix possibly missed event in inter-thread wakeups 6199 - BUG/MEDIUM: servers: Attempt to reuse an unfinished connection on retry. 6200 - BUG/MEDIUM: backend: always call si_detach_endpoint() on async connection failure 6201 - SCRIPTS: add the issue tracker URL to the announce script 6202 - MINOR: peers: Extract some code to be reused. 6203 - CLEANUP: peers: Indentation fixes. 6204 - MINOR: peers: send code factorization. 6205 - MINOR: peers: Add new functions to send code and reduce the I/O handler. 6206 - MEDIUM: peers: synchronizaiton code factorization to reduce the size of the I/O handler. 6207 - MINOR: peers: Move update receive code to reduce the size of the I/O handler. 6208 - MINOR: peers: Move ack, switch and definition receive code to reduce the size of the I/O handler. 6209 - MINOR: peers: Move high level receive code to reduce the size of I/O handler. 6210 - CLEANUP: peers: Be more generic. 6211 - MINOR: peers: move error handling to reduce the size of the I/O handler. 6212 - MINOR: peers: move messages treatment code to reduce the size of the I/O handler. 6213 - MINOR: peers: move send code to reduce the size of the I/O handler. 6214 - CLEANUP: peers: Remove useless statements. 6215 - MINOR: peers: move "hello" message treatment code to reduce the size of the I/O handler. 6216 - MINOR: peers: move peer initializations code to reduce the size of the I/O handler. 6217 - CLEANUP: peers: factor the error handling code in peer_treet_updatemsg() 6218 - CLEANUP: peers: factor error handling in peer_treat_definedmsg() 6219 - BUILD/MINOR: peers: shut up a build warning introduced during last cleanup 6220 - BUG/MEDIUM: mux-h2: only close connection on request frames on closed streams 6221 - CLEANUP: mux-h2: remove two useless but misleading assignments 6222 - BUG/MEDIUM: checks: Check that conn_install_mux succeeded. 6223 - BUG/MEDIUM: servers: Only destroy a conn_stream we just allocated. 6224 - BUG/MEDIUM: servers: Don't add an incomplete conn to the server idle list. 6225 - BUG/MEDIUM: checks: Don't try to set ALPN if connection failed. 6226 - BUG/MEDIUM: h2: In h2_send(), stop the loop if we failed to alloc a buf. 6227 - BUG/MEDIUM: peers: Handle mux creation failure. 6228 - BUG/MEDIUM: servers: Close the connection if we failed to install the mux. 6229 - BUG/MEDIUM: compression: Rewrite strong ETags 6230 - BUG/MINOR: deinit: tcp_rep.inspect_rules not deinit, add to deinit 6231 - CLEANUP: mux-h2: remove misleading leftover test on h2s' nullity 6232 - BUG/MEDIUM: mux-h2: wake up flow-controlled streams on initial window update 6233 - BUG/MEDIUM: mux-h2: fix two half-closed to closed transitions 6234 - BUG/MEDIUM: mux-h2: make sure never to send GOAWAY on too old streams 6235 - BUG/MEDIUM: mux-h2: do not abort HEADERS frame before decoding them 6236 - BUG/MINOR: mux-h2: make sure response HEADERS are not received in other states than OPEN and HLOC 6237 - MINOR: h2: add a generic frame checker 6238 - MEDIUM: mux-h2: check the frame validity before considering the stream state 6239 - CLEANUP: mux-h2: remove stream ID and frame length checks from the frame parsers 6240 - BUG/MINOR: mux-h2: make sure request trailers on aborted streams don't break the connection 6241 - DOC: compression: Update the reasons for disabled compression 6242 - BUG/MEDIUM: buffer: Make sure b_is_null handles buffers waiting for allocation. 6243 - DOC: htx: make it clear that htxbuf() and htx_from_buf() always return valid pointers 6244 - MINOR: htx: never check for null htx pointer in htx_is_{,not_}empty() 6245 - MINOR: mux-h2: consistently rely on the htx variable to detect the mode 6246 - BUG/MEDIUM: peers: Peer addresses parsing broken. 6247 - BUG/MEDIUM: mux-h1: Don't add "transfer-encoding" if message-body is forbidden 6248 - BUG/MEDIUM: connections: Don't forget to remove CO_FL_SESS_IDLE. 6249 - BUG/MINOR: stream: don't close the front connection when facing a backend error 6250 - BUG/MEDIUM: mux-h2: wait for the mux buffer to be empty before closing the connection 6251 - MINOR: stream-int: add a new flag to mention that we want the connection to be killed 6252 - MINOR: connstream: have a new flag CS_FL_KILL_CONN to kill a connection 6253 - BUG/MEDIUM: mux-h2: do not close the connection on aborted streams 6254 - BUG/MINOR: server: fix logic flaw in idle connection list management 6255 - MINOR: mux-h2: max-concurrent-streams should be unsigned 6256 - MINOR: mux-h2: make sure to only check concurrency limit on the frontend 6257 - MINOR: mux-h2: learn and store the peer's advertised MAX_CONCURRENT_STREAMS setting 6258 - BUG/MEDIUM: mux-h2: properly consider the peer's advertised max-concurrent-streams 6259 - MINOR: xref: Add missing barriers. 6260 - MINOR: muxes: Don't bother to LIST_DEL(&conn->list) before calling conn_free(). 6261 - MINOR: debug: Add an option that causes random allocation failures. 6262 - BUG/MEDIUM: backend: always release the previous connection into its own target srv_list 6263 - BUG/MEDIUM: htx: check the HTX compatibility in dynamic use-backend rules 6264 - BUG/MINOR: tune.fail-alloc: Don't forget to initialize ret. 6265 - BUG/MINOR: backend: check srv_conn before dereferencing it 6266 - BUG/MEDIUM: mux-h2: always omit :scheme and :path for the CONNECT method 6267 - BUG/MEDIUM: mux-h2: always set :authority on request output 6268 - BUG/MEDIUM: stream: Don't forget to free s->unique_id in stream_free(). 6269 - BUG/MINOR: threads: fix the process range of thread masks 6270 - BUG/MINOR: config: fix bind line thread mask validation 6271 - CLEANUP: threads: fix misleading comment about all_threads_mask 6272 - CLEANUP: threads: use nbits to calculate the thread mask 6273 - OPTIM: listener: optimize cache-line packing for struct listener 6274 - MINOR: tools: improve the popcount() operation 6275 - MINOR: config: keep an all_proc_mask like we have all_threads_mask 6276 - MINOR: global: add proc_mask() and thread_mask() 6277 - MINOR: config: simplify bind_proc processing using proc_mask() 6278 - MINOR: threads: make use of thread_mask() to simplify some thread calculations 6279 - BUG/MINOR: compression: properly report compression stats in HTX mode 6280 - BUG/MINOR: task: close a tiny race in the inter-thread wakeup 6281 - BUG/MAJOR: config: verify that targets of track-sc and stick rules are present 6282 - BUG/MAJOR: spoe: verify that backends used by SPOE cover all their callers' processes 6283 - BUG/MAJOR: htx/backend: Make all tests on HTTP messages compatible with HTX 6284 - BUG/MINOR: config: make sure to count the error on incorrect track-sc/stick rules 6285 - DOC: ssl: Clarify when pre TLSv1.3 cipher can be used 6286 - DOC: ssl: Stop documenting ciphers example to use 6287 - BUG/MINOR: spoe: do not assume agent->rt is valid on exit 6288 - BUG/MINOR: lua: initialize the correct idle conn lists for the SSL sockets 6289 - BUG/MEDIUM: spoe: initialization depending on nbthread must be done last 6290 - BUG/MEDIUM: server: initialize the idle conns list after parsing the config 6291 - BUG/MEDIUM: server: initialize the orphaned conns lists and tasks at the end 6292 - MINOR: config: make MAX_PROCS configurable at build time 6293 - BUG/MAJOR: spoe: Don't try to get agent config during SPOP healthcheck 6294 - BUG/MINOR: config: Reinforce validity check when a process number is parsed 6295 - BUG/MEDIUM: peers: check that p->srv actually exists before using p->srv->use_ssl 6296 - CONTRIB: contrib/prometheus-exporter: Add a Prometheus exporter for HAProxy 6297 - BUG/MINOR: mux-h1: verify the request's version before dropping connection: keep-alive 6298 - BUG: 51d: In Hash Trie, multi header matching was affected by the header names stored globaly. 6299 - MEDIUM: 51d: Enabled multi threaded operation in the 51Degrees module. 6300 - BUG/MAJOR: stream: avoid double free on unique_id 6301 - BUILD/MINOR: stream: avoid a build warning with threads disabled 6302 - BUILD/MINOR: tools: fix build warning in the date conversion functions 6303 - BUILD/MINOR: peers: remove an impossible null test in intencode() 6304 - BUILD/MINOR: htx: fix some potential null-deref warnings with http_find_stline 6305 - BUG/MEDIUM: peers: Missing peer initializations. 6306 - BUG/MEDIUM: http_fetch: fix the "base" and "base32" fetch methods in HTX mode 6307 - BUG/MEDIUM: proto_htx: Fix data size update if end of the cookie is removed 6308 - BUG/MEDIUM: http_fetch: fix "req.body_len" and "req.body_size" fetch methods in HTX mode 6309 - BUILD/MEDIUM: initcall: Fix build on MacOS. 6310 - BUG/MEDIUM: mux-h2/htx: Always set CS flags before exiting h2_rcv_buf() 6311 - MINOR: h2/htx: Set the flag HTX_SL_F_BODYLESS for messages without body 6312 - BUG/MINOR: mux-h1: Add "transfer-encoding" header on outgoing requests if needed 6313 - BUG/MINOR: mux-h2: Don't add ":status" pseudo-header on trailers 6314 - BUG/MINOR: proto-htx: Consider a XFER_LEN message as chunked by default 6315 - BUG/MEDIUM: h2/htx: Correctly handle interim responses when HTX is enabled 6316 - MINOR: mux-h2: Set HTX extra value when possible 6317 - BUG/MEDIUM: htx: count the amount of copied data towards the final count 6318 - MINOR: mux-h2: make the H2 MAX_FRAME_SIZE setting configurable 6319 - BUG/MEDIUM: mux-h2/htx: send an empty DATA frame on empty HTX trailers 6320 - BUG/MEDIUM: servers: Use atomic operations when handling curr_idle_conns. 6321 - BUG/MEDIUM: servers: Add a per-thread counter of idle connections. 6322 - MINOR: fd: add a new my_closefrom() function to close all FDs 6323 - MINOR: checks: use my_closefrom() to close all FDs 6324 - MINOR: fd: implement an optimised my_closefrom() function 6325 - BUG/MINOR: fd: make sure my_closefrom() doesn't miss some FDs 6326 - BUG/MAJOR: fd/threads, task/threads: ensure all spin locks are unlocked 6327 - BUG/MAJOR: listener: Make sure the listener exist before using it. 6328 - MINOR: fd: Use closefrom() as my_closefrom() if supported. 6329 - BUG/MEDIUM: mux-h1: Report the right amount of data xferred in h1_rcv_buf() 6330 - BUG/MINOR: channel: Set CF_WROTE_DATA when outgoing data are skipped 6331 - MINOR: htx: Add function to drain data from an HTX message 6332 - MINOR: channel/htx: Add function to skips output bytes from an HTX channel 6333 - BUG/MAJOR: cache/htx: Set the start-line offset when a cached object is served 6334 - BUG/MEDIUM: cache: Get objects from the cache only for GET and HEAD requests 6335 - BUG/MINOR: cache/htx: Return only the headers of cached objects to HEAD requests 6336 - BUG/MINOR: mux-h1: Always initilize h1m variable in h1_process_input() 6337 - BUG/MEDIUM: proto_htx: Fix functions applying regex filters on HTX messages 6338 - BUG/MEDIUM: h2: advertise to servers that we don't support push 6339 - MINOR: standard: Add a function to parse uints (dotted notation). 6340 - MINOR: arg: Add support for ARGT_PBUF_FNUM arg type. 6341 - MINOR: http_fetch: add "req.ungrpc" sample fetch for gRPC. 6342 - MINOR: sample: Add two sample converters for protocol buffers. 6343 - DOC: sample: Add gRPC related documentation. 6344 63452018/12/22 : 2.0-dev0 6346 - BUG/MAJOR: connections: Close the connection before freeing it. 6347 - REGTEST: Require the option LUA to run lua tests 6348 - REGTEST: script: Process script arguments before everything else 6349 - REGTEST: script: Evaluate the varnishtest command to allow quoted parameters 6350 - REGTEST: script: Add the option --clean to remove previous log direcotries 6351 - REGTEST: script: Add the option --debug to show logs on standard ouput 6352 - REGTEST: script: Add the option --keep-logs to keep all log directories 6353 - REGTEST: script: Add the option --use-htx to enable the HTX in regtests 6354 - REGTEST: script: Print only errors in the results report 6355 - REGTEST: Add option to use HTX prefixed by the macro 'no-htx' 6356 - REGTEST: Make reg-tests target support argument. 6357 - REGTEST: Fix a typo about barrier type. 6358 - REGTEST: Be less Linux specific with a syslog regex. 6359 - REGTEST: Missing enclosing quotes for ${tmpdir} macro. 6360 - REGTEST: Exclude freebsd target for some reg tests. 6361 - BUG/MEDIUM: h2: Don't forget to quit the sending_list if SUB_CALL_UNSUBSCRIBE. 6362 - BUG/MEDIUM: mux-h2: Don't forget to quit the send list on error reports 6363 - BUG/MEDIUM: dns: Don't prevent reading the last byte of the payload in dns_validate_response() 6364 - BUG/MEDIUM: dns: overflowed dns name start position causing invalid dns error 6365 - BUG/MINOR: compression/htx: Don't compress responses with unknown body length 6366 - BUG/MINOR: compression/htx: Don't add the last block of data if it is empty 6367 - MEDIUM: mux_h1: Implement h1_show_fd. 6368 - REGTEST: script: Add support of alternatives in requited options list 6369 - REGTEST: Add a basic test for the compression 6370 - BUG/MEDIUM: mux-h2: don't needlessly wake up the demux on short frames 6371 - REGTEST: A basic test for "http-buffer-request" 6372 - BUG/MEDIUM: server: Also copy "check-sni" for server templates. 6373 - MINOR: ssl: Add ssl_sock_set_alpn(). 6374 - MEDIUM: checks: Add check-alpn. 6375 - wip 6376 63772018/12/19 : 1.9.0 6378 - BUG/MEDIUM: compression: Use the right buffer pointers to compress input data 6379 - BUG/MINOR: mux_pt: Set CS_FL_WANT_ROOM when count is zero in rcv_buf() callback 6380 - BUG/MEDIUM: connection: Add a new CS_FL_ERR_PENDING flag to conn_streams. 6381 - CONTRIB: debug: teach the "flags" utility about new conn_stream flags 6382 - BUG/MEDIUM: stream-int: always clear CS_FL_WANT_ROOM before receiving 6383 - BUG/MEDIUM: mux-h2: also restart demuxing when data are pending in demux 6384 - BUG/MEDIUM: mux-h2: restart demuxing as soon as demux data are available 6385 - BUG/MEDIUM: h2: fix aggregated cookie length computation in HTX mode 6386 - MINOR: mux-h2: report more h2c, last h2s and cs information on "show fd" 6387 - CONTRIB: debug: report stream-int's flag SI_FL_CLEAN_ABRT 6388 - MINOR: cli/stream: add the conn_stream in "show sess" output 6389 - BUG/MINOR: mux-h2: don't report a fantom h2s in "show fd" 6390 - BUG/MINOR: cli/fd: don't isolate the thread for each individual fd 6391 - MINOR: objtype: report a few missing types in names and base pointers 6392 - BUG/MEDIUM: mux-h2: make sure to report synchronous errors after EOS 6393 - BUG/MEDIUM: mux-h2: report asynchronous errors in h2_wake_some_streams() 6394 - BUG/MEDIUM: mux-h2: make sure the demux also wakes streams up on errors 6395 - BUG/MINOR: mux-h1: report the correct frontend in error captures 6396 - BUG/MEDIUM: stream-int: also wake the stream up on end of transfer 6397 - MEDIUM: h2: properly check and deduplicate the content-length header in HTX 6398 - BUG/MEDIUM: stream: Forward the right amount of data before infinite forwarding 6399 - BUG/MINOR: proto_htx: Call the HTX version of the function managing client cookies 6400 - BUG/MEDIUM: lua/htx: Handle EOM in receive/get_line calls in HTTP applets 6401 - BUG/MINOR: lua: Return an error if a legacy HTTP applet doesn't send anything 6402 - MINOR: compression: Remove the thread_local variable buf_output 6403 - CLEANUP: connection: rename subscription events values and event field 6404 - CLEANUP: connection: rename conn->mux_ctx to conn->ctx 6405 - MINOR: connection: remove an unwelcome dependency on struct stream 6406 - CLEANUP: stream-int: consistently call the si/stream_int functions 6407 - BUG/MEDIUM: h1: Don't shutw/shutr the connection if we have keepalive. 6408 - BUG/MEDIUM: H2: Make sure htx is set even on empty frames. 6409 - BUG/MEDIUM: mux-h2: pass CS_FL_ERR_PENDING to h2_wake_some_streams() 6410 - MEDIUM: stream-int: always consider all CS errors on the send side 6411 - BUG/MEDIUM: h2: Make sure we don't set CS_FL_ERROR if there's still data. 6412 - CLEANUP: mux-h2: implement h2s_notify_{send,recv} to report events to subscribers 6413 - MINOR: mux-h2: add a new function h2s_alert() to call the data layer 6414 - BUG/MEDIUM: mux-h2: make use of h2s_alert() to report aborts 6415 - MINOR: connection: add cs_set_error() to set the error bits 6416 - CLEANUP: mux-h2: make use of cs_set_error() 6417 - BUG/MINOR: mux-h2: make sure we check the conn_stream in early data 6418 - BUG/MEDIUM: h2: Don't wait for flow control if the connection had a shutr. 6419 - MINOR: cli/show_fd: report that a connection is back or not 6420 - SCRIPTS: add the slack channel URL to the announce script 6421 - CLEANUP: remove my name and address from the copyright banner 6422 - DOC: mention in the readme that 1.9 is a stable version now 6423 64242018/12/16 : 1.9-dev11 6425 - BUG/MEDIUM: connection: Don't use the provided conn_stream if it was tried. 6426 - REGTEST/MINOR: remove double body specification for server txresp 6427 - BUG/MEDIUM: connections: Remove error flags when retrying. 6428 - REGTEST/MINOR: skip seamless-reload test with abns socket on freebsd 6429 - REGTEST/MINOR: remove health-check that can make the test fail 6430 - DOC: clarify that check-sni needs an argument. 6431 - DOC: refer to check-sni in the documentation of sni 6432 - BUG/MEDIUM: mux-h2: fix encoding of non-GET/POST methods 6433 - BUG/MINOR: mux-h1: Fix conn_mode processing for headerless outgoing messages 6434 - BUG/MEDIUM: mux-h1: Add a BUSY mode to not loop on pipelinned requests 6435 - BUG/MEDIUM: mux-h1: Don't loop on the headers parsing if the read0 was received 6436 - BUG/MEDIUM: htx: Always do a defrag if a block value is replace by a bigger one 6437 - BUG/MEDIUM: mux-h2: Don't forget to set the CS_FL_EOS flag with htx. 6438 - BUG/MINOR: hpack: fix off-by-one in header name encoding length calculation 6439 - CLEANUP: hpack: no need to include chunk.h, only include buf.h 6440 - MINOR: hpack: simplify the len to bytes conversion 6441 - MINOR: hpack: use ist2bin() to copy header names in hpack_encode_header() 6442 - MINOR: hpack: optimize header encoding for short names 6443 - CONTRIB: hpack: add a compressed stream generator for the encoder 6444 - MEDIUM: hpack: make it possible to encode any static header name 6445 - MINOR: hpack: move the length computation and encoding functions to .h 6446 - MINOR: hpack: provide a function to encode a short indexed header 6447 - MINOR: hpack: provide a function to encode a long indexed header 6448 - MINOR: hpack: provide new functions to encode the ":status" header 6449 - MEDIUM: mux-h2: make use of standard HPACK encoding functions for the status 6450 - MINOR: hpack: provide a function to encode an HTTP method 6451 - MEDIUM: mux-h2: make use of hpack_encode_method() to encode the method 6452 - MINOR: hpack: provide a function to encode an HTTP scheme 6453 - MEDIUM: mux-h2: make use of hpack_encode_scheme() to encode the scheme 6454 - MINOR: hpack: provide a function to encode an HTTP path 6455 - MEDIUM: mux-h2: make use of hpack_encode_path() to encode the path 6456 - REGTEST: add the HTTP rules test involving HTX processing 6457 - REORG: connection: centralize the conn_set_{tos,mark,quickack} functions 6458 - MEDIUM: cli: rework the CLI proxy parser 6459 - MINOR: cli: parse prompt command in the CLI proxy 6460 - MINOR: cli: implements 'quit' in the CLI proxy 6461 - BUG/MINOR: cli: wait for payload data even without prompt 6462 - MEDIUM: cli: handle payload in CLI proxy 6463 - MINOR: cli: use pcli_flags for prompt activation 6464 - MINOR: compression: Rename the function check_legacy_http_comp_flt() 6465 - MINOR: cache/htx: Don't use the same cache on HTX and legacy HTTP proxies 6466 - MINOR: cache: Register the cache as a data filter only if response is cacheable 6467 - MEDIUM: cache/htx: Add the HTX support into the cache 6468 - MINOR: cache: Improve and simplify the cache configuration check 6469 - MINOR: filters: Export the name of known filters 6470 - MEDIUM: cache/compression: Add a way to safely combined compression and cache 6471 - MEDIUM: cache: Require an explicit filter declaration if other filters are used 6472 - REORG: htx: merge types+proto into common/htx.h 6473 - REORG: http: create http_msg.c to place there some legacy HTTP parts 6474 - REORG: h1: move legacy http functions to http_msg.c 6475 - REORG: h1: move the h1_state definition to proto_http 6476 - CLEANUP: h1: remove some occurrences of unneeded h1.h inclusions 6477 - REORG: h1: merge types+proto into common/h1.h 6478 - CLEANUP: stream: remove SF_TUNNEL, SF_INITIALIZED, SF_CONN_TAR 6479 - MEDIUM: mux-h1: implement true zero-copy of DATA blocks 6480 - MINOR: config: round up global.tune.bufsize to the next multiple of 2 void* 6481 - BUG/MINOR: mux-h2: refrain from muxing during the preface 6482 - BUG/MINOR: mux-h2: advertise a larger connection window size 6483 - DOC: master CLI documentation in management.txt 6484 - MINOR: mux-h2: avoid copying large blocks into full buffers 6485 - MEDIUM: mux-h2: implement true zero-copy send of large HTX DATA blocks 6486 - MINOR: mux-h2: force reads to be HTX-aligned in HTX mode 6487 - MINOR: cli: change 'show proc' output of old processes 6488 - BUG/MEDIUM: mux-h1: Fix the zero-copy on output for chunked messages 6489 - BUG: dns: Prevent stack-exhaustion via recursion loop in dns_read_name 6490 - BUG: dns: Prevent out-of-bounds read in dns_read_name() 6491 - BUG: dns: Prevent out-of-bounds read in dns_validate_dns_response() 6492 - BUG: dns: Fix out-of-bounds read via signedness error in dns_validate_dns_response() 6493 - BUG: dns: Fix off-by-one write in dns_validate_dns_response() 6494 - REGTEST: the cache regtest requires haproxy 1.9 6495 - MEDIUM: cli: store CLI level in the appctx 6496 - MEDIUM: cli: show and change CLI permissions 6497 - CLEANUP: cli: use dedicated define instead of appctx ones 6498 - MEDIUM: cli: handle CLI level from the master CLI 6499 - BUG/MEDIUM: cli: handle correctly prefix and payload 6500 - BUILD: Makefile: Implements the help target 6501 - REGTESTS: adjust the http-rules regtest to support window updates 6502 - BUG/MEDIUM: connections: Remove CS_FL_EOS | CS_FL_REOS on retry. 6503 - BUG/MEDIUM: stream_interface: Don't report read0 if we were not connected. 6504 - BUG/MEDIUM: connection: Just make sure we closed the fd on connection failure. 6505 - MEDIUM: mux: Add an optional "reset" method. 6506 - BUG/MEDIUM: mux-h1: Fix loop if server closes its connection with unparsed data 6507 - MINOR: mux-h1: Add helper functions to wake a stream from recv or send 6508 - BUG/MEDIUM: mux-h1: Wake the stream for send once the connection is established 6509 - BUG/MEDIUM: connections: Don't attempt to reuse an unusable connection. 6510 - MEDIUM: htx: Try to take a connection over if it has no owner. 6511 - REGTEST: Reg testing improvements. 6512 - REGTEST: Add a first test for health-checks. 6513 - REGTEST: Reg test for "check" health-check option. 6514 - REGTEST: level 1 health-check test 2. 6515 - REGTEST: Add miscellaneous reg tests for health-checks. 6516 - REGTEST: add a few HTTP messaging tests 6517 - MINOR: lb: make the leastconn algorithm more accurate 6518 - REGTEST: fix missing space in checks/s00001 6519 - REGTEST: http-messaging: add "option http-buffer-request" for H2 tests 6520 - BUG/MEDIUM: cache: fix random crash on filter parser's error path 6521 - MINOR: connection: realign empty buffers in muxes, not transport layers 6522 - MINOR: mux_h1/h2: simplify the zero-copy Rx alignment 6523 - MINOR: backend: count the number of connect and reuse per server and per backend 6524 - BUG/MINOR: stats: fix inversion of failed header rewrites and other statuses 6525 - MINOR: tools: increase the number of ITOA strings to 16 6526 - MINOR: cache: report the number of cache lookups and cache hits 6527 - MEDIUM: tasks: check the global task mask instead of the thread number 6528 - MINOR: mworker: set all_threads_mask and pid_bit to 1 6529 - BUG/MINOR: proto_htx: Fix htx_res_set_status to also set the reason 6530 - BUG/MINOR: stats: Parse post data for HTX streams 6531 - MINOR: payload/htx: Adapt smp_fetch_len to be HTX aware 6532 - MINOR: http_fecth: Implement body_len and body_size sample fetches for the HTX 6533 - MAJOR: lua: Forbid calls to Channel functions for LUA scripts in HTTP proxies 6534 - MEDIUM: lua/htx: Adapt functions of the HTTP to be compatible with HTX 6535 - MINOR: lua/htx: Adapt the functions get_in_length and is_full to be HTX aware 6536 - MAJOR: lua/htx: Adapt HTTP applets to support HTX messages 6537 - MINOR: lua: Remove useless check on the messages state in HTTP functions 6538 - BUG/MEDIUM: htx: When performing zero-copy, start from the right offset. 6539 - BUG/MINOR: mworker: don't use unitialized mworker_proc struct 6540 - MINOR: mworker/cli: indicate in the master prompt when a reload failed 6541 - MINOR: cli: implements 'reload' on master CLI 6542 - BUG/MEDIUM: log: Don't call sample_fetch_as_type if we don't have a stream. 6543 - BUG/MEDIUM: mux-h1: make sure we always have at least one HTX block to send 6544 - BUG/MAJOR: backend: only update server's counters when the server exists 6545 - MINOR: tools: preset the port of fd-based "sockets" to zero 6546 - BUG/MINOR: log: fix logging to both FD and IP 6547 - REGTEST: Add a reg test for HTTP cookies. 6548 - BUILD: ssl: Fix compilation without deprecated OpenSSL 1.1 APIs 6549 - BUILD: thread: properly report multi-thread support 6550 - BUG/MINOR: logs: leave startup-logs global and not per-thread 6551 - BUG/MEDIUM: threads: don't close the thread waker pipe if not init 6552 - BUG/MAJOR: compression/cache: Make it really works with these both filters 6553 - BUG/MEDIUM: h2: Don't forget to destroy the h2s after deferred shut. 6554 - MEDIUM: proxy: Set http-reuse safe as default. 6555 - MEDIUM: servers: Add a command to limit the number of idling connections. 6556 - MEDIUM: servers: Replace idle-timeout with pool-purge-delay. 6557 - MEDIUM: mux: Destroy the stream before trying to add the conn to the idle list. 6558 - MEDIUM: mux: provide the session to the init() and attach() method. 6559 - MEDIUM: sessions: Don't keep an infinite number of idling connections. 6560 - MEDIUM: servers: Be more agressive when adding H2 connection to idle lists. 6561 - MEDIUM: mux_h2: Always set CS_FL_NOT_FIRST for new conn_streams. 6562 - BUG/MEDIUM: htx/cache: use the correct class of error codes on abort 6563 - BUG/MINOR: cache: also consider CF_SHUTR to abort delivery 6564 - MINOR: pools: Cast to volatile int * instead of int *. 6565 - MINOR: debug: make the ABORT_NOW macro use a volatile int 6566 - BUG/MEDIUM: h2: Don't destroy the h2s if it still has a cs attached. 6567 - BUG/MEDIUM: mux-h1: don't try to process an empty input buffer 6568 - DOC: clarify the agent-check status line syntax 6569 - BUG/MAJOR: hpack: fix length check for short names encoding 6570 - DOC: split the README into README + INSTALL 6571 65722018/12/08 : 1.9-dev10 6573 - MINOR: htx: Rename functions htx_*_to_str() to be H1 specific 6574 - BUG/MINOR: htx: Force HTTP/1.1 on H1 formatting when version is 1.1 or above 6575 - BUG/MINOR: fix ssl_fc_alpn and actually add ssl_bc_alpn 6576 - BUG/MEDIUM: mworker: stop proxies which have no listener in the master 6577 - BUG/MEDIUM: h1: Destroy a connection after detach if it has no owner. 6578 - BUG/MEDIUM: h2: Don't forget to wake the tasklet after shutr/shutw. 6579 - BUG/MINOR: flt_trace/compression: Use the right flag to add the HTX support 6580 - BUG/MEDIUM: stream_interface: Make REALLY sure we read all the data. 6581 - MEDIUM: mux-h1: Revamp the way subscriptions are handled. 6582 - BUG/MEDIUM: mux-h1: Always set CS_FL_RCV_MORE when data are received in h1_recv() 6583 - MINOR: mux-h1: Make sure to return 1 in h1_recv() when needed 6584 - BUG/MEDIUM: mux-h1: Release the mux H1 in h1_process() if there is no h1s 6585 - BUG/MINOR: proto_htx: Truncate the request when an error is detected 6586 - BUG/MEDIUM: h2: When sending in HTX, make sure the caller knows we sent all. 6587 - BUG/MEDIUM: mux-h2: properly update the window size in HTX mode 6588 - BUG/MEDIUM: mux-h2: make sure to always report HTX EOM when consumed by headers 6589 - BUG/MEDIUM: mux-h2: stop sending HTX once the mux is blocked 6590 - BUG/MEDIUM: mux-h2: don't send more HTX data than requested 6591 - MINOR: mux-h2: stop on non-DATA and non-EOM HTX blocks 6592 - BUG/MEDIUM: h1: Correctly report used data with no len. 6593 - MEDIUM: h1: Realign the ibuf before calling rcv_buf if needed. 6594 - BUG/MEDIUM: mux_pt: Always set CS_FL_RCV_MORE. 6595 - MINOR: htx: make htx_from_buf() adjust the size only on new buffers 6596 - MINOR: htx: add buf_room_for_htx_data() to help optimize buffer transfers 6597 - MEDIUM: mux-h1: make use of buf_room_for_htx_data() instead of b_room() 6598 - MEDIUM: mux-h1: attempt to zero-copy Rx DATA transfers 6599 - MEDIUM: mux-h1: avoid a double copy on the Tx path whenever possible 6600 - BUG/MEDIUM: stream-int: don't mark as blocked an empty buffer on Rx 6601 - BUG/MINOR: mux-h1: Check h1m flags to set the server conn_mode on request path 6602 - MEDIUM: htx: Rework conversion from a buffer to an htx structure 6603 - MEDIUM: channel/htx: Add functions for forward HTX data 6604 - MINOR: mux-h1: Don't adjust anymore the amount of data sent in h1_snd_buf() 6605 - CLEANUP: htx: Fix indentation here and there in HTX files 6606 - MINOR: mux-h1: Allow partial data consumption during outgoing data processing 6607 - BUG/MEDIUM: mux-h2: use the correct offset for the HTX start line 6608 - BUG/MEDIUM: mux-h2: stop sending using HTX on errors 6609 - MINOR: mux-h1: Drain obuf if the output is closed after sending data 6610 - BUG/MEDIUM: mworker: stop every tasks in the master 6611 - BUG/MEDIUM: htx: Set the right start-line offset after a defrag 6612 - BUG/MEDIUM: stream: Don't dereference s->txn when it is not there yet. 6613 - BUG/MEDIUM: connections: Reuse an already attached conn_stream. 6614 - MINOR: stream-int: add a new blocking condition on the remote connection 6615 - BUG/MEDIUM: stream-int: don't attempt to receive if the connection is not established 6616 - BUG/MEDIUM: lua: block on remote connection establishment 6617 - BUG/MEDIUM: mworker: fix several typos in mworker_cleantasks() 6618 - SCRIPTS/REGTEST: merge grep+sed into sed in run-regtests 6619 - BUG/MEDIUM: connections: Split CS_FL_RCV_MORE into 2 flags. 6620 - BUG/MEDIUM: h1: Don't free the connection if it's an outgoing connection. 6621 - BUG/MEDIUM: h1: Set CS_FL_REOS if we had a read0. 6622 - BUG/MEDIUM: mux-h1: Be sure to have a conn_stream to set CS_FL_REOS in h1_recv 6623 - REGTEST: Move LUA reg test 4 to level 1. 6624 - MINOR: ist: add functions to copy/uppercase/lowercase into a buffer or string 6625 - MEDIUM: ist: always turn header names to lower case 6626 - MINOR: h2: don't turn HTX header names to lower case anymore 6627 - MEDIUM: ist: use local conversion arrays to case conversion 6628 - MINOR: htx: switch to case sensitive search of lower case header names 6629 - MINOR: mux-h1: Set CS_FL_EOS when read0 is detected and no data are pending 6630 - BUG/MINOR: stream-int: Process read0 even if no data was received in si_cs_recv 6631 - REGTEST: fix the Lua test file name in test lua/h00002 :-) 6632 - REGTEST: add a basic test for HTTP rules manipulating headers 6633 - BUG/MEDIUM: sample: Don't treat SMP_T_METH as SMP_T_STR. 6634 - MINOR: sample: add bc_http_major 6635 - BUG/MEDIUM: htx: fix typo in htx_replace_stline() making it fail all the time 6636 - REGTEST: make the HTTP rules test compatible with HTTP/2 as well 6637 - BUG/MEDIUM: h2: Don't try to chunk data when using HTX. 6638 - MINOR: compiler: add a new macro ALREADY_CHECKED() 6639 - BUILD: h2: mark the start line already checked to avoid warnings 6640 - BUG/MINOR: mux-h1: Remove the connection header when it is useless 6641 66422018/12/02 : 1.9-dev9 6643 - BUILD/MINOR: ssl: fix build with non-alpn/non-npn libssl 6644 - BUG/MINOR: mworker: Do not attempt to close(2) fd -1 6645 - BUILD: compression: fix build error with DEFAULT_MAXZLIBMEM 6646 - MINOR: compression: always create the compression pool 6647 - BUG/MEDIUM: mworker: fix FD leak upon reload 6648 - BUILD: htx: fix fprintf format inconsistency on 32-bit platforms 6649 - BUILD: buffers: buf.h requires unistd to get ssize_t on libmusl 6650 - MINOR: initcall: introduce a way to register init functions to call at boot 6651 - MINOR: init: process all initcalls in order at boot time 6652 - MEDIUM: init: convert all trivial registration calls to initcalls 6653 - MINOR: thread: provide a set of lock initialisers 6654 - MINOR: threads: add new macros to declare self-initializing locks 6655 - MEDIUM: init: use self-initializing spinlocks and rwlocks 6656 - MINOR: initcall: apply initcall to all register_build_opts() calls 6657 - MINOR: initcall: use initcalls for most post_{check,deinit} and per_thread* 6658 - MINOR: initcall: use initcalls for section parsers 6659 - MINOR: memory: add a callback function to create a pool 6660 - MEDIUM: init: use initcall for all fixed size pool creations 6661 - MEDIUM: memory: use pool_destroy_all() to destroy all pools on deinit() 6662 - MEDIUM: initcall: use initcalls for a few initialization functions 6663 - MEDIUM: memory: make the pool cache an array and not a thread_local 6664 - MINOR: ssl: free ctx when libssl doesn't support NPN 6665 - BUG/MINOR: proto_htx: only mark connections private if NTLM is detected 6666 - MINOR: h2: make struct h2_ops static 6667 - BUG/MEDIUM: mworker: avoid leak of client socket 6668 - REORG: mworker: declare master variable in global.h 6669 - BUG/MEDIUM: listeners: CLOEXEC flag is not correctly set 6670 - CLEANUP: http: Fix typo in init_http's comment 6671 - BUILD: Makefile: Disable -Wcast-function-type if it exists. 6672 - BUG/MEDIUM: h2: Don't bogusly error if the previous stream was closed. 6673 - REGTEST/MINOR: script: add run-regtests.sh script 6674 - REGTEST: Add a basic test for the cache. 6675 - BUG/MEDIUM: mux_pt: Don't forget to unsubscribe() on attach. 6676 - BUG/MINOR: ssl: ssl_sock_parse_clienthello ignores session id 6677 - BUG/MEDIUM: connections: Wake the stream once the mux is chosen. 6678 - BUG/MEDIUM: connections: Don't forget to detach the connection from the SI. 6679 - BUG/MEDIUM: stream_interface: Don't check if the handshake is done. 6680 - BUG/MEDIUM: stream_interface: Make sure we read all the data available. 6681 - BUG/MEDIUM: h2: Call h2_process() if there's an error on the connection. 6682 - REGTEST: Fix several issues. 6683 - REGTEST: lua: check socket functionality from a lua-task 6684 - BUG/MEDIUM: session: Remove the session from the session_list in session_free. 6685 - BUG/MEDIUM: streams: Don't assume we have a CS in sess_update_st_con_tcp. 6686 - BUG/MEDIUM: connections: Don't assume we have a mux in connect_server(). 6687 - BUG/MEDIUM: connections: Remove the connection from the idle list before destroy. 6688 - BUG/MEDIUM: session: properly clean the outgoing connection before freeing. 6689 - BUG/MEDIUM: mux_pt: Don't try to send if handshake is not done. 6690 - MEDIUM: connections: Put H2 connections in the idle list if http-reuse always. 6691 - MEDIUM: h2: Destroy a connection with no stream if it has no owner. 6692 - MAJOR: sessions: Store multiple outgoing connections in the session. 6693 - MEDIUM: session: Steal owner-less connections on end of transaction. 6694 - MEDIUM: server: Be smarter about deciding to reuse the last server. 6695 - BUG/MEDIUM: Special-case http_proxy when dealing with outgoing connections. 6696 - BUG/MINOR: cfgparse: Fix transition between 2 sections with the same name 6697 - BUG/MINOR: http: Use out buffer instead of trash to display error snapshot 6698 - BUG/MINOR: htx: Fix block size calculation when a start-line is added/replaced 6699 - BUG/MINOR: mux-h1: Fix processing of "Connection: " header on outgoing messages 6700 - BUG/MEDIUM: mux-h1: Reset the H1 parser when an outgoing message is processed 6701 - BUG/MINOR: proto_htx: Send outgoing data to client to start response processing 6702 - BUG/MINOR: htx: Stop a header or a start line lookup on the first EOH or EOM 6703 - BUG/MINOR: connection: report mux modes when HTX is supported 6704 - MINOR: htx: add a function to cut the beginning of a DATA block 6705 - MEDIUM: conn_stream: Add a way to get mux's info on a CS from the upper layer 6706 - MINOR: mux-h1: Implement get_cs_info() callback 6707 - MINOR: stream: Rely on CS's info if it exists and fallback on session's ones 6708 - MINOR: proto_htx: Use conn_stream's info to set t_idle duration when possible 6709 - MINOR: mux-h1: Don't rely on the stream anymore in h1_set_srv_conn_mode() 6710 - MINOR: mux-h1: Write last chunk and trailers if not found in the HTX message 6711 - MINOR: mux-h1: Be prepare to fail when EOM is added during trailers parsing 6712 - MINOR: mux-h1: Subscribe to send in h1_snd_buf() when not all data have been sent 6713 - MINOR: mux-h1: Consume channel's data in a loop in h1_snd_buf() 6714 - MEDIUM: mux-h1: Add keep-alive outgoing connections in connections list 6715 - MINOR: htx: Add function to add an HTX block just before another one 6716 - MINOR: htx: Add function to iterate on an HTX message using HTX blocks 6717 - MINOR: htx: Add a function to find the HTX block corresponding to a data offset 6718 - MINOR: stats: Don't add end-of-data marker and trailers in the HTX response 6719 - MEDIUM: htx: Change htx_sl to be a struct instead of an union 6720 - MINOR: htx: Add the start-line offset for the HTX message in the HTX structure 6721 - MEDIUM: htx: Don't rely on h1_sl anymore except during H1 header parsing 6722 - MINOR: proto-htx: Use the start-line flags to set the HTTP messsage ones 6723 - MINOR: htx: Add BODYLESS flags on the HTX start-line and the HTTP message 6724 - MINOR: proto_htx: Use full HTX messages to send 100-Continue responses 6725 - MINOR: proto_htx: Use full HTX messages to send 103-Early-Hints responses 6726 - MINOR: proto_htx: Use full HTX messages to send 401 and 407 responses 6727 - MINOR: proto_htx: Send valid HTX message when redir mode is enabled on a server 6728 - MINOR: proto_htx: Send valid HTX message to send 30x responses 6729 - MEDIUM: proto_htx: Convert all HTTP error messages into HTX 6730 - MINOR: mux-h1: Process conn_mode on the EOH when no connection header is found 6731 - MINOR: mux-h1: Change client conn_mode on an explicit close for the response 6732 - MINOR: mux-h1: Capture bad H1 messages 6733 - MAJOR: filters: Adapt filters API to be compatible with the HTX represenation 6734 - MEDIUM: proto_htx/filters: Add data filtering during the forwarding 6735 - MINOR: flt_trace: Adapt to be compatible with the HTX representation 6736 - MEDIUM: compression: Adapt to be compatible with the HTX representation 6737 - MINOR: h2: implement H2->HTX request header frame transcoding 6738 - MEDIUM: mux-h2: register mux for both HTTP and HTX modes 6739 - MEDIUM: mux-h2: make h2_rcv_buf() support HTX transfers 6740 - MEDIUM: mux-h2: make h2_snd_buf() HTX-aware 6741 - MEDIUM: mux-h2: add basic H2->HTX transcoding support for headers 6742 - MEDIUM: mux-h2: implement emission of H2 headers frames from HTX blocks 6743 - MEDIUM: mux-h2: implement the emission of DATA frames from HTX DATA blocks 6744 - MEDIUM: mux-h2: support passing H2 DATA frames to HTX blocks 6745 - BUG/MINOR: cfgparse: Fix the call to post parser of the last sections parsed 6746 - BUG/MEDIUM: mux-h2: don't lose the first response header in HTX mode 6747 - BUG/MEDIUM: mux-h2: remove the HTX EOM block on H2 response headers 6748 - MINOR: listener: the mux_proto entry in the bind_conf is const 6749 - MINOR: connection: create conn_get_best_mux_entry() 6750 - MINOR: server: the mux_proto entry in the server is const 6751 - MINOR: config: make sure to associate the proper mux to bind and servers 6752 - MINOR: hpack: add ":path" to the list of common header fields 6753 - MINOR: h2: add new functions to produce an HTX message from an H2 response 6754 - MINOR: mux-h2: mention that the mux is compatible with both sides 6755 - MINOR: mux-h2: implement an outgoing stream allocator : h2c_bck_stream_new() 6756 - MEDIUM: mux-h2: start to create the outgoing mux 6757 - MEDIUM: mux-h2: implement encoding of H2 request on the backend side 6758 - MEDIUM: mux-h2: make h2_frt_decode_headers() direction-agnostic 6759 - MEDIUM: mux-h2: make h2_process_demux() capable of processing responses as well 6760 - MEDIUM: mux-h2: Implement h2_attach(). 6761 - MEDIUM: mux-h2: Don't bother flagging outgoing connections as TOOMANY. 6762 - REGTEST: Fix LEVEL 4 script 0 of "connection" module. 6763 - MINOR: connection: Fix a comment. 6764 - MINOR: mux: add a "max_streams" method. 6765 - MEDIUM: servers: Add a way to keep idle connections alive. 6766 - CLEANUP: fix typos in the htx subsystem 6767 - CLEANUP: Fix typo in the chunk headers file 6768 - CLEANUP: Fix typos in the h1 subsystem 6769 - CLEANUP: Fix typos in the h2 subsystem 6770 - CLEANUP: Fix a typo in the mini-clist header 6771 - CLEANUP: Fix a typo in the proto_htx subsystem 6772 - CLEANUP: Fix typos in the proto_tcp subsystem 6773 - CLEANUP: Fix a typo in the signal subsystem 6774 - CLEANUP: Fix a typo in the session subsystem 6775 - CLEANUP: Fix a typo in the queue subsystem 6776 - CLEANUP: Fix typos in the shctx subsystem 6777 - CLEANUP: Fix typos in the socket pair protocol subsystem 6778 - CLEANUP: Fix typos in the map management functions 6779 - CLEANUP: Fix typo in the fwrr subsystem 6780 - CLEANUP: Fix typos in the cli subsystem 6781 - CLEANUP: Fix typo in the 51d subsystem 6782 - CLEANUP: Fix a typo in the base64 subsystem 6783 - CLEANUP: Fix a typo in the connection subsystem 6784 - CLEANUP: Fix a typo in the protocol header file 6785 - CLEANUP: Fix a typo in the checks header file 6786 - CLEANUP: Fix typos in the file descriptor subsystem 6787 - CLEANUP: Fix a typo in the listener subsystem 6788 - BUG/MINOR: lb-map: fix unprotected update to server's score 6789 - BUILD: threads: fix minor build warnings when threads are disabled 6790 67912018/11/25 : 1.9-dev8 6792 - REORG: config: extract the global section parser into cfgparse-global 6793 - REORG: config: extract the proxy parser into cfgparse-listen.c 6794 - BUILD: update the list of supported targets and compilers in makefile and readme 6795 - BUILD: reorder the objects in the makefile 6796 - BUILD: Makefile: make "V=1" show some of the commands that are executed 6797 - BUILD: Makefile: add the quiet mode to a few more targets 6798 - BUILD: Makefile: add "$(Q)" to clean, tags and cscope targets 6799 - BUILD: Makefile: switch to quiet mode by default for CC/LD/AR 6800 - MINOR: cli: format `show proc` to be more readable 6801 - MINOR: cli: displays uptime in `show proc` 6802 - MINOR: cli: show master information in 'show proc' 6803 - BUG/MEDIUM: hpack: fix encoding of "accept-ranges" field 6804 - MAJOR: mux-h1: Remove the rxbuf and decode HTTP messages in channel's buffer 6805 - BUG/MINOR: mux-h1: Enable keep-alive on server side 6806 - BUG/MEDIUM: mux-h1: Fix freeze when the kernel splicing is used 6807 - BUG/MEDIUM: mux-h1: Don't set the flag CS_FL_RCV_MORE when nothing was parsed 6808 - BUG/MINOR: stats/htx: Remove channel's output when the request is eaten 6809 - BUG/MINOR: proto_htx: Fix request/response synchronisation on error 6810 - MINOR: stream-int: Notify caller when an error is reported after a rcv_pipe() 6811 - MINOR: stream-int: Notify caller when an error is reported after a rcv_buf() 6812 - BUG/MINOR: stream-int: Don't call snd_buf() if there are still data in the pipe 6813 - MINOR: stream-int: remove useless checks on CS and conn flags in si_cs_send() 6814 - BUG/MINOR: config: Be aware of the HTX during the check of mux protocols 6815 - BUG/MINOR: mux-htx: Fix bad test on h1c flags in h1_recv_allowed() 6816 - MEDIUM: mworker: wait mode use standard init code path 6817 - MINOR: log: introduce ha_notice() 6818 - MINOR: mworker: use ha_notice to announce a new worker 6819 - BUG/MEDIUM: http_fetch: Make sure name is initialized before http_find_header. 6820 - MINOR: cli: add mworker_accept_wrapper to 'show fd' 6821 - MEDIUM: signal: signal_unregister() removes every handlers 6822 - BUG/MEDIUM: mworker: unregister the signals of main() 6823 - MINOR: cli: add a few missing includes in proto/cli.h 6824 - REORG: time/activity: move activity measurements to activity.{c,h} 6825 - MINOR: activity: report the average loop time in "show activity" 6826 - MINOR: activity: add configuration and CLI support for "profiling.tasks" 6827 - MEDIUM: tasks: collect per-task CPU time and latency 6828 - MINOR: sample: add cpu_calls, cpu_ns_avg, cpu_ns_tot, lat_ns_avg, lat_ns_tot 6829 - MINOR: cli/activity: rename the stolen CPU time fields to mention milliseconds 6830 - BUG/MINOR: cli: Fix memory leak 6831 - BUG/MINOR: mworker: fix FD leak and memory leak in error path 6832 - MINOR: poller: move the call of tv_update_date() back to the pollers 6833 - MINOR: polling: add an option to support busy polling 6834 - MINOR: server: Add "alpn" and "npn" keywords. 6835 - MEDIUM: connection: Don't bother reactivating polling after connection retry. 6836 - MAJOR: connections: Defer mux creation for outgoing connection if alpn is set. 6837 - MEDIUM: ssl: Add ssl_bc_alpn and ssl_bc_npn sample fetches. 6838 - MINOR: servers: Free [idle|safe|priv]_conns on exit. 6839 - REGTEST: add the option to test only a specific set of files 6840 - REGTEST: add a test for connections to a "dispatch" address 6841 - BUG/MEDIUM: connections: Don't reset the conn flags in *connect_server(). 6842 - MINOR: server: Only defined conn_complete_server if USE_OPENSSL is set. 6843 - BUG/MEDIUM: servers: Don't check if we have a conn_stream too soon. 6844 - BUG/MEDIUM: sessions: Set sess->origin to NULL if the origin was destroyed. 6845 - MEDIUM: servers: Store the connection in the SI until we have a mux. 6846 - BUG/MEDIUM: h2: wake the processing task up after demuxing 6847 - BUG/MEDIUM: h2: restart demuxing after releasing buffer space 6848 68492018/11/18 : 1.9-dev7 6850 - BUILD: cache: fix a build warning regarding too large an integer for the age 6851 - CLEANUP: fix typos in the comments of the Makefile 6852 - CLEANUP: fix a typo in a comment for the contrib/halog subsystem 6853 - CLEANUP: fix typos in comments for the contrib/modsecurity subsystem 6854 - CLEANUP: fix typos in comments for contrib/spoa_example 6855 - CLEANUP: fix typos in comments for contrib/wireshark-dissectors 6856 - DOC: Fix typos in README and CONTRIBUTING 6857 - MINOR: log: slightly improve error message syntax on log failure 6858 - DOC: logs: the format directive was missing from the second log part 6859 - MINOR: log: report the number of dropped logs in the stats 6860 - MEDIUM: log: add support for logging to existing file descriptors 6861 - MEDIUM: log: support a new "short" format 6862 - MEDIUM: log: add a new "raw" format 6863 - BUG/MEDIUM: stream-int: change the way buffer room is requested by a stream-int 6864 - BUG/MEDIUM: stream-int: convert some co_data() checks to channel_is_empty() 6865 - MINOR: namespaces: don't build namespace.c if disabled 6866 - BUILD/MEDIUM: threads/affinity: DragonFly build fix 6867 - MINOR: http: Add new "early-hint" http-request action. 6868 - MINOR: http: Make new "early-hint" http-request action really be parsed. 6869 - MINOR: http: Implement "early-hint" http request rules. 6870 - MINOR: doc: Add information about "early-hint" http-request action. 6871 - DOC: early-hints: fix truncated line. 6872 - MINOR: mworker: only close std{in,out,err} in daemon mode 6873 - BUG/MEDIUM: log: don't CLOEXEC the inherited FDs 6874 - BUG/MEDIUM: Make sure stksess is properly aligned. 6875 - BUG/MEDIUM: stream-int: make failed splice_in always subscribe to recv 6876 - BUG/MEDIUM: stream-int: clear CO_FL_WAIT_ROOM after splicing data in 6877 - BUG/MINOR: stream-int: make sure not to go through the rcv_buf path after splice() 6878 - CONTRIB: debug: fix build related to conn_stream flags change 6879 - REGTEST: fix scripts 1 and 3 to accept development version 6880 - BUG/MINOR: http_fetch: Remove the version part when capturing the request uri 6881 - MINOR: http: Regroup return statements of http_req_get_intercept_rule at the end 6882 - MINOR: http: Regroup return statements of http_res_get_intercept_rule at the end 6883 - BUG/MINOR: http: Be sure to sent fully formed HTTP 103 responses 6884 - MEDIUM: jobs: support unstoppable jobs for soft stop 6885 - MEDIUM: listeners: support unstoppable listener 6886 - MEDIUM: cli: worker socketpair is unstoppable 6887 - BUG/MINOR: stream-int: set SI_FL_WANT_PUT in sess_establish() 6888 - MINOR: stream: move the conn_stream specific calls to the stream-int 6889 - BUG/MINOR: config: Copy default error messages when parsing of a backend starts 6890 - CLEANUP: h2: minimum documentation for recent API changes 6891 - MINOR: mux: implement a get_first_cs() method 6892 - MINOR: stream-int: make conn_si_send_proxy() use cs_get_first() 6893 - MINOR: stream-int: relax the forwarding rules in stream_int_notify() 6894 - MINOR: stream-int: expand the flags to 32-bit 6895 - MINOR: stream-int: rename SI_FL_WAIT_ROOM to SI_FL_RXBLK_ROOM 6896 - MINOR: stream-int: introduce new SI_FL_RXBLK flags 6897 - MINOR: stream-int: add new functions si_{rx,tx}_{blocked,endp_ready}() 6898 - MINOR: stream-int: replace SI_FL_WANT_PUT with !SI_FL_RX_WAIT_EP 6899 - MINOR: stream-int: use si_rx_blocked()/si_tx_blocked() to check readiness 6900 - MEDIUM: stream-int: use si_rx_buff_{rdy,blk} to report buffer readiness 6901 - MINOR: stream-int: replace si_{want,stop}_put() with si_rx_endp_{more,done}() 6902 - MEDIUM: stream-int: update the endp polling status only at the end of si_cs_recv() 6903 - MINOR: stream-int: make si_sync_recv() simply check ENDP before si_cs_recv() 6904 - MINOR: stream-int: automatically mark applets as ready if they block on the channel 6905 - MEDIUM: stream-int: fix the si_cant_put() calls used for end point readiness 6906 - MEDIUM: stream-int: fix the si_cant_put() calls used for buffer readiness 6907 - MEDIUM: stream-int: use si_rx_shut_blk() to indicate the SI is closed 6908 - MEDIUM: stream-int: unconditionally call si_chk_rcv() in update and notify 6909 - MEDIUM: stream-int: make use of si_rx_chan_{rdy,blk} to control the stream-int from the channel 6910 - MINOR: stream-int: replace si_cant_put() with si_rx_room_{blk,rdy}() 6911 - MEDIUM: connections: Wait until the connection is established to try to recv. 6912 - MEDIUM: mux: Teach the mux_pt how to deal with idle connections. 6913 - MINOR: mux: Add a new "avail_streams" method. 6914 - MINOR: mux: Add a destroy() method. 6915 - MINOR: sessions: Start to store the outgoing connection in sessions. 6916 - MAJOR: connections: Detach connections from streams. 6917 - MINOR: conn_stream: Add a flag to notify the mux it should flush its buffers 6918 - MINOR: htx: Add proto_htx.c file 6919 - MINOR: conn_stream: Add a flag to notify the mux it must respect the reserve 6920 - MINOR: http: Add standalone functions to parse a start-line or a header 6921 - MINOR: http: Call http_send_name_header with the stream instead of the txn 6922 - MINOR: conn_stream: Add a flag to notify the SI some data were received 6923 - MINOR: http: Add macros to check if a stream uses the HTX representation 6924 - MEDIUM: proto_htx: Add HTX analyzers and use it when the mux H1 is used 6925 - MEDIUM: mux-h1: Add dummy mux to handle HTTP/1.1 connections 6926 - MEDIUM: mux-h1: Add parsing of incoming and ougoing HTTP messages 6927 - MAJOR: mux-h1/proto_htx: Handle keep-alive connections in the mux 6928 - MEDIUM: mux-h1: Add support of the kernel TCP splicing to forward data 6929 - MEDIUM: htx: Add API to deal with the internal representation of HTTP messages 6930 - MINOR: http_htx: Add functions to manipulate HTX messages in http_htx.c 6931 - MINOR: proto_htx: Add some functions to handle HTX messages 6932 - MAJOR: mux-h1/proto_htx: Switch mux-h1 and HTX analyzers on the HTX representation 6933 - MINOR: http_htx: Add functions to replace part of the start-line 6934 - MINOR: http_htx: Add functions to retrieve a specific occurrence of a header 6935 - MINOR: proto_htx: Rewrite htx_apply_redirect_rule to handle HTX messages 6936 - MINOR: proto_htx: Add the internal function htx_del_hdr_value 6937 - MINOR: proto_htx: Add the internal function htx_fmt_res_line 6938 - MINOR: proto_htx: Add functions htx_transform_header and htx_transform_header_str 6939 - MINOR: proto_htx: Add functions htx_req_replace_stline and htx_res_set_status 6940 - MINOR: proto_htx: Add function to build and send HTTP 103 responses 6941 - MINOR: proto_htx: Add functions htx_req_get_intercept_rule and htx_res_get_intercept_rule 6942 - MINOR: proto_htx: Add functions to apply req* and rsp* rules on HTX messages 6943 - MINOR: proto_htx: Add functions to manage cookies on HTX messages 6944 - MINOR: proto_htx: Add functions to check the cacheability of HTX messages 6945 - MINOR: proto_htx: Add functions htx_send_name_header 6946 - MINOR: proto_htx: Add functions htx_perform_server_redirect 6947 - MINOR: proto_htx: Add functions to handle the stats applet 6948 - MEDIUM: proto_htx: Adapt htx_process_req_common to handle HTX messages 6949 - MEDIUM: proto_htx: Adapt htx_process_request to handle HTX messages 6950 - MINOR: proto_htx: Adapt htx_process_tarpit to handle HTX messages 6951 - MEDIUM: proto_htx: Adapt htx_wait_for_request_body to handle HTX messages 6952 - MEDIUM: proto_htx: Adapt htx_process_res_common to handle HTX messages 6953 - MINOR: http_fetch: Add smp_prefetch_htx 6954 - MEDIUM: http_fetch: Adapt all fetches to handle HTX messages 6955 - MEDIUM: mux-h1: Wait for connection establishment before consuming channel's data 6956 - MINOR: stats/htx: Adapt the stats applet to handle HTX messages 6957 - MINOR: stream: Don't reset sov value with HTX messages 6958 - MEDIUM: mux-h1: Handle errors and timeouts in the stream 6959 - MINOR: filters/htx: Forbid filters when the HTX is enabled on a proxy 6960 - MINOR: lua/htx: Forbid lua usage when the HTX is enabled on a proxy 6961 - CLEANUP: Fix some typos in the haproxy subsystem 6962 - CLEANUP: Fix typos in the dns subsystem 6963 - CLEANUP: Fix typos in the pattern subsystem 6964 - CLEANUP: fix 2 typos in the xxhash subsystem 6965 - CLEANUP: fix a few typos in the comments of the server subsystem 6966 - CLEANUP: fix a misspell in tests/filltab25.c 6967 - CLEANUP: fix a typo found in the stream subsystem 6968 - CLEANUP: fix typos in comments in ebtree 6969 - CLEANUP: fix typos in reg-tests 6970 - CLEANUP: fix typos in the comments of the vars subsystem 6971 - CLEANUP: fix typos in the hlua_fcn subsystem 6972 - CLEANUP: fix typos in the proto_http subsystem 6973 - CLEANUP: fix typos in the proxy subsystem 6974 - CLEANUP: fix typos in the ssl_sock subsystem 6975 - DOC: Fix typos in different subsections of the documentation 6976 - DOC: fix a few typos in the documentation 6977 - MINOR: Fix an error message thrown when we run out of memory 6978 - MINOR: Fix typos in error messages in the proxy subsystem 6979 - MINOR: fix typos in the examples files 6980 - CLEANUP: Fix a typo in the stats subsystem 6981 - CLEANUP: Fix typos in the acl subsystem 6982 - CLEANUP: Fix typos in the cache subsystem 6983 - CLEANUP: Fix typos in the cfgparse subsystem 6984 - CLEANUP: Fix typos in the filters subsystem 6985 - CLEANUP: Fix typos in the http subsystem 6986 - CLEANUP: Fix typos in the log subsystem 6987 - CLEANUP: Fix typos in the peers subsystem 6988 - CLEANUP: Fix typos in the regex subsystem 6989 - CLEANUP: Fix typos in the sample subsystem 6990 - CLEANUP: Fix typos in the spoe subsystem 6991 - CLEANUP: Fix typos in the standard subsystem 6992 - CLEANUP: Fix typos in the stick_table subsystem 6993 - CLEANUP: Fix typos in the task subsystem 6994 - MINOR: Fix typo in error message in the standard subsystem 6995 - CLEANUP: fix typos in the comments of hlua 6996 - MINOR: Fix typo in the error 500 output of hlua 6997 - MINOR: Fix a typo in a warning message in the spoe subsystem 6998 69992018/11/11 : 1.9-dev6 7000 - BUG/MEDIUM: tools: fix direction of my_ffsl() 7001 - BUG/MINOR: cli: forward the whole command on master CLI 7002 - BUG/MEDIUM: auth/threads: use of crypt() is not thread-safe 7003 - MINOR: compat: automatically detect support for crypt_r() 7004 - MEDIUM: auth/threads: make use of crypt_r() on systems supporting it 7005 - DOC: split the http-request actions in their own section 7006 - DOC: split the http-response actions in their own section 7007 - BUG/MAJOR: stream-int: don't call si_cs_recv() in stream_int_chk_rcv_conn() 7008 - BUG/MINOR: tasks: make sure wakeup events are properly reported to subscribers 7009 - MINOR: stats: report the number of active jobs and listeners in "show info" 7010 - MINOR: stats: report the number of active peers in "show info" 7011 - MINOR: stats: report the number of currently connected peers 7012 - MINOR: cli: show the number of reload in 'show proc' 7013 - MINOR: cli: can't connect to the target CLI 7014 - MEDIUM: mworker: does not create the CLI proxy when no listener 7015 - MINOR: mworker: displays more information when leaving 7016 - MEDIUM: mworker: exit with the incriminated exit code 7017 - MINOR: mworker: displays a message when a worker is forked 7018 - MEDIUM: mworker: leave when the master die 7019 - CLEANUP: stream-int: retro-document si_cs_io_cb() 7020 - BUG/MEDIUM: mworker: does not abort() in mworker_pipe_register() 7021 - BUG/MEDIUM: stream-int: don't wake up for nothing during SI_ST_CON 7022 - BUG/MEDIUM: cli: crash when trying to access a worker 7023 - DOC: restore note about "independant" typo 7024 - MEDIUM: stream: implement stream_buf_available() 7025 - MEDIUM: appctx: check for allocation attempts in buffer allocation callbacks 7026 - MINOR: stream-int: rename si_applet_{want|stop|cant}_{get|put} 7027 - MINOR: stream-int: add si_done_{get,put} to indicate that we won't do it anymore 7028 - MINOR: stream-int: use si_cant_put() instead of setting SI_FL_WAIT_ROOM 7029 - MINOR: stream-int: make use of si_done_{get,put}() in shut{w,r} 7030 - MINOR: stream-int: make it clear that si_ops cannot be null 7031 - MEDIUM: stream-int: temporarily make si_chk_rcv() take care of SI_FL_WAIT_ROOM 7032 - MINOR: stream-int: factor the SI_ST_EST state test into si_chk_rcv() 7033 - MEDIUM: stream-int: make SI_FL_WANT_PUT reflect CF_DONT_READ 7034 - MEDIUM: stream-int: always call si_chk_rcv() when we make room in the buffer 7035 - MEDIUM: stream-int: make si_chk_rcv() check that SI_FL_WAIT_ROOM is cleared 7036 - MINOR: stream-int: replace si_update() with si_update_both() 7037 - MEDIUM: stream-int: make stream_int_update() aware of the lower layers 7038 - CLEANUP: stream-int: remove the now unused si->update() function 7039 - MEDIUM: stream-int: Rely only on SI_FL_WAIT_ROOM to stop data receipt 7040 - MEDIUM: stream-int: Try to read data even if channel's buffer seems to be full 7041 - BUG/MINOR: config: better detect the presence of the h2 pattern in npn/alpn 7042 70432018/10/28 : 1.9-dev5 7044 - BUILD: Makefile: add the new ERR variable to force -Werror 7045 - MINOR: freq_ctr: add swrate_add_scaled() to work with large samples 7046 - MINOR: stream_interface: Avoid calling si_cs_send/recv if not needed. 7047 - CLEANUP: http: Remove the unused function http_find_header 7048 - MINOR: h1: Export some functions parsing the value of some HTTP headers 7049 - BUG/MEDIUM: stream-int: don't set SI_FL_WAIT_ROOM on CF_READ_DONTWAIT 7050 - MINOR: proxy: add a new option "http-use-htx" 7051 - BUG/MEDIUM: pools: fix the minimum allocation size 7052 - MINOR: shctx: Shared objects block by block allocation. 7053 - MINOR: cache: Larger HTTP objects caching. 7054 - MINOR: shctx: Add a maximum object size parameter. 7055 - MINOR: cache: Add "max-object-size" option. 7056 - DOC: Update about the cache support for big objects. 7057 - BUG/MINOR: cache: Crashes with "total-max-size" > 2047(MB). 7058 - BUG/MINOR: cache: Wrong usage of shctx_init(). 7059 - BUG/MINOR: ssl: Wrong usage of shctx_init(). 7060 - MINOR: cache: Avoid usage of atoi() when parsing "max-object-size". 7061 - MINOR: shctx: Change max. object size type to unsigned int. 7062 - DOC: cache: Missing information about "total-max-size" and "max-object-size" 7063 - CLEANUP: tools: fix misleading comment above function LIM2A 7064 - MEDIUM: channel: merge back flags CF_WRITE_PARTIAL and CF_WRITE_EVENT 7065 - BUG/MINOR: only mark connections private if NTLM is detected 7066 - BUG/MINOR: only auto-prefer last server if lb-alg is non-deterministic 7067 - MINOR: stream: don't prune variables if the list is empty 7068 - MINOR: stream-int: add si_alloc_ibuf() to ease input buffer allocation 7069 - MEDIUM: stream-int: replace channel_alloc_buffer() with si_alloc_ibuf() everywhere 7070 - MEDIUM: stream: always call si_cs_recv() after a failed buffer allocation 7071 - MEDIUM: stream: don't try to send first in process_stream() 7072 - MEDIUM: stream-int: make si_update() synchronize flag changes before the I/O 7073 - MEDIUM: stream-int: call si_cs_process() in stream_int_update_conn 7074 - MINOR: stream-int: don't needlessly call tasklet_wakeup() in stream_int_chk_snd_conn() 7075 - MINOR: stream-int: make stream_int_notify() not wake the tasklet up 7076 - MINOR: stream-int: don't needlessly call si_cs_send() in si_cs_process() 7077 - MINOR: mworker: number of reload in the life of a worker 7078 - MEDIUM: mworker: each worker socketpair is a CLI listener 7079 - REORG: mworker: move struct mworker_proc to global.h 7080 - MINOR: server: export new_server() function 7081 - MEDIUM: mworker: move proc_list gen before proxies startup 7082 - MEDIUM: mworker: add proc_list in global.h 7083 - MEDIUM: mworker: proxy for the master CLI 7084 - MEDIUM: mworker: create CLI listeners from argv[] 7085 - MEDIUM: cli: disable some keywords in the master 7086 - MEDIUM: mworker: find the server ptr using a CLI prefix 7087 - MEDIUM: cli: 'show proc' displays processus 7088 - MEDIUM: cli: implement 'mode cli' proxy analyzers 7089 - MINOR: cli: displays sockpair@ in "show cli sockets" 7090 - MEDIUM: cli: enable "show cli sockets" for the master 7091 - MINOR: cli: put @master @<relative pid> @!<pid> in the help 7092 - MEDIUM: listeners: set O_CLOEXEC on the accepted FDs 7093 - MEDIUM: mworker: stop the master proxy in the workers 7094 - MEDIUM: channel: reorder the channel analyzers for the cli 7095 - MEDIUM: cli: write a prompt for the CLI proxy of the master 7096 - MINOR: cli: helper to write an response message and close 7097 - MINOR: cache: Add "Age" header. 7098 - REGTEST: make the IP+port logging test more reliable 7099 - BUG/MINOR: memory: make the thread-local cache allocator set the debugging link 7100 - BUG/MAJOR: http: http_txn_get_path() may deference an inexisting buffer 7101 - BUG/MINOR: backend: assign the wait list after the error check 7102 71032018/10/21 : 1.9-dev4 7104 - BUILD: Allow configuration of pcre-config path 7105 - DOC: clarify force-private-cache is an option 7106 - BUG/MINOR: connection: avoid null pointer dereference in send-proxy-v2 7107 - REORG: http: move the code to different files 7108 - REORG: http: move HTTP rules parsing to http_rules.c 7109 - CLEANUP: http: remove some leftovers from recent cleanups 7110 - BUILD: Makefile: add a "make opts" target to simply show the build options 7111 - BUILD: Makefile: speed up compiler options detection 7112 - BUG/MINOR: backend: check that the mux installed properly 7113 - BUG/MEDIUM: h2: check that the connection is still valid at the end of init() 7114 - BUG/MEDIUM: h2: make h2_stream_new() return an error on memory allocation failure 7115 - REGTEST/MINOR: compatibility: use unix@ instead of abns@ sockets 7116 - MINOR: ssl: cleanup old openssl API call 7117 - MINOR: ssl: generate-certificates for BoringSSL 7118 - BUG/MEDIUM: buffers: Make sure we don't wrap in ci_insert_line2/b_rep_blk. 7119 - MEDIUM: ssl: add support for ciphersuites option for TLSv1.3 7120 - CLEANUP: haproxy: Remove unused variable 7121 - CLEANUP: h1: Fix debug warnings for h1 headers 7122 - CLEANUP: stick-tables: Remove unneeded double (()) around conditional clause 7123 - MEDIUM: task: perform a single tree lookup per run queue batch 7124 - BUG/MEDIUM: Cur/CumSslConns counters not threadsafe. 7125 - BUG/MINOR: threads: move declaration of capabilities to config.h 7126 - OPTIM: tools: optimize my_ffsl() for x86_64 7127 - BUG/MINOR: h2: null-deref 7128 - BUG/MINOR: checks: queues null-deref 7129 - MINOR: connections: Introduce an unsubscribe method. 7130 - MEDIUM: connections: Change struct wait_list to wait_event. 7131 - BUG/MEDIUM: h2: Make sure we're not in the send list on flow control. 7132 - BUG/MEDIUM: mworker: segfault receiving SIGUSR1 followed by SIGTERM. 7133 - BUG/MEDIUM: stream: Make sure to unsubscribe before si_release_endpoint. 7134 - MINOR: http: Move comment about some HTTP macros in the right header file 7135 - MINOR: stats: Add missing include 7136 - MINOR: http: Export some functions and do cleanup to prepare HTTP refactoring 7137 - MEDIUM: http: Ignore http-pretend-keepalive option on frontend 7138 - MEDIUM: http: Ignore http-tunnel option on backend 7139 - MINOR: http: Use same flag for httpclose and forceclose options 7140 - MINOR: h1: Add EOH marker during headers parsing 7141 - MINOR: conn-stream: Add CL_FL_NOT_FIRST flag 7142 - MINOR: h1: Change the union h1_sl to use indirect strings to store infos 7143 - MINOR: h1: Add the flag H1_MF_NO_PHDR to not add pseudo-headers during parsing 7144 - MINOR: log: make sess_log() support sess=NULL 7145 - MINOR: chunk: add chunk_cpy() and chunk_cat() 7146 - MEDIUM: h2: stop relying on H2_SS_IDLE / H2_SS_CLOSED 7147 - CLEANUP: h2: rename h2c_snd_settings() to h2c_send_settings() 7148 - MINOR: h2: don't try to send data before preface 7149 - MINOR: h2: unify the mux init function 7150 - MINOR: h2: retrieve the front proxy from the caller instead of the session 7151 - MINOR: h2: split h2c_stream_new() into h2s_new() + h2c_frt_stream_new() 7152 - MINOR: h2: add a new flag to quickly distinguish front vs back connection 7153 - BUG/MEDIUM: mworker: don't poll on LI_O_INHERITED listeners 7154 - BUG/MEDIUM: stream: don't crash on out-of-memory 7155 - BUILD: compiler: add a new statement "__unreachable()" 7156 - BUILD: lua: silence some compiler warnings about potential null derefs 7157 - BUILD: ssl: fix null-deref warning in ssl_fc_cipherlist_str sample fetch 7158 - BUILD: ssl: fix another null-deref warning in ssl_sock_switchctx_cbk() 7159 - BUILD: stick-table: make sure not to fail on task_new() during initialization 7160 - BUILD: peers: check allocation error during peers_init_sync() 7161 - MINOR: tools: add a new function atleast2() to test masks for more than 1 bit 7162 - MINOR: config: use atleast2() instead of my_popcountl() where relevant 7163 - MEDIUM: fd/threads: only grab the fd's lock if the FD has more than one thread 7164 - MAJOR: tasks: create per-thread wait queues 7165 - OPTIM: tasks: group all tree roots per cache line 7166 - DOC: Fix a few typos 7167 - MINOR: pools: allocate most memory pools from an array 7168 - MINOR: pools: split pool_free() in the lockfree variant 7169 - MEDIUM: pools: implement a thread-local cache for pool entries 7170 - BUG/MEDIUM: threads: fix thread_release() at the end of the rendez-vous point 7171 - Revert "BUILD: lua: silence some compiler warnings about potential null derefs" 7172 - BUILD: lua: silence some compiler warnings about potential null derefs (#2) 7173 - MINOR: lua: all functions calling lua_yieldk() may return 7174 - BUILD: lua: silence some compiler warnings after WILL_LJMP 7175 - BUILD: Makefile: silence an option conflict warning with clang 7176 - MINOR: server: Use memcpy() instead of strncpy(). 7177 - CLEANUP: state-file: make the path concatenation code a bit more consistent 7178 - MINOR: build: Disable -Wstringop-overflow. 7179 - MINOR: cfgparse: Write 130 as 128 as 0x82 and 0x80. 7180 - MINOR: peers: use defines instead of enums to appease clang. 7181 - DOC: fix reference to map files in MAINTAINERS 7182 - MINOR: fd: centralize poll timeout computation in compute_poll_timeout() 7183 - MINOR: poller: move time and date computation out of the pollers 7184 - BUILD: memory: fix pointer declaration for atomic CAS 7185 - BUILD: Makefile: add USE_RT to pass -lrt for clock_gettime() and friends 7186 - MINOR: time: add now_mono_time() and now_cpu_time() 7187 - MEDIUM: time: measure the time stolen by other threads 7188 - BUILD: memory: fix free_list pointer declaration again for atomic CAS 7189 - BUILD: compiler: rename __unreachable() to my_unreachable() 7190 - BUG/MEDIUM: pools: Fix the usage of mmap()) with DEBUG_UAF. 7191 - BUILD: memory: fix free_list pointer declaration again for atomic CAS 7192 - BUG/MEDIUM: h2: Close connection if no stream is left an GOAWAY was sent. 7193 - BUG/MEDIUM: connections: Remove subscription if going in idle mode. 7194 - BUG/MEDIUM: stream: Make sure polling is right on retry. 7195 - MINOR: h2: Make sure to return 1 in h2_recv() when needed. 7196 - MEDIUM: connections: Don't directly mess with the polling from the upper layers. 7197 - MINOR: streams: Call tasklet_free() after si_release_endpoint(). 7198 - MINOR: connection: Add a SUB_CALL_UNSUBSCRIBE event. 7199 - MINOR: h2: Don't run tasks that are waiting to send if mux in full. 7200 - MINOR: ebtree: save 8 bytes in struct eb32sc_node 7201 72022018/09/29 : 1.9-dev3 7203 - BUG/MINOR: h1: don't consider the status for each header 7204 - MINOR: h1: report in the h1m struct if the HTTP version is 1.1 or above 7205 - MINOR: h1: parse the Connection header field 7206 - DOC: Fix typos in lua documentation 7207 - MINOR: h1: Add H1_MF_XFER_LEN flag 7208 - MINOR: http: add http_hdr_del() to remove a header from a list 7209 - MINOR: h1: add headers to the list after controls, not before 7210 - MEDIUM: h1: better handle transfer-encoding vs content-length 7211 - MEDIUM: h1: deduplicate the content-length header 7212 - BUG/MEDIUM: patterns: fix possible double free when reloading a pattern list 7213 - BUG/MEDIUM: h1: Really skip all updates when incomplete messages are parsed 7214 - CLEANUP/CONTRIB: hpack: remove some h1 build warnings 7215 - BUG/MINOR: tools: fix set_net_port() / set_host_port() on IPv4 7216 - BUG/MINOR: cli: make sure the "getsock" command is only called on connections 7217 - MINOR: stktable: provide an unchecked version of stktable_data_ptr() 7218 - MINOR: stream-int: make si_appctx() never fail 7219 - BUILD: ssl_sock: remove build warnings on potential null-derefs 7220 - BUILD: stats: remove build warnings on potential null-derefs 7221 - BUILD: stream: address null-deref build warnings at -Wextra 7222 - BUILD: http: address a couple of null-deref warnings at -Wextra 7223 - BUILD: log: silent build warnings due to unchecked __objt_{server,applet} 7224 - BUILD: dns: fix null-deref build warning at -Wextra 7225 - BUILD: checks: silence a null-deref build warning at -Wextra 7226 - BUILD: connection: silence a couple of null-deref build warnings at -Wextra 7227 - BUILD: backend: fix 3 build warnings related to null-deref at -Wextra 7228 - BUILD: sockpair: silence a build warning at -Wextra 7229 - BUILD: build with -Wextra and sort out certain warnings 7230 - BUG/CRITICAL: hpack: fix improper sign check on the header index value 7231 - BUG/MEDIUM: http: Don't parse chunked body if there is no input data 7232 - DOC: Update configuration doc about the maximum number of stick counters. 7233 - BUG/MEDIUM: process_stream: Don't use si_cs_io_cb() in process_stream(). 7234 - MINOR: h2/stream_interface: Reintroduce te wake() method. 7235 - BUG/MEDIUM: h2: Wake the task instead of calling h2_recv()/h2_process(). 7236 - BUG/MEDIUM: process_stream(): Don't wake the task if no new data was received. 7237 - MEDIUM: lua: Add stick table support for Lua. 7238 72392018/09/12 : 1.9-dev2 7240 - BUG/MINOR: buffers: Fix b_slow_realign when a buffer is realign without output 7241 - BUG/MEDIUM: threads: fix the no-thread case after the change to the sync point 7242 - BUG/MEDIUM: servers: check the queues once enabling a server 7243 - BUG/MEDIUM: queue: prevent a backup server from draining the proxy's connections 7244 - MEDIUM: mux: Remove const on the buffer in mux->snd_buf() 7245 - CLEANUP: backend: Move mux install to call it at only one place 7246 - MINOR: conn_stream: add an tx buffer to the conn_stream 7247 - MINOR: conn_stream: add cs_send() as a default snd_buf() function 7248 - MINOR: backend: Try to find the best mux for outgoing connections 7249 - MEDIUM: backend: don't rely on mux_pt_ops in connect_server() 7250 - MINOR: mux: Add info about the supported side in alpn_mux_list structure 7251 - MINOR: mux: Unlink ALPN and multiplexers to rather speak of mux protocols 7252 - MINOR: mux: Print the list of existing mux protocols during HA startup 7253 - MEDIUM: checks: use the new rendez-vous point to spread check result 7254 - MEDIUM: haproxy: don't use sync_poll_loop() anymore in the main loop 7255 - MINOR: threads: remove the previous synchronization point 7256 - MAJOR: server: make server state changes synchronous again 7257 - CLEANUP: server: remove the update list and the update lock 7258 - BUG/MINOR: threads: Remove the unexisting lock label "UPDATED_SERVERS_LOCK" 7259 - BUG/MEDIUM: stream_int: Don't check CO_FL_SOCK_RD_SH flag to trigger cs receive 7260 - MINOR: mux: Change get_mux_proto to get an ist as parameter 7261 - MINOR: mux: Improve the message with the list of existing mux protocols 7262 - MINOR: mux/frontend: Add 'proto' keyword to force the mux protocol 7263 - MINOR: mux/server: Add 'proto' keyword to force the multiplexer's protocol 7264 - MEDIUM: mux: Use the mux protocol specified on bind/server lines 7265 - BUG/MEDIUM: connection/mux: take care of serverless proxies 7266 - MINOR: queue: make sure the pendconn is released before logging 7267 - MINOR: stream: rename {srv,prx}_queue_size to *_queue_pos 7268 - MINOR: queue: store the queue index in the stream when enqueuing 7269 - MINOR: queue: replace the linked list with a tree 7270 - MEDIUM: add set-priority-class and set-priority-offset 7271 - MEDIUM: queue: adjust position based on priority-class and priority-offset 7272 - DOC: update the roadmap about priority queues 7273 - BUG/MINOR: ssl: empty connections reported as errors. 7274 - MINOR: connections: Make rcv_buf mandatory and nuke cs_recv(). 7275 - MINOR: connections: Move rxbuf from the conn_stream to the h2s. 7276 - MINOR: connections: Get rid of txbuf. 7277 - MINOR: tasks: Allow tasklet_wakeup() to wakeup a task. 7278 - MINOR: connections/mux: Add the wait reason(s) to wait_list. 7279 - MINOR: stream_interface: Don't use si_cs_send() as a task handler. 7280 - MINOR: stream_interface: Give stream_interface its own wait_list. 7281 - MINOR: mux_h2: Don't use h2_send() as a callback. 7282 - MINOR: checks: Add event_srv_chk_io(). 7283 - BUG/MEDIUM: tasks: Don't insert in the global rqueue if nbthread == 1 7284 - BUG/MEDIUM: sessions: Don't use t->state. 7285 - BUG/MEDIUM: ssl: fix missing error loading a keytype cert from a bundle. 7286 - BUG/MEDIUM: ssl: loading dh param from certifile causes unpredictable error. 7287 - BUG/MINOR: map: fix map_regm with backref 7288 - DOC: dns: explain set server ... fqdn requires resolver 7289 - DOC: add documentation for prio_class and prio_offset sample fetches. 7290 - DOC: ssl: Use consistent naming for TLS protocols 7291 - DOC: update the layering design notes 7292 - MINOR: tasks: Don't special-case when nbthreads == 1 7293 - MINOR: fd cache: And the thread_mask with all_threads_mask. 7294 - BUG/MEDIUM: lua: socket timeouts are not applied 7295 - BUG/MINOR: lua: fix extra 500ms added to socket timeouts 7296 - BUG/MEDIUM: server: update our local state before propagating changes 7297 - BUG/MEDIUM: cli/threads: protect all "proxy" commands against concurrent updates 7298 - DOC: server/threads: document which functions need to be called with/without locks 7299 - BUG/MEDIUM: cli/threads: protect some server commands against concurrent operations 7300 - BUG/MEDIUM: streams: Don't forget to remove the si from the wait list. 7301 - BUG/MEDIUM: tasklets: Add the thread as active when waking a tasklet. 7302 - BUG/MEDIUM: stream-int: Check if the conn_stream exist in si_cs_io_cb. 7303 - BUG/MEDIUM: H2: Activate polling after successful h2_snd_buf(). 7304 - BUG/MEDIUM: stream_interface: Call the wake callback after sending. 7305 - BUG/MAJOR: queue/threads: make pendconn_redistribute not lock the server 7306 - BUG/MEDIUM: connection: don't forget to always delete the list's head 7307 - BUG/MEDIUM: lb/threads: always properly lock LB algorithms on maintenance operations 7308 - BUG/MEDIUM: check/threads: do not involve the rendez-vous point for status updates 7309 - BUG/MINOR: chunks: do not store -1 into chunk_printf() in case of error 7310 - BUG/MEDIUM: http: don't store exp_replace() result in the trash's length 7311 - BUG/MEDIUM: http: don't store url_decode() result in the samples's length 7312 - BUG/MEDIUM: dns: don't store dns_build_query() result in the trash's length 7313 - BUG/MEDIUM: map: don't store exp_replace() result in the trash's length 7314 - BUG/MEDIUM: connection: don't store recv() result into trash.data 7315 - BUG/MEDIUM: cli/ssl: don't store base64dec() result in the trash's length 7316 - MINOR: chunk: remove impossible tests on negative chunk->data 7317 - MINOR: sample: remove impossible tests on negative smp->data.u.str.data 7318 - DOC: Fix spelling error in configuration doc 7319 - REGTEST/MINOR: Missing mandatory "ignore_unknown_macro". 7320 - REGTEST/MINOR: Add a new class of regression testing files. 7321 - BUG/MEDIUM: unix: provide a ->drain() function 7322 - MINOR: connection: make conn_sock_drain() work for all socket families 7323 - BUG/MINOR: lua: Bad HTTP client request duration. 7324 - REGEST/MINOR: Add reg testing files. 7325 - BUG/MEDIUM: mux_pt: dereference the connection with care in mux_pt_wake() 7326 - REGTEST/MINOR: Add a reg testing file for b406b87 commit. 7327 - BUG/MEDIUM: lua: reset lua transaction between http requests 7328 - MINOR: add be_conn_free sample fetch 7329 - MINOR: Add srv_conn_free sample fetch 7330 - BUG/MEDIUM: hlua: Make sure we drain the output buffer when done. 7331 - MINOR: checks: Call wake_srv_chk() when we can finally send data. 7332 - BUG/MEDIUM: stream_interface: try to call si_cs_send() earlier. 7333 - BUG/MAJOR: thread: lua: Wrong SSL context initialization. 7334 - REGTEST/MINOR: Add a reg testing file for 3e60b11. 7335 - BUG/MEDIUM: hlua: Don't call RESET_SAFE_LJMP if SET_SAFE_LJMP returns 0. 7336 - REGTEST/MINOR: lua: Add reg testing files for 70d318c. 7337 - BUG/MEDIUM: dns/server: fix incomatibility between SRV resolution and server state file 7338 - BUG/MEDIUM: ECC cert should work with TLS < v1.2 and openssl >= 1.1.1 7339 - MINOR: tools: make date2str_log() take some consts 7340 - MINOR: thread: implement HA_ATOMIC_XADD() 7341 - BUG/MINOR: stream: use atomic increments for the request counter 7342 - BUG/MEDIUM: session: fix reporting of handshake processing time in the logs 7343 - BUG/MEDIUM: h2: fix risk of memory leak on malformated wrapped frames 7344 - BUG/MAJOR: buffer: fix incorrect check in __b_putblk() 7345 - MINOR: log: move the log code to sess_build_logline() to add extra arguments 7346 - MINOR: log: make the backend fall back to the frontend when there's no stream 7347 - MINOR: log: make sess_build_logline() not dereference a NULL stream for txn 7348 - MINOR: log: don't unconditionally pick log info from s->logs 7349 - CLEANUP: log: make the low_level lf_{ip,port,text,text_len} functions take consts 7350 - MINOR: log: keep a copy of the backend connection early in sess_build_logline() 7351 - MINOR: log: do not dereference a null stream to access captures 7352 - MINOR: log: be sure not to dereference a null stream for a target 7353 - MINOR: log: don't check the stream-int's conn_retries if the stream is NULL 7354 - MINOR: log: use NULL for the unique_id if there is no stream 7355 - MINOR: log: keep a copy of s->flags early to avoid a dereference 7356 - MINOR: log: use zero as the request counter if there is no stream 7357 - MEDIUM: log: make sess_build_logline() support being called with no stream 7358 - MINOR: log: provide a function to emit a log for a session 7359 - MEDIUM: h2: produce some logs on early errors that prevent streams from being created 7360 - BUG/MINOR: h1: fix buffer shift after realignment 7361 - MINOR: connection: make the initialization more consistent 7362 - MINOR: connection: add new function conn_get_proxy() 7363 - MINOR: connection: add new function conn_is_back() 7364 - MINOR: log: One const should be enough. 7365 - BUG/MINOR: dns: check and link servers' resolvers right after config parsing 7366 - BUG/MINOR: http/threads: atomically increment the error snapshot ID 7367 - MINOR: snapshot: restart on the event ID and not the stream ID 7368 - MINOR: snapshot: split the error snapshots into common and proto-specific parts 7369 - MEDIUM: snapshot: start to reorder the HTTP snapshot output a little bit 7370 - MEDIUM: snapshot: implement a show() callback and use it for HTTP 7371 - MINOR: proxy: add a new generic proxy_capture_error() 7372 - MINOR: http: make the HTTP error capture rely on the generic proxy code 7373 - MINOR: http: remove the pointer to the error snapshot in http_capture_bad_message() 7374 - REORG: cli: move the "show errors" handler from http to proxy 7375 - BUG/MEDIUM: snapshot: take the proxy's lock while dumping errors 7376 - MEDIUM: snapshots: dynamically allocate the snapshots 7377 - MEDIUM: snapshot: merge the captured data after the descriptor 7378 - MEDIUM: mworker: remove register/unregister signal functions 7379 - MEDIUM: mworker: use the haproxy poll loop 7380 - BUG/MINOR: mworker: no need to stop peers for each proxy 7381 - MINOR: mworker: mworker_cleanlisteners() delete the listeners 7382 - MEDIUM: mworker: block SIGCHLD until the master is ready 7383 - MEDIUM: mworker: never block SIG{TERM,INT} during reload 7384 - MEDIUM: startup: unify signal init between daemon and mworker mode 7385 - MINOR: mworker: don't deinit the poller fd when in wait mode 7386 - MEDIUM: mworker: master wait mode use its own initialization 7387 - MEDIUM: mworker: replace the master pipe by socketpairs 7388 - MINOR: mworker: keep and clean the listeners 7389 - MEDIUM: threads: close the thread-waker pipe during deinit 7390 - MEDIUM: mworker: call per_thread deinit in mworker_reload() 7391 - REORG: http: move the HTTP semantics definitions to http.h/http.c 7392 - REORG: http: move http_get_path() to http.c 7393 - REORG: http: move error codes production and processing to http.c 7394 - REORG: http: move the log encoding tables to log.c 7395 - REORG: http: move some header value processing functions to http.c 7396 - BUG/MAJOR: kqueue: Don't reset the changes number by accident. 7397 - MEDIUM: protocol: use a custom AF_MAX to help protocol parser 7398 - MEDIUM: protocol: sockpair protocol 7399 - TESTS: add a python wrapper for sockpair@ 7400 - BUG/MINOR: server: Crash when setting FQDN via CLI. 7401 - BUG/MINOR: h2: report asynchronous end of stream on closed connections 7402 - BUILD: fix build without thread 7403 - BUG/MEDIUM: tasks: Don't forget to decrement task_list_size in tasklet_free(). 7404 - MEDIUM: connections: Don't reset the polling flags in conn_fd_handler(). 7405 - MEDIUM: connections/mux: Add a recv and a send+recv wait list. 7406 - MEDIUM: connections: Get rid of the recv() method. 7407 - MINOR: h2: Let user of h2_recv() and h2_send() know xfer has been done. 7408 - MEDIUM: h2: always subscribe to receive if allowed. 7409 - MEDIUM: h2: Don't use a wake() method anymore. 7410 - MEDIUM: stream_interface: Make recv() subscribe when more data is needed. 7411 - MINOR: connections: Add a "handle" field to wait_list. 7412 - MEDIUM: mux_h2: Revamp the send path when blocking. 7413 - MEDIUM: stream_interfaces: Starts receiving from the upper layers. 7414 - MINOR: checks: Give checks their own wait_list. 7415 - MINOR: conn_streams: Remove wait_list from conn_streams. 7416 - REORG: h1: create a new h1m_state 7417 - MINOR: h1: add the restart offsets into struct h1m 7418 - MINOR: h1: remove the unused states from h1m_state 7419 - MINOR: h1: provide a distinct init() function for request and response 7420 - MINOR: h1: add a message flag to indicate that a message carries a response 7421 - MINOR: h2: make sure h1m->err_pos field is correct on chunk error 7422 - MINOR: h1: properly pre-initialize err_pos to -2 7423 - MINOR: mux_h2: replace the req,res h1 messages with a single h1 message 7424 - MINOR: h2: pre-initialize h1m->err_pos to -1 on the output path 7425 - MEDIUM: h1: consider err_pos before deciding to accept a header name or not 7426 - MEDIUM: h1: make the parser support a pointer to a start line 7427 - MEDIUM: h1: let the caller pass the initial parser's state 7428 - MINOR: h1: make the message parser support a null <hdr> argument 7429 - MEDIUM: h1: support partial message parsing 7430 - MEDIUM: h1: remove the useless H1_MSG_BODY state 7431 - MINOR: h2: store the HTTP status into the H2S, not the H1M 7432 - MINOR: h1: remove the HTTP status from the H1M struct 7433 - MEDIUM: h1: implement the request parser as well 7434 - MINOR: h1: add H1_MF_TOLOWER to decide when to turn header names to lower case 7435 - MINOR: connection: pass the proxy when creating a connection 7436 - BUG/MEDIUM: h2: Don't forget to empty the wait lists on destroy. 7437 - BUG/MEDIUM: h2: Don't forget to set recv_wait_list to NULL in h2_detach. 7438 - BUG/MAJOR: h2: reset the parser's state on mux buffer full 7439 74402018/08/02 : 1.9-dev1 7441 - BUG/MEDIUM: kqueue: Don't bother closing the kqueue after fork. 7442 - DOC: cache: update sections and fix some typos 7443 - BUILD/MINOR: deviceatlas: enable thread support 7444 - BUG/MEDIUM: tcp-check: Don't lock the server in tcpcheck_main 7445 - BUG/MEDIUM: ssl: don't allocate shctx several time 7446 - BUG/MEDIUM: cache: bad computation of the remaining size 7447 - BUILD: checks: don't include server.h 7448 - BUG/MEDIUM: stream: fix session leak on applet-initiated connections 7449 - BUILD/MINOR: haproxy : FreeBSD/cpu affinity needs pthread_np header 7450 - BUILD/MINOR: Makefile : enabling USE_CPU_AFFINITY 7451 - BUG/MINOR: ssl: CO_FL_EARLY_DATA removal is managed by stream 7452 - BUG/MEDIUM: threads/peers: decrement, not increment jobs on quitting 7453 - BUG/MEDIUM: h2: don't report an error after parsing a 100-continue response 7454 - BUG/MEDIUM: peers: fix some track counter rules dont register entries for sync. 7455 - BUG/MAJOR: thread/peers: fix deadlock on peers sync. 7456 - BUILD/MINOR: haproxy: compiling config cpu parsing handling when needed 7457 - MINOR: config: report when "monitor fail" rules are misplaced 7458 - BUG/MINOR: mworker: fix validity check for the pipe FDs 7459 - BUG/MINOR: mworker: detach from tty when in daemon mode 7460 - MINOR: threads: Fix pthread_setaffinity_np on FreeBSD. 7461 - BUG/MAJOR: thread: Be sure to request a sync between threads only once at a time 7462 - BUILD: Fix LDFLAGS vs. LIBS re linking order in various makefiles 7463 - BUG/MEDIUM: checks: Be sure we have a mux if we created a cs. 7464 - BUG/MINOR: hpack: fix debugging output of pseudo header names 7465 - BUG/MINOR: hpack: must reject huffman literals padded with more than 7 bits 7466 - BUG/MINOR: hpack: reject invalid header index 7467 - BUG/MINOR: hpack: dynamic table size updates are only allowed before headers 7468 - BUG/MAJOR: h2: correctly check the request length when building an H1 request 7469 - BUG/MINOR: h2: immediately close if receiving GOAWAY after the last stream 7470 - BUG/MINOR: h2: try to abort closed streams as soon as possible 7471 - BUG/MINOR: h2: ":path" must not be empty 7472 - BUG/MINOR: h2: fix a typo causing PING/ACK to be responded to 7473 - BUG/MINOR: h2: the TE header if present may only contain trailers 7474 - BUG/MEDIUM: h2: enforce the per-connection stream limit 7475 - BUG/MINOR: h2: do not accept SETTINGS_ENABLE_PUSH other than 0 or 1 7476 - BUG/MINOR: h2: reject incorrect stream dependencies on HEADERS frame 7477 - BUG/MINOR: h2: properly check PRIORITY frames 7478 - BUG/MINOR: h2: reject response pseudo-headers from requests 7479 - BUG/MEDIUM: h2: remove connection-specific headers from request 7480 - BUG/MEDIUM: h2: do not accept upper case letters in request header names 7481 - BUG/MINOR: h2: use the H2_F_DATA_* macros for DATA frames 7482 - BUG/MINOR: action: Don't check http capture rules when no id is defined 7483 - BUG/MAJOR: hpack: don't pretend large headers fit in empty table 7484 - BUG/MINOR: ssl: support tune.ssl.cachesize 0 again 7485 - BUG/MEDIUM: mworker: also close peers sockets in the master 7486 - BUG/MEDIUM: ssl engines: Fix async engines fds were not considered to fix fd limit automatically. 7487 - BUG/MEDIUM: checks: a down server going to maint remains definitely stucked on down state. 7488 - BUG/MEDIUM: peers: set NOLINGER on the outgoing stream interface 7489 - BUG/MEDIUM: h2: fix handling of end of stream again 7490 - MINOR: mworker: Update messages referencing exit-on-failure 7491 - MINOR: mworker: Improve wording in `void mworker_wait()` 7492 - CONTRIB: halog: Add help text for -s switch in halog program 7493 - BUG/MEDIUM: email-alert: don't set server check status from a email-alert task 7494 - BUG/MEDIUM: threads/vars: Fix deadlock in register_name 7495 - MINOR: systemd: remove comment about HAPROXY_STATS_SOCKET 7496 - DOC: notifications: add precisions about thread usage 7497 - BUG/MEDIUM: lua/notification: memory leak 7498 - MINOR: conn_stream: add new flag CS_FL_RCV_MORE to indicate pending data 7499 - BUG/MEDIUM: stream-int: always set SI_FL_WAIT_ROOM on CS_FL_RCV_MORE 7500 - BUG/MEDIUM: h2: automatically set CS_FL_RCV_MORE when the output buffer is full 7501 - BUG/MEDIUM: h2: enable recv polling whenever demuxing is possible 7502 - BUG/MEDIUM: h2: work around a connection API limitation 7503 - BUG/MEDIUM: h2: debug incoming traffic in h2_wake() 7504 - MINOR: h2: store the demux padding length in the h2c struct 7505 - BUG/MEDIUM: h2: support uploading partial DATA frames 7506 - MINOR: h2: don't demand that a DATA frame is complete before processing it 7507 - BUG/MEDIUM: h2: don't switch the state to HREM before end of DATA frame 7508 - BUG/MEDIUM: h2: don't close after the first DATA frame on tunnelled responses 7509 - BUG/MEDIUM: http: don't disable lingering on requests with tunnelled responses 7510 - BUG/MEDIUM: h2: fix stream limit enforcement 7511 - BUG/MINOR: stream-int: don't try to receive again after receiving an EOS 7512 - MINOR: sample: add len converter 7513 - BUG: MAJOR: lb_map: server map calculation broken 7514 - BUG: MINOR: http: don't check http-request capture id when len is provided 7515 - MINOR: sample: rename the "len" converter to "length" 7516 - BUG/MEDIUM: mworker: Set FD_CLOEXEC flag on log fd 7517 - DOC/MINOR: intro: typo, wording, formatting fixes 7518 - MINOR: netscaler: respect syntax 7519 - MINOR: netscaler: remove the use of cip_magic only used once 7520 - MINOR: netscaler: rename cip_len to clarify its uage 7521 - BUG/MEDIUM: netscaler: use the appropriate IPv6 header size 7522 - BUG/MAJOR: netscaler: address truncated CIP header detection 7523 - MINOR: netscaler: check in one-shot if buffer is large enough for IP and TCP header 7524 - MEDIUM: netscaler: do not analyze original IP packet size 7525 - MEDIUM: netscaler: add support for standard NetScaler CIP protocol 7526 - MINOR: spoe: add force-set-var option in spoe-agent configuration 7527 - CONTRIB: iprange: Fix compiler warning in iprange.c 7528 - CONTRIB: halog: Fix compiler warnings in halog.c 7529 - BUG/MINOR: h2: properly report a stream error on RST_STREAM 7530 - MINOR: mux: add flags to describe a mux's capabilities 7531 - MINOR: stream-int: set flag SI_FL_CLEAN_ABRT when mux supports clean aborts 7532 - BUG/MEDIUM: stream: don't consider abortonclose on muxes which close cleanly 7533 - BUG/MEDIUM: checks: a server passed in maint state was not forced down. 7534 - BUG/MEDIUM: lua: fix crash when using bogus mode in register_service() 7535 - MINOR: http: adjust the list of supposedly cacheable methods 7536 - MINOR: http: update the list of cacheable status codes as per RFC7231 7537 - MINOR: http: start to compute the transaction's cacheability from the request 7538 - BUG/MINOR: http: do not ignore cache-control: public 7539 - BUG/MINOR: http: properly detect max-age=0 and s-maxage=0 in responses 7540 - BUG/MINOR: cache: do not force the TX_CACHEABLE flag before checking cacheability 7541 - MINOR: http: add a function to check request's cache-control header field 7542 - BUG/MEDIUM: cache: do not try to retrieve host-less requests from the cache 7543 - BUG/MEDIUM: cache: replace old object on store 7544 - BUG/MEDIUM: cache: respect the request cache-control header 7545 - BUG/MEDIUM: cache: don't cache the response on no-cache="set-cookie" 7546 - BUG/MAJOR: connection: refine the situations where we don't send shutw() 7547 - BUG/MEDIUM: checks: properly set servers to stopping state on 404 7548 - BUG/MEDIUM: h2: properly handle and report some stream errors 7549 - BUG/MEDIUM: h2: improve handling of frames received on closed streams 7550 - DOC/MINOR: configuration: typo, formatting fixes 7551 - BUG/MEDIUM: h2: ensure we always know the stream before sending a reset 7552 - BUG/MEDIUM: mworker: don't close stdio several time 7553 - MINOR: don't close stdio anymore 7554 - BUG/MEDIUM: http: don't automatically forward request close 7555 - BUG/MAJOR: hpack: don't return direct references to the dynamic headers table 7556 - MINOR: h2: add a function to report pseudo-header names 7557 - DEBUG: hpack: make hpack_dht_dump() expose the output file 7558 - DEBUG: hpack: add more traces to the hpack decoder 7559 - CONTRIB: hpack: add an hpack decoder 7560 - MEDIUM: h2: prepare a graceful shutdown when the frontend is stopped 7561 - BUG/MEDIUM: h2: properly handle the END_STREAM flag on empty DATA frames 7562 - BUILD: ssl: silence a warning when building without NPN nor ALPN support 7563 - CLEANUP: rbtree: remove 7564 - BUG/MEDIUM: ssl: cache doesn't release shctx blocks 7565 - BUG/MINOR: lua: Fix default value for pattern in Socket.receive 7566 - DOC: lua: Fix typos in comments of hlua_socket_receive 7567 - BUG/MEDIUM: lua: Fix IPv6 with separate port support for Socket.connect 7568 - BUG/MINOR: lua: Fix return value of Socket.settimeout 7569 - MINOR: dns: Handle SRV record weight correctly. 7570 - BUG/MEDIUM: mworker: execvp failure depending on argv[0] 7571 - MINOR: hathreads: add support for gcc < 4.7 7572 - BUILD/MINOR: ancient gcc versions atomic fix 7573 - BUG/MEDIUM: stream: properly handle client aborts during redispatch 7574 - MINOR: spoe: add register-var-names directive in spoe-agent configuration 7575 - MINOR: spoe: Don't queue a SPOE context if nothing is sent 7576 - DOC: clarify the scope of ssl_fc_is_resumed 7577 - CONTRIB: debug: fix a few flags definitions 7578 - BUG/MINOR: poll: too large size allocation for FD events 7579 - MINOR: sample: add date_us sample 7580 - BUG/MEDIUM: peers: fix expire date wasn't updated if entry is modified remotely. 7581 - MINOR: servers: Don't report duplicate dyncookies for disabled servers. 7582 - MINOR: global/threads: move cpu_map at the end of the global struct 7583 - MINOR: threads: add a MAX_THREADS define instead of LONGBITS 7584 - MINOR: global: add some global activity counters to help debugging 7585 - MINOR: threads/fd: Use a bitfield to know if there are FDs for a thread in the FD cache 7586 - BUG/MEDIUM: threads/polling: Use fd_cache_mask instead of fd_cache_num 7587 - BUG/MEDIUM: fd: maintain a per-thread update mask 7588 - MINOR: fd: add a bitmask to indicate that an FD is known by the poller 7589 - BUG/MEDIUM: epoll/threads: use one epoll_fd per thread 7590 - BUG/MEDIUM: kqueue/threads: use one kqueue_fd per thread 7591 - BUG/MEDIUM: threads/mworker: fix a race on startup 7592 - BUG/MINOR: mworker: only write to pidfile if it exists 7593 - MINOR: threads: Fix build when we're not compiling with threads. 7594 - BUG/MINOR: threads: always set an owner to the thread_sync pipe 7595 - BUG/MEDIUM: threads/server: Fix deadlock in srv_set_stopping/srv_set_admin_flag 7596 - BUG/MEDIUM: checks: Don't try to release undefined conn_stream when a check is freed 7597 - BUG/MINOR: kqueue/threads: Don't forget to close kqueue_fd[tid] on each thread 7598 - MINOR: threads: Use __decl_hathreads instead of #ifdef/#endif 7599 - BUILD: epoll/threads: Add test on MAX_THREADS to avoid warnings when complied without threads 7600 - BUILD: kqueue/threads: Add test on MAX_THREADS to avoid warnings when complied without threads 7601 - CLEANUP: sample: Fix comment encoding of sample.c 7602 - CLEANUP: sample: Fix outdated comment about sample casts functions 7603 - BUG/MINOR: sample: Fix output type of c_ipv62ip 7604 - CLEANUP: Fix typo in ARGT_MSK6 comment 7605 - CLEANUP: standard: Use len2mask4 in str2mask 7606 - MINOR: standard: Add str2mask6 function 7607 - MINOR: config: Add support for ARGT_MSK6 7608 - MEDIUM: sample: Add IPv6 support to the ipmask converter 7609 - MINOR: config: Enable tracking of up to MAX_SESS_STKCTR stick counters. 7610 - BUG/MINOR: cli: use global.maxsock and not maxfd to list all FDs 7611 - MINOR: polling: make epoll and kqueue not depend on maxfd anymore 7612 - MINOR: fd: don't report maxfd in alert messages 7613 - MEDIUM: polling: start to move maxfd computation to the pollers 7614 - CLEANUP: fd/threads: remove the now unused fdtab_lock 7615 - MINOR: poll: more accurately compute the new maxfd in the loop 7616 - CLEANUP: fd: remove the unused "new" field 7617 - MINOR: fd: move the hap_fd_{clr,set,isset} functions to fd.h 7618 - MEDIUM: select: make use of hap_fd_* functions 7619 - MEDIUM: fd: use atomic ops for hap_fd_{clr,set} and remove poll_lock 7620 - MEDIUM: select: don't use the old FD state anymore 7621 - MEDIUM: poll: don't use the old FD state anymore 7622 - MINOR: fd: pass the iocb and owner to fd_insert() 7623 - BUG/MINOR: threads: Update labels array because of changes in lock_label enum 7624 - MINOR: stick-tables: Adds support for new "gpc1" and "gpc1_rate" counters. 7625 - BUG/MINOR: epoll/threads: only call epoll_ctl(DEL) on polled FDs 7626 - DOC: don't suggest using http-server-close 7627 - MINOR: introduce proxy-v2-options for send-proxy-v2 7628 - BUG/MEDIUM: spoe: Always try to receive or send the frame to detect shutdowns 7629 - BUG/MEDIUM: spoe: Allow producer to read and to forward shutdown on request side 7630 - MINOR: spoe: Remove check on min_applets number when a SPOE context is queued 7631 - MINOR: spoe: Always link a SPOE context with the applet processing it 7632 - MINOR: spoe: Replace sending_rate by a frequency counter 7633 - MINOR: spoe: Count the number of frames waiting for an ack for each applet 7634 - MEDIUM: spoe: Use an ebtree to manage idle applets 7635 - MINOR: spoa_example: Count the number of frames processed by each worker 7636 - MINOR: spoe: Add max-waiting-frames directive in spoe-agent configuration 7637 - MINOR: init: make stdout unbuffered 7638 - MINOR: early data: Don't rely on CO_FL_EARLY_DATA to wake up streams. 7639 - MINOR: early data: Never remove the CO_FL_EARLY_DATA flag. 7640 - MINOR: compiler: introduce offsetoff(). 7641 - MINOR: threads: Introduce double-width CAS on x86_64 and arm. 7642 - MINOR: threads: add test and set/reset operations 7643 - MINOR: pools/threads: Implement lockless memory pools. 7644 - MAJOR: fd/threads: Make the fdcache mostly lockless. 7645 - MEDIUM: fd/threads: Make sure we don't miss a fd cache entry. 7646 - MAJOR: fd: compute the new fd polling state out of the fd lock 7647 - MINOR: epoll: get rid of the now useless fd_compute_new_polled_status() 7648 - MINOR: kqueue: get rid of the now useless fd_compute_new_polled_status() 7649 - MINOR: poll: get rid of the now useless fd_compute_new_polled_status() 7650 - MINOR: select: get rid of the now useless fd_compute_new_polled_status() 7651 - CLEANUP: fd: remove the now unused fd_compute_new_polled_status() function 7652 - MEDIUM: fd: make updt_fd_polling() use atomics 7653 - MEDIUM: poller: use atomic ops to update the fdtab mask 7654 - MINOR: fd: move the fd_{add_to,rm_from}_fdlist functions to fd.c 7655 - BUG/MINOR: fd/threads: properly dereference fdcache as volatile 7656 - MINOR: fd: remove the unneeded last CAS when adding an fd to the list 7657 - MINOR: fd: reorder fd_add_to_fd_list() 7658 - BUG/MINOR: time/threads: ensure the adjusted time is always correct 7659 - BUG/MEDIUM: standard: Fix memory leak in str2ip2() 7660 - MINOR: init: emit warning when -sf/-sd cannot parse argument 7661 - BUILD: fd/threads: fix breakage build breakage without threads 7662 - DOC: Describe routing impact of using interface keyword on bind lines 7663 - DOC: Mention -Ws in the list of available options 7664 - BUG/MINOR: config: don't emit a warning when global stats is incompletely configured 7665 - BUG/MINOR: fd/threads: properly lock the FD before adding it to the fd cache. 7666 - BUG/MEDIUM: threads: fix the double CAS implementation for ARMv7 7667 - BUG/MEDIUM: ssl: Don't always treat SSL_ERROR_SYSCALL as unrecovarable. 7668 - BUILD/MINOR: memory: stdint is needed for uintptr_t 7669 - BUG/MINOR: init: Add missing brackets in the code parsing -sf/-st 7670 - DOC: lua: new prototype for function "register_action()" 7671 - DOC: cfgparse: Warn on option (tcp|http)log in backend 7672 - BUG/MINOR: ssl/threads: Make management of the TLS ticket keys files thread-safe 7673 - MINOR: sample: add a new "concat" converter 7674 - BUG/MEDIUM: ssl: Shutdown the connection for reading on SSL_ERROR_SYSCALL 7675 - BUG/MEDIUM: http: Switch the HTTP response in tunnel mode as earlier as possible 7676 - BUG/MEDIUM: ssl/sample: ssl_bc_* fetch keywords are broken. 7677 - MINOR: ssl/sample: adds ssl_bc_is_resumed fetch keyword. 7678 - CLEANUP: cfgparse: Remove unused label end 7679 - CLEANUP: spoe: Remove unused label retry 7680 - CLEANUP: h2: Remove unused labels from mux_h2.c 7681 - CLEANUP: pools: Remove unused end label in memory.h 7682 - CLEANUP: standard: Fix typo in IPv6 mask example 7683 - BUG/MINOR: pools/threads: don't ignore DEBUG_UAF on double-word CAS capable archs 7684 - BUG/MINOR: debug/pools: properly handle out-of-memory when building with DEBUG_UAF 7685 - MINOR: debug/pools: make DEBUG_UAF also detect underflows 7686 - MINOR: stats: display the number of threads in the statistics. 7687 - BUG/MINOR: h2: Set the target of dbuf_wait to h2c 7688 - BUG/MEDIUM: h2: always consume any trailing data after end of output buffers 7689 - BUG/MEDIUM: buffer: Fix the wrapping case in bo_putblk 7690 - BUG/MEDIUM: buffer: Fix the wrapping case in bi_putblk 7691 - BUG/MEDIUM: spoe: Remove idle applets from idle list when HAProxy is stopping 7692 - Revert "BUG/MINOR: send-proxy-v2: string size must include ('\0')" 7693 - MINOR: ssl: extract full pkey info in load_certificate 7694 - MINOR: ssl: add ssl_sock_get_pkey_algo function 7695 - MINOR: ssl: add ssl_sock_get_cert_sig function 7696 - MINOR: connection: add proxy-v2-options ssl-cipher,cert-sig,cert-key 7697 - MINOR: connection: add proxy-v2-options authority 7698 - MINOR: systemd: Add section for SystemD sandboxing to unit file 7699 - MINOR: systemd: Add SystemD's Protect*= options to the unit file 7700 - MINOR: systemd: Add SystemD's SystemCallFilter option to the unit file 7701 - CLEANUP: h2: rename misleading h2c_stream_close() to h2s_close() 7702 - MINOR: h2: provide and use h2s_detach() and h2s_free() 7703 - MEDIUM: h2: use a single buffer allocator 7704 - MINOR/BUILD: fix Lua build on Mac OS X 7705 - BUILD/MINOR: fix Lua build on Mac OS X (again) 7706 - BUG/MINOR: session: Fix tcp-request session failure if handshake. 7707 - CLEANUP: .gitignore: Ignore binaries from the contrib directory 7708 - BUG/MINOR: unix: Don't mess up when removing the socket from the xfer_sock_list. 7709 - DOC: buffers: clarify the purpose of the <from> pointer in offer_buffers() 7710 - BUG/MEDIUM: h2: also arm the h2 timeout when sending 7711 - BUG/MINOR: cli: Fix a crash when passing a negative or too large value to "show fd" 7712 - CLEANUP: ssl: Remove a duplicated #include 7713 - CLEANUP: cli: Remove a leftover debug message 7714 - BUG/MINOR: cli: Fix a typo in the 'set rate-limit' usage 7715 - BUG/MEDIUM: fix a 100% cpu usage with cpu-map and nbthread/nbproc 7716 - BUG/MINOR: force-persist and ignore-persist only apply to backends 7717 - BUG/MEDIUM: threads/unix: Fix a deadlock when a listener is temporarily disabled 7718 - BUG/MAJOR: threads/queue: Fix thread-safety issues on the queues management 7719 - BUG/MINOR: dns: don't downgrade DNS accepted payload size automatically 7720 - TESTS: Add a testcase for multi-port + multi-server listener issue 7721 - CLEANUP: dns: remove duplicate code in src/dns.c 7722 - BUG/MINOR: seemless reload: Fix crash when an interface is specified. 7723 - BUG/MINOR: cli: Ensure all command outputs end with a LF 7724 - BUG/MINOR: cli: Fix a crash when sending a command with too many arguments 7725 - BUILD: ssl: Fix build with OpenSSL without NPN capability 7726 - BUG/MINOR: spoa-example: unexpected behavior for more than 127 args 7727 - BUG/MINOR: lua: return bad error messages 7728 - CLEANUP: lua/syntax: lua is a name and not an acronym 7729 - BUG/MEDIUM: tcp-check: single connect rule can't detect DOWN servers 7730 - BUG/MINOR: tcp-check: use the server's service port as a fallback 7731 - BUG/MEDIUM: threads/queue: wake up other threads upon dequeue 7732 - MINOR: log: stop emitting alerts when it's not possible to write on the socket 7733 - BUILD/BUG: enable -fno-strict-overflow by default 7734 - BUG/MEDIUM: fd/threads: ensure the fdcache_mask always reflects the cache contents 7735 - DOC: log: more than 2 log servers are allowed 7736 - MINOR: hash: add new function hash_crc32c 7737 - MINOR: proxy-v2-options: add crc32c 7738 - MINOR: accept-proxy: support proxy protocol v2 CRC32c checksum 7739 - REORG: compact "struct server" 7740 - MINOR: samples: add crc32c converter 7741 - BUG/MEDIUM: h2: properly account for DATA padding in flow control 7742 - BUG/MINOR: h2: ensure we can never send an RST_STREAM in response to an RST_STREAM 7743 - BUG/MINOR: listener: Don't decrease actconn twice when a new session is rejected 7744 - CLEANUP: map, stream: remove duplicate code in src/map.c, src/stream.c 7745 - BUG/MINOR: lua: the function returns anything 7746 - BUG/MINOR: lua funtion hlua_socket_settimeout don't check negative values 7747 - CLEANUP: lua: typo fix in comments 7748 - BUILD/MINOR: fix build when USE_THREAD is not defined 7749 - MINOR: lua: allow socket api settimeout to accept integers, float, and doubles 7750 - BUG/MINOR: hpack: fix harmless use of uninitialized value in hpack_dht_insert 7751 - MINOR: cli/threads: make "show fd" report thread_sync_io_handler instead of "unknown" 7752 - MINOR: cli: make "show fd" report the mux and mux_ctx pointers when available 7753 - BUILD/MINOR: cli: fix a build warning introduced by last commit 7754 - BUG/MAJOR: h2: remove orphaned streams from the send list before closing 7755 - MINOR: h2: always call h2s_detach() in h2_detach() 7756 - MINOR: h2: fuse h2s_detach() and h2s_free() into h2s_destroy() 7757 - BUG/MEDIUM: h2/threads: never release the task outside of the task handler 7758 - BUG/MEDIUM: h2: don't consider pending data on detach if connection is in error 7759 - BUILD/MINOR: threads: always export thread_sync_io_handler() 7760 - MINOR: mux: add a "show_fd" function to dump debugging information for "show fd" 7761 - MINOR: h2: implement a basic "show_fd" function 7762 - MINOR: cli: report cache indexes in "show fd" 7763 - BUG/MINOR: h2: remove accidental debug code introduced with show_fd function 7764 - BUG/MEDIUM: h2: always add a stream to the send or fctl list when blocked 7765 - BUG/MINOR: checks: check the conn_stream's readiness and not the connection 7766 - BUG/MINOR: fd: Don't clear the update_mask in fd_insert. 7767 - BUG/MINOR: email-alert: Set the mailer port during alert initialization 7768 - BUG/MINOR: cache: fix "show cache" output 7769 - BUG/MAJOR: cache: fix random crashes caused by incorrect delete() on non-first blocks 7770 - BUG/MINOR: spoe: Initialize variables used during conf parsing before any check 7771 - BUG/MINOR: spoe: Don't release the context buffer in .check_timeouts callbaclk 7772 - BUG/MINOR: spoe: Register the variable to set when an error occurred 7773 - BUG/MINOR: spoe: Don't forget to decrement fpa when a processing is interrupted 7774 - MINOR: spoe: Add metrics in to know time spent in the SPOE 7775 - MINOR: spoe: Add options to store processing times in variables 7776 - MINOR: log: move 'log' keyword parsing in dedicated function 7777 - MINOR: log: Keep the ref when a log server is copied to avoid duplicate entries 7778 - MINOR: spoe: Add loggers dedicated to the SPOE agent 7779 - MINOR: spoe: Add support for option dontlog-normal in the SPOE agent section 7780 - MINOR: spoe: use agent's logger to log SPOE messages 7781 - MINOR: spoe: Add counters to log info about SPOE agents 7782 - BUG/MAJOR: cache: always initialize newly created objects 7783 - MINOR: servers: Support alphanumeric characters for the server templates names 7784 - BUG/MEDIUM: threads: Fix the max/min calculation because of name clashes 7785 - BUG/MEDIUM: connection: Make sure we have a mux before calling detach(). 7786 - BUG/MINOR: http: Return an error in proxy mode when url2sa fails 7787 - MINOR: proxy: Add fe_defbe fetcher 7788 - MINOR: config: Warn if resolvers has no nameservers 7789 - BUG/MINOR: cli: Guard against NULL messages when using CLI_ST_PRINT_FREE 7790 - MINOR: cli: Ensure the CLI always outputs an error when it should 7791 - MEDIUM: sample: Extend functionality for field/word converters 7792 - MINOR: export localpeer as an environment variable 7793 - BUG/MEDIUM: kqueue: When adding new events, provide an output to get errors. 7794 - BUILD: sample: avoid build warning in sample.c 7795 - BUG/CRITICAL: h2: fix incorrect frame length check 7796 - DOC: lua: update the links to the config and Lua API 7797 - BUG/MINOR: pattern: Add a missing HA_SPIN_INIT() in pat_ref_newid() 7798 - BUG/MAJOR: channel: Fix crash when trying to read from a closed socket 7799 - BUG/MINOR: log: t_idle (%Ti) is not set for some requests 7800 - BUG/MEDIUM: lua: Fix segmentation fault if a Lua task exits 7801 - MINOR: h2: detect presence of CONNECT and/or content-length 7802 - BUG/MEDIUM: h2: implement missing support for chunked encoded uploads 7803 - BUG/MINOR: spoe: Fix counters update when processing is interrupted 7804 - BUG/MINOR: spoe: Fix parsing of dontlog-normal option 7805 - MEDIUM: cli: Add payload support 7806 - MINOR: map: Add payload support to "add map" 7807 - MINOR: ssl: Add payload support to "set ssl ocsp-response" 7808 - BUG/MINOR: lua/threads: Make lua's tasks sticky to the current thread 7809 - MINOR: sample: Add strcmp sample converter 7810 - MINOR: http: Add support for 421 Misdirected Request 7811 - BUG/MINOR: config: disable http-reuse on TCP proxies 7812 - MINOR: ssl: disable SSL sample fetches when unsupported 7813 - MINOR: ssl: add fetch 'ssl_fc_session_key' and 'ssl_bc_session_key' 7814 - BUG/MINOR: checks: Fix check->health computation for flapping servers 7815 - BUG/MEDIUM: threads: Fix the sync point for more than 32 threads 7816 - BUG/MINOR, BUG/MINOR: lua: Put tasks to sleep when waiting for data 7817 - MINOR: backend: implement random-based load balancing 7818 - DOC/MINOR: clean up LUA documentation re: servers & array/table. 7819 - MINOR: lua: Add server name & puid to LUA Server class. 7820 - MINOR: lua: add get_maxconn and set_maxconn to LUA Server class. 7821 - BUG/MINOR: map: correctly track reference to the last ref_elt being dumped 7822 - BUG/MEDIUM: task: Don't free a task that is about to be run. 7823 - MINOR: fd: Make the lockless fd list work with multiple lists. 7824 - BUG/MEDIUM: pollers: Use a global list for fd shared between threads. 7825 - MINOR: pollers: move polled_mask outside of struct fdtab. 7826 - BUG/MINOR: lua: schedule socket task upon lua connect() 7827 - BUG/MINOR: lua: ensure large proxy IDs can be represented 7828 - BUG/MEDIUM: pollers/kqueue: use incremented position in event list 7829 - BUG/MINOR: cli: don't stop cli_gen_usage_msg() when kw->usage == NULL 7830 - BUG/MEDIUM: http: don't always abort transfers on CF_SHUTR 7831 - BUG/MEDIUM: ssl: properly protect SSL cert generation 7832 - BUG/MINOR: lua: Socket.send threw runtime error: 'close' needs 1 arguments. 7833 - BUG/MINOR: spoe: Mistake in error message about SPOE configuration 7834 - BUG/MEDIUM: spoe: Flags are not encoded in network order 7835 - CLEANUP: spoe: Remove unused variables the agent structure 7836 - DOC: spoe: fix a typo 7837 - BUG/MEDIUM: contrib/mod_defender: Use network order to encode/decode flags 7838 - BUG/MEDIUM: contrib/modsecurity: Use network order to encode/decode flags 7839 - DOC: add some description of the pending rework of the buffer structure 7840 - BUG/MINOR: ssl/lua: prevent lua from affecting automatic maxconn computation 7841 - MINOR: lua: Improve error message 7842 - BUG/MEDIUM: cache: don't cache when an Authorization header is present 7843 - MINOR: ssl: set SSL_OP_PRIORITIZE_CHACHA 7844 - BUG/MEDIUM: dns: Delay the attempt to run a DNS resolution on check failure. 7845 - BUG/BUILD: threads: unbreak build without threads 7846 - BUG/MEDIUM: servers: Add srv_addr default placeholder to the state file 7847 - BUG/MEDIUM: lua/socket: Length required read doesn't work 7848 - MINOR: tasks: Change the task API so that the callback takes 3 arguments. 7849 - MAJOR: tasks: Create a per-thread runqueue. 7850 - MAJOR: tasks: Introduce tasklets. 7851 - MINOR: tasks: Make the number of tasks to run at once configurable. 7852 - MAJOR: applets: Use tasks, instead of rolling our own scheduler. 7853 - BUG/MEDIUM: stick-tables: Decrement ref_cnt in table_* converters 7854 - MINOR: http: Log warning if (add|set)-header fails 7855 - DOC: management: add the new wrew stats column 7856 - MINOR: stats: also report the failed header rewrites warnings on the stats page 7857 - BUG/MEDIUM: tasks: Don't forget to increase/decrease tasks_run_queue. 7858 - BUG/MEDIUM: task: Don't forget to decrement max_processed after each task. 7859 - MINOR: task: Also consider the task list size when getting global tasks. 7860 - MINOR: dns: Implement `parse-resolv-conf` directive 7861 - BUG/MEDIUM: spoe: Return an error when the wrong ACK is received in sync mode 7862 - MINOR: task/notification: Is notifications registered ? 7863 - BUG/MEDIUM: lua/socket: wrong scheduling for sockets 7864 - BUG/MAJOR: lua: Dead lock with sockets 7865 - BUG/MEDIUM: lua/socket: Notification error 7866 - BUG/MEDIUM: lua/socket: Sheduling error on write: may dead-lock 7867 - BUG/MEDIUM: lua/socket: Buffer error, may segfault 7868 - DOC: contrib/modsecurity: few typo fixes 7869 - DOC: SPOE.txt: fix a typo 7870 - MAJOR: spoe: upgrade the SPOP version to 2.0 and remove the support for 1.0 7871 - BUG/MINOR: contrib/spoa_example: Don't reset the status code during disconnect 7872 - BUG/MINOR: contrib/mod_defender: Don't reset the status code during disconnect 7873 - BUG/MINOR: contrib/modsecurity: Don't reset the status code during disconnect 7874 - BUG/MINOR: contrib/mod_defender: update pointer on the end of the frame 7875 - BUG/MINOR: contrib/modsecurity: update pointer on the end of the frame 7876 - MINOR: task: Fix a compiler warning by adding a cast. 7877 - MINOR: stats: also report the nice and number of calls for applets 7878 - MINOR: applet: assign the same nice value to a new appctx as its owner task 7879 - MINOR: task: Fix compiler warning. 7880 - BUG/MEDIUM: tasks: Use the local runqueue when building without threads. 7881 - MINOR: tasks: Don't define rqueue if we're building without threads. 7882 - BUG/MINOR: unix: Make sure we can transfer abns sockets on seamless reload. 7883 - MINOR: lua: Increase debug information 7884 - BUG/MEDIUM: threads: handle signal queue only in thread 0 7885 - BUG/MINOR: don't ignore SIG{BUS,FPE,ILL,SEGV} during signal processing 7886 - BUG/MINOR: signals: ha_sigmask macro for multithreading 7887 - BUG/MAJOR: map: fix a segfault when using http-request set-map 7888 - DOC: regression testing: Add a short starting guide. 7889 - MINOR: tasks: Make sure we correctly init and deinit a tasklet. 7890 - BUG/MINOR: tasklets: Just make sure we don't pass a tasklet to the handler. 7891 - BUG/MINOR: lua: Segfaults with wrong usage of types. 7892 - BUG/MAJOR: ssl: Random crash with cipherlist capture 7893 - BUG/MAJOR: ssl: OpenSSL context is stored in non-reserved memory slot 7894 - BUG/MEDIUM: ssl: do not store pkinfo with SSL_set_ex_data 7895 - MINOR: tests: First regression testing file. 7896 - MINOR: reg-tests: Add reg-tests/README file. 7897 - MINOR: reg-tests: Add a few regression testing files. 7898 - DOC: Add new REGTEST tag info about reg testing. 7899 - BUG/MEDIUM: fd: Don't modify the update_mask in fd_dodelete(). 7900 - MINOR: Some spelling cleanup in the comments. 7901 - BUG/MEDIUM: threads: Use the sync point to check active jobs and exit 7902 - MINOR: threads: Be sure to remove threads from all_threads_mask on exit 7903 - REGTEST/MINOR: Wrong URI in a reg test for SSL/TLS. 7904 - REGTEST/MINOR: Set HAPROXY_PROGRAM default value. 7905 - REGTEST/MINOR: Add levels to reg-tests target. 7906 - BUG/MAJOR: Stick-tables crash with segfault when the key is not in the stick-table 7907 - BUG/BUILD: threads: unbreak build without threads 7908 - BUG/MAJOR: stick_table: Complete incomplete SEGV fix 7909 - MINOR: stick-tables: make stktable_release() do nothing on NULL 7910 - BUG/MEDIUM: lua: possible CLOSE-WAIT state with '\n' headers 7911 - MINOR: startup: change session/process group settings 7912 - MINOR: systemd: consider exit status 143 as successful 7913 - REGTEST/MINOR: Wrong URI syntax. 7914 - CLEANUP: dns: remove obsolete macro DNS_MAX_IP_REC 7915 - CLEANUP: dns: inacurate comment about prefered IP score 7916 - MINOR: dns: fix wrong score computation in dns_get_ip_from_response 7917 - MINOR: dns: new DNS options to allow/prevent IP address duplication 7918 - REGTEST/MINOR: Unexpected curl URL globling. 7919 - BUG/MINOR: ssl: properly ref-count the tls_keys entries 7920 - MINOR: h2: keep a count of the number of conn_streams attached to the mux 7921 - BUG/MEDIUM: h2: don't accept new streams if conn_streams are still in excess 7922 - MINOR: h2: add the mux and demux buffer lengths on "show fd" 7923 - BUG/MEDIUM: h2: never leave pending data in the output buffer on close 7924 - BUG/MEDIUM: h2: make sure the last stream closes the connection after a timeout 7925 - MINOR: tasklet: Set process to NULL. 7926 - MINOR: buffer: implement a new file for low-level buffer manipulation functions 7927 - MINOR: buffer: switch buffer sizes and offsets to size_t 7928 - MINOR: buffer: add a few basic functions for the new API 7929 - MINOR: buffer: Introduce b_sub(), b_add(), and bo_add() 7930 - MINOR: buffer: Add b_set_data(). 7931 - MINOR: buffer: introduce b_realign_if_empty() 7932 - MINOR: compression: pass the channel to http_compression_buffer_end() 7933 - MINOR: channel: add a few basic functions for the new buffer API 7934 - MINOR: channel/buffer: use c_realign_if_empty() instead of buffer_realign() 7935 - MINOR: channel/buffer: replace buffer_slow_realign() with channel_slow_realign() and b_slow_realign() 7936 - MEDIUM: channel: make channel_slow_realign() take a swap buffer 7937 - MINOR: h2: use b_slow_realign() with the trash as a swap buffer 7938 - MINOR: buffer: remove buffer_slow_realign() and the swap_buffer allocation code 7939 - MINOR: channel/buffer: replace b_{adv,rew} with c_{adv,rew} 7940 - MINOR: buffer: replace calls to buffer_space_wraps() with b_space_wraps() 7941 - MINOR: buffer: remove bi_getblk() and bi_getblk_nc() 7942 - MINOR: buffer: split bi_contig_data() into ci_contig_data and b_config_data() 7943 - MINOR: buffer: remove bi_ptr() 7944 - MINOR: buffer: remove bo_ptr() 7945 - MINOR: buffer: remove bo_end() 7946 - MINOR: buffer: remove bi_end() 7947 - MINOR: buffer: remove bo_contig_data() 7948 - MINOR: buffer: merge b{i,o}_contig_space() 7949 - MINOR: buffer: replace bo_getblk() with direction agnostic b_getblk() 7950 - MINOR: buffer: replace bo_getblk_nc() with b_getblk_nc() which takes an offset 7951 - MINOR: buffer: replace bi_del() and bo_del() with b_del() 7952 - MINOR: buffer: convert most b_ptr() calls to c_ptr() 7953 - MINOR: h1: make h1_measure_trailers() take the byte count in argument 7954 - MINOR: h2: clarify the fact that the send functions are unsigned 7955 - MEDIUM: h2: prevent the various mux encoders from modifying the buffer 7956 - MINOR: h1: make h1_skip_chunk_crlf() not depend on b_ptr() anymore 7957 - MINOR: h1: make h1_parse_chunk_size() not depend on b_ptr() anymore 7958 - MINOR: h1: make h1_measure_trailers() use an offset and a count 7959 - MEDIUM: h2: do not use buf->o anymore inside h2_snd_buf's loop 7960 - MEDIUM: h2: don't use b_ptr() nor b_end() anymore 7961 - MINOR: buffer: get rid of b_end() and b_to_end() 7962 - MINOR: buffer: make b_getblk_nc() take const pointers 7963 - MINOR: buffer: make b_getblk_nc() take size_t for the block sizes 7964 - MEDIUM: connection: make xprt->snd_buf() take the byte count in argument 7965 - MEDIUM: mux: make mux->snd_buf() take the byte count in argument 7966 - MEDIUM: connection: make xprt->rcv_buf() use size_t for the count 7967 - MEDIUM: mux: make mux->rcv_buf() take a size_t for the count 7968 - MINOR: connection: add a flags argument to rcv_buf() 7969 - MINOR: connection: add a new receive flag : CO_RFL_BUF_WET 7970 - MINOR: buffer: get rid of b_ptr() and convert its last users 7971 - MINOR: buffer: use b_room() to determine available space in a buffer 7972 - MINOR: buffer: replace buffer_not_empty() with b_data() or c_data() 7973 - MINOR: buffer: replace buffer_empty() with b_empty() or c_empty() 7974 - MINOR: buffer: make bo_putchar() use b_tail() 7975 - MINOR: buffer: replace buffer_full() with channel_full() 7976 - MINOR: buffer: replace bi_space_for_replace() with ci_space_for_replace() 7977 - MINOR: buffer: replace buffer_pending() with ci_data() 7978 - MINOR: buffer: replace buffer_flush() with c_adv(chn, ci_data(chn)) 7979 - MINOR: buffer: use c_head() instead of buffer_wrap_sub(c->buf, p-o) 7980 - MINOR: buffer: use b_orig() to replace most references to b->data 7981 - MINOR: buffer: Use b_add()/bo_add() instead of accessing b->i/b->o. 7982 - MINOR: channel: remove almost all references to buf->i and buf->o 7983 - MINOR: channel: Add co_set_data(). 7984 - MEDIUM: channel: adapt to the new buffer API 7985 - MINOR: checks: adapt to the new buffer API 7986 - MEDIUM: h2: update to the new buffer API 7987 - MINOR: buffer: remove unused bo_add() 7988 - MEDIUM: spoe: use the new buffer API for the SPOE buffer 7989 - MINOR: stats: adapt to the new buffers API 7990 - MINOR: cli: use the new buffer API 7991 - MINOR: cache: use the new buffer API 7992 - MINOR: stream-int: use the new buffer API 7993 - MINOR: stream: use wrappers instead of directly manipulating buffers 7994 - MINOR: backend: use new buffer API 7995 - MEDIUM: http: use wrappers instead of directly manipulating buffers states 7996 - MINOR: filters: convert to the new buffer API 7997 - MINOR: payload: convert to the new buffer API 7998 - MEDIUM: h1: port to new buffer API. 7999 - MINOR: flt_trace: adapt to the new buffer API 8000 - MEDIUM: compression: start to move to the new buffer API 8001 - MINOR: lua: use the wrappers instead of directly manipulating buffer states 8002 - MINOR: buffer: convert part bo_putblk() and bi_putblk() to the new API 8003 - MINOR: buffer: adapt buffer_slow_realign() and buffer_dump() to the new API 8004 - MAJOR: start to change buffer API 8005 - MINOR: buffer: remove the check for output on b_del() 8006 - MINOR: buffer: b_set_data() doesn't truncate output data anymore 8007 - MINOR: buffer: rename the "data" field to "area" 8008 - MEDIUM: buffers: move "output" from struct buffer to struct channel 8009 - MINOR: buffer: replace bi_fast_delete() with b_del() 8010 - MINOR: buffer: replace b{i,o}_put* with b_put* 8011 - MINOR: buffer: add a new file for ist + buffer manipulation functions 8012 - MINOR: checks: use b_putist() instead of b_putstr() 8013 - MINOR: buffers: remove b_putstr() 8014 - CLEANUP: buffer: minor cleanups to buffer.h 8015 - MINOR: buffers/channel: replace buffer_insert_line2() with ci_insert_line2() 8016 - MINOR: buffer: replace buffer_replace2() with b_rep_blk() 8017 - MINOR: buffer: rename the data length member to '->data' 8018 - MAJOR: buffer: finalize buffer detachment 8019 - MEDIUM: chunks: make the chunk struct's fields match the buffer struct 8020 - MAJOR: chunks: replace struct chunk with struct buffer 8021 - DOC: buffers: document the new buffers API 8022 - DOC: buffers: remove obsolete docs about buffers 8023 - MINOR: tasklets: Don't attempt to add a tasklet in the list twice. 8024 - MINOR: connections/mux: Add a new "subscribe" method. 8025 - MEDIUM: connections/mux: Revamp the send direction. 8026 - MINOR: connection: simplify subscription by adding a registration function 8027 - BUG/MINOR: http: Set brackets for the unlikely macro at the right place 8028 - BUG/MINOR: build: Fix compilation with debug mode enabled 8029 - BUILD: Generate sha256 checksums in publish-release 8030 - MINOR: debug: Add check for CO_FL_WILL_UPDATE 8031 - MINOR: debug: Add checks for conn_stream flags 8032 - MINOR: ist: Add the function isteqi 8033 - BUG/MEDIUM: threads: Fix the exit condition of the thread barrier 8034 - BUG/MEDIUM: mux_h2: Call h2_send() before updating polling. 8035 - MINOR: buffers: simplify b_contig_space() 8036 - MINOR: buffers: split b_putblk() into __b_putblk() 8037 - MINOR: buffers: add b_xfer() to transfer data between buffers 8038 - DOC: add some design notes about the new layering model 8039 - MINOR: conn_stream: add a new CS_FL_REOS flag 8040 - MINOR: conn_stream: add an rx buffer to the conn_stream 8041 - MEDIUM: conn_stream: add cs_recv() as a default rcv_buf() function 8042 - MEDIUM: stream-int: automatically call si_cs_recv_cb() if the cs has data on wake() 8043 - MINOR: h2: make each H2 stream support an intermediary input buffer 8044 - MEDIUM: h2: make h2_frt_decode_headers() use an intermediary buffer 8045 - MEDIUM: h2: make h2_frt_transfer_data() copy via an intermediary buffer 8046 - MEDIUM: h2: centralize transfer of decoded frames in h2_rcv_buf() 8047 - MEDIUM: h2: move headers and data frame decoding to their respective parsers 8048 - MEDIUM: buffers: make b_xfer() automatically swap buffers when possible 8049 - MEDIUM: h2: perform a single call to the data layer in demux() 8050 - MEDIUM: h2: don't call data_cb->recv() anymore 8051 - MINOR: h2: make use of CS_FL_REOS to indicate that end of stream was seen 8052 - MEDIUM: h2: use the default conn_stream's receive function 8053 - DOC: add more design feedback on the new layering model 8054 - MINOR: h2: add the error code and the max/last stream IDs to "show fd" 8055 - BUG/MEDIUM: stream-int: don't immediately enable reading when the buffer was reportedly full 8056 - BUG/MEDIUM: stats: don't ask for more data as long as we're responding 8057 - BUG/MINOR: servers: Don't make "server" in a frontend fatal. 8058 - BUG/MEDIUM: tasks: make sure we pick all tasks in the run queue 8059 - BUG/MEDIUM: tasks: Decrement rqueue_size at the right time. 8060 - BUG/MEDIUM: tasks: use atomic ops for active_tasks_mask 8061 - BUG/MEDIUM: tasks: Make sure there's no task left before considering inactive. 8062 - MINOR: signal: don't pass the signal number anymore as the wakeup reason 8063 - MINOR: tasks: extend the state bits from 8 to 16 and remove the reason 8064 - MINOR: tasks: Add a flag that tells if we're in the global runqueue. 8065 - BUG/MEDIUM: tasks: make __task_unlink_rq responsible for the rqueue size. 8066 - MINOR: queue: centralize dequeuing code a bit better 8067 - MEDIUM: queue: make pendconn_free() work on the stream instead 8068 - DOC: queue: document the expected locking model for the server's queue 8069 - MINOR: queue: make sure pendconn->strm->pend_pos is always valid 8070 - MINOR: queue: use a distinct variable for the assigned server and the queue 8071 - MINOR: queue: implement pendconn queue locking functions 8072 - MEDIUM: queue: get rid of the pendconn lock 8073 - MINOR: tasks: Make active_tasks_mask volatile. 8074 - MINOR: tasks: Make global_tasks_mask volatile. 8075 - MINOR: pollers: Add a way to wake a thread sleeping in the poller. 8076 - MINOR: threads/queue: Get rid of THREAD_WANT_SYNC in the queue code. 8077 - BUG/MEDIUM: threads/sync: use sched_yield when available 8078 - MINOR: ssl: BoringSSL matches OpenSSL 1.1.0 8079 - BUG/MEDIUM: h2: prevent orphaned streams from blocking a connection forever 8080 - BUG/MINOR: config: stick-table is not supported in defaults section 8081 - BUILD/MINOR: threads: unbreak build with threads disabled 8082 - BUG/MINOR: threads: Handle nbthread == MAX_THREADS. 8083 - BUG/MEDIUM: threads: properly fix nbthreads == MAX_THREADS 8084 - MINOR: threads: move "nbthread" parsing to hathreads.c 8085 - BUG/MEDIUM: threads: unbreak "bind" referencing an incorrect thread number 8086 - MEDIUM: proxy_protocol: Convert IPs to v6 when protocols are mixed 8087 - BUILD/MINOR: compiler: fix offsetof() on older compilers 8088 - SCRIPTS: git-show-backports: add missing quotes to "echo" 8089 - MINOR: threads: add more consistency between certain variables in no-thread case 8090 - MEDIUM: hathreads: implement a more flexible rendez-vous point 8091 - BUG/MEDIUM: cli: make "show fd" thread-safe 8092 80932017/11/26 : 1.9-dev0 8094 80952017/11/26 : 1.8.0 8096 - BUG/MEDIUM: stream: don't automatically forward connect nor close 8097 - BUG/MAJOR: stream: ensure analysers are always called upon close 8098 - BUG/MINOR: stream-int: don't try to read again when CF_READ_DONTWAIT is set 8099 - MEDIUM: mworker: Add systemd `Type=notify` support 8100 - BUG/MEDIUM: cache: free callback to remove from tree 8101 - CLEANUP: cache: remove unused struct 8102 - MEDIUM: cache: enable the HTTP analysers 8103 - CLEANUP: cache: remove wrong comment 8104 - MINOR: threads/atomic: rename local variables in macros to avoid conflicts 8105 - MINOR: threads/plock: rename local variables in macros to avoid conflicts 8106 - MINOR: threads/atomic: implement pl_mb() in asm on x86 8107 - MINOR: threads/atomic: implement pl_bts() on non-x86 8108 - MINOR: threads/build: atomic: replace the few inlines with macros 8109 - BUILD: threads/plock: fix a build issue on Clang without optimization 8110 - BUILD: ebtree: don't redefine types u32/s32 in scope-aware trees 8111 - BUILD: compiler: add a new type modifier __maybe_unused 8112 - BUILD: h2: mark some inlined functions "unused" 8113 - BUILD: server: check->desc always exists 8114 - BUG/MEDIUM: h2: properly report connection errors in headers and data handlers 8115 - MEDIUM: h2: add a function to emit an HTTP/1 request from a headers list 8116 - MEDIUM: h2: change hpack_decode_headers() to only provide a list of headers 8117 - BUG/MEDIUM: h2: always reassemble the Cookie request header field 8118 - BUG/MINOR: systemd: ignore daemon mode 8119 - CONTRIB: spoa_example: allow to compile outside HAProxy. 8120 - CONTRIB: spoa_example: remove bref, wordlist, cond_wordlist 8121 - CONTRIB: spoa_example: remove last dependencies on type "sample" 8122 - CONTRIB: spoa_example: remove SPOE enums that are useless for clients 8123 - CLEANUP: cache: reorder includes 8124 - MEDIUM: shctx: use unsigned int for len and block_count 8125 - MEDIUM: cache: "show cache" on the cli 8126 - BUG/MEDIUM: cache: use key=0 as a condition for freeing 8127 - BUG/MEDIUM: cache: refcount forbids to free the objects 8128 - BUG/MEDIUM: cache fix cli_kws structure 8129 - BUG/MEDIUM: deinit: correctly deinitialize the proxy and global listener tasks 8130 - BUG/MINOR: ssl: Always start the handshake if we can't send early data. 8131 - MINOR: ssl: Don't disable early data handling if we could not write. 8132 - MINOR: pools: prepare functions to override malloc/free in pools 8133 - MINOR: pools: implement DEBUG_UAF to detect use after free 8134 - BUG/MEDIUM: threads/time: fix time drift correction 8135 - BUG/MEDIUM: threads/time: maintain a common time reference between all threads 8136 - MINOR: sample: Add "thread" sample fetch 8137 - BUG/MINOR: Use crt_base instead of ca_base when crt is parsed on a server line 8138 - BUG/MINOR: stream: fix tv_request calculation for applets 8139 - BUG/MAJOR: h2: always remove a stream from the send list before freeing it 8140 - BUG/MAJOR: threads/task: dequeue expired tasks under the WQ lock 8141 - MINOR: ssl: Handle reading early data after writing better. 8142 - MINOR: mux: Make sure every string is woken up after the handshake. 8143 - MEDIUM: cache: store sha1 for hashing the cache key 8144 - MINOR: http: implement the "http-request reject" rule 8145 - MINOR: h2: send RST_STREAM before GOAWAY on reject 8146 - MEDIUM: h2: don't gracefully close the connection anymore on Connection: close 8147 - MINOR: h2: make use of client-fin timeout after GOAWAY 8148 - MEDIUM: config: ensure that tune.bufsize is at least 16384 when using HTTP/2 8149 - MINOR: ssl: Handle early data with BoringSSL 8150 - BUG/MEDIUM: stream: always release the stream-interface on abort 8151 - BUG/MEDIUM: cache: free ressources in chn_end_analyze 8152 - MINOR: cache: move the refcount decrease in the applet release 8153 - BUG/MINOR: listener: Allow multiple "process" options on "bind" lines 8154 - MINOR: config: Support a range to specify processes in "cpu-map" parameter 8155 - MINOR: config: Slightly change how parse_process_number works 8156 - MINOR: config: Export parse_process_number and use it wherever it's applicable 8157 - MINOR: standard: Add my_ffsl function to get the position of the bit set to one 8158 - MINOR: config: Add auto-increment feature for cpu-map 8159 - MINOR: config: Support partial ranges in cpu-map directive 8160 - MINOR:: config: Remove thread-map directive 8161 - MINOR: config: Add the threads support in cpu-map directive 8162 - MINOR: config: Add threads support for "process" option on "bind" lines 8163 - MEDIUM: listener: Bind listeners on a thread subset if specified 8164 - CLEANUP: debug: Use DPRINTF instead of fprintf into #ifdef DEBUG_FULL/#endif 8165 - CLEANUP: log: Rename Alert/Warning in ha_alert/ha_warning 8166 - MINOR/CLEANUP: proxy: rename "proxy" to "proxies_list" 8167 - CLEANUP: pools: rename all pool functions and pointers to remove this "2" 8168 - DOC: update the roadmap file with the latest changes merged in 1.8 8169 - DOC: fix mangled version in peers protocol documentation 8170 - DOC: add initial peers protovol v2.0 documentation. 8171 - DOC: mention William as maintainer of the cache and master-worker 8172 - DOC: add Christopher and Emeric as maintainers of the threads 8173 - MINOR: cache: replace a fprint() by an abort() 8174 - MEDIUM: cache: max-age configuration keyword 8175 - DOC: explain HTTP2 timeout behavior 8176 - DOC: cache: configuration and management 8177 - MAJOR: mworker: exits the master on failure 8178 - BUG/MINOR: threads: don't drop "extern" on the lock in include files 8179 - MINOR: task: keep a pointer to the currently running task 8180 - MINOR: task: align the rq and wq locks 8181 - MINOR: fd: cache-align fdtab and fdcache locks 8182 - MINOR: buffers: cache-align buffer_wq_lock 8183 - CLEANUP: server: reorder some fields in struct server to save 40 bytes 8184 - CLEANUP: proxy: slightly reorder the struct proxy to reduce holes 8185 - CLEANUP: checks: remove 16 bytes of holes in struct check 8186 - CLEANUP: cache: more efficiently pack the struct cache 8187 - CLEANUP: fd: place the lock at the beginning of struct fdtab 8188 - CLEANUP: pools: align pools on a cache line 8189 - DOC: config: add a few bits about how to configure HTTP/2 8190 - BUG/MAJOR: threads/queue: avoid recursive locking in pendconn_get_next_strm() 8191 - BUILD: Makefile: reorder object files by size 8192 81932017/11/19 : 1.8-rc4 8194 - BUG/MEDIUM: cache: does not cache if no Content-Length 8195 - BUILD: thread/pipe: fix build without threads 8196 - BUG/MINOR: spoe: check buffer size before acquiring or releasing it 8197 - MINOR: debug/flags: Add missing flags 8198 - MINOR: threads: Use __decl_hathreads to declare locks 8199 - BUG/MINOR: buffers: Fix b_alloc_margin to be "fonctionnaly" thread-safe 8200 - BUG/MAJOR: ebtree/scope: fix insertion and removal of duplicates in scope-aware trees 8201 - BUG/MAJOR: ebtree/scope: fix lookup of next node in scope-aware trees 8202 - MINOR: ebtree/scope: add a function to find next node from a parent 8203 - MINOR: ebtree/scope: simplify the lookup functions by using eb32sc_next_with_parent() 8204 - BUG/MEDIUM: mworker: Fix re-exec when haproxy is started from PATH 8205 - BUG/MEDIUM: cache: use msg->sov to forward header 8206 - MINOR: cache: forward data with headers 8207 - MINOR: cache: disable cache if shctx_row_data_append fail 8208 - BUG/MINOR: threads: tid_bit must be a unsigned long 8209 - CLEANUP: tasks: Remove useless double test on rq_next 8210 - BUG/MEDIUM: standard: itao_str/idx and quote_str/idx must be thread-local 8211 - MINOR: tools: add a function to dump a scope-aware tree to a file 8212 - MINOR: tools: improve the DOT dump of the ebtree 8213 - MINOR: tools: emphasize the node being worked on in the tree dump 8214 - BUG/MAJOR: ebtree/scope: properly tag upper nodes during insertion 8215 - DOC: peers: Add a first version of peers protocol v2.1. 8216 - CONTRIB: Wireshark dissector for HAProxy Peer Protocol. 8217 - MINOR: mworker: display an accurate error when the reexec fail 8218 - BUG/MEDIUM: mworker: wait again for signals when execvp fail 8219 - BUG/MEDIUM: mworker: does not deinit anymore 8220 - BUG/MEDIUM: mworker: does not close inherited FD 8221 - MINOR: tests: add a python wrapper to test inherited fd 8222 - BUG/MINOR: Allocate the log buffers before the proxies startup 8223 - MINOR: tasks: Use a bitfield to track tasks activity per-thread 8224 - MAJOR: polling: Use active_tasks_mask instead of tasks_run_queue 8225 - MINOR: applets: Use a bitfield to track applets activity per-thread 8226 - MAJOR: polling: Use active_appels_mask instead of applets_active_queue 8227 - MEDIUM: applets: Don't process more than 200 active applets at once 8228 - MINOR: stream: Add thread-mask of tasks/FDs/applets in "show sess all" command 8229 - MINOR: SSL: Store the ASN1 representation of client sessions. 8230 - MINOR: ssl: Make sure we don't shutw the connection before the handshake. 8231 - BUG/MEDIUM: deviceatlas: ignore not valuable HTTP request data 8232 82332017/11/11 : 1.8-rc3 8234 - BUILD: use MAXPATHLEN instead of NAME_MAX. 8235 - BUG/MAJOR: threads/checks: add 4 missing spin_unlock() in various functions 8236 - BUG/MAJOR: threads/server: missing unlock in CLI fqdn parser 8237 - BUG/MINOR: cli: do not perform an invalid action on "set server check-port" 8238 - BUG/MAJOR: threads/checks: wrong use of SPIN_LOCK instead of SPIN_UNLOCK 8239 - CLEANUP: checks: remove return statements in locked functions 8240 - BUG/MINOR: cli: add severity in "set server addr" parser 8241 - CLEANUP: server: get rid of return statements in the CLI parser 8242 - BUG/MAJOR: cli/streams: missing unlock on exit "show sess" 8243 - BUG/MAJOR: threads/dns: add missing unlock on allocation failure path 8244 - BUG/MAJOR: threads/lb: fix missing unlock on consistent hash LB 8245 - BUG/MAJOR: threads/lb: fix missing unlock on map-based hash LB 8246 - BUG/MEDIUM: threads/stick-tables: close a race condition on stktable_trash_expired() 8247 - BUG/MAJOR: h2: set the connection's task to NULL when no client timeout is set 8248 - BUG/MAJOR: thread/listeners: enable_listener must not call unbind_listener() 8249 - BUG/MEDIUM: threads: don't try to free build option message on exit 8250 - MINOR: applets: no need to check for runqueue's emptiness in appctx_res_wakeup() 8251 - MINOR: add master-worker in the warning about nbproc 8252 - MINOR: mworker: allow pidfile in mworker + foreground 8253 - MINOR: mworker: write parent pid in the pidfile 8254 - MINOR: mworker: do not store child pid anymore in the pidfile 8255 - MINOR: ebtree: implement the scope-aware functions for eb32 8256 - MEDIUM: ebtree: specify the scope of every node inserted via eb32sc 8257 - MINOR: ebtree: update the eb32sc parent node's scope on delete 8258 - MEDIUM: ebtree: only consider the branches matching the scope in lookups 8259 - MINOR: ebtree: implement eb32sc_lookup_ge_or_first() 8260 - MAJOR: task: make use of the scope-aware ebtree functions 8261 - MINOR: task: simplify wake_expired_tasks() to avoid unlocking in the loop 8262 - MEDIUM: task: change the construction of the loop in process_runnable_tasks() 8263 - MINOR: threads: use faster locks for the spin locks 8264 - MINOR: tasks: only visit filled task slots after processing them 8265 - MEDIUM: tasks: implement a lockless scheduler for single-thread usage 8266 - BUG/MINOR: dns: Don't try to get the server lock if it's already held. 8267 - BUG/MINOR: dns: Don't lock the server lock in snr_check_ip_callback(). 8268 - DOC: Add note about encrypted password CPU usage 8269 - BUG/MINOR: h2: set the "HEADERS_SENT" flag on stream, not connection 8270 - BUG/MEDIUM: h2: properly send an RST_STREAM on mux stream error 8271 - BUG/MEDIUM: h2: properly send the GOAWAY frame in the mux 8272 - BUG/MEDIUM: h2: don't try (and fail) to send non-existing data in the mux 8273 - MEDIUM: h2: remove the H2_SS_RESET intermediate state 8274 - BUG/MEDIUM: h2: fix some wrong error codes on connections 8275 - BUILD: threads: Rename SPIN/RWLOCK macros using HA_ prefix 8276 - BUILD: enable USE_THREAD for Solaris build. 8277 - BUG/MEDIUM: h2: don't close the connection is there are data left 8278 - MINOR: h2: don't re-enable the connection's task when we're closing 8279 - BUG/MEDIUM: h2: properly set H2_SF_ES_SENT when sending the final frame 8280 - BUG/MINOR: h2: correctly check for H2_SF_ES_SENT before closing 8281 - MINOR: h2: add new stream flag H2_SF_OUTGOING_DATA 8282 - BUG/MINOR: h2: don't send GOAWAY on failed response 8283 - BUG/MEDIUM: splice/threads: pipe reuse list was not protected. 8284 - BUG/MINOR: comp: fix compilation warning compiling without compression. 8285 - BUG/MINOR: stream-int: don't set MSG_MORE on closed request path 8286 - BUG/MAJOR: threads/tasks: fix the scheduler again 8287 - BUG/MINOR; ssl: Don't assume we have a ssl_bind_conf because a SNI is matched. 8288 - MINOR: ssl: Handle session resumption with TLS 1.3 8289 - MINOR: ssl: Spell 0x10101000L correctly. 8290 - MINOR: ssl: Handle sending early data to server. 8291 - BUILD: ssl: fix build of backend without ssl 8292 - BUILD: shctx: do not depend on openssl anymore 8293 - BUG/MINOR: h1: the HTTP/1 make status code parser check for digits 8294 - BUG/MEDIUM: h2: reject non-3-digit status codes 8295 - BUG/MEDIUM: stream-int: Don't loss write's notifs when a stream is woken up 8296 - BUG/MINOR: pattern: Rely on the sample type to copy it in pattern_exec_match 8297 - BUG/MEDIUM: h2: split the function to send RST_STREAM 8298 - BUG/MEDIUM: h1: ensure the chunk size parser can deal with full buffers 8299 - MINOR: tools: don't use unlikely() in hex2i() 8300 - BUG/MEDIUM: h2: support orphaned streams 8301 - BUG/MEDIUM: threads/cli: fix "show sess" locking on release 8302 - CLEANUP: mux: remove the unused "release()" function 8303 - MINOR: cli: make "show fd" report the fd's thread mask 8304 - BUG/MEDIUM: stream: don't ignore res.analyse_exp anymore 8305 - CLEANUP: global: introduce variable pid_bit to avoid shifts with relative_pid 8306 - MEDIUM: http: always reject the "PRI" method 8307 83082017/11/03 : 1.8-rc2 8309 - BUG/MINOR: send-proxy-v2: fix dest_len in make_tlv call 8310 - BUG/MINOR: send-proxy-v2: string size must include ('\0') 8311 - MINOR: mux: Only define pipe functions on linux. 8312 - MINOR: cache: Remove useless test for nonzero. 8313 - MINOR: cache: Don't confuse act_return and act_parse_ret. 8314 - BUG/MEDIUM: h2: don't try to parse incomplete H1 responses 8315 - BUG/MEDIUM: checks/mux: always enable send-polling after connecting 8316 - BUG/MAJOR: fix deadlock on healthchecks. 8317 - BUG/MINOR: thread: fix a typo in the debug code 8318 - BUILD: shctx: allow to be built without openssl 8319 - BUG/MEDIUM: cache: don't try to resolve wrong filters 8320 - BUG/MAJOR: buffers: fix get_buffer_nc() for data at end of buffer 8321 - BUG/MINOR: freq: fix infinite loop on freq_ctr_period. 8322 - BUG/MINOR: stdarg.h inclusion 8323 - BUG/MINOR: dns: fix missing lock protection on server. 8324 - BUG/MINOR: lua: fix missing lock protection on server. 8325 - BUILD: enable USE_THREAD for OpenBSD build. 8326 - BUG/MAJOR: mux_pt: don't dereference a connstream after ->wake() 8327 - MINOR: thread: report multi-thread support in haproxy -vv 8328 83292017/10/31 : 1.8-rc1 8330 - BUG/MEDIUM: server: Allocate tmptrash before using it. 8331 - CONTRIB: trace: add the possibility to place trace calls in the code 8332 - CONTRIB: trace: try to display the function's return value on exit 8333 - CONTRIB: trace: report the base name only for file names 8334 - BUILD: ssl: support OPENSSL_NO_ASYNC #define 8335 - MINOR: ssl: build with recent BoringSSL library 8336 - BUG/MINOR: ssl: OCSP_single_get0_status can return -1 8337 - BUG/MINOR: cli: restore "set ssl tls-key" command 8338 - CLEANUP: cli: remove undocumented "set ssl tls-keys" command 8339 - IMPORT: sha1: import SHA1 functions 8340 - MINOR: sample: add the sha1 converter 8341 - MINOR: sample: add the hex2i converter 8342 - MINOR: stream-int: stop checking for useless connection flags in chk_snd_conn 8343 - MINOR: ssl: don't abort after sending 16kB 8344 - MINOR: connection: move the cleanup of flag CO_FL_WAIT_ROOM 8345 - MINOR: connection: add flag CO_FL_WILL_UPDATE to indicate when updates are granted 8346 - MEDIUM: connection: make use of CO_FL_WILL_UPDATE in conn_sock_shutw() 8347 - MINOR: raw_sock: make use of CO_FL_WILL_UPDATE 8348 - MINOR: ssl_sock: make use of CO_FL_WILL_UPDATE 8349 - BUG/MINOR: checks: Don't forget to release the connection on error case. 8350 - MINOR: buffer: add the buffer input manipulation functions 8351 - BUG/MEDIUM: prevent buffers being overwritten during build_logline() execution 8352 - MEDIUM: cfgparse: post section callback 8353 - MEDIUM: cfgparse: post parsing registration 8354 - MINOR: lua: add uuid to the Class Proxy 8355 - MINOR: hlua: Add regex class 8356 - MINOR: http: Mark the 425 code as "Too Early". 8357 - MEDIUM: ssl: convert CBS (BoringSSL api) usage to neutral code 8358 - MINOR: ssl: support Openssl 1.1.1 early callback for switchctx 8359 - MINOR: ssl: generated certificate is missing in switchctx early callback 8360 - MEDIUM: ssl: Handle early data with OpenSSL 1.1.1 8361 - BUILD: Makefile: disable -Wunused-label 8362 - MINOR: ssl/proto_http: Add keywords to take care of early data. 8363 - BUG/MINOR: lua: const attribute of a string is overridden 8364 - MINOR: ssl: Don't abuse ssl_options. 8365 - MINOR: update proxy-protocol-v2 #define 8366 - MINOR: merge ssl_sock_get calls for log and ppv2 8367 - MINOR: add ALPN information to send-proxy-v2 8368 - MEDIUM: h1: ensure that 1xx, 204 and 304 don't have a payload body 8369 - CLEANUP: shctx: get ride of the shsess_packet{_hdr} structures 8370 - MEDIUM: lists: list_for_each_entry{_safe}_from functions 8371 - REORG: shctx: move lock functions and struct 8372 - MEDIUM: shctx: allow the use of multiple shctx 8373 - REORG: shctx: move ssl functions to ssl_sock.c 8374 - MEDIUM: shctx: separate ssl and shctx 8375 - MINOR: shctx: rename lock functions 8376 - MINOR: h1: store the status code in the H1 message 8377 - BUG/MINOR: spoe: Don't compare engine name and SPOE scope when both are NULL 8378 - BUG/MINOR: spoa: Update pointer on the end of the frame when a reply is encoded 8379 - MINOR: action: Add trk_idx inline function 8380 - MINOR: action: Use trk_idx instead of tcp/http_trk_idx 8381 - MINOR: action: Add a function pointer in act_rule struct to check its validity 8382 - MINOR: action: Add function to check rules using an action ACT_ACTION_TRK_* 8383 - MINOR: action: Add a functions to check http capture rules 8384 - MINOR: action: Factorize checks on rules calling check_ptr if defined 8385 - MINOR: acl: Pass the ACLs as an explicit parameter of build_acl_cond 8386 - MEDIUM: spoe: Add support of ACLS to enable or disable sending of SPOE messages 8387 - MINOR: spoe: Check uniqness of SPOE engine names during config parsing 8388 - MEDIUM: spoe: Parse new "spoe-group" section in SPOE config file 8389 - MEDIUM: spoe/rules: Add "send-spoe-group" action for tcp/http rules 8390 - MINOR: spoe: Move message encoding in its own function 8391 - MINOR: spoe: Add a type to qualify the message list during encoding 8392 - MINOR: spoe: Add a generic function to encode a list of SPOE message 8393 - MEDIUM: spoe/rules: Process "send-spoe-group" action 8394 - BUG/MINOR: dns: Fix CLI keyword declaration 8395 - MAJOR: dns: Refactor the DNS code 8396 - BUG/MINOR: mailers: Fix a memory leak when email alerts are released 8397 - MEDIUM: mailers: Init alerts during conf parsing and refactor their processing 8398 - MINOR: mailers: Use pools to allocate email alerts and its tcpcheck_rules 8399 - MINOR: standard: Add memvprintf function 8400 - MINOR: log: Save alerts and warnings emitted during HAProxy startup 8401 - MINOR: cli: Add "show startup-logs" command 8402 - MINOR: startup: Extend the scope the MODE_STARTING flag 8403 - MINOR: threads: Prepare makefile to link with pthread 8404 - MINOR: threads: Add THREAD_LOCAL macro 8405 - MINOR: threads: Add atomic-ops and plock includes in import dir 8406 - MEDIUM: threads: Add hathreads header file 8407 - MINOR: threads: Add mechanism to register per-thread init/deinit functions 8408 - MINOR: threads: Add nbthread parameter 8409 - MEDIUM: threads: Adds a set of functions to handle sync-point 8410 - MAJOR: threads: Start threads to experiment multithreading 8411 - MINOR: threads: Define the sync-point inside run_poll_loop 8412 - MEDIUM: threads/buffers: Define and register per-thread init/deinit functions 8413 - MEDIUM: threads/chunks: Transform trash chunks in thread-local variables 8414 - MEDIUM: threads/time: Many global variables from time.h are now thread-local 8415 - MEDIUM: threads/logs: Make logs thread-safe 8416 - MEDIUM: threads/pool: Make pool thread-safe by locking all access to a pool 8417 - MAJOR: threads/fd: Make fd stuffs thread-safe 8418 - MINOR: threads/fd: Add a mask of threads allowed to process on each fd in fdtab array 8419 - MEDIUM: threads/fd: Initialize the process mask during the call to fd_insert 8420 - MINOR: threads/fd: Process cached events of FDs depending on the process mask 8421 - MINOR: threads/polling: pollers now handle FDs depending on the process mask 8422 - WIP: SQUASH WITH SYNC POINT 8423 - MAJOR: threads/task: handle multithread on task scheduler 8424 - MEDIUM: threads/signal: Add a lock to make signals thread-safe 8425 - MEDIUM: threads/listeners: Make listeners thread-safe 8426 - MEDIUM: threads/proxy: Add a lock per proxy and atomically update proxy vars 8427 - MEDIUM: threads/server: Make connection list (priv/idle/safe) thread-safe 8428 - MEDIUM: threads/server: Add a lock per server and atomically update server vars 8429 - MINOR: threads/server: Add a lock to deal with insert in updates_servers list 8430 - MEDIUM: threads/lb: Make LB algorithms (lb_*.c) thread-safe 8431 - MEDIUM: threads/stick-tables: handle multithreads on stick tables 8432 - MINOR: threads/sample: Change temp_smp into a thread local variable 8433 - MEDIUM: threads/http: Make http_capture_bad_message thread-safe 8434 - MINOR: threads/regex: Change Regex trash buffer into a thread local variable 8435 - MAJOR: threads/applet: Handle multithreading for applets 8436 - MAJOR: threads/peers: Make peers thread safe 8437 - MAJOR: threads/buffer: Make buffer wait queue thread safe 8438 - MEDIUM: threads/stream: Make streams list thread safe 8439 - MAJOR: threads/ssl: Make SSL part thread-safe 8440 - MEDIUM: threads/queue: Make queues thread-safe 8441 - MAJOR: threads/map: Make acls/maps thread safe 8442 - MEDIUM: threads/freq_ctr: Make the frequency counters thread-safe 8443 - MEDIUM: thread/vars: Make vars thread-safe 8444 - MEDIUM: threads/filters: Add init/deinit callback per thread 8445 - MINOR: threads/filters: Update trace filter to add _per_thread callbacks 8446 - MEDIUM: threads/compression: Make HTTP compression thread-safe 8447 - MEDIUM: threads/lua: Makes the jmpbuf and some other buffers local to the current thread. 8448 - MEDIUM: threads/lua: Add locks around the Lua execution parts. 8449 - MEDIUM: threads/lua: Ensure that the launched tasks runs on the same threads than me 8450 - MEDIUM: threads/lua: Cannot acces to the socket if we try to access from another thread. 8451 - MEDIUM: threads/xref: Convert xref function to a thread safe model 8452 - MEDIUM: threads/tasks: Add lock around notifications 8453 - MEDIUM: thread/spoe: Make the SPOE thread-safe 8454 - MEDIUM: thread/dns: Make DNS thread-safe 8455 - MINOR: threads: Add thread-map config parameter in the global section 8456 - MINOR: threads/checks: Add a lock to protect the pid list used by external checks 8457 - MINOR: threads/checks: Set the task process_mask when a check is executed 8458 - MINOR: threads/mailers: Add a lock to protect queues of email alerts 8459 - MEDIUM: threads/server: Use the server lock to protect health check and cli concurrency 8460 - MINOR: threads: Don't start when device a detection module is used 8461 - BUG/MEDIUM: threads: Run the poll loop on the main thread too 8462 - BUG/MINOR: threads: Add missing THREAD_LOCAL on static here and there 8463 - MAJOR: threads: Offically enable the threads support in HAProxy 8464 - BUG/MAJOR: threads/freq_ctr: fix lock on freq counters. 8465 - BUG/MAJOR: threads/time: Store the time deviation in an 64-bits integer 8466 - BUILD: stick-tables: silence an uninitialized variable warning 8467 - BUG/MINOR: dns: Fix SRV records with the new thread code. 8468 - MINOR: ssl: Remove the global allow-0rtt option. 8469 - CLEANUP: threads: replace the last few 1UL<<tid with tid_bit 8470 - CLEANUP: threads: rename process_mask to thread_mask 8471 - MINOR: h1: add a function to measure the trailers length 8472 - MINOR: threads: add a portable barrier for threads and non-threads 8473 - BUG/MAJOR: threads/freq_ctr: use a memory barrier to detect changes 8474 - BUG/MEDIUM: threads: Initialize the sync-point 8475 - MEDIUM: connection: start to introduce a mux layer between xprt and data 8476 - MINOR: connection: implement alpn registration of muxes 8477 - MINOR: mux: register the pass-through mux for any ALPN string 8478 - MEDIUM: session: use the ALPN token and proxy mode to select the mux 8479 - MINOR: connection: report the major HTTP version from the MUX for logging (fc_http_major) 8480 - MINOR: connection: introduce conn_stream 8481 - MINOR: mux: add more methods to mux_ops 8482 - MINOR: connection: introduce the conn_stream manipulation functions 8483 - MINOR: mux_pt: implement remaining mux_ops methods 8484 - MAJOR: connection : Split struct connection into struct connection and struct conn_stream. 8485 - MINOR: connection: make conn_stream users also check for per-stream error flag 8486 - MINOR: conn_stream: new shutr/w status flags 8487 - MINOR: conn_stream: modify cs_shut{r,w} API to pass the desired mode 8488 - MEDIUM: connection: make conn_sock_shutw() aware of lingering 8489 - MINOR: connection: add cs_close() to close a conn_stream 8490 - MEDIUM: mux_pt: make cs_shutr() / cs_shutw() properly close the connection 8491 - MEDIUM: connection: replace conn_full_close() with cs_close() 8492 - MEDIUM: connection: make mux->detach() release the connection 8493 - MEDIUM: stream: do not forcefully close the client connection anymore 8494 - MEDIUM: checks: exclusively use cs_destroy() to release a connection 8495 - MEDIUM: connection: add a destroy callback 8496 - MINOR: session: release the listener with the session, not the stream 8497 - MEDIUM: session: make use of the connection's destroy callback 8498 - CONTRIB: hpack: implement a reverse huffman table generator for hpack 8499 - MINOR: hpack: implement the HPACK Huffman table decoder 8500 - MINOR: hpack: implement the header tables management 8501 - MINOR: hpack: implement the decoder 8502 - MEDIUM: hpack: implement basic hpack encoding 8503 - MINOR: h2: centralize all HTTP/2 protocol elements and constants 8504 - MINOR: h2: create a very minimalistic h2 mux 8505 - MINOR: h2: expose tune.h2.header-table-size to configure the table size 8506 - MINOR: h2: expose tune.h2.initial-window-size to configure the window size 8507 - MINOR: h2: expose tune.h2.max-concurrent-streams to limit the number of streams 8508 - MINOR: h2: create the h2c struct and allocate its pool 8509 - MINOR: h2: create the h2s struct and the associated pool 8510 - MINOR: h2: handle two extra stream states for errors 8511 - MINOR: h2: add a frame header descriptor for incoming frames 8512 - MEDIUM: h2: allocate and release the h2c context on connection init/end 8513 - MEDIUM: h2: implement basic recv/send/wake functions 8514 - MEDIUM: h2: dynamically allocate the demux buffer on Rx 8515 - MEDIUM: h2: implement the mux buffer allocator 8516 - MINOR: h2: add the connection and stream flags listing the causes for blocking 8517 - MINOR: h2: add function h2s_id() to report a stream's ID 8518 - MINOR: h2: small function to know when the mux is busy 8519 - MINOR: h2: new function h2c_error to mark an error on the connection 8520 - MINOR: h2: new function h2s_error() to mark an error on a stream 8521 - MINOR: h2: add h2_set_frame_size() to update the size in a binary frame 8522 - MINOR: h2: new function h2_peek_frame_hdr() to retrieve a new frame header 8523 - MINOR: h2: add a few functions to retrieve contents from a wrapping buffer 8524 - MINOR: h2: add stream lookup function based on the stream ID 8525 - MINOR: h2: create dummy idle and closed streams 8526 - MINOR: h2: add the function to create a new stream 8527 - MINOR: h2: update the {MUX,DEM}_{M,D}ALLOC flags on buffer availability 8528 - MEDIUM: h2: start to consider the H2_CF_{MUX,DEM}_* flags for polling 8529 - MINOR: h2: also terminate the connection on shutr 8530 - MEDIUM: h2: properly consider all conditions for end of connection 8531 - MEDIUM: h2: wake the connection up for send on pending streams 8532 - MEDIUM: h2: start to implement the frames processing loop 8533 - MINOR: h2: add a function to send a GOAWAY error frame 8534 - MINOR: h2: match the H2 connection preface on init 8535 - MEDIUM: h2: enable connection polling for send when a cs wants to emit 8536 - MEDIUM: h2: enable reading again on the connection if it was blocked on stream buffer full 8537 - MEDIUM: h2: process streams pending for sending 8538 - MINOR: h2: send a real SETTINGS frame based on the configuration 8539 - MEDIUM: h2: detect the presence of the first settings frame 8540 - MINOR: h2: create a stream parser for the demuxer 8541 - MINOR: h2: implement PING frames 8542 - MEDIUM: h2: decode SETTINGS frames and extract relevant settings 8543 - MINOR: h2: lookup the stream during demuxing 8544 - MEDIUM: h2: honor WINDOW_UPDATE frames 8545 - MINOR: h2: implement h2_send_rst_stream() to send RST_STREAM frames 8546 - MINOR: h2: handle CONTINUATION frames 8547 - MEDIUM: h2: partial implementation of h2_detach() 8548 - MEDIUM: h2: unblock a connection when its current stream detaches 8549 - MEDIUM: h2: basic processing of HEADERS frame 8550 - MEDIUM: h2: don't use trash to decode headers! 8551 - MEDIUM: h2: implement the response HEADERS frame to encode the H1 response 8552 - MEDIUM: h2: send the H1 response body as DATA frames 8553 - MEDIUM: h2: skip the response trailers if any 8554 - MEDIUM: h2: properly continue to parse header block when facing a 1xx response 8555 - MEDIUM: h2: send WINDOW_UPDATE frames for connection 8556 - MEDIUM: h2: handle request body in DATA frames 8557 - MINOR: h2: handle RST_STREAM frames 8558 - MEDIUM: h2: send DATA+ES or RST_STREAM on shutw/shutr 8559 - MINOR: h2: use a common function to signal some and all streams. 8560 - MEDIUM: h2: handle GOAWAY frames 8561 - MINOR: h2: centralize the check for the idle streams 8562 - MINOR: h2: centralize the check for the half-closed(remote) streams 8563 - MEDIUM: h2: silently ignore frames higher than last_id after GOAWAY 8564 - MINOR: h2: properly reject PUSH_PROMISE frames coming from the client 8565 - MEDIUM: h2: perform a graceful shutdown on "Connection: close" 8566 - MEDIUM: h2: send a GOAWAY frame when dealing with an empty response 8567 - MEDIUM: h2: apply a timeout to h2 connections 8568 - BUG/MEDIUM: h2: fix incorrect timeout handling on the connection 8569 - MEDIUM: shctx: forbid shctx to read more than expected 8570 - MEDIUM: cache: configuration parsing and initialization 8571 - MEDIUM: cache: store objects in cache 8572 - MEDIUM: cache: deliver objects from cache 8573 85742017/10/22 : 1.8-dev3 8575 - REORG: ssl: move defines and methodVersions table upper 8576 - MEDIUM: ssl: ctx_set_version/ssl_set_version func for methodVersions table 8577 - MINOR: ssl: support ssl-min-ver and ssl-max-ver with crt-list 8578 - MEDIUM: ssl: disable SSLv3 per default for bind 8579 - BUG/MAJOR: ssl: fix segfault on connection close using async engines. 8580 - BUG/MAJOR: ssl: buffer overflow using offloaded ciphering on async engine 8581 - BUG/MINOR: ssl: do not call directly the conn_fd_handler from async_fd_handler 8582 - BUG/MINOR: haproxy/cli : fix for solaris/illumos distros for CMSG* macros 8583 - BUG/MEDIUM: build without openssl broken 8584 - BUG/MINOR: warning: need_resend may be used uninitialized 8585 - BUG/MEDIUM: misplaced exit and wrong exit code 8586 - BUG/MINOR: Makefile: fix compile error with USE_LUA=1 in ubuntu16.04 8587 - BUILD: scripts: make publish-release support bare repositories 8588 - BUILD: scripts: add an automatic mode for publish-release 8589 - BUILD: scripts: add a "quiet" mode to publish-release 8590 - BUG/MAJOR: http: call manage_client_side_cookies() before erasing the buffer 8591 - BUG/MINOR: buffers: Fix bi/bo_contig_space to handle full buffers 8592 - CONTRIB: plug qdiscs: Plug queuing disciplines mini HOWTO. 8593 - BUG/MINOR: acls: Set the right refflag when patterns are loaded from a map 8594 - BUG/MINOR: ssl: Be sure that SSLv3 connection methods exist for openssl < 1.1.0 8595 - BUG/MINOR: http/filters: Be sure to wait if a filter loops in HTTP_MSG_ENDING 8596 - BUG/MEDIUM: peers: Peers CLOSE_WAIT issue. 8597 - BUG/MAJOR: server: Segfault after parsing server state file. 8598 - BUG/MEDIUM: unix: never unlink a unix socket from the file system 8599 - scripts: create-release pass -n to tail 8600 - SCRIPTS: create-release: enforce GIT_COMMITTER_{NAME|EMAIL} validity 8601 - BUG/MEDIUM: fix segfault when no argument to -x option 8602 - MINOR: warning on multiple -x 8603 - MINOR: mworker: don't copy -x argument anymore in copy_argv() 8604 - BUG/MEDIUM: mworker: don't reuse PIDs passed to the master 8605 - BUG/MINOR: Wrong peer task expiration handling during synchronization processing. 8606 - BUG/MINOR: cfgparse: Check if tune.http.maxhdr is in the range 1..32767 8607 - BUG/MINOR: log: pin the front connection when front ip/ports are logged 8608 - DOC: fix references to the section about the unix socket 8609 - BUG/MINOR: stream: flag TASK_WOKEN_RES not set if task in runqueue 8610 - MAJOR: task: task scheduler rework. 8611 - MINOR: task/stream: tasks related to a stream must be init by the caller. 8612 - MINOR: queue: Change pendconn_get_next_strm into private function 8613 - MINOR: backends: Change get_server_sh/get_server_uh into private function 8614 - MINOR: queue: Change pendconn_from_srv/pendconn_from_px into private functions 8615 - MEDIUM: stream: make stream_new() always set the target and analysers 8616 - MINOR: frontend: initialize HTTP layer after the debugging code 8617 - MINOR: connection: add a .get_alpn() method to xprt_ops 8618 - MINOR: ssl: add a get_alpn() method to ssl_sock 8619 - MINOR: frontend: retrieve the ALPN name when available 8620 - MINOR: frontend: report the connection's ALPN in the debug output 8621 - MINOR: stream: don't set backend's nor response analysers on SF_TUNNEL 8622 - MINOR: connection: send data before receiving 8623 - MAJOR: applet: applet scheduler rework. 8624 - BUG/MAJOR: frontend: don't dereference a null conn on outgoing connections 8625 - BUG/MAJOR: cli: fix custom io_release was crushed by NULL. 8626 - BUG/MAJOR: map: fix segfault during 'show map/acl' on cli. 8627 - BUG/MAJOR: compression: Be sure to release the compression state in all cases 8628 - MINOR: compression: Use a memory pool to allocate compression states 8629 - BUG/MAJOR: applet: fix a freeze if data is immedately forwarded. 8630 - DOC: fix references to the section about time format. 8631 - BUG/MEDIUM: map/acl: fix unwanted flags inheritance. 8632 - BUG/MAJOR: http: fix buffer overflow on loguri buffer. 8633 - MINOR: ssl: compare server certificate names to the SNI on outgoing connections 8634 - BUG/MINOR: stream: Don't forget to remove CF_WAKE_ONCE flag on response channel 8635 - BUG/MINOR: http: Don't reset the transaction if there are still data to send 8636 - BUG/MEDIUM: filters: Be sure to call flt_end_analyze for both channels 8637 - MINOR: peers: Add additional information to stick-table definition messages. 8638 - BUG/MINOR: http: properly handle all 1xx informational responses 8639 - OPTIM: ssl: don't consider a small ssl_read() as an indication of end of buffer 8640 - BUG/MINOR: peers: peer synchronization issue (with several peers sections). 8641 - CLEANUP: hdr_idx: make some function arguments const where possible 8642 - BUG/MINOR: Prevent a use-after-free on error scenario on option "-x". 8643 - BUG/MINOR: lua: In error case, the safe mode is not removed 8644 - BUG/MINOR: lua: executes the function destroying the Lua session in safe mode 8645 - BUG/MAJOR: lua/socket: resources not detroyed when the socket is aborted 8646 - BUG/MEDIUM: lua: bad memory access 8647 - BUG/MINOR: Lua: variable already initialized 8648 - DOC: update CONTRIBUTING regarding optional parts and message format 8649 - DOC: update the list of OpenSSL versions in the README 8650 - BUG/MINOR: http: Set the response error state in http_sync_res_state 8651 - MINOR: http: Reorder/rewrite checks in http_resync_states 8652 - MINOR: http: Switch requests/responses in TUNNEL mode only by checking txn flags 8653 - BUG/MEDIUM: http: Switch HTTP responses in TUNNEL mode when body length is undefined 8654 - MINOR: http: Rely on analyzers mask to end processing in forward_body functions 8655 - BUG/MINOR: http: Fix bug introduced in previous patch in http_resync_states 8656 - BUG/MINOR: contrib/modsecurity: BSD build fix 8657 - BUG/MINOR: contrib/mod_defender: build fix 8658 - BUG/MINOR: ssl: remove haproxy SSLv3 support when ssl lib have no SSLv3 8659 - MINOR: ssl: remove an unecessary SSL_OP_NO_* dependancy 8660 - BUILD: ssl: fix compatibility with openssl without TLSEXT_signature_* 8661 - MINOR: tools: add a portable timegm() alternative 8662 - BUILD: lua: replace timegm() with my_timegm() to fix build on Solaris 10 8663 - DOC: Updated 51Degrees git URL to point to a stable version. 8664 - BUG/MAJOR: http: Fix possible infinity loop in http_sync_(req|res)_state 8665 - MINOR: memory: remove macros 8666 - BUG/MINOR: lua: Fix Server.get_addr() port values 8667 - BUG/MINOR: lua: Correctly use INET6_ADDRSTRLEN in Server.get_addr() 8668 - MINOR: samples: Handle the type SMP_T_METH when we duplicate a sample in smp_dup 8669 - MINOR: samples: Handle the type SMP_T_METH in smp_is_safe and smp_is_rw 8670 - MINOR: samples: Don't allocate memory for SMP_T_METH sample when method is known 8671 - BUG/MINOR: lua: always detach the tcp/http tasks before freeing them 8672 - MINOR: task: always preinitialize the task's timeout in task_init() 8673 - CLEANUP: task: remove all initializations to TICK_ETERNITY after task_new() 8674 - BUG/MAJOR: lua: properly dequeue hlua_applet_wakeup() for new scheduler 8675 - MINOR: lua: Add proxy as member of proxy object. 8676 - DOC: lua: Proxy class doc update 8677 - MINOR: lua: Add lists of frontends and backends 8678 - BUG/MINOR: ssl: Fix check against SNI during server certificate verification 8679 - BUG/MINOR: ssl: make use of the name in SNI before verifyhost 8680 - MINOR: ssl: add a new error codes for wrong server certificates 8681 - BUG/MEDIUM: stream: don't retry SSL connections which fail the SNI name check 8682 - MINOR: ssl: add "no-ca-names" parameter for bind 8683 - BUG/MINOR: lua: Fix bitwise logic for hlua_server_check_* functions. 8684 - DOC: fix alphabetical order of "show commands" in management.txt 8685 - MINOR: listener: add a function to return a listener's state as a string 8686 - MINOR: cli: add a new "show fd" command 8687 - BUG/MEDIUM: ssl: Fix regression about certificates generation 8688 - MINOR: Add server port field to server state file. 8689 - MINOR: ssl: allow to start without certificate if strict-sni is set 8690 - MINOR: dns: Cache previous DNS answers. 8691 - MINOR: obj: Add a new type of object, OBJ_TYPE_SRVRQ. 8692 - Add a few functions to do unaligned access. 8693 - MINOR: dns: Handle SRV records. 8694 - MINOR: check: Fix checks when using SRV records. 8695 - MINOR: doc: Document SRV label usage. 8696 - BUILD/MINOR: cli: shut a minor gcc warning in "show fd" 8697 - BUILD: ssl: replace SSL_CTX_get0_privatekey for openssl < 1.0.2 8698 - BUILD/MINOR: build without openssl still broken 8699 - BUG/MAJOR: stream: in stream_free(), close the front endpoint and not the origin 8700 - CLEANUP: raw_sock: Use a better name for the constructor than __ssl_sock_deinit() 8701 - MINOR: init: Fix CPU affinity setting on FreeBSD. 8702 - MINOR: dns: Update analysis of TRUNCATED response for SRV records 8703 - MINOR: dns: update record dname matching for SRV query types 8704 - MINOR: dns: update dns response buffer reading pointer due to SRV record 8705 - MINOR: dns: duplicate entries in resolution wait queue for SRV records 8706 - MINOR: dns: make debugging function dump_dns_config() compatible with SRV records 8707 - MINOR: dns: ability to use a SRV resolution for multiple backends 8708 - MINOR: dns: enable caching of responses for server set by a SRV record 8709 - MINOR: dns: new dns record type (RTYPE) for OPT 8710 - MINOR: dns: enabled edns0 extension and make accpeted payload size tunable 8711 - MINOR: dns: default "hold obsolete" timeout set to 0 8712 - MINOR: chunks: add chunk_memcpy() and chunk_memcat() 8713 - MINOR: session: add a streams field to the session struct 8714 - MINOR: stream: link the stream to its session 8715 - MEDIUM: session: do not free a session until no stream references it 8716 - MINOR: ist: implement very simple indirect strings 8717 - TESTS: ist: add a test file for the functions 8718 - MINOR: http: export some of the HTTP parser macros 8719 - BUG/MINOR: Wrong type used as argument for spoe_decode_buffer(). 8720 - BUG/MINOR: dns: server set by SRV records stay in "no resolution" status 8721 - MINOR: dns: Maximum DNS udp payload set to 8192 8722 - MINOR: dns: automatic reduction of DNS accpeted payload size 8723 - MINOR: dns: make SRV record processing more verbose 8724 - CLEANUP: dns: remove duplicated code in dns_resolve_recv() 8725 - CLEANUP: dns: remove duplicated code in dns_validate_dns_response() 8726 - BUG/MINOR: dns: wrong resolution interval lead to 100% CPU 8727 - BUG/MEDIUM: dns: fix accepted_payload_size parser to avoid integer overflow 8728 - BUG/MAJOR: lua: fix the impact of the scheduler changes again 8729 - BUG/MEDIUM: lua: HTTP services must take care of body-less status codes 8730 - MINOR: lua: properly process the contents of the content-length field 8731 - BUG/MEDIUM: stream: properly set the required HTTP analysers on use-service 8732 - OPTIM: lua: don't use expensive functions to parse headers in the HTTP applet 8733 - OPTIM: lua: don't add "Connection: close" on the response 8734 - REORG/MEDIUM: connection: introduce the notion of connection handle 8735 - BUG/MINOR: stream-int: don't check the CO_FL_CURR_WR_ENA flag 8736 - MEDIUM: connection: get rid of data->init() which was not for data 8737 - MEDIUM: stream: make stream_new() allocate its own task 8738 - CLEANUP: listener: remove the unused handler field 8739 - MEDIUM: session: add a pointer to a struct task in the session 8740 - MINOR: stream: provide a new stream creation function for connections 8741 - MEDIUM: connection: remove useless flag CO_FL_DATA_RD_SH 8742 - CLEANUP: connection: remove the unused conn_sock_shutw_pending() 8743 - MEDIUM: connection: remove useless flag CO_FL_DATA_WR_SH 8744 - DOC: add CLI info on privilege levels 8745 - DOC: Refer to Mozilla TLS info / config generator 8746 - MINOR: ssl: remove duplicate ssl_methods in struct bind_conf 8747 - BUG/MEDIUM: http: Fix a regression bug when a HTTP response is in TUNNEL mode 8748 - DOC: Add note about "* " prefix in CSV stats 8749 - CLEANUP: memory: Remove unused function pool_destroy 8750 - MINOR: listeners: Change listener_full and limit_listener into private functions 8751 - MINOR: listeners: Change enable_listener and disable_listener into private functions 8752 - MINOR: fd: Don't forget to reset fdtab[fd].update when a fd is added/removed 8753 - MINOR: fd: Set owner and iocb field before inserting a new fd in the fdtab 8754 - MINOR: backends: Make get_server_* functions explicitly static 8755 - MINOR: applet: Check applets_active_queue before processing applets queue 8756 - MINOR: chunks: Use dedicated function to init/deinit trash buffers 8757 - MEDIUM: chunks: Realloc trash buffers only after the config is parsed and checked 8758 - MINOR: logs: Use dedicated function to init/deinit log buffers 8759 - MINOR: logs: Realloc log buffers only after the config is parsed and checked 8760 - MINOR: buffers: Move swap_buffer into buffer.c and add deinit_buffer function 8761 - MINOR: stick-tables: Make static_table_key a struct variable instead of a pointer 8762 - MINOR: http: Use a trash chunk to store decoded string of the HTTP auth header 8763 - MINOR: fd: Add fd_active function 8764 - MINOR: fd: Use inlined functions to check fd state in fd_*_send/recv functions 8765 - MINOR: fd: Move (de)allocation of fdtab and fdinfo in (de)init_pollers 8766 - MINOR: freq_ctr: Return the new value after an update 8767 - MEDIUM: check: server states and weight propagation re-work 8768 - BUG/MEDIUM: epoll: ensure we always consider HUP and ERR 8769 - MINOR: fd: Add fd_update_events function 8770 - MINOR: polling: Use fd_update_events to update events seen for a fd 8771 - BUG/MINOR: server: Remove FQDN requirement for using init-addr and state file 8772 - Revert "BUG/MINOR: server: Remove FQDN requirement for using init-addr and state file" 8773 - MINOR: ssl: rework smp_fetch_ssl_fc_cl_str without internal ssl use 8774 - BUG/MEDIUM: http: Close streams for connections closed before a redirect 8775 - BUG/MINOR: Lua: The socket may be destroyed when we try to access. 8776 - MINOR: xref: Add a new xref system 8777 - MEDIUM: xref/lua: Use xref for referencing cosocket relation between stream and lua 8778 - MINOR: tasks: Move Lua notification from Lua to tasks 8779 - MINOR: net_helper: Inline functions meant to be inlined. 8780 - MINOR: cli: add socket commands and config to prepend informational messages with severity 8781 - MINOR: add severity information to cli feedback messages 8782 - BUILD: Makefile: add a function to detect support by the compiler of certain options 8783 - BUILD: Makefile: shut certain gcc/clang stupid warnings 8784 - BUILD: Makefile: improve detection of support for compiler warnings 8785 - MINOR: peers: don't reference the incoming listener on outgoing connections 8786 - MINOR: frontend: don't retrieve ALPN on the critical path 8787 - MINOR: protocols: always pass a "port" argument to the listener creation 8788 - MINOR: protocols: register the ->add function and stop calling them directly 8789 - MINOR: unix: remove the now unused proto_uxst.h file 8790 - MINOR: listeners: new function create_listeners 8791 - MINOR: listeners: make listeners count consistent with reality 8792 - MEDIUM: session: take care of incrementing/decrementing jobs 8793 - MINOR: listener: new function listener_release 8794 - MINOR: session: small cleanup of conn_complete_session() 8795 - MEDIUM: session: factor out duplicated code for conn_complete_session 8796 - MEDIUM: session: count the frontend's connections at a single place 8797 - BUG/MEDIUM: compression: Fix check on txn in smp_fetch_res_comp_algo 8798 - BUG/MINOR: compression: Check response headers before http-response rules eval 8799 - BUG/MINOR: spoe: Don't rely on SPOE ctx in debug message when its creation failed 8800 - BUG/MINOR: dns: Fix check on nameserver in snr_resolution_cb 8801 - MINOR: ssl: Remove useless checks on bind_conf or bind_conf->is_ssl 8802 - BUG/MINOR: contrib/mod_defender: close the va_list argp before return 8803 - BUG/MINOR: contrib/modsecurity: close the va_list ap before return 8804 - MINOR: tools: make my_htonll() more efficient on x86_64 8805 - MINOR: buffer: add b_del() to delete a number of characters 8806 - MINOR: buffer: add b_end() and b_to_end() 8807 - MINOR: net_helper: add functions to read from vectors 8808 - MINOR: net_helper: add write functions 8809 - MINOR: net_helper: add 64-bit read/write functions 8810 - MINOR: connection: adjust CO_FL_NOTIFY_DATA after removal of flags 8811 - MINOR: ist: add a macro to ease const array initialization 8812 - BUG/MEDIUM: server: unwanted behavior leaving maintenance mode on tracked stopping server 8813 - BUG/MEDIUM: server: unwanted behavior leaving maintenance mode on tracked stopping server (take2) 8814 - BUG/MINOR: log: fixing small memory leak in error code path. 8815 - BUG/MINOR: contrib/halog: fixing small memory leak 8816 - BUG/MEDIUM: tcp/http: set-dst-port action broken 8817 - CLEANUUP: checks: don't set conn->handle.fd to -1 8818 - BUG/MEDIUM: tcp-check: properly indicate polling state before performing I/O 8819 - BUG/MINOR: tcp-check: don't quit with pending data in the send buffer 8820 - BUG/MEDIUM: tcp-check: don't call tcpcheck_main() from the I/O handlers! 8821 - BUG/MINOR: unix: properly check for octal digits in the "mode" argument 8822 - MINOR: checks: make chk_report_conn_err() take a check, not a connection 8823 - CLEANUP: checks: remove misleading comments and statuses for external process 8824 - CLEANUP: checks: don't report report the fork() error twice 8825 - CLEANUP: checks: do not allocate a connection for process checks 8826 - TESTS: checks: add a simple test config for external checks 8827 - BUG/MINOR: tcp-check: don't initialize then break a connection starting with a comment 8828 - TESTS: checks: add a simple test config for tcp-checks 8829 - MINOR: tcp-check: make tcpcheck_main() take a check, not a connection 8830 - MINOR: checks: don't create then kill a dummy connection before tcp-checks 8831 - MEDIUM: checks: make tcpcheck_main() indicate if it recycled a connection 8832 - MEDIUM: checks: do not allocate a permanent connection anymore 8833 - BUG/MEDIUM: cli: fix "show fd" crash when dumping closed FDs 8834 - BUG/MEDIUM: http: Return an error when url_dec sample converter failed 8835 - BUG/MAJOR: stream-int: don't re-arm recv if send fails 8836 - BUILD/MINOR: 51d: fix warning when building with 51Degrees release version 3.2.12.12 8837 - DOC: 51d: add 51Degrees git URL that points to release version 3.2.12.12 8838 - DOC: 51d: Updated git URL and instructions for getting Hash Trie data files. 8839 - MINOR: compiler: restore the likely() wrapper for gcc 5.x 8840 - MINOR: session: remove the list of streams from struct session 8841 - DOC: fix some typos 8842 - MINOR: server: add the srv_queue() sample fetch method 8843 - MINOR: payload: add new sample fetch functions to process distcc protocol 8844 - MAJOR: servers: propagate server status changes asynchronously. 8845 - BUG/MEDIUM: ssl: fix OCSP expiry calculation 8846 - BUG/MINOR: stream-int: don't set MSG_MORE on SHUTW_NOW without AUTO_CLOSE 8847 - MINOR: server: Handle weight increase in consistent hash. 8848 - MINOR: checks: Add a new keyword to specify a SNI when doing SSL checks. 8849 - BUG/MINOR: tools: fix my_htonll() on x86_64 8850 - BUG/MINOR: stats: Clear a bit more counters with in cli_parse_clear_counters(). 8851 - BUG/MAJOR: lua: scheduled task is freezing. 8852 - MINOR: buffer: add bo_del() to delete a number of characters from output 8853 - MINOR: buffer: add a function to match against string patterns 8854 - MINOR: buffer: add two functions to inject data into buffers 8855 - MINOR: buffer: add buffer_space_wraps() 8856 - REORG: channel: finally rename the last bi_* / bo_* functions 8857 - MINOR: buffer: add bo_getblk() and bo_getblk_nc() 8858 - MINOR: channel: make use of bo_getblk{,_nc} for their channel equivalents 8859 - MINOR: channel: make the channel be a const in all {ci,co}_get* functions 8860 - MINOR: ist: add ist0() to add a trailing zero to a string. 8861 - BUG/MEDIUM: log: check result details truncated. 8862 - MINOR: buffer: make bo_getblk_nc() not return 2 for a full buffer 8863 - REORG: http: move some very http1-specific parts to h1.{c,h} 8864 - REORG: http: move the HTTP/1 chunk parser to h1.{c,h} 8865 - REORG: http: move the HTTP/1 header block parser to h1.c 8866 - MEDIUM: http: make the chunk size parser only depend on the buffer 8867 - MEDIUM: http: make the chunk crlf parser only depend on the buffer 8868 - MINOR: h1: add struct h1m for basic HTTP/1 messages 8869 - MINOR: http: add very simple header management based on double strings 8870 - MEDIUM: h1: reimplement the http/1 response parser for the gateway 8871 - REORG: connection: rename CO_FL_DATA_* -> CO_FL_XPRT_* 8872 - MEDIUM: connection: make conn_sock_shutw() aware of lingering 8873 - MINOR: connection: ensure conn_ctrl_close() also resets the fd 8874 - MINOR: connection: add conn_stop_tracking() to disable tracking 8875 - MINOR: tcp: use conn_full_close() instead of conn_force_close() 8876 - MINOR: unix: use conn_full_close() instead of conn_force_close() 8877 - MINOR: checks: use conn_full_close() instead of conn_force_close() 8878 - MINOR: session: use conn_full_close() instead of conn_force_close() 8879 - MINOR: stream: use conn_full_close() instead of conn_force_close() 8880 - MINOR: stream: use conn_full_close() instead of conn_force_close() 8881 - MINOR: backend: use conn_full_close() instead of conn_force_close() 8882 - MINOR: stream-int: use conn_full_close() instead of conn_force_close() 8883 - MINOR: connection: remove conn_force_close() 8884 - BUG/MINOR: ssl: ocsp response with 'revoked' status is correct 8885 88862017/06/02 : 1.8-dev2 8887 - CLEANUP: server: moving netinet/tcp.h inclusion 8888 - DOC: changed "block"(deprecated) examples to http-request deny 8889 - DOC: add few comments to examples. 8890 - DOC: update sample code for PROXY protocol 8891 - DOC: mention lighttpd 1.4.46 implements PROXY 8892 - MINOR server: Restrict dynamic cookie check to the same proxy. 8893 - DOC: stick-table is available in frontend sections 8894 - BUG/MINOR: server : no transparent proxy for DragonflyBSD 8895 - BUILD/MINOR: stats: remove unexpected argument to stats_dump_json_header() 8896 - BUILD/MINOR: tools: fix build warning in debug_hexdump() 8897 - BUG/MINOR: dns: Wrong address family used when creating IPv6 sockets. 8898 - BUG/MINOR: config: missing goto out after parsing an incorrect ACL character 8899 - BUG/MINOR: arg: don't try to add an argument on failed memory allocation 8900 - MEDIUM: server: Inherit CLI weight changes and agent-check weight responses 8901 - BUG/MEDIUM: arg: ensure that we properly unlink unresolved arguments on error 8902 - BUG/MEDIUM: acl: don't free unresolved args in prune_acl_expr() 8903 - BUG/MEDIUM: servers: unbreak server weight propagation 8904 - MINOR: lua: ensure the memory allocator is used all the time 8905 - MINOR: cli: Add a command to send listening sockets. 8906 - MINOR: global: Add an option to get the old listening sockets. 8907 - MINOR: tcp: When binding socket, attempt to reuse one from the old proc. 8908 - MINOR: doc: document the -x flag 8909 - MINOR: proxy: Don't close FDs if not our proxy. 8910 - MINOR: socket transfer: Set a timeout on the socket. 8911 - MINOR: systemd wrapper: add support for passing the -x option. 8912 - BUG/MINOR: server: Fix a wrong error message during 'usesrc' keyword parsing. 8913 - BUG/MAJOR: Broken parsing for valid keywords provided after 'source' setting. 8914 - CLEANUP: logs: typo: simgle => single 8915 - BUG/MEDIUM: acl: proprely release unused args in prune_acl_expr() 8916 - MEDIUM: config: don't check config validity when there are fatal errors 8917 - BUG/MAJOR: Use -fwrapv. 8918 - BUG/MINOR: server: don't use "proxy" when px is really meant. 8919 - BUG/MEDIUM: http: Drop the connection establishment when a redirect is performed 8920 - BUG/MINOR: server: missing default server 'resolvers' setting duplication. 8921 - MINOR: server: Extract the code responsible of copying default-server settings. 8922 - MINOR: server: Extract the code which finalizes server initializations after 'server' lines parsing. 8923 - MINOR: server: Add 'server-template' new keyword supported in backend sections. 8924 - MINOR: server: Add server_template_init() function to initialize servers from a templates. 8925 - DOC: Add documentation for new "server-template" keyword. 8926 - DOC: add layer 4 links/cross reference to "block" keyword. 8927 - DOC: errloc/errorloc302/errorloc303 missing status codes. 8928 - BUG/MEDIUM: lua: memory leak 8929 - CLEANUP: lua: remove test 8930 - BUG/MINOR: hash-balance-factor isn't effective in certain circumstances 8931 - BUG/MINOR: change header-declared function to static inline 8932 - REORG: spoe: move spoe_encode_varint / spoe_decode_varint from spoe to common 8933 - MINOR: Add binary encoding request header sample fetch 8934 - MINOR: proto-http: Add sample fetch wich returns all HTTP headers 8935 - MINOR: Add ModSecurity wrapper as contrib 8936 - BUG/MINOR: ssl: fix warnings about methods for opensslv1.1. 8937 - DOC: update RFC references 8938 - CONTRIB: tcploop: add action "X" to execute a command 8939 - MINOR: server: cli: Add server FQDNs to server-state file and stats socket. 8940 - BUG/MINOR: contrib/mod_security: fix build on FreeBSD 8941 - BUG/MINOR: checks: don't send proxy protocol with agent checks 8942 - MINOR: ssl: add prefer-client-ciphers 8943 - MEDIUM: ssl: revert ssl/tls version settings relative to default-server. 8944 - MEDIUM: ssl: ssl_methods implementation is reworked and factored for min/max tlsxx 8945 - MEDIUM: ssl: calculate the real min/max TLS version and find holes 8946 - MINOR: ssl: support TLSv1.3 for bind and server 8947 - MINOR: ssl: show methods supported by openssl 8948 - MEDIUM: ssl: add ssl-min-ver and ssl-max-ver parameters for bind and server 8949 - MEDIUM: ssl: ssl-min-ver and ssl-max-ver compatibility. 8950 - CLEANUP: retire obsoleted USE_GETSOCKNAME build option 8951 - BUG/MAJOR: dns: Broken kqueue events handling (BSD systems). 8952 - MINOR: sample: Add b64dec sample converter 8953 - BUG/MEDIUM: lua: segfault if a converter or a sample doesn't return anything 8954 - MINOR: cli: add ACCESS_LVL_MASK to store the access level 8955 - MINOR: cli: add 'expose-fd listeners' to pass listeners FDs 8956 - MEDIUM: proxy: zombify proxies only when the expose-fd socket is bound 8957 - MEDIUM: ssl: add basic support for OpenSSL crypto engine 8958 - MAJOR: ssl: add openssl async mode support 8959 - MEDIUM: ssl: handle multiple async engines 8960 - MINOR: boringssl: basic support for OCSP Stapling 8961 - MEDIUM: mworker: replace systemd mode by master worker mode 8962 - MEDIUM: mworker: handle reload and signals 8963 - MEDIUM: mworker: wait mode on reload failure 8964 - MEDIUM: mworker: try to guess the next stats socket to use with -x 8965 - MEDIUM: mworker: exit-on-failure option 8966 - MEDIUM: mworker: workers exit when the master leaves 8967 - DOC: add documentation for the master-worker mode 8968 - MEDIUM: systemd: Type=forking in unit file 8969 - MAJOR: systemd-wrapper: get rid of the wrapper 8970 - MINOR: log: Add logurilen tunable. 8971 - CLEANUP: server.c: missing prototype of srv_free_dns_resolution 8972 - MINOR: dns: smallest DNS fqdn size 8973 - MINOR: dns: functions to manage memory for a DNS resolution structure 8974 - MINOR: dns: parse_server() now uses srv_alloc_dns_resolution() 8975 - REORG: dns: dns_option structure, storage of hostname_dn 8976 - MINOR: dns: new snr_check_ip_callback function 8977 - MAJOR: dns: save a copy of the DNS response in struct resolution 8978 - MINOR: dns: implement a LRU cache for DNS resolutions 8979 - MINOR: dns: make 'ancount' field to match the number of saved records 8980 - MINOR: dns: introduce roundrobin into the internal cache (WIP) 8981 - MAJOR/REORG: dns: DNS resolution task and requester queues 8982 - BUILD: ssl: fix build with OPENSSL_NO_ENGINE 8983 - MINOR: Add Mod Defender integration as contrib 8984 - CLEANUP: str2mask return code comment: non-zero -> zero. 8985 - MINOR: tools: make debug_hexdump() use a const char for the string 8986 - MINOR: tools: make debug_hexdump() take a string prefix 8987 - CLEANUP: connection: remove unused CO_FL_WAIT_DATA 8988 89892017/04/03 : 1.8-dev1 8990 - BUG/MEDIUM: proxy: return "none" and "unknown" for unknown LB algos 8991 - BUG/MINOR: stats: make field_str() return an empty string on NULL 8992 - DOC: Spelling fixes 8993 - BUG/MEDIUM: http: Fix tunnel mode when the CONNECT method is used 8994 - BUG/MINOR: http: Keep the same behavior between 1.6 and 1.7 for tunneled txn 8995 - BUG/MINOR: filters: Protect args in macros HAS_DATA_FILTERS and IS_DATA_FILTER 8996 - BUG/MINOR: filters: Invert evaluation order of HTTP_XFER_BODY and XFER_DATA analyzers 8997 - BUG/MINOR: http: Call XFER_DATA analyzer when HTTP txn is switched in tunnel mode 8998 - BUG/MAJOR: stream: fix session abort on resource shortage 8999 - OPTIM: stream-int: don't disable polling anymore on DONT_READ 9000 - BUG/MINOR: cli: allow the backslash to be escaped on the CLI 9001 - BUG/MEDIUM: cli: fix "show stat resolvers" and "show tls-keys" 9002 - DOC: Fix map table's format 9003 - DOC: Added 51Degrees conv and fetch functions to documentation. 9004 - BUG/MINOR: http: don't send an extra CRLF after a Set-Cookie in a redirect 9005 - DOC: mention that req_tot is for both frontends and backends 9006 - BUG/MEDIUM: variables: some variable name can hide another ones 9007 - MINOR: lua: Allow argument for actions 9008 - BUILD: rearrange target files by build time 9009 - CLEANUP: hlua: just indent functions 9010 - MINOR: lua: give HAProxy variable access to the applets 9011 - BUG/MINOR: stats: fix be/sessions/max output in html stats 9012 - MINOR: proxy: Add fe_name/be_name fetchers next to existing fe_id/be_id 9013 - DOC: lua: Documentation about some entry missing 9014 - DOC: lua: Add documentation about variable manipulation from applet 9015 - MINOR: Do not forward the header "Expect: 100-continue" when the option http-buffer-request is set 9016 - DOC: Add undocumented argument of the trace filter 9017 - DOC: Fix some typo in SPOE documentation 9018 - MINOR: cli: Remove useless call to bi_putchk 9019 - BUG/MINOR: cli: be sure to always warn the cli applet when input buffer is full 9020 - MINOR: applet: Count number of (active) applets 9021 - MINOR: task: Rename run_queue and run_queue_cur counters 9022 - BUG/MEDIUM: stream: Save unprocessed events for a stream 9023 - BUG/MAJOR: Fix how the list of entities waiting for a buffer is handled 9024 - BUILD/MEDIUM: Fixing the build using LibreSSL 9025 - BUG/MEDIUM: lua: In some case, the return of sample-fetches is ignored (2) 9026 - SCRIPTS: git-show-backports: fix a harmless typo 9027 - SCRIPTS: git-show-backports: add -H to use the hash of the commit message 9028 - BUG/MINOR: stream-int: automatically release SI_FL_WAIT_DATA on SHUTW_NOW 9029 - CLEANUP: applet/lua: create a dedicated ->fcn entry in hlua_cli context 9030 - CLEANUP: applet/table: add an "action" entry in ->table context 9031 - CLEANUP: applet: remove the now unused appctx->private field 9032 - DOC: lua: documentation about time parser functions 9033 - DOC: lua: improve links 9034 - DOC: lua: section declared twice 9035 - MEDIUM: cli: 'show cli sockets' list the CLI sockets 9036 - BUG/MINOR: cli: "show cli sockets" wouldn't list all processes 9037 - BUG/MINOR: cli: "show cli sockets" would always report process 64 9038 - CLEANUP: lua: rename one of the lua appctx union 9039 - BUG/MINOR: lua/cli: bad error message 9040 - MEDIUM: lua: use memory pool for hlua struct in applets 9041 - MINOR: lua/signals: Remove Lua part from signals. 9042 - DOC: cli: show cli sockets 9043 - MINOR: cli: automatically enable a CLI I/O handler when there's no parser 9044 - CLEANUP: memory: remove the now unused cli_parse_show_pools() function 9045 - CLEANUP: applet: group all CLI contexts together 9046 - CLEANUP: stats: move a misplaced stats context initialization 9047 - MINOR: cli: add two general purpose pointers and integers in the CLI struct 9048 - MINOR: appctx/cli: remove the cli_socket entry from the appctx union 9049 - MINOR: appctx/cli: remove the env entry from the appctx union 9050 - MINOR: appctx/cli: remove the "be" entry from the appctx union 9051 - MINOR: appctx/cli: remove the "dns" entry from the appctx union 9052 - MINOR: appctx/cli: remove the "server_state" entry from the appctx union 9053 - MINOR: appctx/cli: remove the "tlskeys" entry from the appctx union 9054 - CONTRIB: tcploop: add limits.h to fix build issue with some compilers 9055 - MINOR/DOC: lua: just precise one thing 9056 - DOC: fix small typo in fe_id (backend instead of frontend) 9057 - BUG/MINOR: Fix the sending function in Lua's cosocket 9058 - BUG/MINOR: lua: memory leak executing tasks 9059 - BUG/MINOR: lua: bad return code 9060 - BUG/MINOR: lua: memleak when Lua/cli fails 9061 - MEDIUM: lua: remove Lua struct from session, and allocate it with memory pools 9062 - CLEANUP: haproxy: statify unexported functions 9063 - MINOR: haproxy: add a registration for build options 9064 - CLEANUP: wurfl: use the build options list to report it 9065 - CLEANUP: 51d: use the build options list to report it 9066 - CLEANUP: da: use the build options list to report it 9067 - CLEANUP: namespaces: use the build options list to report it 9068 - CLEANUP: tcp: use the build options list to report transparent modes 9069 - CLEANUP: lua: use the build options list to report it 9070 - CLEANUP: regex: use the build options list to report the regex type 9071 - CLEANUP: ssl: use the build options list to report the SSL details 9072 - CLEANUP: compression: use the build options list to report the algos 9073 - CLEANUP: auth: use the build options list to report its support 9074 - MINOR: haproxy: add a registration for post-check functions 9075 - CLEANUP: checks: make use of the post-init registration to start checks 9076 - CLEANUP: filters: use the function registration to initialize all proxies 9077 - CLEANUP: wurfl: make use of the late init registration 9078 - CLEANUP: 51d: make use of the late init registration 9079 - CLEANUP: da: make use of the late init registration code 9080 - MINOR: haproxy: add a registration for post-deinit functions 9081 - CLEANUP: wurfl: register the deinit function via the dedicated list 9082 - CLEANUP: 51d: register the deinitialization function 9083 - CLEANUP: da: register the deinitialization function 9084 - CLEANUP: wurfl: move global settings out of the global section 9085 - CLEANUP: 51d: move global settings out of the global section 9086 - CLEANUP: da: move global settings out of the global section 9087 - MINOR: cfgparse: add two new functions to check arguments count 9088 - MINOR: cfgparse: move parsing of "ca-base" and "crt-base" to ssl_sock 9089 - MEDIUM: cfgparse: move all tune.ssl.* keywords to ssl_sock 9090 - MEDIUM: cfgparse: move maxsslconn parsing to ssl_sock 9091 - MINOR: cfgparse: move parsing of ssl-default-{bind,server}-ciphers to ssl_sock 9092 - MEDIUM: cfgparse: move ssl-dh-param-file parsing to ssl_sock 9093 - MEDIUM: compression: move the zlib-specific stuff from global.h to compression.c 9094 - BUG/MEDIUM: ssl: properly reset the reused_sess during a forced handshake 9095 - BUG/MEDIUM: ssl: avoid double free when releasing bind_confs 9096 - BUG/MINOR: stats: fix be/sessions/current out in typed stats 9097 - MINOR: tcp-rules: check that the listener exists before updating its counters 9098 - MEDIUM: spoe: don't create a dummy listener for outgoing connections 9099 - MINOR: listener: move the transport layer pointer to the bind_conf 9100 - MEDIUM: move listener->frontend to bind_conf->frontend 9101 - MEDIUM: ssl: remote the proxy argument from most functions 9102 - MINOR: connection: add a new prepare_bind_conf() entry to xprt_ops 9103 - MEDIUM: ssl_sock: implement ssl_sock_prepare_bind_conf() 9104 - MINOR: connection: add a new destroy_bind_conf() entry to xprt_ops 9105 - MINOR: ssl_sock: implement ssl_sock_destroy_bind_conf() 9106 - MINOR: server: move the use_ssl field out of the ifdef USE_OPENSSL 9107 - MINOR: connection: add a minimal transport layer registration system 9108 - CLEANUP: connection: remove all direct references to raw_sock and ssl_sock 9109 - CLEANUP: connection: unexport raw_sock and ssl_sock 9110 - MINOR: connection: add new prepare_srv()/destroy_srv() entries to xprt_ops 9111 - MINOR: ssl_sock: implement and use prepare_srv()/destroy_srv() 9112 - CLEANUP: ssl: move tlskeys_finalize_config() to a post_check callback 9113 - CLEANUP: ssl: move most ssl-specific global settings to ssl_sock.c 9114 - BUG/MINOR: backend: nbsrv() should return 0 if backend is disabled 9115 - BUG/MEDIUM: ssl: for a handshake when server-side SNI changes 9116 - BUG/MINOR: systemd: potential zombie processes 9117 - DOC: Add timings events schemas 9118 - BUILD: lua: build failed on FreeBSD. 9119 - MINOR: samples: add xx-hash functions 9120 - MEDIUM: regex: pcre2 support 9121 - BUG/MINOR: option prefer-last-server must be ignored in some case 9122 - MINOR: stats: Support "select all" for backend actions 9123 - BUG/MINOR: sample-fetches/stick-tables: bad type for the sample fetches sc*_get_gpt0 9124 - BUG/MAJOR: channel: Fix the definition order of channel analyzers 9125 - BUG/MINOR: http: report real parser state in error captures 9126 - BUILD: scripts: automatically update the branch in version.h when releasing 9127 - MINOR: tools: add a generic hexdump function for debugging 9128 - BUG/MAJOR: http: fix risk of getting invalid reports of bad requests 9129 - MINOR: http: custom status reason. 9130 - MINOR: connection: add sample fetch "fc_rcvd_proxy" 9131 - BUG/MINOR: config: emit a warning if http-reuse is enabled with incompatible options 9132 - BUG/MINOR: tools: fix off-by-one in port size check 9133 - BUG/MEDIUM: server: consider AF_UNSPEC as a valid address family 9134 - MEDIUM: server: split the address and the port into two different fields 9135 - MINOR: tools: make str2sa_range() return the port in a separate argument 9136 - MINOR: server: take the destination port from the port field, not the addr 9137 - MEDIUM: server: disable protocol validations when the server doesn't resolve 9138 - BUG/MEDIUM: tools: do not force an unresolved address to AF_INET:0.0.0.0 9139 - BUG/MINOR: ssl: EVP_PKEY must be freed after X509_get_pubkey usage 9140 - BUG/MINOR: ssl: assert on SSL_set_shutdown with BoringSSL 9141 - MINOR: Use "500 Internal Server Error" for 500 error/status code message. 9142 - MINOR: proto_http.c 502 error txt typo. 9143 - DOC: add deprecation notice to "block" 9144 - MINOR: compression: fix -vv output without zlib/slz 9145 - BUG/MINOR: Reset errno variable before calling strtol(3) 9146 - MINOR: ssl: don't show prefer-server-ciphers output 9147 - OPTIM/MINOR: config: Optimize fullconn automatic computation loading configuration 9148 - BUG/MINOR: stream: Fix how backend-specific analyzers are set on a stream 9149 - MAJOR: ssl: bind configuration per certificat 9150 - MINOR: ssl: add curve suite for ECDHE negotiation 9151 - MINOR: checks: Add agent-addr config directive 9152 - MINOR: cli: Add possiblity to change agent config via CLI/socket 9153 - MINOR: doc: Add docs for agent-addr configuration variable 9154 - MINOR: doc: Add docs for agent-addr and agent-send CLI commands 9155 - BUILD: ssl: fix to build (again) with boringssl 9156 - BUILD: ssl: fix build on OpenSSL 1.0.0 9157 - BUILD: ssl: silence a warning reported for ERR_remove_state() 9158 - BUILD: ssl: eliminate warning with OpenSSL 1.1.0 regarding RAND_pseudo_bytes() 9159 - BUILD: ssl: kill a build warning introduced by BoringSSL compatibility 9160 - BUG/MEDIUM: tcp: don't poll for write when connect() succeeds 9161 - BUG/MINOR: unix: fix connect's polling in case no data are scheduled 9162 - MINOR: server: extend the flags to 32 bits 9163 - BUG/MINOR: lua: Map.end are not reliable because "end" is a reserved keyword 9164 - MINOR: dns: give ability to dns_init_resolvers() to close a socket when requested 9165 - BUG/MAJOR: dns: restart sockets after fork() 9166 - MINOR: chunks: implement a simple dynamic allocator for trash buffers 9167 - BUG/MEDIUM: http: prevent redirect from overwriting a buffer 9168 - BUG/MEDIUM: filters: Do not truncate HTTP response when body length is undefined 9169 - BUG/MEDIUM: http: Prevent replace-header from overwriting a buffer 9170 - BUG/MINOR: http: Return an error when a replace-header rule failed on the response 9171 - BUG/MINOR: sendmail: The return of vsnprintf is not cleanly tested 9172 - BUG/MAJOR: ssl: fix a regression in ssl_sock_shutw() 9173 - BUG/MAJOR: lua segmentation fault when the request is like 'GET ?arg=val HTTP/1.1' 9174 - BUG/MEDIUM: config: reject anything but "if" or "unless" after a use-backend rule 9175 - MINOR: http: don't close when redirect location doesn't start with "/" 9176 - MEDIUM: boringssl: support native multi-cert selection without bundling 9177 - BUG/MEDIUM: ssl: fix verify/ca-file per certificate 9178 - BUG/MEDIUM: ssl: switchctx should not return SSL_TLSEXT_ERR_ALERT_WARNING 9179 - MINOR: ssl: removes SSL_CTX_set_ssl_version call and cleanup CTX creation. 9180 - BUILD: ssl: fix build with -DOPENSSL_NO_DH 9181 - MEDIUM: ssl: add new sample-fetch which captures the cipherlist 9182 - MEDIUM: ssl: remove ssl-options from crt-list 9183 - BUG/MEDIUM: ssl: in bind line, ssl-options after 'crt' are ignored. 9184 - BUG/MINOR: ssl: fix cipherlist captures with sustainable SSL calls 9185 - MINOR: ssl: improved cipherlist captures 9186 - BUG/MINOR: spoe: Fix soft stop handler using a specific id for spoe filters 9187 - BUG/MINOR: spoe: Fix parsing of arguments in spoe-message section 9188 - MAJOR: spoe: Add support of pipelined and asynchronous exchanges with agents 9189 - MINOR: spoe: Add support for pipelining/async capabilities in the SPOA example 9190 - MINOR: spoe: Remove SPOE details from the appctx structure 9191 - MINOR: spoe: Add status code in error variable instead of hardcoded value 9192 - MINOR: spoe: Send a log message when an error occurred during event processing 9193 - MINOR: spoe: Check the scope of sample fetches used in SPOE messages 9194 - MEDIUM: spoe: Be sure to wakeup the good entity waiting for a buffer 9195 - MINOR: spoe: Use the min of all known max_frame_size to encode messages 9196 - MAJOR: spoe: Add support of payload fragmentation in NOTIFY frames 9197 - MINOR: spoe: Add support for fragmentation capability in the SPOA example 9198 - MAJOR: spoe: refactor the filter to clean up the code 9199 - MINOR: spoe: Handle NOTIFY frames cancellation using ABORT bit in ACK frames 9200 - REORG: spoe: Move struct and enum definitions in dedicated header file 9201 - REORG: spoe: Move low-level encoding/decoding functions in dedicated header file 9202 - MINOR: spoe: Improve implementation of the payload fragmentation 9203 - MINOR: spoe: Add support of negation for options in SPOE configuration file 9204 - MINOR: spoe: Add "pipelining" and "async" options in spoe-agent section 9205 - MINOR: spoe: Rely on alertif_too_many_arg during configuration parsing 9206 - MINOR: spoe: Add "send-frag-payload" option in spoe-agent section 9207 - MINOR: spoe: Add "max-frame-size" statement in spoe-agent section 9208 - DOC: spoe: Update SPOE documentation to reflect recent changes 9209 - MINOR: config: warn when some HTTP rules are used in a TCP proxy 9210 - BUG/MEDIUM: ssl: Clear OpenSSL error stack after trying to parse OCSP file 9211 - BUG/MEDIUM: cli: Prevent double free in CLI ACL lookup 9212 - BUG/MINOR: Fix "get map <map> <value>" CLI command 9213 - MINOR: Add nbsrv sample converter 9214 - CLEANUP: Replace repeated code to count usable servers with be_usable_srv() 9215 - MINOR: Add hostname sample fetch 9216 - CLEANUP: Remove comment that's no longer valid 9217 - MEDIUM: http_error_message: txn->status / http_get_status_idx. 9218 - MINOR: http-request tarpit deny_status. 9219 - CLEANUP: http: make http_server_error() not set the status anymore 9220 - MEDIUM: stats: Add JSON output option to show (info|stat) 9221 - MEDIUM: stats: Add show json schema 9222 - BUG/MAJOR: connection: update CO_FL_CONNECTED before calling the data layer 9223 - MINOR: server: Add dynamic session cookies. 9224 - MINOR: cli: Let configure the dynamic cookies from the cli. 9225 - BUG/MINOR: checks: attempt clean shutw for SSL check 9226 - CONTRIB: tcploop: make it build on FreeBSD 9227 - CONTRIB: tcploop: fix time format to silence build warnings 9228 - CONTRIB: tcploop: report action 'K' (kill) in usage message 9229 - CONTRIB: tcploop: fix connect's address length 9230 - CONTRIB: tcploop: use the trash instead of NULL for recv() 9231 - BUG/MEDIUM: listener: do not try to rebind another process' socket 9232 - BUG/MEDIUM server: Fix crash when dynamic is defined, but not key is provided. 9233 - CLEANUP: config: Typo in comment. 9234 - BUG/MEDIUM: filters: Fix channels synchronization in flt_end_analyze 9235 - TESTS: add a test configuration to stress handshake combinations 9236 - BUG/MAJOR: stream-int: do not depend on connection flags to detect connection 9237 - BUG/MEDIUM: connection: ensure to always report the end of handshakes 9238 - MEDIUM: connection: don't test for CO_FL_WAKE_DATA 9239 - CLEANUP: connection: completely remove CO_FL_WAKE_DATA 9240 - BUG: payload: fix payload not retrieving arbitrary lengths 9241 - BUILD: ssl: simplify SSL_CTX_set_ecdh_auto compatibility 9242 - BUILD: ssl: fix OPENSSL_NO_SSL_TRACE for boringssl and libressl 9243 - BUG/MAJOR: http: fix typo in http_apply_redirect_rule 9244 - MINOR: doc: 2.4. Examples should be 2.5. Examples 9245 - BUG/MEDIUM: stream: fix client-fin/server-fin handling 9246 - MINOR: fd: add a new flag HAP_POLL_F_RDHUP to struct poller 9247 - BUG/MINOR: raw_sock: always perfom the last recv if RDHUP is not available 9248 - OPTIM: poll: enable support for POLLRDHUP 9249 - MINOR: kqueue: exclusively rely on the kqueue returned status 9250 - MEDIUM: kqueue: take care of EV_EOF to improve polling status accuracy 9251 - MEDIUM: kqueue: only set FD_POLL_IN when there are pending data 9252 - DOC/MINOR: Fix typos in proxy protocol doc 9253 - DOC: Protocol doc: add checksum, TLV type ranges 9254 - DOC: Protocol doc: add SSL TLVs, rename CHECKSUM 9255 - DOC: Protocol doc: add noop TLV 9256 - MEDIUM: global: add a 'hard-stop-after' option to cap the soft-stop time 9257 - MINOR: dns: improve DNS response parsing to use as many available records as possible 9258 - BUG/MINOR: cfgparse: loop in tracked servers lists not detected by check_config_validity(). 9259 - MINOR: server: irrelevant error message with 'default-server' config file keyword. 9260 - MINOR: server: Make 'default-server' support 'backup' keyword. 9261 - MINOR: server: Make 'default-server' support 'check-send-proxy' keyword. 9262 - CLEANUP: server: code alignement. 9263 - MINOR: server: Make 'default-server' support 'non-stick' keyword. 9264 - MINOR: server: Make 'default-server' support 'send-proxy' and 'send-proxy-v2 keywords. 9265 - MINOR: server: Make 'default-server' support 'check-ssl' keyword. 9266 - MINOR: server: Make 'default-server' support 'force-sslv3' and 'force-tlsv1[0-2]' keywords. 9267 - CLEANUP: server: code alignement. 9268 - MINOR: server: Make 'default-server' support 'no-ssl*' and 'no-tlsv*' keywords. 9269 - MINOR: server: Make 'default-server' support 'ssl' keyword. 9270 - MINOR: server: Make 'default-server' support 'send-proxy-v2-ssl*' keywords. 9271 - CLEANUP: server: code alignement. 9272 - MINOR: server: Make 'default-server' support 'verify' keyword. 9273 - MINOR: server: Make 'default-server' support 'verifyhost' setting. 9274 - MINOR: server: Make 'default-server' support 'check' keyword. 9275 - MINOR: server: Make 'default-server' support 'track' setting. 9276 - MINOR: server: Make 'default-server' support 'ca-file', 'crl-file' and 'crt' settings. 9277 - MINOR: server: Make 'default-server' support 'redir' keyword. 9278 - MINOR: server: Make 'default-server' support 'observe' keyword. 9279 - MINOR: server: Make 'default-server' support 'cookie' keyword. 9280 - MINOR: server: Make 'default-server' support 'ciphers' keyword. 9281 - MINOR: server: Make 'default-server' support 'tcp-ut' keyword. 9282 - MINOR: server: Make 'default-server' support 'namespace' keyword. 9283 - MINOR: server: Make 'default-server' support 'source' keyword. 9284 - MINOR: server: Make 'default-server' support 'sni' keyword. 9285 - MINOR: server: Make 'default-server' support 'addr' keyword. 9286 - MINOR: server: Make 'default-server' support 'disabled' keyword. 9287 - MINOR: server: Add 'no-agent-check' server keyword. 9288 - DOC: server: Add docs for "server" and "default-server" new "no-*" and other settings. 9289 - MINOR: doc: fix use-server example (imap vs mail) 9290 - BUG/MEDIUM: tcp: don't require privileges to bind to device 9291 - BUILD: make the release script use shortlog for the final changelog 9292 - BUILD: scripts: fix typo in announce-release error message 9293 - CLEANUP: time: curr_sec_ms doesn't need to be exported 9294 - BUG/MEDIUM: server: Wrong server default CRT filenames initialization. 9295 - BUG/MEDIUM: peers: fix buffer overflow control in intdecode. 9296 - BUG/MEDIUM: buffers: Fix how input/output data are injected into buffers 9297 - BUG/MINOR: http: Fix conditions to clean up a txn and to handle the next request 9298 - CLEANUP: http: Remove channel_congested function 9299 - CLEANUP: buffers: Remove buffer_bounce_realign function 9300 - CLEANUP: buffers: Remove buffer_contig_area and buffer_work_area functions 9301 - MINOR: http: remove useless check on HTTP_MSGF_XFER_LEN for the request 9302 - MINOR: http: Add debug messages when HTTP body analyzers are called 9303 - BUG/MEDIUM: http: Fix blocked HTTP/1.0 responses when compression is enabled 9304 - BUG/MINOR: filters: Don't force the stream's wakeup when we wait in flt_end_analyze 9305 - DOC: fix parenthesis and add missing "Example" tags 9306 - DOC: update the contributing file 9307 - DOC: log-format/tcplog/httplog update 9308 - MINOR: config parsing: add warning when log-format/tcplog/httplog is overriden in "defaults" sections 9309 93102016/11/25 : 1.8-dev0 9311 93122016/11/25 : 1.7.0 9313 - SCRIPTS: make publish-release also copy the new SPOE doc 9314 - BUILD: http: include types/sample.h in proto_http.h 9315 - BUILD: debug/flags: remove test for SF_COMP_READY 9316 - CONTRIB: debug/flags: add check for SF_ERR_CHK_PORT 9317 - MINOR: lua: add function which return true if the channel is full. 9318 - MINOR: lua: add ip addresses and network manipulation function 9319 - CONTRIB: tcploop: scriptable TCP I/O for debugging purposes 9320 - CONTRIB: tcploop: implement fork() 9321 - CONTRIB: tcploop: implement logging when called with -v 9322 - CONTRIB: tcploop: update the usage output 9323 - CONTRIB: tcploop: support sending plain strings 9324 - CONTRIB: tcploop: don't report failed send() or recv() 9325 - CONTRIB: tcploop: add basic loops via a jump instruction 9326 - BUG/MEDIUM: channel: bad unlikely macro 9327 - CLEANUP: lua: move comment 9328 - CLEANUP: lua: control executed twice 9329 - BUG/MEDIUM: ssl: Store certificate filename in a variable 9330 - BUG/MINOR: ssl: Print correct filename when error occurs reading OCSP 9331 - CLEANUP: ssl: Remove goto after return dead code 9332 - CLEANUP: ssl: Fix bind keywords name in comments 9333 - DOC: ssl: Use correct wording for ca-sign-pass 9334 - CLEANUP: lua: avoid directly calling getsockname/getpeername() 9335 - BUG/MINOR: stick-table: handle out-of-memory condition gracefully 9336 - MINOR: cli: add private pointer and release function 9337 - MEDIUM: lua: Add cli handler for Lua 9338 - BUG/MEDIUM: connection: check the control layer before stopping polling 9339 - DEBUG: connection: mark the closed FDs with a value that is easier to detect 9340 - BUG/MEDIUM: stick-table: fix regression caused by recent fix for out-of-memory 9341 - BUG/MINOR: cli: properly decrement ref count on tables during failed dumps 9342 - BUG/MEDIUM: lua: In some case, the return of sample-fetche is ignored 9343 - MINOR: filters: Add check_timeouts callback to handle timers expiration on streams 9344 - MINOR: spoe: Add 'timeout processing' option to limit time to process an event 9345 - MINOR: spoe: Remove useless 'timeout ack' option 9346 - MINOR: spoe: Add 'option continue-on-error' statement in spoe-agent section 9347 - MINOR: spoe: Add "maxconnrate" and "maxerrrate" statements 9348 - MINOR: spoe: Add "option set-on-error" statement 9349 - MINOR: stats: correct documentation of process ID for typed output 9350 - BUILD: contrib: fix ip6range build on Centos 7 9351 - BUILD: fix build on Solaris 10/11 9352 - BUG/MINOR: cli: fix pointer size when reporting data/transport layer name 9353 - BUG/MINOR: cli: dequeue from the proxy when changing a maxconn 9354 - BUG/MINOR: cli: wake up the CLI's task after a timeout update 9355 - MINOR: connection: add a few functions to report the data and xprt layers' names 9356 - MINOR: connection: add names for transport and data layers 9357 - REORG: cli: split dumpstats.c in src/cli.c and src/stats.c 9358 - REORG: cli: split dumpstats.h in stats.h and cli.h 9359 - REORG: cli: move ssl CLI functions to ssl_sock.c 9360 - REORG: cli: move map and acl code to map.c 9361 - REORG: cli: move show stat resolvers to dns.c 9362 - MINOR: cli: create new function cli_has_level() to validate permissions 9363 - MINOR: server: create new function cli_find_server() to find a server 9364 - MINOR: proxy: create new function cli_find_frontend() to find a frontend 9365 - REORG: cli: move 'set server' to server.c 9366 - REORG: cli: move 'show pools' to memory.c 9367 - REORG: cli: move 'show servers' to proxy.c 9368 - REORG: cli: move 'show sess' to stream.c 9369 - REORG: cli: move 'show backend' to proxy.c 9370 - REORG: cli: move get/set weight to server.c 9371 - REORG: cli: move "show stat" to stats.c 9372 - REORG: cli: move "show info" to stats.c 9373 - REORG: cli: move dump_text(), dump_text_line(), and dump_binary() to standard.c 9374 - REORG: cli: move table dump/clear/set to stick_table.c 9375 - REORG: cli: move "show errors" out of cli.c 9376 - REORG: cli: make "show env" also use the generic keyword registration 9377 - REORG: cli: move "set timeout" to its own handler 9378 - REORG: cli: move "clear counters" to stats.c 9379 - REORG: cli: move "set maxconn global" to its own handler 9380 - REORG: cli: move "set maxconn server" to server.c 9381 - REORG: cli: move "set maxconn frontend" to proxy.c 9382 - REORG: cli: move "shutdown sessions server" to stream.c 9383 - REORG: cli: move "shutdown session" to stream.c 9384 - REORG: cli: move "shutdown frontend" to proxy.c 9385 - REORG: cli: move "{enable|disable} frontend" to proxy.c 9386 - REORG: cli: move "{enable|disable} server" to server.c 9387 - REORG: cli: move "{enable|disable} health" to server.c 9388 - REORG: cli: move "{enable|disable} agent" to server.c 9389 - REORG: cli: move the "set rate-limit" functions to their own parser 9390 - CLEANUP: cli: rename STAT_CLI_* to CLI_ST_* 9391 - CLEANUP: cli: simplify the request parser a little bit 9392 - CLEANUP: cli: remove assignments to st0 and st2 in keyword parsers 9393 - BUILD: server: remove a build warning introduced by latest series 9394 - BUG/MINOR: log-format: uncatched memory allocation functions 9395 - CLEANUP: log-format: useless file and line in json converter 9396 - CLEANUP/MINOR: log-format: unexport functions parse_logformat_var_args() and parse_logformat_var() 9397 - CLEANUP: log-format: fix return code of the function parse_logformat_var() 9398 - CLEANUP: log-format: fix return code of function parse_logformat_var_args() 9399 - CLEANUP: log-format: remove unused arguments 9400 - MEDIUM: log-format: strict parsing and enable fail 9401 - MEDIUM: log-format/conf: take into account the parse_logformat_string() return code 9402 - BUILD: ssl: make the SSL layer build again with openssl 0.9.8 9403 - BUILD: vars: remove a build warning on vars.c 9404 - MINOR: lua: add utility function for check boolean argument 9405 - MINOR: lua: Add tokenize function. 9406 - BUG/MINOR: conf: calloc untested 9407 - MINOR: http/conf: store the use_backend configuration file and line for logs 9408 - MEDIUM: log-format: Use standard HAProxy log system to report errors 9409 - CLEANUP: sample: report "converter" instead of "conv method" in error messages 9410 - BUG: spoe: Fix parsing of SPOE actions in ACK frames 9411 - MINOR: cli: make "show stat" support a proxy name 9412 - MINOR: cli: make "show errors" support a proxy name 9413 - MINOR: cli: make "show errors" capable of dumping only request or response 9414 - BUG/MINOR: freq-ctr: make swrate_add() support larger values 9415 - CLEANUP: counters: move from 3 types to 2 types 9416 - CLEANUP: cfgparse: cascade the warnif_misplaced_* rules 9417 - REORG: tcp-rules: move tcp rules processing to their own file 9418 - REORG: stkctr: move all the stick counters processing to stick-tables.c 9419 - DOC: update the roadmap file with the latest changes 9420 94212016/11/09 : 1.7-dev6 9422 - DOC: fix the entry for hash-balance-factor config option 9423 - DOC: Fix typo in description of `-st` parameter in man page 9424 - CLEANUP: cfgparse: Very minor spelling correction 9425 - MINOR: examples: Update haproxy.spec URLs to haproxy.org 9426 - BUG/MEDIUM: peers: on shutdown, wake up the appctx, not the stream 9427 - BUG/MEDIUM: peers: fix use after free in peer_session_create() 9428 - MINOR: peers: make peer_session_forceshutdown() use the appctx and not the stream 9429 - MINOR: peers: remove the pointer to the stream 9430 - BUG/MEDIUM: systemd-wrapper: return correct exit codes 9431 - DOC: stats: provide state details for show servers state 9432 - MEDIUM: tools: make str2ip2() preserve existing ports 9433 - CLEANUP: tools: make ipcpy() preserve the original port 9434 - OPTIM: http: move all http character classs tables into a single one 9435 - OPTIM: http: improve parsing performance of long header lines 9436 - OPTIM: http: improve parsing performance of long URIs 9437 - OPTIM: http: optimize lookup of comma and quote in header values 9438 - BUG/MEDIUM: srv-state: properly restore the DRAIN state 9439 - BUG/MINOR: srv-state: allow to have both CMAINT and FDRAIN flags 9440 - MINOR: server: do not emit warnings/logs/alerts on server state changes at boot 9441 - BUG/MEDIUM: servers: properly propagate the maintenance states during startup 9442 - MEDIUM: wurfl: add Scientiamobile WURFL device detection module 9443 - DOC: move the device detection modules documentation to their own files 9444 - CLEANUP: wurfl: reduce exposure in the rest of the code 9445 - MEDIUM: ssl: Add support for OpenSSL 1.1.0 9446 - MINOR: stream: make option contstats usable again 9447 - MEDIUM: tools: make str2sa_range() return the FQDN even when not resolving 9448 - MINOR: init: move apply_server_state in haproxy.c before MODE_CHECK 9449 - MAJOR: server: postpone address resolution 9450 - MINOR: new srv_admin flag: SRV_ADMF_RMAINT 9451 - MINOR: server: indicate in the logs when RMAINT is cleared 9452 - MINOR: stats: indicate it when a server is down due to resolution 9453 - MINOR: server: make srv_set_admin_state() capable of telling why this happens 9454 - MINOR: dns: implement extra 'hold' timers. 9455 - MAJOR: dns: runtime resolution can change server admin state 9456 - MEDIUM: cli: leave the RMAINT state when setting an IP address on the CLI 9457 - MEDIUM: server: add a new init-addr server line setting 9458 - MEDIUM: server: make use of init-addr 9459 - MINOR: server: implement init-addr none 9460 - MEDIUM: server: make libc resolution failure non-fatal 9461 - MINOR: server: add support for explicit numeric address in init-addr 9462 - DOC: add some documentation for the "init-addr" server keyword 9463 - MINOR: init: add -dr to ignore server address resolution failures 9464 - MEDIUM: server: do not restrict anymore usage of IP address from the state file 9465 - BUG: vars: Fix 'set-var' converter because of a typo 9466 - CLEANUP: remove last references to 'ruleset' section 9467 - MEDIUM: filters: Add attch/detach and stream_set_backend callbacks 9468 - MINOR: filters: Update filters documentation accordingly to recent changes 9469 - MINOR: filters: Call stream_set_backend callbacks before updating backend stats 9470 - MINOR: filters: Remove backend filters attached to a stream only for HTTP streams 9471 - MINOR: flt_trace: Add hexdump option to dump forwarded data 9472 - MINOR: cfgparse: Add functions to backup and restore registered sections 9473 - MINOR: cfgparse: Parse scope lines and save the last one parsed 9474 - REORG: sample: move code to release a sample expression in sample.c 9475 - MINOR: vars: Allow '.' in variable names 9476 - MINOR: vars: Add vars_set_by_name_ifexist function 9477 - MEDIUM: vars: Add a per-process scope for variables 9478 - MINOR: vars: Add 'unset-var' action/converter 9479 - MAJOR: spoe: Add an experimental Stream Processing Offload Engine 9480 - MINOR: spoe: add random ip-reputation service as SPOA example 9481 - MINOR: spoe/checks: Add support for SPOP health checks 9482 - DOC: update ROADMAP file 9483 94842016/10/25 : 1.7-dev5 9485 - MINOR: cfgparse: few memory leaks fixes. 9486 - MEDIUM: log: Decompose %Tq in %Th %Ti %TR 9487 - CLEANUP: logs: remove unused log format field definitions 9488 - BUILD/MAJOR:updated 51d Trie implementation to incorperate latest update to 51Degrees.c 9489 - BUG/MAJOR: stream: properly mark the server address as unset on connect retry 9490 - CLEANUP: proto_http: Removing useless variable assignation 9491 - CLEANUP: dumpstats: Removing useless variables allocation 9492 - CLEANUP: dns: Removing usless variable & assignation 9493 - BUG/MINOR: payload: fix SSLv2 version parser 9494 - MINOR: cli: allow the semi-colon to be escaped on the CLI 9495 - MINOR: cli: change a server health check port through the stats socket 9496 - BUG/MINOR: Fix OSX compilation errors 9497 - MAJOR: check: find out which port to use for health check at run time 9498 - MINOR: server: introduction of 3 new server flags 9499 - MINOR: new update_server_addr_port() function to change both server's ADDR and service PORT 9500 - MINOR: cli: ability to change a server's port 9501 - CLEANUP/MINOR dns: comment do not follow up code update 9502 - MINOR: chunk: new strncat function 9503 - MINOR: dns: wrong DNS_MAX_UDP_MESSAGE value 9504 - MINOR: dns: new MAX values 9505 - MINOR: dns: new macro to compute DNS header size 9506 - MINOR: dns: new DNS structures to store received packets 9507 - MEDIUM: dns: new DNS response parser 9508 - MINOR: dns: query type change when last record is a CNAME 9509 - MINOR: dns: proper domain name validation when receiving DNS response 9510 - MINOR: dns: comments in types/dns.h about structures endianness 9511 - BUG/MINOR: displayed PCRE version is running release 9512 - MINOR: show Built with PCRE version 9513 - MINOR: show Running on zlib version 9514 - MEDIUM: make SO_REUSEPORT configurable 9515 - MINOR: enable IP_BIND_ADDRESS_NO_PORT on backend connections 9516 - BUG/MEDIUM: http/compression: Fix how chunked data are copied during the HTTP body parsing 9517 - BUG/MINOR: stats: report the correct conn_time in backend's html output 9518 - BUG/MEDIUM: dns: don't randomly crash on out-of-memory 9519 - MINOR: Add fe_req_rate sample fetch 9520 - MEDIUM: peers: Fix a peer stick-tables synchronization issue. 9521 - MEDIUM: cli: register CLI keywords with cli_register_kw() 9522 - BUILD: Make use of accept4() on OpenBSD. 9523 - MINOR: tcp: make set-src/set-src-port and set-dst/set-dst-port commutative 9524 - DOC: fix missed entry for "set-{src,dst}{,-port}" 9525 - BUG/MINOR: vars: use sess and not s->sess in action_store() 9526 - BUG/MINOR: vars: make smp_fetch_var() more robust against misuses 9527 - BUG/MINOR: vars: smp_fetch_var() doesn't depend on HTTP but on the session 9528 - MINOR: stats: output dcon 9529 - CLEANUP: tcp rules: mention everywhere that tcp-conn rules are L4 9530 - MINOR: counters: add new fields for denied_sess 9531 - MEDIUM: tcp: add registration and processing of TCP L5 rules 9532 - MINOR: stats: emit dses 9533 - DOC: document tcp-request session 9534 - MINOR: ssl: add debug traces 9535 - BUILD/CLEANUP: ssl: Check BIO_reset() return code 9536 - BUG/MINOR: ssl: Check malloc return code 9537 - BUG/MINOR: ssl: prevent multiple entries for the same certificate 9538 - BUG/MINOR: systemd: make the wrapper return a non-null status code on error 9539 - BUG/MINOR: systemd: always restore signals before execve() 9540 - BUG/MINOR: systemd: check return value of calloc() 9541 - MINOR: systemd: report it when execve() fails 9542 - BUG/MEDIUM: systemd: let the wrapper know that haproxy has completed or failed 9543 - MINOR: proxy: add 'served' field to proxy, equal to total of all servers' 9544 - MINOR: backend: add hash-balance-factor option for hash-type consistent 9545 - MINOR: server: compute a "cumulative weight" to allow chash balancing to hit its target 9546 - MEDIUM: server: Implement bounded-load hash algorithm 9547 - SCRIPTS: make git-show-backports also dump a "git show" command 9548 - MINOR: build: Allow linking to device-atlas library file 9549 - MINOR: stats: Escape equals sign on socket dump 9550 95512016/08/14 : 1.7-dev4 9552 - MINOR: add list_append_word function 9553 - MEDIUM: init: use list_append_word in haproxy.c 9554 - MEDIUM: init: allow directory as argument of -f 9555 - CLEANUP: config: detect double registration of a config section 9556 - MINOR: log: add the %Td log-format specifier 9557 - MEDIUM: filters: Move HTTP headers filtering in its own callback 9558 - MINOR: filters: Simplify calls to analyzers using 2 new macros 9559 - MEDIUM: filters: Add pre and post analyzer callbacks 9560 - DOC: filters: Update the filters documentation accordingly to recent changes 9561 - BUG/MEDIUM: init: don't use environment locale 9562 - SCRIPTS: teach git-show-backports how to report upstream commits 9563 - SCRIPTS: make git-show-backports capable of limiting its history 9564 - BUG/MAJOR: fix listening IP address storage for frontends 9565 - BUG/MINOR: fix listening IP address storage for frontends (cont) 9566 - DOC: Fix typo so fetch is properly parsed by Cyril's converter 9567 - BUG/MAJOR: http: fix breakage of "reqdeny" causing random crashes 9568 - BUG/MEDIUM: stick-tables: fix breakage in table converters 9569 - MINOR: stick-table: change all stick-table converters' inputs to SMP_T_ANY 9570 - BUG/MEDIUM: dns: unbreak DNS resolver after header fix 9571 - BUILD: fix build on Solaris 11 9572 - BUG/MEDIUM: config: fix multiple declaration of section parsers 9573 - BUG/MEDIUM: stats: show servers state may show an servers from another backend 9574 - BUG/MEDIUM: fix risk of segfault with "show tls-keys" 9575 - MEDIUM: dumpstats: 'show tls-keys' is now able to show secrets 9576 - DOC: update doc about tls-tickets-keys dump 9577 - MEDIUM: tcp: add 'set-src' to 'tcp-request connection' 9578 - MINOR: set the CO_FL_ADDR_FROM_SET flags with 'set-src' 9579 - MEDIUM: tcp/http: add 'set-src-port' action 9580 - MEDIUM: tcp/http: new set-dst/set-dst-port actions 9581 - BUG/MEDIUM: sticktables: segfault in some configuration error cases 9582 - BUILD/MEDIUM: rebuild everything when an include file is changed 9583 - BUILD/MEDIUM: force a full rebuild if some build options change 9584 - BUG/MEDIUM: lua: converters doesn't work 9585 - BUG/MINOR: http: add-header: header name copied twice 9586 - BUG/MEDIUM: http: add-header: buffer overwritten 9587 - BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params() 9588 - MINOR: stream: export the function 'smp_create_src_stkctr' 9589 - BUG/MEDIUM: dumpstats: undefined behavior in stats_tlskeys_list() 9590 - MEDIUM: dumpstats: make stats_tlskeys_list() yield-aware during tls-keys dump 9591 - BUG/MINOR: http: url32+src should use the big endian version of url32 9592 - BUG/MINOR: http: url32+src should check cli_conn before using it 9593 - DOC: http: add documentation for url32 and url32+src 9594 - BUG/MINOR: fix http-response set-log-level parsing error 9595 - MINOR: systemd: Use variable for config and pidfile paths 9596 - MINOR: systemd: Perform sanity check on config before reload 9597 - MEDIUM: ssl: support SNI filters with multicerts 9598 - MINOR: ssl: crt-list parsing factor 9599 - BUILD: ssl: fix typo causing a build failure in the multicert patch 9600 - MINOR: listener: add the "accept-netscaler-cip" option to the "bind" keyword 9601 - MINOR: tcp: add "tcp-request connection expect-netscaler-cip layer4" 9602 - BUG/MINOR: init: always ensure that global.rlimit_nofile matches actual limits 9603 - BUG/MINOR: init: ensure that FD limit is raised to the max allowed 9604 - BUG/MEDIUM: external-checks: close all FDs right after the fork() 9605 - BUG/MAJOR: external-checks: use asynchronous signal delivery 9606 - BUG/MINOR: external-checks: do not unblock undesired signals 9607 - CLEANUP: external-check: don't block/unblock SIGCHLD when manipulating the list 9608 - BUG/MEDIUM: filters: Fix data filtering when data are modified 9609 - BUG/MINOR: filters: Fix HTTP parsing when a filter loops on data forwarding 9610 - BUG/MINOR: srv-state: fix incorrect output of state file 9611 - BUG/MINOR: ssl: close ssl key file on error 9612 - BUG/MINOR: http: fix misleading error message for response captures 9613 - BUG/BUILD: don't automatically run "make" on "make install" 9614 - DOC: add missing doc for http-request deny [deny_status <status>] 9615 - CLEANUP: dumpstats: u64 field is an unsigned type. 9616 - BUG/MEDIUM: http: unbreak uri/header/url_param hashing 9617 - BUG/MINOR: Rework slightly commit 9962f8fc to clean code and avoid mistakes 9618 - MINOR: new function my_realloc2 = realloc + free upon failure 9619 - CLEANUP: fixed some usages of realloc leading to memory leak 9620 - Revert "BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()" 9621 - CLEANUP: connection: using internal struct to hold source and dest port. 9622 - DOC: spelling fixes 9623 - BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params() 9624 - BUG/MEDIUM: dns: fix alignment issues in the DNS response parser 9625 - BUG/MINOR: Fix endiness issue in DNS header creation code 9626 - BUG/MEDIUM: lua: the function txn_done() from sample fetches can crash 9627 - BUG/MEDIUM: lua: the function txn_done() from action wrapper can crash 9628 - MEDIUM: http: implement http-response track-sc* directive 9629 - BUG/MINOR: peers: Fix peers data decoding issue 9630 - BUG/MINOR: peers: don't count track-sc multiple times on errors 9631 - MINOR: standard: add function "escape_string" 9632 - BUG/MEDIUM: log: use function "escape_string" instead of "escape_chunk" 9633 - MINOR: tcp: Return TCP statistics like RTT and RTT variance 9634 - DOC: lua: remove old functions 9635 - BUG/MEDIUM: lua: somme HTTP manipulation functions are called without valid requests 9636 - DOC: fix json converter example and error message 9637 - BUG/MEDIUM: stream-int: completely detach connection on connect error 9638 - DOC: minor typo fixes to improve HTML parsing by haproxy-dconv 9639 - BUILD: make proto_tcp.c compatible with musl library 9640 - BUG/MAJOR: compression: initialize avail_in/next_in even during flush 9641 - BUG/MEDIUM: samples: make smp_dup() always duplicate the sample 9642 - MINOR: sample: implement smp_is_safe() and smp_make_safe() 9643 - MINOR: sample: provide smp_is_rw() and smp_make_rw() 9644 - BUG/MAJOR: server: the "sni" directive could randomly cause trouble 9645 - BUG/MEDIUM: stick-tables: do not fail on string keys with no allocated size 9646 - BUG/MEDIUM: stick-table: properly convert binary samples to keys 9647 - MINOR: sample: use smp_make_rw() in upper/lower converters 9648 - MINOR: tcp: add dst_is_local and src_is_local 9649 - BUG/MINOR: peers: some updates are pushed twice after a resync. 9650 - BUILD: protocol: fix some build errors on OpenBSD 9651 - BUILD: log: iovec requires to include sys/uio.h on OpenBSD 9652 - BUILD: tcp: do not include netinet/ip.h for IP_TTL 9653 - BUILD: connection: fix build breakage on openbsd due to missing in_systm.h 9654 - BUILD: checks: remove the last strcat and eliminate a warning on OpenBSD 9655 - BUILD: tcp: define SOL_TCP when only IPPROTO_TCP exists 9656 - BUILD: compression: remove a warning when no compression lib is used 9657 - BUILD: poll: remove unused hap_fd_isset() which causes a warning with clang 9658 - MINOR: tcp: add further tcp info fetchers 9659 - BUG/MINOR: peers: empty chunks after a resync. 9660 - BUG/MAJOR: stick-counters: possible crash when using sc_trackers with wrong table 9661 - MINOR: standard.c: ipcmp() function to compare 2 IP addresses stored in 2 struct sockaddr_storage 9662 - MINOR: standard.c: ipcpy() function to copy an IP address from a struct sockaddr_storage into an other one 9663 - MAJOR: listen section: don't use first bind port anymore when no server ports are provided 9664 96652016/05/10 : 1.7-dev3 9666 - MINOR: sample: Moves ARGS underlying type from 32 to 64 bits. 9667 - BUG/MINOR: log: Don't use strftime() which can clobber timezone if chrooted 9668 - BUILD: namespaces: fix a potential build warning in namespaces.c 9669 - MINOR: da: Using ARG12 macro for the sample fetch and the convertor. 9670 - DOC: add encoding to json converter example 9671 - BUG/MINOR: conf: "listener id" expects integer, but its not checked 9672 - DOC: Clarify tunes.vars.xxx-max-size settings 9673 - CLEANUP: chunk: adding NULL check to chunk_dup allocation. 9674 - CLEANUP: connection: fix double negation on memcmp() 9675 - BUG/MEDIUM: peers: fix incorrect age in frequency counters 9676 - BUG/MEDIUM: Fix RFC5077 resumption when more than TLS_TICKETS_NO are present 9677 - BUG/MAJOR: Fix crash in http_get_fhdr with exactly MAX_HDR_HISTORY headers 9678 - BUG/MINOR: lua: can't load external libraries 9679 - BUG/MINOR: prevent the dump of uninitialized vars 9680 - CLEANUP: map: it seems that the map were planed to be chained 9681 - MINOR: lua: move class registration facilities 9682 - MINOR: lua: remove some useless checks 9683 - CLEANUP: lua: Remove two same functions 9684 - MINOR: lua: refactor the Lua object registration 9685 - MINOR: lua: precise message when a critical error is catched 9686 - MINOR: lua: post initialization 9687 - MINOR: lua: Add internal function which strip spaces 9688 - MINOR: lua: convert field to lua type 9689 - DOC: "addr" parameter applies to both health and agent checks 9690 - DOC: timeout client: pointers to timeout http-request 9691 - DOC: typo on stick-store response 9692 - DOC: stick-table: amend paragraph blaming the loss of table upon reload 9693 - DOC: typo: ACL subdir match 9694 - DOC: typo: maxconn paragraph is wrong due to a wrong buffer size 9695 - DOC: regsub: parser limitation about the inability to use closing square brackets 9696 - DOC: typo: req.uri is now replaced by capture.req.uri 9697 - DOC: name set-gpt0 mismatch with the expected keyword 9698 - MINOR: http: sample fetch which returns unique-id 9699 - MINOR: dumpstats: extract stats fields enum and names 9700 - MINOR: dumpstats: split stats_dump_info_to_buffer() in two parts 9701 - MINOR: dumpstats: split stats_dump_fe_stats() in two parts 9702 - MINOR: dumpstats: split stats_dump_li_stats() in two parts 9703 - MINOR: dumpstats: split stats_dump_sv_stats() in two parts 9704 - MINOR: dumpstats: split stats_dump_be_stats() in two parts 9705 - MINOR: lua: dump general info 9706 - MINOR: lua: add class proxy 9707 - MINOR: lua: add class server 9708 - MINOR: lua: add class listener 9709 - BUG/MEDIUM: stick-tables: some sample-fetch doesn't work in the connection state. 9710 - MEDIUM: proxy: use dynamic allocation for error dumps 9711 - CLEANUP: remove unneeded casts 9712 - CLEANUP: uniformize last argument of malloc/calloc 9713 - DOC: fix "needed" typo 9714 - BUG/MINOR: dumpstats: fix write to global chunk 9715 - BUG/MINOR: dns: inapropriate way out after a resolution timeout 9716 - BUG/MINOR: dns: trigger a DNS query type change on resolution timeout 9717 - CLEANUP: proto_http: few corrections for gcc warnings. 9718 - BUG/MINOR: DNS: resolution structure change 9719 - BUG/MINOR : allow to log cookie for tarpit and denied request 9720 - BUG/MEDIUM: ssl: rewind the BIO when reading certificates 9721 - OPTIM/MINOR: session: abort if possible before connecting to the backend 9722 - DOC: http: rename the unique-id sample and add the documentation 9723 - BUG/MEDIUM: trace.c: rdtsc() is defined in two files 9724 - BUG/MEDIUM: channel: fix miscalculation of available buffer space (2nd try) 9725 - BUG/MINOR: server: risk of over reading the pref_net array. 9726 - BUG/MINOR: cfgparse: couple of small memory leaks. 9727 - BUG/MEDIUM: sample: initialize the pointer before parse_binary call. 9728 - DOC: fix discrepancy in the example for http-request redirect 9729 - MINOR: acl: Add predefined METH_DELETE, METH_PUT 9730 - CLEANUP: .gitignore cleanup 9731 - DOC: Clarify IPv4 address / mask notation rules 9732 - CLEANUP: fix inconsistency between fd->iocb, proto->accept and accept() 9733 - BUG/MEDIUM: fix maxaccept computation on per-process listeners 9734 - BUG/MINOR: listener: stop unbound listeners on startup 9735 - BUG/MINOR: fix maxaccept computation according to the frontend process range 9736 - TESTS: add blocksig.c to run tests with all signals blocked 9737 - MEDIUM: unblock signals on startup. 9738 - MINOR: filters: Print the list of existing filters during HA startup 9739 - MINOR: filters: Typo in an error message 9740 - MINOR: filters: Filters must define the callbacks struct during config parsing 9741 - DOC: filters: Add filters documentation 9742 - BUG/MEDIUM: channel: don't allow to overwrite the reserve until connected 9743 - BUG/MEDIUM: channel: incorrect polling condition may delay event delivery 9744 - BUG/MEDIUM: channel: fix miscalculation of available buffer space (3rd try) 9745 - BUG/MEDIUM: log: fix risk of segfault when logging HTTP fields in TCP mode 9746 - MINOR: Add ability for agent-check to set server maxconn 9747 - CLEANUP: Use server_parse_maxconn_change_request for maxconn CLI updates 9748 - MINOR: filters: add opaque data 9749 - BUG/MEDIUM: lua: protects the upper boundary of the argument list for converters/fetches. 9750 - MINOR: lua: migrate the argument mask to 64 bits type. 9751 - BUG/MINOR: dumpstats: Fix the "Total bytes saved" counter in backends stats 9752 - BUG/MINOR: log: fix a typo that would cause %HP to log <BADREQ> 9753 - BUG/MEDIUM: http: fix incorrect reporting of server errors 9754 - MINOR: channel: add new function channel_congested() 9755 - BUG/MEDIUM: http: fix risk of CPU spikes with pipelined requests from dead client 9756 - BUG/MAJOR: channel: fix miscalculation of available buffer space (4th try) 9757 - BUG/MEDIUM: stream: ensure the SI_FL_DONT_WAKE flag is properly cleared 9758 - BUG/MEDIUM: channel: fix inconsistent handling of 4GB-1 transfers 9759 - BUG/MEDIUM: stats: show servers state may show an empty or incomplete result 9760 - BUG/MEDIUM: stats: show backend may show an empty or incomplete result 9761 - MINOR: stats: fix typo in help messages 9762 - MINOR: stats: show stat resolvers missing in the help message 9763 - BUG/MINOR: dns: fix DNS header definition 9764 - BUG/MEDIUM: dns: fix alignment issue when building DNS queries 9765 - CLEANUP: don't ignore scripts in .gitignore 9766 - BUILD: add a few release and backport scripts in scripts/ 9767 97682016/03/14 : 1.7-dev2 9769 - DOC: lua: fix lua API 9770 - DOC: mailers: typo in 'hostname' description 9771 - DOC: compression: missing mention of libslz for compression algorithm 9772 - BUILD/MINOR: regex: missing header 9773 - BUG/MINOR: stream: bad return code 9774 - DOC: lua: fix somme errors and add implicit types 9775 - MINOR: lua: add set/get priv for applets 9776 - BUG/MINOR: http: fix several off-by-one errors in the url_param parser 9777 - BUG/MINOR: http: Be sure to process all the data received from a server 9778 - MINOR: filters/http: Use a wrapper function instead of stream_int_retnclose 9779 - BUG/MINOR: chunk: make chunk_dup() always check and set dst->size 9780 - DOC: ssl: fixed some formatting errors in crt tag 9781 - MINOR: chunks: ensure that chunk_strcpy() adds a trailing zero 9782 - MINOR: chunks: add chunk_strcat() and chunk_newstr() 9783 - MINOR: chunk: make chunk_initstr() take a const string 9784 - MEDIUM: tools: add csv_enc_append() to preserve the original chunk 9785 - MINOR: tools: make csv_enc_append() always start at the first byte of the chunk 9786 - MINOR: lru: new function to delete <nb> least recently used keys 9787 - DOC: add Ben Shillito as the maintainer of 51d 9788 - BUG/MINOR: 51d: Ensures a unique domain for each configuration 9789 - BUG/MINOR: 51d: Aligns Pattern cache implementation with HAProxy best practices. 9790 - BUG/MINOR: 51d: Releases workset back to pool. 9791 - BUG/MINOR: 51d: Aligned const pointers to changes in 51Degrees. 9792 - CLEANUP: 51d: Aligned if statements with HAProxy best practices and removed casts from malloc. 9793 - MINOR: rename master process name in -Ds (systemd mode) 9794 - DOC: fix a few spelling mistakes 9795 - DOC: fix "workaround" spelling 9796 - BUG/MINOR: examples: Fixing haproxy.spec to remove references to .cfg files 9797 - MINOR: fix the return type for dns_response_get_query_id() function 9798 - MINOR: server state: missing LF (\n) on error message printed when parsing server state file 9799 - BUG/MEDIUM: dns: no DNS resolution happens if no ports provided to the nameserver 9800 - BUG/MAJOR: servers state: server port is erased when dns resolution is enabled on a server 9801 - BUG/MEDIUM: servers state: server port is used uninitialized 9802 - BUG/MEDIUM: config: Adding validation to stick-table expire value. 9803 - BUG/MEDIUM: sample: http_date() doesn't provide the right day of the week 9804 - BUG/MEDIUM: channel: fix miscalculation of available buffer space. 9805 - MEDIUM: pools: add a new flag to avoid rounding pool size up 9806 - BUG/MEDIUM: buffers: do not round up buffer size during allocation 9807 - BUG/MINOR: stream: don't force retries if the server is DOWN 9808 - BUG/MINOR: counters: make the sc-inc-gpc0 and sc-set-gpt0 touch the table 9809 - MINOR: unix: don't mention free ports on EAGAIN 9810 - BUG/CLEANUP: CLI: report the proper field states in "show sess" 9811 - MINOR: stats: send content-length with the redirect to allow keep-alive 9812 - BUG: stream_interface: Reuse connection even if the output channel is empty 9813 - DOC: remove old tunnel mode assumptions 9814 - BUG/MAJOR: http-reuse: fix risk of orphaned connections 9815 - BUG/MEDIUM: http-reuse: do not share private connections across backends 9816 - BUG/MINOR: ssl: Be sure to use unique serial for regenerated certificates 9817 - BUG/MINOR: stats: fix missing comma in stats on agent drain 9818 - MAJOR: filters: Add filters support 9819 - MINOR: filters: Do not reset stream analyzers if the client is gone 9820 - REORG: filters: Prepare creation of the HTTP compression filter 9821 - MAJOR: filters/http: Rewrite the HTTP compression as a filter 9822 - MEDIUM: filters: Use macros to call filters callbacks to speed-up processing 9823 - MEDIUM: filters: remove http_start_chunk, http_last_chunk and http_chunk_end 9824 - MEDIUM: filters: Replace filter_http_headers callback by an analyzer 9825 - MEDIUM: filters/http: Move body parsing of HTTP messages in dedicated functions 9826 - MINOR: filters: Add stream_filters structure to hide filters info 9827 - MAJOR: filters: Require explicit registration to filter HTTP body and TCP data 9828 - MINOR: filters: Remove unused or useless stuff and do small optimizations 9829 - MEDIUM: filters: Optimize the HTTP compression for chunk encoded response 9830 - MINOR: filters/http: Slightly update the parsing of chunks 9831 - MINOR: filters/http: Forward remaining data when a channel has no "data" filters 9832 - MINOR: filters: Add an filter example 9833 - MINOR: filters: Extract proxy stuff from the struct filter 9834 - MINOR: map: Add regex matching replacement 9835 - BUG/MINOR: lua: unsafe initialization 9836 - DOC: lua: fix somme errors 9837 - MINOR: lua: file dedicated to unsafe functions 9838 - MINOR: lua: add "now" time function 9839 - MINOR: standard: add RFC HTTP date parser 9840 - MINOR: lua: Add date functions 9841 - MINOR: lua: move common function 9842 - MINOR: lua: merge function 9843 - MINOR: lua: Add concat class 9844 - MINOR: standard: add function "escape_chunk" 9845 - MEDIUM: log: add a new log format flag "E" 9846 - DOC: add server name at rate-limit sessions example 9847 - BUG/MEDIUM: ssl: fix off-by-one in ALPN list allocation 9848 - BUG/MEDIUM: ssl: fix off-by-one in NPN list allocation 9849 - DOC: LUA: fix some typos and syntax errors 9850 - MINOR: cli: add a new "show env" command 9851 - MEDIUM: config: allow to manipulate environment variables in the global section 9852 - MEDIUM: cfgparse: reject incorrect 'timeout retry' keyword spelling in resolvers 9853 - MINOR: mailers: increase default timeout to 10 seconds 9854 - MINOR: mailers: use <CRLF> for all line endings 9855 - BUG/MAJOR: lua: segfault using Concat object 9856 - DOC: lua: copyrights 9857 - MINOR: common: mask conversion 9858 - MEDIUM: dns: extract options 9859 - MEDIUM: dns: add a "resolve-net" option which allow to prefer an ip in a network 9860 - MINOR: mailers: make it possible to configure the connection timeout 9861 - BUG/MAJOR: lua: applets can't sleep. 9862 - BUG/MINOR: server: some prototypes are renamed 9863 - BUG/MINOR: lua: Useless copy 9864 - BUG/MEDIUM: stats: stats bind-process doesn't propagate the process mask correctly 9865 - BUG/MINOR: server: fix the format of the warning on address change 9866 - CLEANUP: server: add "const" to some message strings 9867 - MINOR: server: generalize the "updater" source 9868 - BUG/MEDIUM: chunks: always reject negative-length chunks 9869 - BUG/MINOR: systemd: ensure we don't miss signals 9870 - BUG/MINOR: systemd: report the correct signal in debug message output 9871 - BUG/MINOR: systemd: propagate the correct signal to haproxy 9872 - MINOR: systemd: ensure a reload doesn't mask a stop 9873 - BUG/MEDIUM: cfgparse: wrong argument offset after parsing server "sni" keyword 9874 - CLEANUP: stats: Avoid computation with uninitialized bits. 9875 - CLEANUP: pattern: Ignore unknown samples in pat_match_ip(). 9876 - CLEANUP: map: Avoid memory leak in out-of-memory condition. 9877 - BUG/MINOR: tcpcheck: fix incorrect list usage resulting in failure to load certain configs 9878 - BUG/MAJOR: samples: check smp->strm before using it 9879 - MINOR: sample: add a new helper to initialize the owner of a sample 9880 - MINOR: sample: always set a new sample's owner before evaluating it 9881 - BUG/MAJOR: vars: always retrieve the stream and session from the sample 9882 - CLEANUP: payload: remove useless and confusing nullity checks for channel buffer 9883 - BUG/MINOR: ssl: fix usage of the various sample fetch functions 9884 - MINOR: stats: create fields types suitable for all CSV output data 9885 - MINOR: stats: add all the "show info" fields in a table 9886 - MEDIUM: stats: fill all the show info elements prior to displaying them 9887 - MINOR: stats: add a function to emit fields into a chunk 9888 - MINOR: stats: add stats_dump_info_fields() to dump one field per line 9889 - MEDIUM: stats: make use of stats_dump_info_fields() for "show info" 9890 - MINOR: stats: add a declaration of all stats fields 9891 - MINOR: stats: don't hard-code the CSV fields list anymore 9892 - MINOR: stats: create stats fields storage and CSV dump function 9893 - MEDIUM: stats: convert stats_dump_fe_stats() to use stats_dump_fields_csv() 9894 - MEDIUM: stats: make stats_dump_fe_stats() use stats fields for HTML dump 9895 - MEDIUM: stats: convert stats_dump_li_stats() to use stats_dump_fields_csv() 9896 - MEDIUM: stats: make stats_dump_li_stats() use stats fields for HTML dump 9897 - MEDIUM: stats: convert stats_dump_be_stats() to use stats_dump_fields_csv() 9898 - MEDIUM: stats: make stats_dump_be_stats() use stats fields for HTML dump 9899 - MEDIUM: stats: convert stats_dump_sv_stats() to use stats_dump_fields_csv() 9900 - MEDIUM: stats: make stats_dump_sv_stats() use the stats field for HTML 9901 - MEDIUM: stats: move the server state coloring logic to the server dump function 9902 - MINOR: stats: do not use srv->admin & STATS_ADMF_MAINT in HTML dumps 9903 - MINOR: stats: do not check srv->state for SRV_ST_STOPPED in HTML dumps 9904 - MINOR: stats: make CSV report server check status only when enabled 9905 - MINOR: stats: only report backend's down time if it has servers 9906 - MINOR: stats: prepend '*' in front of the check status when in progress 9907 - MINOR: stats: make HTML stats dump rely on the table for the check status 9908 - MINOR: stats: add agent_status, agent_code, agent_duration to output 9909 - MINOR: stats: add check_desc and agent_desc to the output fields 9910 - MINOR: stats: add check and agent's health values in the output 9911 - MEDIUM: stats: make the HTML server state dump use the CSV states 9912 - MEDIUM: stats: only report observe errors when observe is set 9913 - MEDIUM: stats: expose the same flags for CLI and HTTP accesses 9914 - MEDIUM: stats: report server's address in the CSV output 9915 - MEDIUM: stats: report the cookie value in the server & backend CSV dumps 9916 - MEDIUM: stats: compute the color code only in the HTML form 9917 - MEDIUM: stats: report the listeners' address in the CSV output 9918 - MEDIUM: stats: make it possible to report the WAITING state for listeners 9919 - REORG: stats: dump the frontend's HTML stats via a generic function 9920 - REORG: stats: dump the socket stats via the generic function 9921 - REORG: stats: dump the server stats via the generic function 9922 - REORG: stats: dump the backend stats via the generic function 9923 - MEDIUM: stats: add a new "mode" column to report the proxy mode 9924 - MINOR: stats: report the load balancing algorithm in CSV output 9925 - MINOR: stats: add 3 fields to report the frontend-specific connection stats 9926 - MINOR: stats: report number of intercepted requests for frontend and backends 9927 - MINOR: stats: introduce stats_dump_one_line() to dump one stats line 9928 - CLEANUP: stats: make stats_dump_fields_html() not rely on proxy anymore 9929 - MINOR: stats: add ST_SHOWADMIN to pass the admin info in the regular flags 9930 - MINOR: stats: make stats_dump_fields_html() not use &trash by default 9931 - MINOR: stats: add functions to emit typed fields into a chunk 9932 - MEDIUM: stats: support "show info typed" on the CLI 9933 - MEDIUM: stats: implement a typed output format for stats 9934 - DOC: document the "show info typed" and "show stat typed" output formats 9935 - MINOR: cfgparse: warn when uid parameter is not a number 9936 - MINOR: cfgparse: warn when gid parameter is not a number 9937 - BUG/MINOR: standard: Avoid free of non-allocated pointer 9938 - BUG/MINOR: pattern: Avoid memory leak on out-of-memory condition 9939 - CLEANUP: http: fix a build warning introduced by a recent fix 9940 - BUG/MINOR: log: GMT offset not updated when entering/leaving DST 9941 99422015/12/20 : 1.7-dev1 9943 - DOC: specify that stats socket doc (section 9.2) is in management 9944 - BUILD: install only relevant and existing documentation 9945 - CLEANUP: don't ignore debian/ directory if present 9946 - BUG/MINOR: dns: parsing error of some DNS response 9947 - BUG/MEDIUM: namespaces: don't fail if no namespace is used 9948 - BUG/MAJOR: ssl: free the generated SSL_CTX if the LRU cache is disabled 9949 - MEDIUM: dns: Don't use the ANY query type 9950 - BUILD: ssl: fix build error introduced in commit 7969a3 with OpenSSL < 1.0.0 9951 - DOC: fix a typo for a "deviceatlas" keyword 9952 - FIX: small typo in an example using the "Referer" header 9953 - MINOR: cli: ability to set per-server maxconn 9954 - DEBUG/MINOR: memory: add a build option to disable memory pools sharing 9955 - DEBUG/MEDIUM: memory: optionally protect free data in pools 9956 - DEBUG/MEDIUM: memory: add optional control pool memory operations 9957 - MEDIUM: memory: add accounting for failed allocations 9958 - BUG/MEDIUM: config: count memory limits on 64 bits, not 32 9959 - BUG/MAJOR: dns: first DNS response packet not matching queried hostname may lead to a loop 9960 - BUG/MINOR: dns: unable to parse CNAMEs response 9961 - BUG/MINOR: examples/haproxy.init: missing brace in quiet_check() 9962 - DOC: deviceatlas: more example use cases. 9963 - MINOR: config: allow IPv6 bracketed literals 9964 - BUG/BUILD: replace haproxy-systemd-wrapper with $(EXTRA) in install-bin. 9965 - BUILD: add Haiku as supported target. 9966 - BUG/MAJOR: http: don't requeue an idle connection that is already queued 9967 - DOC: typo on capture.res.hdr and capture.req.hdr 9968 - BUG/MINOR: dns: check for duplicate nameserver id in a resolvers section was missing 9969 - CLEANUP: use direction names in place of numeric values 9970 - BUG/MEDIUM: lua: sample fetches based on response doesn't work 9971 - MINOR: check: add agent-send server parameter 9972 - BUG/MINOR: http rule: http capture 'id' rule points to a non existing id 9973 - BUG/MINOR: server: check return value of fgets() in apply_server_state() 9974 - BUG/MINOR: acl: don't use record layer in req_ssl_ver 9975 - BUILD: freebsd: double declaration 9976 - BUG/MEDIUM: lua: clean output buffer 9977 - BUILD: check for libressl to be able to build against it 9978 - DOC: lua-api/index.rst small example fixes, spelling correction. 9979 - DOC: lua: architecture and first steps 9980 - DOC: relation between timeout http-request and option http-buffer-request 9981 - BUILD: Make deviceatlas require PCRE 9982 - BUG: http: do not abort keep-alive connections on server timeout 9983 - BUG/MEDIUM: http: switch the request channel to no-delay once done. 9984 - BUG/MINOR: lua: don't force-sslv3 LUA's SSL socket 9985 - BUILD/MINOR: http: proto_http.h needs sample.h 9986 - BUG/MEDIUM: http: don't enable auto-close on the response side 9987 - BUG/MEDIUM: stream: fix half-closed timeout handling 9988 - CLEANUP: compression: don't allocate DEFAULT_MAXZLIBMEM without USE_ZLIB 9989 - BUG/MEDIUM: cli: changing compression rate-limiting must require admin level 9990 - BUG/MEDIUM: sample: urlp can't match an empty value 9991 - BUILD: dumpstats: silencing warning for printf format specifier / time_t 9992 - CLEANUP: proxy: calloc call inverted arguments 9993 - MINOR: da: silent logging by default and displaying DeviceAtlas support if built. 9994 - BUG/MEDIUM: da: stop DeviceAtlas processing in the convertor if there is no input. 9995 - DOC: Edited 51Degrees section of README/ 9996 - BUG/MEDIUM: checks: email-alert not working when declared in defaults 9997 - BUG/MINOR: checks: email-alert causes a segfault when an unknown mailers section is configured 9998 - BUG/MINOR: checks: typo in an email-alert error message 9999 - BUG/MINOR: tcpcheck: conf parsing error when no port configured on server and last rule is a CONNECT with no port 10000 - BUG/MINOR: tcpcheck: conf parsing error when no port configured on server and first rule(s) is (are) COMMENT 10001 - BUG/MEDIUM: http: fix http-reuse when frontend and backend differ 10002 - DOC: prefer using http-request/response over reqXXX/rspXXX directives 10003 - CLEANUP: haproxy: using _GNU_SOURCE instead of __USE_GNU macro. 10004 - MINOR: ssl: Added cert_key_and_chain struct 10005 - MEDIUM: ssl: Added support for creating SSL_CTX with multiple certs 10006 - MINOR: ssl: Added multi cert support for crt-list config keyword 10007 - MEDIUM: ssl: Added multi cert support for loading crt directories 10008 - MEDIUM: ssl: Added support for Multi-Cert OCSP Stapling 10009 - BUILD: ssl: set SSL_SOCK_NUM_KEYTYPES with openssl < 1.0.2 10010 - MINOR: config: make tune.recv_enough configurable 10011 - BUG/MEDIUM: config: properly adjust maxconn with nbproc when memmax is forced 10012 - DOC: ssl: Adding docs for Multi-Cert bundling 10013 - BUG/MEDIUM: peers: table entries learned from a remote are pushed to others after a random delay. 10014 - BUG/MEDIUM: peers: old stick table updates could be repushed. 10015 - MINOR: lua: service/applet can have access to the HTTP headers when a POST is received 10016 - REORG/MINOR: lua: convert boolean "int" to bitfield 10017 - BUG/MEDIUM: lua: Lua applets must not fetch samples using http_txn 10018 - BUG/MINOR: lua: Lua applets must not use http_txn 10019 - BUG/MEDIUM: lua: Forbid HTTP applets from being called from tcp rulesets 10020 - BUG/MAJOR: lua: Do not force the HTTP analysers in use-services 10021 - CLEANUP: lua: bad error messages 10022 - CONTRIB: initiate a debugging suite to make debugging easier 10023 100242015/10/13 : 1.7-dev0 10025 - exact copy of 1.6.0 10026 100272015/10/13 : 1.6.0 10028 - BUG/MINOR: Handle interactive mode in cli handler 10029 - DOC: global section missing parameters 10030 - DOC: backend section missing parameters 10031 - DOC: stats paramaters available in frontend 10032 - MINOR: lru: do not allocate useless memory in lru64_lookup 10033 - BUG/MINOR: http: Add OPTIONS in supported http methods (found by find_http_meth) 10034 - BUG/MINOR: ssl: fix management of the cache where forged certificates are stored 10035 - MINOR: ssl: Release Servers SSL context when HAProxy is shut down 10036 - MINOR: ssl: Read the file used to generate certificates in any order 10037 - MINOR: ssl: Add support for EC for the CA used to sign generated certificates 10038 - MINOR: ssl: Add callbacks to set DH/ECDH params for generated certificates 10039 - BUG/MEDIUM: logs: fix time zone offset format in RFC5424 10040 - BUILD: Fix the build on OSX (htonll/ntohll) 10041 - BUILD: enable build on Linux/s390x 10042 - BUG/MEDIUM: lua: direction test failed 10043 - MINOR: lua: fix a spelling error in some error messages 10044 - CLEANUP: cli: ensure we can never double-free error messages 10045 - BUG/MEDIUM: lua: force server-close mode on Lua services 10046 - MEDIUM: init: support more command line arguments after pid list 10047 - MEDIUM: init: support a list of files on the command line 10048 - MINOR: debug: enable memory poisonning to use byte 0 10049 - BUILD: ssl: fix build error introduced by recent commit 10050 - BUG/MINOR: config: make the stats socket pass the correct proxy to the parsers 10051 - MEDIUM: server: implement TCP_USER_TIMEOUT on the server 10052 - DOC: mention the "namespace" options for bind and server lines 10053 - DOC: add the "management" documentation 10054 - DOC: move the stats socket documentation from config to management 10055 - MINOR: examples: update haproxy.spec to mention new docs 10056 - DOC: mention management.txt in README 10057 - DOC: remove haproxy-{en,fr}.txt 10058 - BUILD: properly report when USE_ZLIB and USE_SLZ are used together 10059 - MINOR: init: report use of libslz instead of "no compression" 10060 - CLEANUP: examples: remove some obsolete and confusing files 10061 - CLEANUP: examples: remove obsolete configuration file samples 10062 - CLEANUP: examples: fix the example file content-sw-sample.cfg 10063 - CLEANUP: examples: update sample file option-http_proxy.cfg 10064 - CLEANUP: examples: update sample file ssl.cfg 10065 - CLEANUP: tests: move a test file from examples/ to tests/ 10066 - CLEANUP: examples: shut up warnings in transparent proxy example 10067 - CLEANUP: tests: removed completely obsolete test files 10068 - DOC: update ROADMAP to remove what was done in 1.6 10069 - BUG/MEDIUM: pattern: fixup use_after_free in the pat_ref_delete_by_id 10070 100712015/10/06 : 1.6-dev7 10072 - MINOR: cli: Dump all resolvers stats if no resolver section is given 10073 - BUG: config: external-check command validation is checking for incorrect arguments. 10074 - DOC: documentation format cleanups 10075 - DOC: lua: few typos. 10076 - BUG/MEDIUM: str2ip: make getaddrinfo() consider local address selection policy 10077 - BUG/MEDIUM: logs: segfault writing to log from Lua 10078 - DOC: fix lua use-service example 10079 - MINOR: payload: add support for tls session ticket ext 10080 - MINOR: lua: remove the run flag 10081 - MEDIUM: lua: change the timeout execution 10082 - MINOR: lua: rename the tune.lua.applet-timeout 10083 - DOC: lua: update Lua doc 10084 - DOC: lua: update doc according with the last Lua changes 10085 - MINOR: http/tcp: fill the avalaible actions 10086 - DOC: reorder misplaced res.ssl_hello_type in the doc 10087 - BUG/MINOR: tcp: make silent-drop always force a TCP reset 10088 - CLEANUP: tcp: silent-drop: only drain the connection when quick-ack is disabled 10089 - BUILD: tcp: use IPPROTO_IP when SOL_IP is not available 10090 - BUILD: server: fix build warnings introduced by load-server-state 10091 - BUG/MEDIUM: server: fix misuse of format string in load-server-state's warnings 10092 100932015/09/28 : 1.6-dev6 10094 - BUG/MAJOR: can't enable a server through the stat socket 10095 - MINOR: server: Macro definition for server-state 10096 - MINOR: cli: new stats socket command: show servers state 10097 - DOC: stats socket command: show servers state 10098 - MINOR: config: new global directive server-state-base 10099 - DOC: global directive server-state-base 10100 - MINOR: config: new global section directive: server-state-file 10101 - DOC: new global directive: server-state-file 10102 - MINOR: config: new backend directives: load-server-state-from-file and server-state-file-name 10103 - DOC: load-server-state-from-file 10104 - MINOR: init: server state loaded from file 10105 - MINOR: server: startup slowstart task when using seamless reload of HAProxy 10106 - MINOR: cli: new stats socket command: show backend 10107 - DOC: servers state seamless reload example 10108 - BUG: dns: can't connect UDP socket on FreeBSD 10109 - MINOR: cfgparse: New function cfg_unregister_sections() 10110 - MINOR: chunk: New function free_trash_buffers() 10111 - BUG/MEDIUM: main: Freeing a bunch of static pointers 10112 - MINOR: proto_http: Externalisation of previously internal functions 10113 - MINOR: global: Few new struct fields for da module 10114 - MAJOR: da: Update of the DeviceAtlas API module 10115 - DOC: DeviceAtlas new keywords 10116 - DOC: README: DeviceAtlas sample configuration updates 10117 - MEDIUM: log: replace sendto() with sendmsg() in __send_log() 10118 - MEDIUM: log: use a separate buffer for the header and for the message 10119 - MEDIUM: logs: remove the hostname, tag and pid part from the logheader 10120 - MEDIUM: logs: add support for RFC5424 header format per logger 10121 - MEDIUM: logs: add a new RFC5424 log-format for the structured-data 10122 - DOC: mention support for the RFC5424 syslog message format 10123 - MEDIUM: logs: have global.log_send_hostname not contain the trailing space 10124 - MEDIUM: logs: pass the trailing "\n" as an iovec 10125 - BUG/MEDIUM: peers: some table updates are randomly not pushed. 10126 - BUG/MEDIUM: peers: same table updates re-pushed after a re-connect 10127 - BUG/MINOR: fct peer_prepare_ackmsg should not use trash. 10128 - MINOR: http: made CHECK_HTTP_MESSAGE_FIRST accessible to other functions 10129 - MINOR: global: Added new fields for 51Degrees device detection 10130 - DOC: Added more explanation for 51Degrees V3.2 10131 - BUILD: Changed 51Degrees option to support V3.2 10132 - MAJOR: 51d: Upgraded to support 51Degrees V3.2 and new features 10133 - MINOR: 51d: Improved string handling for LRU cache 10134 - DOC: add references to rise/fall for the fastinter explanation 10135 - MINOR: support cpu-map feature through the compile option USE_CPU_AFFINITY on FreeBSD 10136 - BUG/MAJOR: lua: potential unexpected aborts() 10137 - BUG/MINOR: lua: breaks the log message if his size exceed one buffer 10138 - MINOR: action: add private configuration 10139 - MINOR: action: add reference to the original keywork matched for the called parser. 10140 - MINOR: lua: change actions registration 10141 - MEDIUM: proto_http: smp_prefetch_http initialize txn 10142 - MINOR: channel: rename function chn_sess to chn_strm 10143 - CLEANUP: lua: align defines 10144 - MINOR: http: export http_get_path() function 10145 - MINOR: http: export the get_reason() function 10146 - MINOR: http: export function http_msg_analyzer() 10147 - MINOR: http: split initialization 10148 - MINOR: lua: reset pointer after use 10149 - MINOR: lua: identify userdata objects 10150 - MEDIUM: lua: use the function lua_rawset in place of lua_settable 10151 - BUG/MAJOR: lua: segfault after the channel data is modified by some Lua action. 10152 - CLEANUP: lua: use calloc in place of malloc 10153 - BUG/MEDIUM: lua: longjmp function must be unregistered 10154 - BUG/MEDIUM: lua: forces a garbage collection 10155 - BUG/MEDIUM: lua: wakeup task on bad conditions 10156 - MINOR: standard: avoid DNS resolution from the function str2sa_range() 10157 - MINOR: lua: extend socket address to support non-IP families 10158 - MINOR: lua/applet: the cosocket applet should use appctx_wakeup in place of task_wakeup 10159 - BUG/MEDIUM: lua: socket destroy before reading pending data 10160 - MEDIUM: lua: change the GC policy 10161 - OPTIM/MEDIUM: lua: executes the garbage collector only when using cosocket 10162 - BUG/MEDIUM: lua: don't reset undesired flags in hlua_ctx_resume 10163 - MINOR: applet: add init function 10164 - MINOR: applet: add an execution timeout 10165 - MINOR: stream/applet: add use-service action 10166 - MINOR: lua: add AppletTCP class and service 10167 - MINOR: lua: add AppletHTTP class and service 10168 - DOC: lua: some documentation update 10169 - DOC: add the documentation about internal circular lists 10170 - DOC: add a CONTRIBUTING file 10171 - DOC: add a MAINTAINERS file 10172 - BUG/MAJOR: peers: fix a crash when stopping peers on unbound processes 10173 - DOC: update coding-style to reference checkpatch.pl 10174 - BUG/MEDIUM: stick-tables: fix double-decrement of tracked entries 10175 - BUG/MINOR: args: add name for ARGT_VAR 10176 - DOC: add more entries to MAINTAINERS 10177 - DOC: add more entries to MAINTAINERS 10178 - CLEANUP: stream-int: remove obsolete function si_applet_call() 10179 - BUG/MAJOR: cli: do not dereference strm_li()->proto->name 10180 - BUG/MEDIUM: http: do not dereference strm_li(stream) 10181 - BUG/MEDIUM: proxy: do not dereference strm_li(stream) 10182 - BUG/MEDIUM: stream: do not dereference strm_li(stream) 10183 - MINOR: stream-int: use si_release_endpoint() to close idle conns 10184 - BUG/MEDIUM: payload: make req.payload and payload_lv aware of dynamic buffers 10185 - BUG/MEDIUM: acl: always accept match "found" 10186 - MINOR: applet: rename applet_runq to applet_active_queue 10187 - BUG/MAJOR: applet: use a separate run queue to maintain list integrity 10188 - MEDIUM: stream-int: split stream_int_update_conn() into si- and conn-specific parts 10189 - MINOR: stream-int: implement a new stream_int_update() function 10190 - MEDIUM: stream-int: factor out the stream update functions 10191 - MEDIUM: stream-int: call stream_int_update() from si_update() 10192 - MINOR: stream-int: export stream_int_update_* 10193 - MINOR: stream-int: move the applet_pause call out of the stream updates 10194 - MEDIUM: stream-int: clean up the conditions to enable reading in si_conn_wake_cb 10195 - MINOR: stream-int: implement the stream_int_notify() function 10196 - MEDIUM: stream-int: use the same stream notification function for applets and conns 10197 - MEDIUM: stream-int: completely remove stream_int_update_embedded() 10198 - MINOR: stream-int: rename si_applet_done() to si_applet_wake_cb() 10199 - BUG/MEDIUM: applet: fix reporting of broken write situation 10200 - BUG/MINOR: stats: do not call cli_release_handler 3 times 10201 - BUG/MEDIUM: cli: properly handle closed output 10202 - MINOR: cli: do not call the release handler on internal error. 10203 - BUG/MEDIUM: stream-int: avoid double-call to applet->release 10204 - DEBUG: add p_malloc() to return a poisonned memory area 10205 - CLEANUP: lua: remove unneeded memset(0) after calloc() 10206 - MINOR: lua: use the proper applet wakeup mechanism 10207 - BUG/MEDIUM: lua: better fix for the protocol check 10208 - BUG/MEDIUM: lua: properly set the target on the connection 10209 - MEDIUM: actions: pass a new "flags" argument to custom actions 10210 - MEDIUM: actions: add new flag ACT_FLAG_FINAL to notify about last call 10211 - MEDIUM: http: pass ACT_FLAG_FINAL to custom actions 10212 - MEDIUM: lua: only allow actions to yield if not in a final call 10213 - DOC: clarify how to make use of abstract sockets in socat 10214 - CLEANUP: config: make the errorloc/errorfile messages less confusing 10215 - MEDIUM: action: add a new flag ACT_FLAG_FIRST 10216 - BUG/MINOR: config: check that tune.bufsize is always positive 10217 - MEDIUM: config: set tune.maxrewrite to 1024 by default 10218 - DOC: add David Carlier as maintainer of da.c 10219 - DOC: fix some broken unexpected unicode chars in the Lua doc. 10220 - BUG/MEDIUM: proxy: ignore stopped peers 10221 - BUG/MEDIUM: proxy: do not wake stopped proxies' tasks during soft_stop() 10222 - MEDIUM: init: completely deallocate unused peers 10223 - BUG/MEDIUM: tcp: fix inverted condition to call custom actions 10224 - DOC: remove outdated actions lists on tcp-request/response 10225 - MEDIUM: tcp: add new tcp action "silent-drop" 10226 - DOC: add URLs to optional libraries in the README 10227 102282015/09/14 : 1.6-dev5 10229 - MINOR: dns: dns_resolution structure update: time_t to unsigned int 10230 - BUG/MEDIUM: dns: DNS resolution doesn't start 10231 - BUG/MAJOR: dns: dns client resolution infinite loop 10232 - MINOR: dns: coding style update 10233 - MINOR: dns: new bitmasks to use against DNS flags 10234 - MINOR: dns: dns_nameserver structure update: new counter for truncated response 10235 - MINOR: dns: New DNS response analysis code: DNS_RESP_TRUNCATED 10236 - MEDIUM: dns: handling of truncated response 10237 - MINOR: DNS client query type failover management 10238 - MINOR: dns: no expected DNS record type found 10239 - MINOR: dns: new flag to report that no IP can be found in a DNS response packet 10240 - BUG/MINOR: DNS request retry counter used for retry only 10241 - DOC: DNS documentation updated 10242 - MEDIUM: actions: remove ACTION_STOP 10243 - BUG/MEDIUM: lua: outgoing connection was broken since 1.6-dev2 (bis) 10244 - BUG/MINOR: lua: last log character truncated. 10245 - CLEANUP: typo: bad indent 10246 - CLEANUP: actions: missplaced includes 10247 - MINOR: build: missing header 10248 - CLEANUP: lua: Merge log functions 10249 - BUG/MAJOR: http: don't manipulate the server connection if it's killed 10250 - BUG/MINOR: http: remove stupid HTTP_METH_NONE entry 10251 - BUG/MAJOR: http: don't call http_send_name_header() after an error 10252 - MEDIUM: tools: make str2sa_range() optionally return the FQDN 10253 - BUG/MINOR: tools: make str2sa_range() report unresolvable addresses 10254 - BUG/MEDIUM: dns: use the correct server hostname when resolving 10255 102562015/08/30 : 1.6-dev4 10257 - MINOR: log: Add log-format variable %HQ, to log HTTP query strings 10258 - DOC: typo in 'redirect', 302 code meaning 10259 - DOC: typos in tcp-check expect examples 10260 - DOC: resolve-prefer default value and default-server update 10261 - MINOR: DNS counters: increment valid counter 10262 - BUG/MEDIUM: DNS resolution response parsing broken 10263 - MINOR: server: add new SRV_ADMF_CMAINT flag 10264 - MINOR: server SRV_ADMF_CMAINT flag doesn't imply SRV_ADMF_FMAINT 10265 - BUG/MEDIUM: dns: wrong first time DNS resolution 10266 - BUG/MEDIUM: lua: Lua tasks fail to start. 10267 - BUILD: add USE_LUA to BUILD_OPTIONS when it's used 10268 - DOC/MINOR: fix OpenBSD versions where haproxy works 10269 - MINOR: 51d: unable to start haproxy without "51degrees-data-file" 10270 - BUG/MEDIUM: peers: fix wrong message id on stick table updates acknowledgement. 10271 - BUG/MAJOR: peers: fix current table pointer not re-initialized on session release. 10272 - BUILD: ssl: Allow building against libssl without SSLv3. 10273 - DOC: clarify some points about SSL and the proxy protocol 10274 - DOC: mention support for RFC 5077 TLS Ticket extension in starter guide 10275 - BUG/MEDIUM: mailer: DATA part must be terminated with <CRLF>.<CRLF> 10276 - DOC: match several lua configuration option names to those implemented in code 10277 - MINOR cfgparse: Correct the mailer warning text to show the right names to the user 10278 - BUG/MINOR: ssl: TLS Ticket Key rotation broken via socket command 10279 - MINOR: stream: initialize the current_rule field to NULL on stream init 10280 - BUG/MEDIUM: lua: timeout error with converters, wrapper and actions. 10281 - CLEANUP: proto_http: remove useless initialisation 10282 - CLEANUP: http/tcp actions: remove the scope member 10283 - BUG/MINOR: proto_tcp: custom action continue is ignored 10284 - MINOR: proto_tcp: add session in the action prototype 10285 - MINOR: vars: reduce the code size of some wrappers 10286 - MINOR: Move http method enum from proto_http to sample 10287 - MINOR: sample: Add ipv6 to ipv4 and sint to ipv6 casts 10288 - MINOR: sample/proto_tcp: export "smp_fetch_src" 10289 - MEDIUM: cli: rely on the map's output type instead of the sample type 10290 - BUG/MEDIUM: stream: The stream doen't inherit SC from the session 10291 - BUG/MEDIUM: vars: segfault during the configuration parsing 10292 - BUG/MEDIUM: stick-tables: refcount error after copying SC for the session to the stream 10293 - BUG/MEDIUM: lua: bad error processing 10294 - MINOR: samples: rename a struct from sample_storage to sample_data 10295 - MINOR: samples: rename some struct member from "smp" to "data" 10296 - MEDIUM: samples: Use the "struct sample_data" in the "struct sample" 10297 - MINOR: samples: extract the anonymous union and create the union sample_value 10298 - MINOR: samples: rename union from "data" to "u" 10299 - MEDIUM: 51degrees: Adapt the 51Degrees library 10300 - MINOR: samples: data assignation simplification 10301 - MEDIUM: pattern/map: Maps can returns various types 10302 - MINOR: map: The map can return IPv4 and IPv6 10303 - MEDIUM: actions: Merge (http|tcp)-(request|reponse) action structs 10304 - MINOR: actions: Remove the data opaque pointer 10305 - MINOR: lua: use the hlua_rule type in place of opaque type 10306 - MINOR: vars: use the vars types as argument in place of opaque type 10307 - MINOR: proto_http: use an "expr" type in place of generic opaque type. 10308 - MINOR: proto_http: replace generic opaque types by real used types for the actions on thr request line 10309 - MINOR: proto_http: replace generic opaque types by real used types in "http_capture" 10310 - MINOR: proto_http: replace generic opaque types by real used types in "http_capture" by id 10311 - MEDIUM: track-sc: Move the track-sc configuration storage in the union 10312 - MEDIUM: capture: Move the capture configuration storage in the union 10313 - MINOR: actions: add "from" information 10314 - MINOR: actions: remove the mark indicating the last entry in enum 10315 - MINOR: actions: Declare all the embedded actions in the same header file 10316 - MINOR: actions: change actions names 10317 - MEDIUM: actions: Add standard return code for the action API 10318 - MEDIUM: actions: Merge (http|tcp)-(request|reponse) keywords structs 10319 - MINOR: proto_tcp: proto_tcp.h is now useles 10320 - MINOR: actions: mutualise the action keyword lookup 10321 - MEDIUM: actions: Normalize the return code of the configuration parsers 10322 - MINOR: actions: Remove wrappers 10323 - MAJOR: stick-tables: use sample types in place of dedicated types 10324 - MEDIUM: stick-tables: use the sample type names 10325 - MAJOR: stick-tables: remove key storage from the key struct 10326 - MEDIUM: stick-tables: Add GPT0 in the stick tables 10327 - MINOR: stick-tables: Add GPT0 access 10328 - MINOR: stick-tables: Add GPC0 actions 10329 - BUG/MEDIUM: lua: the lua fucntion Channel:close() causes a segfault 10330 - DOC: ssl: missing LF 10331 - MINOR: lua: add core.done() function 10332 - DOC: fix function name 10333 - BUG/MINOR: lua: in some case a sample may remain undefined 10334 - DOC: fix "http_action_set_req_line()" comments 10335 - MINOR: http: Action for manipulating the returned status code. 10336 - MEDIUM: lua: turns txn:close into txn:done 10337 - BUG/MEDIUM: lua: cannot process more Lua hooks after a "done()" function call 10338 - BUILD: link with libdl if needed for Lua support 10339 - CLEANUP: backend: factor out objt_server() in connect_server() 10340 - MEDIUM: backend: don't call si_alloc_conn() when we reuse a valid connection 10341 - MEDIUM: stream-int: simplify si_alloc_conn() 10342 - MINOR: stream-int: add new function si_detach_endpoint() 10343 - MINOR: server: add a list of private idle connections 10344 - MINOR: connection: add a new list member in the connection struct 10345 - MEDIUM: stream-int: queue idle connections at the server 10346 - MINOR: stream-int: make si_idle_conn() only accept valid connections 10347 - MINOR: server: add a list of already used idle connections 10348 - MINOR: connection: add a new flag CO_FL_PRIVATE 10349 - MINOR: config: add new setting "http-reuse" 10350 - MAJOR: backend: initial work towards connection reuse 10351 - MAJOR: backend: improve the connection reuse mechanism 10352 - MEDIUM: backend: implement "http-reuse safe" 10353 - MINOR: server: add a list of safe, already reused idle connections 10354 - MEDIUM: backend: add the "http-reuse aggressive" strategy 10355 - DOC: document the new http-reuse directive 10356 - DOC: internals: document next steps for HTTP connection reuse 10357 - DOC: mention that %ms is left-padded with zeroes. 10358 - MINOR: init: indicate to check 'bind' lines when no listeners were found. 10359 - MAJOR: http: remove references to appsession 10360 - CLEANUP: config: remove appsession initialization 10361 - CLEANUP: appsession: remove appsession.c and sessionhash.c 10362 - CLEANUP: tests: remove sessionhash_test.c and test-cookie-appsess.cfg 10363 - CLEANUP: proxy: remove last references to appsession 10364 - CLEANUP: appsession: remove the last include files 10365 - DOC: remove documentation about appsession 10366 - CLEANUP: .gitignore: ignore more test files 10367 - CLEANUP: .gitignore: finally ignore everything but what is known. 10368 - MEDIUM: config: emit a warning on a frontend without listener 10369 - DOC: add doc/internals/entities-v2.txt 10370 - DOC: add doc/linux-syn-cookies.txt 10371 - DOC: add design thoughts on HTTP/2 10372 - DOC: add some thoughts on connection sharing for HTTP/2 10373 - DOC: add design thoughts on dynamic buffer allocation 10374 - BUG/MEDIUM: counters: ensure that src_{inc,clr}_gpc0 creates a missing entry 10375 - DOC: add new file intro.txt 10376 - MAJOR: tproxy: remove support for cttproxy 10377 - BUG/MEDIUM: lua: outgoing connection was broken since 1.6-dev2 10378 - DOC: lua: replace txn:close with txn:done in lua-api 10379 - DOC: intro: minor updates and fixes 10380 - DOC: intro: fix too long line. 10381 - DOC: fix example of http-request using ssl_fc_session_id 10382 - BUG/MEDIUM: lua: txn:done() still causes a segfault in TCP mode 10383 - CLEANUP: lua: fix some indent issues 10384 - BUG/MEDIUM: lua: fix a segfault in txn:done() if called twice 10385 - DOC: lua: mention than txn:close was renamed txn:done. 10386 103872015/07/22 : 1.6-dev3 10388 - CLEANUP: sample: generalize sample_fetch_string() as sample_fetch_as_type() 10389 - MEDIUM: http: Add new 'set-src' option to http-request 10390 - DOC usesrc root privileges requirments 10391 - BUG/MINOR: dns: wrong time unit for some DNS default parameters 10392 - MINOR: proxy: bit field for proxy_find_best_match diff status 10393 - MINOR: server: new server flag: SRV_F_FORCED_ID 10394 - MINOR: server: server_find functions: id, name, best_match 10395 - DOC: dns: fix chapters syntax 10396 - BUILD/MINOR: tools: rename popcount to my_popcountl 10397 - BUILD: add netbsd TARGET 10398 - MEDIUM: 51Degrees code refactoring and cleanup 10399 - MEDIUM: 51d: add LRU-based cache on User-Agent string detection 10400 - DOC: add notes about the "51degrees-cache-size" parameter 10401 - BUG/MEDIUM: 51d: possible incorrect operations on smp->data.str.str 10402 - BUG/MAJOR: connection: fix TLV offset calculation for proxy protocol v2 parsing 10403 - MINOR: Add sample fetch to detect Supported Elliptic Curves Extension 10404 - BUG/MINOR: payload: Add volatile flag to smp_fetch_req_ssl_ec_ext 10405 - BUG/MINOR: lua: type error in the arguments wrapper 10406 - CLEANUP: vars: remove unused struct 10407 - BUG/MINOR: http/sample: gmtime/localtime can fail 10408 - MINOR: standard: add 64 bits conversion functions 10409 - MAJOR: sample: converts uint and sint in 64 bits signed integer 10410 - MAJOR: arg: converts uint and sint in sint 10411 - MEDIUM: sample: switch to saturated arithmetic 10412 - MINOR: vars: returns variable content 10413 - MEDIUM: vars/sample: operators can use variables as parameter 10414 - BUG/MINOR: ssl: fix smp_fetch_ssl_fc_session_id 10415 - BUILD/MINOR: lua: fix a harmless build warning 10416 - BUILD/MINOR: stats: fix build warning due to condition always true 10417 - BUG/MAJOR: lru: fix unconditional call to free due to unexpected semi-colon 10418 - BUG/MEDIUM: logs: fix improper systematic use of quotes with a few tags 10419 - BUILD/MINOR: lua: ensure that hlua_ctx_destroy is properly defined 10420 - BUG/MEDIUM: lru: fix possible memory leak when ->free() is used 10421 - MINOR: vars: make the accounting not depend on the stream 10422 - MEDIUM: vars: move the session variables to the session, not the stream 10423 - BUG/MEDIUM: vars: do not freeze the connection when the expression cannot be fetched 10424 - BUG/MAJOR: buffers: make the buffer_slow_realign() function respect output data 10425 - BUG/MAJOR: tcp: tcp rulesets were still broken 10426 - MINOR: stats: improve compression stats reporting 10427 - MINOR: ssl: make self-generated certs also work with raw IPv6 addresses 10428 - CLEANUP: ssl: make ssl_sock_generated_cert_serial() take a const 10429 - CLEANUP: ssl: make ssl_sock_generate_certificate() use ssl_sock_generated_cert_serial() 10430 - BUG/MINOR: log: missing some ARGC_* entries in fmt_directives() 10431 - MINOR: args: add new context for servers 10432 - MINOR: stream: maintain consistence between channel_forward and HTTP forward 10433 - MINOR: ssl: provide ia function to set the SNI extension on a connection 10434 - MEDIUM: ssl: add sni support on the server lines 10435 - CLEANUP: stream: remove a useless call to si_detach() 10436 - CLEANUP: stream-int: fix a few outdated comments about stream_int_register_handler() 10437 - CLEANUP: stream-int: remove stream_int_unregister_handler() and si_detach() 10438 - MINOR: stream-int: only use si_release_endpoint() to release a connection 10439 - MINOR: standard: provide htonll() and ntohll() 10440 - CLEANUP/MINOR: dns: dns_str_to_dn_label() only needs a const char 10441 - BUG/MAJOR: dns: fix the length of the string to be copied 10442 104432015/06/17 : 1.6-dev2 10444 - BUG/MINOR: ssl: Display correct filename in error message 10445 - MEDIUM: logs: Add HTTP request-line log format directives 10446 - BUG/MEDIUM: check: tcpcheck regression introduced by e16c1b3f 10447 - BUG/MINOR: check: fix tcpcheck error message 10448 - MINOR: use an int instead of calling tcpcheck_get_step_id 10449 - MINOR: tcpcheck_rule structure update 10450 - MINOR: include comment in tcpcheck error log 10451 - DOC: tcpcheck comment documentation 10452 - MEDIUM: server: add support for changing a server's address 10453 - MEDIUM: server: change server ip address from stats socket 10454 - MEDIUM: protocol: add minimalist UDP protocol client 10455 - MEDIUM: dns: implement a DNS resolver 10456 - MAJOR: server: add DNS-based server name resolution 10457 - DOC: server name resolution + proto DNS 10458 - MINOR: dns: add DNS statistics 10459 - MEDIUM: http: configurable http result codes for http-request deny 10460 - BUILD: Compile clean when debug options defined 10461 - MINOR: lru: Add the possibility to free data when an item is removed 10462 - MINOR: lru: Add lru64_lookup function 10463 - MEDIUM: ssl: Add options to forge SSL certificates 10464 - MINOR: ssl: Export functions to manipulate generated certificates 10465 - MEDIUM: config: add DeviceAtlas global keywords 10466 - MEDIUM: global: add the DeviceAtlas required elements to struct global 10467 - MEDIUM: sample: add the da-csv converter 10468 - MEDIUM: init: DeviceAtlas initialization 10469 - BUILD: Makefile: add options to build with DeviceAtlas 10470 - DOC: README: explain how to build with DeviceAtlas 10471 - BUG/MEDIUM: http: fix the url_param fetch 10472 - BUG/MEDIUM: init: segfault if global._51d_property_names is not initialized 10473 - MAJOR: peers: peers protocol version 2.0 10474 - MINOR: peers: avoid re-scheduling of pending stick-table's updates still not pushed. 10475 - MEDIUM: peers: re-schedule stick-table's entry for sync when data is modified. 10476 - MEDIUM: peers: support of any stick-table data-types for sync 10477 - BUG/MAJOR: sample: regression on sample cast to stick table types. 10478 - CLEANUP: deinit: remove codes for cleaning p->block_rules 10479 - DOC: Fix L4TOUT typo in documentation 10480 - DOC: set-log-level in Logging section preamble 10481 - BUG/MEDIUM: compat: fix segfault on FreeBSD 10482 - MEDIUM: check: include server address and port in the send-state header 10483 - MEDIUM: backend: Allow redispatch on retry intervals 10484 - MINOR: Add TLS ticket keys reference and use it in the listener struct 10485 - MEDIUM: Add support for updating TLS ticket keys via socket 10486 - DOC: Document new socket commands "show tls-keys" and "set ssl tls-key" 10487 - MINOR: Add sample fetch which identifies if the SSL session has been resumed 10488 - DOC: Update doc about weight, act and bck fields in the statistics 10489 - BUG/MEDIUM: ssl: fix tune.ssl.default-dh-param value being overwritten 10490 - MINOR: ssl: add a destructor to free allocated SSL ressources 10491 - MEDIUM: ssl: add the possibility to use a global DH parameters file 10492 - MEDIUM: ssl: replace standards DH groups with custom ones 10493 - MEDIUM: stats: Add enum srv_stats_state 10494 - MEDIUM: stats: Separate server state and colour in stats 10495 - MEDIUM: stats: Only report drain state in stats if server has SRV_ADMF_DRAIN set 10496 - MEDIUM: stats: Differentiate between DRAIN and DRAIN (agent) 10497 - MEDIUM: Lower priority of email alerts for log-health-checks messages 10498 - MEDIUM: Send email alerts when servers are marked as UP or enter the drain state 10499 - MEDIUM: Document when email-alerts are sent 10500 - BUG/MEDIUM: lua: bad argument number in analyser and in error message 10501 - MEDIUM: lua: automatically converts strings in proxy, tables, server and ip 10502 - BUG/MINOR: utf8: remove compilator warning 10503 - MEDIUM: map: uses HAProxy facilities to store default value 10504 - BUG/MINOR: lua: error in detection of mandatory arguments 10505 - BUG/MINOR: lua: set current proxy as default value if it is possible 10506 - BUG/MEDIUM: http: the action set-{method|path|query|uri} doesn't run. 10507 - BUG/MEDIUM: lua: undetected infinite loop 10508 - BUG/MAJOR: http: don't read past buffer's end in http_replace_value 10509 - BUG/MEDIUM: http: the function "(req|res)-replace-value" doesn't respect the HTTP syntax 10510 - MEDIUM/CLEANUP: http: rewrite and lighten http_transform_header() prototype 10511 - BUILD: lua: it miss the '-ldl' directive 10512 - MEDIUM: http: allows 'R' and 'S' in the protocol alphabet 10513 - MINOR: http: split the function http_action_set_req_line() in two parts 10514 - MINOR: http: split http_transform_header() function in two parts. 10515 - MINOR: http: export function inet_set_tos() 10516 - MINOR: lua: txn: add function set_(loglevel|tos|mark) 10517 - MINOR: lua: create and register HTTP class 10518 - DOC: lua: fix some typos 10519 - MINOR: lua: add log functions 10520 - BUG/MINOR: lua: Fix SSL initialisation 10521 - DOC: lua: some fixes 10522 - MINOR: lua: (req|res)_get_headers return more than one header value 10523 - MINOR: lua: map system integration in Lua 10524 - BUG/MEDIUM: http: functions set-{path,query,method,uri} breaks the HTTP parser 10525 - MINOR: sample: add url_dec converter 10526 - MEDIUM: sample: fill the struct sample with the session, proxy and stream pointers 10527 - MEDIUM: sample change the prototype of sample-fetches and converters functions 10528 - MINOR: sample: fill the struct sample with the options. 10529 - MEDIUM: sample: change the prototype of sample-fetches functions 10530 - MINOR: http: split the url_param in two parts 10531 - CLEANUP: http: bad indentation 10532 - MINOR: http: add body_param fetch 10533 - MEDIUM: http: url-encoded parsing function can run throught wrapped buffer 10534 - DOC: http: req.body_param documentation 10535 - MINOR: proxy: custom capture declaration 10536 - MINOR: capture: add two "capture" converters 10537 - MEDIUM: capture: Allow capture with slot identifier 10538 - MINOR: http: add array of generic pointers in http_res_rules 10539 - MEDIUM: capture: adds http-response capture 10540 - MINOR: common: escape CSV strings 10541 - MEDIUM: stats: escape some strings in the CSV dump 10542 - MINOR: tcp: add custom actions that can continue tcp-(request|response) processing 10543 - MINOR: lua: Lua tcp action are not final action 10544 - DOC: lua: schematics about lua socket organization 10545 - BUG/MINOR: debug: display (null) in place of "meth" 10546 - DOC: mention the "lua action" in documentation 10547 - MINOR: standard: add function that converts signed int to a string 10548 - BUG/MINOR: sample: wrong conversion of signed values 10549 - MEDIUM: sample: Add type any 10550 - MINOR: debug: add a special converter which display its input sample content. 10551 - MINOR: tcp: increase the opaque data array 10552 - MINOR: tcp/http/conf: extends the keyword registration options 10553 - MINOR: build: fix build dependency 10554 - MEDIUM: vars: adds support of variables 10555 - MINOR: vars: adds get and set functions 10556 - MINOR: lua: Variable access 10557 - MINOR: samples: add samples which returns constants 10558 - BUG/MINOR: vars/compil: fix some warnings 10559 - BUILD: add 51degrees options to makefile. 10560 - MINOR: global: add several 51Degrees members to global 10561 - MINOR: config: add 51Degrees config parsing. 10562 - MINOR: init: add 51Degrees initialisation code 10563 - MEDIUM: sample: add fiftyone_degrees converter. 10564 - MEDIUM: deinit: add cleanup for 51Degrees to deinit 10565 - MEDIUM: sample: add trie support to 51Degrees 10566 - DOC: add 51Degrees notes to configuration.txt. 10567 - DOC: add build indications for 51Degrees to README. 10568 - MEDIUM: cfgparse: introduce weak and strong quoting 10569 - BUG/MEDIUM: cfgparse: incorrect memmove in quotes management 10570 - MINOR: cfgparse: remove line size limitation 10571 - MEDIUM: cfgparse: expand environment variables 10572 - BUG/MINOR: cfgparse: fix typo in 'option httplog' error message 10573 - BUG/MEDIUM: cfgparse: segfault when userlist is misused 10574 - CLEANUP: cfgparse: remove reference to 'ruleset' section 10575 - MEDIUM: cfgparse: check section maximum number of arguments 10576 - MEDIUM: cfgparse: max arguments check in the global section 10577 - MEDIUM: cfgparse: check max arguments in the proxies sections 10578 - CLEANUP: stream-int: remove a redundant clearing of the linger_risk flag 10579 - MINOR: connection: make conn_sock_shutw() actually perform the shutdown() call 10580 - MINOR: stream-int: use conn_sock_shutw() to shutdown a connection 10581 - MINOR: connection: perform the call to xprt->shutw() in conn_data_shutw() 10582 - MEDIUM: stream-int: replace xprt->shutw calls with conn_data_shutw() 10583 - MINOR: checks: use conn_data_shutw_hard() instead of call via xprt 10584 - MINOR: connection: implement conn_sock_send() 10585 - MEDIUM: stream-int: make conn_si_send_proxy() use conn_sock_send() 10586 - MEDIUM: connection: make conn_drain() perform more controls 10587 - REORG: connection: move conn_drain() to connection.c and rename it 10588 - CLEANUP: stream-int: remove inclusion of fd.h that is not used anymore 10589 - MEDIUM: channel: don't always set CF_WAKE_WRITE on bi_put* 10590 - CLEANUP: lua: don't use si_ic/si_oc on known stream-ints 10591 - BUG/MEDIUM: peers: correctly configure the client timeout 10592 - MINOR: peers: centralize configuration of the peers frontend 10593 - MINOR: proxy: store the default target into the frontend's configuration 10594 - MEDIUM: stats: use frontend_accept() as the accept function 10595 - MEDIUM: peers: use frontend_accept() instead of peer_accept() 10596 - CLEANUP: listeners: remove unused timeout 10597 - MEDIUM: listener: store the default target per listener 10598 - BUILD: fix automatic inclusion of libdl. 10599 - MEDIUM: lua: implement a simple memory allocator 10600 - MEDIUM: compression: postpone buffer adjustments after compression 10601 - MEDIUM: compression: don't send leading zeroes with chunk size 10602 - BUG/MINOR: compression: consider the expansion factor in init 10603 - MINOR: http: check the algo name "identity" instead of the function pointer 10604 - CLEANUP: compression: statify all algo-specific functions 10605 - MEDIUM: compression: add a distinction between UA- and config- algorithms 10606 - MEDIUM: compression: add new "raw-deflate" compression algorithm 10607 - MEDIUM: compression: split deflate_flush() into flush and finish 10608 - CLEANUP: compression: remove unused reset functions 10609 - MAJOR: compression: integrate support for libslz 10610 - BUG/MEDIUM: http: hdr_cnt would not count any header when called without name 10611 - BUG/MAJOR: http: null-terminate the http actions keywords list 10612 - CLEANUP: lua: remove the unused hlua_sleep memory pool 10613 - BUG/MAJOR: lua: use correct object size when initializing a new converter 10614 - CLEANUP: lua: remove hard-coded sizeof() in object creations and mallocs 10615 - CLEANUP: lua: fix confusing local variable naming in hlua_txn_new() 10616 - CLEANUP: hlua: stop using variable name "s" alternately for hlua_txn and hlua_smp 10617 - CLEANUP: lua: get rid of the last "*ht" for struct hlua_txn. 10618 - CLEANUP: lua: rename last occurrences of "*s" to "*htxn" for hlua_txn 10619 - CLEANUP: lua: rename variable "sc" for struct hlua_smp 10620 - CLEANUP: lua: get rid of the last two "*hs" for hlua_smp 10621 - REORG/MAJOR: session: rename the "session" entity to "stream" 10622 - REORG/MEDIUM: stream: rename stream flags from SN_* to SF_* 10623 - MINOR: session: start to reintroduce struct session 10624 - MEDIUM: stream: allocate the session when a stream is created 10625 - MEDIUM: stream: move the listener's pointer to the session 10626 - MEDIUM: stream: move the frontend's pointer to the session 10627 - MINOR: session: add a pointer to the session's origin 10628 - MEDIUM: session: use the pointer to the origin instead of s->si[0].end 10629 - CLEANUP: sample: remove useless tests in fetch functions for l4 != NULL 10630 - MEDIUM: http: move header captures from http_txn to struct stream 10631 - MINOR: http: create a dedicated pool for http_txn 10632 - MAJOR: http: move http_txn out of struct stream 10633 - MAJOR: sample: don't pass l7 anymore to sample fetch functions 10634 - CLEANUP: lua: remove unused hlua_smp->l7 and hlua_txn->l7 10635 - MEDIUM: http: remove the now useless http_txn from {req/res} rules 10636 - CLEANUP: lua: don't pass http_txn anymore to hlua_request_act_wrapper() 10637 - MAJOR: sample: pass a pointer to the session to each sample fetch function 10638 - MINOR: stream: provide a few helpers to retrieve frontend, listener and origin 10639 - CLEANUP: stream: don't set ->target to the incoming connection anymore 10640 - MINOR: stream: move session initialization before the stream's 10641 - MINOR: session: store the session's accept date 10642 - MINOR: session: don't rely on s->logs.logwait in embryonic sessions 10643 - MINOR: session: implement session_free() and use it everywhere 10644 - MINOR: session: add stick counters to the struct session 10645 - REORG: stktable: move the stkctr_* functions from stream to sticktable 10646 - MEDIUM: streams: support looking up stkctr in the session 10647 - MEDIUM: session: update the session's stick counters upon session_free() 10648 - MEDIUM: proto_tcp: track the session's counters in the connection ruleset 10649 - MAJOR: tcp: make tcp_exec_req_rules() only rely on the session 10650 - MEDIUM: stream: don't call stream_store_counters() in kill_mini_session() nor session_accept() 10651 - MEDIUM: stream: move all the session-specific stuff of stream_accept() earlier 10652 - MAJOR: stream: don't initialize the stream anymore in stream_accept 10653 - MEDIUM: session: remove the task pointer from the session 10654 - REORG: session: move the session parts out of stream.c 10655 - MINOR: stream-int: make appctx_new() take the applet in argument 10656 - MEDIUM: peers: move the appctx initialization earlier 10657 - MINOR: session: introduce session_new() 10658 - MINOR: session: make use of session_new() when creating a new session 10659 - MINOR: peers: make use of session_new() when creating a new session 10660 - MEDIUM: peers: initialize the task before the stream 10661 - MINOR: session: set the CO_FL_CONNECTED flag on the connection once ready 10662 - CLEANUP: stream.c: do not re-attach the connection to the stream 10663 - MEDIUM: stream: isolate connection-specific initialization code 10664 - MEDIUM: stream: also accept appctx as origin in stream_accept_session() 10665 - MEDIUM: peers: make use of stream_accept_session() 10666 - MEDIUM: frontend: make ->accept only return +/-1 10667 - MEDIUM: stream: return the stream upon accept() 10668 - MEDIUM: frontend: move some stream initialisation to stream_new() 10669 - MEDIUM: frontend: move the fd-specific settings to session_accept_fd() 10670 - MEDIUM: frontend: don't restrict frontend_accept() to connections anymore 10671 - MEDIUM: frontend: move some remaining stream settings to stream_new() 10672 - CLEANUP: frontend: remove one useless local variable 10673 - MEDIUM: stream: don't rely on the session's listener anymore in stream_new() 10674 - MEDIUM: lua: make use of stream_new() to create an outgoing connection 10675 - MINOR: lua: minor cleanup in hlua_socket_new() 10676 - MINOR: lua: no need for setting timeouts / conn_retries in hlua_socket_new() 10677 - MINOR: peers: no need for setting timeouts / conn_retries in peer_session_create() 10678 - CLEANUP: stream-int: swap stream-int and appctx declarations 10679 - CLEANUP: namespaces: fix protection against multiple inclusions 10680 - MINOR: session: maintain the session count stats in the session, not the stream 10681 - MEDIUM: session: adjust the connection flags before stream_new() 10682 - MINOR: stream: pass the pointer to the origin explicitly to stream_new() 10683 - CLEANUP: poll: move the conditions for waiting out of the poll functions 10684 - BUG/MEDIUM: listener: don't report an error when resuming unbound listeners 10685 - BUG/MEDIUM: init: don't limit cpu-map to the first 32 processes only 10686 - BUG/MAJOR: tcp/http: fix current_rule assignment when restarting over a ruleset 10687 - BUG/MEDIUM: stream-int: always reset si->ops when si->end is nullified 10688 - DOC: update the entities diagrams 10689 - BUG/MEDIUM: http: properly retrieve the front connection 10690 - MINOR: applet: add a new "owner" pointer in the appctx 10691 - MEDIUM: applet: make the applet not depend on a stream interface anymore 10692 - REORG: applet: move the applet definitions out of stream_interface 10693 - CLEANUP: applet: rename struct si_applet to applet 10694 - REORG: stream-int: create si_applet_ops dedicated to applets 10695 - MEDIUM: applet: add basic support for an applet run queue 10696 - MEDIUM: applet: implement a run queue for active appctx 10697 - MEDIUM: stream-int: add a new function si_applet_done() 10698 - MAJOR: applet: now call si_applet_done() instead of si_update() in I/O handlers 10699 - MAJOR: stream: use a regular ->update for all stream interfaces 10700 - MEDIUM: dumpstats: don't unregister the applet anymore 10701 - MEDIUM: applet: centralize the call to si_applet_done() in the I/O handler 10702 - MAJOR: stream: do not allocate request buffers anymore when the left side is an applet 10703 - MINOR: stream-int: add two flags to indicate an applet's wishes regarding I/O 10704 - MEDIUM: applet: make the applets only use si_applet_{cant|want|stop}_{get|put} 10705 - MEDIUM: stream-int: pause the appctx if the task is woken up 10706 - BUG/MAJOR: tcp: only call registered actions when they're registered 10707 - BUG/MEDIUM: peers: fix applet scheduling 10708 - BUG/MEDIUM: peers: recent applet changes broke peers updates scheduling 10709 - MINOR: tools: provide an rdtsc() function for time comparisons 10710 - IMPORT: lru: import simple ebtree-based LRU functions 10711 - IMPORT: hash: import xxhash-r39 10712 - MEDIUM: pattern: add a revision to all pattern expressions 10713 - MAJOR: pattern: add LRU-based cache on pattern matching 10714 - BUG/MEDIUM: http: remove content-length from chunked messages 10715 - DOC: http: update the comments about the rules for determining transfer-length 10716 - BUG/MEDIUM: http: do not restrict parsing of transfer-encoding to HTTP/1.1 10717 - BUG/MEDIUM: http: incorrect transfer-coding in the request is a bad request 10718 - BUG/MEDIUM: http: remove content-length form responses with bad transfer-encoding 10719 - MEDIUM: http: restrict the HTTP version token to 1 digit as per RFC7230 10720 - MEDIUM: http: disable support for HTTP/0.9 by default 10721 - MEDIUM: http: add option-ignore-probes to get rid of the floods of 408 10722 - BUG/MINOR: config: clear proxy->table.peers.p for disabled proxies 10723 - MEDIUM: init: don't stop proxies in parent process when exiting 10724 - MINOR: stick-table: don't attach to peers in stopped state 10725 - MEDIUM: config: initialize stick-tables after peers, not before 10726 - MEDIUM: peers: add the ability to disable a peers section 10727 - MINOR: peers: store the pointer to the signal handler 10728 - MEDIUM: peers: unregister peers that were never started 10729 - MEDIUM: config: propagate the table's process list to the peers sections 10730 - MEDIUM: init: stop any peers section not bound to the correct process 10731 - MEDIUM: config: validate that peers sections are bound to exactly one process 10732 - MAJOR: peers: allow peers section to be used with nbproc > 1 10733 - DOC: relax the peers restriction to single-process 10734 - DOC: document option http-ignore-probes 10735 - DOC: fix the comments about the meaning of msg->sol in HTTP 10736 - BUG/MEDIUM: http: wait for the exact amount of body bytes in wait_for_request_body 10737 - BUG/MAJOR: http: prevent risk of reading past end with balance url_param 10738 - MEDIUM: stream: move HTTP request body analyser before process_common 10739 - MEDIUM: http: add a new option http-buffer-request 10740 - MEDIUM: http: provide 3 fetches for the body 10741 - DOC: update the doc on the proxy protocol 10742 - BUILD: pattern: fix build warnings introduced in the LRU cache 10743 - BUG/MEDIUM: stats: properly initialize the scope before dumping stats 10744 - CLEANUP: config: fix misleading information in error message. 10745 - MINOR: config: report the number of processes using a peers section in the error case 10746 - BUG/MEDIUM: config: properly compute the default number of processes for a proxy 10747 - MEDIUM: http: add new "capture" action for http-request 10748 - BUG/MEDIUM: http: fix the http-request capture parser 10749 - BUG/MEDIUM: http: don't forward client shutdown without NOLINGER except for tunnels 10750 - BUILD/MINOR: ssl: fix build failure introduced by recent patch 10751 - BUG/MAJOR: check: fix breakage of inverted tcp-check rules 10752 - CLEANUP: checks: fix double usage of cur / current_step in tcp-checks 10753 - BUG/MEDIUM: checks: do not dereference head of a tcp-check at the end 10754 - CLEANUP: checks: simplify the loop processing of tcp-checks 10755 - BUG/MAJOR: checks: always check for end of list before proceeding 10756 - BUG/MEDIUM: checks: do not dereference a list as a tcpcheck struct 10757 - BUG/MAJOR: checks: break infinite loops when tcp-checks starts with comment 10758 - MEDIUM: http: make url_param iterate over multiple occurrences 10759 - BUG/MEDIUM: peers: apply a random reconnection timeout 10760 - MEDIUM: config: reject invalid config with name duplicates 10761 - MEDIUM: config: reject conflicts in table names 10762 - CLEANUP: proxy: make the proxy lookup functions more user-friendly 10763 - MINOR: proxy: simply ignore duplicates in proxy name lookups 10764 - MINOR: config: don't open-code proxy name lookups 10765 - MEDIUM: config: clarify the conflicting modes detection for backend rules 10766 - CLEANUP: proxy: remove now unused function findproxy_mode() 10767 - MEDIUM: stick-table: remove the now duplicate find_stktable() function 10768 - MAJOR: config: remove the deprecated reqsetbe / reqisetbe actions 10769 - MINOR: proxy: add a new function proxy_find_by_id() 10770 - MINOR: proxy: add a flag to memorize that the proxy's ID was forced 10771 - MEDIUM: proxy: add a new proxy_find_best_match() function 10772 - CLEANUP: http: explicitly reference request in http_apply_redirect_rules() 10773 - MINOR: http: prepare support for parsing redirect actions on responses 10774 - MEDIUM: http: implement http-response redirect rules 10775 - MEDIUM: http: no need to close the request on redirect if data was parsed 10776 - BUG/MEDIUM: http: fix body processing for the stats applet 10777 - BUG/MINOR: da: fix log-level comparison to emove annoying warning 10778 - CLEANUP: global: remove one ifdef USE_DEVICEATLAS 10779 - CLEANUP: da: move the converter registration to da.c 10780 - CLEANUP: da: register the config keywords in da.c 10781 - CLEANUP: adjust the envelope name in da.h to reflect the file name 10782 - CLEANUP: da: remove ifdef USE_DEVICEATLAS from da.c 10783 - BUILD: make 51D easier to build by defaulting to 51DEGREES_SRC 10784 - BUILD: fix build warning when not using 51degrees 10785 - BUILD: make DeviceAtlas easier to build by defaulting to DEVICEATLAS_SRC 10786 - BUILD: ssl: fix recent build breakage on older SSL libs 10787 107882015/03/11 : 1.6-dev1 10789 - CLEANUP: extract temporary $CFG to eliminate duplication 10790 - CLEANUP: extract temporary $BIN to eliminate duplication 10791 - CLEANUP: extract temporary $PIDFILE to eliminate duplication 10792 - CLEANUP: extract temporary $LOCKFILE to eliminate duplication 10793 - CLEANUP: extract quiet_check() to avoid duplication 10794 - BUG/MINOR: don't start haproxy on reload 10795 - DOC: Address issue where documentation is excluded due to a gitignore rule. 10796 - BUG/MEDIUM: systemd: set KillMode to 'mixed' 10797 - BUILD: fix "make install" to support spaces in the install dirs 10798 - BUG/MINOR: config: http-request replace-header arg typo 10799 - BUG: config: error in http-response replace-header number of arguments 10800 - DOC: missing track-sc* in http-request rules 10801 - BUILD: lua: missing ifdef related to SSL when enabling LUA 10802 - BUG/MEDIUM: regex: fix pcre_study error handling 10803 - MEDIUM: regex: Use pcre_study always when PCRE is used, regardless of JIT 10804 - BUG/MINOR: Fix search for -p argument in systemd wrapper. 10805 - MEDIUM: Improve signal handling in systemd wrapper. 10806 - DOC: fix typo in Unix Socket commands 10807 - BUG/MEDIUM: checks: external checks can't change server status to UP 10808 - BUG/MEDIUM: checks: segfault with external checks in a backend section 10809 - BUG/MINOR: checks: external checks shouldn't wait for timeout to return the result 10810 - BUG/MEDIUM: auth: fix segfault with http-auth and a configuration with an unknown encryption algorithm 10811 - BUG/MEDIUM: config: userlists should ensure that encrypted passwords are supported 10812 - BUG/MINOR: config: don't propagate process binding for dynamic use_backend 10813 - BUG/MINOR: log: fix request flags when keep-alive is enabled 10814 - BUG/MEDIUM: checks: fix conflicts between agent checks and ssl healthchecks 10815 - MINOR: checks: allow external checks in backend sections 10816 - MEDIUM: checks: provide environment variables to the external checks 10817 - MINOR: checks: update dynamic environment variables in external checks 10818 - DOC: checks: environment variables used by "external-check command" 10819 - BUG/MEDIUM: backend: correctly detect the domain when use_domain_only is used 10820 - MINOR: ssl: load certificates in alphabetical order 10821 - BUG/MINOR: checks: prevent http keep-alive with http-check expect 10822 - MINOR: lua: typo in an error message 10823 - MINOR: report the Lua version in -vv 10824 - MINOR: lua: add a compilation error message when compiled with an incompatible version 10825 - BUG/MEDIUM: lua: segfault when calling haproxy sample fetches from lua 10826 - BUILD: try to automatically detect the Lua library name 10827 - BUILD/CLEANUP: systemd: avoid a warning due to mixed code and declaration 10828 - BUG/MEDIUM: backend: Update hash to use unsigned int throughout 10829 - BUG/MEDIUM: connection: fix memory corruption when building a proxy v2 header 10830 - MEDIUM: connection: add new bit in Proxy Protocol V2 10831 - BUG/MINOR: ssl: rejects OCSP response without nextupdate. 10832 - BUG/MEDIUM: ssl: Fix to not serve expired OCSP responses. 10833 - BUG/MINOR: ssl: Fix OCSP resp update fails with the same certificate configured twice. 10834 - BUG/MINOR: ssl: Fix external function in order not to return a pointer on an internal trash buffer. 10835 - MINOR: add fetchs 'ssl_c_der' and 'ssl_f_der' to return DER formatted certs 10836 - MINOR: ssl: add statement to force some ssl options in global. 10837 - BUG/MINOR: ssl: correctly initialize ssl ctx for invalid certificates 10838 - BUG/MEDIUM: ssl: fix bad ssl context init can cause segfault in case of OOM. 10839 - BUG/MINOR: samples: fix unnecessary memcopy converting binary to string. 10840 - MINOR: samples: adds the bytes converter. 10841 - MINOR: samples: adds the field converter. 10842 - MINOR: samples: add the word converter. 10843 - BUG/MINOR: server: move the directive #endif to the end of file 10844 - BUG/MAJOR: buffer: check the space left is enough or not when input data in a buffer is wrapped 10845 - DOC: fix a few typos 10846 - CLEANUP: epoll: epoll_events should be allocated according to global.tune.maxpollevents 10847 - BUG/MINOR: http: fix typo: "401 Unauthorized" => "407 Unauthorized" 10848 - BUG/MINOR: parse: refer curproxy instead of proxy 10849 - BUG/MINOR: parse: check the validity of size string in a more strict way 10850 - BUILD: add new target 'make uninstall' to support uninstalling haproxy from OS 10851 - DOC: expand the docs for the provided stats. 10852 - BUG/MEDIUM: unix: do not unlink() abstract namespace sockets upon failure. 10853 - MEDIUM: ssl: Certificate Transparency support 10854 - MEDIUM: stats: proxied stats admin forms fix 10855 - MEDIUM: http: Compress HTTP responses with status codes 201,202,203 in addition to 200 10856 - BUG/MEDIUM: connection: sanitize PPv2 header length before parsing address information 10857 - MAJOR: namespace: add Linux network namespace support 10858 - MINOR: systemd: Check configuration before start 10859 - BUILD: ssl: handle boringssl in openssl version detection 10860 - BUILD: ssl: disable OCSP when using boringssl 10861 - BUILD: ssl: don't call get_rfc2409_prime when using boringssl 10862 - MINOR: ssl: don't use boringssl's cipher_list 10863 - BUILD: ssl: use OPENSSL_NO_OCSP to detect OCSP support 10864 - MINOR: stats: fix minor typo in HTML page 10865 - MINOR: Also accept SIGHUP/SIGTERM in systemd-wrapper 10866 - MEDIUM: Add support for configurable TLS ticket keys 10867 - DOC: Document the new tls-ticket-keys bind keyword 10868 - DOC: clearly state that the "show sess" output format is not fixed 10869 - MINOR: stats: fix minor typo fix in stats_dump_errors_to_buffer() 10870 - DOC: httplog does not support 'no' 10871 - BUG/MEDIUM: ssl: Fix a memory leak in DHE key exchange 10872 - MINOR: ssl: use SSL_get_ciphers() instead of directly accessing the cipher list. 10873 - BUG/MEDIUM: Consistently use 'check' in process_chk 10874 - MEDIUM: Add external check 10875 - BUG/MEDIUM: Do not set agent health to zero if server is disabled in config 10876 - MEDIUM/BUG: Only explicitly report "DOWN (agent)" if the agent health is zero 10877 - MEDIUM: Remove connect_chk 10878 - MEDIUM: Refactor init_check and move to checks.c 10879 - MEDIUM: Add free_check() helper 10880 - MEDIUM: Move proto and addr fields struct check 10881 - MEDIUM: Attach tcpcheck_rules to check 10882 - MEDIUM: Add parsing of mailers section 10883 - MEDIUM: Allow configuration of email alerts 10884 - MEDIUM: Support sending email alerts 10885 - DOC: Document email alerts 10886 - MINOR: Remove trailing '.' from email alert messages 10887 - MEDIUM: Allow suppression of email alerts by log level 10888 - BUG/MEDIUM: Do not consider an agent check as failed on L7 error 10889 - MINOR: deinit: fix memory leak 10890 - MINOR: http: export the function 'smp_fetch_base32' 10891 - BUG/MEDIUM: http: tarpit timeout is reset 10892 - MINOR: sample: add "json" converter 10893 - BUG/MEDIUM: pattern: don't load more than once a pattern list. 10894 - MINOR: map/acl/dumpstats: remove the "Done." message 10895 - BUG/MAJOR: ns: HAProxy segfault if the cli_conn is not from a network connection 10896 - BUG/MINOR: pattern: error message missing 10897 - BUG/MEDIUM: pattern: some entries are not deleted with case insensitive match 10898 - BUG/MINOR: ARG6 and ARG7 don't fit in a 32 bits word 10899 - MAJOR: poll: only rely on wake_expired_tasks() to compute the wait delay 10900 - MEDIUM: task: call session analyzers if the task is woken by a message. 10901 - MEDIUM: protocol: automatically pick the proto associated to the connection. 10902 - MEDIUM: channel: wake up any request analyzer on response activity 10903 - MINOR: converters: add a "void *private" argument to converters 10904 - MINOR: converters: give the session pointer as converter argument 10905 - MINOR: sample: add private argument to the struct sample_fetch 10906 - MINOR: global: export function and permits to not resolve DNS names 10907 - MINOR: sample: add function for browsing samples. 10908 - MINOR: global: export many symbols. 10909 - MINOR: includes: fix a lot of missing or useless includes 10910 - MEDIUM: tcp: add register keyword system. 10911 - MEDIUM: buffer: make bo_putblk/bo_putstr/bo_putchk return the number of bytes copied. 10912 - MEDIUM: http: change the code returned by the response processing rule functions 10913 - MEDIUM: http/tcp: permit to resume http and tcp custom actions 10914 - MINOR: channel: functions to get data from a buffer without copy 10915 - MEDIUM: lua: lua integration in the build and init system. 10916 - MINOR: lua: add ease functions 10917 - MINOR: lua: add runtime execution context 10918 - MEDIUM: lua: "com" signals 10919 - MINOR: lua: add the configuration directive "lua-load" 10920 - MINOR: lua: core: create "core" class and object 10921 - MINOR: lua: post initialisation bindings 10922 - MEDIUM: lua: add coroutine as tasks. 10923 - MINOR: lua: add sample and args type converters 10924 - MINOR: lua: txn: create class TXN associated with the transaction. 10925 - MINOR: lua: add shared context in the lua stack 10926 - MINOR: lua: txn: import existing sample-fetches in the class TXN 10927 - MINOR: lua: txn: add lua function in TXN that returns an array of http headers 10928 - MINOR: lua: register and execute sample-fetches in LUA 10929 - MINOR: lua: register and execute converters in LUA 10930 - MINOR: lua: add bindings for tcp and http actions 10931 - MINOR: lua: core: add sleep functions 10932 - MEDIUM: lua: socket: add "socket" class for TCP I/O 10933 - MINOR: lua: core: pattern and acl manipulation 10934 - MINOR: lua: channel: add "channel" class 10935 - MINOR: lua: txn: object "txn" provides two objects "channel" 10936 - MINOR: lua: core: can set the nice of the current task 10937 - MINOR: lua: core: can yield an execution stack 10938 - MINOR: lua: txn: add binding for closing the client connection. 10939 - MEDIUM: lua: Lua initialisation "on demand" 10940 - BUG/MAJOR: lua: send function fails and return bad bytes 10941 - MINOR: remove unused declaration. 10942 - MINOR: lua: remove some #define 10943 - MINOR: lua: use bitfield and macro in place of integer and enum 10944 - MINOR: lua: set skeleton for Lua execution expiration 10945 - MEDIUM: lua: each yielding function returns a wake up time. 10946 - MINOR: lua: adds "forced yield" flag 10947 - MEDIUM: lua: interrupt the Lua execution for running other process 10948 - MEDIUM: lua: change the sleep function core 10949 - BUG/MEDIUM: lua: the execution timeout is ignored in yield case 10950 - DOC: lua: Lua configuration documentation 10951 - MINOR: lua: add the struct session in the lua channel struct 10952 - BUG/MINOR: lua: set buffer if it is nnot avalaible. 10953 - BUG/MEDIUM: lua: reset flags before resuming execution 10954 - BUG/MEDIUM: lua: fix infinite loop about channel 10955 - BUG/MEDIUM: lua: the Lua process is not waked up after sending data on requests side 10956 - BUG/MEDIUM: lua: many errors when we try to send data with the channel API 10957 - MEDIUM: lua: use the Lua-5.3 version of the library 10958 - BUG/MAJOR: lua: some function are not yieldable, the forced yield causes errors 10959 - BUG/MEDIUM: lua: can't handle the response bytes 10960 - BUG/MEDIUM: lua: segfault with buffer_replace2 10961 - BUG/MINOR: lua: check buffers before initializing socket 10962 - BUG/MINOR: log: segfault if there are no proxy reference 10963 - BUG/MEDIUM: lua: sockets don't have buffer to write data 10964 - BUG/MEDIUM: lua: cannot connect socket 10965 - BUG/MINOR: lua: sockets receive behavior doesn't follows the specs 10966 - BUG/BUILD: lua: The strict Lua 5.3 version check is not done. 10967 - BUG/MEDIUM: buffer: one byte miss in buffer free space check 10968 - MEDIUM: lua: make the functions hlua_gethlua() and hlua_sethlua() faster 10969 - MINOR: replace the Core object by a simple model. 10970 - MEDIUM: lua: change the objects configuration 10971 - MEDIUM: lua: create a namespace for the fetches 10972 - MINOR: converters: add function to browse converters 10973 - MINOR: lua: wrapper for converters 10974 - MINOR: lua: replace function (req|get)_channel by a variable 10975 - MINOR: lua: fetches and converters can return an empty string in place of nil 10976 - DOC: lua api 10977 - BUG/MEDIUM: sample: fix random number upper-bound 10978 - BUG/MINOR: stats:Fix incorrect printf type. 10979 - BUG/MAJOR: session: revert all the crappy client-side timeout changes 10980 - BUG/MINOR: logs: properly initialize and count log sockets 10981 - BUG/MEDIUM: http: fetch "base" is not compatible with set-header 10982 - BUG/MINOR: counters: do not untrack counters before logging 10983 - BUG/MAJOR: sample: correctly reinitialize sample fetch context before calling sample_process() 10984 - MINOR: stick-table: make stktable_fetch_key() indicate why it failed 10985 - BUG/MEDIUM: counters: fix track-sc* to wait on unstable contents 10986 - BUILD: remove TODO from the spec file and add README 10987 - MINOR: log: make MAX_SYSLOG_LEN overridable at build time 10988 - MEDIUM: log: support a user-configurable max log line length 10989 - DOC: provide an example of how to use ssl_c_sha1 10990 - BUILD: checks: external checker needs signal.h 10991 - BUILD: checks: kill a minor warning on Solaris in external checks 10992 - BUILD: http: fix isdigit & isspace warnings on Solaris 10993 - BUG/MINOR: listener: set the listener's fd to -1 after deletion 10994 - BUG/MEDIUM: unix: failed abstract socket binding is retryable 10995 - MEDIUM: listener: implement a per-protocol pause() function 10996 - MEDIUM: listener: support rebinding during resume() 10997 - BUG/MEDIUM: unix: completely unbind abstract sockets during a pause() 10998 - DOC: explicitly mention the limits of abstract namespace sockets 10999 - DOC: minor fix on {sc,src}_kbytes_{in,out} 11000 - DOC: fix alphabetical sort of converters 11001 - MEDIUM: stick-table: implement lookup from a sample fetch 11002 - MEDIUM: stick-table: add new converters to fetch table data 11003 - MINOR: samples: add two converters for the date format 11004 - BUG/MAJOR: http: correctly rewind the request body after start of forwarding 11005 - DOC: remove references to CPU=native in the README 11006 - DOC: mention that "compression offload" is ignored in defaults section 11007 - DOC: mention that Squid correctly responds 400 to PPv2 header 11008 - BUILD: fix dependencies between config and compat.h 11009 - MINOR: session: export the function 'smp_fetch_sc_stkctr' 11010 - MEDIUM: stick-table: make it easier to register extra data types 11011 - BUG/MINOR: http: base32+src should use the big endian version of base32 11012 - MINOR: sample: allow IP address to cast to binary 11013 - MINOR: sample: add new converters to hash input 11014 - MINOR: sample: allow integers to cast to binary 11015 - BUILD: report commit ID in git versions as well 11016 - CLEANUP: session: move the stick counters declarations to stick_table.h 11017 - MEDIUM: http: add the track-sc* actions to http-request rules 11018 - BUG/MEDIUM: connection: fix proxy v2 header again! 11019 - BUG/MAJOR: tcp: fix a possible busy spinning loop in content track-sc* 11020 - OPTIM/MINOR: proxy: reduce struct proxy by 48 bytes on 64-bit archs 11021 - MINOR: log: add a new field "%lc" to implement a per-frontend log counter 11022 - BUG/MEDIUM: http: fix inverted condition in pat_match_meth() 11023 - BUG/MEDIUM: http: fix improper parsing of HTTP methods for use with ACLs 11024 - BUG/MINOR: pattern: remove useless allocation of unused trash in pat_parse_reg() 11025 - BUG/MEDIUM: acl: correctly compute the output type when a converter is used 11026 - CLEANUP: acl: cleanup some of the redundancy and spaghetti after last fix 11027 - BUG/CRITICAL: http: don't update msg->sov once data start to leave the buffer 11028 - MEDIUM: http: enable header manipulation for 101 responses 11029 - BUG/MEDIUM: config: propagate frontend to backend process binding again. 11030 - MEDIUM: config: properly propagate process binding between proxies 11031 - MEDIUM: config: make the frontends automatically bind to the listeners' processes 11032 - MEDIUM: config: compute the exact bind-process before listener's maxaccept 11033 - MEDIUM: config: only warn if stats are attached to multi-process bind directives 11034 - MEDIUM: config: report it when tcp-request rules are misplaced 11035 - DOC: indicate in the doc that track-sc* can wait if data are missing 11036 - MINOR: config: detect the case where a tcp-request content rule has no inspect-delay 11037 - MEDIUM: systemd-wrapper: support multiple executable versions and names 11038 - BUG/MEDIUM: remove debugging code from systemd-wrapper 11039 - BUG/MEDIUM: http: adjust close mode when switching to backend 11040 - BUG/MINOR: config: don't propagate process binding on fatal errors. 11041 - BUG/MEDIUM: check: rule-less tcp-check must detect connect failures 11042 - BUG/MINOR: tcp-check: report the correct failed step in the status 11043 - DOC: indicate that weight zero is reported as DRAIN 11044 - BUG/MEDIUM: config: avoid skipping disabled proxies 11045 - BUG/MINOR: config: do not accept more track-sc than configured 11046 - BUG/MEDIUM: backend: fix URI hash when a query string is present 11047 - BUG/MEDIUM: http: don't dump debug headers on MSG_ERROR 11048 - BUG/MAJOR: cli: explicitly call cli_release_handler() upon error 11049 - BUG/MEDIUM: tcp: fix outgoing polling based on proxy protocol 11050 - BUILD/MINOR: ssl: de-constify "ciphers" to avoid a warning on openssl-0.9.8 11051 - BUG/MEDIUM: tcp: don't use SO_ORIGINAL_DST on non-AF_INET sockets 11052 - BUG/BUILD: revert accidental change in the makefile from latest SSL fix 11053 - BUG/MEDIUM: ssl: force a full GC in case of memory shortage 11054 - MEDIUM: ssl: add support for smaller SSL records 11055 - MINOR: session: release a few other pools when stopping 11056 - MINOR: task: release the task pool when stopping 11057 - BUG/MINOR: config: don't inherit the default balance algorithm in frontends 11058 - BUG/MAJOR: frontend: initialize capture pointers earlier 11059 - BUG/MINOR: stats: correctly set the request/response analysers 11060 - MAJOR: polling: centralize calls to I/O callbacks 11061 - DOC: fix typo in the body parser documentation for msg.sov 11062 - BUG/MINOR: peers: the buffer size is global.tune.bufsize, not trash.size 11063 - MINOR: sample: add a few basic internal fetches (nbproc, proc, stopping) 11064 - DEBUG: pools: apply poisonning on every allocated pool 11065 - BUG/MAJOR: sessions: unlink session from list on out of memory 11066 - BUG/MEDIUM: patterns: previous fix was incomplete 11067 - BUG/MEDIUM: payload: ensure that a request channel is available 11068 - BUG/MINOR: tcp-check: don't condition data polling on check type 11069 - BUG/MEDIUM: tcp-check: don't rely on random memory contents 11070 - BUG/MEDIUM: tcp-checks: disable quick-ack unless next rule is an expect 11071 - BUG/MINOR: config: fix typo in condition when propagating process binding 11072 - BUG/MEDIUM: config: do not propagate processes between stopped processes 11073 - BUG/MAJOR: stream-int: properly check the memory allocation return 11074 - BUG/MEDIUM: memory: fix freeing logic in pool_gc2() 11075 - BUG/MAJOR: namespaces: conn->target is not necessarily a server 11076 - BUG/MEDIUM: compression: correctly report zlib_mem 11077 - CLEANUP: lists: remove dead code 11078 - CLEANUP: memory: remove dead code 11079 - CLEANUP: memory: replace macros pool_alloc2/pool_free2 with functions 11080 - MINOR: memory: cut pool allocator in 3 layers 11081 - MEDIUM: memory: improve pool_refill_alloc() to pass a refill count 11082 - MINOR: stream-int: retrieve session pointer from stream-int 11083 - MINOR: buffer: reset a buffer in b_reset() and not channel_init() 11084 - MEDIUM: buffer: use b_alloc() to allocate and initialize a buffer 11085 - MINOR: buffer: move buffer initialization after channel initialization 11086 - MINOR: buffer: only use b_free to release buffers 11087 - MEDIUM: buffer: always assign a dummy empty buffer to channels 11088 - MEDIUM: buffer: add a new buf_wanted dummy buffer to report failed allocations 11089 - MEDIUM: channel: do not report full when buf_empty is present on a channel 11090 - MINOR: session: group buffer allocations together 11091 - MINOR: buffer: implement b_alloc_fast() 11092 - MEDIUM: buffer: implement b_alloc_margin() 11093 - MEDIUM: session: implement a basic atomic buffer allocator 11094 - MAJOR: session: implement a wait-queue for sessions who need a buffer 11095 - MAJOR: session: only allocate buffers when needed 11096 - MINOR: stats: report a "waiting" flags for sessions 11097 - MAJOR: session: only wake up as many sessions as available buffers permit 11098 - MINOR: config: implement global setting tune.buffers.reserve 11099 - MINOR: config: implement global setting tune.buffers.limit 11100 - MEDIUM: channel: implement a zero-copy buffer transfer 11101 - MEDIUM: stream-int: support splicing from applets 11102 - OPTIM: stream-int: try to send pending spliced data 11103 - CLEANUP: session: remove session_from_task() 11104 - DOC: add missing entry for log-format and clarify the text 11105 - MINOR: logs: add a new per-proxy "log-tag" directive 11106 - BUG/MEDIUM: http: fix header removal when previous header ends with pure LF 11107 - MINOR: config: extend the default max hostname length to 64 and beyond 11108 - BUG/MEDIUM: channel: fix possible integer overflow on reserved size computation 11109 - BUG/MINOR: channel: compare to_forward with buf->i, not buf->size 11110 - MINOR: channel: add channel_in_transit() 11111 - MEDIUM: channel: make buffer_reserved() use channel_in_transit() 11112 - MEDIUM: channel: make bi_avail() use channel_in_transit() 11113 - BUG/MEDIUM: channel: don't schedule data in transit for leaving until connected 11114 - CLEANUP: channel: rename channel_reserved -> channel_is_rewritable 11115 - MINOR: channel: rename channel_full() to !channel_may_recv() 11116 - MINOR: channel: rename buffer_reserved() to channel_reserved() 11117 - MINOR: channel: rename buffer_max_len() to channel_recv_limit() 11118 - MINOR: channel: rename bi_avail() to channel_recv_max() 11119 - MINOR: channel: rename bi_erase() to channel_truncate() 11120 - BUG/MAJOR: log: don't try to emit a log if no logger is set 11121 - MINOR: tools: add new round_2dig() function to round integers 11122 - MINOR: global: always export some SSL-specific metrics 11123 - MINOR: global: report information about the cost of SSL connections 11124 - MAJOR: init: automatically set maxconn and/or maxsslconn when possible 11125 - MINOR: http: add a new fetch "query" to extract the request's query string 11126 - MINOR: hash: add new function hash_crc32 11127 - MINOR: samples: provide a "crc32" converter 11128 - MEDIUM: backend: add the crc32 hash algorithm for load balancing 11129 - BUG/MINOR: args: add missing entry for ARGT_MAP in arg_type_names 11130 - BUG/MEDIUM: http: make http-request set-header compute the string before removal 11131 - MEDIUM: args: use #define to specify the number of bits used by arg types and counts 11132 - MEDIUM: args: increase arg type to 5 bits and limit arg count to 5 11133 - MINOR: args: add type-specific flags for each arg in a list 11134 - MINOR: args: implement a new arg type for regex : ARGT_REG 11135 - MEDIUM: regex: add support for passing regex flags to regex_exec_match() 11136 - MEDIUM: samples: add a regsub converter to perform regex-based transformations 11137 - BUG/MINOR: sample: fix case sensitivity for the regsub converter 11138 - MEDIUM: http: implement http-request set-{method,path,query,uri} 11139 - DOC: fix missing closing brackend on regsub 11140 - MEDIUM: samples: provide basic arithmetic and bitwise operators 11141 - MEDIUM: init: continue to enforce SYSTEM_MAXCONN with auto settings if set 11142 - BUG/MINOR: http: fix incorrect header value offset in replace-hdr/replace-value 11143 - BUG/MINOR: http: abort request processing on filter failure 11144 - MEDIUM: tcp: implement tcp-ut bind option to set TCP_USER_TIMEOUT 11145 - MINOR: ssl/server: add the "no-ssl-reuse" server option 11146 - BUG/MAJOR: peers: initialize s->buffer_wait when creating the session 11147 - MINOR: http: add a new function to iterate over each header line 11148 - MINOR: http: add the new sample fetches req.hdr_names and res.hdr_names 11149 - MEDIUM: task: always ensure that the run queue is consistent 11150 - BUILD: Makefile: add -Wdeclaration-after-statement 11151 - BUILD/CLEANUP: ssl: avoid a warning due to mixed code and declaration 11152 - BUILD/CLEANUP: config: silent 3 warnings about mixed declarations with code 11153 - MEDIUM: protocol: use a family array to index the protocol handlers 11154 - BUILD: lua: cleanup many mixed occurrences declarations & code 11155 - BUG/MEDIUM: task: fix recently introduced scheduler skew 11156 - BUG/MINOR: lua: report the correct function name in an error message 11157 - BUG/MAJOR: http: fix stats regression consecutive to HTTP_RULE_RES_YIELD 11158 - Revert "BUG/MEDIUM: lua: can't handle the response bytes" 11159 - MINOR: lua: convert IP addresses to type string 11160 - CLEANUP: lua: use the same function names in C and Lua 11161 - REORG/MAJOR: move session's req and resp channels back into the session 11162 - CLEANUP: remove now unused channel pool 11163 - REORG/MEDIUM: stream-int: introduce si_ic/si_oc to access channels 11164 - MEDIUM: stream-int: add a flag indicating which side the SI is on 11165 - MAJOR: stream-int: only rely on SI_FL_ISBACK to find the requested channel 11166 - MEDIUM: stream-interface: remove now unused pointers to channels 11167 - MEDIUM: stream-int: make si_sess() use the stream int's side 11168 - MEDIUM: stream-int: use si_task() to retrieve the task from the stream int 11169 - MEDIUM: stream-int: remove any reference to the owner 11170 - CLEANUP: stream-int: add si_ib/si_ob to dereference the buffers 11171 - CLEANUP: stream-int: add si_opposite() to find the other stream interface 11172 - REORG/MEDIUM: channel: only use chn_prod / chn_cons to find stream-interfaces 11173 - MEDIUM: channel: add a new flag "CF_ISRESP" for the response channel 11174 - MAJOR: channel: only rely on the new CF_ISRESP flag to find the SI 11175 - MEDIUM: channel: remove now unused ->prod and ->cons pointers 11176 - CLEANUP: session: simplify references to chn_{prod,cons}(&s->{req,res}) 11177 - CLEANUP: session: use local variables to access channels / stream ints 11178 - CLEANUP: session: don't needlessly pass a pointer to the stream-int 11179 - CLEANUP: session: don't use si_{ic,oc} when we know the session. 11180 - CLEANUP: stream-int: limit usage of si_ic/si_oc 11181 - CLEANUP: lua: limit usage of si_ic/si_oc 11182 - MINOR: channel: add chn_sess() helper to retrieve session from channel 11183 - MEDIUM: session: simplify receive buffer allocator to only use the channel 11184 - MEDIUM: lua: use CF_ISRESP to detect the channel's side 11185 - CLEANUP: lua: remove the session pointer from hlua_channel 11186 - CLEANUP: lua: hlua_channel_new() doesn't need the pointer to the session anymore 11187 - MEDIUM: lua: remove struct hlua_channel 11188 - MEDIUM: lua: remove hlua_sample_fetch 11189 111902014/06/19 : 1.6-dev0 11191 - exact copy of 1.5.0 11192 111932014/06/19 : 1.5.0 11194 - MEDIUM: ssl: ignored file names ending as '.issuer' or '.ocsp'. 11195 - MEDIUM: ssl: basic OCSP stapling support. 11196 - MINOR: ssl/cli: Fix unapropriate comment in code on 'set ssl ocsp-response' 11197 - MEDIUM: ssl: add 300s supported time skew on OCSP response update. 11198 - MINOR: checks: mysql-check: Add support for v4.1+ authentication 11199 - MEDIUM: ssl: Add the option to use standardized DH parameters >= 1024 bits 11200 - MEDIUM: ssl: fix detection of ephemeral diffie-hellman key exchange by using the cipher description. 11201 - MEDIUM: http: add actions "replace-header" and "replace-values" in http-req/resp 11202 - MEDIUM: Break out check establishment into connect_chk() 11203 - MEDIUM: Add port_to_str helper 11204 - BUG/MEDIUM: fix ignored values for half-closed timeouts (client-fin and server-fin) in defaults section. 11205 - BUG/MEDIUM: Fix unhandled connections problem with systemd daemon mode and SO_REUSEPORT. 11206 - MINOR: regex: fix a little configuration memory leak. 11207 - MINOR: regex: Create JIT compatible function that return match strings 11208 - MEDIUM: regex: replace all standard regex function by own functions 11209 - MEDIUM: regex: Remove null terminated strings. 11210 - MINOR: regex: Use native PCRE API. 11211 - MINOR: missing regex.h include 11212 - DOC: Add Exim as Proxy Protocol implementer. 11213 - BUILD: don't use type "uint" which is not portable 11214 - BUILD: stats: workaround stupid and bogus -Werror=format-security behaviour 11215 - BUG/MEDIUM: http: clear CF_READ_NOEXP when preparing a new transaction 11216 - CLEANUP: http: don't clear CF_READ_NOEXP twice 11217 - DOC: fix proxy protocol v2 decoder example 11218 - DOC: fix remaining occurrences of "pattern extraction" 11219 - MINOR: log: allow the HTTP status code to be logged even in TCP frontends 11220 - MINOR: logs: don't limit HTTP header captures to HTTP frontends 11221 - MINOR: sample: improve sample_fetch_string() to report partial contents 11222 - MINOR: capture: extend the captures to support non-header keys 11223 - MINOR: tcp: prepare support for the "capture" action 11224 - MEDIUM: tcp: add a new tcp-request capture directive 11225 - MEDIUM: session: allow shorter retry delay if timeout connect is small 11226 - MEDIUM: session: don't apply the retry delay when redispatching 11227 - MEDIUM: session: redispatch earlier when possible 11228 - MINOR: config: warn when tcp-check rules are used without option tcp-check 11229 - BUG/MINOR: connection: make proxy protocol v1 support the UNKNOWN protocol 11230 - DOC: proxy protocol example parser was still wrong 11231 - DOC: minor updates to the proxy protocol doc 11232 - CLEANUP: connection: merge proxy proto v2 header and address block 11233 - MEDIUM: connection: add support for proxy protocol v2 in accept-proxy 11234 - MINOR: tools: add new functions to quote-encode strings 11235 - DOC: clarify the CSV format 11236 - MEDIUM: stats: report the last check and last agent's output on the CSV status 11237 - MINOR: freq_ctr: introduce a new averaging method 11238 - MEDIUM: session: maintain per-backend and per-server time statistics 11239 - MEDIUM: stats: report per-backend and per-server time stats in HTML and CSV outputs 11240 - BUG/MINOR: http: fix typos in previous patch 11241 - DOC: remove the ultra-obsolete TODO file 11242 - DOC: update roadmap 11243 - DOC: minor updates to the README 11244 - DOC: mention the maxconn limitations with the select poller 11245 - DOC: commit a few old design thoughts files 11246 112472014/05/28 : 1.5-dev26 11248 - BUG/MEDIUM: polling: fix possible CPU hogging of worker processes after receiving SIGUSR1. 11249 - BUG/MINOR: stats: fix a typo on a closing tag for a server tracking another one 11250 - OPTIM: stats: avoid the calculation of a useless link on tracking servers in maintenance 11251 - MINOR: fix a few memory usage errors 11252 - CONTRIB: halog: Filter input lines by date and time through timestamp 11253 - MINOR: ssl: SSL_CTX_set_options() and SSL_CTX_set_mode() take a long, not an int 11254 - BUG/MEDIUM: regex: fix risk of buffer overrun in exp_replace() 11255 - MINOR: acl: set "str" as default match for strings 11256 - DOC: Add some precisions about acl default matching method 11257 - MEDIUM: acl: strenghten the option parser to report invalid options 11258 - BUG/MEDIUM: config: a stats-less config crashes in 1.5-dev25 11259 - BUG/MINOR: checks: tcp-check must not stop on '\0' for binary checks 11260 - MINOR: stats: improve alignment of color codes to save one line of header 11261 - MINOR: checks: simplify and improve reporting of state changes when using log-health-checks 11262 - MINOR: server: remove the SRV_DRAIN flag which can always be deduced 11263 - MINOR: server: use functions to detect state changes and to update them 11264 - MINOR: server: create srv_was_usable() from srv_is_usable() and use a pointer 11265 - BUG/MINOR: stats: do not report "100%" in the thottle column when server is draining 11266 - BUG/MAJOR: config: don't free valid regex memory 11267 - BUG/MEDIUM: session: don't clear CF_READ_NOEXP if analysers are not called 11268 - BUG/MINOR: stats: tracking servers may incorrectly report an inherited DRAIN status 11269 - MEDIUM: proxy: make timeout parser a bit stricter 11270 - REORG/MEDIUM: server: split server state and flags in two different variables 11271 - REORG/MEDIUM: server: move the maintenance bits out of the server state 11272 - MAJOR: server: use states instead of flags to store the server state 11273 - REORG: checks: put the functions in the appropriate files ! 11274 - MEDIUM: server: properly support and propagate the maintenance status 11275 - MEDIUM: server: allow multi-level server tracking 11276 - CLEANUP: checks: rename the server_status_printf function 11277 - MEDIUM: checks: simplify server up/down/nolb transitions 11278 - MAJOR: checks: move health checks changes to set_server_check_status() 11279 - MINOR: server: make the status reporting function support a reason 11280 - MINOR: checks: simplify health check reporting functions 11281 - MINOR: server: implement srv_set_stopped() 11282 - MINOR: server: implement srv_set_running() 11283 - MINOR: server: implement srv_set_stopping() 11284 - MEDIUM: checks: simplify failure notification using srv_set_stopped() 11285 - MEDIUM: checks: simplify success notification using srv_set_running() 11286 - MEDIUM: checks: simplify stopping mode notification using srv_set_stopping() 11287 - MEDIUM: stats: report a server's own state instead of the tracked one's 11288 - MINOR: server: make use of srv_is_usable() instead of checking eweight 11289 - MAJOR: checks: add support for a new "drain" administrative mode 11290 - MINOR: stats: use the admin flags for soft enable/disable/stop/start on the web page 11291 - MEDIUM: stats: introduce new actions to simplify admin status management 11292 - MINOR: cli: introduce a new "set server" command 11293 - MINOR: stats: report a distinct output for DOWN caused by agent 11294 - MINOR: checks: support specific check reporting for the agent 11295 - MINOR: checks: support a neutral check result 11296 - BUG/MINOR: cli: "agent" was missing from the "enable"/"disable" help message 11297 - MEDIUM: cli: add support for enabling/disabling health checks. 11298 - MEDIUM: stats: report down caused by agent prior to reporting up 11299 - MAJOR: agent: rework the response processing and support additional actions 11300 - MINOR: stats: improve the stats web page to support more actions 11301 - CONTRIB: halog: avoid calling time/localtime/mktime for each line 11302 - DOC: document the workarouds for Google Chrome's bogus pre-connect 11303 - MINOR: stats: report SSL key computations per second 11304 - MINOR: stats: add counters for SSL cache lookups and misses 11305 113062014/05/10 : 1.5-dev25 11307 - MEDIUM: connection: Implement and extented PROXY Protocol V2 11308 - MINOR: ssl: clean unused ACLs declarations 11309 - MINOR: ssl: adds fetchs and ACLs for ssl back connection. 11310 - MINOR: ssl: merge client's and frontend's certificate functions. 11311 - MINOR: ssl: adds ssl_f_sha1 fetch to return frontend's certificate fingerprint 11312 - MINOR: ssl: adds sample converter base64 for binary type. 11313 - MINOR: ssl: convert to binary ssl_fc_unique_id and ssl_bc_unique_id. 11314 - BUG/MAJOR: ssl: Fallback to private session cache if current lock mode is not supported. 11315 - MAJOR: ssl: Change default locks on ssl session cache. 11316 - BUG/MINOR: chunk: Fix function chunk_strcmp and chunk_strcasecmp match a substring. 11317 - MINOR: ssl: add global statement tune.ssl.force-private-cache. 11318 - MINOR: ssl: remove fallback to SSL session private cache if lock init fails. 11319 - BUG/MEDIUM: patterns: last fix was still not enough 11320 - MINOR: http: export the smp_fetch_cookie function 11321 - MINOR: http: generic pointer to rule argument 11322 - BUG/MEDIUM: pattern: a typo breaks automatic acl/map numbering 11323 - BUG/MAJOR: patterns: -i and -n are ignored for inlined patterns 11324 - BUG/MINOR: proxy: unsafe initialization of HTTP transaction when switching from TCP frontend 11325 - BUG/MINOR: http: log 407 in case of proxy auth 11326 - MINOR: http: rely on the message body parser to send 100-continue 11327 - MEDIUM: http: move reqadd after execution of http_request redirect 11328 - MEDIUM: http: jump to dedicated labels after http-request processing 11329 - BUG/MINOR: http: block rules forgot to increment the denied_req counter 11330 - BUG/MINOR: http: block rules forgot to increment the session's request counter 11331 - MEDIUM: http: move Connection header processing earlier 11332 - MEDIUM: http: remove even more of the spaghetti in the request path 11333 - MINOR: http: silently support the "block" action for http-request 11334 - CLEANUP: proxy: rename "block_cond" to "block_rules" 11335 - MEDIUM: http: emulate "block" rules using "http-request" rules 11336 - MINOR: http: remove the now unused loop over "block" rules 11337 - MEDIUM: http: factorize the "auth" action of http-request and stats 11338 - MEDIUM: http: make http-request rules processing return a verdict instead of a rule 11339 - MINOR: config: add minimum support for emitting warnings only once 11340 - MEDIUM: config: inform the user about the deprecatedness of "block" rules 11341 - MEDIUM: config: inform the user that "reqsetbe" is deprecated 11342 - MEDIUM: config: inform the user only once that "redispatch" is deprecated 11343 - MEDIUM: config: warn that '{cli,con,srv}timeout' are deprecated 11344 - BUG/MINOR: auth: fix wrong return type in pat_match_auth() 11345 - BUILD: config: remove a warning with clang 11346 - BUG/MAJOR: http: connection setup may stall on balance url_param 11347 - BUG/MEDIUM: http/session: disable client-side expiration only after body 11348 - BUG/MEDIUM: http: correctly report request body timeouts 11349 - BUG/MEDIUM: http: disable server-side expiration until client has sent the body 11350 - MEDIUM: listener: make the accept function more robust against pauses 11351 - BUILD: syscalls: remove improper inline statement in front of syscalls 11352 - BUILD: ssl: SSL_CTX_set_msg_callback() needs openssl >= 0.9.7 11353 - BUG/MAJOR: session: recover the correct connection pointer in half-initialized sessions 11354 - DOC: add some explanation on the shared cache build options in the readme. 11355 - MEDIUM: proxy: only adjust the backend's bind-process when already set 11356 - MEDIUM: config: limit nbproc to the machine's word size 11357 - MEDIUM: config: check the bind-process settings according to nbproc 11358 - MEDIUM: listener: parse the new "process" bind keyword 11359 - MEDIUM: listener: inherit the process mask from the proxy 11360 - MAJOR: listener: only start listeners bound to the same processes 11361 - MINOR: config: only report a warning when stats sockets are bound to more than 1 process 11362 - CLEANUP: config: set the maxaccept value for peers listeners earlier 11363 - BUG/MINOR: backend: only match IPv4 addresses with RDP cookies 11364 - BUG/MINOR: checks: correctly configure the address family and protocol 11365 - MINOR: tools: split is_addr() and is_inet_addr() 11366 - MINOR: protocols: use is_inet_addr() when only INET addresses are desired 11367 - MEDIUM: unix: add preliminary support for connecting to servers over UNIX sockets 11368 - MEDIUM: checks: only complain about the missing port when the check uses TCP 11369 - MEDIUM: unix: implement support for Linux abstract namespace sockets 11370 - DOC: map_beg was missing from the table of map_* converters 11371 - DOC: ebtree: indicate that prefix insertion/lookup may be used with strings 11372 - MEDIUM: pattern: use ebtree's longest match to index/lookup string beginning 11373 - BUILD: remove the obsolete BSD and OSX makefiles 11374 - MEDIUM: unix: avoid a double connect probe when no data are sent 11375 - DOC: stop referencing the slow git repository in the README 11376 - BUILD: only build the systemd wrapper on Linux 2.6 and above 11377 - DOC: update roadmap with completed tasks 11378 - MEDIUM: session: implement half-closed timeouts (client-fin and server-fin) 11379 113802014/04/26 : 1.5-dev24 11381 - MINOR: pattern: find element in a reference 11382 - MEDIUM: http: ACL and MAP updates through http-(request|response) rules 11383 - MEDIUM: ssl: explicitly log failed handshakes after a heartbeat 11384 - DOC: Full section dedicated to the converters 11385 - MEDIUM: http: register http-request and http-response keywords 11386 - BUG/MINOR: compression: correctly report incoming byte count 11387 - BUG/MINOR: http: don't report server aborts as client aborts 11388 - BUG/MEDIUM: channel: bi_putblk() must not wrap before the end of buffer 11389 - CLEANUP: buffers: remove unused function buffer_contig_space_with_res() 11390 - MEDIUM: stats: reimplement HTTP keep-alive on the stats page 11391 - BUG/MAJOR: http: fix timeouts during data forwarding 11392 - BUG/MEDIUM: http: 100-continue responses must process the next part immediately 11393 - MEDIUM: http: move skipping of 100-continue earlier 11394 - BUILD: stats: let gcc know that last_fwd cannot be used uninitialized... 11395 - CLEANUP: general: get rid of all old occurrences of "session *t" 11396 - CLEANUP: http: remove the useless "if (1)" inherited from version 1.4 11397 - BUG/MEDIUM: stats: mismatch between behaviour and doc about front/back 11398 - MEDIUM: http: enable analysers to have keep-alive on stats 11399 - REORG: http: move HTTP Connection response header parsing earlier 11400 - MINOR: stats: always emit HTTP/1.1 in responses 11401 - MINOR: http: add capture.req.ver and capture.res.ver 11402 - MINOR: checks: add a new global max-spread-checks directive 11403 - BUG/MAJOR: http: fix the 'next' pointer when performing a redirect 11404 - MINOR: http: implement the max-keep-alive-queue setting 11405 - DOC: fix alphabetic order of tcp-check 11406 - MINOR: connection: add a new error code for SSL with heartbeat 11407 - MEDIUM: ssl: implement a workaround for the OpenSSL heartbleed attack 11408 - BUG/MEDIUM: Revert "MEDIUM: ssl: Add standardized DH parameters >= 1024 bits" 11409 - BUILD: http: remove a warning on strndup 11410 - BUILD: ssl: avoid a warning about conn not used with OpenSSL < 1.0.1 11411 - BUG/MINOR: ssl: really block OpenSSL's response to heartbleed attack 11412 - MINOR: ssl: finally catch the heartbeats missing the padding 11413 114142014/04/23 : 1.5-dev23 11415 - BUG/MINOR: reject malformed HTTP/0.9 requests 11416 - MINOR: systemd wrapper: re-execute on SIGUSR2 11417 - MINOR: systemd wrapper: improve logging 11418 - MINOR: systemd wrapper: propagate exit status 11419 - BUG/MINOR: tcpcheck connect wrong behavior 11420 - MEDIUM: proxy: support use_backend with dynamic names 11421 - MINOR: stats: Enhancement to stats page to provide information of last session time. 11422 - BUG/MEDIUM: peers: fix key consistency for integer stick tables 11423 - DOC: fix a typo on http-server-close and encapsulate options with double-quotes 11424 - DOC: fix fetching samples syntax 11425 - MINOR: ssl: add ssl_fc_unique_id to fetch TLS Unique ID 11426 - MEDIUM: ssl: Use ALPN support as it will be available in OpenSSL 1.0.2 11427 - DOC: fix typo 11428 - CLEANUP: code style: use tabs to indent codes instead of spaces 11429 - DOC: fix a few config typos. 11430 - BUG/MINOR: raw_sock: also consider ENOTCONN in addition to EAGAIN for recv() 11431 - DOC: lowercase format string in unique-id 11432 - MINOR: set IP_FREEBIND on IPv6 sockets in transparent mode 11433 - BUG/MINOR: acl: req_ssl_sni fails with SSLv3 record version 11434 - BUG/MINOR: build: add missing objects in osx and bsd Makefiles 11435 - BUG/MINOR: build: handle whitespaces in wc -l output 11436 - BUG/MINOR: Fix name lookup ordering when compiled with USE_GETADDRINFO 11437 - MEDIUM: ssl: Add standardized DH parameters >= 1024 bits 11438 - BUG/MEDIUM: map: The map parser includes blank lines. 11439 - BUG/MINOR: log: The log of quotted capture header has been terminated by 2 quotes. 11440 - MINOR: standard: add function "encode_chunk" 11441 - BUG/MINOR: http: fix encoding of samples used in http headers 11442 - MINOR: sample: add hex converter 11443 - MEDIUM: sample: change the behavior of the bin2str cast 11444 - MAJOR: auth: Change the internal authentication system. 11445 - MEDIUM: acl/pattern: standardisation "of pat_parse_int()" and "pat_parse_dotted_ver()" 11446 - MEDIUM: pattern: The pattern parser no more uses <opaque> and just takes one string. 11447 - MEDIUM: pattern: Change the prototype of the function pattern_register(). 11448 - CONTRIB: ip6range: add a network IPv6 range to mask converter 11449 - MINOR: pattern: separe list element from the data part. 11450 - MEDIUM: pattern: add indexation function. 11451 - MEDIUM: pattern: The parse functions just return "struct pattern" without memory allocation 11452 - MINOR: pattern: Rename "pat_idx_elt" to "pattern_tree" 11453 - MINOR: sample: dont call the sample cast function "c_none" 11454 - MINOR: standard: Add function for converting cidr to network mask. 11455 - MEDIUM: sample: Remove types SMP_T_CSTR and SMP_T_CBIN, replace it by SMP_F_CONST flags 11456 - MEDIUM: sample/http_proto: Add new type called method 11457 - MINOR: dumpstats: Group map inline help 11458 - MEDIUM: pattern: The function pattern_exec_match() returns "struct pattern" if the patten match. 11459 - MINOR: dumpstats: change map inline sentences 11460 - MINOR: dumpstats: change the "get map" display management 11461 - MINOR: map/dumpstats: The cli cmd "get map ..." display the "int" format. 11462 - MEDIUM: pattern: The match function browse itself the list or the tree. 11463 - MEDIUM: pattern: Index IPv6 addresses in a tree. 11464 - MEDIUM: pattern: add delete functions 11465 - MEDIUM: pattern: add prune function 11466 - MEDIUM: pattern: add sample lookup function. 11467 - MEDIUM: pattern/dumpstats: The function pattern_lookup() is no longer used 11468 - MINOR: map/pattern: The sample parser is stored in the pattern 11469 - MAJOR: pattern/map: Extends the map edition system in the patterns 11470 - MEDIUM: pattern: merge same pattern 11471 - MEDIUM: pattern: The expected type is stored in the pattern head, and conversion is executed once. 11472 - MINOR: pattern: Each pattern is identified by unique id. 11473 - MINOR: pattern/acl: Each pattern of each acl can be load with specified id 11474 - MINOR: pattern: The function "pattern_register()" is no longer used. 11475 - MINOR: pattern: Merge function pattern_add() with pat_ref_push(). 11476 - MINOR: pattern: store configuration reference for each acl or map pattern. 11477 - MINOR: pattern: Each pattern expression element store the reference struct. 11478 - MINOR: dumpstats: display the reference for th key/pattern and value. 11479 - MEDIUM: pattern: delete() function uses the pat_ref_elt to find the element to be removed 11480 - MEDIUM: pattern_find_smp: functions find_smp uses the pat_ref_elt to find the element to be removed 11481 - MEDIUM: dumpstats/pattern: display and use each pointer of each pattern dumped 11482 - MINOR: pattern/map/acl: Centralization of the file parsers 11483 - MINOR: pattern: Check if the file reference is not used with acl and map 11484 - MINOR: acl/pattern: Acl "-M" option force to load file as map file with two columns 11485 - MEDIUM: dumpstats: Display error message during add of values. 11486 - MINOR: pattern: The function pat_ref_set() have now atomic behavior 11487 - MINOR: regex: The pointer regstr in the struc regex is no longer used. 11488 - MINOR: cli: Block the usage of the command "acl add" in many cases. 11489 - MINOR: doc: Update the documentation about the map and acl 11490 - MINOR: pattern: index duplicates 11491 - MINOR: configuration: File and line propagation 11492 - MINOR: dumpstat/conf: display all the configuration lines that using pattern reference 11493 - MINOR: standard: Disable ip resolution during the runtime 11494 - MINOR: pattern: Remove the flag "PAT_F_FROM_FILE". 11495 - MINOR: pattern: forbid dns resolutions 11496 - DOC: document "get map" / "get acl" on the CLI 11497 - MEDIUM: acl: Change the acl register struct 11498 - BUG/MEDIUM: acl: boolean only matches were broken by recent changes 11499 - DOC: pattern: pattern organisation schematics 11500 - MINOR: pattern/cli: Update used terms in documentation and cli 11501 - MINOR: cli: remove information about acl or map owner. 11502 - MINOR: session: don't always assume there's a listener 11503 - MINOR: pattern: Add function to prune and reload pattern list. 11504 - MINOR: standard: Add ipv6 support in the function url2sa(). 11505 - MEDIUM: config: Dynamic sections. 11506 - BUG/MEDIUM: stick-table: fix IPv4-to-IPv6 conversion in src_* fetches 11507 - MINOR: http: Add the "language" converter to for use with accept-language 11508 - BUG/MINOR: log: Don't dump empty unique-id 11509 - BUG/MAJOR: session: fix a possible crash with src_tracked 11510 - DOC: Update "language" documentation 11511 - MINOR: http: add the function "del-header" to the directives http-request and http-response 11512 - DOC: add some information on capture.(req|res).hdr 11513 - MINOR: http: capture.req.method and capture.req.uri 11514 - MINOR: http: optimize capture.req.method and capture.req.uri 11515 - MINOR: session: clean up the connection free code 11516 - BUG/MEDIUM: checks: immediately report a connection success 11517 - MEDIUM: connection: don't use real send() flags in snd_buf() 11518 - OPTIM: ssl: implement dynamic record size adjustment 11519 - MINOR: stats: report exact last session time in backend too 11520 - BUG/MEDIUM: stats: the "lastsess" field must appear last in the CSV. 11521 - BUG/MAJOR: check: fix memory leak in "tcp-check connect" over SSL 11522 - BUG/MINOR: channel: initialize xfer_small/xfer_large on new buffers 11523 - MINOR: channel: add the date of last read in the channel 11524 - MEDIUM: stream-int: automatically disable CF_STREAMER flags after idle 11525 - MINOR: ssl: add DEFAULT_SSL_MAX_RECORD to set the record size at build time 11526 - MINOR: config: make the stream interface idle timer user-configurable 11527 - MINOR: config: add global directives to set default SSL ciphers 11528 - MINOR: sample: add a rand() sample fetch to return a sample. 11529 - BUG/MEDIUM: config: immediately abort if peers section has no name 11530 - BUG/MINOR: ssl: fix syntax in config error message 11531 - BUG/MEDIUM: ssl: always send a full buffer after EAGAIN 11532 - BUG/MINOR: config: server on-marked-* statement is ignored in default-server 11533 - BUG/MEDIUM: backend: prefer-last-server breaks redispatch 11534 - BUG/MEDIUM: http: continue to emit 503 on keep-alive to different server 11535 - MEDIUM: acl: fix pattern type for payload / payload_lv 11536 - BUG/MINOR: config: fix a crash on startup when a disabled backend references a peer 11537 - BUG/MEDIUM: compression: fix the output type of the compressor name 11538 - BUG/MEDIUM: http: don't start to forward request data before the connect 11539 - MINOR: http: release compression context only in http_end_txn() 11540 - MINOR: protect ebimtree/ebistree against multiple inclusions 11541 - MEDIUM: proxy: create a tree to store proxies by name 11542 - MEDIUM: proxy: make findproxy() use trees to look up proxies 11543 - MEDIUM: proxy: make get_backend_server() use findproxy() to lookup proxies 11544 - MEDIUM: stick-table: lookup table names using trees. 11545 - MEDIUM: config: faster lookup for duplicated proxy name 11546 - CLEANUP: acl: remove obsolete test in parse_acl_expr() 11547 - MINOR: sample: move smp_to_type to sample.c 11548 - MEDIUM: compression: consider the "q=" attribute in Accept-Encoding 11549 - REORG: cfgparse: move server keyword parsing to server.c 11550 - BUILD: adjust makefile for AIX 5.1 11551 - BUG/MEDIUM: pattern: fix wrong definition of the pat_prune_fcts array 11552 - CLEANUP: pattern: move array definitions to proto/ and not types/ 11553 - BUG/MAJOR: counters: check for null-deref when looking up an alternate table 11554 - BUILD: ssl: previous patch failed 11555 - BUILD/MEDIUM: standard: get rid of the last strcpy() 11556 - BUILD/MEDIUM: standard: get rid of sprintf() 11557 - BUILD/MEDIUM: cfgparse: get rid of sprintf() 11558 - BUILD/MEDIUM: checks: get rid of sprintf() 11559 - BUILD/MEDIUM: http: remove calls to sprintf() 11560 - BUG/MEDIUM: systemd-wrapper: fix locating of haproxy binary 11561 - BUILD/MINOR: ssl: remove one call to sprintf() 11562 - MEDIUM: http: don't reject anymore message bodies not containing the url param 11563 - MEDIUM: http: wait for the first chunk or message body length in http_process_body 11564 - CLEANUP: http: rename http_process_request_body() 11565 - CLEANUP: http: prepare dedicated processing for chunked encoded message bodies 11566 - MINOR: http: make msg->eol carry the last CRLF length 11567 - MAJOR: http: do not use msg->sol while processing messages or forwarding data 11568 - MEDIUM: http: http_parse_chunk_crlf() must not advance the buffer pointer 11569 - MAJOR: http: don't update msg->sov anymore while processing the body 11570 - MINOR: http: add a small helper to compute the amount of body bytes present 11571 - MEDIUM: http: add a small helper to compute how far to rewind to find headers 11572 - MINOR: http: add a small helper to compute how far to rewind to find URI 11573 - MEDIUM: http: small helpers to compute how far to rewind to find BODY and DATA 11574 - MAJOR: http: reset msg->sov after headers are forwarded 11575 - MEDIUM: http: forward headers again while waiting for connection to complete 11576 - BUG/MINOR: http: deinitialize compression after a parsing error 11577 - BUG/MINOR: http: deinitialize compression after a compression error 11578 - MEDIUM: http: headers must be forwarded even if data was already inspected 11579 - MAJOR: http: re-enable compression on chunked encoding 11580 - MAJOR: http/compression: fix chunked-encoded response processing 11581 - MEDIUM: http: cleanup: centralize a little bit HTTP compression end 11582 - MEDIUM: http: start to centralize the forwarding code 11583 - MINOR: http: further cleanups of response forwarding function 11584 - MEDIUM: http: only allocate the temporary compression buffer when needed 11585 - MAJOR: http: centralize data forwarding in the request path 11586 - CLEANUP: http: document the response forwarding states 11587 - CLEANUP: http: remove all calls to http_silent_debug() 11588 - DOC: internal: add some reminders about HTTP parsing and pointer states 11589 - BUG/MAJOR: http: fix bug in parse_qvalue() when selecting compression algo 11590 - BUG/MINOR: stats: last session was not always set 11591 - DOC: add pointer to the Cyril's HTML doc in the README 11592 - MEDIUM: config: relax use_backend check to make the condition optional 11593 - MEDIUM: config: report misplaced http-request rules 11594 - MEDIUM: config: report misplaced use-server rules 11595 - DOC: update roadmap with what was done. 11596 115972014/02/03 : 1.5-dev22 11598 - MEDIUM: tcp-check new feature: connect 11599 - MEDIUM: ssl: Set verify 'required' as global default for servers side. 11600 - MINOR: ssl: handshake optim for long certificate chains. 11601 - BUG/MINOR: pattern: pattern comparison executed twice 11602 - BUG/MEDIUM: map: segmentation fault with the stats's socket command "set map ..." 11603 - BUG/MEDIUM: pattern: Segfault in binary parser 11604 - MINOR: pattern: move functions for grouping pat_match_* and pat_parse_* and add documentation. 11605 - MINOR: standard: The parse_binary() returns the length consumed and his documentation is updated 11606 - BUG/MINOR: payload: the patterns of the acl "req.ssl_ver" are no parsed with the good function. 11607 - BUG/MEDIUM: pattern: "pat_parse_dotted_ver()" set bad expect_type. 11608 - BUG/MINOR: sample: The c_str2int converter does not fail if the entry is not an integer 11609 - BUG/MEDIUM: http/auth: Sometimes the authentication credentials can be mix between two requests 11610 - MINOR: doc: Bad cli function name. 11611 - MINOR: http: smp_fetch_capture_header_* fetch captured headers 11612 - BUILD: last release inadvertently prepended a "+" in front of the date 11613 - BUG/MEDIUM: stream-int: fix the keep-alive idle connection handler 11614 - BUG/MEDIUM: backend: do not re-initialize the connection's context upon reuse 11615 - BUG: Revert "OPTIM/MEDIUM: epoll: fuse active events into polled ones during polling changes" 11616 - BUG/MINOR: checks: successful check completion must not re-enable MAINT servers 11617 - MINOR: http: try to stick to same server after status 401/407 11618 - BUG/MINOR: http: always disable compression on HTTP/1.0 11619 - OPTIM: poll: restore polling after a poll/stop/want sequence 11620 - OPTIM: http: don't stop polling for read on the client side after a request 11621 - BUG/MEDIUM: checks: unchecked servers could not be enabled anymore 11622 - BUG/MEDIUM: stats: the web interface must check the tracked servers before enabling 11623 - BUG/MINOR: channel: CHN_INFINITE_FORWARD must be unsigned 11624 - BUG/MINOR: stream-int: do not clear the owner upon unregister 11625 - MEDIUM: stats: add support for HTTP keep-alive on the stats page 11626 - BUG/MEDIUM: stats: fix HTTP/1.0 breakage introduced in previous patch 11627 - Revert "MEDIUM: stats: add support for HTTP keep-alive on the stats page" 11628 - MAJOR: channel: add a new flag CF_WAKE_WRITE to notify the task of writes 11629 - OPTIM: session: set the READ_DONTWAIT flag when connecting 11630 - BUG/MINOR: http: don't clear the SI_FL_DONT_WAKE flag between requests 11631 - MINOR: session: factor out the connect time measurement 11632 - MEDIUM: session: prepare to support earlier transitions to the established state 11633 - MEDIUM: stream-int: make si_connect() return an established state when possible 11634 - MINOR: checks: use an inline function for health_adjust() 11635 - OPTIM: session: put unlikely() around the freewheeling code 11636 - MEDIUM: config: report a warning when multiple servers have the same name 11637 - BUG: Revert "OPTIM: poll: restore polling after a poll/stop/want sequence" 11638 - BUILD/MINOR: listener: remove a glibc warning on accept4() 11639 - BUG/MAJOR: connection: fix mismatch between rcv_buf's API and usage 11640 - BUILD: listener: fix recent accept4() again 11641 - BUG/MAJOR: ssl: fix breakage caused by recent fix abf08d9 11642 - BUG/MEDIUM: polling: ensure we update FD status when there's no more activity 11643 - MEDIUM: listener: fix polling management in the accept loop 11644 - MINOR: protocol: improve the proto->drain() API 11645 - MINOR: connection: add a new conn_drain() function 11646 - MEDIUM: tcp: report in tcp_drain() that lingering is already disabled on close 11647 - MEDIUM: connection: update callers of ctrl->drain() to use conn_drain() 11648 - MINOR: connection: add more error codes to report connection errors 11649 - MEDIUM: tcp: report connection error at the connection level 11650 - MEDIUM: checks: make use of chk_report_conn_err() for connection errors 11651 - BUG/MEDIUM: unique_id: HTTP request counter is not stable 11652 - DOC: fix misleading information about SIGQUIT 11653 - BUG/MAJOR: fix freezes during compression 11654 - BUG/MEDIUM: stream-interface: don't wake the task up before end of transfer 11655 - BUILD: fix VERDATE exclusion regex 11656 - CLEANUP: polling: rename "spec_e" to "state" 11657 - DOC: add a diagram showing polling state transitions 11658 - REORG: polling: rename "spec_e" to "state" and "spec_p" to "cache" 11659 - REORG: polling: rename "fd_spec" to "fd_cache" 11660 - REORG: polling: rename the cache allocation functions 11661 - REORG: polling: rename "fd_process_spec_events()" to "fd_process_cached_events()" 11662 - MAJOR: polling: rework the whole polling system 11663 - MAJOR: connection: remove the CO_FL_WAIT_{RD,WR} flags 11664 - MEDIUM: connection: remove conn_{data,sock}_poll_{recv,send} 11665 - MEDIUM: connection: add check for readiness in I/O handlers 11666 - MEDIUM: stream-interface: the polling flags must always be updated in chk_snd_conn 11667 - MINOR: stream-interface: no need to call fd_stop_both() on error 11668 - MEDIUM: connection: no need to recheck FD state 11669 - CLEANUP: connection: use conn_ctrl_ready() instead of checking the flag 11670 - CLEANUP: connection: use conn_xprt_ready() instead of checking the flag 11671 - CLEANUP: connection: fix comments in connection.h to reflect new behaviour. 11672 - OPTIM: raw-sock: don't speculate after a short read if polling is enabled 11673 - MEDIUM: polling: centralize polled events processing 11674 - MINOR: polling: create function fd_compute_new_polled_status() 11675 - MINOR: cli: add more information to the "show info" output 11676 - MEDIUM: listener: add support for limiting the session rate in addition to the connection rate 11677 - MEDIUM: listener: apply a limit on the session rate submitted to SSL 11678 - REORG: stats: move the stats socket states to dumpstats.c 11679 - MINOR: cli: add the new "show pools" command 11680 - BUG/MEDIUM: counters: flush content counters after each request 11681 - BUG/MEDIUM: counters: fix stick-table entry leak when using track-sc2 in connection 11682 - MINOR: tools: add very basic support for composite pointers 11683 - MEDIUM: counters: stop relying on session flags at all 11684 - BUG/MINOR: cli: fix missing break in command line parser 11685 - BUG/MINOR: config: correctly report when log-format headers require HTTP mode 11686 - MAJOR: http: update connection mode configuration 11687 - MEDIUM: http: make keep-alive + httpclose be passive mode 11688 - MAJOR: http: switch to keep-alive mode by default 11689 - BUG/MEDIUM: http: fix regression caused by recent switch to keep-alive by default 11690 - BUG/MEDIUM: listener: improve detection of non-working accept4() 11691 - BUILD: listener: add fcntl.h and unistd.h 11692 - BUG/MINOR: raw_sock: correctly set the MSG_MORE flag 11693 116942013/12/17 : 1.5-dev21 11695 - MINOR: stats: don't use a monospace font to report numbers 11696 - MINOR: session: remove debugging code 11697 - BUG/MAJOR: patterns: fix double free caused by loading strings from files 11698 - MEDIUM: http: make option http_proxy automatically rewrite the URL 11699 - BUG/MEDIUM: http: cook_cnt() forgets to set its output type 11700 - BUG/MINOR: stats: correctly report throttle rate of low weight servers 11701 - BUG/MEDIUM: checks: servers must not start in slowstart mode 11702 - BUG/MINOR: acl: parser must also stop at comma on ACL-only keywords 11703 - MEDIUM: stream-int: implement a very simplistic idle connection manager 11704 - DOC: update the ROADMAP file 11705 117062013/12/16 : 1.5-dev20 11707 - DOC: add missing options to the manpage 11708 - DOC: add manpage references to all system calls 11709 - DOC: update manpage reference to haproxy-en.txt 11710 - DOC: remove -s and -l options from the manpage 11711 - DOC: missing information for the "description" keyword 11712 - DOC: missing http-send-name-header keyword in keyword table 11713 - MINOR: tools: function my_memmem() to lookup binary contents 11714 - MEDIUM: checks: add send/expect tcp based check 11715 - MEDIUM: backend: Enhance hash-type directive with an algorithm options 11716 - MEDIUM: backend: Implement avalanche as a modifier of the hashing functions. 11717 - DOC: Documentation for hashing function, with test results. 11718 - BUG/MEDIUM: ssl: potential memory leak using verifyhost 11719 - BUILD: ssl: compilation issue with openssl v0.9.6. 11720 - BUG/MINOR: ssl: potential memory leaks using ssl_c_key_alg or ssl_c_sig_alg. 11721 - MINOR: ssl: optimization of verifyhost on wildcard certificates. 11722 - BUG/MINOR: ssl: verifyhost does not match empty strings on wildcard. 11723 - MINOR: ssl: Add statement 'verifyhost' to "server" statements 11724 - CLEANUP: session: remove event_accept() which was not used anymore 11725 - BUG/MINOR: deinit: free fdinfo while doing cleanup 11726 - DOC: minor typo fix in documentation 11727 - BUG/MEDIUM: server: set the macro for server's max weight SRV_UWGHT_MAX to SRV_UWGHT_RANGE 11728 - BUG/MINOR: use the same check condition for server as other algorithms 11729 - DOC: fix typo in comments 11730 - BUG/MINOR: deinit: free server map which is allocated in init_server_map() 11731 - CLEANUP: stream_interface: cleanup loop information in si_conn_send_loop() 11732 - MINOR: buffer: align the last output line of buffer_dump() 11733 - MINOR: buffer: align the last output line if there are less than 8 characters left 11734 - DOC: stick-table: modify the description 11735 - OPTIM: stream_interface: return directly if the connection flag CO_FL_ERROR has been set 11736 - CLEANUP: code style: use tabs to indent codes 11737 - DOC: checkcache: block responses with cacheable cookies 11738 - BUG/MINOR: check_config_validity: check the returned value of stktable_init() 11739 - MEDIUM: haproxy-systemd-wrapper: Use haproxy in same directory 11740 - MEDIUM: systemd-wrapper: Kill child processes when interrupted 11741 - LOW: systemd-wrapper: Write debug information to stdout 11742 - BUG/MINOR: http: fix "set-tos" not working in certain configurations 11743 - MEDIUM: http: add IPv6 support for "set-tos" 11744 - DOC: ssl: update build instructions to use new SSL_* variables 11745 - BUILD/MINOR: systemd: fix compiler warning about unused result 11746 - url32+src - like base32+src but whole url including parameters 11747 - BUG/MINOR: fix forcing fastinter in "on-error" 11748 - CLEANUP: Make parameters of srv_downtime and srv_getinter const 11749 - CLEANUP: Remove unused 'last_slowstart_change' field from struct peer 11750 - MEDIUM: Split up struct server's check element 11751 - MEDIUM: Move result element to struct check 11752 - MEDIUM: Paramatise functions over the check of a server 11753 - MEDIUM: cfgparse: Factor out check initialisation 11754 - MEDIUM: Add state to struct check 11755 - MEDIUM: Move health element to struct check 11756 - MEDIUM: Add helper for task creation for checks 11757 - MEDIUM: Add helper function for failed checks 11758 - MEDIUM: Log agent fail, stopped or down as info 11759 - MEDIUM: Remove option lb-agent-chk 11760 - MEDIUM: checks: Add supplementary agent checks 11761 - MEDIUM: Do not mark a server as down if the agent is unavailable 11762 - MEDIUM: Set rise and fall of agent checks to 1 11763 - MEDIUM: Add enable and disable agent unix socket commands 11764 - MEDIUM: Add DRAIN state and report it on the stats page 11765 - BUILD/MINOR: missing header file 11766 - CLEANUP: regex: Create regex_comp function that compiles regex using compilation options 11767 - CLEANUP: The function "regex_exec" needs the string length but in many case they expect null terminated char. 11768 - MINOR: http: some exported functions were not in the header file 11769 - MINOR: http: change url_decode to return the size of the decoded string. 11770 - BUILD/MINOR: missing header file 11771 - BUG/MEDIUM: sample: The function v4tov6 cannot support input and output overlap 11772 - BUG/MINOR: arg: fix error reporting for add-header/set-header sample fetch arguments 11773 - MINOR: sample: export the generic sample conversion parser 11774 - MINOR: sample: export sample_casts 11775 - MEDIUM: acl: use the fetch syntax 'fetch(args),conv(),conv()' into the ACL keyword 11776 - MINOR: stick-table: use smp_expr_output_type() to retrieve the output type of a "struct sample_expr" 11777 - MINOR: sample: provide the original sample_conv descriptor struct to the argument checker function. 11778 - MINOR: tools: Add a function to convert buffer to an ipv6 address 11779 - MINOR: acl: export acl arrays 11780 - MINOR: acl: Extract the pattern parsing and indexation from the "acl_read_patterns_from_file()" function 11781 - MINOR: acl: Extract the pattern matching function 11782 - MINOR: sample: Define new struct sample_storage 11783 - MEDIUM: acl: associate "struct sample_storage" to each "struct acl_pattern" 11784 - REORG: acl/pattern: extract pattern matching from the acl file and create pattern.c 11785 - MEDIUM: pattern: create pattern expression 11786 - MEDIUM: pattern: rename "acl" prefix to "pat" 11787 - MEDIUM: sample: let the cast functions set their output type 11788 - MINOR: sample: add a private field to the struct sample_conv 11789 - MINOR: map: Define map types 11790 - MEDIUM: sample: add the "map" converter 11791 - MEDIUM: http: The redirect strings follows the log format rules. 11792 - BUG/MINOR: acl: acl parser does not recognize empty converter list 11793 - BUG/MINOR: map: The map list was declared in the map.h file 11794 - MINOR: map: Cleanup the initialisation of map descriptors. 11795 - MEDIUM: map: merge identical maps 11796 - BUG/MEDIUM: pattern: Pattern node has type of "struct pat_idx_elt" in place of "struct eb_node" 11797 - BUG/MEDIUM: map: Bad map file parser 11798 - CLEANUP/MINOR: standard: use the system define INET6_ADDRSTRLEN in place of MAX_IP6_LEN 11799 - BUG/MEDIUM: sample: conversion from str to ipv6 may read data past end 11800 - MINOR: map: export map_get_reference() function 11801 - MINOR: pattern: Each pattern sets the expected input type 11802 - MEDIUM: acl: Last patch change the output type 11803 - MEDIUM: pattern: Extract the index process from the pat_parse_*() functions 11804 - MINOR: standard: The function parse_binary() can use preallocated buffer 11805 - MINOR: regex: Change the struct containing regex 11806 - MINOR: regex: Copy the original regex expression into string. 11807 - MINOR: pattern: add support for compiling patterns for lookups 11808 - MINOR: pattern: make the pattern matching function return a pointer to the matched element 11809 - MINOR: map: export parse output sample functions 11810 - MINOR: pattern: add function to lookup a specific entry in pattern list 11811 - MINOR: pattern/map: Each pattern must free the associated sample 11812 - MEDIUM: dumpstat: make the CLI parser understand the backslash as an escape char 11813 - MEDIUM: map: dynamic manipulation of maps 11814 - BUG/MEDIUM: unique_id: junk in log on empty unique_id 11815 - BUG/MINOR: log: junk at the end of syslog packet 11816 - MINOR: Makefile: provide cscope rule 11817 - DOC: compression: chunk are not compressed anymore 11818 - MEDIUM: session: disable lingering on the server when the client aborts 11819 - BUG/MEDIUM: prevent gcc from moving empty keywords lists into BSS 11820 - DOC: remove the comment saying that SSL certs are not checked on the server side 11821 - BUG: counters: third counter was not stored if others unset 11822 - BUG/MAJOR: http: don't emit the send-name-header when no server is available 11823 - BUG/MEDIUM: http: "option checkcache" fails with the no-cache header 11824 - BUG/MAJOR: http: sample prefetch code was not properly migrated 11825 - BUG/MEDIUM: splicing: fix abnormal CPU usage with splicing 11826 - BUG/MINOR: stream_interface: don't call chk_snd() on polled events 11827 - OPTIM: splicing: use splice() for the last block when relevant 11828 - MEDIUM: sample: handle comma-delimited converter list 11829 - MINOR: sample: fix sample_process handling of unstable data 11830 - CLEANUP: acl: move the 3 remaining sample fetches to samples.c 11831 - MINOR: sample: add a new "date" fetch to return the current date 11832 - MINOR: samples: add the http_date([<offset>]) sample converter. 11833 - DOC: minor improvements to the part on the stats socket. 11834 - MEDIUM: sample: systematically pass the keyword pointer to the keyword 11835 - MINOR: payload: split smp_fetch_rdp_cookie() 11836 - MINOR: counters: factor out smp_fetch_sc*_tracked 11837 - MINOR: counters: provide a generic function to retrieve a stkctr for sc* and src. 11838 - MEDIUM: counters: factor out smp_fetch_sc*_get_gpc0 11839 - MEDIUM: counters: factor out smp_fetch_sc*_gpc0_rate 11840 - MEDIUM: counters: factor out smp_fetch_sc*_inc_gpc0 11841 - MEDIUM: counters: factor out smp_fetch_sc*_clr_gpc0 11842 - MEDIUM: counters: factor out smp_fetch_sc*_conn_cnt 11843 - MEDIUM: counters: factor out smp_fetch_sc*_conn_rate 11844 - MEDIUM: counters: factor out smp_fetch_sc*_conn_cur 11845 - MEDIUM: counters: factor out smp_fetch_sc*_sess_cnt 11846 - MEDIUM: counters: factor out smp_fetch_sc*_sess_rate 11847 - MEDIUM: counters: factor out smp_fetch_sc*_http_req_cnt 11848 - MEDIUM: counters: factor out smp_fetch_sc*_http_req_rate 11849 - MEDIUM: counters: factor out smp_fetch_sc*_http_err_cnt 11850 - MEDIUM: counters: factor out smp_fetch_sc*_http_err_rate 11851 - MEDIUM: counters: factor out smp_fetch_sc*_kbytes_in 11852 - MEDIUM: counters: factor out smp_fetch_sc*_bytes_in_rate 11853 - MEDIUM: counters: factor out smp_fetch_sc*_kbytes_out 11854 - MEDIUM: counters: factor out smp_fetch_sc*_bytes_out_rate 11855 - MEDIUM: counters: factor out smp_fetch_sc*_trackers 11856 - MINOR: session: make the number of stick counter entries more configurable 11857 - MEDIUM: counters: support passing the counter number as a fetch argument 11858 - MEDIUM: counters: support looking up a key in an alternate table 11859 - MEDIUM: cli: adjust the method for feeding frequency counters in tables 11860 - MINOR: cli: make it possible to enter multiple values at once with "set table" 11861 - MINOR: payload: allow the payload sample fetches to retrieve arbitrary lengths 11862 - BUG/MINOR: cli: "clear table" must not kill entries that don't match condition 11863 - MINOR: ssl: use MAXPATHLEN instead of PATH_MAX 11864 - MINOR: config: warn when a server with no specific port uses rdp-cookie 11865 - BUG/MEDIUM: unique_id: HTTP request counter must be unique! 11866 - DOC: add a mention about the limited chunk size 11867 - BUG/MEDIUM: fix broken send_proxy on FreeBSD 11868 - MEDIUM: stick-tables: flush old entries upon soft-stop 11869 - MINOR: tcp: add new "close" action for tcp-response 11870 - MINOR: payload: provide the "res.len" fetch method 11871 - BUILD: add SSL_INC/SSL_LIB variables to force the path to openssl 11872 - MINOR: http: compute response time before processing headers 11873 - BUG/MINOR: acl: fix improper string size assignment in proxy argument 11874 - BUG/MEDIUM: http: accept full buffers on smp_prefetch_http 11875 - BUG/MINOR: acl: implicit arguments of ACL keywords were not properly resolved 11876 - BUG/MEDIUM: session: risk of crash on out of memory conditions 11877 - BUG/MINOR: peers: set the accept date in outgoing connections 11878 - BUG/MEDIUM: tcp: do not skip tracking rules on second pass 11879 - BUG/MEDIUM: acl: do not evaluate next terms after a miss 11880 - MINOR: acl: add a warning when an ACL keyword is used without any value 11881 - MINOR: tcp: don't use tick_add_ifset() when timeout is known to be set 11882 - BUG/MINOR: acl: remove patterns from the tree before freeing them 11883 - MEDIUM: backend: add support for the wt6 hash 11884 - OPTIM/MEDIUM: epoll: fuse active events into polled ones during polling changes 11885 - OPTIM/MINOR: mark the source address as already known on accept() 11886 - BUG/MINOR: stats: don't count tarpitted connections twice 11887 - CLEANUP: http: homogenize processing of denied req counter 11888 - CLEANUP: http: merge error handling for req* and http-request * 11889 - BUG/MEDIUM: http: fix possible parser crash when parsing erroneous "http-request redirect" rules 11890 - BUG/MINOR: http: fix build warning introduced with url32/url32_src 11891 - BUG/MEDIUM: checks: fix slow start regression after fix attempt 11892 - BUG/MAJOR: server: weight calculation fails for map-based algorithms 11893 - MINOR: stats: report correct throttling percentage for servers in slowstart 11894 - OPTIM: connection: fold the error handling with handshake handling 11895 - MINOR: peers: accept to learn strings of different lengths 11896 - BUG/MAJOR: fix haproxy crash when using server tracking instead of checks 11897 - BUG/MAJOR: check: fix haproxy crash during soft-stop/soft-start 11898 - BUG/MINOR: stats: do not report "via" on tracking servers in maintenance 11899 - BUG/MINOR: connection: fix typo in error message report 11900 - BUG/MINOR: backend: fix target address retrieval in transparent mode 11901 - BUG/MINOR: config: report the correct track-sc number in tcp-rules 11902 - BUG/MINOR: log: fix log-format parsing errors 11903 - DOC: add some information about how to apply converters to samples 11904 - MINOR: acl/pattern: use types different from int to clarify who does what. 11905 - MINOR: pattern: import acl_find_match_name() into pattern.h 11906 - MEDIUM: stick-tables: support automatic conversion from ipv4<->ipv6 11907 - MEDIUM: log-format: relax parsing of '%' followed by unsupported characters 11908 - BUG/MINOR: http: usual deinit stuff in last commit 11909 - BUILD: log: silent a warning about isblank() with latest patches 11910 - BUG/MEDIUM: checks: fix health check regression causing them to depend on declaration order 11911 - BUG/MEDIUM: checks: fix a long-standing issue with reporting connection errors 11912 - BUG/MINOR: checks: don't consider errno and use conn->err_code 11913 - BUG/MEDIUM: checks: also update the DRAIN state from the web interface 11914 - MINOR: stats: remove some confusion between the DRAIN state and NOLB 11915 - BUG/MINOR: tcp: check that no error is pending during a connect probe 11916 - BUG/MINOR: connection: check EINTR when sending a PROXY header 11917 - MEDIUM: connection: set the socket shutdown flags on socket errors 11918 - BUG/MEDIUM: acl: fix regression introduced by latest converters support 11919 - MINOR: connection: clear errno prior to checking for errors 11920 - BUG/MINOR: checks: do not trust errno in write event before any syscall 11921 - MEDIUM: checks: centralize error reporting 11922 - OPTIM: checks: don't poll on recv when using plain TCP connects 11923 - OPTIM: checks: avoid setting SO_LINGER twice 11924 - MINOR: tools: add a generic binary hex string parser 11925 - BUG/MEDIUM: checks: tcp-check: do not poll when there's nothing to send 11926 - BUG/MEDIUM: check: tcp-check might miss some outgoing data when socket buffers are full 11927 - BUG/MEDIUM: args: fix double free on error path in argument expression parser 11928 - BUG/MINOR: acl: fix sample expression error reporting 11929 - BUG/MINOR: checks: tcp-check actions are enums, not flags 11930 - MEDIUM: checks: make tcp-check perform multiple send() at once 11931 - BUG/MEDIUM: stick: completely remove the unused flag from the store entries 11932 - OPTIM: ebtree: pack the struct eb_node to avoid holes on 64-bit 11933 - BUG/MEDIUM: stick-tables: complete the latest fix about store-responses 11934 - CLEANUP: stream_interface: remove unused field err_loc 11935 - MEDIUM: stats: don't use conn->xprt_st anymore 11936 - MINOR: session: add a simple function to retrieve a session from a task 11937 - MEDIUM: stats: don't use conn->xprt_ctx anymore 11938 - MEDIUM: peers: don't rely on conn->xprt_ctx anymore 11939 - MINOR: http: prevent smp_fetch_url_{ip,port} from using si->conn 11940 - MINOR: connection: make it easier to emit proxy protocol for unknown addresses 11941 - MEDIUM: stats: prepare the HTTP stats I/O handler to support more states 11942 - MAJOR: stats: move the HTTP stats handling to its applet 11943 - MEDIUM: stats: move request argument processing to the final step 11944 - MEDIUM: session: detect applets from the session by using s->target 11945 - MAJOR: session: check for a connection to an applet in sess_prepare_conn_req() 11946 - MAJOR: session: pass applet return traffic through the response analysers 11947 - MEDIUM: stream-int: split the shutr/shutw functions between applet and conn 11948 - MINOR: stream-int: make the shutr/shutw functions void 11949 - MINOR: obj: provide a safe and an unsafe access to pointed objects 11950 - MINOR: connection: add a field to store an object type 11951 - MINOR: connection: always initialize conn->objt_type to OBJ_TYPE_CONN 11952 - MEDIUM: stream interface: move the peers' ptr into the applet context 11953 - MINOR: stream-interface: move the applet context to its own struct 11954 - MINOR: obj: introduce a new type appctx 11955 - MINOR: stream-int: rename ->applet to ->appctx 11956 - MINOR: stream-int: split si_prepare_embedded into si_prepare_none and si_prepare_applet 11957 - MINOR: stream-int: add a new pointer to the end point 11958 - MEDIUM: stream-interface: set the pointer to the applet into the applet context 11959 - MAJOR: stream interface: remove the ->release function pointer 11960 - MEDIUM: stream-int: make ->end point to the connection or the appctx 11961 - CLEANUP: stream-int: remove obsolete si_ctrl function 11962 - MAJOR: stream-int: stop using si->conn and use si->end instead 11963 - MEDIUM: stream-int: do not allocate a connection in parallel to applets 11964 - MEDIUM: session: attach incoming connection to target on embryonic sessions 11965 - MINOR: connection: add conn_init() to (re)initialize a connection 11966 - MINOR: checks: call conn_init() to properly initialize the connection. 11967 - MINOR: peers: make use of conn_init() to initialize the connection 11968 - MINOR: session: use conn_init() to initialize the connections 11969 - MINOR: http: use conn_init() to reinitialize the server connection 11970 - MEDIUM: connection: replace conn_prepare with conn_assign 11971 - MINOR: get rid of si_takeover_conn() 11972 - MINOR: connection: add conn_new() / conn_free() 11973 - MAJOR: connection: add two new flags to indicate readiness of control/transport 11974 - MINOR: stream-interface: introduce si_reset() and si_set_state() 11975 - MINOR: connection: reintroduce conn_prepare to set the protocol and transport 11976 - MINOR: connection: replace conn_assign with conn_attach 11977 - MEDIUM: stream-interface: introduce si_attach_conn to replace si_prepare_conn 11978 - MAJOR: stream interface: dynamically allocate the outgoing connection 11979 - MEDIUM: connection: move the send_proxy offset to the connection 11980 - MINOR: connection: check for send_proxy during the connect(), not the SI 11981 - MEDIUM: connection: merge the send_proxy and local_send_proxy calls 11982 - MEDIUM: stream-int: replace occurrences of si->appctx with si_appctx() 11983 - MEDIUM: stream-int: return the allocated appctx in stream_int_register_handler() 11984 - MAJOR: stream-interface: dynamically allocate the applet context 11985 - MEDIUM: session: automatically register the applet designated by the target 11986 - MEDIUM: stats: delay appctx initialization 11987 - CLEANUP: peers: use less confusing state/status code names 11988 - MEDIUM: peers: delay appctx initialization 11989 - MINOR: stats: provide some appctx information in "show sess all" 11990 - DIET/MINOR: obj: pack the obj_type enum to 8 bits 11991 - DIET/MINOR: connection: rearrange a few fields to save 8 bytes in the struct 11992 - DIET/MINOR: listener: rearrange a few fields in struct listener to save 16 bytes 11993 - DIET/MINOR: proxy: rearrange a few fields in struct proxy to save 16 bytes 11994 - DIET/MINOR: session: reduce the struct session size by 8 bytes 11995 - DIET/MINOR: stream-int: rearrange a few fields in struct stream_interface to save 8 bytes 11996 - DIET/MINOR: http: reduce the size of struct http_txn by 8 bytes 11997 - MINOR: http: switch the http state to an enum 11998 - MINOR: http: use an enum for the auth method in http_auth_data 11999 - DIET/MINOR: task: reduce struct task size by 8 bytes 12000 - MINOR: stream_interface: add reporting of ressouce allocation errors 12001 - MINOR: session: report lack of resources using the new stream-interface's error code 12002 - BUILD: simplify the date and version retrieval in the makefile 12003 - BUILD: prepare the makefile to skip format lines in SUBVERS and VERDATE 12004 - BUILD: use format tags in VERDATE and SUBVERS files 12005 - BUG/MEDIUM: channel: bo_getline() must wait for \n until buffer is full 12006 - CLEANUP: check: server port is unsigned 12007 - BUG/MEDIUM: checks: agent doesn't get the response if server does not closes 12008 - MINOR: tools: buf2ip6 must not modify output on failure 12009 - MINOR: pattern: do not assign SMP_TYPES by default to patterns 12010 - MINOR: sample: make sample_parse_expr() use memprintf() to report parse errors 12011 - MINOR: arg: improve wording on error reporting 12012 - BUG/MEDIUM: sample: simplify and fix the argument parsing 12013 - MEDIUM: acl: fix the argument parser to let the lower layer report detailed errors 12014 - MEDIUM: acl: fix the initialization order of the ACL expression 12015 - CLEANUP: acl: remove useless blind copy-paste from sample converters 12016 - TESTS: add regression tests for ACL and sample expression parsers 12017 - BUILD: time: adapt the type of TV_ETERNITY to the local system 12018 - MINOR: chunks: allocate the trash chunks before parsing the config 12019 - BUILD: definitely silence some stupid GCC warnings 12020 - MINOR: chunks: always initialize the output chunk in get_trash_chunk() 12021 - MINOR: checks: improve handling of the servers tracking chain 12022 - REORG: checks: retrieve the check-specific defines from server.h to checks.h 12023 - MINOR: checks: use an enum instead of flags to report a check result 12024 - MINOR: checks: rename the state flags 12025 - MINOR: checks: replace state DISABLED with CONFIGURED and ENABLED 12026 - MINOR: checks: use check->state instead of srv->state & SRV_CHECKED 12027 - MINOR: checks: fix agent check interval computation 12028 - MINOR: checks: add a PAUSED state for the checks 12029 - MINOR: checks: create the agent tasks even when no check is configured 12030 - MINOR: checks: add a flag to indicate what check is an agent 12031 - MEDIUM: checks: enable agent checks even if health checks are disabled 12032 - BUG/MEDIUM: checks: ensure we can enable a server after boot 12033 - BUG/MEDIUM: checks: tracking servers must not inherit the MAINT flag 12034 - BUG/MAJOR: session: repair tcp-request connection rules 12035 - BUILD: fix SUBVERS extraction in the Makefile 12036 - BUILD: pattern: silence a warning about uninitialized value 12037 - BUILD: log: fix build warning on Solaris 12038 - BUILD: dumpstats: fix build error on Solaris 12039 - DOC: move option pgsql-check to the correct place 12040 - DOC: move option tcp-check to the proper place 12041 - MINOR: connection: add simple functions to report connection readiness 12042 - MEDIUM: connection: centralize handling of nolinger in fd management 12043 - OPTIM: http: set CF_READ_DONTWAIT on response message 12044 - OPTIM: http: do not re-enable reading on client side while closing the server side 12045 - MINOR: config: add option http-keep-alive 12046 - MEDIUM: connection: inform si_alloc_conn() whether existing conn is OK or not 12047 - MAJOR: stream-int: handle the connection reuse in si_connect() 12048 - MAJOR: http: add the keep-alive transition on the server side 12049 - MAJOR: backend: enable connection reuse 12050 - MINOR: http: add option prefer-last-server 12051 - MEDIUM: http: do not report connection errors for second and further requests 12052 120532013/06/17 : 1.5-dev19 12054 - MINOR: stats: remove the autofocus on the scope input field 12055 - BUG/MEDIUM: Fix crt-list file parsing error: filtered name was ignored. 12056 - BUG/MEDIUM: ssl: EDH ciphers are not usable if no DH parameters present in pem file. 12057 - BUG/MEDIUM: shctx: makes the code independent on SSL runtime version. 12058 - MEDIUM: ssl: improve crt-list format to support negation 12059 - BUG: ssl: fix crt-list for clients not supporting SNI 12060 - MINOR: stats: show soft-stopped servers in different color 12061 - BUG/MINOR: config: "source" does not work in defaults section 12062 - BUG: regex: fix pcre compile error when using JIT 12063 - MINOR: ssl: add pattern fetch 'ssl_c_sha1' 12064 - BUG: ssl: send payload gets corrupted if tune.ssl.maxrecord is used 12065 - MINOR: show PCRE version and JIT status in -vv 12066 - BUG/MINOR: jit: don't rely on USE flag to detect support 12067 - DOC: readme: add suggestion to link against static openssl 12068 - DOC: examples: provide simplified ssl configuration 12069 - REORG: tproxy: prepare the transparent proxy defines for accepting other OSes 12070 - MINOR: tproxy: add support for FreeBSD 12071 - MINOR: tproxy: add support for OpenBSD 12072 - DOC: examples: provide an example of transparent proxy configuration for FreeBSD 8 12073 - CLEANUP: fix minor typo in error message. 12074 - CLEANUP: fix missing include <string.h> in proto/listener.h 12075 - CLEANUP: protect checks.h from multiple inclusions 12076 - MINOR: compression: acl "res.comp" and fetch "res.comp_algo" 12077 - BUG/MINOR: http: add-header/set-header did not accept the ACL condition 12078 - BUILD: mention in the Makefile that USE_PCRE_JIT is for libpcre >= 8.32 12079 - BUG/MEDIUM: splicing is broken since 1.5-dev12 12080 - BUG/MAJOR: acl: add implicit arguments to the resolve list 12081 - BUG/MINOR: tcp: fix error reporting for TCP rules 12082 - CLEANUP: peers: remove a bit of spaghetti to prepare for the next bugfix 12083 - MINOR: stick-table: allow to allocate an entry without filling it 12084 - BUG/MAJOR: peers: fix an overflow when syncing strings larger than 16 bytes 12085 - MINOR: session: only call http_send_name_header() when changing the server 12086 - MINOR: tcp: report the erroneous word in tcp-request track* 12087 - BUG/MAJOR: backend: consistent hash can loop forever in certain circumstances 12088 - BUG/MEDIUM: log: fix regression on log-format handling 12089 - MEDIUM: log: report file name, line number, and directive name with log-format errors 12090 - BUG/MINOR: cli: "clear table" did not work anymore without a key 12091 - BUG/MINOR: cli: "clear table xx data.xx" does not work anymore 12092 - BUG/MAJOR: http: compression still has defects on chunked responses 12093 - BUG/MINOR: stats: fix confirmation links on the stats interface 12094 - BUG/MINOR: stats: the status bar does not appear anymore after a change 12095 - BUG/MEDIUM: stats: allocate the stats frontend also on "stats bind-process" 12096 - BUG/MEDIUM: stats: fix a regression when dealing with POST requests 12097 - BUG/MINOR: fix unterminated ACL array in compression 12098 - BUILD: last fix broke non-linux platforms 12099 - MINOR: init: indicate the SSL runtime version on -vv. 12100 - BUG/MEDIUM: compression: the deflate algorithm must use global settings as well 12101 - BUILD: stdbool is not portable (again) 12102 - DOC: readme: add a small reminder about restrictions to respect in the code 12103 - MINOR: ebtree: add new eb_next_dup/eb_prev_dup() functions to visit duplicates 12104 - BUG/MINOR: acl: fix a double free during exit when using PCRE_JIT 12105 - DOC: fix wrong copy-paste in the rspdel example 12106 - MINOR: counters: make it easier to extend the amount of tracked counters 12107 - MEDIUM: counters: add support for tracking a third counter 12108 - MEDIUM: counters: add a new "gpc0_rate" counter in stick-tables 12109 - BUG/MAJOR: http: always ensure response buffer has some room for a response 12110 - MINOR: counters: add fetch/acl sc*_tracked to indicate whether a counter is tracked 12111 - MINOR: defaults: allow REQURI_LEN and CAPTURE_LEN to be redefined 12112 - MINOR: log: add a new flag 'L' for locally processed requests 12113 - MINOR: http: add full-length header fetch methods 12114 - MEDIUM: protocol: implement a "drain" function in protocol layers 12115 - MEDIUM: http: add a new "http-response" ruleset 12116 - MEDIUM: http: add the "set-nice" action to http-request and http-response 12117 - MEDIUM: log: add a log level override value in struct session 12118 - MEDIUM: http: add support for action "set-log-level" in http-request/http-response 12119 - MEDIUM: http: add support for "set-tos" in http-request/http-response 12120 - MEDIUM: http: add the "set-mark" action on http-request/http-response rules 12121 - MEDIUM: tcp: add "tcp-request connection expect-proxy layer4" 12122 - MEDIUM: acl: automatically detect the type of certain fetches 12123 - MEDIUM: acl: remove a lot of useless ACLs that are equivalent to their fetches 12124 - MEDIUM: acl: remove 15 additional useless ACLs that are equivalent to their fetches 12125 - DOC: major reorg of ACL + sample fetch 12126 - CLEANUP: http: remove the bogus urlp_ip ACL match 12127 - MINOR: acl: add the new "env()" fetch method to retrieve an environment variable 12128 - BUG/MINOR: acl: correctly consider boolean fetches when doing casts 12129 - BUG/CRITICAL: fix a possible crash when using negative header occurrences 12130 - DOC: update ROADMAP file 12131 - MEDIUM: counters: use sc0/sc1/sc2 instead of sc1/sc2/sc3 12132 - MEDIUM: stats: add proxy name filtering on the statistic page 12133 121342013/04/03 : 1.5-dev18 12135 - DOCS: Add explanation of intermediate certs to crt paramater 12136 - DOC: typo and minor fixes in compression paragraph 12137 - MINOR: config: http-request configuration error message misses new keywords 12138 - DOC: minor typo fix in documentation 12139 - BUG/MEDIUM: ssl: ECDHE ciphers not usable without named curve configured. 12140 - MEDIUM: ssl: add bind-option "strict-sni" 12141 - MEDIUM: ssl: add mapping from SNI to cert file using "crt-list" 12142 - MEDIUM: regex: Use PCRE JIT in acl 12143 - DOC: simplify bind option "interface" explanation 12144 - DOC: tfo: bump required kernel to linux-3.7 12145 - BUILD: add explicit support for TFO with USE_TFO 12146 - MEDIUM: New cli option -Ds for systemd compatibility 12147 - MEDIUM: add haproxy-systemd-wrapper 12148 - MEDIUM: add systemd service 12149 - BUG/MEDIUM: systemd-wrapper: don't leak zombie processes 12150 - BUG/MEDIUM: remove supplementary groups when changing gid 12151 - BUG/MEDIUM: config: fix parser crash with bad bind or server address 12152 - BUG/MINOR: Correct logic in cut_crlf() 12153 - CLEANUP: checks: Make desc argument to set_server_check_status const 12154 - CLEANUP: dumpstats: Make cli_release_handler() static 12155 - MEDIUM: server: Break out set weight processing code 12156 - MEDIUM: server: Allow relative weights greater than 100% 12157 - MEDIUM: server: Tighten up parsing of weight string 12158 - MEDIUM: checks: Add agent health check 12159 - BUG/MEDIUM: ssl: openssl 0.9.8 doesn't open /dev/random before chroot 12160 - BUG/MINOR: time: frequency counters are not totally accurate 12161 - BUG/MINOR: http: don't process abortonclose when request was sent 12162 - BUG/MEDIUM: stream_interface: don't close outgoing connections on shutw() 12163 - BUG/MEDIUM: checks: ignore late resets after valid responses 12164 - DOC: fix bogus recommendation on usage of gpc0 counter 12165 - BUG/MINOR: http-compression: lookup Cache-Control in the response, not the request 12166 - MINOR: signal: don't block SIGPROF by default 12167 - OPTIM: epoll: make use of EPOLLRDHUP 12168 - OPTIM: splice: detect shutdowns and avoid splice() == 0 12169 - OPTIM: splice: assume by default that splice is working correctly 12170 - BUG/MINOR: log: temporary fix for lost SSL info in some situations 12171 - BUG/MEDIUM: peers: only the last peers section was used by tables 12172 - BUG/MEDIUM: config: verbosely reject peers sections with multiple local peers 12173 - BUG/MINOR: epoll: use a fix maxevents argument in epoll_wait() 12174 - BUG/MINOR: config: fix improper check for failed memory alloc in ACL parser 12175 - BUG/MINOR: config: free peer's address when exiting upon parsing error 12176 - BUG/MINOR: config: check the proper variable when parsing log minlvl 12177 - BUG/MEDIUM: checks: ensure the health_status is always within bounds 12178 - BUG/MINOR: cli: show sess should always validate s->listener 12179 - BUG/MINOR: log: improper NULL return check on utoa_pad() 12180 - CLEANUP: http: remove a useless null check 12181 - CLEANUP: tcp/unix: remove useless NULL check in {tcp,unix}_bind_listener() 12182 - BUG/MEDIUM: signal: signal handler does not properly check for signal bounds 12183 - BUG/MEDIUM: tools: off-by-one in quote_arg() 12184 - BUG/MEDIUM: uri_auth: missing NULL check and memory leak on memory shortage 12185 - BUG/MINOR: unix: remove the 'level' field from the ux struct 12186 - CLEANUP: http: don't try to deinitialize http compression if it fails before init 12187 - CLEANUP: config: slowstart is never negative 12188 - CLEANUP: config: maxcompcpuusage is never negative 12189 - BUG/MEDIUM: log: emit '-' for empty fields again 12190 - BUG/MEDIUM: checks: fix a race condition between checks and observe layer7 12191 - BUILD: fix a warning emitted by isblank() on non-c99 compilers 12192 - BUILD: improve the makefile's support for libpcre 12193 - MEDIUM: halog: add support for counting per source address (-ic) 12194 - MEDIUM: tools: make str2sa_range support all address syntaxes 12195 - MEDIUM: config: make use of str2sa_range() instead of str2sa() 12196 - MEDIUM: config: use str2sa_range() to parse server addresses 12197 - MEDIUM: config: use str2sa_range() to parse peers addresses 12198 - MINOR: tests: add a config file to ease address parsing tests. 12199 - MINOR: ssl: add a global tunable for the max SSL/TLS record size 12200 - BUG/MINOR: syscall: fix NR_accept4 system call on sparc/linux 12201 - BUILD/MINOR: syscall: add definition of NR_accept4 for ARM 12202 - MINOR: config: report missing peers section name 12203 - BUG/MEDIUM: tools: fix bad character handling in str2sa_range() 12204 - BUG/MEDIUM: stats: never apply "unix-bind prefix" to the global stats socket 12205 - MINOR: tools: prepare str2sa_range() to return an error message 12206 - BUG/MEDIUM: checks: don't call connect() on unsupported address families 12207 - MINOR: tools: prepare str2sa_range() to accept a prefix 12208 - MEDIUM: tools: make str2sa_range() parse unix addresses too 12209 - MEDIUM: config: make str2listener() use str2sa_range() to parse unix addresses 12210 - MEDIUM: config: use a single str2sa_range() call to parse bind addresses 12211 - MEDIUM: config: use str2sa_range() to parse log addresses 12212 - CLEANUP: tools: remove str2sun() which is not used anymore. 12213 - MEDIUM: config: add complete support for str2sa_range() in dispatch 12214 - MEDIUM: config: add complete support for str2sa_range() in server addr 12215 - MEDIUM: config: add complete support for str2sa_range() in 'server' 12216 - MEDIUM: config: add complete support for str2sa_range() in 'peer' 12217 - MEDIUM: config: add complete support for str2sa_range() in 'source' and 'usesrc' 12218 - CLEANUP: minor cleanup in str2sa_range() and str2ip() 12219 - CLEANUP: config: do not use multiple errmsg at once 12220 - MEDIUM: tools: support specifying explicit address families in str2sa_range() 12221 - MAJOR: listener: support inheriting a listening fd from the parent 12222 - MAJOR: tools: support environment variables in addresses 12223 - BUG/MEDIUM: http: add-header should not emit "-" for empty fields 12224 - BUG/MEDIUM: config: ACL compatibility check on "redirect" was wrong 12225 - BUG/MEDIUM: http: fix another issue caused by http-send-name-header 12226 - DOC: mention the new HTTP 307 and 308 redirect statues 12227 - MEDIUM: poll: do not use FD_* macros anymore 12228 - BUG/MAJOR: ev_select: disable the select() poller if maxsock > FD_SETSIZE 12229 - BUG/MINOR: acl: ssl_fc_{alg,use}_keysize must parse integers, not strings 12230 - BUG/MINOR: acl: ssl_c_used, ssl_fc{,_has_crt,_has_sni} take no pattern 12231 - BUILD: fix usual isdigit() warning on solaris 12232 - BUG/MEDIUM: tools: vsnprintf() is not always reliable on Solaris 12233 - OPTIM: buffer: remove one jump in buffer_count() 12234 - OPTIM: http: improve branching in chunk size parser 12235 - OPTIM: http: optimize the response forward state machine 12236 - BUILD: enable poll() by default in the makefile 12237 - BUILD: add explicit support for Mac OS/X 12238 - BUG/MAJOR: http: use a static storage for sample fetch context 12239 - BUG/MEDIUM: ssl: improve error processing and reporting in ssl_sock_load_cert_list_file() 12240 - BUG/MAJOR: http: fix regression introduced by commit a890d072 12241 - BUG/MAJOR: http: fix regression introduced by commit d655ffe 12242 - BUG/CRITICAL: using HTTP information in tcp-request content may crash the process 12243 - MEDIUM: acl: remove flag ACL_MAY_LOOKUP which is improperly used 12244 - MEDIUM: samples: use new flags to describe compatibility between fetches and their usages 12245 - MINOR: log: indicate it when some unreliable sample fetches are logged 12246 - MEDIUM: samples: move payload-based fetches and ACLs to their own file 12247 - MINOR: backend: rename sample fetch functions and declare the sample keywords 12248 - MINOR: frontend: rename sample fetch functions and declare the sample keywords 12249 - MINOR: listener: rename sample fetch functions and declare the sample keywords 12250 - MEDIUM: http: unify acl and sample fetch functions 12251 - MINOR: session: rename sample fetch functions and declare the sample keywords 12252 - MAJOR: acl: make all ACLs reference the fetch function via a sample. 12253 - MAJOR: acl: remove the arg_mask from the ACL definition and use the sample fetch's 12254 - MAJOR: acl: remove fetch argument validation from the ACL struct 12255 - MINOR: http: add new direction-explicit sample fetches for headers and cookies 12256 - MINOR: payload: add new direction-explicit sample fetches 12257 - CLEANUP: acl: remove ACL hooks which were never used 12258 - MEDIUM: proxy: remove acl_requires and just keep a flag "http_needed" 12259 - MINOR: sample: provide a function to report the name of a sample check point 12260 - MAJOR: acl: convert all ACL requires to SMP use+val instead of ->requires 12261 - CLEANUP: acl: remove unused references to ACL_USE_* 12262 - MINOR: http: replace acl_parse_ver with acl_parse_str 12263 - MEDIUM: acl: move the ->parse, ->match and ->smp fields to acl_expr 12264 - MAJOR: acl: add option -m to change the pattern matching method 12265 - MINOR: acl: remove the use_count in acl keywords 12266 - MEDIUM: acl: have a pointer to the keyword name in acl_expr 12267 - MEDIUM: acl: support using sample fetches directly in ACLs 12268 - MEDIUM: http: remove val_usr() to validate user_lists 12269 - MAJOR: sample: maintain a per-proxy list of the fetch args to resolve 12270 - MINOR: ssl: add support for the "alpn" bind keyword 12271 - MINOR: http: status code 303 is HTTP/1.1 only 12272 - MEDIUM: http: implement redirect 307 and 308 12273 - MINOR: http: status 301 should not be marked non-cacheable 12274 122752012/12/28 : 1.5-dev17 12276 - MINOR: ssl: Setting global tune.ssl.cachesize value to 0 disables SSL session cache. 12277 - BUG/MEDIUM: stats: fix stats page regression introduced by commit 20b0de5 12278 - BUG/MINOR: stats: last fix was still wrong 12279 - BUG/MINOR: stats: http-request rules still don't cope with stats 12280 - BUG/MINOR: http: http-request add-header emits a corrupted header 12281 - BUG/MEDIUM: stats: disable request analyser when processing POST or HEAD 12282 - BUG/MINOR: log: make log-format, unique-id-format and add-header more independant 12283 - BUILD: log: unused variable svid 12284 - CLEANUP: http: rename the misleading http_check_access_rule 12285 - MINOR: http: move redirect rule processing to its own function 12286 - REORG: config: move the http redirect rule parser to proto_http.c 12287 - MEDIUM: http: add support for "http-request redirect" rules 12288 - MEDIUM: http: add support for "http-request tarpit" rule 12289 122902012/12/24 : 1.5-dev16 12291 - BUG/MEDIUM: ssl: Prevent ssl error from affecting other connections. 12292 - BUG/MINOR: ssl: error is not reported if it occurs simultaneously with peer close detection. 12293 - MINOR: ssl: add fetch and acl "ssl_c_used" to check if current SSL session uses a client certificate. 12294 - MINOR: contrib: make the iprange tool grep for addresses 12295 - CLEANUP: polling: gcc doesn't always optimize constants away 12296 - OPTIM: poll: optimize fd management functions for low register count CPUs 12297 - CLEANUP: poll: remove a useless double-check on fdtab[fd].owner 12298 - OPTIM: epoll: use a temp variable for intermediary flag computations 12299 - OPTIM: epoll: current fd does not count as a new one 12300 - BUG/MINOR: poll: the I/O handler was called twice for polled I/Os 12301 - MINOR: http: make resp_ver and status ACLs check for the presence of a response 12302 - BUG/MEDIUM: stream-interface: fix possible stalls during transfers 12303 - BUG/MINOR: stream_interface: don't return when the fd is already set 12304 - BUG/MEDIUM: connection: always update connection flags prior to computing polling 12305 - CLEANUP: buffer: use buffer_empty() instead of buffer_len()==0 12306 - BUG/MAJOR: stream_interface: fix occasional data transfer freezes 12307 - BUG/MEDIUM: stream_interface: fix another case where the reader might not be woken up 12308 - BUG/MINOR: http: don't abort client connection on premature responses 12309 - BUILD: no need to clean up when making git-tar 12310 - MINOR: log: add a tag for amount of bytes uploaded from client to server 12311 - BUG/MEDIUM: log: fix possible segfault during config parsing 12312 - MEDIUM: log: change a few log tokens to make them easier to remember 12313 - BUG/MINOR: log: add_to_logformat_list() used the wrong constants 12314 - MEDIUM: log-format: make the format parser more robust and more extensible 12315 - MINOR: sample: support cast from bool to string 12316 - MINOR: samples: add a function to fetch and convert any sample to a string 12317 - MINOR: log: add lf_text_len 12318 - MEDIUM: log: add the ability to include samples in logs 12319 - REORG: stats: massive code reorg and cleanup 12320 - REORG: stats: move the HTTP header injection to proto_http 12321 - REORG: stats: functions are now HTTP/CLI agnostic 12322 - BUG/MINOR: log: fix regression introduced by commit 8a3f52 12323 - MINOR: chunks: centralize the trash chunk allocation 12324 - MEDIUM: stats: use hover boxes instead of title to report details 12325 - MEDIUM: stats: use multi-line tips to display detailed counters 12326 - MINOR: tools: simplify the use of the int to ascii macros 12327 - MINOR: stats: replace STAT_FMT_CSV with STAT_FMT_HTML 12328 - MINOR: http: prepare to support more http-request actions 12329 - MINOR: log: make parse_logformat_string() take a const char * 12330 - MEDIUM: http: add http-request 'add-header' and 'set-header' to build headers 12331 123322012/12/12 : 1.5-dev15 12333 - DOC: add a few precisions on compression 12334 - BUG/MEDIUM: ssl: Fix handshake failure on session resumption with client cert. 12335 - BUG/MINOR: ssl: One free session in cache remains unused. 12336 - BUG/MEDIUM: ssl: first outgoing connection would fail with {ca,crt}-ignore-err 12337 - MEDIUM: ssl: manage shared cache by blocks for huge sessions. 12338 - MINOR: acl: add fetch for server session rate 12339 - BUG/MINOR: compression: Content-Type is case insensitive 12340 - MINOR: compression: disable on multipart or status != 200 12341 - BUG/MINOR: http: don't report client aborts as server errors 12342 - MINOR: stats: compute the ratio of compressed response based on 2xx responses 12343 - MINOR: http: factor out the content-type checks 12344 - BUG/MAJOR: stats: correctly check for a possible divide error when showing compression ratios 12345 - BUILD: ssl: OpenSSL 0.9.6 has no renegociation 12346 - BUG/MINOR: http: disable compression when message has no body 12347 - MINOR: compression: make the stats a bit more robust 12348 - BUG/MEDIUM: comp: DEFAULT_MAXZLIBMEM was expressed in bytes and not megabytes 12349 - MINOR: connection: don't remove failed handshake flags 12350 - MEDIUM: connection: add an error code in connections 12351 - MEDIUM: connection: add minimal error reporting in logs for incomplete connections 12352 - MEDIUM: connection: add error reporting for the PROXY protocol header 12353 - MEDIUM: connection: add error reporting for the SSL 12354 - DOC: document the connection error format in logs 12355 - BUG/MINOR: http: don't log a 503 on client errors while waiting for requests 12356 - BUILD: stdbool is not portable 12357 - BUILD: ssl: NAME_MAX is not portable, use MAXPATHLEN instead 12358 - BUG/MAJOR: raw_sock: must check error code on hangup 12359 - BUG/MAJOR: polling: do not set speculative events on ERR nor HUP 12360 - BUG/MEDIUM: session: fix FD leak when transport layer logging is enabled 12361 - MINOR: stats: add a few more information on session dump 12362 - BUG/MINOR: tcp: set the ADDR_TO_SET flag on outgoing connections 12363 - CLEANUP: connection: remove unused server/proxy/task/si_applet declarations 12364 - BUG/MEDIUM: tcp: process could theorically crash on lack of source ports 12365 - MINOR: cfgparse: mention "interface" in the list of allowed "source" options 12366 - MEDIUM: connection: introduce "struct conn_src" for servers and proxies 12367 - CLEANUP: proto_tcp: use the same code to bind servers and backends 12368 - CLEANUP: backend: use the same tproxy address selection code for servers and backends 12369 - BUG/MEDIUM: stick-tables: conversions to strings were broken in dev13 12370 - MEDIUM: proto_tcp: add support for tracking L7 information 12371 - MEDIUM: counters: add sc1_trackers/sc2_trackers 12372 - MINOR: http: add the "base32" pattern fetch function 12373 - MINOR: http: add the "base32+src" fetch method. 12374 - CLEANUP: session: use an array for the stick counters 12375 - BUG/MINOR: proto_tcp: fix parsing of "table" in track-sc1/2 12376 - BUG/MINOR: proto_tcp: bidirectional fetches not supported anymore in track-sc1/2 12377 - BUG/MAJOR: connection: always recompute polling status upon I/O 12378 - BUG/MINOR: connection: remove a few synchronous calls to polling updates 12379 - MINOR: config: improve error checking on TCP stick-table tracking 12380 - DOC: add some clarifications to the readme 12381 123822012/11/26 : 1.5-dev14 12383 - DOC: fix minor typos 12384 - BUG/MEDIUM: compression: does not forward trailers 12385 - MINOR: buffer_dump with ASCII 12386 - BUG/MEDIUM: checks: mark the check as stopped after a connect error 12387 - BUG/MEDIUM: checks: ensure we completely disable polling upon success 12388 - BUG/MINOR: checks: don't mark the FD as closed before transport close 12389 - MEDIUM: checks: avoid accumulating TIME_WAITs during checks 12390 - MINOR: cli: report the msg state in full text in "show sess $PTR" 12391 - CLEANUP: checks: rename some server check flags 12392 - MAJOR: checks: rework completely bogus state machine 12393 - BUG/MINOR: checks: slightly clean the state machine up 12394 - MEDIUM: checks: avoid waking the application up for pure TCP checks 12395 - MEDIUM: checks: close the socket as soon as we have a response 12396 - BUG/MAJOR: checks: close FD on all timeouts 12397 - MINOR: checks: fix recv polling after connect() 12398 - MEDIUM: connection: provide a common conn_full_close() function 12399 - BUG/MEDIUM: checks: prevent TIME_WAITs from appearing also on timeouts 12400 - BUG/MAJOR: peers: the listener's maxaccept was not set and caused loops 12401 - MINOR: listeners: make the accept loop more robust when maxaccept==0 12402 - BUG/MEDIUM: acl: correctly resolve all args, not just the first one 12403 - BUG/MEDIUM: acl: make prue_acl_expr() correctly free ACL expressions upon exit 12404 - BUG/MINOR: stats: fix inversion of the report of a check in progress 12405 - MEDIUM: tcp: add explicit support for delayed ACK in connect() 12406 - BUG/MEDIUM: connection: always disable polling upon error 12407 - MINOR: connection: abort earlier when errors are detected 12408 - BUG/MEDIUM: checks: report handshake failures 12409 - BUG/MEDIUM: connection: local_send_proxy must wait for connection to establish 12410 - MINOR: tcp: add support for the "v6only" bind option 12411 - MINOR: stats: also report the computed compression savings in html stats 12412 - MINOR: stats: report the total number of compressed responses per front/back 12413 - MINOR: tcp: add support for the "v4v6" bind option 12414 - DOC: stats: document the comp_rsp stats column 12415 - BUILD: buffer: fix another isprint() warning on solaris 12416 - MINOR: cli: add support for the "show sess all" command 12417 - BUG/MAJOR: cli: show sess <id> may randomly corrupt the back-ref list 12418 - MINOR: cli: improve output format for show sess $ptr 12419 124202012/11/22 : 1.5-dev13 12421 - BUILD: fix build issue without USE_OPENSSL 12422 - BUILD: fix compilation error with DEBUG_FULL 12423 - DOC: ssl: remove prefer-server-ciphers documentation 12424 - DOC: ssl: surround keywords with quotes 12425 - DOC: fix minor typo on http-send-name-header 12426 - BUG/MEDIUM: acls using IPv6 subnets patterns incorrectly match IPs 12427 - BUG/MAJOR: fix a segfault on option http_proxy and url_ip acl 12428 - MEDIUM: http: accept IPv6 values with (s)hdr_ip acl 12429 - BUILD: report zlib support in haproxy -vv 12430 - DOC: compression: add some details and clean up the formatting 12431 - DOC: Change is_ssl acl to ssl_fc acl in example 12432 - DOC: make it clear what the HTTP request size is 12433 - MINOR: ssl: try to load Diffie-Hellman parameters from cert file 12434 - DOC: ssl: update 'crt' statement on 'bind' about Diffie-Hellman parameters loading 12435 - MINOR: ssl: add elliptic curve Diffie-Hellman support for ssl key generation 12436 - DOC: ssl: add 'ecdhe' statement on 'bind' 12437 - MEDIUM: ssl: add client certificate authentication support 12438 - DOC: ssl: add 'verify', 'cafile' and 'crlfile' statements on 'bind' 12439 - MINOR: ssl: add fetch and ACL 'client_crt' to test a client cert is present 12440 - DOC: ssl: add fetch and ACL 'client_cert' 12441 - MINOR: ssl: add ignore verify errors options 12442 - DOC: ssl: add 'ca-ignore-err' and 'crt-ignore-err' statements on 'bind' 12443 - MINOR: ssl: add fetch and ACL 'ssl_verify_result' 12444 - DOC: ssl: add fetch and ACL 'ssl_verify_result' 12445 - MINOR: ssl: add fetches and ACLs to return verify errors 12446 - DOC: ssl: add fetches and ACLs 'ssl_verify_crterr', 'ssl_verify_caerr', and 'ssl_verify_crterr_depth' 12447 - MINOR: ssl: disable shared memory and locks on session cache if nbproc == 1 12448 - MINOR: ssl: add build param USE_PRIVATE_CACHE to build cache without shared memory 12449 - MINOR: ssl : add statements 'notlsv11' and 'notlsv12' and rename 'notlsv1' to 'notlsv10'. 12450 - DOC: ssl : add statements 'notlsv11' and 'notlsv12' and rename 'notlsv1' to 'notlsv10'. 12451 - MEDIUM: config: authorize frontend and listen without bind. 12452 - MINOR: ssl: add statement 'no-tls-tickets' on bind to disable stateless session resumption 12453 - DOC: ssl: add 'no-tls-tickets' statement documentation. 12454 - BUG/MINOR: ssl: Fix CRL check was not enabled when crlfile was specified. 12455 - BUG/MINOR: build: Fix compilation issue on openssl 0.9.6 due to missing CRL feature. 12456 - BUG/MINOR: conf: Fix 'maxsslconn' statement error if built without OPENSSL. 12457 - BUG/MINOR: build: Fix failure with USE_OPENSSL=1 and USE_FUTEX=1 on archs i486 and i686. 12458 - MINOR: ssl: remove prefer-server-ciphers statement and set it as the default on ssl listeners. 12459 - BUG/MEDIUM: ssl: subsequent handshakes fail after server configuration changes 12460 - MINOR: ssl: add 'crt-base' and 'ca-base' global statements. 12461 - MEDIUM: conf: rename 'nosslv3' and 'notlsvXX' statements 'no-sslv3' and 'no-tlsvXX'. 12462 - MEDIUM: conf: rename 'cafile' and 'crlfile' statements 'ca-file' and 'crl-file' 12463 - MINOR: ssl: use bit fields to store ssl options instead of one int each 12464 - MINOR: ssl: add 'force-sslv3' and 'force-tlsvXX' statements on bind. 12465 - MINOR: ssl: add 'force-sslv3' and 'force-tlsvXX' statements on server 12466 - MINOR: ssl: add defines LISTEN_DEFAULT_CIPHERS and CONNECT_DEFAULT_CIPHERS. 12467 - BUG/MINOR: ssl: Fix issue on server statements 'no-tls*' and 'no-sslv3' 12468 - MINOR: ssl: move ssl context init for servers from cfgparse.c to ssl_sock.c 12469 - MEDIUM: ssl: reject ssl server keywords in default-server statement 12470 - MINOR: ssl: add statement 'no-tls-tickets' on server side. 12471 - MINOR: ssl: add statements 'verify', 'ca-file' and 'crl-file' on servers. 12472 - DOC: Fix rename of options cafile and crlfile to ca-file and crl-file. 12473 - MINOR: sample: manage binary to string type convertion in stick-table and samples. 12474 - MINOR: acl: add parse and match primitives to use binary type on ACLs 12475 - MINOR: sample: export 'sample_get_trash_chunk(void)' 12476 - MINOR: conf: rename all ssl modules fetches using prefix 'ssl_fc' and 'ssl_c' 12477 - MINOR: ssl: add pattern and ACLs fetches 'ssl_fc_protocol', 'ssl_fc_cipher', 'ssl_fc_use_keysize' and 'ssl_fc_alg_keysize' 12478 - MINOR: ssl: add pattern fetch 'ssl_fc_session_id' 12479 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_version' and 'ssl_f_version' 12480 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_s_dn', 'ssl_c_i_dn', 'ssl_f_s_dn' and 'ssl_c_i_dn' 12481 - MINOR: ssl: add pattern and ACLs 'ssl_c_sig_alg' and 'ssl_f_sig_alg' 12482 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_key_alg' and 'ssl_f_key_alg' 12483 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_notbefore', 'ssl_c_notafter', 'ssl_f_notbefore' and 'ssl_f_notafter' 12484 - MINOR: ssl: add 'crt' statement on server. 12485 - MINOR: ssl: checks the consistency of a private key with the corresponding certificate 12486 - BUG/MEDIUM: ssl: review polling on reneg. 12487 - BUG/MEDIUM: ssl: Fix some reneg cases not correctly handled. 12488 - BUG/MEDIUM: ssl: Fix sometimes reneg fails if requested by server. 12489 - MINOR: build: allow packagers to specify the ssl cache size 12490 - MINOR: conf: add warning if ssl is not enabled and a certificate is present on bind. 12491 - MINOR: ssl: Add tune.ssl.lifetime statement in global. 12492 - MINOR: compression: Enable compression for IE6 w/SP2, IE7 and IE8 12493 - BUG: http: revert broken optimisation from 82fe75c1a79dac933391501b9d293bce34513755 12494 - DOC: duplicate ssl_sni section 12495 - MEDIUM: HTTP compression (zlib library support) 12496 - CLEANUP: use struct comp_ctx instead of union 12497 - BUILD: remove dependency to zlib.h 12498 - MINOR: compression: memlevel and windowsize 12499 - MEDIUM: use pool for zlib 12500 - MINOR: compression: try init in cfgparse.c 12501 - MINOR: compression: init before deleting headers 12502 - MEDIUM: compression: limit RAM usage 12503 - MINOR: compression: tune.comp.maxlevel 12504 - MINOR: compression: maximum compression rate limit 12505 - MINOR: log-format: check number of arguments in cfgparse.c 12506 - BUG/MEDIUM: compression: no Content-Type header but type in configuration 12507 - BUG/MINOR: compression: deinit zlib only when required 12508 - MEDIUM: compression: don't compress when no data 12509 - MEDIUM: compression: use pool for comp_ctx 12510 - MINOR: compression: rate limit in 'show info' 12511 - MINOR: compression: report zlib memory usage 12512 - BUG/MINOR: compression: dynamic level increase 12513 - DOC: compression: unsupported cases. 12514 - MINOR: compression: CPU usage limit 12515 - MEDIUM: http: add "redirect scheme" to ease HTTP to HTTPS redirection 12516 - BUG/MAJOR: ssl: missing tests in ACL fetch functions 12517 - MINOR: config: add a function to indent error messages 12518 - REORG: split "protocols" files into protocol and listener 12519 - MEDIUM: config: replace ssl_conf by bind_conf 12520 - CLEANUP: listener: remove unused conf->file and conf->line 12521 - MEDIUM: listener: add a minimal framework to register "bind" keyword options 12522 - MEDIUM: config: move the "bind" TCP parameters to proto_tcp 12523 - MEDIUM: move bind SSL parsing to ssl_sock 12524 - MINOR: config: improve error reporting for "bind" lines 12525 - MEDIUM: config: move the common "bind" settings to listener.c 12526 - MEDIUM: config: move all unix-specific bind keywords to proto_uxst.c 12527 - MEDIUM: config: enumerate full list of registered "bind" keywords upon error 12528 - MINOR: listener: add a scope field in the bind keyword lists 12529 - MINOR: config: pass the file and line to config keyword parsers 12530 - MINOR: stats: fill the file and line numbers in the stats frontend 12531 - MINOR: config: set the bind_conf entry on listeners created from a "listen" line. 12532 - MAJOR: listeners: use dual-linked lists to chain listeners with frontends 12533 - REORG: listener: move unix perms from the listener to the bind_conf 12534 - BUG: backend: balance hdr was broken since 1.5-dev11 12535 - MINOR: standard: make memprintf() support a NULL destination 12536 - MINOR: config: make str2listener() use memprintf() to report errors. 12537 - MEDIUM: stats: remove the stats_sock struct from the global struct 12538 - MINOR: ssl: set the listeners' data layer to ssl during parsing 12539 - MEDIUM: stats: make use of the standard "bind" parsers to parse global socket 12540 - DOC: move bind options to their own section 12541 - DOC: stats: refer to "bind" section for "stats socket" settings 12542 - DOC: fix index to reference bind and server options 12543 - BUG: http: do not print garbage on invalid requests in debug mode 12544 - BUG/MINOR: config: check the proper pointer to report unknown protocol 12545 - CLEANUP: connection: offer conn_prepare() to set up a connection 12546 - CLEANUP: config: fix typo inteface => interface 12547 - BUG: stats: fix regression introduced by commit 4348fad1 12548 - MINOR: cli: allow to set frontend maxconn to zero 12549 - BUG/MAJOR: http: chunk parser was broken with buffer changes 12550 - MEDIUM: monitor: simplify handling of monitor-net and mode health 12551 - MINOR: connection: add a pointer to the connection owner 12552 - MEDIUM: connection: make use of the owner instead of container_of 12553 - BUG/MINOR: ssl: report the L4 connection as established when possible 12554 - BUG/MEDIUM: proxy: must not try to stop disabled proxies upon reload 12555 - BUG/MINOR: config: use a copy of the file name in proxy configurations 12556 - BUG/MEDIUM: listener: don't pause protocols that do not support it 12557 - MEDIUM: proxy: add the global frontend to the list of normal proxies 12558 - BUG/MINOR: epoll: correctly disable FD polling in fd_rem() 12559 - MINOR: signal: really ignore signals configured with no handler 12560 - MINOR: buffers: add a few functions to write chars, strings and blocks 12561 - MINOR: raw_sock: always report asynchronous connection errors 12562 - MEDIUM: raw_sock: improve connection error reporting 12563 - REORG: connection: rename the data layer the "transport layer" 12564 - REORG: connection: rename app_cb "data" 12565 - MINOR: connection: provide a generic data layer wakeup callback 12566 - MINOR: connection: split conn_prepare() in two functions 12567 - MINOR: connection: add an init callback to the data_cb struct 12568 - MEDIUM: session: use a specific data_cb for embryonic sessions 12569 - MEDIUM: connection: use a generic data-layer init() callback 12570 - MEDIUM: connection: reorganize connection flags 12571 - MEDIUM: connection: only call the data->wake callback on activity 12572 - MEDIUM: connection: make it possible for data->wake to return an error 12573 - MEDIUM: session: register a data->wake callback to process errors 12574 - MEDIUM: connection: don't call the data->init callback upon error 12575 - MEDIUM: connection: it's not the data layer's role to validate the connection 12576 - MEDIUM: connection: automatically disable polling on error 12577 - REORG: connection: move the PROXY protocol management to connection.c 12578 - MEDIUM: connection: add a new local send-proxy transport callback 12579 - MAJOR: checks: make use of the connection layer to send checks 12580 - REORG: server: move the check-specific parts into a check subsection 12581 - MEDIUM: checks: use real buffers to store requests and responses 12582 - MEDIUM: check: add the ctrl and transport layers in the server check structure 12583 - MAJOR: checks: completely use the connection transport layer 12584 - MEDIUM: checks: add the "check-ssl" server option 12585 - MEDIUM: checks: enable the PROXY protocol with health checks 12586 - CLEANUP: checks: remove minor warnings for assigned but not used variables 12587 - MEDIUM: tcp: enable TCP Fast Open on systems which support it 12588 - BUG: connection: fix regression from commit 9e272bf9 12589 - CLEANUP: cttproxy: remove a warning on undeclared close() 12590 - BUG/MAJOR: ensure that hdr_idx is always reserved when L7 fetches are used 12591 - MEDIUM: listener: add support for linux's accept4() syscall 12592 - MINOR: halog: sort output by cookie code 12593 - BUG/MINOR: halog: -ad/-ac report the correct number of output lines 12594 - BUG/MINOR: halog: fix help message for -ut/-uto 12595 - MINOR: halog: add a parameter to limit output line count 12596 - BUILD: accept4: move the socketcall declaration outside of accept4() 12597 - MINOR: server: add minimal infrastructure to parse keywords 12598 - MINOR: standard: make indent_msg() support empty messages 12599 - MEDIUM: server: check for registered keywords when parsing unknown keywords 12600 - MEDIUM: server: move parsing of keyword "id" to server.c 12601 - BUG/MEDIUM: config: check-send-proxy was ignored if SSL was not builtin 12602 - MEDIUM: ssl: move "server" keyword SSL options parsing to ssl_sock.c 12603 - MEDIUM: log: suffix the frontend's name with '~' when using SSL 12604 - MEDIUM: connection: always unset the transport layer upon close 12605 - BUG/MINOR: session: fix some leftover from debug code 12606 - BUG/MEDIUM: session: enable the conn_session_update() callback 12607 - MEDIUM: connection: add a flag to hold the transport layer 12608 - MEDIUM: log: add a new LW_XPRT flag to pin the transport layer 12609 - MINOR: log: make lf_text use a const char * 12610 - MEDIUM: log: report SSL ciphers and version in logs using logformat %sslc/%sslv 12611 - REORG: http: rename msg->buf to msg->chn since it's a channel 12612 - CLEANUP: http: use 'chn' to name channel variables, not 'buf' 12613 - CLEANUP: channel: use 'chn' instead of 'buf' as local variable names 12614 - CLEANUP: tcp: use 'chn' instead of 'buf' or 'b' for channel pointer names 12615 - CLEANUP: stream_interface: use 'chn' instead of 'b' to name channel pointers 12616 - CLEANUP: acl: use 'chn' instead of 'b' to name channel pointers 12617 - MAJOR: channel: replace the struct buffer with a pointer to a buffer 12618 - OPTIM: channel: reorganize struct members to improve cache efficiency 12619 - CLEANUP: session: remove term_trace which is not used anymore 12620 - OPTIM: session: reorder struct session fields 12621 - OPTIM: connection: pack the struct target 12622 - DOC: document relations between internal entities 12623 - MINOR: ssl: add 'ssl_npn' sample/acl to extract TLS/NPN information 12624 - BUILD: ssl: fix shctx build on older compilers 12625 - MEDIUM: ssl: add support for the "npn" bind keyword 12626 - BUG: ssl: fix ssl_sni ACLs to correctly process regular expressions 12627 - MINOR: chunk: provide string compare functions 12628 - MINOR: sample: accept fetch keywords without parenthesis 12629 - MEDIUM: sample: pass an empty list instead of a null for fetch args 12630 - MINOR: ssl: improve socket behaviour upon handshake abort. 12631 - BUG/MEDIUM: http: set DONTWAIT on data when switching to tunnel mode 12632 - MEDIUM: listener: provide a fallback for accept4() when not supported 12633 - BUG/MAJOR: connection: risk of crash on certain tricky close scenario 12634 - MEDIUM: cli: allow the stats socket to be bound to a specific set of processes 12635 - OPTIM: channel: inline channel_forward's fast path 12636 - OPTIM: http: inline http_parse_chunk_size() and http_skip_chunk_crlf() 12637 - OPTIM: tools: inline hex2i() 12638 - CLEANUP: http: rename HTTP_MSG_DATA_CRLF state 12639 - MINOR: compression: automatically disable compression for older browsers 12640 - MINOR: compression: optimize memLevel to improve byte rate 12641 - BUG/MINOR: http: compression should consider all Accept-Encoding header values 12642 - BUILD: fix coexistence of openssl and zlib 12643 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_serial' and 'ssl_f_serial' 12644 - BUG/MEDIUM: command-line option -D must have precedence over "debug" 12645 - MINOR: tools: add a clear_addr() function to unset an address 12646 - BUG/MEDIUM: tcp: transparent bind to the source only when address is set 12647 - CLEANUP: remove trashlen 12648 - MAJOR: session: detach the connections from the stream interfaces 12649 - DOC: update document describing relations between internal entities 12650 - BUILD: make it possible to specify ZLIB path 12651 - MINOR: compression: add an offload option to remove the Accept-Encoding header 12652 - BUG: compression: disable auto-close and enable MSG_MORE during transfer 12653 - CLEANUP: completely remove trashlen 12654 - MINOR: chunk: add a function to reset a chunk 12655 - CLEANUP: replace chunk_printf() with chunk_appendf() 12656 - MEDIUM: make the trash be a chunk instead of a char * 12657 - MEDIUM: remove remains of BUFSIZE in HTTP auth and sample conversions 12658 - MEDIUM: stick-table: allocate the table key of size buffer size 12659 - BUG/MINOR: stream_interface: don't loop over ->snd_buf() 12660 - BUG/MINOR: session: ensure that we don't retry connection if some data were sent 12661 - OPTIM: session: don't process the whole session when only timers need a refresh 12662 - BUG/MINOR: session: mark the handshake as complete earlier 12663 - MAJOR: connection: remove the CO_FL_CURR_*_POL flag 12664 - BUG/MAJOR: always clear the CO_FL_WAIT_* flags after updating polling flags 12665 - MAJOR: sepoll: make the poller totally event-driven 12666 - OPTIM: stream_interface: disable reading when CF_READ_DONTWAIT is set 12667 - BUILD: compression: remove a build warning 12668 - MEDIUM: fd: don't unset fdtab[].updated upon delete 12669 - REORG: fd: move the speculative I/O management from ev_sepoll 12670 - REORG: fd: move the fd state management from ev_sepoll 12671 - REORG: fd: centralize the processing of speculative events 12672 - BUG: raw_sock: also consider ENOTCONN in addition to EAGAIN 12673 - BUILD: stream_interface: remove si_fd() and its references 12674 - BUILD: compression: enable build in BSD and OSX Makefiles 12675 - MAJOR: ev_select: make the poller support speculative events 12676 - MAJOR: ev_poll: make the poller support speculative events 12677 - MAJOR: ev_kqueue: make the poller support speculative events 12678 - MAJOR: polling: replace epoll with sepoll and remove sepoll 12679 - MAJOR: polling: remove unused callbacks from the poller struct 12680 - MEDIUM: http: refrain from sending "Connection: close" when Upgrade is present 12681 - CLEANUP: channel: remove any reference of the hijackers 12682 - CLEANUP: stream_interface: remove the external task type target 12683 - MAJOR: connection: replace struct target with a pointer to an enum 12684 - BUG: connection: fix typo in previous commit 12685 - BUG: polling: don't skip polled events in the spec list 12686 - MINOR: splice: disable it when the system returns EBADF 12687 - MINOR: build: allow packagers to specify the default maxzlibmem 12688 - BUG: halog: fix broken output limitation 12689 - BUG: proxy: fix server name lookup in get_backend_server() 12690 - BUG: compression: do not always increment the round counter on allocation failure 12691 - BUG/MEDIUM: compression: release the zlib pools between keep-alive requests 12692 - MINOR: global: don't prevent nbproc from being redefined 12693 - MINOR: config: support process ranges for "bind-process" 12694 - MEDIUM: global: add support for CPU binding on Linux ("cpu-map") 12695 - MINOR: ssl: rename and document the tune.ssl.cachesize option 12696 - DOC: update the PROXY protocol spec to support v2 12697 - MINOR: standard: add a simple popcount function 12698 - MEDIUM: adjust the maxaccept per listener depending on the number of processes 12699 - BUG: compression: properly disable compression when content-type does not match 12700 - MINOR: cli: report connection status in "show sess xxx" 12701 - BUG/MAJOR: stream_interface: certain workloads could cause get stuck 12702 - BUILD: cli: fix build when SSL is enabled 12703 - MINOR: cli: report the fd state in "show sess xxx" 12704 - MINOR: cli: report an error message on missing argument to compression rate 12705 - MINOR: http: add some debugging functions to pretty-print msg state names 12706 - BUG/MAJOR: stream_interface: read0 not always handled since dev12 12707 - DOC: documentation on http header capture is wrong 12708 - MINOR: http: allow the cookie capture size to be changed 12709 - DOC: http header capture has not been limited in size for a long time 12710 - DOC: update readme with build methods for BSD 12711 - BUILD: silence a warning on Solaris about usage of isdigit() 12712 - MINOR: stats: report HTTP compression stats per frontend and per backend 12713 - MINOR: log: add '%Tl' to log-format 12714 - MINOR: samples: update the url_param fetch to match parameters in the path 12715 127162012/09/10 : 1.5-dev12 12717 - CONTRIB: halog: sort URLs by avg bytes_read or total bytes_read 12718 - MEDIUM: ssl: add support for prefer-server-ciphers option 12719 - MINOR: IPv6 support for transparent proxy 12720 - MINOR: protocol: add SSL context to listeners if USE_OPENSSL is defined 12721 - MINOR: server: add SSL context to servers if USE_OPENSSL is defined 12722 - MEDIUM: connection: add a new handshake flag for SSL (CO_FL_SSL_WAIT_HS). 12723 - MEDIUM: ssl: add new files ssl_sock.[ch] to provide the SSL data layer 12724 - MEDIUM: config: add the 'ssl' keyword on 'bind' lines 12725 - MEDIUM: config: add support for the 'ssl' option on 'server' lines 12726 - MEDIUM: ssl: protect against client-initiated renegociation 12727 - BUILD: add optional support for SSL via the USE_OPENSSL flag 12728 - MEDIUM: ssl: add shared memory session cache implementation. 12729 - MEDIUM: ssl: replace OpenSSL's session cache with the shared cache 12730 - MINOR: ssl add global setting tune.sslcachesize to set SSL session cache size. 12731 - MEDIUM: ssl: add support for SNI and wildcard certificates 12732 - DOC: Typos cleanup 12733 - DOC: fix name for "option independant-streams" 12734 - DOC: specify the default value for maxconn in the context of a proxy 12735 - BUG/MINOR: to_log erased with unique-id-format 12736 - LICENSE: add licence exception for OpenSSL 12737 - BUG/MAJOR: cookie prefix doesn't support cookie-less servers 12738 - BUILD: add an AIX 5.2 (and later) target. 12739 - MEDIUM: fd/si: move peeraddr from struct fdinfo to struct connection 12740 - MINOR: halog: use the more recent dual-mode fgets2 implementation 12741 - BUG/MEDIUM: ebtree: ebmb_insert() must not call cmp_bits on full-length matches 12742 - CLEANUP: halog: make clean should also remove .o files 12743 - OPTIM: halog: make use of memchr() on platforms which provide a fast one 12744 - OPTIM: halog: improve cold-cache behaviour when loading a file 12745 - BUG/MINOR: ACL implicit arguments must be created with unresolved flag 12746 - MINOR: replace acl_fetch_{path,url}* with smp_fetch_* 12747 - MEDIUM: pattern: add the "base" sample fetch method 12748 - OPTIM: i386: make use of kernel-mode-linux when available 12749 - BUG/MINOR: tarpit: fix condition to return the HTTP 500 message 12750 - BUG/MINOR: polling: some events were not set in various pollers 12751 - MINOR: http: add the urlp_val ACL match 12752 - BUG: stktable: tcp_src_to_stktable_key() must return NULL on invalid families 12753 - MINOR: stats/cli: add plans to support more stick-table actions 12754 - MEDIUM: stats/cli: add support for "set table key" to enter values 12755 - REORG/MEDIUM: fd: remove FD_STCLOSE from struct fdtab 12756 - REORG/MEDIUM: fd: remove checks for FD_STERROR in ev_sepoll 12757 - REORG/MEDIUM: fd: get rid of FD_STLISTEN 12758 - REORG/MINOR: connection: move declaration to its own include file 12759 - REORG/MINOR: checks: put a struct connection into the server 12760 - MINOR: connection: add flags to the connection struct 12761 - MAJOR: get rid of fdtab[].state and use connection->flags instead 12762 - MINOR: fd: add a new I/O handler to fdtab 12763 - MEDIUM: polling: prepare to call the iocb() function when defined. 12764 - MEDIUM: checks: make use of fdtab->iocb instead of cb[] 12765 - MEDIUM: protocols: use the generic I/O callback for accept callbacks 12766 - MINOR: connection: add a handler for fd-based connections 12767 - MAJOR: connection: replace direct I/O callbacks with the connection callback 12768 - MINOR: fd: make fdtab->owner a connection and not a stream_interface anymore 12769 - MEDIUM: connection: remove the FD_POLL_* flags only once 12770 - MEDIUM: connection: extract the send_proxy callback from proto_tcp 12771 - MAJOR: tcp: remove the specific I/O callbacks for TCP connection probes 12772 - CLEANUP: remove the now unused fdtab direct I/O callbacks 12773 - MAJOR: remove the stream interface and task management code from sock_* 12774 - MEDIUM: stream_interface: pass connection instead of fd in sock_ops 12775 - MEDIUM: stream_interface: centralize the SI_FL_ERR management 12776 - MAJOR: connection: add a new CO_FL_CONNECTED flag 12777 - MINOR: rearrange tcp_connect_probe() and fix wrong return codes 12778 - MAJOR: connection: call data layer handshakes from the handler 12779 - MEDIUM: fd: remove the EV_FD_COND_* primitives 12780 - MINOR: sock_raw: move calls to si_data_close upper 12781 - REORG: connection: replace si_data_close() with conn_data_close() 12782 - MEDIUM: sock_raw: introduce a read0 callback that is different from shutr 12783 - MAJOR: stream_int: use a common stream_int_shut*() functions regardless of the data layer 12784 - MAJOR: fd: replace all EV_FD_* macros with new fd_*_* inline calls 12785 - MEDIUM: fd: add fd_poll_{recv,send} for use when explicit polling is required 12786 - MEDIUM: connection: add definitions for dual polling mechanisms 12787 - MEDIUM: connection: make use of the new polling functions 12788 - MAJOR: make use of conn_{data|sock}_{poll|stop|want}* in connection handlers 12789 - MEDIUM: checks: don't use FD_WAIT_* anymore 12790 - MINOR: fd: get rid of FD_WAIT_* 12791 - MEDIUM: stream_interface: offer a generic function for connection updates 12792 - MEDIUM: stream-interface: offer a generic chk_rcv function for connections 12793 - MEDIUM: stream-interface: add a snd_buf() callback to sock_ops 12794 - MEDIUM: stream-interface: provide a generic stream_int_chk_snd_conn() function 12795 - MEDIUM: stream-interface: provide a generic si_conn_send_cb callback 12796 - MEDIUM: stream-interface: provide a generic stream_sock_read0() function 12797 - REORG/MAJOR: use "struct channel" instead of "struct buffer" 12798 - REORG/MAJOR: extract "struct buffer" from "struct channel" 12799 - MINOR: connection: provide conn_{data|sock}_{read0|shutw} functions 12800 - REORG: sock_raw: rename the files raw_sock* 12801 - MAJOR: raw_sock: extract raw_sock_to_buf() from raw_sock_read() 12802 - MAJOR: raw_sock: temporarily disable splicing 12803 - MINOR: stream-interface: add an rcv_buf callback to sock_ops 12804 - REORG: stream-interface: move sock_raw_read() to si_conn_recv_cb() 12805 - MAJOR: connection: split the send call into connection and stream interface 12806 - MAJOR: stream-interface: restore splicing mechanism 12807 - MAJOR: stream-interface: make conn_notify_si() more robust 12808 - MEDIUM: proxy-proto: don't use buffer flags in conn_si_send_proxy() 12809 - MAJOR: stream-interface: don't commit polling changes in every callback 12810 - MAJOR: stream-interface: fix splice not to call chk_snd by itself 12811 - MEDIUM: stream-interface: don't remove WAIT_DATA when a handshake is in progress 12812 - CLEANUP: connection: split sock_ops into data_ops, app_cp and si_ops 12813 - REORG: buffers: split buffers into chunk,buffer,channel 12814 - MAJOR: channel: remove the BF_OUT_EMPTY flag 12815 - REORG: buffer: move buffer_flush, b_adv and b_rew to buffer.h 12816 - MINOR: channel: rename bi_full to channel_full as it checks the whole channel 12817 - MINOR: buffer: provide a new buffer_full() function 12818 - MAJOR: channel: stop relying on BF_FULL to take action 12819 - MAJOR: channel: remove the BF_FULL flag 12820 - REORG: channel: move buffer_{replace,insert_line}* to buffer.{c,h} 12821 - CLEANUP: channel: usr CF_/CHN_ prefixes instead of BF_/BUF_ 12822 - CLEANUP: channel: use "channel" instead of "buffer" in function names 12823 - REORG: connection: move the target pointer from si to connection 12824 - MAJOR: connection: move the addr field from the stream_interface 12825 - MEDIUM: stream_interface: remove CAP_SPLTCP/CAP_SPLICE flags 12826 - MEDIUM: proto_tcp: remove any dependence on stream_interface 12827 - MINOR: tcp: replace tcp_src_to_stktable_key with addr_to_stktable_key 12828 - MEDIUM: connection: add an ->init function to data layer 12829 - MAJOR: session: introduce embryonic sessions 12830 - MAJOR: connection: make the PROXY decoder a handshake handler 12831 - CLEANUP: frontend: remove the old proxy protocol decoder 12832 - MAJOR: connection: rearrange the polling flags. 12833 - MEDIUM: connection: only call tcp_connect_probe when nothing was attempted yet 12834 - MEDIUM: connection: complete the polling cleanups 12835 - MEDIUM: connection: avoid calling handshakes when polling is required 12836 - MAJOR: stream_interface: continue to update data polling flags during handshakes 12837 - CLEANUP: fd: remove fdtab->flags 12838 - CLEANUP: fdtab: flatten the struct and merge the spec struct with the rest 12839 - CLEANUP: includes: fix includes for a number of users of fd.h 12840 - MINOR: ssl: disable TCP quick-ack by default on SSL listeners 12841 - MEDIUM: config: add a "ciphers" keyword to set SSL cipher suites 12842 - MEDIUM: config: add "nosslv3" and "notlsv1" on bind and server lines 12843 - BUG: ssl: mark the connection as waiting for an SSL connection during the handshake 12844 - BUILD: http: rename error_message http_error_message to fix conflicts on RHEL 12845 - BUILD: ssl: fix shctx build on RHEL with futex 12846 - BUILD: include sys/socket.h to fix build failure on FreeBSD 12847 - BUILD: fix build error without SSL (ssl_cert) 12848 - BUILD: ssl: use MAP_ANON instead of MAP_ANONYMOUS 12849 - BUG/MEDIUM: workaround an eglibc bug which truncates the pidfiles when nbproc > 1 12850 - MEDIUM: config: support per-listener backlog and maxconn 12851 - MINOR: session: do not send an HTTP/500 error on SSL sockets 12852 - MEDIUM: config: implement maxsslconn in the global section 12853 - BUG: tcp: close socket fd upon connect error 12854 - MEDIUM: connection: improve error handling around the data layer 12855 - MINOR: config: make the tasks "nice" value configurable on "bind" lines. 12856 - BUILD: shut a gcc warning introduced by commit 269ab31 12857 - MEDIUM: config: centralize handling of SSL config per bind line 12858 - BUILD: makefile: report USE_OPENSSL status in build options 12859 - BUILD: report openssl build settings in haproxy -vv 12860 - MEDIUM: ssl: add sample fetches for is_ssl, ssl_has_sni, ssl_sni_* 12861 - DOC: add a special acknowledgement for the stud project 12862 - DOC: add missing SSL options for servers and listeners 12863 - BUILD: automatically add -lcrypto for SSL 12864 - DOC: add some info about openssl build in the README 12865 128662012/06/04 : 1.5-dev11 12867 - BUG/MEDIUM: option forwardfor if-none doesn't work with some configurations 12868 - BUG/MAJOR: trash must always be the size of a buffer 12869 - DOC: fix minor regex example issue and improve doc on stats 12870 - MINOR: stream_interface: add a pointer to the listener for TARG_TYPE_CLIENT 12871 - MEDIUM: protocol: add a pointer to struct sock_ops to the listener struct 12872 - MINOR: checks: add on-marked-up option 12873 - MINOR: balance uri: added 'whole' parameter to include query string in hash calculation 12874 - MEDIUM: stream_interface: remove the si->init 12875 - MINOR: buffers: add a rewind function 12876 - BUG/MAJOR: fix regression on content-based hashing and http-send-name-header 12877 - MAJOR: http: stop using msg->sol outside the parsers 12878 - CLEANUP: http: make it more obvious that msg->som is always null outside of chunks 12879 - MEDIUM: http: get rid of msg->som which is not used anymore 12880 - MEDIUM: http: msg->sov and msg->sol will never wrap 12881 - BUG/MAJOR: checks: don't call set_server_status_* when no LB algo is set 12882 - BUG/MINOR: stop connect timeout when connect succeeds 12883 - REORG: move the send-proxy code to tcp_connect_write() 12884 - REORG/MINOR: session: detect the TCP monitor checks at the protocol accept 12885 - MINOR: stream_interface: introduce a new "struct connection" type 12886 - REORG/MINOR: stream_interface: move si->fd to struct connection 12887 - REORG/MEDIUM: stream_interface: move applet->state and private to connection 12888 - MINOR: stream_interface: add a data channel close function 12889 - MEDIUM: stream_interface: call si_data_close() before releasing the si 12890 - MINOR: peers: use the socket layer operations from the peer instead of sock_raw 12891 - BUG/MINOR: checks: expire on timeout.check if smaller than timeout.connect 12892 - MINOR: add a new function call tracer for debugging purposes 12893 - BUG/MINOR: perform_http_redirect also needs to rewind the buffer 12894 - BUG/MAJOR: b_rew() must pass a signed offset to b_ptr() 12895 - BUG/MEDIUM: register peer sync handler in the proper order 12896 - BUG/MEDIUM: buffers: fix bi_putchr() to correctly advance the pointer 12897 - BUG/MINOR: fix option httplog validation with TCP frontends 12898 - BUG/MINOR: log: don't report logformat errors in backends 12899 - REORG/MINOR: use dedicated proxy flags for the cookie handling 12900 - BUG/MINOR: config: do not report twice the incompatibility between cookie and non-http 12901 - MINOR: http: add support for "httponly" and "secure" cookie attributes 12902 - BUG/MEDIUM: ensure that unresolved arguments are freed exactly once 12903 - BUG/MINOR: commit 196729ef used wrong condition resulting in freeing constants 12904 - MEDIUM: stats: add support for soft stop/soft start in the admin interface 12905 - MEDIUM: stats: add the ability to kill sessions from the admin interface 12906 - BUILD: add support for linux kernels >= 2.6.28 12907 129082012/05/14 : 1.5-dev10 12909 - BUG/MINOR: stats admin: "Unexpected result" was displayed unconditionally 12910 - BUG/MAJOR: acl: http_auth_group() must not accept any user from the userlist 12911 - CLEANUP: auth: make the code build again with DEBUG_AUTH 12912 - BUG/MEDIUM: config: don't crash at config load time on invalid userlist names 12913 - REORG: use the name sock_raw instead of stream_sock 12914 - MINOR: stream_interface: add a client target : TARG_TYPE_CLIENT 12915 - BUG/MEDIUM: stream_interface: restore get_src/get_dst 12916 - CLEANUP: sock_raw: remove last references to stream_sock 12917 - CLEANUP: stream_interface: stop exporting socket layer functions 12918 - MINOR: stream_interface: add an init callback to sock_ops 12919 - MEDIUM: stream_interface: derive the socket operations from the target 12920 - MAJOR: fd: remove the need for the socket layer to recheck the connection 12921 - MINOR: session: call the socket layer init function when a session establishes 12922 - MEDIUM: session: add support for tunnel timeouts 12923 - MINOR: standard: add a new debug macro : fddebug() 12924 - CLEANUP: fd: remove unused cb->b pointers in the struct fdtab 12925 - OPTIM: proto_http: don't enable quick-ack on empty buffers 12926 - OPTIM/MAJOR: ev_sepoll: process spec events after polled events 12927 - OPTIM/MEDIUM: stream_interface: add a new SI_FL_NOHALF flag 12928 129292012/05/08 : 1.5-dev9 12930 - MINOR: Add release callback to si_applet 12931 - CLEANUP: Fix some minor typos 12932 - MINOR: Add TO/FROM_SET flags to struct stream_interface 12933 - CLEANUP: Fix some minor whitespace issues 12934 - MINOR: stats admin: allow unordered parameters in POST requests 12935 - CLEANUP: fix typo in findserver() log message 12936 - MINOR: stats admin: use the backend id instead of its name in the form 12937 - MINOR: stats admin: reduce memcmp()/strcmp() calls on status codes 12938 - DOC: cleanup indentation, alignment, columns and chapters 12939 - DOC: fix some keywords arguments documentation 12940 - MINOR: cli: display the 4 IP addresses and ports on "show sess XXX" 12941 - BUG/MAJOR: log: possible segfault with logformat 12942 - MEDIUM: log: split of log_format generation 12943 - MEDIUM: log: New format-log flags: %Fi %Fp %Si %Sp %Ts %rt %H %pid 12944 - MEDIUM: log: Unique ID 12945 - MINOR: log: log-format: usable without httplog and tcplog 12946 - BUG/MEDIUM: balance source did not properly hash IPv6 addresses 12947 - MINOR: contrib/iprange: add a network IP range to mask converter 12948 - MEDIUM: session: implement the "use-server" directive 12949 - MEDIUM: log: add a new cookie flag 'U' to report situations where cookie is not used 12950 - MEDIUM: http: make extract_cookie_value() iterate over cookie values 12951 - MEDIUM: http: add cookie and scookie ACLs 12952 - CLEANUP: lb_first: add reference to a paper describing the original idea 12953 - MEDIUM: stream_sock: add a get_src and get_dst callback and remove SN_FRT_ADDR_SET 12954 - BUG/MINOR: acl: req_ssl_sni would randomly fail if a session ID is present 12955 - BUILD: http: make extract_cookie_value() return an int not size_t 12956 - BUILD: http: stop gcc-4.1.2 from complaining about possibly uninitialized values 12957 - CLEANUP: http: message parser must ignore HTTP_MSG_ERROR 12958 - MINOR: standard: add a memprintf() function to build formatted error messages 12959 - CLEANUP: remove a few warning about unchecked return values in debug code 12960 - MEDIUM: move message-related flags from transaction to message 12961 - DOC: add a diagram to explain how circular buffers work 12962 - MAJOR: buffer rework: replace ->send_max with ->o 12963 - MAJOR: buffer: replace buf->l with buf->{o+i} 12964 - MINOR: buffers: provide simple pointer normalization functions 12965 - MINOR: buffers: remove unused function buffer_contig_data() 12966 - MAJOR: buffers: replace buf->w with buf->p - buf->o 12967 - MAJOR: buffers: replace buf->r with buf->p + buf->i 12968 - MAJOR: http: move buffer->lr to http_msg->next 12969 - MAJOR: http: change msg->{som,col,sov,eoh} to be relative to buffer origin 12970 - CLEANUP: http: remove unused http_msg->col 12971 - MAJOR: http: turn http_msg->eol to a buffer-relative offset 12972 - MEDIUM: http: add a pointer to the buffer in http_msg 12973 - MAJOR: http: make http_msg->sol relative to buffer's origin 12974 - MEDIUM: http: http_send_name_header: remove references to msg and buffer 12975 - MEDIUM: http: remove buffer arg in a few header manipulation functions 12976 - MEDIUM: http: remove buffer arg in http_capture_bad_message 12977 - MEDIUM: http: remove buffer arg in http_msg_analyzer 12978 - MEDIUM: http: remove buffer arg in http_upgrade_v09_to_v10 12979 - MEDIUM: http: remove buffer arg in http_buffer_heavy_realign 12980 - MEDIUM: http: remove buffer arg in chunk parsing functions 12981 - MINOR: http: remove useless wrapping checks in http_msg_analyzer 12982 - MEDIUM: buffers: fix unsafe use of buffer_ignore at some places 12983 - MEDIUM: buffers: add new pointer wrappers and get rid of almost all buffer_wrap_add calls 12984 - MEDIUM: buffers: implement b_adv() to advance a buffer's pointer 12985 - MEDIUM: buffers: rename a number of buffer management functions 12986 - MEDIUM: http: add a prefetch function for ACL pattern fetch 12987 - MEDIUM: http: make all ACL fetch function use acl_prefetch_http() 12988 - BUG/MINOR: http_auth: ACLs are volatile, not permanent 12989 - MEDIUM: http/acl: merge all request and response ACL fetches of headers and cookies 12990 - MEDIUM: http/acl: make acl_fetch_hdr_{ip,val} rely on acl_fetch_hdr() 12991 - MEDIUM: add a new typed argument list parsing framework 12992 - MAJOR: acl: make use of the new argument parsing framework 12993 - MAJOR: acl: store the ACL argument types in the ACL keyword declaration 12994 - MEDIUM: acl: acl_find_target() now resolves arguments based on their types 12995 - MAJOR: acl: make acl_find_targets also resolve proxy names at config time 12996 - MAJOR: acl: ensure that implicit table and proxies are valid 12997 - MEDIUM: acl: remove unused tests for missing args when args are mandatory 12998 - MEDIUM: pattern: replace type pattern_arg with type arg 12999 - MEDIUM: pattern: get rid of arg_i in all functions making use of arguments 13000 - MEDIUM: pattern: use the standard arg parser 13001 - MEDIUM: pattern: add an argument validation callback to pattern descriptors 13002 - MEDIUM: pattern: report the precise argument parsing error when known. 13003 - MEDIUM: acl: remove the ACL_TEST_F_NULL_MATCH flag 13004 - MINOR: pattern: add a new 'sample' type to store fetched data 13005 - MEDIUM: pattern: add new sample types to replace pattern types 13006 - MAJOR: acl: make use of the new sample struct and get rid of acl_test 13007 - MEDIUM: pattern/acl: get rid of temp_pattern in ACLs 13008 - MEDIUM: acl: get rid of the SET_RES flags 13009 - MEDIUM: get rid of SMP_F_READ_ONLY and SMP_F_MUST_FREE 13010 - MINOR: pattern: replace struct pattern with struct sample 13011 - MEDIUM: pattern: integrate pattern_data into sample and use sample everywhere 13012 - MEDIUM: pattern: retrieve the sample type in the sample, not in the keyword description 13013 - MEDIUM: acl/pattern: switch rdp_cookie functions stack up-down 13014 - MEDIUM: acl: replace acl_expr with args in acl fetch_* functions 13015 - MINOR: tcp: replace acl_fetch_rdp_cookie with smp_fetch_rdp_cookie 13016 - MEDIUM: acl/pattern: use the same direction scheme 13017 - MEDIUM: acl/pattern: start merging common sample fetch functions 13018 - MEDIUM: pattern: ensure that sample types always cast into other types. 13019 - MEDIUM: acl/pattern: factor out the src/dst address fetches 13020 - MEDIUM: acl: implement payload and payload_lv 13021 - CLEANUP: pattern: ensure that payload and payload_lv always stay in the buffer 13022 - MINOR: stick_table: centralize the handling of empty keys 13023 - MINOR: pattern: centralize handling of unstable data in pattern_process() 13024 - MEDIUM: pattern: use smp_fetch_rdp_cookie instead of the pattern specific version 13025 - MINOR: acl: set SMP_OPT_ITERATE on fetch functions 13026 - MINOR: acl: add a val_args field to keywords 13027 - MINOR: proto_tcp: validate arguments of payload and payload_lv ACLs 13028 - MEDIUM: http: merge acl and pattern header fetch functions 13029 - MEDIUM: http: merge ACL and pattern cookie fetches into a single one 13030 - MEDIUM: acl: report parsing errors to the caller 13031 - MINOR: arg: improve error reporting on invalid arguments 13032 - MINOR: acl: report errors encountered when loading patterns from files 13033 - MEDIUM: acl: extend the pattern parsers to report meaningful errors 13034 - REORG: use the name "sample" instead of "pattern" to designate extracted data 13035 - REORG: rename "pattern" files 13036 - MINOR: acl: add types to ACL patterns 13037 - MINOR: standard: add an IPv6 parsing function (str62net) 13038 - MEDIUM: acl: support IPv6 address matching 13039 - REORG: stream_interface: create a struct sock_ops to hold socket operations 13040 - REORG/MEDIUM: move protocol->{read,write} to sock_ops 13041 - REORG/MEDIUM: stream_interface: initialize socket ops from descriptors 13042 - REORG/MEDIUM: replace stream interface protocol functions by a proto pointer 13043 - REORG/MEDIUM: move the default accept function from sockstream to protocols.c 13044 - MEDIUM: proto_tcp: remove src6 and dst6 pattern fetch methods 13045 - BUG/MINOR: http: error snapshots are wrong if buffer wraps 13046 - BUG/MINOR: http: ensure that msg->err_pos is always relative to buf->p 13047 - MEDIUM: http: improve error capture reports 13048 - MINOR: acl: add the cook_val() match to match a cookie against an integer 13049 - BUG/MEDIUM: send_proxy: fix initialisation of send_proxy_ofs 13050 - MEDIUM: memory: add the ability to poison memory at run time 13051 - BUG/MEDIUM: log: ensure that unique_id is properly initialized 13052 - MINOR: cfgparse: use a common errmsg pointer for all parsers 13053 - MEDIUM: cfgparse: make backend_parse_balance() use memprintf to report errors 13054 - MEDIUM: cfgparse: use the new error reporting framework for remaining cfg_keywords 13055 - MINOR: http: replace http_message_realign() with buffer_slow_realign() 13056 130572012/03/26 : 1.5-dev8 13058 - MINOR: patch for minor typo (ressources/resources) 13059 - MEDIUM: http: add support for sending the server's name in the outgoing request 13060 - DOC: mention that default checks are TCP connections 13061 - BUG/MINOR: fix options forwardfor if-none when an alternative header name is specified 13062 - CLEANUP: Make check_statuses, analyze_statuses and process_chk static 13063 - CLEANUP: Fix HCHK spelling errors 13064 - BUG/MINOR: fix typo in processing of http-send-name-header 13065 - MEDIUM: log: Use linked lists for loggers 13066 - BUILD: fix declaration inside a scope block 13067 - REORG: log: split send_log function 13068 - MINOR: config: Parse the string of the log-format config keyword 13069 - MINOR: add ultoa, ulltoa, ltoa, lltoa implementations 13070 - MINOR: Date and time fonctions that don't use snprintf 13071 - MEDIUM: log: make http_sess_log use log_format 13072 - DOC: log-format documentation 13073 - MEDIUM: log: use log_format for mode tcplog 13074 - MEDIUM: log-format: backend source address %Bi %Bp 13075 - BUG/MINOR: log-format: fix %o flag 13076 - BUG/MEDIUM: bad length in log_format and __send_log 13077 - MINOR: logformat %st is signed 13078 - BUILD/MINOR: fix the source URL in the spec file 13079 - DOC: acl is http_first_req, not http_req_first 13080 - BUG/MEDIUM: don't trim last spaces from headers consisting only of spaces 13081 - MINOR: acl: add new matches for header/path/url length 13082 - BUILD: halog: make halog build on solaris 13083 - BUG/MINOR: don't use a wrong port when connecting to a server with mapped ports 13084 - MINOR: remove the client/server side distinction in SI addresses 13085 - MINOR: halog: add support for matching queued requests 13086 - DOC: indicate that cookie "prefix" and "indirect" should not be mixed 13087 - OPTIM/MINOR: move struct sockaddr_storage to the tail of structs 13088 - OPTIM/MINOR: make it possible to change pipe size (tune.pipesize) 13089 - BUILD/MINOR: silent a build warning in src/pipe.c (fcntl) 13090 - OPTIM/MINOR: move the hdr_idx pools out of the proxy struct 13091 - MEDIUM: tune.http.maxhdr makes it possible to configure the maximum number of HTTP headers 13092 - BUG/MINOR: fix a segfault when parsing a config with undeclared peers 13093 - CLEANUP: rename possibly confusing struct field "tracked" 13094 - BUG/MEDIUM: checks: fix slowstart behaviour when server tracking is in use 13095 - MINOR: config: tolerate server "cookie" setting in non-HTTP mode 13096 - MEDIUM: buffers: add some new primitives and rework existing ones 13097 - BUG: buffers: don't return a negative value on buffer_total_space_res() 13098 - MINOR: buffers: make buffer_pointer() support negative pointers too 13099 - CLEANUP: kill buffer_replace() and use an inline instead 13100 - BUG: tcp: option nolinger does not work on backends 13101 - CLEANUP: ebtree: remove a few annoying signedness warnings 13102 - CLEANUP: ebtree: clarify licence and update to 6.0.6 13103 - CLEANUP: ebtree: remove 4-year old harmless typo in duplicates insertion code 13104 - CLEANUP: ebtree: remove another typo, a wrong initialization in insertion code 13105 - BUG: ebtree: ebst_lookup() could return the wrong entry 13106 - OPTIM: stream_sock: reduce the amount of in-flight spliced data 13107 - OPTIM: stream_sock: save a failed recv syscall when splice returns EAGAIN 13108 - MINOR: acl: add support for TLS server name matching using SNI 13109 - BUG: http: re-enable TCP quick-ack upon incomplete HTTP requests 13110 - BUG: proto_tcp: don't try to bind to a foreign address if sin_family is unknown 13111 - MINOR: pattern: export the global temporary pattern 13112 - CLEANUP: patterns: get rid of pattern_data_setstring() 13113 - MEDIUM: acl: use temp_pattern to store fetched information in the "method" match 13114 - MINOR: acl: include pattern.h to make pattern migration more transparent 13115 - MEDIUM: pattern: change the pattern data integer from unsigned to signed 13116 - MEDIUM: acl: use temp_pattern to store any integer-type information 13117 - MEDIUM: acl: use temp_pattern to store any address-type information 13118 - CLEANUP: acl: integer part of acl_test is not used anymore 13119 - MEDIUM: acl: use temp_pattern to store any string-type information 13120 - CLEANUP: acl: remove last data fields from the acl_test struct 13121 - MEDIUM: http: replace get_ip_from_hdr2() with http_get_hdr() 13122 - MEDIUM: patterns: the hdr() pattern is now of type string 13123 - DOC: add minimal documentation on how ACLs work internally 13124 - DOC: add a coding-style file 13125 - OPTIM: halog: keep a fast path for the lines-count only 13126 - CLEANUP: silence a warning when building on sparc 13127 - BUG: http: tighten the list of allowed characters in a URI 13128 - MEDIUM: http: block non-ASCII characters in URIs by default 13129 - DOC: add some documentation from RFC3986 about URI format 13130 - BUG/MINOR: cli: correctly remove the whole table on "clear table" 13131 - BUG/MEDIUM: correctly disable servers tracking another disabled servers. 13132 - BUG/MEDIUM: zero-weight servers must not dequeue requests from the backend 13133 - MINOR: halog: add some help on the command line 13134 - BUILD: fix build error on FreeBSD 13135 - BUG: fix double free in peers config error path 13136 - MEDIUM: improve config check return codes 13137 - BUILD: make it possible to look for pcre in the default system paths 13138 - MINOR: config: emit a warning when 'default_backend' masks servers 13139 - MINOR: backend: rework the LC definition to support other connection-based algos 13140 - MEDIUM: backend: add the 'first' balancing algorithm 13141 - BUG: fix httplog trailing LF 13142 - MEDIUM: increase chunk-size limit to 2GB-1 13143 - BUG: queue: fix dequeueing sequence on HTTP keep-alive sessions 13144 - BUG: http: disable TCP delayed ACKs when forwarding content-length data 13145 - BUG: checks: fix server maintenance exit sequence 13146 - BUG/MINOR: stream_sock: don't remove BF_EXPECT_MORE and BF_SEND_DONTWAIT on partial writes 13147 - DOC: enumerate valid status codes for "observe layer7" 13148 - MINOR: buffer: switch a number of buffer args to const 13149 - CLEANUP: silence signedness warning in acl.c 13150 - BUG: stream_sock: si->release was not called upon shutw() 13151 - MINOR: log: use "%ts" to log term status only and "%tsc" to log with cookie 13152 - BUG/CRITICAL: log: fix risk of crash in development snapshot 13153 - BUG/MAJOR: possible crash when using capture headers on TCP frontends 13154 - MINOR: config: disable header captures in TCP mode and complain 13155 131562011/09/10 : 1.5-dev7 13157 - [BUG] fix binary stick-tables 13158 - [MINOR] http: *_dom matching header functions now also split on ":" 13159 - [BUG] checks: fix support of Mysqld >= 5.5 for mysql-check 13160 - [MINOR] acl: add srv_conn acl to count connections on a specific backend server 13161 - [MINOR] check: add redis check support 13162 - [DOC] small fixes to clearly distinguish between keyword and variables 13163 - [MINOR] halog: add support for termination code matching (-tcn/-TCN) 13164 - [DOC] Minor spelling fixes and grammatical enhancements 13165 - [CLEANUP] dumpstats: make symbols static where possible 13166 - [MINOR] Break out dumping table 13167 - [MINOR] Break out processing of clear table 13168 - [MINOR] Allow listing of stick table by key 13169 - [MINOR] Break out all stick table socat command parsing 13170 - [MINOR] More flexible clearing of stick table 13171 - [MINOR] Allow showing and clearing by key of ipv6 stick tables 13172 - [MINOR] Allow showing and clearing by key of integer stick tables 13173 - [MINOR] Allow showing and clearing by key of string stick tables 13174 - [CLEANUP] Remove assigned but unused variables 13175 - [CLEANUP] peers.h: fix declarations 13176 - [CLEANUP] session.c: Make functions static where possible 13177 - [MINOR] Add active connection list to server 13178 - [MINOR] Allow shutdown of sessions when a server becomes unavailable 13179 - [MINOR] Add down termination condition 13180 - [MINOR] Make appsess{,ion}_refresh static 13181 - [MINOR] Add rdp_cookie pattern fetch function 13182 - [CLEANUP] Remove unnecessary casts 13183 - [MINOR] Add non-stick server option 13184 - [MINOR] Consistently use error in tcp_parse_tcp_req() 13185 - [MINOR] Consistently free expr on error in cfg_parse_listen() 13186 - [MINOR] Free rdp_cookie_name on denint() 13187 - [MINOR] Free tcp rules on denint() 13188 - [MINOR] Free stick table pool on denint() 13189 - [MINOR] Free stick rules on denint() 13190 - [MEDIUM] Fix stick-table replication on soft-restart 13191 - [MEDIUM] Correct ipmask() logic 13192 - [MINOR] Correct type in table dump examples 13193 - [MINOR] Fix build error in stream_int_register_handler() 13194 - [MINOR] Use DPRINTF in assign_server() 13195 - [BUG] checks: http-check expect could fail a check on multi-packet responses 13196 - [DOC] fix minor typo in the "dispatch" doc 13197 - [BUG] proto_tcp: fix address binding on remote source 13198 - [MINOR] http: don't report the "haproxy" word on the monitoring response 13199 - [REORG] http: move HTTP error codes back to proto_http.h 13200 - [MINOR] http: make the "HTTP 200" status code configurable. 13201 - [MINOR] http: partially revert the chunking optimization for now 13202 - [MINOR] stream_sock: always clear BF_EXPECT_MORE upon complete transfer 13203 - [CLEANUP] stream_sock: remove unneeded FL_TCP and factor out test 13204 - [MEDIUM] http: add support for "http-no-delay" 13205 - [OPTIM] http: optimize chunking again in non-interactive mode 13206 - [OPTIM] stream_sock: avoid fast-forwarding of partial data 13207 - [OPTIM] stream_sock: don't use splice on too small payloads 13208 - [MINOR] config: make it possible to specify a cookie even without a server 13209 - [BUG] stats: support url-encoded forms 13210 - [MINOR] config: automatically compute a default fullconn value 13211 - [CLEANUP] config: remove some left-over printf debugging code from previous patch 13212 - [DOC] add missing entry or stick store-response 13213 - [MEDIUM] http: add support for 'cookie' and 'set-cookie' patterns 13214 - [BUG] halog: correctly handle truncated last line 13215 - [MINOR] halog: make SKIP_CHAR stop on field delimiters 13216 - [MINOR] halog: add support for HTTP log matching (-H) 13217 - [MINOR] halog: gain back performance before SKIP_CHAR fix 13218 - [OPTIM] halog: cache some common fields positions 13219 - [OPTIM] halog: check once for correct line format and reuse the pointer 13220 - [OPTIM] halog: remove many 'if' by using a function pointer for the filters 13221 - [OPTIM] halog: remove support for tab delimiters in input data 13222 - [BUG] session: risk of crash on out of memory (1.5-dev regression) 13223 - [MINOR] session: try to emit a 500 response on memory allocation errors 13224 - [OPTIM] stream_sock: reduce the default number of accepted connections at once 13225 - [BUG] stream_sock: disable listener when system resources are exhausted 13226 - [MEDIUM] proxy: add a PAUSED state to listeners and move socket tricks out of proxy.c 13227 - [BUG] stream_sock: ensure orphan listeners don't accept too many connections 13228 - [MINOR] listeners: add listen_full() to mark a listener full 13229 - [MINOR] listeners: add support for queueing resource limited listeners 13230 - [MEDIUM] listeners: put listeners in queue upon resource shortage 13231 - [MEDIUM] listeners: queue proxy-bound listeners at the proxy's 13232 - [MEDIUM] listeners: don't stop proxies when global maxconn is reached 13233 - [MEDIUM] listeners: don't change listeners states anymore in maintain_proxies 13234 - [CLEANUP] proxy: rename a few proxy states (PR_STIDLE and PR_STRUN) 13235 - [MINOR] stats: report a "WAITING" state for sockets waiting for resource 13236 - [MINOR] proxy: make session rate-limit more accurate 13237 - [MINOR] sessions: only wake waiting listeners up if rate limit is OK 13238 - [BUG] proxy: peers must only be stopped once, not upon every call to maintain_proxies 13239 - [CLEANUP] proxy: merge maintain_proxies() operation inside a single loop 13240 - [MINOR] task: new function task_schedule() to schedule a wake up 13241 - [MAJOR] proxy: finally get rid of maintain_proxies() 13242 - [BUG] proxy: stats frontend and peers were missing many initializers 13243 - [MEDIUM] listeners: add a global listener management task 13244 - [MINOR] proxy: make findproxy() return proxies from numeric IDs too 13245 - [DOC] fix typos, "#" is a sharp, not a dash 13246 - [MEDIUM] stats: add support for changing frontend's maxconn at runtime 13247 - [MEDIUM] checks: group health checks methods by values and save option bits 13248 - [MINOR] session-counters: add the ability to clear the counters 13249 - [BUG] check: http-check expect + regex would crash in defaults section 13250 - [MEDIUM] http: make x-forwarded-for addition conditional 13251 - [REORG] build: move syscall redefinition to specific places 13252 - [CLEANUP] update the year in the copyright banner 13253 - [BUG] possible crash in 'show table' on stats socket 13254 - [BUG] checks: use the correct destination port for sending checks 13255 - [BUG] backend: risk of picking a wrong port when mapping is used with crossed families 13256 - [MINOR] make use of set_host_port() and get_host_port() to get rid of family mismatches 13257 - [DOC] fixed a few "sensible" -> "sensitive" errors 13258 - [MINOR] make use of addr_to_str() and get_host_port() to replace many inet_ntop() 13259 - [BUG] http: trailing white spaces must also be trimmed after headers 13260 - [MINOR] stats: display "<NONE>" instead of the frontend name when unknown 13261 - [MINOR] http: take a capture of too large requests and responses 13262 - [MINOR] http: take a capture of truncated responses 13263 - [MINOR] http: take a capture of bad content-lengths. 13264 - [DOC] add a few old and uncommitted docs 13265 - [CLEANUP] cfgparse: fix reported options for the "bind" keyword 13266 - [MINOR] halog: add -hs/-HS to filter by HTTP status code range 13267 - [MINOR] halog: support backslash-escaped quotes 13268 - [CLEANUP] remove dirty left-over of a debugging message 13269 - [MEDIUM] stats: disable complex socket reservation for stats socket 13270 - [CLEANUP] remove a useless test in manage_global_listener_queue() 13271 - [MEDIUM] stats: add the "set maxconn" setting to the command line interface 13272 - [MEDIUM] add support for global.maxconnrate to limit the per-process conn rate. 13273 - [MINOR] stats: report the current and max global connection rates 13274 - [MEDIUM] stats: add the ability to adjust the global maxconnrate 13275 - [BUG] peers: don't pre-allocate 65000 connections to each peer 13276 - [MEDIUM] don't limit peers nor stats socket to maxconn nor maxconnrate 13277 - [BUG] peers: the peer frontend must not emit any log 13278 - [CLEANUP] proxy: make pause_proxy() perform the required controls and emit the logs 13279 - [BUG] peers: don't keep a peers section which has a NULL frontend 13280 - [BUG] peers: ensure the peers are resumed if they were paused 13281 - [MEDIUM] stats: add the ability to enable/disable/shutdown a frontend at runtime 13282 - [MEDIUM] session: make session_shutdown() an independant function 13283 - [MEDIUM] stats: offer the possibility to kill a session from the CLI 13284 - [CLEANUP] stats: centralize tests for backend/server inputs on the CLI 13285 - [MEDIUM] stats: offer the possibility to kill sessions by server 13286 - [MINOR] halog: do not consider byte 0x8A as end of line 13287 - [MINOR] frontend: ensure debug message length is always initialized 13288 - [OPTIM] halog: make fgets parse more bytes by blocks 13289 - [OPTIM] halog: add assembly version of the field lookup code 13290 - [MEDIUM] poll: add a measurement of idle vs work time 13291 - [CLEANUP] startup: report only the basename in the usage message 13292 - [MINOR] startup: add an option to change to a new directory 13293 - [OPTIM] task: don't scan the run queue if we know it's empty 13294 - [BUILD] stats: stdint is not present on solaris 13295 - [DOC] update the README file to reflect new naming rules for patches 13296 - [MINOR] stats: report the number of requests intercepted by the frontend 13297 - [DOC] update ROADMAP file 13298 132992011/04/08 : 1.5-dev6 13300 - [BUG] stream_sock: use get_addr_len() instead of sizeof() on sockaddr_storage 13301 - [BUG] TCP source tracking was broken with IPv6 changes 13302 - [BUG] stick-tables did not work when converting IPv6 to IPv4 13303 - [CRITICAL] fix risk of crash when dealing with space in response cookies 13304 133052011/03/29 : 1.5-dev5 13306 - [BUG] standard: is_addr return value for IPv4 was inverted 13307 - [MINOR] update comment about IPv6 support for server 13308 - [MEDIUM] use getaddrinfo to resolve names if gethostbyname fail 13309 - [DOC] update IPv6 support for bind 13310 - [DOC] document IPv6 support for server 13311 - [DOC] fix a minor typo 13312 - [MEDIUM] IPv6 support for syslog 13313 - [DOC] document IPv6 support for syslog 13314 - [MEDIUM] IPv6 support for stick-tables 13315 - [DOC] document IPv6 support for stick-tables 13316 - [DOC] update ROADMAP file 13317 - [BUG] session: src_conn_cur was returning src_conn_cnt instead 13318 - [MINOR] frontend: add a make_proxy_line function 13319 - [MEDIUM] stream_sock: add support for sending the proxy protocol header line 13320 - [MEDIUM] server: add support for the "send-proxy" option 13321 - [DOC] update the spec on the proxy protocol 13322 - [BUILD] proto_tcp: fix build issue with CTTPROXY 13323 - [DOC] update ROADMAP file 13324 - [MEDIUM] config: rework the IPv4/IPv6 address parser to support host-only addresses 13325 - [MINOR] cfgparse: better report wrong listening addresses and make use of str2sa_range 13326 - [BUILD] add the USE_GETADDRINFO build option 13327 - [TESTS] provide a test case for various address formats 13328 - [BUG] session: conn_retries was not always initialized 13329 - [BUG] log: retrieve the target from the session, not the SI 13330 - [BUG] http: fix possible incorrect forwarded wrapping chunk size (take 2) 13331 - [MINOR] tools: add two macros MID_RANGE and MAX_RANGE 13332 - [BUG] http: fix content-length handling on 32-bit platforms 13333 - [OPTIM] buffers: uninline buffer_forward() 13334 - [BUG] stream_sock: fix handling for server side PROXY protocol 13335 - [MINOR] acl: add support for table_cnt and table_avl matches 13336 - [DOC] update ROADMAP file 13337 133382011/03/13 : 1.5-dev4 13339 - [MINOR] cfgparse: Check whether the path given for the stats socket actually fits into the sockaddr_un structure to avoid truncation. 13340 - [MINOR] unix sockets : inherits the backlog size from the listener 13341 - [CLEANUP] unix sockets : move create_uxst_socket() in uxst_bind_listener() 13342 - [DOC] fix a minor typo 13343 - [DOC] fix ignore-persist documentation 13344 - [MINOR] add warnings on features not compatible with multi-process mode 13345 - [BUG] http: fix http-pretend-keepalive and httpclose/tunnel mode 13346 - [MINOR] stats: add support for several packets in stats admin 13347 - [BUG] stats: admin commands must check the proxy state 13348 - [BUG] stats: admin web interface must check the proxy state 13349 - [MINOR] http: add pattern extraction method to stick on query string parameter 13350 - [MEDIUM] add internal support for IPv6 server addresses 13351 - [MINOR] acl: add be_id/srv_id to match backend's and server's id 13352 - [MINOR] log: add support for passing the forwarded hostname 13353 - [MINOR] log: ability to override the syslog tag 13354 - [MINOR] checks: add PostgreSQL health check 13355 - [DOC] update ROADMAP file 13356 - [BUILD] pattern: use 'int' instead of 'int32_t' 13357 - [OPTIM] linux: add support for bypassing libc to force using vsyscalls 13358 - [BUG] debug: report the correct poller list in verbose mode 13359 - [BUG] capture: do not capture a cookie if there is no memory left 13360 - [BUG] appsession: fix possible double free in case of out of memory 13361 - [CRITICAL] cookies: mixing cookies in indirect mode and appsession can crash the process 13362 - [BUG] http: correctly update the header list when removing two consecutive headers 13363 - [BUILD] add the CPU=native and ARCH=32/64 build options 13364 - [BUILD] add -fno-strict-aliasing to fix warnings with gcc >= 4.4 13365 - [CLEANUP] hash: move the avalanche hash code globally available 13366 - [MEDIUM] hash: add support for an 'avalanche' hash-type 13367 - [DOC] update roadmap file 13368 - [BUG] http: do not re-enable the PROXY analyser on keep-alive 13369 - [OPTIM] http: don't send each chunk in a separate packet 13370 - [DOC] fix minor typos reported recently in the peers section 13371 - [DOC] fix another typo in the doc 13372 - [MINOR] stats: report HTTP message state and buffer flags in error dumps 13373 - [BUG] http chunking: don't report a parsing error on connection errors 13374 - [BUG] stream_interface: truncate buffers when sending error messages 13375 - [MINOR] http: support wrapping messages in error captures 13376 - [MINOR] http: capture incorrectly chunked message bodies 13377 - [MINOR] stats: add global event ID and count 13378 - [BUG] http: analyser optimizations broke pipelining 13379 - [CLEANUP] frontend: only apply TCP-specific settings to TCP/TCP6 sockets 13380 - [BUG] http: fix incorrect error reporting during data transfers 13381 - [CRITICAL] session: correctly leave turn-around and queue states on abort 13382 - [BUG] session: release slot before processing pending connections 13383 - [MINOR] tcp: add support for dynamic MSS setting 13384 - [BUG] stick-table: correctly terminate string keys during lookups 13385 - [BUG] acl: fix handling of empty lines in pattern files 13386 - [BUG] stick-table: use the private buffer when padding strings 13387 - [BUG] ebtree: fix ebmb_lookup() with len smaller than the tree's keys 13388 - [OPTIM] ebtree: ebmb_lookup: reduce stack usage by moving the return code out of the loop 13389 - [OPTIM] ebtree: inline ebst_lookup_len and ebis_lookup_len 13390 - [REVERT] undo the stick-table string key lookup fixes 13391 - [MINOR] http: improve url_param pattern extraction to ignore empty values 13392 - [BUILD] frontend: shut a warning with TCP_MAXSEG 13393 - [BUG] http: update the header list's tail when removing the last header 13394 - [DOC] fix minor typo in the proxy protocol doc 13395 - [DOC] fix typos (http-request instead of http-check) 13396 - [BUG] http: use correct ACL pointer when evaluating authentication 13397 - [BUG] cfgparse: correctly count one socket per port in ranges 13398 - [BUG] startup: set the rlimits before binding ports, not after. 13399 - [BUG] acl: srv_id must return no match when the server is NULL 13400 - [MINOR] acl: add ability to check for internal response-only parameters 13401 - [MINOR] acl: srv_id is only valid in responses 13402 - [MINOR] config: warn if response-only conditions are used in "redirect" rules 13403 - [BUG] acl: fd leak when reading patterns from file 13404 - [DOC] fix minor typo in "usesrc" 13405 - [BUG] http: fix possible incorrect forwarded wrapping chunk size 13406 - [BUG] http: fix computation of message body length after forwarding has started 13407 - [BUG] http: balance url_param did not work with first parameters on POST 13408 - [TESTS] update the url_param regression test to test check_post too 13409 - [DOC] update ROADMAP 13410 - [DOC] internal: reflect the fact that SI_ST_ASS is transient 13411 - [BUG] config: don't crash on empty pattern files. 13412 - [MINOR] stream_interface: make use of an applet descriptor for IO handlers 13413 - [REORG] stream_interface: move the st0, st1 and private members to the applet 13414 - [REORG] stream_interface: split the struct members in 3 parts 13415 - [REORG] session: move client and server address to the stream interface 13416 - [REORG] tcp: make tcpv4_connect_server() take the target address from the SI 13417 - [MEDIUM] stream_interface: store the target pointer and type 13418 - [CLEANUP] stream_interface: remove the applet.handler pointer 13419 - [MEDIUM] log: take the logged server name from the stream interface 13420 - [CLEANUP] session: remove data_source from struct session 13421 - [CLEANUP] stats: make all dump functions only rely on the stream interface 13422 - [REORG] session: move the data_ctx struct to the stream interface's applet 13423 - [MINOR] proxy: add PR_O2_DISPATCH to detect dispatch mode 13424 - [MINOR] cfgparse: only keep one of dispatch, transparent, http_proxy 13425 - [MINOR] session: add a pointer to the new target into the session 13426 - [MEDIUM] session: remove s->prev_srv which is not needed anymore 13427 - [CLEANUP] stream_interface: use inline functions to manipulate targets 13428 - [MAJOR] session: remove the ->srv pointer from struct session 13429 - [MEDIUM] stats: split frontend and backend stats 13430 - [MEDIUM] http: always evaluate http-request rules before stats http-request 13431 - [REORG] http: move the http-request rules to proto_http 13432 - [BUG] http: stats were not incremented on http-request deny 13433 - [MINOR] checks: report it if checks fail due to socket creation error 13434 134352010/11/11 : 1.5-dev3 13436 - [DOC] fix http-request documentation 13437 - [MEDIUM] enable/disable servers from the stats web interface 13438 - [MEDIUM] stats: add an admin level 13439 - [DOC] stats: document the "stats admin" statement 13440 - [MINOR] startup: print the proxy socket which caused an error 13441 - [CLEANUP] Remove unneeded chars allocation 13442 - [MINOR] config: detect options not supported due to compilation options 13443 - [MINOR] Add pattern's fetchs payload and payload_lv 13444 - [MINOR] frontend: improve accept-proxy header parsing 13445 - [MINOR] frontend: add tcpv6 support on accept-proxy bind 13446 - [MEDIUM] Enhance message errors management on binds 13447 - [MINOR] Manage unix socket source field on logs 13448 - [MINOR] Manage unix socket source field on session dump on sock stats 13449 - [MINOR] Support of unix listener sockets for debug and log event messages on frontend.c 13450 - [MINOR] Add some tests on sockets family for port remapping and mode transparent. 13451 - [MINOR] Manage socket type unix for some logs 13452 - [MINOR] Enhance controls of socket's family on acls and pattern fetch 13453 - [MINOR] Support listener's sockets unix on http logs. 13454 - [MEDIUM] Add supports of bind on unix sockets. 13455 - [BUG] stick table purge failure if size less than 255 13456 - [BUG] stick table entries expire on counters updates/read or show table, even if there is no "expire" parameter 13457 - [MEDIUM] Implement tcp inspect response rules 13458 - [DOC] tcp-response content and inspect 13459 - [MINOR] new acls fetch req_ssl_hello_type and rep_ssl_hello_type 13460 - [DOC] acls rep_ssl_hello and req_ssl_hello 13461 - [MEDIUM] Create new protected pattern types CONSTSTRING and CONSTDATA to force memcpy if data from protected areas need to be manipulated. 13462 - [DOC] new type binary in stick-table 13463 - [DOC] stick store-response and new patterns payload and payload_lv 13464 - [MINOR] Manage all types (ip, integer, string, binary) on cli "show table" command 13465 - [MEDIUM] Create updates tree on stick table to manage sync. 13466 - [MAJOR] Add new files src/peer.c, include/proto/peers.h and include/types/peers.h for sync stick table management 13467 - [MEDIUM] Manage peers section parsing and stick table registration on peers. 13468 - [MEDIUM] Manage soft stop on peers proxy 13469 - [DOC] add documentation for peers section 13470 - [MINOR] checks: add support for LDAPv3 health checks 13471 - [MINOR] add better support to "mysql-check" 13472 - [BUG] Restore info about available active/backup servers 13473 - [CONTRIB] Update haproxy.pl 13474 - [CONTRIB] Update Cacti Tempates 13475 - [CONTRIB] add templates for Cacti. 13476 - [BUG] http: don't consider commas as a header delimitor within quotes 13477 - [MINOR] support a global jobs counter 13478 - [DOC] add a summary about cookie incompatibilities between specs and browsers 13479 - [DOC] fix description of cookie "insert" and "indirect" modes 13480 - [MEDIUM] http: fix space handling in the request cookie parser 13481 - [MEDIUM] http: fix space handling in the response cookie parser 13482 - [DOC] fix typo in the queue() definition (backend, not frontend) 13483 - [BUG] deinit: unbind listeners before freeing them 13484 - [BUG] stream_interface: only call si->release when both dirs are closed 13485 - [MEDIUM] buffers: rework the functions to exchange between SI and buffers 13486 - [DOC] fix typo in the avg_queue() and be_conn() definition (backend, not frontend) 13487 - [MINOR] halog: add '-tc' to sort by termination codes 13488 - [MINOR] halog: skip non-traffic logs for -st and -tc 13489 - [BUG] stream_sock: cleanly disable the listener in case of resource shortage 13490 - [BUILD] stream_sock: previous fix lacked the #include, causing a warning. 13491 - [DOC] bind option is "defer-accept", not "defer_accept" 13492 - [DOC] missing index entry for http-check send-state 13493 - [DOC] tcp-request inspect-delay is for backends too 13494 - [BUG] ebtree: string_equal_bits() could return garbage on identical strings 13495 - [BUG] stream_sock: try to flush any extra pending request data after a POST 13496 - [BUILD] proto_http: eliminate some build warnings with gcc-2.95 13497 - [MEDIUM] make it possible to combine http-pretend-keepalived with httpclose 13498 - [MEDIUM] tcp-request : don't wait for inspect-delay to expire when the buffer is full 13499 - [MEDIUM] checks: add support for HTTP contents lookup 13500 - [TESTS] add test-check-expect to test various http-check methods 13501 - [MINOR] global: add "tune.chksize" to change the default check buffer size 13502 - [MINOR] cookie: add options "maxidle" and "maxlife" 13503 - [MEDIUM] cookie: support client cookies with some contents appended to their value 13504 - [MINOR] http: make some room in the transaction flags to extend cookies 13505 - [MINOR] cookie: add the expired (E) and old (O) flags for request cookies 13506 - [MEDIUM] cookie: reassign set-cookie status flags to store more states 13507 - [MINOR] add encode/decode function for 30-bit integers from/to base64 13508 - [MEDIUM] cookie: check for maxidle and maxlife for incoming dated cookies 13509 - [MEDIUM] cookie: set the date in the cookie if needed 13510 - [DOC] document the cookie maxidle and maxlife parameters 13511 - [BUG] checks: don't log backend down for all zero-weight servers 13512 - [MEDIUM] checks: set server state to one state from failure when leaving maintenance 13513 - [BUG] config: report correct keywords for "observe" 13514 - [MINOR] checks: ensure that we can inherit binary checks from the defaults section 13515 - [MINOR] acl: add the http_req_first match 13516 - [DOC] fix typos about bind-process syntax 13517 - [BUG] cookie: correctly unset default cookie parameters 13518 - [MINOR] cookie: add support for the "preserve" option 13519 - [BUG] ebtree: fix duplicate strings insertion 13520 - [CONTRIB] halog: report per-url counts, errors and times 13521 - [CONTRIB] halog: minor speed improvement in timer parser 13522 - [MINOR] buffers: add a new request analyser flag for PROXY mode 13523 - [MINOR] listener: add the "accept-proxy" option to the "bind" keyword 13524 - [MINOR] standard: add read_uint() to parse a delimited unsigned integer 13525 - [MINOR] standard: change arg type from const char* to char* 13526 - [MINOR] frontend: add a new analyser to parse a proxied connection 13527 - [MEDIUM] session: call the frontend_decode_proxy analyser on proxied connections 13528 - [DOC] add the proxy protocol's specifications 13529 - [DOC] document the 'accept-proxy' bind option 13530 - [MINOR] cfgparse: report support of <path> for the 'bind' statements 13531 - [DOC] add references to unix socket handling 13532 - [MINOR] move MAXPATHLEN definition to compat.h 13533 - [MEDIUM] unix sockets: cleanup the error reporting path 13534 - [BUG] session: don't stop forwarding of data upon last packet 13535 - [CLEANUP] accept: replace some inappropriate Alert() calls with send_log() 13536 - [BUILD] peers: shut a printf format warning (key_size is a size_t) 13537 - [BUG] accept: don't close twice upon error 13538 - [OPTIM] session: don't recheck analysers when buffer flags have not changed 13539 - [OPTIM] stream_sock: don't clear FDs that are already cleared 13540 - [BUG] proto_tcp: potential bug on pattern fetch dst and dport 13541 135422010/08/28 : 1.5-dev2 13543 - [MINOR] startup: release unused structs after forking 13544 - [MINOR] startup: don't wait for nothing when no old pid remains 13545 - [CLEANUP] reference product branch 1.5 13546 - [MEDIUM] signals: add support for registering functions and tasks 13547 - [MEDIUM] signals: support redistribution of signal zero when stopping 13548 - [BUG] http: don't set auto_close if more data are expected 13549 135502010/08/25 : 1.5-dev1 13551 - [BUG] stats: session rate limit gets garbaged in the stats 13552 - [DOC] mention 'option http-server-close' effect in Tq section 13553 - [DOC] summarize and highlight persistent connections behaviour 13554 - [DOC] add configuration samples 13555 - [BUG] http: dispatch and http_proxy modes were broken for a long time 13556 - [BUG] http: the transaction must be initialized even in TCP mode 13557 - [BUG] tcp: dropped connections must be counted as "denied" not "failed" 13558 - [BUG] consistent hash: balance on all servers, not only 2 ! 13559 - [CONTRIB] halog: report per-server status codes, errors and response times 13560 - [BUG] http: the transaction must be initialized even in TCP mode (part 2) 13561 - [BUG] client: always ensure to zero rep->analysers 13562 - [BUG] session: clear BF_READ_ATTACHED before next I/O 13563 - [BUG] http: automatically close response if req is aborted 13564 - [BUG] proxy: connection rate limiting was eating lots of CPU 13565 - [BUG] http: report correct flags in case of client aborts during body 13566 - [TESTS] refine non-regression tests and add 4 new tests 13567 - [BUG] debug: wrong pointer was used to report a status line 13568 - [BUG] debug: correctly report truncated messages 13569 - [DOC] document the "dispatch" keyword 13570 - [BUG] stick_table: fix possible memory leak in case of connection error 13571 - [CLEANUP] acl: use 'L6' instead of 'L4' in ACL flags relying on contents 13572 - [MINOR] accept: count the incoming connection earlier 13573 - [CLEANUP] tcp: move some non tcp-specific layer6 processing out of proto_tcp 13574 - [CLEANUP] client: move some ACLs away to their respective locations 13575 - [CLEANUP] rename client -> frontend 13576 - [MEDIUM] separate protocol-level accept() from the frontend's 13577 - [MINOR] proxy: add a list to hold future layer 4 rules 13578 - [MEDIUM] config: parse tcp layer4 rules (tcp-request accept/reject) 13579 - [MEDIUM] tcp: check for pure layer4 rules immediately after accept() 13580 - [OPTIM] frontend: tell the compiler that errors are unlikely to occur 13581 - [MEDIUM] frontend: check for LI_O_TCP_RULES in the listener 13582 - [MINOR] frontend: only check for monitor-net rules if LI_O_CHK_MONNET is set 13583 - [CLEANUP] buffer->cto is not used anymore 13584 - [MEDIUM] session: finish session establishment sequence in with I/O handlers 13585 - [MEDIUM] session: initialize server-side timeouts after connect() 13586 - [MEDIUM] backend: initialize the server stream_interface upon connect() 13587 - [MAJOR] frontend: don't initialize the server-side stream_int anymore 13588 - [MEDIUM] session: move the conn_retries attribute to the stream interface 13589 - [MEDIUM] session: don't assign conn_retries upon accept() anymore 13590 - [MINOR] frontend: rely on the frontend and not the backend for INDEPSTR 13591 - [MAJOR] frontend: reorder the session initialization upon accept 13592 - [MINOR] proxy: add an accept() callback for the application layer 13593 - [MAJOR] frontend: split accept() into frontend_accept() and session_accept() 13594 - [MEDIUM] stats: rely on the standard session_accept() function 13595 - [MINOR] buffer: refine the flags that may wake an analyser up. 13596 - [MINOR] stream_sock: don't dereference a non-existing frontend 13597 - [MINOR] session: differenciate between accepted connections and received connections 13598 - [MEDIUM] frontend: count the incoming connection earlier 13599 - [MINOR] frontend: count denied TCP requests separately 13600 - [CLEANUP] stick_table: add/clarify some comments 13601 - [BUILD] memory: add a few missing parenthesis to the pool management macros 13602 - [MINOR] stick_table: add support for variable-sized data 13603 - [CLEANUP] stick_table: rename some stksess struct members to avoid confusion 13604 - [CLEANUP] stick_table: move pattern to key functions to stick_table.c 13605 - [MEDIUM] stick_table: add room for extra data types 13606 - [MINOR] stick_table: add support for "conn_cum" data type. 13607 - [MEDIUM] stick_table: don't overwrite data when storing an entry 13608 - [MINOR] config: initialize stick tables after all the parsing 13609 - [MINOR] stick_table: provide functions to return stksess data from a type 13610 - [MEDIUM] stick_table: move the server ID to a generic data type 13611 - [MINOR] stick_table: enable it for frontends too 13612 - [MINOR] stick_table: export the stick_table_key 13613 - [MINOR] tcp: add per-source connection rate limiting 13614 - [MEDIUM] stick_table: separate storage and update of session entries 13615 - [MEDIUM] stick-tables: add a reference counter to each entry 13616 - [MINOR] session: add a pointer to the tracked counters for the source 13617 - [CLEANUP] proto_tcp: make the config parser a little bit more flexible 13618 - [BUG] config: report the correct proxy type in tcp-request errors 13619 - [MINOR] config: provide a function to quote args in a more friendly way 13620 - [BUG] stick_table: the fix for the memory leak caused a regression 13621 - [MEDIUM] backend: support servers on 0.0.0.0 13622 - [BUG] stick-table: correctly refresh expiration timers 13623 - [MEDIUM] stream-interface: add a ->release callback 13624 - [MINOR] proxy: add a "parent" member to the structure 13625 - [MEDIUM] session: make it possible to call an I/O handler on both SI 13626 - [MINOR] tools: add a fast div64_32 function 13627 - [MINOR] freq_ctr: add new types and functions for periods different from 1s 13628 - [MINOR] errors: provide new status codes for config parsing functions 13629 - [BUG] http: denied requests must not be counted as denied resps in listeners 13630 - [MINOR] tools: add a get_std_op() function to parse operators 13631 - [MEDIUM] acl: make use of get_std_op() to parse intger ranges 13632 - [MAJOR] stream_sock: better wakeup conditions on read() 13633 - [BUG] session: analysers must be checked when SI state changes 13634 - [MINOR] http: reset analysers to listener's, not frontend's 13635 - [MEDIUM] session: support "tcp-request content" rules in backends 13636 - [BUILD] always match official tags when doing git-tar 13637 - [MAJOR] stream_interface: fix the wakeup conditions for embedded iohandlers 13638 - [MEDIUM] buffer: make buffer_feed* support writing non-contiguous chunks 13639 - [MINOR] tcp: src_count acl does not have a permanent result 13640 - [MAJOR] session: add track-counters to track counters related to the session 13641 - [MINOR] stick-table: provide a table lookup function 13642 - [MINOR] stick-table: use suffix "_cnt" for cumulated counts 13643 - [MEDIUM] session: move counter ACL fetches from proto_tcp 13644 - [MEDIUM] session: add concurrent connections counter 13645 - [MEDIUM] session: add data in and out volume counters 13646 - [MINOR] session: add the trk_conn_cnt ACL keyword to track connection counts 13647 - [MEDIUM] session-counters: automatically update tracked connection count 13648 - [MINOR] session: add the trk_conn_cur ACL keyword to track concurrent connection 13649 - [MINOR] session: add trk_kbytes_* ACL keywords to track data size 13650 - [MEDIUM] session: add a counter on the cumulated number of sessions 13651 - [MINOR] config: support a comma-separated list of store data types in stick-table 13652 - [MEDIUM] stick-tables: add support for arguments to data_types 13653 - [MEDIUM] stick-tables: add stored data argument type checking 13654 - [MEDIUM] session counters: add conn_rate and sess_rate counters 13655 - [MEDIUM] session counters: add bytes_in_rate and bytes_out_rate counters 13656 - [MINOR] stktable: add a stktable_update_key() function 13657 - [MINOR] session-counters: add a general purpose counter (gpc0) 13658 - [MEDIUM] session-counters: add HTTP req/err tracking 13659 - [MEDIUM] stats: add "show table [<name>]" to dump a stick-table 13660 - [MEDIUM] stats: add "clear table <name> key <value>" to clear table entries 13661 - [CLEANUP] stick-table: declare stktable_data_types as extern 13662 - [MEDIUM] stick-table: make use of generic types for stored data 13663 - [MINOR] stats: correctly report errors on "show table" and "clear table" 13664 - [MEDIUM] stats: add the ability to dump table entries matching criteria 13665 - [DOC] configuration: document all the new tracked counters 13666 - [DOC] stats: document "show table" and "clear table" 13667 - [MAJOR] session-counters: split FE and BE track counters 13668 - [MEDIUM] tcp: accept the "track-counters" in "tcp-request content" rules 13669 - [MEDIUM] session counters: automatically remove expired entries. 13670 - [MEDIUM] config: replace 'tcp-request <action>' with "tcp-request connection" 13671 - [MEDIUM] session-counters: make it possible to count connections from frontend 13672 - [MINOR] session-counters: use "track-sc{1,2}" instead of "track-{fe,be}-counters" 13673 - [MEDIUM] session-counters: correctly unbind the counters tracked by the backend 13674 - [CLEANUP] stats: use stksess_kill() to remove table entries 13675 - [DOC] update the references to session counters and to tcp-request connection 13676 - [DOC] cleanup: split a few long lines 13677 - [MEDIUM] http: forward client's close when abortonclose is set 13678 - [BUG] queue: don't dequeue proxy-global requests on disabled servers 13679 - [BUG] stats: global stats timeout may be specified before stats socket. 13680 - [BUG] conf: add tcp-request content rules to the correct list 13681 136822010/05/23 : 1.5-dev0 13683 - exact copy of 1.4.6 13684 136852010/05/16 : 1.4.6 13686 - [BUILD] ebtree: update to v6.0.1 to remove references to dprintf() 13687 - [CLEANUP] acl: make use of eb_is_empty() instead of open coding the tree's emptiness test 13688 - [MINOR] acl: add srv_is_up() to check that a specific server is up or not 13689 - [DOC] add a few precisions about the use of RDP cookies 13690 136912010/05/13 : 1.4.5 13692 - [DOC] report minimum kernel version for tproxy in the Makefile 13693 - [MINOR] add the "ignore-persist" option to conditionally ignore persistence 13694 - [DOC] add the "ignore-persist" option to conditionally ignore persistence 13695 - [DOC] fix ignore-persist/force-persist documentation 13696 - [BUG] cttproxy: socket fd leakage in check_cttproxy_version 13697 - [DOC] doc/configuration.txt: fix typos 13698 - [MINOR] option http-pretend-keepalive is both for FEs and BEs 13699 - [MINOR] fix possible crash in debug mode with invalid responses 13700 - [MINOR] halog: add support for statisticts on status codes 13701 - [OPTIM] halog: use a faster zero test in fgets() 13702 - [OPTIM] halog: minor speedup by using unlikely() 13703 - [OPTIM] halog: speed up fgets2-64 by about 10% 13704 - [DOC] refresh the README file and merge the CONTRIB file into it 13705 - [MINOR] acl: support loading values from files 13706 - [MEDIUM] ebtree: upgrade to version 6.0 13707 - [MINOR] acl trees: add flags and union members to store values in trees 13708 - [MEDIUM] acl: add ability to insert patterns in trees 13709 - [MEDIUM] acl: add tree-based lookups of exact strings 13710 - [MEDIUM] acl: add tree-based lookups of networks 13711 - [MINOR] acl: ignore empty lines and comments in pattern files 13712 - [MINOR] stick-tables: add support for "stick on hdr" 13713 137142010/04/07 : 1.4.4 13715 - [BUG] appsession should match the whole cookie name 13716 - [CLEANUP] proxy: move PR_O_SSL3_CHK to options2 to release one flag 13717 - [MEDIUM] backend: move the transparent proxy address selection to backend 13718 - [MINOR] add very fast IP parsing functions 13719 - [MINOR] add new tproxy flags for dynamic source address binding 13720 - [MEDIUM] add ability to connect to a server from an IP found in a header 13721 - [BUILD] config: last patch breaks build without CONFIG_HAP_LINUX_TPROXY 13722 - [MINOR] http: make it possible to pretend keep-alive when doing close 13723 - [MINOR] config: report "default-server" instead of "(null)" in error messages 13724 137252010/03/30 : 1.4.3 13726 - [CLEANUP] stats: remove printf format warning in stats_dump_full_sess_to_buffer() 13727 - [MEDIUM] session: better fix for connection to servers with closed input 13728 - [DOC] indicate in the doc how to bind to port ranges 13729 - [BUG] backend: L7 hashing must not be performed on incomplete requests 13730 - [TESTS] add a simple program to test connection resets 13731 - [MINOR] cli: "show errors" should display "backend <NONE>" when backend was not used 13732 - [MINOR] config: emit warnings when HTTP-only options are used in TCP mode 13733 - [MINOR] config: allow "slowstart 0s" 13734 - [BUILD] 'make tags' did not consider files ending in '.c' 13735 - [MINOR] checks: add the ability to disable a server in the config 13736 137372010/03/17 : 1.4.2 13738 - [CLEANUP] product branch update 13739 - [DOC] Some more documentation cleanups 13740 - [BUG] clf logs segfault when capturing a non existant header 13741 - [OPTIM] config: only allocate check buffer when checks are enabled 13742 - [MEDIUM] checks: support multi-packet health check responses 13743 - [CLEANUP] session: remove duplicate test 13744 - [BUG] http: don't wait for response data to leave buffer is client has left 13745 - [MINOR] proto_uxst: set accept_date upon accept() to the wall clock time 13746 - [MINOR] stats: don't send empty lines in "show errors" 13747 - [MINOR] stats: make the data dump function reusable for other purposes 13748 - [MINOR] stats socket: add show sess <id> to dump details about a session 13749 - [BUG] stats: connection reset counters must be plain ascii, not HTML 13750 - [BUG] url_param hash may return a down server 13751 - [MINOR] force null-termination of hostname 13752 - [MEDIUM] connect to servers even when the input has already been closed 13753 - [BUG] don't merge anonymous ACLs ! 13754 - [BUG] config: fix endless loop when parsing "on-error" 13755 - [MINOR] http: don't mark a server as failed when it returns 501/505 13756 - [OPTIM] checks: try to detect the end of response without polling again 13757 - [BUG] checks: don't report an error when recv() returns an error after data 13758 - [BUG] checks: don't abort when second poll returns an error 13759 - [MINOR] checks: make shutdown() silently fail 13760 - [BUG] http: fix truncated responses on chunk encoding when size divides buffer size 13761 - [BUG] init: unconditionally catch SIGPIPE 13762 - [BUG] checks: don't wait for a close to start parsing the response 13763 137642010/03/04 : 1.4.1 13765 - [BUG] Clear-cookie path issue 13766 - [DOC] fix typo on stickiness rules 13767 - [BUILD] fix BSD and OSX makefiles for missing files 13768 - [BUILD] includes order breaks OpenBSD build 13769 - [BUILD] fix some build warnings on Solaris with is* macros 13770 - [BUG] logs: don't report "last data" when we have just closed after an error 13771 - [BUG] logs: don't report "proxy request" when server closes early 13772 - [BUILD] fix platform-dependant build issues related to crypt() 13773 - [STATS] count transfer aborts caused by client and by server 13774 - [STATS] frontend requests were not accounted for failed requests 13775 - [MINOR] report total number of processed connections when stopping a proxy 13776 - [DOC] be more clear about the limitation to one single monitor-net entry 13777 137782010/02/26 : 1.4.0 13779 - [MINOR] stats: report maint state for tracking servers too 13780 - [DOC] fix summary to add pattern extraction 13781 - [DOC] Documentation cleanups 13782 - [BUG] cfgparse memory leak and missing free calls in deinit() 13783 - [BUG] pxid/puid/luid: don't shift IDs when some of them are forced 13784 - [EXAMPLES] add auth.cfg 13785 - [BUG] uri_auth: ST_SHLGNDS should be 0x00000008 not 0x0000008 13786 - [BUG] uri_auth: do not attemp to convert uri_auth -> http-request more than once 13787 - [BUILD] auth: don't use unnamed unions 13788 - [BUG] config: report unresolvable host names as errors 13789 - [BUILD] fix build breakage with DEBUG_FULL 13790 - [DOC] fix a typo about timeout check and clarify the explanation. 13791 - [MEDIUM] http: don't use trash to realign large buffers 13792 - [STATS] report HTTP requests (total and rate) in frontends 13793 - [STATS] separate frontend and backend HTTP stats 13794 - [MEDIUM] http: revert to use a swap buffer for realignment 13795 - [MINOR] stats: report the request rate in frontends as cell titles 13796 - [MINOR] stats: mark areas with an underline when tooltips are available 13797 - [DOC] reorder some entries to maintain the alphabetical order 13798 - [DOC] cleanup of the keyword matrix 13799 138002010/02/02 : 1.4-rc1 13801 - [MEDIUM] add a maintenance mode to servers 13802 - [MINOR] http-auth: last fix was wrong 13803 - [CONTRIB] add base64rev-gen.c that was used to generate the base64rev table. 13804 - [MINOR] Base64 decode 13805 - [MINOR] generic auth support with groups and encrypted passwords 13806 - [MINOR] add ACL_TEST_F_NULL_MATCH 13807 - [MINOR] http-request: allow/deny/auth support for frontend/backend/listen 13808 - [MINOR] acl: add http_auth and http_auth_group 13809 - [MAJOR] use the new auth framework for http stats 13810 - [DOC] add info about userlists, http-request and http_auth/http_auth_group acls 13811 - [STATS] make it possible to change a CLI connection timeout 13812 - [BUG] patterns: copy-paste typo in type conversion arguments 13813 - [MINOR] pattern: make the converter more flexible by supporting void* and int args 13814 - [MINOR] standard: str2mask: string to netmask converter 13815 - [MINOR] pattern: add support for argument parsers for converters 13816 - [MINOR] pattern: add the "ipmask()" converting function 13817 - [MINOR] config: off-by-one in "stick-table" after list of converters 13818 - [CLEANUP] acl, patterns: make use of my_strndup() instead of malloc+memcpy 13819 - [BUG] restore accidentely removed line in last patch ! 13820 - [MINOR] checks: make the HTTP check code add the CRLF itself 13821 - [MINOR] checks: add the server's status in the checks 13822 - [BUILD] halog: make without arch-specific optimizations 13823 - [BUG] halog: fix segfault in case of empty log in PCT mode (cherry picked from commit fe362fe4762151d209b9656639ee1651bc2b329d) 13824 - [MINOR] http: disable keep-alive when process is going down 13825 - [MINOR] acl: add build_acl_cond() to make it easier to add ACLs in config 13826 - [CLEANUP] config: use build_acl_cond() instead of parse_acl_cond() 13827 - [CLEANUP] config: use warnif_cond_requires_resp() to check for bad ACLs 13828 - [MINOR] prepare req_*/rsp_* to receive a condition 13829 - [CLEANUP] config: specify correct const char types to warnif_* functions 13830 - [MEDIUM] config: factor out the parsing of 20 req*/rsp* keywords 13831 - [MEDIUM] http: make the request filter loop check for optional conditions 13832 - [MEDIUM] http: add support for conditional request filter execution 13833 - [DOC] add some build info about the AIX platform (cherry picked from commit e41914c77edbc40aebf827b37542d37d758e371e) 13834 - [MEDIUM] http: add support for conditional request header addition 13835 - [MEDIUM] http: add support for conditional response header rewriting 13836 - [DOC] add some missing ACLs about response header matching 13837 - [MEDIUM] http: add support for proxy authentication 13838 - [MINOR] http-auth: make the 'unless' keyword work as expected 13839 - [CLEANUP] config: use build_acl_cond() to simplify http-request ACL parsing 13840 - [MEDIUM] add support for anonymous ACLs 13841 - [MEDIUM] http: switch to tunnel mode after status 101 responses 13842 - [MEDIUM] http: stricter processing of the CONNECT method 13843 - [BUG] config: reset check request to avoid double free when switching to ssl/sql 13844 - [MINOR] config: fix too large ssl-hello-check message. 13845 - [BUG] fix error response in case of server error 13846 138472010/01/25 : 1.4-dev8 13848 - [CLEANUP] Keep in sync "defaults" support between documentation and code 13849 - [MEDIUM] http: add support for Proxy-Connection header 13850 - [CRITICAL] buffers: buffer_insert_line2 must not change the ->w entry 13851 - [MINOR] http: remove a copy-paste typo in transaction cleaning 13852 - [BUG] http: trim any excess buffer data when recycling a connection 13853 138542010/01/25 : 1.4-dev7 13855 - [BUG] appsession: possible memory leak in case of out of memory condition 13856 - [MINOR] config: don't accept 'appsession' in defaults section 13857 - [MINOR] Add function to parse a size in configuration 13858 - [MEDIUM] Add stick table (persistence) management functions and types 13859 - [MEDIUM] Add pattern fetch management types and functions 13860 - [MEDIUM] Add src dst and dport pattern fetches. 13861 - [MEDIUM] Add stick table configuration and init. 13862 - [MEDIUM] Add stick and store rules analysers. 13863 - [MINOR] add option "mysql-check" to use MySQL health checks 13864 - [BUG] health checks: fix requeued message 13865 - [OPTIM] remove SSP_O_VIA and SSP_O_STATUS 13866 - [BUG] checks: fix newline termination 13867 - [MINOR] acl: add fe_id/so_id to match frontend's and socket's id 13868 - [BUG] appsession's sessid must be reset at end of transaction 13869 - [BUILD] appsession did not build anymore under gcc-2.95 13870 - [BUG] server redirection used an uninitialized string. 13871 - [MEDIUM] http: fix handling of message pointers 13872 - [MINOR] http: fix double slash prefix with server redirect 13873 - [MINOR] http redirect: add the ability to append a '/' to the URL 13874 - [BUG] stream_interface: fix retnclose and remove cond_close 13875 - [MINOR] http redirect: don't explicitly state keep-alive on 1.1 13876 - [MINOR] http: move appsession 'sessid' from session to http_txn 13877 - [OPTIM] reorder http_txn to optimize cache lines placement 13878 - [MINOR] http: differentiate waiting for new request and waiting for a complete requst 13879 - [MINOR] http: add a separate "http-keep-alive" timeout 13880 - [MINOR] config: remove undocumented and buggy 'timeout appsession' 13881 - [DOC] fix various too large lines 13882 - [DOC] remove several trailing spaces 13883 - [DOC] add the doc about stickiness 13884 - [BUILD] remove a warning in standard.h on AIX 13885 - [BUG] checks: chars are unsigned on AIX, check was always true 13886 - [CLEANUP] stream_sock: MSG_NOSIGNAL is only for send(), not recv() 13887 - [BUG] check: we must not check for error before reading a response 13888 - [BUG] buffers: remove remains of wrong obsolete length check 13889 - [OPTIM] stream_sock: don't shutdown(write) when the socket is in error 13890 - [BUG] http: don't count req errors on client resets or t/o during keep-alive 13891 - [MEDIUM] http: don't switch to tunnel mode upon close 13892 - [DOC] add documentation about connection header processing 13893 - [MINOR] http: add http_remove_header2() to remove a header value. 13894 - [MINOR] tools: add a "word_match()" function to match words and ignore spaces 13895 - [MAJOR] http: rework request Connection header handling 13896 - [MAJOR] http: rework response Connection header handling 13897 - [MINOR] add the ability to force kernel socket buffer size. 13898 - [BUG] http_server_error() must not purge a previous pending response 13899 - [OPTIM] http: don't delay response if next request is incomplete 13900 - [MINOR] add the "force-persist" statement to force persistence on down servers 13901 - [MINOR] http: logs must report persistent connections to down servers 13902 - [BUG] buffer_replace2 must never change the ->w entry 13903 139042010/01/08 : 1.4-dev6 13905 - [BUILD] warning in stream_interface.h 13906 - [BUILD] warning ultoa_r returns char * 13907 - [MINOR] hana: only report stats if it is enabled 13908 - [MINOR] stats: add "a link" & "a href" for sockets 13909 - [MINOR]: stats: add show-legends to report additional informations 13910 - [MEDIUM] default-server support 13911 - [BUG]: add 'observer', 'on-error', 'error-limit' to supported options list 13912 - [MINOR] stats: add href to tracked server 13913 - [BUG] stats: show UP/DOWN status also in tracking servers 13914 - [DOC] Restore ability to search a keyword at the beginning of a line 13915 - [BUG] stats: cookie should be reported under backend not under proxy 13916 - [BUG] cfgparser/stats: fix error message 13917 - [BUG] http: disable auto-closing during chunk analysis 13918 - [BUG] http: fix hopefully last closing issue on data forwarding 13919 - [DEBUG] add an http_silent_debug function to debug HTTP states 13920 - [MAJOR] http: fix again the forward analysers 13921 - [BUG] http_process_res_common() must not skip the forward analyser 13922 - [BUG] http: some possible missed close remain in the forward chain 13923 - [BUG] http: redirect needed to be updated after recent changes 13924 - [BUG] http: don't set no-linger on response in case of forced close 13925 - [MEDIUM] http: restore the original behaviour of option httpclose 13926 - [TESTS] add a file to test various connection modes 13927 - [BUG] http: check options before the connection header 13928 - [MAJOR] session: fix the order by which the analysers are run 13929 - [MEDIUM] session: also consider request analysers added during response 13930 - [MEDIUM] http: make safer use of the DONT_READ and AUTO_CLOSE flags 13931 - [BUG] http: memory leak with captures when using keep-alive 13932 - [BUG] http: fix for capture memory leak was incorrect 13933 - [MINOR] http redirect: use proper call to return last response 13934 - [MEDIUM] http: wait for some flush of the response buffer before a new request 13935 - [MEDIUM] session: limit the number of analyser loops 13936 139372010/01/03 : 1.4-dev5 13938 - [MINOR] server tracking: don't care about the tracked server's mode 13939 - [MEDIUM] appsession: add "len", "prefix" and "mode" options 13940 - [MEDIUM] appsession: add the "request-learn" option 13941 - [BUG] Configuration parser bug when escaping characters 13942 - [MINOR] CSS & HTML fun 13943 - [MINOR] Collect & provide http response codes received from servers 13944 - [BUG] Fix silly typo: hspr_other -> hrsp_other 13945 - [MINOR] Add "a name" to stats page 13946 - [MINOR] add additional "a href"s to stats page 13947 - [MINOR] Collect & provide http response codes for frontends, fix backends 13948 - [DOC] some small spell fixes and unifications 13949 - [MEDIUM] Decrease server health based on http responses / events, version 3 13950 - [BUG] format '%d' expects type 'int', but argument 5 has type 'long int' 13951 - [BUG] config: fix erroneous check on cookie domain names, again 13952 - [BUG] Healthchecks: get a proper error code if connection cannot be completed immediately 13953 - [DOC] trivial fix for man page 13954 - [MINOR] config: report all supported options for the "bind" keyword 13955 - [MINOR] tcp: add support for the defer_accept bind option 13956 - [MINOR] unix socket: report the socket path in case of bind error 13957 - [CONTRIB] halog: support searching by response time 13958 - [DOC] add a reminder about obsolete documents 13959 - [DOC] point to 1.4 doc, not 1.3 13960 - [DOC] option tcp-smart-connect was missing from index 13961 - [MINOR] http: detect connection: close earlier 13962 - [CLEANUP] sepoll: clean up the fd_clr/fd_set functions 13963 - [OPTIM] move some rarely used fields out of fdtab 13964 - [MEDIUM] fd: merge fd_list into fdtab 13965 - [MAJOR] buffer: flag BF_DONT_READ to disable reads when not required 13966 - [MINOR] http: add new transaction flags for keep-alive and content-length 13967 - [MEDIUM] http request: parse connection, content-length and transfer-encoding 13968 - [MINOR] http request: update the TX_SRV_CONN_KA flag on rewrite 13969 - [MINOR] http request: simplify the test of no-data 13970 - [MEDIUM] http request: simplify POST length detection 13971 - [MEDIUM] http request: make use of pre-parsed transfer-encoding header 13972 - [MAJOR] http: create the analyser which waits for a response 13973 - [MINOR] http: pre-set the persistent flags in the transaction 13974 - [MEDIUM] http response: check body length and set transaction flags 13975 - [MINOR] http response: update the TX_CLI_CONN_KA flag on rewrite 13976 - [MINOR] http: remove the last call to stream_int_return 13977 - [IMPORT] import ebtree v5.0 into directory ebtree/ 13978 - [MEDIUM] build: switch ebtree users to use new ebtree version 13979 - [CLEANUP] ebtree: remove old unused files 13980 - [BUG] definitely fix regparm issues between haproxy core and ebtree 13981 - [CLEANUP] ebtree: cast to char * to get rid of gcc warning 13982 - [BUILD] missing #ifndef in ebmbtree.h 13983 - [BUILD] missing #ifndef in ebsttree.h 13984 - [MINOR] tools: add hex2i() function to convert hex char to int 13985 - [MINOR] http: create new MSG_BODY sub-states 13986 - [BUG] stream_sock: BUF_INFINITE_FORWARD broke splice on 64-bit platforms 13987 - [DOC] option is "defer-accept", not "defer_accept" 13988 - [MINOR] http: keep pointer to beginning of data 13989 - [BUG] x-original-to: name was not set in default instance 13990 - [MINOR] http: detect tunnel mode and set it in the session 13991 - [BUG] config: fix error message when config file is not found 13992 - [BUG] config: fix wrong handling of too large argument count 13993 - [BUG] config: disable 'option httplog' on TCP proxies 13994 - [BUG] config: fix erroneous check on cookie domain names 13995 - [BUG] config: cookie domain was ignored in defaults sections 13996 - [MINOR] config: support passing multiple "domain" statements to cookies 13997 - [MINOR] ebtree: add functions to lookup non-null terminated strings 13998 - [MINOR] config: don't report error on all subsequent files on failure 13999 - [BUG] second fix for the printf format warning 14000 - [BUG] check_post: limit analysis to the buffer length 14001 - [MEDIUM] http: process request body in a specific analyser 14002 - [MEDIUM] backend: remove HTTP POST parsing from get_server_ph_post() 14003 - [MAJOR] http: completely process the "connection" header 14004 - [MINOR] http: only consider chunk encoding with HTTP/1.1 14005 - [MAJOR] buffers: automatically compute the maximum buffer length 14006 - [MINOR] http: move the http transaction init/cleanup code to proto_http 14007 - [MINOR] http: move 1xx handling earlier to eliminate a lot of ifs 14008 - [MINOR] http: introduce a new synchronisation state : HTTP_MSG_DONE 14009 - [MEDIUM] http: rework chunk-size parser 14010 - [MEDIUM] http: add a new transaction flags indicating if we know the transfer length 14011 - [MINOR] buffers: add buffer_ignore() to skip some bytes 14012 - [BUG] http: offsets are relative to the buffer, not to ->som 14013 - [MEDIUM] http: automatically re-aling request buffer 14014 - [BUG] http: body parsing must consider the start of message 14015 - [MINOR] new function stream_int_cond_close() 14016 - [MAJOR] http: implement body parser 14017 - [BUG] http: typos on several unlikely() around header insertion 14018 - [BUG] stream_sock: wrong max computation on recv 14019 - [MEDIUM] http: rework the buffer alignment logic 14020 - [BUG] buffers: wrong size calculation for displaced data 14021 - [MINOR] stream_sock: prepare for closing when all pending data are sent 14022 - [MEDIUM] http: add two more states for the closing period 14023 - [MEDIUM] http: properly handle "option forceclose" 14024 - [MINOR] stream_sock: add SI_FL_NOLINGER for faster close 14025 - [MEDIUM] http: make forceclose use SI_FL_NOLINGER 14026 - [MEDIUM] session: set SI_FL_NOLINGER when aborting on write timeouts 14027 - [MEDIUM] http: add some SI_FL_NOLINGER around server errors 14028 - [MINOR] config: option forceclose is valid in frontends too 14029 - [BUILD] halog: insufficient include path in makefile 14030 - [MEDIUM] http: make the analyser not rely on msg being initialized anymore 14031 - [MEDIUM] http: make the parsers able to wait for a buffer flush 14032 - [MAJOR] http: add support for option http-server-close 14033 - [BUG] http: ensure we abort data transfer on write error 14034 - [BUG] last fix was overzealous and disabled server-close 14035 - [BUG] http: fix erroneous trailers size computation 14036 - [MINOR] stream_sock: enable MSG_MORE when forwarding finite amount of data 14037 - [OPTIM] http: set MSG_MORE on response when a pipelined request is pending 14038 - [BUG] http: redirects were broken by chunk changes 14039 - [BUG] http: the request URI pointer is relative to the buffer 14040 - [OPTIM] http: don't immediately enable reading on request 14041 - [MINOR] http: move redirect messages to HTTP/1.1 with a content-length 14042 - [BUG] http: take care of errors, timeouts and aborts during the data phase 14043 - [MINOR] http: don't wait for sending requests to the server 14044 - [MINOR] http: make the conditional redirect support keep-alive 14045 - [BUG] http: fix cookie parser to support spaces and commas in values 14046 - [MINOR] config: some options were missing for "redirect" 14047 - [MINOR] redirect: add support for unconditional rules 14048 - [MINOR] config: centralize proxy struct initialization 14049 - [MEDIUM] config: remove the limitation of 10 reqadd/rspadd statements 14050 - [MEDIUM] config: remove the limitation of 10 config files 14051 - [CLEANUP] http: remove a remaining impossible condition 14052 - [OPTIM] http: optimize a bit the construct of the forward loops 14053 140542009/10/12 : 1.4-dev4 14055 - [DOC] add missing rate_lim and rate_max 14056 - [MAJOR] struct chunk rework 14057 - [MEDIUM] Health check reporting code rework + health logging, v3 14058 - [BUG] check if rise/fall has an argument and it is > 0 14059 - [MINOR] health checks logging unification 14060 - [MINOR] add "description", "node" and show-node"/"show-desc", remove "node-name", v2 14061 - [MINOR] Allow dots in show-node & add "white-space: nowrap" in th.pxname. 14062 - [DOC] Add information about http://haproxy.1wt.eu/contrib.html 14063 - [MINOR] Introduce include/types/counters.h 14064 - [CLEANUP] Move counters to dedicated structures 14065 - [MINOR] Add "clear counters" to clear statistics counters 14066 - [MEDIUM] Collect & provide separate statistics for sockets, v2 14067 - [BUG] Fix NULL pointer dereference in stats_check_uri_auth(), v2 14068 - [MINOR] acl: don't report valid acls as potential mistakes 14069 - [MINOR] Add cut_crlf(), ltrim(), rtrim() and alltrim() 14070 - [MINOR] Add chunk_htmlencode and chunk_asciiencode 14071 - [MINOR] Capture & display more data from health checks, v2 14072 - [BUG] task.c: don't assing last_timer to node-less entries 14073 - [BUG] http stats: large outputs sometimes got some parts chopped off 14074 - [MINOR] backend: export some functions to recount servers 14075 - [MINOR] backend: uninline some LB functions 14076 - [MINOR] include time.h from freq_ctr.h as is uses "now". 14077 - [CLEANUP] backend: move LB algos to individual files 14078 - [MINOR] lb_map: reorder code in order to ease integration of new hash functions 14079 - [CLEANUP] proxy: move last lb-specific bits to their respective files 14080 - [MINOR] backend: separate declarations of LB algos from their lookup method 14081 - [MINOR] backend: reorganize the LB algorithm selection 14082 - [MEDIUM] backend: introduce the "static-rr" LB algorithm 14083 - [MINOR] report list of supported pollers with -vv 14084 - [DOC] log-health-checks is an option, not a directive 14085 - [MEDIUM] new option "independant-streams" to stop updating read timeout on writes 14086 - [BUG] stats: don't call buffer_shutw(), but ->shutw() instead 14087 - [MINOR] stats: strip CR and LF from the input command line 14088 - [BUG] don't refresh timeouts late after detected activity 14089 - [MINOR] stats_dump_errors_to_buffer: use buffer_feed_chunk() 14090 - [MINOR] stats_dump_sess_to_buffer: use buffer_feed_chunk() 14091 - [MINOR] stats: make stats_dump_raw_to_buffer() use buffer_feed_chunk 14092 - [MEDIUM] stats: don't use s->ana_state anymore 14093 - [MINOR] remove now obsolete ana_state from the session struct 14094 - [MEDIUM] stats: make HTTP stats use an I/O handler 14095 - [MEDIUM] stream_int: adjust WAIT_ROOM handling 14096 - [BUG] config: look for ID conflicts in all sockets, not only last ones. 14097 - [MINOR] config: reference file and line with any listener/proxy/server declaration 14098 - [MINOR] config: report places of duplicate names or IDs 14099 - [MINOR] config: add pointer to file name in block/redirect/use_backend/monitor rules 14100 - [MINOR] tools: add a new get_next_id() function 14101 - [MEDIUM] config: automatically find unused IDs for proxies, servers and listeners 14102 - [OPTIM] counters: move some max numbers to the counters struct 14103 - [BUG] counters: fix segfault on missing counters for a listener 14104 - [MEDIUM] backend: implement consistent hashing variation 14105 - [MINOR] acl: add fe_conn, be_conn, queue, avg_queue 14106 - [MINOR] stats: use 'clear counters all' to clear all values 14107 - [MEDIUM] add access restrictions to the stats socket 14108 - [MINOR] buffers: add buffer_feed2() and make buffer_feed() measure string length 14109 - [MINOR] proxy: provide function to retrieve backend/server pointers 14110 - [MINOR] add the "initial weight" to the server struct. 14111 - [MEDIUM] stats: add the "get weight" command to report a server's weight 14112 - [MEDIUM] stats: add the "set weight" command 14113 - [BUILD] add a 'make tags' target 14114 - [MINOR] stats: add support for numeric IDs in set weight/get weight 14115 - [MINOR] stats: use a dedicated state to output static data 14116 - [OPTIM] stats: check free space before trying to print 14117 141182009/09/24 : 1.4-dev3 14119 - [BUILD] compilation of haproxy-1.4-dev2 on FreeBSD 14120 - [MEDIUM] Collect & show information about last health check, v3 14121 - [MINOR] export the hostname variable so that all the code can access it 14122 - [MINOR] stats: add a new node-name setting 14123 - [MEDIUM] remove old experimental tcpsplice option 14124 - [BUILD] fix build for systems without SOL_TCP 14125 - [MEDIUM] move connection establishment from backend to the SI. 14126 - [MEDIUM] make the global stats socket part of a frontend 14127 - [MEDIUM] session: account per-listener connections 14128 - [MINOR] session: switch to established state if no connect function 14129 - [MEDIUM] make the unix stats sockets use the generic session handler 14130 - [CLEANUP] unix: remove uxst_process_session() 14131 - [CLEANUP] move remaining stats sockets code to dumpstats 14132 - [MINOR] move the initial task's nice value to the listener 14133 - [MINOR] cleanup set_session_backend by using pre-computed analysers 14134 - [MINOR] set s->srv_error according to the analysers 14135 - [MEDIUM] set rep->analysers from fe and be analysers 14136 - [MEDIUM] replace BUFSIZE with buf->size in computations 14137 - [MEDIUM] make it possible to change the buffer size in the configuration 14138 - [MEDIUM] report error on buffer writes larger than buffer size 14139 - [MEDIUM] stream_interface: add and use ->update function to resync 14140 - [CLEANUP] remove ifdef MSG_NOSIGNAL and define it instead 14141 - [MEDIUM] remove TCP_CORK and make use of MSG_MORE instead 14142 - [BUG] tarpit did not work anymore 14143 - [MINOR] acl: add support for hdr_ip to match IP addresses in headers 14144 - [MAJOR] buffers: fix misuse of the BF_SHUTW_NOW flag 14145 - [MINOR] buffers: provide more functions to handle buffer data 14146 - [MEDIUM] buffers: provide new buffer_feed*() function 14147 - [MINOR] buffers: add peekchar and peekline functions for stream interfaces 14148 - [MINOR] buffers: provide buffer_si_putchar() to send a char from a stream interface 14149 - [BUG] buffer_forward() would not correctly consider data already scheduled 14150 - [MINOR] buffers: add buffer_cut_tail() to cut only unsent data 14151 - [MEDIUM] stream_interface: make use of buffer_cut_tail() to report errors 14152 - [MAJOR] http: add support for HTTP 1xx informational responses 14153 - [MINOR] buffers: inline buffer_si_putchar() 14154 - [MAJOR] buffers: split BF_WRITE_ENA into BF_AUTO_CONNECT and BF_AUTO_CLOSE 14155 - [MAJOR] buffers: fix the BF_EMPTY flag's meaning 14156 - [BUG] stream_interface: SI_ST_CLO must have buffers SHUT 14157 - [MINOR] stream_sock: don't set SI_FL_WAIT_DATA if BF_SHUTW_NOW is set 14158 - [MEDIUM] add support for infinite forwarding 14159 - [BUILD] stream_interface: fix conflicting declaration 14160 - [BUG] buffers: buffer_forward() must not always clear BF_OUT_EMPTY 14161 - [BUG] variable buffer size ignored at initialization time 14162 - [MINOR] ensure that buffer_feed() and buffer_skip() set BF_*_PARTIAL 14163 - [BUG] fix buffer_skip() and buffer_si_getline() to correctly handle wrap-arounds 14164 - [MINOR] stream_interface: add SI_FL_DONT_WAKE flag 14165 - [MINOR] stream_interface: add iohandler callback 14166 - [MINOR] stream_interface: add functions to support running as internal/external tasks 14167 - [MEDIUM] session: call iohandler for embedded tasks (applets) 14168 - [MINOR] add a ->private member to the stream_interface 14169 - [MEDIUM] stats: prepare the connection for closing before dumping 14170 - [MEDIUM] stats: replace the stats socket analyser with an SI applet 14171 141722009/08/09 : 1.4-dev2 14173 - [BUG] task: fix possible crash when some timeouts are not configured 14174 - [BUG] log: option tcplog would log to global if no logger was defined 14175 141762009/07/29 : 1.4-dev1 14177 - [MINOR] acl: add support for matching of RDP cookies 14178 - [MEDIUM] add support for RDP cookie load-balancing 14179 - [MEDIUM] add support for RDP cookie persistence 14180 - [MINOR] add a new CLF log format 14181 - [MINOR] startup: don't imply -q with -D 14182 - [BUG] ensure that we correctly re-start old process in case of error 14183 - [MEDIUM] add support for binding to source port ranges during connect 14184 - [MINOR] config: track "no option"/"option" changes 14185 - [MINOR] config: support resetting options do default values 14186 - [MEDIUM] implement option tcp-smart-accept at the frontend 14187 - [MEDIUM] stream_sock: implement tcp-cork for use during shutdowns on Linux 14188 - [MEDIUM] implement tcp-smart-connect option at the backend 14189 - [MEDIUM] add support for TCP MSS adjustment for listeners 14190 - [MEDIUM] support setting a server weight to zero 14191 - [MINOR] make DEFAULT_MAXCONN user-configurable at build time 14192 - [MAJOR] session: don't clear buffer status flags anymore 14193 - [MAJOR] session: only check for timeouts when they have just occurred. 14194 - [MAJOR] session: simplify buffer error handling 14195 - [MEDIUM] config: split parser and checker in two functions 14196 - [MEDIUM] config: support loading multiple configuration files 14197 - [MEDIUM] stream_sock: don't close prematurely when nolinger is set 14198 - [MEDIUM] session: rework buffer analysis to permit permanent analysers 14199 - [MEDIUM] splice: set the capability on each stream_interface 14200 - [BUG] http: redirect rules were processed too early 14201 - [CLEANUP] remove unused DEBUG_PARSE_NO_SPEEDUP define 14202 - [MEDIUM] http: split request waiter from request processor 14203 - [MEDIUM] session: tell analysers what bit they were called for 14204 - [MAJOR] http: complete splitting of the remaining stages 14205 - [MINOR] report in the proxies the requirements for ACLs 14206 - [MINOR] http: rely on proxy->acl_requires to allocate hdr_idx 14207 - [MINOR] acl: add HTTP protocol detection (req_proto_http) 14208 - [MINOR] prepare callers of session_set_backend to handle errors 14209 - [BUG] default ACLs did not properly set the ->requires flag 14210 - [MEDIUM] allow a TCP frontend to switch to an HTTP backend 14211 - [MINOR] ensure we can jump from swiching rules to http without data 14212 - [MINOR] http: take http request timeout from the backend 14213 - [MINOR] allow TCP inspection rules to make use of HTTP ACLs 14214 - [BUILD] report commit date and not author's date as build date 14215 - [MINOR] acl: don't complain anymore when using L7 acls in TCP 14216 - [BUG] stream_sock: always shutdown(SHUT_WR) before closing 14217 - [BUG] stream_sock: don't stop reading when the poller reports an error 14218 - [BUG] config: tcp-request content only accepts "if" or "unless" 14219 - [BUG] task: fix possible timer drift after update 14220 - [MINOR] apply tcp-smart-connect option for the checks too 14221 - [MINOR] stats: better displaying in MSIE 14222 - [MINOR] config: improve error reporting in global section 14223 - [MINOR] config: improve error reporting in listen sections 14224 - [MINOR] config: the "capture" keyword is not allowed in backends 14225 - [MINOR] config: improve error reporting when checking configuration 14226 - [BUILD] fix a minor build warning on AIX 14227 - [BUILD] use "git cmd" instead of "git-cmd" 14228 - [CLEANUP] report 2009 not 2008 in the copyright banner. 14229 - [MINOR] print usage on the stats sockets upon invalid commands 14230 - [MINOR] acl: detect and report potential mistakes in ACLs 14231 - [BUILD] fix incorrect printf arg count with tcp_splice 14232 - [BUG] fix random pauses on last segment of a series 14233 - [BUILD] add support for build under Cygwin 14234 142352009/06/09 : 1.4-dev0 14236 - exact copy of 1.3.18 14237 142382009/05/10 : 1.3.18 14239 - [MEDIUM] add support for "balance hdr(name)" 14240 - [CLEANUP] give a little bit more information in error message 14241 - [MINOR] add X-Original-To: header 14242 - [BUG] x-original-to: fix missing initialization to default value 14243 - [BUILD] spec file: fix broken pipe during rpmbuild and add man file 14244 - [MINOR] improve reporting of misplaced acl/reqxxx rules 14245 - [MEDIUM] http: add options to ignore invalid header names 14246 - [MEDIUM] http: capture invalid requests/responses even if accepted 14247 - [BUILD] add format(printf) to printf-like functions 14248 - [MINOR] fix several printf formats and missing arguments 14249 - [BUG] stats: total and lbtot are unsigned 14250 - [MINOR] fix a few remaining printf-like formats on 64-bit platforms 14251 - [CLEANUP] remove unused make option from haproxy.spec 14252 - [BUILD] make it possible to pass alternative arch at build time 14253 - [MINOR] switch all stat counters to 64-bit 14254 - [MEDIUM] ensure we don't recursively call pool_gc2() 14255 - [CRITICAL] uninitialized response field can sometimes cause crashes 14256 - [BUG] fix wrong pointer arithmetics in HTTP message captures 14257 - [MINOR] rhel init script : support the reload operation 14258 - [MINOR] add basic signal handling functions 14259 - [BUILD] add signal.o to all makefiles 14260 - [MEDIUM] call signal_process_queue from run_poll_loop 14261 - [MEDIUM] pollers: don't wait if a signal is pending 14262 - [MEDIUM] convert all signals to asynchronous signals 14263 - [BUG] O(1) pollers should check their FD before closing it 14264 - [MINOR] don't close stdio fds twice 14265 - [MINOR] add options dontlog-normal and log-separate-errors 14266 - [DOC] minor fixes and rearrangements 14267 - [BUG] fix parser crash on unconditional tcp content rules 14268 - [DOC] rearrange the configuration manual and add a summary 14269 - [MINOR] standard: provide a new 'my_strndup' function 14270 - [MINOR] implement per-logger log level limitation 14271 - [MINOR] compute the max of sessions/s on fe/be/srv 14272 - [MINOR] stats: report max sessions/s and limit in CSV export 14273 - [MINOR] stats: report max sessions/s and limit in HTML stats 14274 - [MINOR] stats/html: use the arial font before helvetica 14275 142762009/03/29 : 1.3.17 14277 - Update specfile to build for v2.6 kernel. 14278 - [BUG] reset the stream_interface connect timeout upon connect or error 14279 - [BUG] reject unix accepts when connection limit is reached 14280 - [MINOR] show sess: report number of calls to each task 14281 - [BUG] don't call epoll_ctl() on closed sockets 14282 - [BUG] stream_sock: disable I/O on fds reporting an error 14283 - [MINOR] sepoll: don't count two events on the same FD. 14284 - [MINOR] show sess: report a lot more information about sessions 14285 - [BUG] stream_sock: check for shut{r,w} before refreshing some timeouts 14286 - [BUG] don't set an expiration date directly from now_ms 14287 - [MINOR] implement ulltoh() to write HTML-formatted numbers 14288 - [MINOR] stats/html: group digits by 3 to clarify numbers 14289 - [BUILD] remove haproxy-small.spec 14290 - [BUILD] makefile: remove unused references to linux24eold and EPOLL_CTL_WORKAROUND 14291 142922009/03/22 : 1.3.16 14293 - [BUILD] Fixed Makefile for linking pcre 14294 - [CONTRIB] selinux policy for haproxy 14295 - [MINOR] show errors: encode backslash as well as non-ascii characters 14296 - [MINOR] cfgparse: some cleanups in the consistency checks 14297 - [MINOR] cfgparse: set backends to "balance roundrobin" by default 14298 - [MINOR] tcp-inspect: permit the use of no-delay inspection 14299 - [MEDIUM] reverse internal proxy declaration order to match configuration 14300 - [CLEANUP] config: catch and report some possibly wrong rule ordering 14301 - [BUG] connect timeout is in the stream interface, not the buffer 14302 - [BUG] session: errors were not reported in termination flags in TCP mode 14303 - [MINOR] tcp_request: let the caller take care of errors and timeouts 14304 - [CLEANUP] http: remove some commented out obsolete code in process_response 14305 - [MINOR] update ebtree to version 4.1 14306 - [MEDIUM] scheduler: get rid of the 4 trees thanks and use ebtree v4.1 14307 - [BUG] sched: don't leave 3 lasts tasks unprocessed when niced tasks are present 14308 - [BUG] scheduler: fix improper handling of duplicates __task_queue() 14309 - [MINOR] sched: permit a task to stay up between calls 14310 - [MINOR] task: keep a task count and clean up task creators 14311 - [MINOR] stats: report number of tasks (active and running) 14312 - [BUG] server check intervals must not be null 14313 - [OPTIM] stream_sock: don't retry to read after a large read 14314 - [OPTIM] buffer: new BF_READ_DONTWAIT flag reduces EAGAIN rates 14315 - [MEDIUM] session: don't resync FSMs on non-interesting changes 14316 - [BUG] check for global.maxconn before doing accept() 14317 - [OPTIM] sepoll: do not re-check whole list upon accepts 14318 143192009/03/09 : 1.3.16-rc2 14320 - [BUG] stream_sock: write timeout must be updated when forwarding ! 14321 143222009/03/09 : 1.3.16-rc1 14323 - appsessions: cleanup DEBUG_HASH and initialize request_counter 14324 - [MINOR] acl: add new keyword "connslots" 14325 - [MINOR] cfgparse: fix off-by 2 in error message size 14326 - [BUILD] fix build with gcc 4.3 14327 - [BUILD] fix MANDIR default location to match documentation 14328 - [TESTS] add a debug patch to help trigger the stats bug 14329 - [BUG] Flush buffers also where there are exactly 0 bytes left 14330 - [MINOR] Allow to specify a domain for a cookie 14331 - [BUG/CLEANUP] cookiedomain -> cookie_domain rename + free(p->cookie_domain) 14332 - [MEDIUM] Fix memory freeing at exit 14333 - [MEDIUM] Fix memory freeing at exit, part 2 14334 - [BUG] Fix listen & more of 2 couples <ip>:<port> 14335 - [DOC] remove buggy comment for use_backend 14336 - [CRITICAL] fix server state tracking: it was O(n!) instead of O(n) 14337 - [MEDIUM] add support for URI hash depth and length limits 14338 - [MINOR] permit renaming of x-forwarded-for header 14339 - [BUILD] fix Makefile.bsd and Makefile.osx for stream_interface 14340 - [BUILD] Haproxy won't compile if DEBUG_FULL is defined 14341 - [MEDIUM] upgrade to ebtree v4.0 14342 - [DOC] update the README file with new build options 14343 - [MEDIUM] reduce risk of event starvation in ev_sepoll 14344 - [MEDIUM] detect streaming buffers and tag them as such 14345 - [MEDIUM] add support for conditional HTTP redirection 14346 - [BUILD] make install should depend on haproxy not "all" 14347 - [DEBUG] add a TRACE macro to facilitate runtime data extraction 14348 - [BUG] event pollers must not wait if a task exists in the run queue 14349 - [BUG] queue management: wake oldest request in queues 14350 - [BUG] log: reported queue position was offed-by-one 14351 - [BUG] fix the dequeuing logic to ensure that all requests get served 14352 - [DOC] documentation for the "retries" parameter was missing. 14353 - [MEDIUM] implement a monotonic internal clock 14354 - [MEDIUM] further improve monotonic clock by check forward jumps 14355 - [OPTIM] add branch prediction hints in list manipulations 14356 - [MAJOR] replace ultree with ebtree in wait-queues 14357 - [BUG] we could segfault during exit while freeing uri_auths 14358 - [BUG] wqueue: perform proper timeout comparisons with wrapping values 14359 - [MINOR] introduce now_ms, the current date in milliseconds 14360 - [BUG] disable buffer read timeout when reading stats 14361 - [MEDIUM] rework the wait queue mechanism 14362 - [BUILD] change declaration of base64tab to fix build with Intel C++ 14363 - [OPTIM] shrink wake_expired_tasks() by using task_wakeup() 14364 - [MAJOR] use an ebtree instead of a list for the run queue 14365 - [MEDIUM] introduce task->nice and boot access to statistics 14366 - [OPTIM] task_queue: assume most consecutive timers are equal 14367 - [BUILD] silent a warning in unlikely() with gcc 4.x 14368 - [MAJOR] convert all expiration timers from timeval to ticks 14369 - [BUG] use_backend would not correctly consider "unless" 14370 - [TESTS] added test-acl.cfg to test some ACL combinations 14371 - [MEDIUM] add support for configuration keyword registration 14372 - [MEDIUM] modularize the global "stats" keyword configuration parser 14373 - [MINOR] cfgparse: add support for warnings in external functions 14374 - [MEDIUM] modularize the "timeout" keyword configuration parser 14375 - [MAJOR] implement tcp request content inspection 14376 - [MINOR] acl: add a new parsing function: parse_dotted_ver 14377 - [MINOR] acl: add req_ssl_ver in TCP, to match an SSL version 14378 - [CLEANUP] remove unused include/types/client.h 14379 - [CLEANUP] remove many #include <types/xxx> from C files 14380 - [CLEANUP] remove dependency on obsolete INTBITS macro 14381 - [DOC] document the new "tcp-request" keyword and associated ACLs 14382 - [MINOR] acl: add REQ_CONTENT to the list of default acls 14383 - [MEDIUM] acl: permit fetch() functions to set the result themselves 14384 - [MEDIUM] acl: get rid of dummy values in always_true/always_false 14385 - [MINOR] acl: add the "wait_end" acl verb 14386 - [MEDIUM] acl: enforce ACL type checking 14387 - [MEDIUM] acl: set types on all currently known ACL verbs 14388 - [MEDIUM] acl: when possible, report the name and requirements of ACLs in warnings 14389 - [CLEANUP] remove 65 useless NULL checks before free 14390 - [MEDIUM] memory: update pool_free2() to support NULL pointers 14391 - [MEDIUM] buffers: ensure buffer_shut* are properly called upon shutdowns 14392 - [MEDIUM] process_srv: rely on buffer flags for client shutdown 14393 - [MEDIUM] process_srv: don't rely at all on client state 14394 - [MEDIUM] process_cli: don't rely at all on server state 14395 - [BUG] fix segfault with url_param + check_post 14396 - [BUG] server timeout was not considered in some circumstances 14397 - [BUG] client timeout incorrectly rearmed while waiting for server 14398 - [MAJOR] kill CL_STINSPECT and CL_STHEADERS (step 1) 14399 - [MAJOR] get rid of SV_STANALYZE (step 2) 14400 - [MEDIUM] simplify and centralize request timeout cancellation and request forwarding 14401 - [MAJOR] completely separate HTTP and TCP states on the request path 14402 - [BUG] fix recently introduced loop when client closes early 14403 - [MAJOR] get rid of the SV_STHEADERS state 14404 - [MAJOR] better separation of response processing and server state 14405 - [MAJOR] clearly separate HTTP response processing from TCP server state 14406 - [MEDIUM] remove unused references to {CL|SV}_STSHUT* 14407 - [MINOR] term_trace: add better instrumentations to trace the code 14408 - [BUG] ev_sepoll: closed file descriptors could persist in the spec list 14409 - [BUG] process_response must not enable the read FD 14410 - [BUG] buffers: remove BF_MAY_CONNECT and fix forwarding issue 14411 - [BUG] process_response: do not touch srv_state 14412 - [BUG] maintain_proxies must not disable backends 14413 - [CLEANUP] get rid of BF_SHUT*_PENDING 14414 - [MEDIUM] buffers: add BF_EMPTY and BF_FULL to remove dependency on req/rep->l 14415 - [MAJOR] process_session: rely only on buffer flags 14416 - [MEDIUM] use buffer->wex instead of buffer->cex for connect timeout 14417 - [MEDIUM] centralize buffer timeout checks at the top of process_session 14418 - [MINOR] ensure the termination flags are set by process_xxx 14419 - [MEDIUM] session: move the analysis bit field to the buffer 14420 - [OPTIM] process_cli/process_srv: reduce the number of tests 14421 - [BUG] regparm is broken on gcc < 3 14422 - [BUILD] fix warning in proto_tcp.c with gcc >= 4 14423 - [MEDIUM] merge inspect_exp and txn->exp into request buffer 14424 - [BUG] process_cli/process_srv: don't call shutdown when already done 14425 - [BUG] process_request: HTTP body analysis must return zero if missing data 14426 - [TESTS] test-fsm: 22 regression tests for state machines 14427 - [BUG] Fix empty X-Forwarded-For header name when set in defaults section 14428 - [BUG] fix harmless but wrong fd insertion sequence 14429 - [MEDIUM] make it possible for analysers to follow the whole session 14430 - [MAJOR] rework of the server FSM 14431 - [OPTIM] remove useless fd_set(read) upon shutdown(write) 14432 - [MEDIUM] massive cleanup of process_srv() 14433 - [MEDIUM] second level of code cleanup for process_srv_data 14434 - [MEDIUM] third cleanup and optimization of process_srv_data() 14435 - [MEDIUM] process_srv_data: ensure that we always correctly re-arm timeouts 14436 - [MEDIUM] stream_sock_process_data moved to stream_sock.c 14437 - [MAJOR] make the client side use stream_sock_process_data() 14438 - [MEDIUM] split stream_sock_process_data 14439 - [OPTIM] stream_sock_read must check for null-reads more often 14440 - [MINOR] only call flow analysers when their read side is connected. 14441 - [MEDIUM] reintroduce BF_HIJACK with produce_content 14442 - [MINOR] re-arrange buffer flags and rename some of them 14443 - [MINOR] do not check for BF_SHUTR when computing write timeout 14444 - [OPTIM] ev_sepoll: detect newly created FDs and check them once 14445 - [OPTIM] reduce the number of calls to task_wakeup() 14446 - [OPTIM] force inlining of large functions with gcc >= 3 14447 - [MEDIUM] indicate a reason for a task wakeup 14448 - [MINOR] change type of fdtab[]->owner to void* 14449 - [MAJOR] make stream sockets aware of the stream interface 14450 - [MEDIUM] stream interface: add the ->shutw method as well as in and out buffers 14451 - [MEDIUM] buffers: add BF_READ_ATTACHED and BF_ANA_TIMEOUT 14452 - [MEDIUM] process_session: make use of the new buffer flags 14453 - [CLEANUP] process_session: move debug outputs out of the critical loop 14454 - [MEDIUM] move QUEUE and TAR timers to stream interfaces 14455 - [OPTIM] add compiler hints in tick_is_expired() 14456 - [MINOR] add buffer_check_timeouts() to check what timeouts have fired. 14457 - [MEDIUM] use buffer_check_timeouts instead of stream_sock_check_timeouts() 14458 - [MINOR] add an expiration flag to the stream_sock_interface 14459 - [MAJOR] migrate the connection logic to stream interface 14460 - [MAJOR] add a connection error state to the stream_interface 14461 - [MEDIUM] add the SN_CURR_SESS flag to the session to track open sessions 14462 - [MEDIUM] continue layering cleanups. 14463 - [MEDIUM] stream_interface: added a DISconnected state between CON/EST and CLO 14464 - [MEDIUM] remove stream_sock_update_data() 14465 - [MINOR] maintain a global session list in order to ease debugging 14466 - [BUG] shutw must imply close during a connect 14467 - [MEDIUM] process shutw during connection attempt 14468 - [MEDIUM] make the stream interface control the SHUT{R,W} bits 14469 - [MAJOR] complete layer4/7 separation 14470 - [CLEANUP] move the session-related functions to session.c 14471 - [MINOR] call session->do_log() for logging 14472 - [MINOR] replace the ambiguous client_return function by stream_int_return 14473 - [MINOR] replace client_retnclose() with stream_int_retnclose() 14474 - [MINOR] replace srv_close_with_err() with http_server_error() 14475 - [MEDIUM] make the http server error function a pointer in the session 14476 - [CLEANUP] session.c: removed some migration left-overs in sess_establish() 14477 - [MINOR] stream_sock_data_finish() should not expose fd 14478 - [MEDIUM] extract TCP request processing from HTTP 14479 - [MEDIUM] extract the HTTP tarpit code from process_request(). 14480 - [MEDIUM] move the HTTP request body analyser out of process_request(). 14481 - [MEDIUM] rename process_request to http_process_request 14482 - [BUG] fix forgotten server session counter 14483 - [MINOR] declare process_session in session.h, not proto_http.h 14484 - [MEDIUM] first pass of lifting to proto_uxst.c:uxst_event_accept() 14485 - [MINOR] add an analyser code for UNIX stats request 14486 - [MINOR] pre-set analyser flags on the listener at registration time 14487 - [BUG] do not forward close from cons to prod with analysers 14488 - [MEDIUM] ensure that sock->shutw() also closes read for init states 14489 - [MINOR] add an analyser state in struct session 14490 - [MAJOR] make unix sockets work again with stats 14491 - [MEDIUM] remove cli_fd, srv_fd, cli_state and srv_state from the session 14492 - [MINOR] move the listener reference from fd to session 14493 - [MEDIUM] reference the current hijack function in the buffer itself 14494 - [MINOR] slightly rebalance stats_dump_{raw,http} 14495 - [MINOR] add a new back-reference type : struct bref 14496 - [MINOR] add back-references to sessions for later use by a dumper. 14497 - [MEDIUM] add support for "show sess" in unix stats socket 14498 - [BUG] do not release the connection slot during a retry 14499 - [BUG] dynamic connection throttling could return a max of zero conns 14500 - [BUG] do not try to pause backends during reload 14501 - [BUG] ensure that listeners from disabled proxies are correctly unbound. 14502 - [BUG] acl-related keywords are not allowed in defaults sections 14503 - [BUG] cookie capture is declared in the frontend but checked on the backend 14504 - [BUG] critical errors should be reported even in daemon mode 14505 - [MINOR] redirect: add support for the "drop-query" option 14506 - [MINOR] redirect: add support for "set-cookie" and "clear-cookie" 14507 - [MINOR] redirect: in prefix mode a "/" means not to change the URI 14508 - [BUG] do not dequeue requests on a dead server 14509 - [BUG] do not dequeue the backend's pending connections on a dead server 14510 - [MINOR] stats: indicate if a task is running in "show sess" 14511 - [BUG] check timeout must not be changed if timeout.check is not set 14512 - [BUG] "option transparent" is for backend, not frontend ! 14513 - [MINOR] transfer errors were not reported anymore in data phase 14514 - [MEDIUM] add a send limit to a buffer 14515 - [MEDIUM] don't report buffer timeout when there is I/O activity 14516 - [MEDIUM] indicate when we don't care about read timeout 14517 - [MINOR] add flags to indicate when a stream interface is waiting for space/data 14518 - [MEDIUM] enable inter-stream_interface wakeup calls 14519 - [MAJOR] implement autonomous inter-socket forwarding 14520 - [MINOR] add the splice_len member to the buffer struct in preparation of splice support 14521 - [MEDIUM] stream_sock: factor out the return path in case of no-writes 14522 - [MEDIUM] i/o: rework ->to_forward and ->send_max 14523 - [OPTIM] stream_sock: do not ask for polling on EAGAIN if we have read 14524 - [OPTIM] buffer: replace rlim by max_len 14525 - [OPTIM] stream_sock: factor out the buffer full handling out of the loop 14526 - [CLEANUP] replace a few occurrences of (flags & X) && !(flags & Y) 14527 - [CLEANUP] stream_sock: move the write-nothing condition out of the loop 14528 - [MEDIUM] split stream_sock_write() into callback and core functions 14529 - [MEDIUM] stream_sock_read: call ->chk_snd whenever there are data pending 14530 - [MINOR] stream_sock: fix a few wrong empty calculations 14531 - [MEDIUM] stream_sock: try to send pending data on chk_snd() 14532 - [MINOR] global.maxpipes: add the ability to reserve file descriptors for pipes 14533 - [MEDIUM] splice: add configuration options and set global.maxpipes 14534 - [MINOR] introduce structures required to support Linux kernel splicing 14535 - [MEDIUM] add definitions for Linux kernel splicing 14536 - [MAJOR] complete support for linux 2.6 kernel splicing 14537 - [BUG] reserve some pipes for backends with splice enabled 14538 - [MEDIUM] splice: add hints to support older buggy kernels 14539 - [MEDIUM] introduce pipe pools 14540 - [MEDIUM] splice: make use of pipe pools 14541 - [STATS] report pipe usage in the statistics 14542 - [OPTIM] make global.maxpipes default to global.maxconn/4 when not specified 14543 - [BUILD] fix snapshot date extraction with negative timezones 14544 - [MEDIUM] move global tuning options to the global structure 14545 - [MEDIUM] splice: add the global "nosplice" option 14546 - [BUILD] add USE_LINUX_SPLICE to enable LINUX_SPLICE on linux 2.6 14547 - [BUG] we must not exit if protocol binding only returns a warning 14548 - [MINOR] add support for bind interface name 14549 - [BUG] inform the user when root is expected but not set 14550 - [MEDIUM] add support for source interface binding 14551 - [MEDIUM] add support for source interface binding at the server level 14552 - [MEDIUM] implement bind-process to limit service presence by process 14553 - [DOC] document maxpipes, nosplice, option splice-{auto,request,response} 14554 - [DOC] filled the logging section of the configuration manual 14555 - [DOC] document HTTP status codes 14556 - [DOC] document a few missing info about errorfile 14557 - [BUG] fix random memory corruption using "show sess" 14558 - [BUG] fix unix socket processing of interrupted output 14559 - [DOC] add diagrams of queuing and future ACL design 14560 - [BUILD] proto_http did not build on gcc-2.95 14561 - [BUG] the "source" keyword must first clear optional settings 14562 - [BUG] global.tune.maxaccept must be limited even in mono-process mode 14563 - [MINOR] ensure that http_msg_analyzer updates pointer to invalid char 14564 - [MEDIUM] store a complete dump of request and response errors in proxies 14565 - [MEDIUM] implement error dump on unix socket with "show errors" 14566 - [DOC] document "show errors" 14567 - [MINOR] errors dump must use user-visible date, not internal date. 14568 - [MINOR] time: add __usec_to_1024th to convert usecs to 1024th of second 14569 - [MINOR] add curr_sec_ms and curr_sec_ms_scaled for current second. 14570 - [MEDIUM] measure and report session rate on frontend, backends and servers 14571 - [BUG] the "connslots" keyword was matched as "connlots" 14572 - [MINOR] acl: add 2 new verbs: fe_sess_rate and be_sess_rate 14573 - [MEDIUM] implement "rate-limit sessions" for the frontend 14574 - [BUG] interface binding: length must include the trailing zero 14575 - [BUG] typo in timeout error reporting : report *res and not *err 14576 - [OPTIM] maintain_proxies: only wake up when the frontend will be ready 14577 - [OPTIM] rate-limit: cleaner behaviour on low rates and reduce consumption 14578 - [BUG] switch server-side stream interface to close in case of abort 14579 - [CLEANUP] remove last references to term_trace 14580 - [OPTIM] freq_ctr: do not rotate the counters when reading 14581 - [BUG] disable any analysers for monitoring requests 14582 - [BUG] rate-limit in defaults section was ignored 14583 - [BUG] task: fix handling of duplicate keys 14584 - [OPTIM] task: don't unlink a task from a wait queue when waking it up 14585 - [OPTIM] displace tasks in the wait queue only if absolutely needed 14586 - [MEDIUM] minor update to the task api: let the scheduler queue itself 14587 - [BUG] event_accept() must always wake the task up, even in health mode 14588 - [CLEANUP] task: distinguish between clock ticks and timers 14589 - [OPTIM] task: reduce the number of calls to task_queue() 14590 - [OPTIM] do not re-check req buffer when only response has changed 14591 - [CLEANUP] don't enable kernel splicing when socket is closed 14592 - [CLEANUP] buffer_flush() was misleading, rename it as buffer_erase 14593 - [MINOR] buffers: implement buffer_flush() 14594 - [MEDIUM] rearrange forwarding condition to enable splice during analysis 14595 - [BUILD] build fixes for Solaris 14596 - [BUILD] proto_http did not build on gcc-2.95 (again) 14597 - [CONTRIB] halog: fast log parser for haproxy 14598 - [CONTRIB] halog: faster fgets() and add support for percentile reporting 14599 146002008/04/19 : 1.3.15 14601 - [BUILD] Added support for 'make install' 14602 - [BUILD] Added 'install-man' make target for installing the man page 14603 - [BUILD] Added 'install-bin' make target 14604 - [BUILD] Added 'install-doc' make target 14605 - [BUILD] Removed "/" after '$(DESTDIR)' in install targets 14606 - [BUILD] Changed 'install' target to install the binaries first 14607 - [BUILD] Replace hardcoded 'LD = gcc' with 'LD = $(CC)' 14608 - [MEDIUM]: Inversion for options 14609 - [MEDIUM]: Count retries and redispatches also for servers, fix redistribute_pending, extend logs, %d->%u cleanup 14610 - [BUG]: Restore clearing t->logs.bytes 14611 - [MEDIUM]: rework checks handling 14612 - [DOC] Update a "contrib" file with a hint about a scheme used for formathing subjects 14613 - [MEDIUM] Implement "track [<backend>/]<server>" 14614 - [MINOR] Implement persistent id for proxies and servers 14615 - [BUG] Don't increment server connections too much + fix retries 14616 - [MEDIUM]: Prevent redispatcher from selecting the same server, version #3 14617 - [MAJOR] proto_uxst rework -> SNMP support 14618 - [BUG] appsession lookup in URL does not work 14619 - [BUG] transparent proxy address was ignored in backend 14620 - [BUG] hot reconfiguration failed because of a wrong error check 14621 - [DOC] big update to the configuration manual 14622 - [DOC] large update to the configuration manual 14623 - [DOC] document more options 14624 - [BUILD] major rework of the GNU Makefile 14625 - [STATS] add support for "show info" on the unix socket 14626 - [DOC] document options forwardfor to logasap 14627 - [MINOR] add support for the "backlog" parameter 14628 - [OPTIM] introduce global parameter "tune.maxaccept" 14629 - [MEDIUM] introduce "timeout http-request" in frontends 14630 - [MINOR] tarpit timeout is also allowed in backends 14631 - [BUG] increment server connections for each connect() 14632 - [MEDIUM] add a turn-around state of one second after a connection failure 14633 - [BUG] fix typo in redispatched connection 14634 - [DOC] document options nolinger to ssl-hello-chk 14635 - [DOC] added documentation for "option tcplog" to "use_backend" 14636 - [BUG] connect_server: server might not exist when sending error report 14637 - [MEDIUM] support fully transparent proxy on Linux (USE_LINUX_TPROXY) 14638 - [MEDIUM] add non-local bind to connect() on Linux 14639 - [MINOR] add transparent proxy support for balabit's Tproxy v4 14640 - [BUG] use backend's source and not server's source with tproxy 14641 - [BUG] fix overlapping server flags 14642 - [MEDIUM] fix server health checks source address selection 14643 - [BUG] build failed on CONFIG_HAP_LINUX_TPROXY without CONFIG_HAP_CTTPROXY 14644 - [DOC] added "server", "source" and "stats" keywords 14645 - [DOC] all server parameters have been documented 14646 - [DOC] document all req* and rsp* keywords. 14647 - [DOC] added documentation about HTTP header manipulations 14648 - [BUG] log response byte count, not request 14649 - [BUILD] code did not build in full debug mode 14650 - [BUG] fix truncated responses with sepoll 14651 - [MINOR] use s->frt_addr as the server's address in transparent proxy 14652 - [MINOR] fix configuration hint about timeouts 14653 - [DOC] minor cleanup of the doc and notice to contributors 14654 - [MINOR] report correct section type for unknown keywords. 14655 - [BUILD] update MacOS Makefile to build on newer versions 14656 - [DOC] fix erroneous "useallbackups" option in the doc 14657 - [DOC] applied small fixes from early readers 14658 - [MINOR] add configuration support for "redir" server keyword 14659 - [MEDIUM] completely implement the server redirection method 14660 - [TESTS] add a test case for the server redirection mechanism 14661 - [DOC] add a configuration entry for "server ... redir <prefix>" 14662 - [BUILD] backend.c and checks.c did not build without tproxy ! 14663 - Revert "[BUILD] backend.c and checks.c did not build without tproxy !" 14664 - [BUILD] backend.c and checks.c did not build without tproxy ! 14665 - [OPTIM] used unsigned ints for HTTP state and message offsets 14666 - [OPTIM] GCC4's builtin_expect() is suboptimal 14667 - [BUG] failed conns were sometimes incremented in the frontend! 14668 - [BUG] timeout.check was not pre-set to eternity 14669 - [TESTS] add test-pollers.cfg to easily report pollers in use 14670 - [BUG] do not apply timeout.connect in checks if unset 14671 - [BUILD] ensure that makefile understands USE_DLMALLOC=1 14672 - [MINOR] silent gcc for a wrong warning 14673 - [CLEANUP] update .gitignore to ignore more temporary files 14674 - [CLEANUP] report dlmalloc's source path only if explictly specified 14675 - [BUG] str2sun could leak a small buffer in case of error during parsing 14676 - [BUG] option allbackups was not working anymore in roundrobin mode 14677 - [MAJOR] implementation of the "leastconn" load balancing algorithm 14678 - [BUILD] ensure that users don't build without setting the target anymore. 14679 - [DOC] document the leastconn LB algo 14680 - [MEDIUM] fix stats socket limitation to 16 kB 14681 - [DOC] fix unescaped space in httpchk example. 14682 - [BUG] fix double-decrement of server connections 14683 - [TESTS] add a test case for port mapping 14684 - [TESTS] add a benchmark for integer hashing 14685 - [TESTS] add new methods in ip-hash test file 14686 - [MAJOR] implement parameter hashing for POST requests 14687 146882007/12/06 : 1.3.14 14689 - New option http_proxy (Alexandre Cassen) 14690 - add support for "maxqueue" to limit server queue overload (Elijah Epifanov) 14691 - Check for duplicated conflicting proxies (Krzysztof Oledzki) 14692 - stats: report server and backend cumulated downtime (Krzysztof Oledzki) 14693 - use backends only with use_backend directive (Krzysztof Oledzki) 14694 - Handle long lines properly (Krzysztof Oledzki) 14695 - Implement and use generic findproxy and relax duplicated proxy check (Krzysztof Oledzki) 14696 - continous statistics (Krzysztof Oledzki) 14697 - add support for logging via a UNIX socket (Robert Tsai) 14698 - fix error checking in strl2ic/strl2uic() 14699 - fix calls to localtime() 14700 - provide easier-to-use ultoa_* functions 14701 - provide easy-to-use limit_r and LIM2A* macros 14702 - add a simple test for the status page 14703 - move error codes to common/errors.h 14704 - silent warning about LIST_* being redefined on OpenBSD 14705 - add socket address length to the protocols 14706 - group PR_O_BALANCE_* bits into a checkable value 14707 - externalize the "balance" option parser to backend.c 14708 - introduce the "url_param" balance method 14709 - make default_backend work in TCP mode too 14710 - disable warning about localtime_r on Solaris 14711 - adjust error messages about conflicting proxies 14712 - avoid calling some layer7 functions if not needed 14713 - simplify error path in event_accept() 14714 - add an options field to the listeners 14715 - added a new state to listeners 14716 - unbind_listener() must use fd_delete() and not close() 14717 - add a generic unbind_listener() primitive 14718 - add a generic delete_listener() primitive 14719 - add a generic unbind_all_listeners() primitive 14720 - create proto_tcp and move initialization of proxy listeners 14721 - stats: report numerical process ID, proxy ID and server ID 14722 - relative_pid was not initialized 14723 - missing header names in raw stats output 14724 - fix missing parenthesis in check_response_for_cacheability 14725 - small optimization on session_process_counters() 14726 - merge ebtree version 3.0 14727 - make ebtree headers multiple-include compatible 14728 - ebtree: include config.h for REGPRM* 14729 - differentiate between generic LB params and map-specific ones 14730 - add a weight divisor to the struct proxy 14731 - implement the Fast Weighted Round Robin (FWRR) algo 14732 - include filltab25.c to experiment on FWRR for dynamic weights 14733 - merge test-fwrr.cfg to validate dynamic weights 14734 - move the load balancing algorithm to be->lbprm.algo 14735 - change server check result to a bit field 14736 - implement "http-check disable-on-404" for graceful shutdown 14737 - secure the calling conditions of ->set_server_status_{up,down} 14738 - report disabled servers as "NOLB" when they are still UP 14739 - document the "http-check disable-on-404" option 14740 - http-check disable-on-404 is not limited to HTTP mode 14741 - add a test file for disable-on-404 14742 - use distinct bits per load-balancing algorithm type 14743 - implement the slowstart parameter for servers 14744 - document the server's slowstart parameter 14745 - stats: report the server warm up status in a "throttle" column 14746 - fix 2 minor issues on AIX 14747 - add the "nbsrv" ACL verb 14748 - add the "fail" condition to monitor requests 14749 - remove a warning from gcc due to htons() in standard.c 14750 - fwrr: ensure that we never overflow in placements 14751 - store the build options to report with -vv 14752 - fix the status return of the init script (R.I. Pienaar) 14753 - stats: real time monitoring script for unix socket (Prizee) 14754 - document "nbsrv" and "monitor fail" 14755 - restrict the set of allowed characters for identifiers 14756 - implement a time parsing function 14757 - add support for time units in the configuration 14758 - add a bit of documentation about timers 14759 - introduce separation between contimeout, and tarpit + queue 14760 - introduce the "timeout" keyword 14761 - grouped all timeouts in one structure 14762 - slowstart is in ms, not seconds 14763 - slowstart: ensure we don't start with a null weight 14764 - report the number of times each server was selected 14765 - fix build on AIX due to recent log changes 14766 - fix build on Solaris due to recent log changes 14767 147682007/10/18 : 1.3.13 14769 - replace the code under O'Reilly license (Arnaud Cornet) 14770 - add a small man page (Arnaud Cornet) 14771 - stats: report haproxy's version by default (Krzysztof Oledzki) 14772 - stats: count server retries and redispatches (Krzysztof Oledzki) 14773 - core: added easy support for Doug Lea's malloc (dlmalloc) 14774 - core: fade out memory usage when stopping proxies 14775 - core: moved the sockaddr pointer to the fdtab structure 14776 - core: add generic protocol support 14777 - core: implement client-side support for PF_UNIX sockets 14778 - stats: implement the CSV output 14779 - stats: add a link to the CSV export HTML page 14780 - stats: implement the statistics output on a unix socket 14781 - config: introduce the "stats" keyword in global section 14782 - build: centralize version and date into one file for each 14783 - tests: added a new hash algorithm 14784 147852007/10/18 : 1.3.12.3 14786 - add the "nolinger" option to disable data lingering (Alexandre Cassen) 14787 - fix double-free during clean exit (Krzysztof Oledzki) 14788 - prevent the system from sending an RST when closing health-checks 14789 (Krzysztof Oledzki) 14790 - do not add a cache-control header when on non-cacheable responses 14791 (Krzysztof Oledzki) 14792 - spread health checks even more (Krzysztof Oledzki) 14793 - stats: scope "." must match the backend and not the frontend 14794 - fixed call to chroot() during startup 14795 - fix wrong timeout computation in event_accept() 14796 - remove condition for exit() under fork() failure 14797 147982007/09/20 : 1.3.12.2 14799 - fix configuration sanity checks for TCP listeners 14800 - set the log socket receive window to zero bytes 14801 - pre-initialize timeouts to infinity, not zero 14802 - fix the SIGHUP message not to alert on server-less proxies 14803 - timeouts and retries could be ignored when switching backend 14804 - added a file to check that "retries" works. 14805 - O'Reilly has clarified its license 14806 148072007/09/05 : 1.3.12.1 14808 - spec I/O: fix allocations of spec entries for an FD 14809 - ensure we never overflow in chunk_printf() 14810 - improve behaviour with large number of servers per proxy 14811 - add support for "stats refresh <interval>" 14812 - stats page: added links for 'refresh' and 'hide down' 14813 - fix backend's weight in the stats page. 14814 - the "stats" keyword is not allowed in a pure frontend. 14815 - provide a test configuration file for stats and checks 14816 148172007/06/17 : 1.3.12 14818 - fix segfault at exit when using captures 14819 - bug: negation in ACL conds was not cleared between terms 14820 - errorfile: use a local file to feed error messages 14821 - acl: support '-i' to ignore case when matching 14822 - acl: smarter integer comparison with operators eq,lt,gt,le,ge 14823 - acl: support maching on 'path' component 14824 - acl: implement matching on header values 14825 - acl: distinguish between request and response headers 14826 - acl: permit to return any header when no name specified 14827 - acl: provide default ACLs 14828 - added the 'use_backend' keyword for full content-switching 14829 - acl: specify the direction during fetches 14830 - acl: provide the argument length for fetch functions 14831 - acl: provide a reference to the expr to fetch() 14832 - improve memory freeing upon exit 14833 - str2net() must not change the const char * 14834 - shut warnings 'is*' macros from ctype.h on solaris 14835 148362007/06/03 : 1.3.11.4 14837 - do not re-arm read timeout in SHUTR state ! 14838 - optimize I/O by detecting system starvation 14839 - the epoll FD must not be shared between processes 14840 - limit the number of events returned by *poll* 14841 148422007/05/14 : 1.3.11.3 14843 - pre-initialize timeouts with tv_eternity during parsing 14844 148452007/05/14 : 1.3.11.2 14846 - fixed broken health-checks since switch to timeval 14847 148482007/05/14 : 1.3.11.1 14849 - fixed ev_kqueue which was forgotten during the switch to timeval 14850 - allowed null timeouts for past events in select 14851 148522007/05/14 : 1.3.11 14853 - fixed ev_sepoll again by rewriting the state machine 14854 - switched all timeouts to timevals instead of milliseconds 14855 - improved memory management using mempools v2. 14856 - several minor optimizations 14857 148582007/05/09 : 1.3.10.2 14859 - fixed build on OpenBSD (missing types.h) 14860 148612007/05/09 : 1.3.10.1 14862 - fixed sepoll transition matrix (two states were missing) 14863 148642007/05/08 : 1.3.10 14865 - several fixes in ev_sepoll 14866 - fixed some expiration dates on some tasks 14867 - fixed a bug in connection establishment detection due to speculative I/O 14868 - fixed rare bug occuring on TCP with early close (reported by Andy Smith) 14869 - implemented URI hashing algorithm (Guillaume Dallaire) 14870 - implemented SMTP health checks (Peter van Dijk) 14871 - replaced the rbtree with ul2tree from old scheduler project 14872 - new framework for generic ACL support 14873 - added the 'acl' and 'block' keywords to the config language 14874 - added several ACL criteria and matches (IP, port, URI, ...) 14875 - cleaned up and better modularization for some time functions 14876 - fixed list macros 14877 - fixed useless memory allocation in str2net() 14878 - store the original destination address in the session 14879 148802007/04/15 : 1.3.9 14881 - modularized the polling mechanisms and use function pointers instead 14882 of macros at many places 14883 - implemented support for FreeBSD's kqueue() polling mechanism 14884 - fixed a warning on OpenBSD : MIN/MAX redefined 14885 - change socket registration order at startup to accomodate kqueue. 14886 - several makefile cleanups to support old shells 14887 - fix build with limits.h once for all 14888 - ev_epoll: do not rely on fd_sets anymore, use changes stacks instead. 14889 - fdtab now holds the results of polling 14890 - implemented support for speculative I/O processing with epoll() 14891 - remove useless calls to shutdown(SHUT_RD), resulting in small speed boost 14892 - auto-registering of pollers at load time 14893 148942007/04/03 : 1.3.8.2 14895 - rewriting either the status line or request line could crash the 14896 process due to a pointer which ought to be reset before parsing. 14897 - rewriting the status line in the response did not work, it caused 14898 a 502 Bad Gateway due to an erroneous state during parsing 14899 149002007/04/01 : 1.3.8.1 14901 - fix reqadd when no option httpclose is used. 14902 - removed now unused fiprm and beprm from proxies 14903 - split logs into two versions : TCP and HTTP 14904 - added some docs about http headers storage and acls 14905 - added a VIM script for syntax color highlighting (Bruno Michel) 14906 149072007/03/25 : 1.3.8 14908 - fixed several bugs which might have caused a crash with bad configs 14909 - several optimizations in header processing 14910 - many progresses towards transaction-based processing 14911 - option forwardfor may be used in frontends 14912 - completed HTTP response processing 14913 - some code refactoring between request and response processing 14914 - new HTTP header manipulation functions 14915 - optimizations on the recv() patch to reduce CPU usage under very 14916 high data rates. 14917 - more user-friendly help about the 'usesrc' keyword (CTTPROXY) 14918 - username/groupname support from Marcus Rueckert 14919 - added the "except" keyword to the "forwardfor" option (Bryan German) 14920 - support for health-checks on other addresses (Fabrice Dulaunoy) 14921 - makefile for MacOS 10.4 / Darwin (Dan Zinngrabe) 14922 - do not insert "Connection: close" in HTTP/1.0 messages 14923 149242007/01/26 : 1.3.7 14925 - fix critical bug introduced with 1.3.6 : an empty request header 14926 may lead to a crash due to missing pointer assignment 14927 - hdr_idx might be left uninitialized in debug mode 14928 - fixed build on FreeBSD due to missing fd_set declaration 14929 149302007/01/22 : 1.3.6.1 14931 - change in the header chaining broke cookies and authentication 14932 149332007/01/22 : 1.3.6 14934 - stats now support the HEAD method too 14935 - extracted http request from the session 14936 - huge rework of the HTTP parser which is now a 28-state FSM. 14937 - linux-style likely/unlikely macros for optimization hints 14938 - do not create a server socket when there's no server 14939 - imported lots of docs 14940 149412007/01/07 : 1.3.5 14942 - stats: swap color sets for active and backup servers 14943 - try to guess server check port when unset 14944 - added complete support and doc for TCP Splicing 14945 - replace the wait-queue linked list with an rbtree. 14946 - a few bugfixes and cleanups 14947 149482007/01/02 : 1.3.4 14949 - support for cttproxy on the server side to present the client 14950 address to the server. 14951 - added support for SO_REUSEPORT on Linux (needs kernel patch) 14952 - new RFC2616-compliant HTTP request parser with header indexing 14953 - split proxies in frontends, rulesets and backends 14954 - implemented the 'req[i]setbe' to select a backend depending 14955 on the contents 14956 - added the 'default_backend' keyword to select a default BE. 14957 - new stats page featuring FEs and BEs + bytes in both dirs 14958 - improved log format to indicate the backend and the time in ms. 14959 - lots of cleanups 14960 149612006/10/15 : 1.3.3 14962 - fix broken redispatch option in case the connection has already 14963 been marked "in progress" (ie: nearly always). 14964 - support regparm on x86 to speed up some often called functions 14965 - removed a few useless calls to gettimeofday() in log functions. 14966 - lots of 'const char*' cleanups 14967 - turn every FD_* into functions which are faster on recent CPUs 14968 149692006/09/03 : 1.3.2 14970 - started the changes towards I/O completion callbacks. stream_sock* have 14971 replaced event_*. 14972 - added the new "reqtarpit" and "reqitarpit" protection features 14973 149742006/07/09 : 1.3.1 (1.2.15) 14975 - now, haproxy warns about missing timeout during startup to try to 14976 eliminate all those buggy configurations. 14977 - added "Content-Type: text/html" in responses wherever appropriate, as 14978 suggested by Cameron Simpson. 14979 - implemented "option ssl-hello-chk" to use SSLv3 CLIENT HELLO messages to 14980 test server's health 14981 - implemented "monitor-uri" so that haproxy can reply to a specific URI with 14982 an "HTTP/1.0 200 OK" response. This is useful to validate multiple proxies 14983 at once. 14984 149852006/06/29 : 1.3.0 14986 - exploded the whole file into multiple .c and .h. No functionnal 14987 difference is expected at all. 14988 - fixed a bug by which neither stats nor error messages could be returned if 14989 'clitimeout' was missing. 14990 149912006/05/21 : 1.2.14 14992 - new HTML status report with the 'stats' keyword. 14993 - added the 'abortonclose' option to better resist traffic surges 14994 - implemented dynamic traffic regulation with the 'minconn' option 14995 - show request time on denied requests 14996 - definitely fixed hot reconf on OpenBSD by the use of SO_REUSEPORT 14997 - now a proxy instance is allowed to run without servers, which is 14998 useful to dedicate one instance to stats 14999 - added lots of error counters 15000 - a missing parenthesis preventd matching of cacheable cookies 15001 - a missing parenthesis in poll_loop() might have caused missed events. 15002 150032006/05/14 : 1.2.13.1 15004 - an uninitialized field in the struct session could cause a crash when 15005 the session was freed. This has been encountered on Solaris only. 15006 - Solaris and OpenBSD no not support shutdown() on listening socket. Let's 15007 be nice to them by performing a soft stop if pause fails. 15008 150092006/05/13 : 1.2.13 15010 - 'maxconn' server parameter to do per-server session limitation 15011 - queueing to support non-blocking session limitation 15012 - fixed removal of cookies for cookie-less servers such as backup servers 15013 - two separate wait queues for expirable and non-expirable tasks provide 15014 better performance with lots of sessions. 15015 - some code cleanups and performance improvements 15016 - made state dumps a bit more verbose 15017 - fixed missing checks for NULL srv in dispatch mode 15018 - load balancing on backup servers was not possible in source hash mode. 15019 - two session flags shared the same bit, but fortunately they were not 15020 compatible. 15021 150222006/04/15 : 1.2.12 15023 Very few changes preparing for more important changes to support per-server 15024 session limitations and queueing : 15025 - ignore leading empty lines in HTTP requests as suggested by RFC2616. 15026 - added the 'weight' parameter to the servers, limited to 1..256. It applies 15027 to roundrobin and source hash. 15028 - the optional '-s' option could clobber '-st' and '-sf' if compiled in. 15029 150302006/03/30 : 1.2.11.1 15031 - under some conditions, it might have been possible that when the 15032 last dead server became available, it would not have been used 15033 till another one would have changed state. Could not be reproduced 15034 at all, however seems possible from the code. 15035 150362006/03/25 : 1.2.11 15037 - added the '-db' command-line option to disable backgrounding. 15038 - added the -sf/-st command-line arguments which are used to specify 15039 a list of pids to send a FINISH or TERMINATE signal upon startup. 15040 They will also be asked to release their port if a bind fails. 15041 - reworked the startup mechanism to allow the sending of a signal to a list 15042 of old pids if a socket cannot be bound, with a retry for a limited amount 15043 of time (1 second by default). 15044 - added the ability to enforce limits on memory usage. 15045 - added the 'source' load-balancing algorithm which uses the source IP(v4|v6) 15046 - re-architectured the server round-robin mechanism to ease integration of 15047 other algorithms. It now relies on the number of active and backup servers. 15048 - added a counter for the number of active and backup servers, and report 15049 these numbers upon SIGHUP or state change. 15050 150512006/03/23 : 1.2.10.1 15052 - while fixing the backup server round-robin "feature", a new bug was 15053 introduced which could miss some backup servers. 15054 - the displayed proxy name was wrong when dumping upon SIGHUP. 15055 150562006/03/19 : 1.2.10 15057 - assert.h is needed when DEBUG is defined. 15058 - ENORMOUS long standing bug affecting the epoll polling system : 15059 event_data is a union, not a structure ! 15060 - Make fd management more robust and easier to debug. Also some 15061 micro-optimisations. 15062 - Limit the number of consecutive accept() in multi-process mode. 15063 This produces a more evenly distributed load across the processes and 15064 slightly improves performance by reducing bottlenecks. 15065 - Make health-checks be more regular, and faster to retry after a timeout. 15066 - Fixed some messages to ease parsing of alerts. 15067 - provided a patch to enable epoll on RHEL3 kernels. 15068 - Separated OpenBSD build from the main Makefile into a new one. 15069 150702006/03/15 : 1.2.9 15071 - haproxy could not be stopped after being paused, it had to be woken up 15072 first. This has been fixed. 15073 - the 'ulimit-n' parameter is now optional and by default computed from 15074 maxconn + the number of listeners + the number of health-checks. 15075 - it is now possible to specify a maximum number of connections at build 15076 time with the SYSTEM_MAXCONN define. The value set in the configuration 15077 file will then be limited to this value, and only the command-line '-n' 15078 option will be able to bypass it. It will prevent against accidental 15079 high memory usage on small systems. 15080 - RFC2616 expects that any HTTP agent accepts multi-line headers. Earlier 15081 versions did not detect a line beginning with a space as the continuation 15082 of previous header. It is now correct. 15083 - health checks sent to servers configured with identical intervals were 15084 sent in perfect synchronisation because the initial time was the same 15085 for all. This could induce high load peaks when fragile servers were 15086 hosting tens of instances for the same application. Now the load is 15087 spread evenly across the smallest interval amongst a listener. 15088 - a new 'forceclose' option was added to make the proxy close the outgoing 15089 channel to the server once it has sent all its headers and the server 15090 starts responding. This helps some servers which don't close upon the 15091 'Connection: close' header. It implies 'option httpclose'. 15092 - there was a bug in the way the backup servers were handled. They were 15093 erroneously load-balanced while the doc said the opposite. Since 15094 load-balanced backup servers is one of the features some people have 15095 been asking for, the problem was fixed to reflect the documented 15096 behaviour and a new option 'allbackups' was introduced to provide the 15097 feature to those who need it. 15098 - a never ending connect() could lead to a fast select() loop if its 15099 timeout times the number of retransmits exceeded the server read or write 15100 timeout, because the later was used to compute select()'s timeout while 15101 the connection timeout was not reached. 15102 - now we initialize the libc's localtime structures very early so that even 15103 under OOM conditions, we can still send dated error messages without 15104 segfaulting. 15105 - the 'daemon' mode implies 'quiet' and disables 'verbose' because file 15106 descriptors are closed. 15107 151082006/01/29 : 1.2.8 15109 - fixed a nasty bug affecting poll/epoll which could return unmodified data 15110 from the server to the client, and sometimes lead to memory corruption 15111 crashing the process. 15112 - added the new pause/play mechanism with SIGTTOU/SIGTTIN for hot-reconf. 15113 151142005/12/18 : 1.2.7.1 15115 - the "retries" option was ignored because connect() could not return an 15116 error if the connection failed before the timeout. 15117 - TCP health-checks could not detect a connection refused in poll/epoll 15118 mode. 15119 151202005/11/13 : 1.2.7 15121 - building with -DUSE_PCRE should include PCRE headers and not regex.h. At 15122 least on Solaris, this caused the libc's regex primitives to be used instead 15123 of PCRE, which caused trouble on group references. This is now fixed. 15124 - delayed the quiet mode during startup so that most of the startup alerts can 15125 be displayed even in quiet mode. 15126 - display an alert when a listener has no address, invalid or no port, or when 15127 there are no enabled listeners upon startup. 15128 - added "static-pcre" to the list of supported regex options in the Makefile. 15129 151302005/10/09 : 1.2.7rc (1.1.33rc) 15131 - second batch of socklen_t changes. 15132 - clean-ups from Cameron Simpson. 15133 - because tv_remain() does not know about eternity, using no timeout can 15134 make select() spin around a null time-out. Bug reported by Cameron Simpson. 15135 - client read timeout was not properly set to eternity initialized after an 15136 accept() if it was not set in the config. It remained undetected so long 15137 because eternity is 0 and newly allocated pages are zeroed by the system. 15138 - do not call get_original_dst() when not in transparent mode. 15139 - implemented a workaround for a bug in certain epoll() implementations on 15140 linux-2.4 kernels (epoll-lt <= 0.21). 15141 - implemented TCP keepalive with new options : tcpka, clitcpka, srvtcpka. 15142 151432005/08/07 : 1.2.6 15144 - clean-up patch from Alexander Lazic fixes build on Debian 3.1 (socklen_t). 15145 151462005/07/06 : 1.2.6-pre5 (1.1.32) 15147 - added the number of active sessions (proxy/process) in the logs 15148 151492005/07/06 : 1.2.6-pre4 (1.1.32-pre4) 15150 - the time-out fix introduced in 1.1.25 caused a corner case where it was 15151 possible for a client to keep a connection maintained regardless of the 15152 timeout if the server closed the connection during the HEADER phase, 15153 while the client ignored the close request while doing nothing in the 15154 other direction. This has been fixed now by ensuring that read timeouts 15155 are re-armed when switching to any SHUTW state. 15156 151572005/07/05 : 1.2.6-pre3 (1.1.32-pre3) 15158 - enhanced error reporting in the logs. Now the proxy will precisely detect 15159 various error conditions related to the system and/or process limits, and 15160 generate LOG_EMERG logs indicating that a resource has been exhausted. 15161 - logs will contain two new characters for the error cause : 'R' indicates 15162 a resource exhausted, and 'I' indicates an internal error, though this 15163 one should never happen. 15164 - server connection timeouts can now be reported in the logs (sC), as well 15165 as connections refused because of maxconn limitations (PC). 15166 151672005/07/05 : 1.2.6-pre2 (1.1.32-pre2) 15168 - new global configuration keyword "ulimit-n" may be used to raise the FD 15169 limit to usable values. 15170 - a warning is now displayed on startup if the FD limit is lower than the 15171 configured maximum number of sockets. 15172 151732005/07/05 : 1.2.6-pre1 (1.1.32-pre1) 15174 - new configuration keyword "monitor-net" makes it possible to be monitored 15175 by external devices which connect to the proxy without being logged nor 15176 forwarded to any server. Particularly useful on generic TCPv4 relays. 15177 151782005/06/21 : 1.2.5.2 15179 - fixed build on PPC where chars are unsigned by default 15180 151812005/05/02 : 1.2.5.1 15182 - dirty hack to fix a bug introduced with epoll : if we close an FD and 15183 immediately reassign it to another session through a connect(), the 15184 Prev{Read,Write}Events are not updated, which causes trouble detecting 15185 changes, thus leading to many timeouts at high loads. 15186 151872005/04/30 : 1.2.5 (1.1.31) 15188 - changed the runtime argument to disable epoll() to '-de' 15189 - changed the runtime argument to disable poll() to '-dp' 15190 - added global options 'nopoll' and 'noepoll' to do the same at the 15191 configuration level. 15192 - added a 'linux24e' target to the Makefile for Linux 2.4 systems patched to 15193 support epoll(). 15194 - changed default FD_SETSIZE to 65536 on Solaris (default=1024) 15195 - conditionned signals redirection to #ifdef DEBUG_MEMORY 15196 151972005/04/26 : 1.2.5-pre4 15198 - made epoll() support a compile-time option : ENABLE_EPOLL 15199 - provided a very little libc replacement for a possibly missing epoll() 15200 implementation which can be enabled by -DUSE_MY_EPOLL 15201 - implemented the poll() poller, which can be enabled with -DENABLE_POLL. 15202 The equivalent runtime argument becomes '-P'. A few tests show that it 15203 performs like select() with many fds, but slightly slower (certainly 15204 because of the higher amount of memory involved). 15205 - separated the 3 polling methods and the tasks scheduler into 4 distinct 15206 functions which makes the code a lot more modular. 15207 - moved some event tables to private static declarations inside the poller 15208 functions. 15209 - the poller functions can now initialize themselves, run, and cleanup. 15210 - changed the runtime argument to enable epoll() to '-E'. 15211 - removed buggy epoll_ctl() code in the client_retnclose() function. This 15212 function was never meant to remove anything. 15213 - fixed a typo which caused glibc to yell about a double free on exit. 15214 - removed error checking after epoll_ctl(DEL) because we can never know if 15215 the fd is still active or already closed. 15216 - added a few entries in the makefile 15217 152182005/04/25 : 1.2.5-pre3 15219 - experimental epoll() support (use temporary '-e' argument) 15220 152212005/04/24 : 1.2.5-pre2 15222 - implemented the HTTP 303 code for error redirection. This forces the 15223 browser to fetch the given URI with a GET request. The new keyword for 15224 this is 'errorloc303', and a new 'errorloc302' keyword has been created 15225 to make them easily distinguishable. 15226 - added more controls in the parser for valid use of '\x' sequence. 15227 - few fixes from Alex & Klaus 15228 152292005/02/17 : 1.2.5-pre1 15230 - fixed a few errors in the documentation 15231 152322005/02/13 15233 - do not pre-initialize unused file-descriptors before select() anymore. 15234 152352005/01/22 : 1.2.4 15236 - merged Alexander Lazic's and Klaus Wagner's work on application 15237 cookie-based persistence. Since this is the first merge, this version is 15238 not intended for general use and reports are more than welcome. Some 15239 documentation is really needed though. 15240 152412005/01/22 : 1.2.3 (1.1.30) 15242 - add an architecture guide to the documentation 15243 - released without any changes 15244 152452004/12/26 : 1.2.3-pre1 (1.1.30-pre1) 15246 - increased default BUFSIZE to 16 kB to accept max headers of 8 kB which is 15247 compatible with Apache. This limit can be configured in the makefile now. 15248 Thanks to Eric Fehr for the checks. 15249 - added a per-server "source" option which now makes it possible to bind to 15250 a different source for each (potentially identical) server. 15251 - changed cookie-based server selection slightly to allow several servers to 15252 share a same cookie, thus making it possible to associate backup servers to 15253 live servers and ease soft-stop for maintenance periods. (Alexander Lazic) 15254 - added the cookie 'prefix' mode which makes it possible to use persistence 15255 with thin clients which support only one cookie. The server name is prefixed 15256 before the application cookie, and restore back. 15257 - fixed the order of servers within an instance to match documentation. Now 15258 the servers are *really* used in the order of their declaration. This is 15259 particularly important when multiple backup servers are in use. 15260 152612004/10/18 : 1.2.2 (1.1.29) 15262 - fixed a bug where a TCP connection would be logged twice if the 'logasap' 15263 option was enabled without the 'tcplog' option. 15264 - encode_string() would use hdr_encode_map instead of the map argument. 15265 152662004/08/10 : (1.1.29-pre2) 15267 - the logged request is now encoded with '#XX' for unprintable characters 15268 - new keywords 'capture request header' and 'capture response header' enable 15269 logging of arbitrary HTTP headers in requests and responses 15270 - removed "-DSOLARIS" after replacing the last inet_aton() with inet_pton() 15271 152722004/06/06 : 1.2.1 (1.1.28) 15273 - added the '-V' command line option to verbosely report errors even though 15274 the -q or 'quiet' options are specified. This is useful with '-c'. 15275 - added a Red Hat init script and a .spec from Simon Matter <simon.matter@invoca.ch> 15276 152772004/06/05 : 15278 - added the "logasap" option which produces a log without waiting for the data 15279 to be transferred from the server to the client. 15280 - added the "httpclose" option which removes any "connection:" header and adds 15281 "Connection: close" in both direction. 15282 - added the 'checkcache' option which blocks cacheable responses containing 15283 dangerous headers, such as 'set-cookie'. 15284 - added 'rspdeny' and 'rspideny' to block certain responses to avoid sensible 15285 information leak from servers. 15286 152872004/04/18 : 15288 - send an EMERG log when no server is available for a given proxy 15289 - added the '-c' command line option to syntactically check the 15290 configuration file without starting the service. 15291 152922003/11/09 : 1.2.0 15293 - the same as 1.1.27 + IPv6 support on the client side 15294 152952003/10/27 : 1.1.27 15296 - the configurable HTTP health check introduced in 1.1.23 revealed a shameful 15297 bug : the code still assumed that HTTP requests were the same size as the 15298 original ones (22 bytes), and failed if they were not. 15299 - added support for pidfiles. 15300 153012003/10/22 : 1.1.26 15302 - the fix introduced in 1.1.25 for client timeouts while waiting for servers 15303 broke almost all compatibility with POST requests, because the proxy 15304 stopped to read anything from the client as soon as it got all of its 15305 headers. 15306 153072003/10/15 : 1.1.25 15308 - added the 'tcplog' option, which provides enhanced, HTTP-like logs for 15309 generic TCP proxies, or lighter logs for HTTP proxies. 15310 - fixed a time-out condition wrongly reported as client time-out in data 15311 phase if the client timeout was lower than the connect timeout times the 15312 number of retries. 15313 153142003/09/21 : 1.1.24 15315 - if a client sent a full request then shut its write connection down, then 15316 the request was aborted. This case was detected only when using haproxy 15317 both as health-check client and as a server. 15318 - if 'option httpchk' is used in a 'health' mode server, then responses will 15319 change from 'OK' to 'HTTP/1.0 200 OK'. 15320 - fixed a Linux-only bug in case of HTTP server health-checks, where a single 15321 server response followed by a close could be ignored, and the server seen 15322 as failed. 15323 153242003/09/19 : 1.1.23 15325 - fixed a stupid bug introduced in 1.1.22 which caused second and subsequent 15326 'default' sections to keep previous parameters, and not initialize logs 15327 correctly. 15328 - fixed a second stupid bug introduced in 1.1.22 which caused configurations 15329 relying on 'dispatch' mode to segfault at the first connection. 15330 - 'option httpchk' now supports method, HTTP version and a few headers. 15331 - now, 'option httpchk', 'cookie' and 'capture' can be specified in 15332 'defaults' section 15333 153342003/09/10 : 1.1.22 15335 - 'listen' now supports optionnal address:port-range lists 15336 - 'bind' introduced to add new listen addresses 15337 - fixed a bug which caused a session to be kept established on a server till 15338 it timed out if the client closed during the DATA phase. 15339 - the port part of each server address can now be empty to make the proxy 15340 connect to the server on the same port it was connected to, be an absolute 15341 unsigned number to reflect a single port (as in older versions), or an 15342 explicitly signed number (+N/-N) to indicate that this offset must be 15343 applied to the port the proxy was connected to, when connecting to the 15344 server. 15345 - the 'port' server option allows the user to specify a different 15346 health-check port than the service one. It is mandatory when only relative 15347 ports have been specified and check is required. By default, the checks are 15348 sent to the service port. 15349 - new 'defaults' section which is rather similar to 'listen' except that all 15350 values are only used as default values for future 'listen' sections, until 15351 a new 'defaults' resets them. At the moment, server options, regexes, 15352 cookie names and captures cannot be set in the 'defaults' section. 15353 153542003/05/06 : 1.1.21 15355 - changed the debug output format so that it now includes the session unique 15356 ID followed by the instance name at the beginning of each line. 15357 - in debug mode, accept now shows the client's IP and port. 15358 - added one 3 small debugging scripts to search and pretty print debug output 15359 - changed the default health check request to "OPTIONS /" instead of 15360 "OPTIONS *" since not all servers implement the later one. 15361 - "option httpchk" now accepts an optional parameter allowing the user to 15362 specify and URI other than '/' during health-checks. 15363 153642003/04/21 : 1.1.20 15365 - fixed two problems with time-outs, one where a server would be logged as 15366 timed out during transfer that take longer to complete than the fixed 15367 time-out, and one where clients were logged as timed-out during the data 15368 phase because they didn't have anything to send. This sometimes caused 15369 slow client connections to close too early while in fact there was no 15370 problem. The proper fix would be to have a per-fd time-out with 15371 conditions depending on the state of the HTTP FSM. 15372 153732003/04/16 : 1.1.19 15374 - haproxy was NOT RFC compliant because it was case-sensitive on HTTP 15375 "Cookie:" and "Set-Cookie:" headers. This caused JVM 1.4 to fail on 15376 cookie persistence because it uses "cookie:". Two memcmp() have been 15377 replaced with strncasecmp(). 15378 153792003/04/02 : 1.1.18 15380 - Haproxy can be compiled with PCRE regex instead of libc regex, by setting 15381 REGEX=pcre on the make command line. 15382 - HTTP health-checks now use "OPTIONS *" instead of "OPTIONS /". 15383 - when explicit source address binding is required, it is now also used for 15384 health-checks. 15385 - added 'reqpass' and 'reqipass' to allow certain headers but not the request 15386 itself. 15387 - factored several strings to reduce binary size by about 2 kB. 15388 - replaced setreuid() and setregid() with more standard setuid() and setgid(). 15389 - added 4 status flags to the log line indicating who ended the connection 15390 first, the sessions state, the validity of the cookie, and action taken on 15391 the set-cookie header. 15392 153932002/10/18 : 1.1.17 15394 - add the notion of "backup" servers, which are used only when all other 15395 servers are down. 15396 - make Set-Cookie return "" instead of "(null)" when the server has no 15397 cookie assigned (useful for backup servers). 15398 - "log" now supports an optionnal level name (info, notice, err ...) above 15399 which nothing is sent. 15400 - replaced some strncmp() with memcmp() for better efficiency. 15401 - added "capture cookie" option which logs client and/or server cookies 15402 - cleaned up/down messages and dump servers states upon SIGHUP 15403 - added a redirection feature for errors : "errorloc <errnum> <url>" 15404 - now we won't insist on connecting to a dead server, even with a cookie, 15405 unless option "persist" is specified. 15406 - added HTTP/408 response for client request time-out and HTTP/50[234] for 15407 server reply time-out or errors. 15408 154092002/09/01 : 1.1.16 15410 - implement HTTP health checks when option "httpchk" is specified. 15411 154122002/08/07 : 1.1.15 15413 - replaced setpgid()/setpgrp() with setsid() for better portability, because 15414 setpgrp() doesn't have the same meaning under Solaris, Linux, and OpenBSD. 15415 154162002/07/20 : 1.1.14 15417 - added "postonly" cookie mode 15418 154192002/07/15 : 1.1.13 15420 - tv_diff used inverted parameters which led to negative times ! 15421 154222002/07/13 : 1.1.12 15423 - fixed stats monitoring, and optimized some tv_* for most common cases. 15424 - replaced temporary 'newhdr' with 'trash' to reduce stack size 15425 - made HTTP errors more HTML-fiendly. 15426 - renamed strlcpy() to strlcpy2() because of a slightly difference between 15427 their behaviour (return value), to avoid confusion. 15428 - restricted HTTP messages to HTTP proxies only 15429 - added a 502 message when the connection has been refused by the server, 15430 to prevent clients from believing this is a zero-byte HTTP 0.9 reply. 15431 - changed 'Cache-control:' from 'no-cache="set-cookie"' to 'private' when 15432 inserting a cookie, because some caches (apache) don't understand it. 15433 - fixed processing of server headers when client is in SHUTR state 15434 154352002/07/04 : 15436 - automatically close fd's 0,1 and 2 when going daemon ; setpgrp() after 15437 setpgid() 15438 154392002/06/04 : 1.1.11 15440 - fixed multi-cookie handling in client request to allow clean deletion 15441 in insert+indirect mode. Now, only the server cookie is deleted and not 15442 all the header. Should now be compliant to RFC2965. 15443 - added a "nocache" option to "cookie" to specify that we explicitly want 15444 to add a "cache-control" header when we add a cookie. 15445 It is also possible to add an "Expires: <old-date>" to keep compatibility 15446 with old/broken caches. 15447 154482002/05/10 : 1.1.10 15449 - if a cookie is used in insert+indirect mode, it's desirable that the 15450 the servers don't see it. It was not possible to remove it correctly 15451 with regexps, so now it's removed automatically. 15452 154532002/04/19 : 1.1.9 15454 - don't use snprintf()'s return value as an end of message since it may 15455 be larger. This caused bus errors and segfaults in internal libc's 15456 getenv() during localtime() in send_log(). 15457 - removed dead insecure send_syslog() function and all references to it. 15458 - fixed warnings on Solaris due to buggy implementation of isXXXX(). 15459 154602002/04/18 : 1.1.8 15461 - option "dontlognull" 15462 - fixed "double space" bug in config parser 15463 - fixed an uninitialized server field in case of dispatch 15464 with no existing server which could cause a segfault during 15465 logging. 15466 - the pid logged was always the father's, which was wrong for daemons. 15467 - fixed wrong level "LOG_INFO" for message "proxy started". 15468 154692002/04/13 : 15470 - http logging is now complete : 15471 - ip:port, date, proxy, server 15472 - req_time, conn_time, hdr_time, tot_time 15473 - status, size, request 15474 - source address 15475 154762002/04/12 : 1.1.7 15477 - added option forwardfor 15478 - added reqirep, reqidel, reqiallow, reqideny, rspirep, rspidel 15479 - added "log global" in "listen" section. 15480 154812002/04/09 : 15482 - added a new "global" section : 15483 - logs 15484 - debug, quiet, daemon modes 15485 - uid, gid, chroot, nbproc, maxconn 15486 154872002/04/08 : 1.1.6 15488 - regex are now chained and not limited anymore. 15489 - unavailable server now returns HTTP/502. 15490 - increased per-line args limit to 40 15491 - added reqallow/reqdeny to block some request on matches 15492 - added HTTP 400/403 responses 15493 154942002/04/03 : 1.1.5 15495 - connection logging displayed incorrect source address. 15496 - added proxy start/stop and server up/down log events. 15497 - replaced log message short buffers with larger trash. 15498 - enlarged buffer to 8 kB and replace buffer to 4 kB. 15499 155002002/03/25 : 1.1.4 15501 - made rise/fall/interval time configurable 15502 155032002/03/22 : 1.1.3 15504 - fixed a bug : cr_expire and cw_expire were inverted in CL_STSHUT[WR] 15505 which could lead to loops. 15506 155072002/03/21 : 1.1.2 15508 - fixed a bug in buffer management where we could have a loop 15509 between event_read() and process_{cli|srv} if R==BUFSIZE-MAXREWRITE. 15510 => implemented an adjustable buffer limit. 15511 - fixed a bug : expiration of tasks in wait queue timeout is used again, 15512 and running tasks are skipped. 15513 - added some debug lines for accept events. 15514 - send warnings for servers up/down. 15515 155162002/03/12 : 1.1.1 15517 - fixed a bug in total failure handling 15518 - fixed a bug in timestamp comparison within same second (tv_cmp_ms) 15519 155202002/03/10 : 1.1.0 15521 - fixed a few timeout bugs 15522 - rearranged the task scheduler subsystem to improve performance, 15523 add new tasks, and make it easier to later port to librt ; 15524 - allow multiple accept() for one select() wake up ; 15525 - implemented internal load balancing with basic health-check ; 15526 - cookie insertion and header add/replace/delete, with better strings 15527 support. 15528 155292002/03/08 15530 - reworked buffer handling to fix a few rewrite bugs, and 15531 improve overall performance. 15532 - implement the "purge" option to delete server cookies in direct mode. 15533 155342002/03/07 15535 - fixed some error cases where the maxfd was not decreased. 15536 155372002/02/26 15538 - now supports transparent proxying, at least on linux 2.4. 15539 155402002/02/12 15541 - soft stop works again (fixed select timeout computation). 15542 - it seems that TCP proxies sometimes cannot timeout. 15543 - added a "quiet" mode. 15544 - enforce file descriptor limitation on socket() and accept(). 15545 155462001/12/30 : release of version 1.0.2 : fixed a bug in header processing 155472001/12/19 : release of version 1.0.1 : no MSG_NOSIGNAL on solaris 155482001/12/16 : release of version 1.0.0. 155492001/12/16 : added syslog capability for each accepted connection. 155502001/11/19 : corrected premature end of files and occasional SIGPIPE. 155512001/10/31 : added health-check type servers (mode health) which replies OK then closes. 155522001/10/30 : added the ability to support standard TCP proxies and HTTP proxies 15553 with or without cookies (use keyword http for this). 155542001/09/01 : added client/server header replacing with regexps. 15555 eg: 15556 cliexp ^(Host:\ [^:]*).* Host:\ \1:80 15557 srvexp ^Server:\ .* Server:\ Apache 155582000/11/29 : first fully working release with complete FSMs and timeouts. 155592000/11/28 : major rewrite 155602000/11/26 : first write 15561