1ChangeLog : 2=========== 3 42021/03/18 : 2.1.12 5 - BUG/MINOR: sample: check alloc_trash_chunk return value in concat() 6 - BUG/MINOR: sample: Memory leak of sample_expr structure in case of error 7 - BUG/MINOR: init: enforce strict-limits when using master-worker 8 - BUG/MINOR: init: Use a dynamic buffer to set HAPROXY_CFGFILES env variable 9 - BUG/MINOR: threads: Fixes the number of possible cpus report for Mac. 10 - BUG/MINOR: peers: Wrong "new_conn" value for "show peers" CLI command. 11 - BUG/MINOR: mux_h2: missing space between "st" and ".flg" in the "show fd" helper 12 - BUG/MINOR: mworker: define _GNU_SOURCE for strsignal() 13 - BUG/MEDIUM: mux-h2: fix read0 handling on partial frames 14 - BUILD/MINOR: lua: define _GNU_SOURCE for LLONG_MAX 15 - BUG/MEDIUM: stats: add missing INF_BUILD_INFO definition 16 - BUG/MEDIUM: filters/htx: Fix data forwarding when payload length is unknown 17 - BUG/MINOR: config: fix leak on proxy.conn_src.bind_hdr_name 18 - MINOR: contrib: Make the wireshark peers dissector compile for more distribs. 19 - DOC: management: fix "show resolvers" alphabetical ordering 20 - BUG/MINOR: stick-table: Always call smp_fetch_src() with a valid arg list 21 - BUG/MEDIUM: ssl: check a connection's status before computing a handshake 22 - BUG/MINOR: xxhash: make sure armv6 uses memcpy() 23 - BUG/MINOR: ssl: init tmp chunk correctly in ssl_sock_load_sctl_from_file() 24 - BUG/MEDIUM: ssl/cli: abort ssl cert is freeing the old store 25 - BUILD: Makefile: move REGTESTST_TYPE default setting 26 - BUG/MEDIUM: mux-h2: handle remaining read0 cases 27 - BUG/MEDIUM: mux-h2: do not quit the demux loop before setting END_REACHED 28 - BUG/MINOR: http-ana: Don't increment HTTP error counter on internal errors 29 - BUG/MEDIUM: mux-h1: Always set CS_FL_EOI for response in MSG_DONE state 30 - BUG/MINOR: server: re-align state file fields number 31 - BUG/MINOR: tools: Fix a memory leak on error path in parse_dotted_uints() 32 - BUG/MINOR: backend: hold correctly lock when killing idle conn 33 - BUG/MINOR: server: Fix server-state-file-name directive 34 - CLEANUP: deinit: release global and per-proxy server-state variables on deinit 35 - BUG/MEDIUM: config: don't pick unset values from last defaults section 36 - BUG/MINOR: stats: revert the change on ST_CONVDONE 37 - BUG/MINOR: cfgparse: do not mention "addr:port" as supported on proxy lines 38 - BUG/MINOR: server: Don't call fopen() with server-state filepath set to NULL 39 - CLEANUP: channel: fix comment in ci_putblk. 40 - BUG/MINOR: server: Remove RMAINT from admin state when loading server state 41 - BUG/MINOR: session: atomically increment the tracked sessions counter 42 - BUG/MINOR: checks: properly handle wrapping time in __health_adjust() 43 - BUG/MINOR: sample: Always consider zero size string samples as unsafe 44 - BUG/MINOR: server: Init params before parsing a new server-state line 45 - BUG/MINOR: server: Be sure to cut the last parsed field of a server-state line 46 - BUG/MEDIUM: mux-h1: Fix handling of responses to CONNECT other than 200-ok 47 - BUG/MINOR: ssl/cli: potential null pointer dereference in "set ssl cert" 48 - BUG/MINOR: sample: secure convs that accept base64 string and var name as args 49 - BUG/MEDIUM: vars: make functions vars_get_by_{name,desc} thread-safe 50 - BUG/MEDIUM: proxy: use thread-safe stream killing on hard-stop 51 - BUG/MEDIUM: cli/shutdown sessions: make it thread-safe 52 - BUG/MINOR: proxy: wake up all threads when sending the hard-stop signal 53 - BUG/MINOR: resolvers: new callback to properly handle SRV record errors 54 - BUG/MEDIUM: resolvers: Reset server address and port for obselete SRV records 55 - BUG/MEDIUM: resolvers: Reset address for unresolved servers 56 - BUG/MINOR: mux-h1: Immediately report H1C errors from h1_snd_buf() 57 - BUG/MINOR: http-ana: Only consider dst address to process originalto option 58 - BUG/MINOR: tcp-act: Don't forget to set the original port for IPv4 set-dst rule 59 - BUG/MINOR: connection: Use the client's dst family for adressless servers 60 - BUG/MEDIUM: spoe: Kill applets if there are pending connections and nbthread > 1 61 - DOC: spoe: Add a note about fragmentation support in HAProxy 62 - BUG/MINOR: mux-h2: Fix typo in scheme adjustment 63 - BUG/MINOR: http-ana: Don't increment HTTP error counter on read error/timeout 64 - BUG/MEDIUM: dns: Consider the fact that dns answers are case-insensitive 65 - BUG/MEDIUM: lists: Lock the element while we check if it is in a list. 66 - BUG/MEDIUM: lists: Avoid an infinite loop in MT_LIST_TRY_ADDQ(). 67 - BUG/MINOR: hlua: Don't strip last non-LWS char in hlua_pushstrippedstring() 68 - BUG/MINOR: ssl: don't truncate the file descriptor to 16 bits in debug mode 69 - BUG/MEDIUM: session: NULL dereference possible when accessing the listener 70 - BUG/MEDIUM: filters: Set CF_FL_ANALYZE on channels when filters are attached 71 - BUG/MINOR: proxy/session: Be sure to have a listener to increment its counters 72 - BUG/MINOR: session: Add some forgotten tests on session's listener 73 - CLEANUP: tcp-rules: add missing actions in the tcp-request error message 74 - BUG/MINOR: resolvers: Consider server to have no IP on DNS resolution error 75 - BUG/MINOR: resolvers: Reset server address on DNS error only on status change 76 - BUG/MINOR: resolvers: Add missing case-insensitive comparisons of DNS hostnames 77 - MINOR: time: export the global_now variable 78 - BUG/MINOR: freq_ctr/threads: make use of the last updated global time 79 - MINOR: version: Set the EOL of the 2.1 branch 80 812021/01/08 : 2.1.11 82 - MINOR: http-htx: Add understandable errors for the errorfiles parsing 83 - BUG/MINOR: http-htx: Just warn if payload of an errorfile doesn't match the C-L 84 - BUG/MINOR: pattern: a sample marked as const could be written 85 - BUG/MINOR: lua: set buffer size during map lookups 86 - BUG/MINOR: peers: Do not ignore a protocol error for dictionary entries. 87 - BUG/MINOR: peers: Missing TX cache entries reset. 88 - BUG/MEDIUM: peers: fix decoding of multi-byte length in stick-table messages 89 - BUG/MINOR: http-fetch: Extract cookie value even when no cookie name 90 - BUG/MINOR: http-fetch: Fix calls w/o parentheses of the cookie sample fetches 91 - BUG/MAJOR: spoe: Be sure to remove all references on a released spoe applet 92 - MINOR: spoe: Don't close connection in sync mode on processing timeout 93 - MINOR: cfgparse: tighten the scope of newnameserver variable, free it on error. 94 - BUILD: http-htx: fix build warning regarding long type in printf 95 - BUG/MEDIUM: filters: Forward all filtered data at the end of http filtering 96 - BUG/MINOR: http-ana: Don't wait for the body of CONNECT requests 97 - BUG/MAJOR: filters: Always keep all offsets up to date during data filtering 98 - BUG/MAJOR: peers: fix partial message decoding 99 - DOC: Clarify %HP description in log-format 100 - DOC: config: Move req.hdrs and req.hdrs_bin in L7 samples fetches section 101 - MINOR: plock: use an ARMv8 instruction barrier for the pause instruction 102 - BUG/MINOR: lua: missing "\n" in error message 103 - BUG/MINOR: lua: lua-load doesn't check its parameters 104 - BUG/MINOR: lua: Post init register function are not executed beyond the first one 105 - BUG/MINOR: lua: Some lua init operation are processed unsafe 106 - MINOR: actions: Export actions lookup functions 107 - MINOR: actions: add a function returning a service pointer from its name 108 - MINOR: cli: add a function to look up a CLI service description 109 - BUG/MINOR: lua: warn when registering action, conv, sf, cli or applet multiple times 110 - DOC/MINOR: Fix formatting in Management Guide 111 - BUG/MAJOR: spoa/python: Fixing return None 112 - DOC: spoa/python: Fixing typo in IP related error messages 113 - DOC: spoa/python: Rephrasing memory related error messages 114 - DOC: spoa/python: Fixing typos in comments 115 - BUG/MINOR: spoa/python: Cleanup references for failed Module Addobject operations 116 - BUG/MINOR: spoa/python: Cleanup ipaddress objects if initialization fails 117 - BUG/MEDIUM: spoa/python: Fixing PyObject_Call positional arguments 118 - BUG/MEDIUM: spoa/python: Fixing references to None 119 - DOC: email change of the DeviceAtlas maintainer 120 - BUG/MINOR: tools: make parse_time_err() more strict on the timer validity 121 - BUG/MINOR: tools: Reject size format not starting by a digit 122 - BUG/MEDIUM: lb-leastconn: Reposition a server using the right eweight 123 - CLEANUP: lua: Remove declaration of an inexistant function 124 - CLEANUP: contrib/prometheus-exporter: typo fixes for ssl reuse metric 125 - REGTESTS: make use of HAPROXY_ARGS and pass -dM by default 126 - BUILD: Makefile: have "make clean" destroy .o/.a/.s in contrib subdirs as well 127 - BUG/MINOR: mux-h1: Don't set CS_FL_EOI too early for protocol upgrade requests 128 - BUG/MEDIUM: http-ana: Never for sending data in TUNNEL mode 129 - CONTRIB: halog: fix build issue caused by %L printf format 130 - CONTRIB: halog: mark the has_zero* functions unused 131 - CONTRIB: halog: fix signed/unsigned build warnings on counts and timestamps 132 - CONTRIB: debug: address "poll" utility build on non-linux platforms 133 - BUILD: plock: remove dead code that causes a warning in gcc 11 134 - BUG/MEDIUM: mux_h2: Add missing braces in h2_snd_buf()around trace+wakeup 135 - BUILD: hpack: hpack-tbl-t.h uses VAR_ARRAY but does not include compiler.h 136 - MINOR: atomic: don't use ; to separate instruction on aarch64. 137 - BUG/MINOR: cfgparse: Fail if the strdup() for `rule->be.name` for `use_backend` fails 138 - SCRIPTS: improve announce-release to support different tag and versions 139 - SCRIPTS: make announce release support preparing announces before tag exists 140 - BUG/MINOR: srv: do not init address if backend is disabled 141 - BUILD: Makefile: exclude broken tests by default 142 - MINOR: contrib/prometheus-exporter: export build_info 143 - DOC: fix some spelling issues over multiple files 144 - SCRIPTS: announce-release: fix typo in help message 145 - DOC: Add maintainers for the Prometheus exporter 146 - BUG/MINOR: sample: fix concat() converter's corruption with non-string variables 147 1482020/11/05 : 2.1.10 149 - BUG/MEDIUM: ssl: crt-list negative filters don't work 150 - MINOR: ssl: reach a ckch_store from a sni_ctx 151 - BUILD: makefile: Fix building with closefrom() support enabled 152 - BUG/MINOR: Fix several leaks of 'log_tag' in init(). 153 - DOC: tcp-rules: Refresh details about L7 matching for tcp-request content rules 154 - BUG/MEDIUM: queue: make pendconn_cond_unlink() really thread-safe 155 - MINOR: counters: fix a typo in comment 156 - BUG/MINOR: stats: fix validity of the json schema 157 - MINOR: hlua: Display debug messages on stderr only in debug mode 158 - BUG/MINOR: peers: Inconsistency when dumping peer status codes. 159 - BUG/MINOR: mux-h1: Always set the session on frontend h1 stream 160 - BUG/MEDIUM: mux-fcgi: Don't handle pending read0 too early on streams 161 - BUG/MEDIUM: mux-h2: Don't handle pending read0 too early on streams 162 - BUG/MINOR: http-htx: Expect no body for 204/304 internal HTTP responses 163 - BUG/MINOR: init: only keep rlim_fd_cur if max is unlimited 164 - BUG/MINOR: mux-h2: do not stop outgoing connections on stopping 165 - MINOR: fd: report an error message when failing initial allocations 166 - BUG/MEDIUM: task: bound the number of tasks picked from the wait queue at once 167 - BUG/MEDIUM: spoe: Unset variable instead of set it if no data provided 168 - BUG/MEDIUM: mux-h1: Get the session from the H1S when capturing bad messages 169 - BUG/MEDIUM: lb: Always lock the server when calling server_{take,drop}_conn 170 - BUG/MINOR: peers: Possible unexpected peer seesion reset after collisions. 171 - BUILD: ssl: make BoringSSL use its own version numbers 172 - BUG/MINOR: disable dynamic OCSP load with BoringSSL 173 - BUG/MEDIUM: ssl: OCSP must work with BoringSSL 174 - BUG/MINOR: queue: properly report redistributed connections 175 - BUG/MEDIUM: server: support changing the slowstart value from state-file 176 - BUG/MINOR: http-ana: Don't send payload for internal responses to HEAD requests 177 - BUG/MAJOR: mux-h2: Don't try to send data if we know it is no longer possible 178 - BUG/MINOR: extcheck: add missing checks on extchk_setenv() 179 - BUG/MINOR: log: fix memory leak on logsrv parse error 180 - BUG/MINOR: server: fix srv downtime calcul on starting 181 - BUG/MINOR: server: fix down_time report for stats 182 - BUG/MINOR: lua: initialize sample before using it 183 - MINOR: ist: Add a case insensitive istmatch function 184 - BUG/MINOR: cache: Manage multiple values in cache-control header value 185 - BUG/MINOR: cache: Inverted variables in http_calc_maxage function 186 - BUG/MEDIUM: filters: Don't try to init filters for disabled proxies 187 - BUG/MINOR: proxy/server: Skip per-proxy/server post-check for disabled proxies 188 - BUG/MINOR: server: Set server without addr but with dns in RMAINT on startup 189 - MINOR: server: Copy configuration file and line for server templates 190 - BUG/MEDIUM: mux-pt: Release the tasklet during an HTTP upgrade 191 - BUG/MINOR: filters: Skip disabled proxies during startup only 192 - BUG/MEDIUM: stick-table: limit the time spent purging old entries 193 - CLEANUP: mux-h2: Remove the h1 parser state from the h2 stream 194 1952020/09/30 : 2.1.9 196 - BUG/MEDIUM: mux-h1: Refresh H1 connection timeout after a synchronous send 197 - SCRIPTS: git-show-backports: make -m most only show the left branch 198 - SCRIPTS: git-show-backports: emit the shell command to backport a commit 199 - BUG/MINOR: ssl: fix memory leak at OCSP loading 200 - BUG/MEDIUM: ssl: memory leak of ocsp data at SSL_CTX_free() 201 - BUG/MEDIUM: map/lua: Return an error if a map is loaded during runtime 202 - MINOR: arg: Add an argument type to keep a reference on opaque data 203 - BUG/MINOR: converters: Store the sink in an arg pointer for debug() converter 204 - BUG/MINOR: lua: Duplicate map name to load it when a new Map object is created 205 - BUG/MINOR: arg: Fix leaks during arguments validation for fetches/converters 206 - BUG/MINOR: lua: Check argument type to convert it to IPv4/IPv6 arg validation 207 - BUG/MINOR: lua: Check argument type to convert it to IP mask in arg validation 208 - MINOR: hlua: Don't needlessly copy lua strings in trash during args validation 209 - BUG/MINOR: lua: Duplicate lua strings in sample fetches/converters arg array 210 - MEDIUM: lua: Don't filter exported fetches and converters 211 - BUG/MINOR: snapshots: leak of snapshots on deinit() 212 - BUG/MINOR: stats: use strncmp() instead of memcmp() on health states 213 - BUG/MEDIUM: htx: smp_prefetch_htx() must always validate the direction 214 - BUG/MINOR: reload: do not fail when no socket is sent 215 - MINOR: http-htx: Add an option to eval query-string when the path is replaced 216 - BUG/MINOR: http-rules: Replace path and query-string in "replace-path" action 217 - DOC: cache: Use '<name>' instead of '<id>' in error message 218 - BUG/MAJOR: contrib/spoa-server: Fix unhandled python call leading to memory leak 219 - BUG/MINOR: contrib/spoa-server: Ensure ip address references are freed 220 - BUG/MINOR: contrib/spoa-server: Do not free reference to NULL 221 - BUG/MINOR: contrib/spoa-server: Updating references to free in case of failure 222 - BUG/MEDIUM: contrib/spoa-server: Fix ipv4_address used instead of ipv6_address 223 - BUG/MINOR: startup: haproxy -s cause 100% cpu 224 - BUG/MEDIUM: doc: Fix replace-path action description 225 - Revert "BUG/MINOR: http-rules: Replace path and query-string in "replace-path" action" 226 - BUG/MEDIUM: ssl: check OCSP calloc in ssl_sock_load_ocsp() 227 - BUG/MINOR: threads: work around a libgcc_s issue with chrooting 228 - BUILD: thread: limit the libgcc_s workaround to glibc only 229 - MINOR: Commit .gitattributes 230 - CLEANUP: Update .gitignore 231 - BUG/MINOR: auth: report valid crypto(3) support depending on build options 232 - BUG/MEDIUM: mux-h1: always apply the timeout on half-closed connections 233 - BUILD: threads: better workaround for late loading of libgcc_s 234 - BUG/MEDIUM: pattern: Renew the pattern expression revision when it is pruned 235 - MINOR: arg: Use chunk_destroy() to release string arguments 236 - BUG/MEDIUM: http-ana: Don't wait to send 1xx responses received from servers 237 - BUG/MEDIUM: ssl: does not look for all SNIs before chosing a certificate 238 - BUG/MINOR: ssl: verifyhost is case sensitive 239 - BUG/MINOR: server: report correct error message for invalid port on "socks4" 240 - BUG/MINOR: h2/trace: do not display "stream error" after a frame ACK 241 - BUG/MINOR: http-fetch: Don't set the sample type during the htx prefetch 242 - BUG/MEDIUM: h2: report frame bits only for handled types 243 - MINOR: h2/trace: also display the remaining frame length in traces 244 - BUG/MINOR: Fix memory leaks cfg_parse_peers 245 - MINOR: backend: make the "whole" option of balance uri take only one bit 246 - MINOR: backend: add a new "path-only" option to "balance uri" 247 - REGTESTS: add a few load balancing tests 248 - DOC: spoa-server: fix false friends `actually` 249 - BUG/MINOR: config: Fix memory leak on config parse listen 250 - BUG/MEDIUM: listeners: do not pause foreign listeners 251 - DOC: agent-check: fix typo in "fail" word expected reply 252 - REGTEST: fix host part in balance-uri-path-only.vtc 253 - REGTEST: make abns_socket.vtc require 1.8 254 - REGTEST: make map_regm_with_backref require 1.7 255 2562020/07/31 : 2.1.8 257 - BUG/MEDIUM: log: don't hold the log lock during writev() on a file descriptor 258 - BUG/MEDIUM: pattern: fix thread safety of pattern matching 259 - BUILD: make dladdr1 depend on glibc version and not __USE_GNU 260 - REGTESTS: Add missing OPENSSL to REQUIRE_OPTIONS for lua/txn_get_priv 261 - REGTESTS: Add missing OPENSSL to REQUIRE_OPTIONS for compression/lua_validation 262 - BUG/MINOR: ssl: fix ssl-{min,max}-ver with openssl < 1.1.0 263 - BUG/MEDIUM: ssl: crt-list must continue parsing on ERR_WARN 264 - MINOR: http: Add 410 to http-request deny 265 - MINOR: http: Add 404 to http-request deny 266 - BUG/MINOR: http: make smp_fetch_body() report that the contents may change 267 - BUG/MINOR: tcp-rules: tcp-response must check the buffer's fullness 268 - BUG/MEDIUM: ebtree: use a byte-per-byte memcmp() to compare memory blocks 269 - BUG/MINOR: spoe: add missing key length check before checking key names 270 - BUG/MINOR: cli: allow space escaping on the CLI 271 - BUG/MINOR: mworker/cli: fix the escaping in the master CLI 272 - BUG/MINOR: mworker/cli: fix semicolon escaping in master CLI 273 - REGTEST: http-rules: test spaces in ACLs 274 - REGTEST: http-rules: test spaces in ACLs with master CLI 275 - MEDIUM: map: make the "clear map" operation yield 276 - BUG/MINOR: systemd: Wait for network to be online 277 - REGTEST: Add a simple script to tests errorfile directives in proxy sections 278 - BUG/MINOR: spoe: correction of setting bits for analyzer 279 - BUG/MINOR: http_ana: clarify connection pointer check on L7 retry 280 - MINOR: spoe: Don't systematically create new applets if processing rate is low 281 - REGTEST: ssl: tests the ssl_f_* sample fetches 282 - REGTEST: ssl: add some ssl_c_* sample fetches test 283 - BUG/MEDIUM: fetch: Fix hdr_ip misparsing IPv4 addresses due to missing NUL 284 - MINOR: cli: make "show sess" stop at the last known session 285 - DOC: ssl: add "allow-0rtt" and "ciphersuites" in crt-list 286 - BUG/MEDIUM: pattern: Add a trailing \0 to match strings only if possible 287 - BUG/MINOR: proxy: fix dump_server_state()'s misuse of the trash 288 - BUG/MINOR: proxy: always initialize the trash in show servers state 289 - DOC: configuration: add missing index entries for tune.pool-{low,high}-fd-ratio 290 - DOC: configuration: fix alphabetical ordering for tune.pool-{high,low}-fd-ratio 291 - BUILD: haproxy: fix build error when RLIMIT_AS is not set 292 - BUG/MINOR: http_act: don't check capture id in backend (2) 293 - BUG/MINOR: mux-h1: Fix the splicing in TUNNEL mode 294 - BUG/MINOR: mux-h1: Don't read data from a pipe if the mux is unable to receive 295 - BUG/MINOR: mux-h1: Disable splicing only if input data was processed 296 - BUG/MEDIUM: mux-h1: Disable splicing for the conn-stream if read0 is received 297 - MINOR: mux-h1: Improve traces about the splicing 298 - BUG/MEDIUM: mux-h1: Subscribe rather than waking up in h1_rcv_buf() 299 - MINOR: connection: move the CO_FL_WAIT_ROOM cleanup to the reader only 300 - BUG/MEDIUM: connection: Continue to recv data to a pipe when the FD is not ready 301 - BUG/MINOR: backend: Remove CO_FL_SESS_IDLE if a client remains on the last server 302 - MINOR: http: Add support for http 413 status 303 - DOC: configuration: remove obsolete mentions of H2 being converted to HTTP/1.x 304 - BUG/MINOR: sample: Free str.area in smp_check_const_bool 305 - BUG/MINOR: sample: Free str.area in smp_check_const_meth 306 - BUG/MEDIUM: lists: add missing store barrier on MT_LIST_BEHEAD() 307 - BUG/MEDIUM: lists: add missing store barrier in MT_LIST_ADD/MT_LIST_ADDQ 308 - CONTRIB: da: fix memory leak in dummy function da_atlas_open() 309 - BUG/MEDIUM: mux-h1: Continue to process request when switching in tunnel mode 310 - BUG/MINOR: mux-fcgi: Handle empty STDERR record 311 - BUG/MINOR: mux-fcgi: Set conn state to RECORD_P when skipping the record padding 312 - BUG/MINOR: mux-fcgi: Set flags on the right stream field for empty FCGI_STDOUT 313 - BUG/MEDIUM: log: issue mixing sampled to not sampled log servers. 314 - BUG/MEDIUM: fcgi-app: fix memory leak in fcgi_flt_http_headers 315 - BUG/MEDIUM: server: resolve state file handle leak on reload 316 - BUG/MEDIUM: server: fix possibly uninitialized state file on close 317 - BUG/MEDIUM: channel: Be aware of SHUTW_NOW flag when output data are peeked 318 - BUILD: ebtree: fix build on libmusl after recent introduction of eb_memcmp() 319 - REGEST: Add reg tests about error files 320 - BUG/MINOR: threads: Don't forget to init each thread toremove_lock. 321 - MINOR: pools: increase MAX_BASE_POOLS to 64 322 - BUILD: thread: add parenthesis around values of locking macros 323 - BUG/MINOR: cfgparse: don't increment linenum on incomplete lines 324 - BUG/MEDIUM: resolve: fix init resolving for ring and peers section. 325 - BUG/MAJOR: dns: Make the do-resolve action thread-safe 326 - BUG/MEDIUM: dns: Release answer items when a DNS resolution is freed 327 - BUG/MINOR: mux-fcgi: Don't url-decode the QUERY_STRING parameter anymore 328 - BUG/MEDIUM: mux-h1: Wakeup the H1C in h1_rcv_buf() if more data are expected 329 - BUG/MEDIUM: mux-h1: Disable the splicing when nothing is received 330 - BUILD: tools: fix build with static only toolchains 331 - BUG/MINOR: debug: Don't dump the lua stack if it is not initialized 332 - MEDIUM: lua: Add support for the Lua 5.4 333 - BUG/MEDIUM: dns: Don't yield in do-resolve action on a final evaluation 334 - BUG/MINOR: tcp-rules: Set the inspect-delay when a tcp-response action yields 335 - MINOR: connection: Preinstall the mux for non-ssl connect 336 - MINOR: stream-int: Be sure to have a mux to do sends and receives 337 - SCRIPTS: announce-release: add the link to the wiki in the announce messages 338 - BUG/MEDIUM: backend: always attach the transport before installing the mux 339 3402020/06/09 : 2.1.7 341 - BUG/MAJOR: http-htx: Don't forget to copy error messages from defaults sections 342 3432020/06/08 : 2.1.6 344 - Revert "BUG/MEDIUM: connections: force connections cleanup on server changes" 345 - SCRIPTS: publish-release: pass -n to gzip to remove timestamp 346 - BUG/MINOR: peers: fix internal/network key type mapping. 347 - BUG/MEDIUM: lua: Reset analyse expiration timeout before executing a lua action 348 - BUG/MEDIUM: http-htx: Duplicate error messages as raw data instead of string 349 - BUG/MEDIUM: hlua: Lock pattern references to perform set/add/del operations 350 - BUG/MEDIUM: contrib/prometheus-exporter: Properly set flags to dump metrics 351 - BUG/MEDIUM: mworker: fix the copy of options in copy_argv() 352 - BUG/MINOR: init: -x can have a parameter starting with a dash 353 - BUG/MINOR: init: -S can have a parameter starting with a dash 354 - BUG/MEDIUM: mworker: fix the reload with an -- option 355 - BUG/MINOR: ssl: fix a trash buffer leak in some error cases 356 - BUG/MINOR: mworker: fix a memleak when execvp() failed 357 3582020/05/29 : 2.1.5 359 - BUG/MINOR: protocol_buffer: Wrong maximum shifting. 360 - MINOR: ssl: improve the errors when a crt can't be open 361 - BUG/MINOR: ssl/cli: memory leak in 'set ssl cert' 362 - BUG/MINOR: ssl: memleak of the struct cert_key_and_chain 363 - BUG/MINOR: connection: always send address-less LOCAL PROXY connections 364 - BUG/MINOR: peers: Incomplete peers sections should be validated. 365 - DOC: hashing: update link to hashing functions 366 - MINOR: version: Show uname output in display_version() 367 - DOC: Improve documentation on http-request set-src 368 - BUG/MINOR: ssl: default settings for ssl server options are not used 369 - BUG/MEDIUM: http-ana: Handle NTLM messages correctly. 370 - BUG/MINOR: tools: fix the i386 version of the div64_32 function 371 - BUG/MINOR: http: make url_decode() optionally convert '+' to SP 372 - DOC: option logasap does not depend on mode 373 - MEDIUM: memory: make pool_gc() run under thread isolation 374 - MINOR: contrib: make the peers wireshark dissector a plugin 375 - BUG/MINOR: check: Update server address and port to execute an external check 376 - MINOR: checks: Add a way to send custom headers and payload during http chekcs 377 - BUG/MINOR: checks: Respect the no-check-ssl option 378 - BUG/MEDIUM: server/checks: Init server check during config validity check 379 - BUG/MINOR: checks: chained expect will not properly wait for enough data 380 - BUG/MINOR: obj_type: Handle stream object in obj_base_ptr() function 381 - BUG/MINOR: mux-fcgi: Be sure to have a connection as session's origin to use it 382 - BUG/MEDIUM: capture: capture-req/capture-res converters crash without a stream 383 - BUG/MEDIUM: capture: capture.{req,res}.* crash without a stream 384 - BUG/MEDIUM: http: the "http_first_req" sample fetch could crash without a steeam 385 - BUG/MEDIUM: http: the "unique-id" sample fetch could crash without a steeam 386 - BUG/MEDIUM: sample: make the CPU and latency sample fetches check for a stream 387 - BUG/MEDIUM: listener: mark the thread as not stuck inside the loop 388 - MINOR: threads: export the POSIX thread ID in panic dumps 389 - BUG/MINOR: debug: properly use long long instead of long for the thread ID 390 - BUG/MEDIUM: shctx: really check the lock's value while waiting 391 - BUG/MEDIUM: shctx: bound the number of loops that can happen around the lock 392 - MINOR: stream: report the list of active filters on stream crashes 393 - MINOR: haproxy: export run_poll_loop 394 - MINOR: tools: add new function dump_addr_and_bytes() 395 - MINOR: tools: add resolve_sym_name() to resolve function pointers 396 - MINOR: debug: use resolve_sym_name() to dump task handlers 397 - MINOR: cli: make "show fd" rely on resolve_sym_name() 398 - MEDIUM: debug: add support for dumping backtraces of stuck threads 399 - MINOR: debug: call backtrace() once upon startup 400 - BUILD: Makefile: include librt before libpthread 401 - MINOR: wdt: do not depend on USE_THREAD 402 - MINOR: debug: report the number of entries in the backtrace 403 - MINOR: debug: improve backtrace() on aarch64 and possibly other systems 404 - MINOR: debug: use our own backtrace function on clang+x86_64 405 - MINOR: debug: dump the whole trace if we can't spot the starting point 406 - BUILD: tools: unbreak resolve_sym_name() on non-GNU platforms 407 - BUILD: tools: rely on __ELF__ not USE_DL to enable use of dladdr() 408 - BUILD: Makefile: add linux-musl to TARGET 409 - REGTEST: ssl: test the client certificate authentication 410 - REGTEST: http-rules: Require PCRE or PCRE2 option to run map_redirect script 411 - Revert "BUG/MINOR: connection: always send address-less LOCAL PROXY connections" 412 - Revert "BUG/MINOR: connection: make sure to correctly tag local PROXY connections" 413 - BUG/MINOR: checks/server: use_ssl member must be signed 414 - BUG/MINOR: checks: Compute the right HTTP request length for HTTP health checks 415 - BUG/MINOR: checks: Remove a warning about http health checks 416 - BUG/MEDIUM: mux_fcgi: Free the FCGI connection at the end of fcgi_release() 417 - BUG/MEDIUM: mux-fcgi: Fix wrong test on FCGI_CF_KEEP_CONN in fcgi_detach() 418 - BUG/MEDIUM: connections: force connections cleanup on server changes 419 - BUG/MEDIUM: h1: Don't compare host and authority if only h1 headers are parsed 420 - BUG/MEDIUM: ssl: fix the id length check within smp_fetch_ssl_fc_session_id() 421 - CLEANUP: connections: align function declaration 422 - BUG/MINOR: sample: Set the correct type when a binary is converted to a string 423 - BUG/MINOR: threads: fix multiple use of argument inside HA_ATOMIC_CAS() 424 - BUG/MINOR: threads: fix multiple use of argument inside HA_ATOMIC_UPDATE_{MIN,MAX}() 425 - BUG/MEDIUM: lua: Fix dumping of stick table entries for STD_T_DICT 426 - BUG/MINOR: config: Make use_backend and use-server post-parsing less obscur 427 - BUG/MINOR: http-ana: fix NTLM response parsing again 428 - BUG/MEDIUM: http_ana: make the detection of NTLM variants safer 429 - BUG/MINOR: cfgparse: Abort parsing the current line if an invalid \x sequence is encountered 430 - BUG/MINOR: pools: use %u not %d to report pool stats in "show pools" 431 - BUG/MINOR: pollers: remove uneeded free in global init 432 - BUG/MINOR: soft-stop: always wake up waiting threads on stopping 433 - BUILD: select: only declare existing local labels to appease clang 434 - BUG/MEDIUM: streams: Remove SF_ADDR_SET if we're retrying due to L7 retry. 435 - BUG/MEDIUM: stream: Only allow L7 retries when using HTTP. 436 - BUG/MINOR: cache: Don't needlessly test "cache" keyword in parse_cache_flt() 437 - BUG/MAJOR: mux-fcgi: Stop sending loop if FCGI stream is blocked for any reason 438 - BUG/MEDIUM: ring: write-lock the ring while attaching/detaching 439 - BUG/MINOR: checks: Respect check-ssl param when a port or an addr is specified 440 - BUG/MINOR: server: Fix server_finalize_init() to avoid unused variable 441 - DOC: retry-on can only be used with mode http 442 - DOC/MINOR: halog: Add long help info for ic flag 443 - DOC: SPOE is no longer experimental 444 - BUG/MINOR: logs: prevent double line returns in some events. 445 - REGTESTS: checks: Fix tls_health_checks when IPv6 addresses are used 446 - BUG/MEDIUM: logs: fix trailing zeros on log message. 447 - BUG/MINOR: lua: Add missing string length for lua sticktable lookup 448 - BUG/MINOR: nameservers: fix error handling in parsing of resolv.conf 449 4502020/04/02 : 2.1.4 451 - SCRIPTS: make announce-release executable again 452 - BUG/MINOR: namespace: avoid closing fd when socket failed in my_socketat 453 - BUG/MEDIUM: muxes: Use the right argument when calling the destroy method. 454 - BUG/MINOR: mux-fcgi: Forbid special characters when matching PATH_INFO param 455 - MINOR: mux-fcgi: Make the capture of the path-info optional in pathinfo regex 456 - SCRIPTS: announce-release: use mutt -H instead of -i to include the draft 457 - MINOR: http-htx: Add a function to retrieve the headers size of an HTX message 458 - MINOR: filters: Forward data only if the last filter forwards something 459 - BUG/MINOR: filters: Count HTTP headers as filtered data but don't forward them 460 - BUG/MINOR: http-htx: Don't return error if authority is updated without changes 461 - BUG/MINOR: http-ana: Matching on monitor-uri should be case-sensitive 462 - MINOR: http-ana: Match on the path if the monitor-uri starts by a / 463 - BUG/MAJOR: http-ana: Always abort the request when a tarpit is triggered 464 - MINOR: ist: add an iststop() function 465 - BUG/MINOR: http: http-request replace-path duplicates the query string 466 - BUG/MEDIUM: shctx: make sure to keep all blocks aligned 467 - MINOR: compiler: move CPU capabilities definition from config.h and complete them 468 - BUG/MEDIUM: ebtree: don't set attribute packed without unaligned access support 469 - BUILD: fix recent build failure on unaligned archs 470 - CLEANUP: cfgparse: Fix type of second calloc() parameter 471 - BUG/MINOR: sample: fix the json converter's endian-sensitivity 472 - BUG/MEDIUM: ssl: fix several bad pointer aliases in a few sample fetch functions 473 - BUG/MINOR: connection: make sure to correctly tag local PROXY connections 474 - MINOR: compiler: add new alignment macros 475 - BUILD: ebtree: improve architecture-specific alignment 476 - BUG/MINOR: h2: reject again empty :path pseudo-headers 477 - BUG/MINOR: sample: Make sure to return stable IDs in the unique-id fetch 478 - BUG/MINOR: dns: ignore trailing dot 479 - BUG/MINOR: http-htx: Do case-insensive comparisons on Host header name 480 - MINOR: contrib/prometheus-exporter: Add heathcheck status/code in server metrics 481 - MINOR: contrib/prometheus-exporter: Add the last heathcheck duration metric 482 - BUG/MEDIUM: random: initialize the random pool a bit better 483 - MINOR: tools: add 64-bit rotate operators 484 - BUG/MEDIUM: random: implement a thread-safe and process-safe PRNG 485 - MINOR: backend: use a single call to ha_random32() for the random LB algo 486 - BUG/MINOR: checks/threads: use ha_random() and not rand() 487 - BUG/MAJOR: list: fix invalid element address calculation 488 - MINOR: debug: report the task handler's pointer relative to main 489 - BUG/MEDIUM: debug: make the debug_handler check for the thread in threads_to_dump 490 - MINOR: haproxy: export main to ease access from debugger 491 - BUILD: tools: remove obsolete and conflicting trace() from standard.c 492 - BUG/MINOR: wdt: do not return an error when the watchdog couldn't be enabled 493 - DOC: fix incorrect indentation of http_auth_* 494 - OPTIM: startup: fast unique_id allocation for acl. 495 - BUG/MINOR: pattern: Do not pass len = 0 to calloc() 496 - DOC: configuration.txt: fix various typos 497 - DOC: assorted typo fixes in the documentation and Makefile 498 - BUG/MINOR: init: make the automatic maxconn consider the max of soft/hard limits 499 - BUG/MAJOR: proxy_protocol: Properly validate TLV lengths 500 - REGTEST: make the PROXY TLV validation depend on version 2.2 501 - BUG/MINOR: filters: Use filter offset to decude the amount of forwarded data 502 - BUG/MINOR: filters: Forward everything if no data filters are called 503 - MINOR: htx: Add a function to return a block at a specific offset 504 - BUG/MEDIUM: cache/filters: Fix loop on HTX blocks caching the response payload 505 - BUG/MEDIUM: compression/filters: Fix loop on HTX blocks compressing the payload 506 - BUG/MINOR: http-ana: Reset request analysers on a response side error 507 - BUG/MINOR: lua: Ignore the reserve to know if a channel is full or not 508 - BUG/MINOR: http-rules: Preserve FLT_END analyzers on reject action 509 - BUG/MINOR: http-rules: Fix a typo in the reject action function 510 - BUG/MINOR: rules: Preserve FLT_END analyzers on silent-drop action 511 - BUG/MINOR: rules: Increment be_counters if backend is assigned for a silent-drop 512 - DOC: fix typo about no-tls-tickets 513 - DOC: improve description of no-tls-tickets 514 - DOC: assorted typo fixes in the documentation 515 - DOC: ssl: clarify security implications of TLS tickets 516 - BUILD: wdt: only test for SI_TKILL when compiled with thread support 517 - BUG/MEDIUM: mt_lists: Make sure we set the deleted element to NULL; 518 - MINOR: mt_lists: Appease gcc. 519 - BUG/MEDIUM: random: align the state on 2*64 bits for ARM64 520 - BUG/MEDIUM: pools: Always update free_list in pool_gc(). 521 - BUG/MINOR: haproxy: always initialize sleeping_thread_mask 522 - BUG/MINOR: listener/mq: do not dispatch connections to remote threads when stopping 523 - BUG/MINOR: haproxy/threads: try to make all threads leave together 524 - DOC: proxy_protocol: Reserve TLV type 0x05 as PP2_TYPE_UNIQUE_ID 525 - DOC: correct typo in alert message about rspirep 526 - BUILD: on ARM, must be linked to libatomic. 527 - BUILD: makefile: fix regex syntax in ARM platform detection 528 - BUILD: makefile: fix expression again to detect ARM platform 529 - BUG/MEDIUM: peers: resync ended with RESYNC_PARTIAL in wrong cases. 530 - DOC: assorted typo fixes in the documentation 531 - MINOR: wdt: Move the definitions of WDTSIG and DEBUGSIG into types/signal.h. 532 - BUG/MEDIUM: wdt: Don't ignore WDTSIG and DEBUGSIG in __signal_process_queue(). 533 - MINOR: memory: Change the flush_lock to a spinlock, and don't get it in alloc. 534 - BUG/MINOR: connections: Make sure we free the connection on failure. 535 - REGTESTS: use "command -v" instead of "which" 536 - REGTEST: increase timeouts on the seamless-reload test 537 - BUG/MINOR: haproxy/threads: close a possible race in soft-stop detection 538 - BUG/MINOR: peers: init bind_proc to 1 if it wasn't initialized 539 - BUG/MINOR: peers: avoid an infinite loop with peers_fe is NULL 540 - BUG/MINOR: peers: Use after free of "peers" section. 541 - MINOR: listener: add so_name sample fetch 542 - BUILD: ssl: only pass unsigned chars to isspace() 543 - BUG/MINOR: stats: Fix color of draining servers on stats page 544 - DOC: internals: Fix spelling errors in filters.txt 545 - MINOR: http-rules: Add a flag on redirect rules to know the rule direction 546 - BUG/MINOR: http_ana: make sure redirect flags don't have overlapping bits 547 - MINOR: http-rules: Handle the rule direction when a redirect is evaluated 548 - BUG/MINOR: http-ana: Reset request analysers on error when waiting for response 549 - BUG/CRITICAL: hpack: never index a header into the headroom after wrapping 550 5512020/02/12 : 2.1.3 552 - BUG/MINOR: checks: refine which errno values are really errors. 553 - BUG/MEDIUM: checks: Only attempt to do handshakes if the connection is ready. 554 - BUG/MEDIUM: connections: Hold the lock when wanting to kill a connection. 555 - MINOR: config: disable busy polling on old processes 556 - MINOR: ssl: Remove unused variable "need_out". 557 - BUG/MINOR: h1: Report the right error position when a header value is invalid 558 - BUG/MINOR: proxy: Fix input data copy when an error is captured 559 - BUG/MEDIUM: http-ana: Truncate the response when a redirect rule is applied 560 - BUG/MINOR: channel: inject output data at the end of output 561 - BUG/MEDIUM: session: do not report a failure when rejecting a session 562 - BUG/MINOR: stream-int: Don't trigger L7 retry if max retries is already reached 563 - BUG/MEDIUM: tasks: Use the MT macros in tasklet_free(). 564 - BUG/MINOR: mux-h2: use a safe list_for_each_entry in h2_send() 565 - BUG/MEDIUM: mux-h2: fix missing test on sending_list in previous patch 566 - BUG/MEDIUM: mux-h2: don't stop sending when crossing a buffer boundary 567 - BUG/MINOR: cli/mworker: can't start haproxy with 2 programs 568 - REGTEST: mcli/mcli_start_progs: start 2 programs 569 - BUG/MEDIUM: mworker: remain in mworker mode during reload 570 - BUG/MEDIUM: mux_h1: Don't call h1_send if we subscribed(). 571 - BUG/MAJOR: hashes: fix the signedness of the hash inputs 572 - REGTEST: add sample_fetches/hashes.vtc to validate hashes 573 - BUG/MEDIUM: cli: _getsocks must send the peers sockets 574 - BUG/MINOR: stream: don't mistake match rules for store-request rules 575 - BUG/MEDIUM: connection: add a mux flag to indicate splice usability 576 - BUG/MINOR: pattern: handle errors from fgets when trying to load patterns 577 - BUG/MINOR: cache: Fix leak of cache name in error path 578 - BUG/MINOR: dns: Make dns_query_id_seed unsigned 579 - BUG/MINOR: 51d: Fix bug when HTX is enabled 580 - BUILD: pattern: include errno.h 581 - BUG/MINOR: http-ana/filters: Wait end of the http_end callback for all filters 582 - BUG/MINOR: http-rules: Remove buggy deinit functions for HTTP rules 583 - BUG/MINOR: stick-table: Use MAX_SESS_STKCTR as the max track ID during parsing 584 - BUG/MINOR: tcp-rules: Fix memory releases on error path during action parsing 585 - BUG/MINOR: ssl: ssl_sock_load_ocsp_response_from_file memory leak 586 - BUG/MINOR: ssl: ssl_sock_load_issuer_file_into_ckch memory leak 587 - BUG/MINOR: ssl: ssl_sock_load_sctl_from_file memory leak 588 - MINOR: proxy/http-ana: Add support of extra attributes for the cookie directive 589 - BUG/MINOR: http_act: don't check capture id in backend 590 - BUG/MEDIUM: netscaler: Don't forget to allocate storage for conn->src/dst. 591 - BUG/MINOR: ssl: ssl_sock_load_pem_into_ckch is not consistent 592 - BUG/MINOR: ssl/cli: free the previous ckch content once a PEM is loaded 593 - CLEANUP: stats: shut up a wrong null-deref warning from gcc 9.2 594 - BUG/MINOR: ssl: increment issuer refcount if in chain 595 - BUG/MINOR: ssl: memory leak w/ the ocsp_issuer 596 - BUG/MINOR: ssl: typo in previous patch 597 - BUG/MINOR: ssl/cli: ocsp_issuer must be set w/ "set ssl cert" 598 - BUG/MEDIUM: 0rtt: Only consider the SSL handshake. 599 - BUG/MINOR: stktable: report the current proxy name in error messages 600 - BUG/MEDIUM: mux-h2: make sure we don't emit TE headers with anything but "trailers" 601 - BUILD: cfgparse: silence a bogus gcc warning on 32-bit machines 602 - MINOR: lua: Add hlua_prepend_path function 603 - MINOR: lua: Add lua-prepend-path configuration option 604 - MINOR: lua: Add HLUA_PREPEND_C?PATH build option 605 - BUG/MEDIUM: ssl: Don't forget to free ctx->ssl on failure. 606 - BUG/MINOR: tcpchecks: fix the connect() flags regarding delayed ack 607 - BUG/MEDIUM: pipe: fix a use-after-free in case of pipe creation error 608 - BUG/MINOR: ssl: Possible memleak when allowing the 0RTT data buffer. 609 - BUG/MINOR: connection: fix ip6 dst_port copy in make_proxy_line_v2 610 - BUG/MEDIUM: connections: Don't forget to unlock when killing a connection. 611 - BUG/MEDIUM: memory_pool: Update the seq number in pool_flush(). 612 - MINOR: memory: Only init the pool spinlock once. 613 - BUG/MEDIUM: memory: Add a rwlock before freeing memory. 614 - BUG/MAJOR: memory: Don't forget to unlock the rwlock if the pool is empty. 615 - BUG/MINOR: ssl: we may only ignore the first 64 errors 616 - BUG/MINOR: ssl: clear the SSL errors on DH loading failure 617 - CONTRIB: debug: add missing flags SF_HTX and SF_MUX 618 - CONTRIB: debug: add the possibility to decode the value as certain types only 619 - CONTRIB: debug: support reporting multiple values at once 620 - MINOR: acl: Warn when an ACL is named 'or' 621 - CONTRIB: debug: also support reading values from stdin 622 - SCRIPTS: announce-release: place the send command in the mail's header 623 - SCRIPTS: announce-release: allow the user to force to overwrite old files 624 - BUG/MEDIUM: ssl/cli: 'commit ssl cert' wrong SSL_CTX init 625 - DOC: schematic of the SSL certificates architecture 626 - BUG/MINOR: unix: better catch situations where the unix socket path length is close to the limit 627 - BUG/MINOR: dns: allow 63 char in hostname 628 - BUG/MEDIUM: listener: only consider running threads when resuming listeners 629 - BUG/MINOR: listener: enforce all_threads_mask on bind_thread on init 630 - BUG/MINOR: tcp: avoid closing fd when socket failed in tcp_bind_listener 631 - MINOR: build: add aix72-gcc build TARGET and power{8,9} CPUs 632 - DOC: word converter ignores delimiters at the start or end of input string 633 - MINOR: htx: Add a function to append an HTX message to another one 634 - MINOR: htx/channel: Add a function to copy an HTX message in a channel's buffer 635 - BUG/MINOR: http-ana: Don't overwrite outgoing data when an error is reported 636 - BUG/MINOR: http-ana: Set HTX_FL_PROXY_RESP flag if a server perform a redirect 637 - BUG/MINOR: tcp: don't try to set defaultmss when value is negative 638 6392019/12/21 : 2.1.2 640 - DOC: clarify the fact that replace-uri works on a full URI 641 - BUG/MINOR: sample: fix the closing bracket and LF in the debug converter 642 - BUG/MINOR: sample: always check converters' arguments 643 - MINOR: sample: Validate the number of bits for the sha2 converter 644 - BUG/MEDIUM: ssl: Don't set the max early data we can receive too early. 645 - MINOR: debug: support logging to various sinks 646 - MINOR: http: add a new "replace-path" action 647 - MINOR: task: only check TASK_WOKEN_ANY to decide to requeue a task 648 - BUG/MAJOR: task: add a new TASK_SHARED_WQ flag to fix foreing requeuing 649 - BUG/MEDIUM: ssl: Revamp the way early data are handled. 650 - MINOR: fd/threads: make _GET_NEXT()/_GET_PREV() use the volatile attribute 651 - BUG/MEDIUM: fd/threads: fix a concurrency issue between add and rm on the same fd 652 - BUG/MINOR: ssl: openssl-compat: Fix getm_ defines 653 - BUG/MEDIUM: state-file: do not allocate a full buffer for each server entry 654 - BUG/MINOR: state-file: do not store duplicates in the global tree 655 - BUG/MINOR: state-file: do not leak memory on parse errors 656 - BUG/MEDIUM: stream: Be sure to never assign a TCP backend to an HTX stream 657 - BUILD: ssl: improve SSL_CTX_set_ecdh_auto compatibility 658 6592019/12/11 : 2.1.1 660 - BUG/MINOR: contrib/prometheus-exporter: decode parameter and value only 661 - BUG/MINOR: h1: Don't test the host header during response parsing 662 - BUILD/MINOR: trace: fix use of long type in a few printf format strings 663 - BUG/MINOR: http-htx: Don't make http_find_header() fail if the value is empty 664 - DOC: ssl/cli: set/commit/abort ssl cert 665 - BUG/MINOR: ssl: fix SSL_CTX_set1_chain compatibility for openssl < 1.0.2 666 - BUG/MINOR: fcgi-app: Make the directive pass-header case insensitive 667 - BUG/MINOR: stats: Fix HTML output for the frontends heading 668 - BUG/MINOR: ssl/cli: 'ssl cert' cmd only usable w/ admin rights 669 - DOC: Clarify behavior of server maxconn in HTTP mode 670 - DOC: clarify matching strings on binary fetches 671 - DOC: Fix ordered list in summary 672 - DOC: move the "group" keyword at the right place 673 - BUG/MEDIUM: stream-int: don't subscribed for recv when we're trying to flush data 674 - BUG/MINOR: stream-int: avoid calling rcv_buf() when splicing is still possible 675 - BUG/MINOR: ssl/cli: don't overwrite the filters variable 676 - BUG/MEDIUM: listener/thread: fix a race when pausing a listener 677 - BUG/MINOR: ssl: certificate choice can be unexpected with openssl >= 1.1.1 678 - BUG/MEDIUM: mux-h1: Never reuse H1 connection if a shutw is pending 679 - BUG/MINOR: mux-h1: Don't rely on CO_FL_SOCK_RD_SH to set H1C_F_CS_SHUTDOWN 680 - BUG/MINOR: mux-h1: Fix conditions to know whether or not we may receive data 681 - BUG/MEDIUM: tasks: Make sure we switch wait queues in task_set_affinity(). 682 - BUG/MEDIUM: checks: Make sure we set the task affinity just before connecting. 683 - BUG/MINOR: mux-h1: Be sure to set CS_FL_WANT_ROOM when EOM can't be added 684 - BUG/MEDIUM: mux-fcgi: Handle cases where the HTX EOM block cannot be inserted 685 - BUG/MINOR: proxy: make soft_stop() also close FDs in LI_PAUSED state 686 - BUG/MINOR: listener/threads: always use atomic ops to clear the FD events 687 - BUG/MINOR: listener: also clear the error flag on a paused listener 688 - BUG/MEDIUM: listener/threads: fix a remaining race in the listener's accept() 689 - DOC: document the listener state transitions 690 - BUG/MEDIUM: kqueue: Make sure we report read events even when no data. 691 - BUG/MAJOR: dns: add minimalist error processing on the Rx path 692 - BUG/MEDIUM: proto_udp/threads: recv() and send() must not be exclusive. 693 - DOC: listeners: add a few missing transitions 694 - BUG/MINOR: tasks: only requeue a task if it was already in the queue 695 - DOC: proxies: HAProxy only supports 3 connection modes 696 - DOC: remove references to the outdated architecture.txt 697 - BUG/MINOR: log: fix minor resource leaks on logformat error path 698 - BUG/MINOR: mworker: properly pass SIGTTOU/SIGTTIN to workers 699 - BUG/MINOR: listener: do not immediately resume on transient error 700 - BUG/MINOR: server: make "agent-addr" work on default-server line 701 - BUG/MINOR: listener: fix off-by-one in state name check 702 - BUILD/MINOR: unix sockets: silence an absurd gcc warning about strncpy() 703 7042019/11/25 : 2.1.0 705 - BUG/MINOR: init: fix set-dumpable when using uid/gid 706 - MINOR: init: avoid code duplication while setting identify 707 - BUG/MINOR: ssl: ssl_pkey_info_index ex_data can store a dereferenced pointer 708 - BUG/MINOR: ssl: fix crt-list neg filter for openssl < 1.1.1 709 - MINOR: peers: Alway show the table info for disconnected peers. 710 - MINOR: peers: Add TX/RX heartbeat counters. 711 - MINOR: peers: Add debugging information to "show peers". 712 - BUG/MINOR: peers: Wrong null "server_name" data field handling. 713 - MINOR: ssl/cli: 'abort ssl cert' deletes an on-going transaction 714 - BUG/MEDIUM: mworker: don't fill the -sf argument with -1 during the reexec 715 - BUG/MINOR: peers: "peer alive" flag not reset when deconnecting. 716 - BUILD/MINOR: ssl: fix compiler warning about useless statement 717 - BUG/MEDIUM: stream-int: Don't loose events on the CS when an EOS is reported 718 - MINOR: contrib/prometheus-exporter: filter exported metrics by scope 719 - MINOR: contrib/prometheus-exporter: Add a param to ignore servers in maintenance 720 - BUILD: debug: Avoid warnings in dev mode with -02 because of some BUG_ON tests 721 - BUG/MINOR: mux-h1: Fix tunnel mode detection on the response path 722 - BUG/MINOR: http-ana: Properly catch aborts during the payload forwarding 723 - DOC: Update http-buffer-request description to remove the part about chunks 724 - BUG/MINOR: stream-int: Fix si_cs_recv() return value 725 - DOC: internal: document the init calls 726 - MEDIUM: dns: Add resolve-opts "ignore-weight" 727 - MINOR: ssl: ssl_sock_prepare_ctx() return an error code 728 - MEDIUM: ssl/cli: apply SSL configuration on SSL_CTX during commit 729 - MINOR: ssl/cli: display warning during 'commit ssl cert' 730 - MINOR: version: report the version status in "haproxy -v" 731 - MINOR: version: emit the link to the known bugs in output of "haproxy -v" 732 - DOC: Add documentation about the use-service action 733 - MINOR: ssl: fix possible null dereference in error handling 734 - BUG/MINOR: ssl: fix curve setup with LibreSSL 735 - BUG/MINOR: ssl: Stop passing dynamic strings as format arguments 736 - CLEANUP: ssl: check if a transaction exists once before setting it 737 - BUG/MINOR: cli: fix out of bounds in -S parser 738 - MINOR: ist: add ist_find_ctl() 739 - BUG/MAJOR: h2: reject header values containing invalid chars 740 - BUG/MAJOR: h2: make header field name filtering stronger 741 - BUG/MAJOR: mux-h2: don't try to decode a response HEADERS frame in idle state 742 - MINOR: h2: add a function to report H2 error codes as strings 743 - MINOR: mux-h2/trace: report the connection and/or stream error code 744 - SCRIPTS: create-release: show the correct origin name in suggested commands 745 - SCRIPTS: git-show-backports: add "-s" to proposed cherry-pick commands 746 - BUG/MEDIUM: trace: fix a typo causing an incorrect startup error 747 - BUILD: reorder the objects in the makefile 748 - DOC: mention in INSTALL haproxy 2.1 is a stable stable version 749 - MINOR: version: indicate that this version is stable 750 7512019/11/15 : 2.1-dev5 752 - BUG/MEDIUM: ssl/cli: don't alloc path when cert not found 753 - BUG/MINOR: ssl/cli: unable to update a certificate without bundle extension 754 - BUG/MINOR: ssl/cli: fix an error when a file is not found 755 - MINOR: ssl/cli: replace the default_ctx during 'commit ssl cert' 756 - DOC: fix date and http_date keywords syntax 757 - MINOR: peers: Add "log" directive to "peers" section. 758 - BUG/MEDIUM: mux-h1: Disable splicing for chunked messages 759 - BUG/MEDIUM: stream: Be sure to support splicing at the mux level to enable it 760 - MINOR: flt_trace: Rename macros to print trace messages 761 - MINOR: trace: Add a set of macros to trace events if HA is compiled with debug 762 - MEDIUM: stream/trace: Register a new trace source with its events 763 - MINOR: doc: http-reuse connection pool fix 764 - BUG/MEDIUM: stream: Be sure to release allocated captures for TCP streams 765 - MINOR: http-ana: Remove the unused function http_reset_txn() 766 - BUG/MINOR: action: do-resolve now use cached response 767 - BUG: dns: timeout resolve not applied for valid resolutions 768 - DOC: management: fix typo on "cache_lookups" stats output 769 - BUG/MINOR: stream: init variables when the list is empty 770 - BUG/MEDIUM: tasks: Make tasklet_remove_from_tasklet_list() no matter the tasklet. 771 - BUG/MINOR: queue/threads: make the queue unlinking atomic 772 - BUG/MEDIUM: Make sure we leave the session list in session_free(). 773 - CLEANUP: session: slightly simplify idle connection cleanup logic 774 - MINOR: memory: also poison the area on freeing 775 - CLEANUP: cli: use srv_shutdown_streams() instead of open-coding it 776 - CLEANUP: stats: use srv_shutdown_streams() instead of open-coding it 777 - BUG/MEDIUM: listeners: always pause a listener on out-of-resource condition 778 - BUILD: contrib/da: remove an "unused" warning 779 - BUG/MEDIUM: filters: Don't call TCP callbacks for HTX streams 780 - MEDIUM: filters: Adapt filters API to allow again TCP filtering on HTX streams 781 - MINOR: freq_ctr: Make the sliding window sums thread-safe 782 - MINOR: stream: Remove the lock on the proxy to update time stats 783 - MINOR: counters: Add fields to store the max observed for {q,c,d,t}_time 784 - MINOR: stats: Report max times in addition of the averages for sessions 785 - MINOR: contrib/prometheus-exporter: Report metrics about max times for sessions 786 - BUG/MINOR: contrib/prometheus-exporter: Rename some metrics 787 - MINOR: contrib/prometheus-exporter: report the number of idle conns per server 788 - DOC: Add missing stats fields in the management manual 789 - BUG/MINOR: mux-h1: Properly catch parsing errors on payload and trailers 790 - BUG/MINOR: mux-h1: Don't set CS_FL_EOS on a read0 when receiving data to pipe 791 - MINOR: mux-h1: Set EOI on the conn-stream when EOS is reported in TUNNEL state 792 - MINOR: sink: Set the default max length for a message to BUFSIZE 793 - MINOR: ring: make the parse function automatically set the handler/release 794 - BUG/MINOR: log: make "show startup-log" use a ring buffer instead 795 - MINOR: stick-table: allow sc-set-gpt0 to set value from an expression 796 7972019/11/03 : 2.1-dev4 798 - BUG/MINOR: cli: don't call the kw->io_release if kw->parse failed 799 - BUG/MINOR: mux-h2: Don't pretend mux buffers aren't full anymore if nothing sent 800 - BUG/MAJOR: stream-int: Don't receive data from mux until SI_ST_EST is reached 801 - DOC: remove obsolete section about header manipulation 802 - BUG/MINOR: ssl/cli: cleanup on cli_parse_set_cert error 803 - MINOR: ssl/cli: rework the 'set ssl cert' IO handler 804 - BUILD: CI: comment out cygwin build, upgrade various ssl libraries 805 - DOC: Improve documentation of http-re(quest|sponse) replace-(header|value|uri) 806 - BUILD/MINOR: tools: shut up the format truncation warning in get_gmt_offset() 807 - BUG/MINOR: spoe: fix off-by-one length in UUID format string 808 - BUILD/MINOR: ssl: shut up a build warning about format truncation 809 - BUILD: do not disable -Wformat-truncation anymore 810 - MINOR: chunk: add chunk_istcat() to concatenate an ist after a chunk 811 - Revert "MINOR: istbuf: add b_fromist() to make a buffer from an ist" 812 - MINOR: mux: Add a new method to get informations about a mux. 813 - BUG/MEDIUM: stream_interface: Only use SI_ST_RDY when the mux is ready. 814 - BUG/MEDIUM: servers: Only set SF_SRV_REUSED if the connection if fully ready. 815 - MINOR: doc: fix busy-polling performance reference 816 - MINOR: config: allow no set-dumpable config option 817 - MINOR: init: always fail when setrlimit fails 818 - MINOR: ssl/cli: rework 'set ssl cert' as 'set/commit' 819 - CLEANUP: ssl/cli: remove leftovers of bundle/certs (it < 2) 820 - REGTEST: vtest can now enable mcli with its own flag 821 - BUG/MINOR: config: Update cookie domain warn to RFC6265 822 - MINOR: sample: add us/ms support to date/http_date 823 - BUG/MINOR: ssl/cli: check trash allocation in cli_io_handler_commit_cert() 824 - BUG/MEDIUM: mux-h2: report no available stream on a connection having errors 825 - BUG/MEDIUM: mux-h2: immediately remove a failed connection from the idle list 826 - BUG/MEDIUM: mux-h2: immediately report connection errors on streams 827 - BUG/MINOR: stats: properly check the path and not the whole URI 828 - BUG/MINOR: ssl: segfault in cli_parse_set_cert with old openssl/boringssl 829 - BUG/MINOR: ssl: ckch->chain must be initialized 830 - BUG/MINOR: ssl: double free on error for ckch->{key,cert} 831 - MINOR: ssl: BoringSSL ocsp_response does not need issuer 832 - BUG/MEDIUM: ssl/cli: fix dot research in cli_parse_set_cert 833 - MINOR: backend: Add srv_name sample fetche 834 - DOC: Add GitHub issue config.yml 835 8362019/10/25 : 2.1-dev3 837 - MINOR: mux-h2/trace: missing conn pointer in demux full message 838 - MINOR: mux-h2: add a per-connection list of blocked streams 839 - BUILD: ebtree: make eb_is_empty() and eb_is_dup() take a const 840 - BUG/MEDIUM: mux-h2: do not enforce timeout on long connections 841 - BUG/MEDIUM: tasks: Don't forget to decrement tasks_run_queue. 842 - BUG/MINOR: peers: crash on reload without local peer. 843 - BUG/MINOR: mux-h2/trace: Fix traces on h2c initialization 844 - MINOR: h1-htx: Update h1_copy_msg_data() to ease the traces in the mux-h1 845 - MINOR: htx: Adapt htx_dump() to be used from traces 846 - MINOR: mux-h1/trace: register a new trace source with its events 847 - MINOR: proxy: Store http-send-name-header in lower case 848 - MINOR: http: Remove headers matching the name of http-send-name-header option 849 - BUG/MINOR: mux-h1: Adjust header case when the server name is add to a request 850 - BUG/MINOR: mux-h1: Adjust header case when chunked encoding is add to a message 851 - MINOR: mux-h1: Try to wakeup the stream on output buffer allocation 852 - MINOR: fcgi: Add function to get the string representation of a record type 853 - MINOR: mux-fcgi/trace: Register a new trace source with its events 854 - BUG/MEDIUM: cache: make sure not to cache requests with absolute-uri 855 - DOC: clarify some points around http-send-name-header's behavior 856 - MEDIUM: mux-h2: support emitting CONTINUATION frames after HEADERS 857 - BUG/MINOR: mux-h1/mux-fcgi/trace: Fix position of the 4th arg in some traces 858 - DOC: fix typo in Prometheus exporter doc 859 - MINOR: h2: clarify the rules for how to convert an H2 request to HTX 860 - MINOR: htx: Add 2 flags on the start-line to have more info about the uri 861 - MINOR: http: Add a function to get the authority into a URI 862 - MINOR: h1-htx: Set the flag HTX_SL_F_HAS_AUTHORITY during the request parsing 863 - MEDIUM: http-htx: Keep the Host header and the request start-line synchronized 864 - MINOR: h1-htx: Only use the path of a normalized URI to format a request line 865 - MEDIUM: h2: make the request parser rebuild a complete URI 866 - MINOR: h2: report in the HTX flags when the request has an authority 867 - MEDIUM: mux-h2: do not map Host to :authority on output 868 - MEDIUM: h2: use the normalized URI encoding for absolute form requests 869 - MINOR: stats: mention in the help message support for "json" and "typed" 870 - MINOR: stats: get rid of the ST_CONVDONE flag 871 - MINOR: stats: replace the ST_* uri_auth flags with STAT_* 872 - MINOR: stats: always merge the uri_auth flags into the appctx flags 873 - MINOR: stats: set the appctx flags when initializing the applet only 874 - MINOR: stats: get rid of the STAT_SHOWADMIN flag 875 - MINOR: stats: make stats_dump_fields_json() directly take flags 876 - MINOR: stats: uniformize the calling convention of the dump functions 877 - MINOR: stats: support the "desc" output format modifier for info and stat 878 - MINOR: stats: prepare to add a description with each stat/info field 879 - MINOR: stats: make "show stat" and "show info" 880 - MINOR: stats: fill all the descriptions for "show info" and "show stat" 881 - BUG/MEDIUM: applet: always check a fast running applet's activity before killing 882 - BUILD: stats: fix missing '=' sign in array declaration 883 - MINOR: lists: add new macro LIST_SPLICE_END_DETACHED 884 - MINOR: list: add new macro MT_LIST_BEHEAD 885 - MEDIUM: task: Split the tasklet list into two lists. 886 - MINOR: h2: Document traps to be avoided on multithread. 887 - MINOR: lists: Try to use local variables instead of macro arguments. 888 - MINOR: lists: Fix alignement of \ when relevant. 889 - MINOR: mux-h2: also support emitting CONTINUATION on trailers 890 - MINOR: ssl: crt-list do ckchn_lookup 891 - REORG: ssl: rename ckch_node to ckch_store 892 - REORG: ssl: move structures to ssl_sock.h 893 - MINOR: ssl: initialize the sni_keytypes_map as EB_ROOT 894 - MINOR: ssl: initialize explicitly the sni_ctx trees 895 - BUG/MINOR: ssl: abort on sni allocation failure 896 - BUG/MINOR: ssl: free the sni_keytype nodes 897 - BUG/MINOR: ssl: abort on sni_keytypes allocation failure 898 - MEDIUM: ssl: introduce the ckch instance structure 899 - MEDIUM: ssl: split ssl_sock_add_cert_sni() 900 - MINOR: ssl: ssl_sock_load_ckchn() can properly fail 901 - MINOR: ssl: ssl_sock_load_multi_ckchs() can properly fail 902 - MEDIUM: ssl: ssl_sock_load_ckchs() alloc a ckch_inst 903 - MINOR: ssl: ssl_sock_load_crt_file_into_ckch() is filling from a BIO 904 - MEDIUM: ssl/cli: 'set ssl cert' updates a certificate from the CLI 905 - MINOR: ssl: load the sctl in/from the ckch 906 - MINOR: ssl: load the ocsp in/from the ckch 907 - BUG/MEDIUM: ssl: NULL dereference in ssl_sock_load_cert_sni() 908 - BUG/MINOR: ssl: fix build without SSL 909 - BUG/MINOR: ssl: fix build without multi-cert bundles 910 - BUILD: ssl: wrong #ifdef for SSL engines code 911 - BUG/MINOR: ssl: fix OCSP build with BoringSSL 912 - BUG/MEDIUM: htx: Catch chunk_memcat() failures when HTX data are formatted to h1 913 - BUG/MINOR: chunk: Fix tests on the chunk size in functions copying data 914 - BUG/MINOR: mux-h1: Mark the output buffer as full when the xfer is interrupted 915 - MINOR: mux-h1: Xfer as much payload data as possible during output processing 916 - CLEANUP: h1-htx: Move htx-to-h1 formatting functions from htx.c to h1_htx.c 917 - BUG/MINOR: mux-h1: Capture ignored parsing errors 918 - MINOR: h1: Reject requests with different occurrences of the header host 919 - MINOR: h1: Reject requests if the authority does not match the header host 920 - REGTESTS: Send valid URIs in peers reg-tests and fix HA config to avoid warnings 921 - REGTESTS: Adapt proxy_protocol_random_fail.vtc to match normalized URI too 922 - BUG/MINOR: WURFL: fix send_log() function arguments 923 - BUG/MINOR: ssl: fix error messages for OCSP loading 924 - BUG/MINOR: ssl: can't load ocsp files 925 - MINOR: version: make the version strings variables, not constants 926 - BUG/MINOR: http-htx: Properly set htx flags on error files to support keep-alive 927 - MINOR: htx: Add a flag on HTX to known when a response was generated by HAProxy 928 - MINOR: mux-h1: Force close mode for proxy responses with an unfinished request 929 - BUILD: travis-ci: limit build to branches "master" and "next" 930 - BUILD/MEDIUM: threads: rename thread_info struct to ha_thread_info 931 - BUILD/SMALL: threads: enable threads on osx 932 - BUILD/MEDIUM: threads: enable cpu_affinity on osx 933 - MINOR: istbuf: add b_fromist() to make a buffer from an ist 934 - BUG/MINOR: cache: also cache absolute URIs 935 - BUG/MINOR: mworker/ssl: close openssl FDs unconditionally 936 - BUG/MINOR: tcp: Don't alter counters returned by tcp info fetchers 937 - BUG/MEDIUM: lists: Handle 1-element-lists in MT_LIST_BEHEAD(). 938 - BUG/MEDIUM: mux_pt: Make sure we don't have a conn_stream before freeing. 939 - BUG/MEDIUM: tasklet: properly compute the sleeping threads mask in tasklet_wakeup() 940 - BUG/MAJOR: idle conns: schedule the cleanup task on the correct threads 941 - BUG/MEDIUM: task: make tasklets either local or shared but not both at once 942 - Revert e8826ded5fea3593d89da2be5c2d81c522070995. 943 - BUG/MEDIUM: mux_pt: Don't destroy the connection if we have a stream attached. 944 - BUG/MEDIUM: mux_pt: Only call the wake emthod if nobody subscribed to receive. 945 - REGTEST: mcli/mcli_show_info: launch a 'show info' on the master CLI 946 - CLEANUP: ssl: make ssl_sock_load_cert*() return real error codes 947 - CLEANUP: ssl: make ssl_sock_load_ckchs() return a set of ERR_* 948 - CLEANUP: ssl: make cli_parse_set_cert handle errcode and warnings. 949 - CLEANUP: ssl: make ckch_inst_new_load_(multi_)store handle errcode/warn 950 - CLEANUP: ssl: make ssl_sock_put_ckch_into_ctx handle errcode/warn 951 - CLEANUP: ssl: make ssl_sock_load_dh_params handle errcode/warn 952 - CLEANUP: bind: handle warning label on bind keywords parsing. 953 - BUG/MEDIUM: ssl: 'tune.ssl.default-dh-param' value ignored with openssl > 1.1.1 954 - BUG/MINOR: mworker/cli: reload fail with inherited FD 955 - BUG/MINOR: ssl: Fix fd leak on error path when a TLS ticket keys file is parsed 956 - BUG/MINOR: stick-table: Never exceed (MAX_SESS_STKCTR-1) when fetching a stkctr 957 - BUG/MINOR: cache: alloc shctx after check config 958 - BUG/MINOR: sample: Make the `field` converter compatible with `-m found` 959 - BUG/MINOR: server: check return value of fopen() in apply_server_state() 960 - REGTESTS: make seamless-reload depend on 1.9 and above 961 - REGTESTS: server/cli_set_fqdn requires version 1.8 minimum 962 - BUG/MINOR: dns: allow srv record weight set to 0 963 - BUG/MINOR: ssl: fix memcpy overlap without consequences. 964 - BUG/MINOR: stick-table: fix an incorrect 32 to 64 bit key conversion 965 - BUG/MEDIUM: pattern: make the pattern LRU cache thread-local and lockless 966 - BUG/MINOR: mux-h2: do not emit logs on backend connections 967 - CLEANUP: ssl: remove old TODO commentary 968 - CLEANUP: ssl: fix SNI/CKCH lock labels 969 - MINOR: ssl: OCSP functions can load from file or buffer 970 - MINOR: ssl: load sctl from buf OR from a file 971 - MINOR: ssl: load issuer from file or from buffer 972 - MINOR: ssl: split ssl_sock_load_crt_file_into_ckch() 973 - BUG/MINOR: ssl/cli: fix looking up for a bundle 974 - MINOR: ssl/cli: update ocsp/issuer/sctl file from the CLI 975 - MINOR: ssl: update ssl_sock_free_cert_key_and_chain_contents 976 - MINOR: ssl: copy a ckch from src to dst 977 - MINOR: ssl: new functions duplicate and free a ckch_store 978 - MINOR: ssl/cli: assignate a new ckch_store 979 - MEDIUM: cli/ssl: handle the creation of SSL_CTX in an IO handler 980 - BUG/MINOR: ssl/cli: fix build of SCTL and OCSP 981 - BUG/MINOR: ssl/cli: out of bounds when built without ocsp/sctl 982 - BUG/MINOR: ssl: fix build with openssl < 1.1.0 983 - BUG/MINOR: ssl: fix build of X509_chain_up_ref() w/ libreSSL 984 - MINOR: tcp: avoid confusion in time parsing init 985 - MINOR: debug: add a new "debug dev stream" command 986 - MINOR: cli/debug: validate addresses using may_access() in "debug dev stream" 987 - REORG: move CLI access level definitions to cli.h 988 - MINOR: cli: add an expert mode to hide dangerous commands 989 - MINOR: debug: make most debug CLI commands accessible in expert mode 990 - MINOR: stats/debug: maintain a counter of debug commands issued 991 - BUG/MEDIUM: debug: address a possible null pointer dereference in "debug dev stream" 992 9932019/10/01 : 2.1-dev2 994 - DOC: management: document reuse and connect counters in the CSV format 995 - DOC: management: document cache_hits and cache_lookups in the CSV format 996 - BUG/MINOR: dns: remove irrelevant dependency on a client connection 997 - MINOR: applet: make appctx use their own pool 998 - BUG/MEDIUM: checks: Don't attempt to receive data if we already subscribed. 999 - BUG/MEDIUM: http/htx: unbreak option http_proxy 1000 - BUG/MINOR: backend: do not try to install a mux when the connection failed 1001 - MINOR: mux-h2: Don't adjust anymore the amount of data sent in h2_snd_buf() 1002 - BUG/MINOR: http_fetch: Fix http_auth/http_auth_group when called from TCP rules 1003 - BUG/MINOR: http_htx: Initialize HTX error messages for TCP proxies 1004 - BUG/MINOR: cache/htx: Make maxage calculation HTX aware 1005 - BUG/MINOR: hlua: Make the function txn:done() HTX aware 1006 - MINOR: proto_htx: Directly call htx_check_response_for_cacheability() 1007 - MINOR: proto_htx: Rely on the HTX function to apply a redirect rules 1008 - MINOR: proto_htx: Add the function htx_return_srv_error() 1009 - MINOR: backend/htx: Don't rewind output data to set the sni on a srv connection 1010 - MINOR: proto_htx: Don't stop forwarding when there is a post-connect processing 1011 - DOC: htx: Update comments in HTX files 1012 - CLEANUP: htx: Remove the unsued function htx_add_blk_type_size() 1013 - MINOR: htx: Deduce the number of used blocks from tail and head values 1014 - MINOR: htx: Use an array of char to store HTX blocks 1015 - MINOR: htx: Slightly update htx_dump() to report better messages 1016 - DOC: htx: Add internal documentation about the HTX 1017 - MAJOR: http: Deprecate and ignore the option "http-use-htx" 1018 - MEDIUM: mux-h2: Remove support of the legacy HTTP mode 1019 - CLEANUP: h2: Remove functions converting h2 requests to raw HTTP/1.1 ones 1020 - MINOR: connection: Remove the multiplexer protocol PROTO_MODE_HTX 1021 - MINOR: stream: Rely on HTX analyzers instead of legacy HTTP ones 1022 - MEDIUM: http_fetch: Remove code relying on HTTP legacy mode 1023 - MINOR: config: Remove tests on the option 'http-use-htx' 1024 - MINOR: stream: Remove tests on the option 'http-use-htx' in stream_new() 1025 - MINOR: proxy: Remove tests on the option 'http-use-htx' during H1 upgrade 1026 - MINOR: hlua: Remove tests on the option 'http-use-htx' to reject TCP applets 1027 - MINOR: cache: Remove tests on the option 'http-use-htx' 1028 - MINOR: contrib/prometheus-exporter: Remove tests on the option 'http-use-htx' 1029 - CLEANUP: proxy: Remove the flag PR_O2_USE_HTX 1030 - MINOR: proxy: Don't adjust connection mode of HTTP proxies anymore 1031 - MEDIUM: backend: Remove code relying on the HTTP legacy mode 1032 - MEDIUM: hlua: Remove code relying on the legacy HTTP mode 1033 - MINOR: http_act: Remove code relying on the legacy HTTP mode 1034 - MEDIUM: cache: Remove code relying on the legacy HTTP mode 1035 - MEDIUM: compression: Remove code relying on the legacy HTTP mode 1036 - MINOR: flt_trace: Remove code relying on the legacy HTTP mode 1037 - MINOR: stats: Remove code relying on the legacy HTTP mode 1038 - MAJOR: filters: Remove code relying on the legacy HTTP mode 1039 - MINOR: stream: Remove code relying on the legacy HTTP mode 1040 - MAJOR: http: Remove the HTTP legacy code 1041 - MINOR: hlua: Remove useless test on TX_CON_WANT_* flags 1042 - MINOR: proto_http: Remove unused http txn flags 1043 - MINOR: proto_http: Remove the unused flag HTTP_MSGF_WAIT_CONN 1044 - CLEANUP: proto_http: Group remaining flags of the HTTP transaction 1045 - CLEANUP: channel: Remove the unused flag CF_WAKE_CONNECT 1046 - CLEANUP: proto_http: Remove unecessary includes and comments 1047 - CLEANUP: proto_http: Move remaining code from proto_http.c to proto_htx.c 1048 - REORG: proto_htx: Move HTX analyzers & co to http_ana.{c,h} files 1049 - BUG/MINOR: debug: Remove flags CO_FL_SOCK_WR_ENA/CO_FL_SOCK_RD_ENA 1050 - MINOR: proxy: Remove support of the option 'http-tunnel' 1051 - DOC: config: Update as a result of the legacy HTTP removal 1052 - MEDIUM: config: Remove parsing of req* and rsp* directives 1053 - MINOR: proxy: Remove the unused list of block rules 1054 - MINOR: proxy/http_ana: Remove unused req_exp/rsp_exp and req_add/rsp_add lists 1055 - DOC: config: Remove unsupported req* and rsp* keywords 1056 - MINOR: global: Preset tune.max_http_hdr to its default value 1057 - MINOR: http: Don't store raw HTTP errors in chunks anymore 1058 - BUG/MINOR: session: Emit an HTTP error if accept fails only for H1 connection 1059 - BUG/MINOR: session: Send a default HTTP error if accept fails for a H1 socket 1060 - CLEANUP: mux-h2: Remove unused flags H2_SF_CHNK_* 1061 - BUG/MINOR: checks: do not exit tcp-checks from the middle of the loop 1062 - MINOR: config: Warn only if the option http-use-htx is used with "no" prefix 1063 - BUG/MEDIUM: mux-h1: Trim excess server data at the end of a transaction 1064 - MINOR: connection: add conn_get_src() and conn_get_dst() 1065 - MINOR: frontend: switch to conn_get_{src,dst}() for logging and debugging 1066 - MINOR: backend: switch to conn_get_{src,dst}() for port and address mapping 1067 - MINOR: ssl: switch to conn_get_dst() to retrieve the destination address 1068 - MINOR: tcp: replace various calls to conn_get_{from,to}_addr with conn_get_{src,dst} 1069 - MINOR: stream-int: use conn_get_{src,dst} in conn_si_send_proxy() 1070 - MINOR: stream/cli: use conn_get_{src,dst} in "show sess" and "show peers" output 1071 - MINOR: log: use conn_get_{dst,src}() to retrieve the cli/frt/bck/srv/ addresses 1072 - MINOR: http/htx: use conn_get_dst() to retrieve the destination address 1073 - MINOR: lua: use conn_get_{src,dst} to retrieve connection addresses 1074 - MINOR: http: check the source address via conn_get_src() in sample fetch functions 1075 - CLEANUP: connection: remove the now unused conn_get_{from,to}_addr() 1076 - MINOR: connection: add new src and dst fields 1077 - MINOR: connection: use conn->{src,dst} instead of &conn->addr.{from,to} 1078 - MINOR: ssl-sock: use conn->dst instead of &conn->addr.to 1079 - MINOR: lua: switch to conn->dst for a connection's target address 1080 - MINOR: peers: use conn->dst for the peer's target address 1081 - MINOR: htx: switch from conn->addr.{from,to} to conn->{src,dst} 1082 - MINOR: stream: switch from conn->addr.{from,to} to conn->{src,dst} 1083 - MINOR: proxy: switch to conn->src in error snapshots 1084 - MINOR: session: use conn->src instead of conn->addr.from 1085 - MINOR: tcp: replace conn->addr.{from,to} with conn->{src,dst} 1086 - MINOR: unix: use conn->dst for the target address in ->connect() 1087 - MINOR: sockpair: use conn->dst for the target address in ->connect() 1088 - MINOR: log: use conn->{src,dst} instead of conn->addr.{from,to} 1089 - MINOR: checks: replace conn->addr.to with conn->dst 1090 - MINOR: frontend: switch from conn->addr.{from,to} to conn->{src,dst} 1091 - MINOR: http: convert conn->addr.from to conn->src in sample fetches 1092 - MEDIUM: backend: turn all conn->addr.{from,to} to conn->{src,dst} 1093 - MINOR: connection: create a new pool for struct sockaddr_storage 1094 - MEDIUM: connection: make sure all address producers allocate their address 1095 - MAJOR: connection: remove the addr field 1096 - MINOR: connection: don't use clear_addr() anymore, just release the address 1097 - MINOR: stream: add a new target_addr entry in the stream structure 1098 - MAJOR: stream: store the target address into s->target_addr 1099 - MINOR: peers: now remove the remote connection setup code 1100 - MEDIUM: lua: do not allocate the remote connection anymore 1101 - MEDIUM: backend: always release any existing prior connection in connect_server() 1102 - MEDIUM: backend: remove impossible cases from connect_server() 1103 - BUG/MINOR: mux-h1: Close server connection if input data remains in h1_detach() 1104 - BUG/MEDIUM: tcp-checks: do not dereference inexisting conn_stream 1105 - BUG/MINOR: http_ana: Be sure to have an allocated buffer to generate an error 1106 - BUG/MINOR: http_htx: Support empty errorfiles 1107 - BUG/CRITICAL: http_ana: Fix parsing of malformed cookies which start by a delimiter 1108 - BUG/MEDIUM: protocols: add a global lock for the init/deinit stuff 1109 - BUG/MINOR: proxy: always lock stop_proxy() 1110 - MEDIUM: mux-h1: Add the support of headers adjustment for bogus HTTP/1 apps 1111 - BUILD: threads: add the definition of PROTO_LOCK 1112 - BUG/MEDIUM: lb-chash: Fix the realloc() when the number of nodes is increased 1113 - BUG/MEDIUM: streams: Don't switch the SI to SI_ST_DIS if we have data to send. 1114 - BUG/MINOR: log: make sure writev() is not interrupted on a file output 1115 - DOC: improve the wording in CONTRIBUTING about how to document a bug fix 1116 - MEDIUM: h1: Don't try to subscribe if we managed to read data. 1117 - MEDIUM: h1: Don't wake the H1 tasklet if we got the whole request. 1118 - REGTESTS: checks: exclude freebsd target for tcp-check_multiple_ports.vtc 1119 - BUG/MINOR: hlua/htx: Reset channels analyzers when txn:done() is called 1120 - BUG/MEDIUM: hlua: Check the calling direction in lua functions of the HTTP class 1121 - MINOR: hlua: Don't set request analyzers on response channel for lua actions 1122 - MINOR: hlua: Add a flag on the lua txn to know in which context it can be used 1123 - BUG/MINOR: hlua: Only execute functions of HTTP class if the txn is HTTP ready 1124 - BUG/MINOR: htx: Fix free space addresses calculation during a block expansion 1125 - MINOR: ssl: merge ssl_sock_load_cert_file() and ssl_sock_load_cert_chain_file() 1126 - MEDIUM: ssl: use cert_key_and_chain struct in ssl_sock_load_cert_file() 1127 - MEDIUM: ssl: split the loading of the certificates 1128 - MEDIUM: ssl: lookup and store in a ckch_node tree 1129 - MEDIUM: ssl: load DH param in struct cert_key_and_chain 1130 - BUG/MAJOR: queue/threads: avoid an AB/BA locking issue in process_srv_queue() 1131 - MINOR: ssl: use STACK_OF for chain certs 1132 - MINOR: ssl: add extra chain compatibility 1133 - MINOR: ssl: check private key consistency in loading 1134 - MINOR: ssl: do not look at DHparam with OPENSSL_NO_DH 1135 - CLEANUP: ssl: ssl_sock_load_crt_file_into_ckch 1136 - MINOR: ssl: clean ret variable in ssl_sock_load_ckchn 1137 - MAJOR: fd: Get rid of the fd cache. 1138 - MEDIUM: pollers: Remember the state for read and write for each threads. 1139 - MEDIUM: mux-h2: don't try to read more than needed 1140 - BUG/BUILD: ssl: fix build with openssl < 1.0.2 1141 - BUG/MEDIUM: ssl: does not try to free a DH in a ckch 1142 - BUG/MINOR: debug: fix a small race in the thread dumping code 1143 - MINOR: wdt: also consider that waiting in the thread dumper is normal 1144 - REGTESTS: checks: make 4be_1srv_health_checks more reliable 1145 - BUILD: ssl: BoringSSL add EVP_PKEY_base_id 1146 - BUG/MEDIUM: ssl: don't free the ckch in multi-cert bundle 1147 - BUG/MINOR: ssl: fix ressource leaks on error 1148 - BUG/MEDIUM: lb-chash: Ensure the tree integrity when server weight is increased 1149 - BUG/MAJOR: http/sample: use a static buffer for raw -> htx conversion 1150 - BUG/MINOR: stream-int: make sure to always release empty buffers after sending 1151 - BUG/MEDIUM: ssl: open the right path for multi-cert bundle 1152 - BUG/MINOR: stream-int: also update analysers timeouts on activity 1153 - BUG/MEDIUM: mux-h2: unbreak receipt of large DATA frames 1154 - BUG/MEDIUM: mux-h2: split the stream's and connection's window sizes 1155 - BUG/MEDIUM: proxy: Make sure to destroy the stream on upgrade from TCP to H2 1156 - DOC: Add 'Question.md' issue template, discouraging asking questions 1157 - BUG/MEDIUM: fd: Always reset the polled_mask bits in fd_dodelete(). 1158 - BUG/MEDIUM: pollers: Clear the poll_send bits as well. 1159 - BUILD: travis-ci: enable daily Coverity scan 1160 - BUG/MINOR: mux-h2: don't refrain from sending an RST_STREAM after another one 1161 - BUG/MINOR: mux-h2: use CANCEL, not STREAM_CLOSED in h2c_frt_handle_data() 1162 - BUG/MINOR: mux-h2: do not send REFUSED_STREAM on aborted uploads 1163 - BUG/MEDIUM: mux-h2: do not recheck a frame type after a state transition 1164 - BUG/MINOR: mux-h2: always send stream window update before connection's 1165 - BUG/MINOR: mux-h2: always reset rcvd_s when switching to a new frame 1166 - BUG/MEDIUM: checks: make sure to close nicely when we're the last to speak 1167 - BUG/MEDIUM: stick-table: Wrong stick-table backends parsing. 1168 - CLEANUP: mux-h2: move the demuxed frame check code in its own function 1169 - MINOR: cache: add method to cache hash 1170 - MINOR: cache: allow caching of OPTIONS request 1171 - BUG/MINOR: ssl: fix 0-RTT for BoringSSL 1172 - MINOR: ssl: ssl_fc_has_early should work for BoringSSL 1173 - BUG/MINOR: pools: don't mark the thread harmless if already isolated 1174 - BUG/MINOR: buffers/threads: always clear a buffer's head before releasing it 1175 - CLEANUP: buffer: replace b_drop() with b_free() 1176 - CLEANUP: task: move the cpu_time field to the task-only part 1177 - MINOR: cli: add two new states to print messages on the CLI 1178 - MINOR: cli: add cli_msg(), cli_err(), cli_dynmsg(), cli_dynerr() 1179 - CLEANUP: cli: replace all occurrences of manual handling of return messages 1180 - BUG/MEDIUM: proxy: Don't forget the SF_HTX flag when upgrading TCP=>H1+HTX. 1181 - BUG/MEDIUM: proxy: Don't use cs_destroy() when freeing the conn_stream. 1182 - BUG/MINOR: lua: fix setting netfilter mark 1183 - BUG/MINOR: Fix prometheus '# TYPE' and '# HELP' headers 1184 - BUG/MEDIUM: lua: Fix test on the direction to set the channel exp timeout 1185 - BUG/MINOR: stats: Wait the body before processing POST requests 1186 - MINOR: fd: make sure to mark the thread as not stuck in fd_update_events() 1187 - BUG/MEDIUM: mux_pt: Don't call unsubscribe if we did not subscribe. 1188 - BUILD: travis-ci: trigger non-mainstream configurations only on daily builds. 1189 - MINOR: debug: indicate the applet name when the task is task_run_applet() 1190 - MINOR: tools: add append_prefixed_str() 1191 - MINOR: lua: export applet and task handlers 1192 - MEDIUM: debug: make the thread dump code show Lua backtraces 1193 - BUG/MEDIUM: h1: Always try to receive more in h1_rcv_buf(). 1194 - MINOR: list: add LIST_SPLICE() to merge one list into another 1195 - MINOR: tools: add a DEFNULL() macro to use NULL for empty args 1196 - REORG: trace: rename trace.c to calltrace.c and mention it's not thread-safe 1197 - MINOR: sink: create definitions a minimal code for event sinks 1198 - MINOR: sink: add a support for file descriptors 1199 - MINOR: trace: start to create a new trace subsystem 1200 - MINOR: trace: add allocation of buffer-sized trace buffers 1201 - MINOR: trace/cli: register the "trace" CLI keyword to list the sources 1202 - MINOR: trace/cli: parse the "level" argument to configure the trace verbosity 1203 - MINOR: trace/cli: add "show trace" to report trace state and statistics 1204 - MINOR: trace: implement a very basic trace() function 1205 - MINOR: trace: add the file name and line number in the prefix 1206 - MINOR: trace: make trace() now also take a level in argument 1207 - MINOR: trace: implement a call to a decode function 1208 - MINOR: trace: add per-level macros to produce traces 1209 - MINOR: trace: add a definition of typed arguments to trace() 1210 - MINOR: trace: make sure to always stop the locking when stopping or pausing 1211 - MINOR: trace: add the possibility to lock on some arguments 1212 - MINOR: trace: parse the "lock" argument to trace 1213 - MINOR: trace: retrieve useful pointers and enforce lock-on 1214 - DOC: management: document the "trace" and "show trace" commands 1215 - BUILD: trace: make the lockon_ptr const to silence a warning without threads 1216 - BUG/MEDIUM: mux-h1: do not truncate trailing 0CRLF on buffer boundary 1217 - BUG/MEDIUM: mux-h1: do not report errors on transfers ending on buffer full 1218 - DOC: fixed typo in management.txt 1219 - BUG/MINOR: mworker: disable SIGPROF on re-exec 1220 - BUG/MEDIUM: listener/threads: fix an AB/BA locking issue in delete_listener() 1221 - BUG/MEDIUM: url32 does not take the path part into account in the returned hash. 1222 - MINOR: backend: Add srv_queue converter 1223 - MINOR: sink: set the fd-type sinks to non-blocking 1224 - MINOR: tools: add a function varint_bytes() to report the size of a varint 1225 - MINOR: buffer: add functions to read/write varints from/to buffers 1226 - MINOR: fd: add fd_write_frag_line() to send a fragmented line to an fd 1227 - MINOR: sink: now call the generic fd write function 1228 - MINOR: ring: add a new mechanism for retrieving/storing ring data in buffers 1229 - MINOR: ring: add a ring_write() function 1230 - MINOR: ring: add a generic CLI io_handler to dump a ring buffer 1231 - MINOR: sink: add support for ring buffers 1232 - MINOR: sink: implement "show events" to show supported sinks and dump the rings 1233 - MINOR: sink: now report the number of dropped events on output 1234 - MINOR: trace: support a default callback for the source 1235 - MINOR: trace: extend the source location to 13 chars 1236 - MINOR: trace: show thread number and source name in the trace 1237 - MINOR: trace: change the TRACE() calling convention to put the args and cb last 1238 - MINOR: connection: add the fc_pp_authority fetch -- authority TLV, from PROXYv2 1239 - MINOR: tools: add a generic struct "name_desc" for name-description pairs 1240 - MINOR: trace: replace struct trace_lockon_args with struct name_desc 1241 - MINOR: trace: change the "payload" level to "data" and move it 1242 - MINOR: trace: prepend the function name for developer level traces 1243 - MINOR: trace: also report the trace level in the output 1244 - MINOR: trace: change the detail_level to per-source verbosity 1245 - MINOR: mux-h2/trace: register a new trace source with its events 1246 - MINOR: mux-h2/trace: add the default decoding callback 1247 - MEDIUM: mux-h2/trace: add lots of traces all over the code 1248 - MINOR: mux-h2: add functions to convert an h2c/h2s state to a string 1249 - MINOR: mux-h2/trace: add a new verbosity level "clean" 1250 - MINOR: mux-h2/trace: only decode the start-line at verbosity other than "minimal" 1251 - MINOR: mux-h2/trace: always report the h2c/h2s state and flags 1252 - MINOR: mux-h2/trace: report h2s->id before h2c->dsi for the stream ID 1253 - CLEANUP: mux-h2/trace: reformat the "received" messages for better alignment 1254 - CLEANUP: mux-h2/trace: lower-case event names 1255 - MINOR: trace: extend default event names to 12 chars 1256 - BUG/MINOR: ring: fix the way watchers are counted 1257 - MINOR: cli: extend the CLI context with a list and two offsets 1258 - MINOR: mux-h2/trace: report the connection pointer and state before FRAME_H 1259 - MEDIUM: ring: implement a wait mode for watchers 1260 - BUG/MEDIUM: mux-h2/trace: do not dereference h2c->conn after failed idle 1261 - BUG/MEDIUM: mux-h2/trace: fix missing braces added with traces 1262 - BUG/MINOR: ring: b_peek_varint() returns a uint64_t, not a size_t 1263 - CLEANUP: fd: remove leftovers of the fdcache 1264 - MINOR: fd: add a new "initialized" bit in the fdtab struct 1265 - MINOR: fd/log/sink: make the non-blocking initialization depend on the initialized bit 1266 - MEDIUM: log: use the new generic fd_write_frag_line() function 1267 - MINOR: log: add a target type instead of hacking the address family 1268 - MEDIUM: log: add support for logging to a ring buffer 1269 - MINOR: send-proxy-v2: sends authority TLV according to TLV received 1270 - MINOR: build: add linux-glibc-legacy build TARGET 1271 - BUG/MEDIUM: peers: local peer socket not bound. 1272 - BUILD: connection: silence gcc warning with extra parentheses 1273 - BUG/MINOR: http-ana: Reset response flags when 1xx messages are handled 1274 - BUG/MINOR: h1: Properly reset h1m when parsing is restarted 1275 - BUG/MINOR: mux-h1: Fix size evaluation of HTX messages after headers parsing 1276 - BUG/MINOR: mux-h1: Don't stop anymore input processing when the max is reached 1277 - BUG/MINOR: mux-h1: Be sure to update the count before adding EOM after trailers 1278 - BUG/MEDIUM: cache: Properly copy headers splitted on several shctx blocks 1279 - BUG/MEDIUM: cache: Don't cache objects if the size of headers is too big 1280 - BUG/MINOR: mux-h1: Fix a possible null pointer dereference in h1_subscribe() 1281 - MEDIUM: fd: remove the FD_EV_POLLED status bit 1282 - MEDIUM: fd: simplify the fd_*_{recv,send} functions using BTS/BTR 1283 - MINOR: fd: make updt_fd_polling() a normal function 1284 - CONTRIB: debug: add new program "poll" to test poll() events 1285 - BUG/MINOR: checks: stop polling for write when we have nothing left to send 1286 - BUG/MINOR: checks: start sending the request right after connect() 1287 - BUG/MINOR: checks: make __event_chk_srv_r() report success before closing 1288 - BUG/MINOR: checks: do not uselessly poll for reads before the connection is up 1289 - BUG/MINOR: mux-h1: Fix a UAF in cfg_h1_headers_case_adjust_postparser() 1290 - BUILD: CI: add basic CentOS 6 cirrus build 1291 - MINOR: contrib/prometheus-exporter: Report DRAIN/MAINT/NOLB status for servers 1292 - BUG/MINOR: lb/leastconn: ignore the server weights for empty servers 1293 - BUG/MAJOR: ssl: ssl_sock was not fully initialized. 1294 - MEDIUM: fd: mark the FD as ready when it's inserted 1295 - MINOR: fd: add two new calls fd_cond_{recv,send}() 1296 - MEDIUM: connection: enable reading only once the connection is confirmed 1297 - MINOR: fd: add two flags ERR and SHUT to describe FD states 1298 - MEDIUM: fd: do not use the FD_POLL_* flags in the pollers anymore 1299 - BUG/MEDIUM: connection: don't keep more idle connections than ever needed 1300 - MINOR: stats: report the number of idle connections for each server 1301 - BUILD: CI: skip reg-tests/connection/proxy_protocol_random_fail.vtc on CentOS 6 1302 - BUILD/MINOR: auth: enabling for osx 1303 - BUG/MINOR: listener: Fix a possible null pointer dereference 1304 - BUG/MINOR: ssl: always check for ssl connection before getting its XPRT context 1305 - MINOR: stats: Add JSON export from the stats page 1306 - BUG/MINOR: filters: Properly set the HTTP status code on analysis error 1307 - MINOR: sample: Add UUID-fetch 1308 - CLEANUP: mux-h2: Remove unused flag H2_SF_DATA_CHNK 1309 - BUG/MINOR: acl: Fix memory leaks when an ACL expression is parsed 1310 - BUG/MINOR: backend: Fix a possible null pointer dereference 1311 - BUG/MINOR: Missing stat_field_names (since f21d17bb) 1312 - BUG/MEDIUM: stick-table: Properly handle "show table" with a data type argument 1313 - BUILD: CI: temporarily disable ASAN 1314 - MINOR: htx: Add a flag on HTX message to report processing errors 1315 - MINOR: mux-h1: Report a processing error during output processing 1316 - MINOR: http-ana: Handle HTX errors first during message analysis 1317 - MINOR: http-ana: Remove err_state field from http_msg 1318 - MINOR: config: Support per-proxy and per-server deinit functions callbacks 1319 - MINOR: config: Support per-proxy and per-server post-check functions callbacks 1320 - MINOR: http_fetch: Add sample fetches to get auth method/user/pass 1321 - MINOR: istbuf: Add the function b_isteqi() 1322 - MINOR: log: Provide a function to emit a log for an application 1323 - MINOR: http: Add function to parse value of the header Status 1324 - MEDIUM: mux-h1/h1-htx: move HTX convertion of H1 messages in dedicated file 1325 - MINOR: h1-htx: Use the same function to copy message payload in all cases 1326 - MINOR: muxes/htx: Ignore pseudo header during message formatting 1327 - MINOR: fcgi: Add code related to FCGI protocol 1328 - MEDIUM: fcgi-app: Add FCGI application and filter 1329 - MEDIUM: mux-fcgi: Add the FCGI multiplexer 1330 - MINOR: doc: Add documentation about the FastCGI support 1331 - BUG/MINOR: build: Fix compilation of mux_fcgi.c when compiled without SSL 1332 - BUILD: CI: install golang-1.13 when building BoringSSL 1333 - BUG/MINOR: mux-h2: Be sure to have a connection to unsubcribe 1334 - BUG/MINOR: mux-fcgi: Be sure to have a connection to unsubcribe 1335 - CLEANUP: fcgi-app: Remove useless test on fcgi_conf pointer 1336 - BUG/MINOR: mux-fcgi: Don't compare the filter name in its parsing callback 1337 - BUG/MAJOR: mux-h2: Handle HEADERS frames received after a RST_STREAM frame 1338 - BUG/MEDIUM: check/threads: make external checks run exclusively on thread 1 1339 - MEDIUM: list: Separate "locked" list from regular list. 1340 - MINOR: mt_lists: Add new macroes. 1341 - MEDIUM: servers: Use LIST_DEL_INIT() instead of LIST_DEL(). 1342 - MINOR: mt_lists: Do nothing in MT_LIST_ADD/MT_LIST_ADDQ if already in list. 1343 - MINOR: mt_lists: Give MT_LIST_ADD, MT_LIST_ADDQ and MT_LIST_DEL a return value. 1344 - MEDIUM: tasklets: Make the tasklet list a struct mt_list. 1345 - TESTS: Add a stress-test for mt_lists. 1346 - BUILD: travis-ci: add PCRE2, SLZ build 1347 - BUG/MINOR: build: fix event ports (Solaris) 1348 - BUG/MEDIUM: namespace: fix fd leak in master-worker mode 1349 - OPTIM: listeners: use tasklets for the multi-queue rings 1350 - BUILD: makefile: work around yet another GCC fantasy (-Wstring-plus-int) 1351 - BUG/MINOR: stream-int: Process connection/CS errors first in si_cs_send() 1352 - BUG/MEDIUM: stream-int: Process connection/CS errors during synchronous sends 1353 - BUG/MEDIUM: checks: make sure the connection is ready before trying to recv 1354 - CLEANUP: task: remove impossible test 1355 - CLEANUP: task: cache the task_per_thread pointer 1356 - MINOR: task: split the tasklet vs task code in process_runnable_tasks() 1357 - MINOR: task: introduce a thread-local "sched" variable for local scheduler stuff 1358 - CLEANUP: mux-fcgi: Remove the unused function fcgi_strm_id() 1359 - BUG/MINOR: mux-fcgi: Use a literal string as format in app_log() 1360 - BUG/MEDIUM: tasklets: Make sure we're waking the target thread if it sleeps. 1361 - MINOR: h2/trace: indicate 'F' or 'B' to locate the side of an h2c in traces 1362 - MINOR: h2/trace: report the frame type when known 1363 - BUG/MINOR: mux-h2: do not wake up blocked streams before the mux is ready 1364 - BUG/MEDIUM: namespace: close open namespaces during soft shutdown 1365 - MINOR: time: add timeofday_as_iso_us() to return instant time as ISO 1366 - MINOR: sink: finally implement support for SINK_FMT_{TIMED,ISO} 1367 - MINOR: sink: change ring buffer "buf0"'s format to "timed" 1368 - BUG/MEDIUM: mux-h2: don't reject valid frames on closed streams 1369 - BUG/MINOR: mux-fcgi: silence a gcc warning about null dereference 1370 - BUG/MINOR: mux-h2: Fix missing braces because of traces in h2_detach() 1371 - BUG/MINOR: mux-h2: Use the dummy error when decoding headers for a closed stream 1372 - BUG/MAJOR: mux_h2: Don't consume more payload than received for skipped frames 1373 - BUG/MINOR: mux-h1: Do h2 upgrade only on the first request 1374 - BUG/MEDIUM: spoe: Use a different engine-id per process 1375 - MINOR: spoe: Improve generation of the engine-id 1376 - MINOR: spoe: Support the async mode with several threads 1377 - MINOR: http: Add server name header from HTTP multiplexers 1378 - CLEANUP: http-ana: Remove the unused function http_send_name_header() 1379 - MINOR: stats: Add the support of float fields in stats 1380 - BUG/MINOR: contrib/prometheus-exporter: Return the time averages in seconds 1381 - DOC: Fix documentation about the cli command to get resolver stats 1382 - BUG/MEDIUM: fcgi: fix missing list tail in sample fetch registration 1383 - BUG/MINOR: stats: Add a missing break in a switch statement 1384 - BUG/MINOR: lua: Properly initialize the buffer's fields for string samples in hlua_lua2(smp|arg) 1385 - CLEANUP: lua: Get rid of obsolete (size_t *) cast in hlua_lua2(smp|arg) 1386 - BUG/MEDIUM: lua: Store stick tables into the sample's `t` field 1387 - CLEANUP: proxy: Remove `proxy_tbl_by_name` 1388 - BUILD: ssl: fix a warning when built with openssl < 1.0.2 1389 - DOC: replace utf-8 quotes by ascii ones 1390 - BUG/MEDIUM: fd: HUP is an error only when write is active 1391 - BUG/MINOR: action: do-resolve does not yield on requests with body 1392 - Revert "MINOR: cache: allow caching of OPTIONS request" 1393 13942019/07/16 : 2.1-dev1 1395 - BUG/MEDIUM: h2/htx: Update data length of the HTX when the cookie list is built 1396 - DOC: this is a development branch again. 1397 - MEDIUM: Make 'block' directive fatal 1398 - MEDIUM: Make 'redispatch' directive fatal 1399 - MEDIUM: Make '(cli|con|srv)timeout' directive fatal 1400 - MEDIUM: Remove 'option independant-streams' 1401 - MINOR: sample: Add sha2([<bits>]) converter 1402 - MEDIUM: server: server-state global file stored in a tree 1403 - BUG/MINOR: lua/htx: Make txn.req_req_* and txn.res_rep_* HTX aware 1404 - BUG/MINOR: mux-h1: Add the header connection in lower case in outgoing messages 1405 - BUG/MEDIUM: compression: Set Vary: Accept-Encoding for compressed responses 1406 - MINOR: htx: Add the function htx_change_blk_value_len() 1407 - BUG/MEDIUM: htx: Fully update HTX message when the block value is changed 1408 - BUG/MEDIUM: mux-h2: Reset padlen when several frames are demux 1409 - BUG/MEDIUM: mux-h2: Remove the padding length when a DATA frame size is checked 1410 - BUG/MEDIUM: lb_fwlc: Don't test the server's lb_tree from outside the lock 1411 - BUG/MAJOR: sample: Wrong stick-table name parsing in "if/unless" ACL condition. 1412 - BUILD: mworker: silence two printf format warnings around getpid() 1413 - BUILD: makefile: use :space: instead of digits to count commits 1414 - BUILD: makefile: adjust the sed expression of "make help" for solaris 1415 - BUILD: makefile: do not rely on shell substitutions to determine git version 1416 - BUG/MINOR: mworker-prog: Fix segmentation fault during cfgparse 1417 - BUG/MINOR: spoe: Fix memory leak if failing to allocate memory 1418 - BUG/MEDIUM: mworker: don't call the thread and fdtab deinit 1419 - BUG/MEDIUM: stream_interface: Don't add SI_FL_ERR the state is < SI_ST_CON. 1420 - BUG/MEDIUM: connections: Always add the xprt handshake if needed. 1421 - BUG/MEDIUM: ssl: Don't do anything in ssl_subscribe if we have no ctx. 1422 - BUG/MEDIUM: mworker/cli: command pipelining doesn't work anymore 1423 - BUG/MINOR: htx: Save hdrs_bytes when the HTX start-line is replaced 1424 - BUG/MAJOR: mux-h1: Don't crush trash chunk area when outgoing message is formatted 1425 - BUG/MINOR: memory: Set objects size for pools in the per-thread cache 1426 - BUG/MINOR: log: Detect missing sampling ranges in config 1427 - BUG/MEDIUM: proto_htx: Don't add EOM on 1xx informational messages 1428 - BUG/MEDIUM: mux-h1: Use buf_room_for_htx_data() to detect too large messages 1429 - BUG/MINOR: mux-h1: Make format errors during output formatting fatal 1430 - BUG/MEDIUM: ssl: Don't attempt to set alpn if we're not using SSL. 1431 - BUG/MEDIUM: mux-h1: Always release H1C if a shutdown for writes was reported 1432 - BUG/MINOR: mworker/cli: don't output a \n before the response 1433 - BUG/MEDIUM: checks: unblock signals in external checks 1434 - BUG/MINOR: mux-h1: Skip trailers for non-chunked outgoing messages 1435 - BUG/MINOR: mux-h1: Don't return the empty chunk on HEAD responses 1436 - BUG/MEDIUM: connections: Always call shutdown, with no linger. 1437 - BUG/MEDIUM: checks: Make sure the tasklet won't run if the connection is closed. 1438 - BUG/MINOR: contrib/prometheus-exporter: Don't use channel_htx_recv_max() 1439 - BUG/MINOR: hlua: Don't use channel_htx_recv_max() 1440 - BUG/MEDIUM: channel/htx: Use the total HTX size in channel_htx_recv_limit() 1441 - BUG/MINOR: hlua/htx: Respect the reserve when HTX data are sent 1442 - BUG/MINOR: contrib/prometheus-exporter: Respect the reserve when data are sent 1443 - BUG/MEDIUM: connections: Make sure we're unsubscribe before upgrading the mux. 1444 - BUG/MEDIUM: servers: Authorize tfo in default-server. 1445 - BUG/MEDIUM: sessions: Don't keep an extra idle connection in sessions. 1446 - MINOR: server: Add "no-tfo" option. 1447 - BUG/MINOR: contrib/prometheus-exporter: Don't try to add empty data blocks 1448 - MINOR: action: Add the return code ACT_RET_DONE for actions 1449 - BUG/MEDIUM: http/applet: Finish request processing when a service is registered 1450 - BUG/MEDIUM: lb_fas: Don't test the server's lb_tree from outside the lock 1451 - BUG/MEDIUM: mux-h1: Handle TUNNEL state when outgoing messages are formatted 1452 - BUG/MINOR: mux-h1: Don't process input or ouput if an error occurred 1453 - MINOR: stream-int: Factorize processing done after sending data in si_cs_send() 1454 - BUG/MEDIUM: stream-int: Don't rely on CF_WRITE_PARTIAL to unblock opposite si 1455 - DOC: contrib: spoa_server Add some hints for building spoa_server 1456 - DOC: Fix typo in intro.txt 1457 - BUG/MEDIUM: servers: Don't forget to set srv_cs to NULL if we can't reuse it. 1458 - BUG/MINOR: ssl: revert empty handshake detection in OpenSSL <= 1.0.2 1459 - MINOR: pools: release the pool's lock during the malloc/free calls 1460 - MINOR: pools: always pre-initialize allocated memory outside of the lock 1461 - MINOR: pools: make the thread harmless during the mmap/munmap syscalls 1462 - BUG/MEDIUM: fd/threads: fix excessive CPU usage on multi-thread accept 1463 - BUG/MINOR: server: Be really able to keep "pool-max-conn" idle connections 1464 - BUG/MEDIUM: checks: Don't attempt to read if we destroyed the connection. 1465 - BUG/MEDIUM: da: cast the chunk to string. 1466 - DOC: Fix typos and grammer in configuration.txt 1467 - CLEANUP: proto_tcp: Remove useless header inclusions. 1468 - BUG/MEDIUM: servers: Fix a race condition with idle connections. 1469 - MINOR: task: introduce work lists 1470 - BUG/MAJOR: listener: fix thread safety in resume_listener() 1471 - BUG/MEDIUM: mux-h1: Don't release h1 connection if there is still data to send 1472 - BUG/MINOR: mux-h1: Correctly report Ti timer when HTX and keepalives are used 1473 - BUG/MEDIUM: streams: Don't give up if we couldn't send the request. 1474 - BUG/MEDIUM: streams: Don't redispatch with L7 retries if redispatch isn't set. 1475 - BUG/MINOR: mux-pt: do not pretend there's more data after a read0 1476 - BUG/MEDIUM: tcp-check: unbreak multiple connect rules again 1477 - MEDIUM: mworker-prog: Add user/group options to program section 1478 - REGTESTS: checks: tcp-check connect to multiple ports 1479 - BUG/MEDIUM: threads: cpu-map designating a single thread/process are ignored 1480 14812019/06/16 : 2.1-dev0 1482 - exact copy of 2.0.0 1483 14842019/06/16 : 2.0.0 1485 - MINOR: fd: Don't use atomic operations when it's not needed. 1486 - DOC: mworker-prog: documentation for the program section 1487 - MINOR: http: add a new "http-request replace-uri" action 1488 - BUG/MINOR: 51d/htx: The _51d_fetch method, and the methods it calls are now HTX aware. 1489 - MINOR: 51d: Added dummy libraries for the 51Degrees module for testing. 1490 - MINOR: mworker: change formatting in uptime field of "show proc" 1491 - MINOR: mworker: add the HAProxy version in "show proc" 1492 - MINOR: doc: Remove -Ds option in man page 1493 - MINOR: doc: add master-worker in the man page 1494 - MINOR: doc: mention HAPROXY_LOCALPEER in the man 1495 - BUILD: Silence gcc warning about unused return value 1496 - CLEANUP: 51d: move the 51d dummy lib to contrib/51d/src to match the real lib 1497 - BUILD: travis-ci: add 51Degree device detection, update openssl to 1.1.1c 1498 - MINOR: doc: update the manpage and usage message about -S 1499 - BUILD/MINOR: 51d: Updated build registration output to indicate thatif the library is a dummy one or not. 1500 - BUG/MEDIUM: h1: Don't wait for handshake if we had an error. 1501 - BUG/MEDIUM: h1: Wait for the connection if the handshake didn't complete. 1502 - BUG/MINOR: task: prevent schedulable tasks from starving under high I/O activity 1503 - BUG/MINOR: fl_trace/htx: Be sure to always forward trailers and EOM 1504 - BUG/MINOR: channel/htx: Call channel_htx_full() from channel_full() 1505 - BUG/MINOR: http: Use the global value to limit the number of parsed headers 1506 - BUG/MINOR: htx: Detect when tail_addr meet end_addr to maximize free rooms 1507 - BUG/MEDIUM: htx: Don't change position of the first block during HTX analysis 1508 - CLEANUP: channel: Remove channel_htx_fwd_payload() and channel_htx_fwd_all() 1509 - BUG/MEDIUM: proto_htx: Introduce the state ENDING during forwarding 1510 - MINOR: htx: Add 3 flags on the start-line to deal with the request schemes 1511 - MINOR: h2: Set flags about the request's scheme on the start-line 1512 - MINOR: mux-h1: Set flags about the request's scheme on the start-line 1513 - MINOR: mux-h2: Forward clients scheme to servers checking start-line flags 1514 - MEDIUM: server: server-state only rely on server name 1515 - CLEANUP: connection: rename the wait_event.task field to .tasklet 1516 - CLEANUP: tasks: rename task_remove_from_tasklet_list() to tasklet_remove_* 1517 - BUG/MEDIUM: connections: Don't call shutdown() if we want to disable linger. 1518 - DOC: add some environment variables in section 2.3 1519 - BUILD: makefile: clarify the "help" output and list options 1520 - BUG/MINOR: mux-h1: Wake busy mux for I/O when message is fully sent 1521 - BUG: tasks: fix bug introduced by latest scheduler cleanup 1522 - BUG/MEDIUM: mux-h2: fix early close with option abortonclose 1523 - BUG/MEDIUM: connections: Don't use ALPN to pick mux when in mode TCP. 1524 - BUG/MEDIUM: connections: Don't try to send early data if we have no mux. 1525 - BUG/MEDIUM: mux-h2: properly account for the appended data in HTX 1526 - BUILD: makefile: further clarify the "help" output and list targets 1527 - BUILD: makefile: rename "linux2628" to "linux-glibc" and remove older targets 1528 - BUILD: travis-ci: switch to linux-glibc instead of linux2628 1529 - DOC: update few references to the linux* targets and change them to linux-glibc 1530 - BUILD: makefile: detect and reject recently removed linux targets 1531 - BUILD: makefile: enable linux namespaces by default on linux 1532 - BUILD: makefile: enable TFO on linux platforms 1533 - BUILD: makefile: enable getaddrinfo on the linux-glibc target 1534 - DOC: small updates to the CONTRIBUTING file 1535 - BUG/MEDIUM: ssl: Make sure we initiate the handshake after using early data. 1536 - CLEANUP: removed obsolete examples an move a few to better places 1537 - DOC: Fix typos in CONTRIBUTING 1538 - DOC: update the outdated ROADMAP file 1539 - DOC: create a BRANCHES file to explain the life cycle 1540 - DOC: mention in INSTALL haproxy 2.0 is a long-term supported stable version 1541 - BUILD: travis-ci: TFO and GETADDRINFO are now enabled by default 1542 - BUILD: makefile: make the obsolete target detection compatible with make-3.80 1543 - BUILD: tools: work around an internal compiler bug in gcc-3.4 1544 - BUILD: pattern: work around an internal compiler bug in gcc-3.4 1545 - BUILD: makefile: enable USE_RT on Solaris 1546 - BUILD: makefile: do not use echo -n 1547 - DOC: mention a few common build errors in the INSTALL file 1548 15492019/06/11 : 2.0-dev7 1550 - BUG/MEDIUM: mux-h2: make sure the connection timeout is always set 1551 - MINOR: tools: add new bitmap manipulation functions 1552 - MINOR: logs: use the new bitmap functions instead of fd_sets for encoding maps 1553 - MINOR: chunks: Make sure trash_size is only set once. 1554 - Revert "MINOR: chunks: Make sure trash_size is only set once." 1555 - MINOR: threads: serialize threads initialization 1556 - MINOR peers: data structure simplifications for server names dictionary cache. 1557 - DOC: peers: Update for dictionary cache entries for peers protocol. 1558 - MINOR: dict: Store the length of the dictionary entries. 1559 - MINOR: peers: A bit of optimization when encoding cached server names. 1560 - MINOR: peers: Optimization for dictionary cache lookup. 1561 - MEDIUM: tools: improve time format error detection 1562 - BUG/MEDIUM: H1: When upgrading, make sure we don't free the buffer too early. 1563 - BUG/MEDIUM: stream_interface: Make sure we call si_cs_process() if CS_FL_EOI. 1564 - MINOR: threads: avoid clearing harmless twice in thread_release() 1565 - MEDIUM: threads: add thread_sync_release() to synchronize steps 1566 - BUG/MEDIUM: init/threads: prevent initialized threads from starting before others 1567 - OPTIM/MINOR: init/threads: only call protocol_enable_all() on first thread 1568 - BUG/MINOR: dict: race condition fix when inserting dictionary entries. 1569 - MEDIUM: init/threads: don't use spinlocks during the init phase 1570 - BUG/MINOR: cache/htx: Fix the counting of data already sent by the cache applet 1571 - BUG/MEDIUM: compression/htx: Fix the adding of the last data block 1572 - MINOR: flt_trace: Don't scrash the original offset during the random forwarding 1573 - MAJOR: htx: Rework how free rooms are tracked in an HTX message 1574 - MINOR: htx: Add the function htx_move_blk_before() 1575 - Revert "BUG/MEDIUM: H1: When upgrading, make sure we don't free the buffer too early." 1576 - BUG/MINOR: http-rules: mention "deny_status" for "deny" in the error message 1577 - MINOR: http: turn default error files to HTTP/1.1 1578 - BUG/MEDIUM: h1: Don't try to subscribe if we had a connection error. 1579 - BUG/MEDIUM: h1: Don't consider we're connected if the handshake isn't done. 1580 - MINOR: contrib/spoa_server: Upgrade SPOP to 2.0 1581 - BUG/MEDIUM: contrib/spoa_server: Set FIN flag on agent frames 1582 - MINOR: contrib/spoa_server: Add random IP score 1583 - DOC/MINOR: contrib/spoa_server: Fix typo in README 1584 15852019/06/07 : 2.0-dev6 1586 - BUG/MEDIUM: connection: fix multiple handshake polling issues 1587 - MINOR: connection: also stop receiving after a SOCKS4 response 1588 - MINOR: mux-h1: don't try to recv() before the connection is ready 1589 - BUG/MEDIUM: mux-h1: only check input data for the current stream, not next one 1590 - MEDIUM: mux-h1: don't use CS_FL_REOS anymore 1591 - CLEANUP: connection: remove the now unused CS_FL_REOS flag 1592 - CONTRIB: debug: add 4 missing connection/conn_stream flags 1593 - MEDIUM: stream: make a full process_stream() loop when completing I/O on exit 1594 - MINOR: server: increase the default pool-purge-delay to 5 seconds 1595 - BUILD: tools: do not use the weak attribute for trace() on obsolete linkers 1596 - BUG/MEDIUM: vars: make sure the scope is always valid when accessing vars 1597 - BUG/MEDIUM: vars: make the tcp/http unset-var() action support conditions 1598 - BUILD: task: fix a build warning when threads are disabled 1599 - CLEANUP: peers: Remove tabs characters. 1600 - CLEANUP: peers: Replace hard-coded values by macros. 1601 - BUG/MINOR: peers: Wrong stick-table update message building. 1602 - MINOR: dict: Add dictionary new data structure. 1603 - MINOR: peers: Add a LRU cache implementation for dictionaries. 1604 - MINOR: stick-table: Add "server_name" new data type. 1605 - MINOR: cfgparse: Space allocation for "server_name" stick-table data type. 1606 - MINOR: proxy: Add a "server by name" tree to proxy. 1607 - MINOR: server: Add a dictionary for server names. 1608 - MINOR: stream: Stickiness server lookup by name. 1609 - MINOR: peers: Make peers protocol support new "server_name" data type. 1610 - MINOR: stick-table: Make the CLI stick-table handler support dictionary entry data type. 1611 - REGTEST: Add a basic server by name stickiness reg test. 1612 - MINOR: peers: Add dictionary cache information to "show peers" CLI command. 1613 - MINOR: peers: Replace hard-coded for peer protocol 64-bits value encoding by macros. 1614 - MINOR: peers: Replace hard-coded values for peer protocol messaging by macros. 1615 - CLEANUP: ssl: remove unneeded defined(OPENSSL_IS_BORINGSSL) 1616 - BUILD: travis-ci improvements 1617 - MINOR: SSL: add client/server random sample fetches 1618 - BUG/MINOR: channel/htx: Don't alter channel during forward for empty HTX message 1619 - BUG/MINOR: contrib/prometheus-exporter: Add HTX data block in one time 1620 - BUG/MINOR: mux-h1: errflag must be set on H1S and not H1M during output processing 1621 - MEDIUM: mux-h1: refactor output processing 1622 - MINOR: mux-h1: Add the flag HAVE_O_CONN on h1s 1623 - MINOR: mux-h1: Add h1_eval_htx_hdrs_size() to estimate size of the HTX headers 1624 - MINOR: mux-h1: Don't count the EOM in the estimated size of headers 1625 - MEDIUM: cache/htx: Always store info about HTX blocks in the cache 1626 - MEDIUM: htx: Add the parsing of trailers of chunked messages 1627 - MINOR: htx: Don't use end-of-data blocks anymore 1628 - BUG/MINOR: mux-h1: Don't send more data than expected 1629 - BUG/MINOR: flt_trace/htx: Only apply the random forwarding on the message body. 1630 - BUG/MINOR: peers: Wrong "server_name" decoding. 1631 - BUG/MEDIUM: servers: Don't attempt to destroy idle connections if disabled. 1632 - MEDIUM: checks: Make sure we unsubscribe before calling cs_destroy(). 1633 - MEDIUM: connections: Wake the upper layer even if sending/receiving is disabled. 1634 - MEDIUM: ssl: Handle subscribe by itself. 1635 - MINOR: ssl: Make ssl_sock_handshake() static. 1636 - MINOR: connections: Add a new xprt method, remove_xprt. 1637 - MINOR: connections: Add a new xprt method, add_xprt(). 1638 - MEDIUM: connections: Introduce a handshake pseudo-XPRT. 1639 - MEDIUM: connections: Remove CONN_FL_SOCK* 1640 - BUG/MEDIUM: ssl: Don't forget to initialize ctx->send_recv and ctx->recv_wait. 1641 - BUG/MINOR: peers: Wrong server name parsing. 1642 - MINOR: server: really increase the pool-purge-delay default to 5 seconds 1643 - BUG/MINOR: stream: don't emit a send-name-header in conn error or disconnect states 1644 - MINOR: stream-int: use bit fields to match multiple stream-int states at once 1645 - MEDIUM: stream-int: remove dangerous interval checks for stream-int states 1646 - MEDIUM: stream-int: introduce a new state SI_ST_RDY 1647 - MAJOR: stream-int: switch from SI_ST_CON to SI_ST_RDY on I/O 1648 - MEDIUM: stream-int: make idle-conns switch to ST_RDY 1649 - MEDIUM: stream: re-arrange the connection setup status reporting 1650 - MINOR: stream-int: split si_update() into si_update_rx() and si_update_tx() 1651 - MINOR: stream-int: make si_sync_send() from the send code of si_update_both() 1652 - MEDIUM: stream: rearrange the events to remove the loop 1653 - MEDIUM: stream: only loop on flags relevant to the analysers 1654 - MEDIUM: stream: don't abusively loop back on changes on CF_SHUT*_NOW 1655 - BUILD: stream-int: avoid a build warning in dev mode in si_state_bit() 1656 - BUILD: peers: fix a build warning about an incorrect intiialization 1657 - BUG/MINOR: time: make sure only one thread sets global_now at boot 1658 - BUG/MEDIUM: tcp: Make sure we keep the polling consistent in tcp_probe_connect. 1659 16602019/06/02 : 2.0-dev5 1661 - BUILD: watchdog: use si_value.sival_int, not si_int for the timer's value 1662 - BUILD: signals: FreeBSD has SI_LWP instead of SI_TKILL 1663 - BUILD: watchdog: condition it to USE_RT 1664 - MINOR: raw_sock: report global traffic statistics 1665 - MINOR: stats: report the global output bit rate in human readable form 1666 - BUG/MINOR: proto-htx: Try to keep connections alive on redirect 1667 - BUG/MEDIUM: spoe: Don't use the SPOE applet after releasing it 1668 - BUG/MINOR: lua: Set right direction and flags on new HTTP objects 1669 - BUG/MINOR: mux-h2: Count EOM in bytes sent when a HEADERS frame is formatted 1670 - BUG/MINOR: mux-h1: Report EOI instead EOS on parsing error or H2 upgrade 1671 - BUG/MEDIUM: proto-htx: Not forward too much data when 1xx reponses are handled 1672 - BUG/MINOR: htx: Remove a forgotten while loop in htx_defrag() 1673 - DOC: fix typos 1674 - BUG/MINOR: ssl_sock: Fix memory leak when disabling compression 1675 - OPTIM: freq-ctr: don't take the date lock for most updates 1676 - MEDIUM: mux-h2: avoid doing expensive buffer realigns when not absolutely needed 1677 - CLEANUP: debug: remove the TRACE() macro 1678 - MINOR: buffer: introduce b_make() to make a buffer from its parameters 1679 - MINOR: buffer: add a new buffer ring API to manipulate rings of buffers 1680 - MEDIUM: mux-h2: replace all occurrences of mbuf with a buffer ring 1681 - MEDIUM: mux-h2: make the conditions to send based on mbuf, not just its tail 1682 - MINOR: mux-h2: introduce h2_release_mbuf() to release all buffers in the mbuf ring 1683 - MEDIUM: mux-h2: make the send() function iterate over all mux buffers 1684 - CLEANUP: mux-h2: consistently use a local variable for the mbuf 1685 - MINOR: mux-h2: report the mbuf's head and tail in "show fd" 1686 - MAJOR: mux-h2: switch to next mux buffer on buffer full condition. 1687 - BUILD: connections: shut up gcc about impossible out-of-bounds warning 1688 - BUILD: ssl: fix latest LibreSSL reg-test error 1689 - MINOR: cli/activity: remove "fd_del" and "fd_skip" from show activity 1690 - MINOR: cli/activity: add 3 general purpose counters in development mode 1691 - BUG/MAJOR: lb/threads: make sure the avoided server is not full on second pass 1692 - BUG/MEDIUM: queue: fix the tree walk in pendconn_redistribute. 1693 - BUG/MEDIUM: threads: fix double-word CAS on non-optimized 32-bit platforms 1694 - MEDIUM: config: now alert when two servers have the same name 1695 - MINOR: htx: Remove the macro IS_HTX_SMP() and always use IS_HTX_STRM() instead 1696 - MINOR: htx: Move the macro IS_HTX_STRM() in proto/stream.h 1697 - MINOR: htx: Store the head position instead of the wrap one 1698 - MINOR: htx: Store start-line block's position instead of address of its payload 1699 - MINOR: htx: Add functions to get the first block of an HTX message 1700 - MINOR: mux-h2/htx: Get the start-line from the head when HEADERS frame is built 1701 - MINOR: htx: Replace the function http_find_stline() by http_get_stline() 1702 - CLEANUP: htx: Remove unused function htx_get_stline() 1703 - MINOR: http/htx: Use sl_pos directly to replace the start-line 1704 - MEDIUM: http/htx: Perform analysis relatively to the first block 1705 - MINOR: channel/htx: Call channel_htx_recv_max() from channel_recv_max() 1706 - MINOR: htx: Add function htx_get_max_blksz() 1707 - BUG/MINOR: htx: Change htx_xfer_blk() to also count metadata 1708 - MEDIUM: mux-h1: Use the count value received from the SI in h1_rcv_buf() 1709 - MINOR: mux-h2: Use the count value received from the SI in h2_rcv_buf() 1710 - MINOR: stream-int: Don't use the flag CO_RFL_KEEP_RSV anymore in si_cs_recv() 1711 - MINOR: connection: Remove the unused flag CO_RFL_KEEP_RSV 1712 - MINOR: mux-h2/htx: Support zero-copy when possible in h2_rcv_buf() 1713 - MINOR: htx: Add a field to set the memory used by headers in the HTX start-line 1714 - MINOR: h2/htx: Set hdrs_bytes on the SL when an HTX message is produced 1715 - MINOR: mux-h1: Set hdrs_bytes on the SL when an HTX message is produced 1716 - MINOR: htx: Be sure to xfer all headers in one time in htx_xfer_blks() 1717 - MEDIUM: htx: 1xx messages are now part of the final reponses 1718 - MINOR: channel/htx: Add function to forward headers of an HTX message 1719 - MINOR: filters/htx: Use channel_htx_fwd_headers() after headers filtering 1720 - MINOR: proto-htx: Use channel_htx_fwd_headers() to forward 1xx responses 1721 - MEDIUM: htx: Store the first block position instead of the start-line one 1722 - MINOR: stats/htx: don't use the first block position but the head one 1723 - MINOR: channel/htx: Add functions to forward a part or all HTX payload 1724 - MINOR: proto-htx: Use channel_htx_fwd_all() when unfiltered body are forwarded 1725 - MEDIUM: filters/htx: Filter body relatively to the first block 1726 - MINOR: htx: Optimize htx_drain() when all data are drained 1727 - MINOR: htx: don't rely on htx_find_blk() anymore in the function htx_truncate() 1728 - MINOR: htx: remove the unused function htx_find_blk() 1729 - MINOR: htx: Remove support of pseudo headers because it is unused 1730 - BUG/MEDIUM: http: fix "http-request reject" when not final 1731 - MINOR: ssl: Make sure the underlying xprt's init method doesn't fail. 1732 - MINOR: ssl: Don't forget to call the close method of the underlying xprt. 1733 - MINOR: htx: rename htx_append_blk_value() to htx_add_data_atonce() 1734 - MINOR: htx: make htx_add_data() return the transmitted byte count 1735 - MEDIUM: htx: make htx_add_data() never defragment the buffer 1736 - MINOR: activity: write totals on the "show activity" output 1737 - MINOR: activity: report totals and average separately 1738 - MEDIUM: poller: separate the wait time from the wake events 1739 - MINOR: activity: report the number of failed pool/buffer allocations 1740 - MEDIUM: buffers: relax the buffer lock a little bit 1741 - MINOR: task: turn the WQ lock to an RW_LOCK 1742 - MEDIUM: task: don't grab the WR lock just to check the WQ 1743 - BUG/MEDIUM: mux-h1: Don't skip the TCP splicing when there is no more data to read 1744 - MEDIUM: sessions: Introduce session flags. 1745 - BUG/MEDIUM: h2: Don't forget to set h2s->cs to NULL after having free'd cs. 1746 - BUG/MEDIUM: mux-h2: fix the conditions to end the h2_send() loop 1747 - BUG/MEDIUM: mux-h2: don't refrain from offering oneself a used buffer 1748 - BUG/MEDIUM: connection: Use the session to get the origin address if needed. 1749 - MEDIUM: tasks: Get rid of active_tasks_mask. 1750 - MEDIUM: connection: Upstream SOCKS4 proxy support 1751 - BUILD: contrib/prometheus: fix build breakage caused by move of idle_pct 1752 - BUG/MINOR: deinit/threads: make hard-stop-after perform a clean exit 1753 17542019/05/22 : 2.0-dev4 1755 - BUILD: enable freebsd builds on cirrus-ci 1756 - BUG/MINOR: http_fetch: Rely on the smp direction for "cookie()" and "hdr()" 1757 - MEDIUM: Make 'option forceclose' actually warn 1758 - MEDIUM: Make 'resolution_pool_size' directive fatal 1759 - DOC: management: place "show activity" at the right place 1760 - MINOR: cli/activity: show the dumping thread ID starting at 1 1761 - MINOR: task: export global_task_mask 1762 - MINOR: cli/debug: add a thread dump function 1763 - BUG/MEDIUM: streams: Don't use CF_EOI to decide if the request is complete. 1764 - BUG/MEDIUM: streams: Try to L7 retry before aborting the connection. 1765 - BUG/MINOR: debug: make ha_task_dump() always check the task before dumping it 1766 - BUG/MINOR: debug: make ha_task_dump() actually dump the requested task 1767 - MINOR: debug: make ha_thread_dump() and ha_task_dump() take a buffer 1768 - BUG/MINOR: debug: don't check the call date on tasklets 1769 - MINOR: thread: implement ha_thread_relax() 1770 - MINOR: task: put barriers after each write to curr_task 1771 - MINOR: task: always reset curr_task when freeing a task or tasklet 1772 - MINOR: stream: detach the stream from its own task on stream_free() 1773 - MEDIUM: debug/threads: implement an advanced thread dump system 1774 - REGTEST: extend the check duration on tls_health_checks and mark it slow 1775 - DOC: fix "successful" typo 1776 - MINOR: init: setenv HAPROXY_CFGFILES 1777 - MINOR: threads/init: synchronize the threads startup 1778 - MEDIUM: init/mworker: make the pipe register function a regular initcall 1779 - CLEANUP: memory: make the fault injection code use the OTHER_LOCK label 1780 - CLEANUP: threads: remove the now unused START_LOCK label 1781 - MINOR: init/threads: make the global threads an array of structs 1782 - MINOR: threads: add each thread's clockid into the global thread_info 1783 - CLEANUP: stream: remove an obsolete debugging test 1784 - MINOR: tools: add dump_hex() 1785 - MINOR: debug: implement ha_panic() 1786 - MINOR: debug/cli: add some debugging commands for developers 1787 - MINOR: tools: provide a may_access() function and make dump_hex() use it 1788 - MINOR: debug: make ha_panic() report threads starting at 1 1789 - REORG: compat: move some integer limit definitions from standard.h to compat.h 1790 - REORG: threads: move the struct thread_info from global.h to hathreads.h 1791 - MINOR: compat: make sure to always define clockid_t 1792 - MINOR: threads: always place the clockid in the struct thread_info 1793 - MINOR: threads: add a thread-local thread_info pointer "ti" 1794 - MINOR: time: move the cpu, mono, and idle time to thread_info 1795 - MINOR: time: add a function to retrieve another thread's cputime 1796 - MINOR: debug: report each thread's cpu usage in "show thread" 1797 - BUILD: threads: only assign the clock_id when supported 1798 - BUILD: makefile: use USE_OBSOLETE_LINKER for solaris 1799 - BUILD: makefile: remove -fomit-frame-pointer optimisation (solaris) 1800 - MAJOR: polling: add event ports support (Solaris) 1801 - BUG/MEDIUM: streams: Don't switch from SI_ST_CON to SI_ST_DIS on read0. 1802 - CLEANUP: time: refine the test on _POSIX_TIMERS 1803 - MINOR: compat: define a new empty type empty_t for non-implemented fields 1804 - CLEANUP: time: switch clockid_t to empty_t when not available 1805 - BUG/MINOR: mworker: Fix memory leak of mworker_proc members 1806 - CLEANUP: objtype: make obj_type() and obj_type_name() take consts 1807 - MINOR: debug: switch to SIGURG for thread dumps 1808 - CLEANUP: threads: really move thread_info to hathreads.c 1809 - MINOR: threads: make threads_{harmless|want_rdv}_mask constant 0 without threads 1810 - CLEANUP: debug: always report harmless/want_rdv even without threads 1811 - MINOR: threads: implement ha_tkill() and ha_tkillall() 1812 - CLEANUP: debug: make use of ha_tkill() and remove ifdefs 1813 - MINOR: stream: introduce a stream_dump() function and use it in stream_dump_and_crash() 1814 - MINOR: debug: dump streams when an applet, iocb or stream is known 1815 - MINOR: threads: add a "stuck" flag to the thread_info struct 1816 - MINOR: threads: add a timer_t per thread in thread_info 1817 - MAJOR: watchdog: implement a thread lockup detection mechanism 1818 - MINOR: stream: remove the cpu time detection from process_stream() 1819 - MINOR: connection: report the mux names in "haproxy -vv" 1820 - CLEANUP: mux-h1: use "H1" and not "h1" as the mux's name 1821 - BUG/MEDIUM: WURFL: segfault in wurfl-get() with missing info. 1822 - MINOR: WURFL: call header_retireve_callback() in dummy library 1823 - MINOR: WURFL: fixed Engine load failed error when wurfl-information-list contains wurfl_root_id 1824 - MINOR: WURFL: shows log messages during module initialization 1825 - MINOR: WURFL: removes heading wurfl-information-separator from wurfl-get-all() and wurfl-get() results 1826 - MINOR: WURFL: wurfl_get() and wurfl_get_all() now return an empty string if device detection fails 1827 - MEDIUM: WURFL: HTX awareness. 1828 - MINOR: WURFL: module version bump to 2.0 1829 - MINOR: WURFL: do not emit warnings when not configured 1830 - CONTRIB: wurfl: address 3 build issues in the wurfl dummy library 1831 - BUG/MEDIUM: init/threads: provide per-thread alloc/free function callbacks 1832 - BUILD: travis: add sanitizers to travis-ci builds 1833 - BUILD: time: remove the test on _POSIX_C_SOURCE 1834 - CLEANUP: build: rename some build macros to use the USE_* ones 1835 - CLEANUP: raw_sock: remove support for very old linux splice bug workaround 1836 - BUG/MEDIUM: dns: make the port numbers unsigned 1837 - MEDIUM: config: deprecate the antique req* and rsp* commands 1838 18392019/05/15 : 2.0-dev3 1840 - BUG/MINOR: peers: Really close the sessions with no heartbeat. 1841 - CLEANUP: peers: remove useless annoying tabulations. 1842 - CLEANUP: peers: replace timeout constants by macros. 1843 - REGTEST: Enable again reg tests with HEAD HTTP method usage. 1844 - DOC: The option httplog is no longer valid in a backend. 1845 - DOC: peers: Peers protocol documentation update. 1846 - REGTEST: remove unexpected "nbthread" statement from Lua test cases 1847 - BUILD: Makefile: remove 11-years old workarounds for deprecated options 1848 - BUILD: remove 10-years old error message for obsolete option USE_TCPSPLICE 1849 - BUILD: Makefile: remove outdated support for dlmalloc 1850 - BUILD: Makefile: consider a variable's origin and not its value for the options list 1851 - BUILD: Makefile: also report disabled options in the BUILD_OPTIONS variable 1852 - BUILD: Makefile: shorten default settings declaration 1853 - BUILD: Makefile: clean up the target declarations 1854 - BUILD: report the whole feature set with their status in haproxy -vv 1855 - BUILD: pass all "USE_*" variables as -DUSE_* to the compiler 1856 - REGTEST: script: make the script use the new features list 1857 - REGTEST: script: remove platform-specific assigments of OPTIONS 1858 - BUG/MINOR: peers: Missing initializations after peer session shutdown. 1859 - BUG/MINOR: contrib/prometheus-exporter: Fix applet accordingly to recent changes 1860 - BUILD/MINOR: listener: Silent a few signedness warnings. 1861 - BUG/MINOR: mux-h1: Only skip invalid C-L headers on output 1862 - BUG/MEDIUM: mworker: don't free the wrong child when not found 1863 - BUG/MEDIUM: checks: Don't bother subscribing if we have a connection error. 1864 - BUG/MAJOR: checks: segfault during tcpcheck_main 1865 - BUILD: makefile: work around an old bug in GNU make-3.80 1866 - BUILD: makefile: work around another bug in make 3.80 1867 - BUILD: http: properly mark some struct as extern 1868 - BUILD: chunk: properly declare pool_head_trash as extern 1869 - BUILD: cache: avoid a build warning with some compilers/linkers 1870 - MINOR: tools: make memvprintf() never pass a NULL target to vsnprintf() 1871 - MINOR: tools: add an unsetenv() implementation 1872 - BUILD: re-implement an initcall variant without using executable sections 1873 - BUILD: use inttypes.h instead of stdint.h 1874 - BUILD: connection: fix naming of ip_v field 1875 - BUILD: makefile: fix build of IPv6 header on aix51 1876 - BUILD: makefile: add _LINUX_SOURCE_COMPAT to build on AIX-51 1877 - BUILD: define unsetenv on AIX 5.1 1878 - BUILD: Makefile: disable shared cache on AIX 5.1 1879 - MINOR: ssl: Add aes_gcm_dec converter 1880 - REORG: mworker: move serializing functions to mworker.c 1881 - REORG: mworker: move signals functions to mworker.c 1882 - REORG: mworker: move IPC functions to mworker.c 1883 - REORG: mworker: move signal handlers and related functions 1884 - REORG: mworker: move mworker_cleanlisteners to mworker.c 1885 - MINOR: mworker: calloc mworker_proc structures 1886 - MINOR: mworker: don't use children variable anymore 1887 - MINOR: cli: export cli_parse_default() definition in cli.h 1888 - REORG: mworker/cli: move CLI functions to mworker.c 1889 - MEDIUM: mworker-prog: implement program for master-worker 1890 - MINOR: mworker/cli: show programs in 'show proc' 1891 - BUG/MINOR: cli: correctly handle abns in 'show cli sockets' 1892 - MINOR: cli: start addresses by a prefix in 'show cli sockets' 1893 - MINOR: cli: export HAPROXY_CLI environment variable 1894 - BUG/MINOR: htx: Preserve empty HTX messages with an unprocessed parsing error 1895 - BUG/MINOR: proto_htx: Reset to_forward value when a message is set to DONE 1896 - REGTEST: http-capture/h00000: Relax a regex matching the log message 1897 - REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled 1898 - REGTEST: http-rules/h00003: Use a different client for requests expecting a 301 1899 - REGTEST: log/b00000: Be sure the client always hits its timeout 1900 - REGTEST: lua/b00003: Relax the regex matching the log message 1901 - REGTEST: lua/b00003: Specify the HAProxy pid when the command ss is executed 1902 - BUG/MEDIUM: peers: fix a case where peer session is not cleanly reset on release. 1903 - BUG/MEDIUM: h2: Don't attempt to recv from h2_process_demux if we subscribed. 1904 - BUG/MEDIUM: htx: fix random premature abort of data transfers 1905 - BUG/MEDIUM: streams: Don't remove the SI_FL_ERR flag in si_update_both(). 1906 - BUG/MEDIUM: streams: Store prev_state before calling si_update_both(). 1907 - BUG/MEDIUM: stream: Don't clear the stream_interface flags in si_update_both. 1908 - MINOR: initcall: Don't forget to define the __start/stop_init_##stg symbols. 1909 - MINOR: threads: Implement thread_cpus_enabled() for FreeBSD. 1910 - BUG/MEDIUM: pattern: assign pattern IDs after checking the config validity 1911 - MINOR: skip get_gmtime where tm is unused 1912 - MINOR: ssl: Activate aes_gcm_dec converter for BoringSSL 1913 - BUG/MEDIUM: streams: Only re-run process_stream if we're in a connected state. 1914 - BUG/MEDIUM: stream_interface: Don't bother doing chk_rcv/snd if not connected. 1915 - BUG/MEDIUM: task/threads: address a fairness issue between local and global tasks 1916 - BUG/MINOR: tasks: make sure the first task to be queued keeps its nice value 1917 - BUG/MINOR: listener: renice the accept ring processing task 1918 - MINOR: cli/listener: report the number of accepts on "show activity" 1919 - MINOR: cli/activity: report the accept queue sizes in "show activity" 1920 - BUG/MEDIUM: spoe: Queue message only if no SPOE applet is attached to the stream 1921 - BUG/MEDIUM: spoe: Return an error if nothing is encoded for fragmented messages 1922 - BUG/MINOR: spoe: Be sure to set tv_request when each message fragment is encoded 1923 - BUG/MEDIUM: htx: Defrag if blocks position is changed and the payloads wrap 1924 - BUG/MEDIUM: htx: Don't crush blocks payload when append is done on a data block 1925 - MEDIUM: htx: Deprecate the option 'http-tunnel' and ignore it in HTX 1926 - MINOR: proto_htx: Don't adjust transaction mode anymore in HTX analyzers 1927 - BUG/MEDIUM: htx: Fix the process of HTTP CONNECT with h2 connections 1928 - MINOR: mux-h1: Simplify handling of 1xx responses 1929 - MINOR: stats/htx: Don't add "Connection: close" header anymore in stats responses 1930 - MEDIUM: h1: Add an option to sanitize connection headers during parsing 1931 - MEDIUM: mux-h1: Simplify the connection mode management by sanitizing headers 1932 - MINOR: mux-h1: Don't release the conn_stream anymore when h1s is destroyed 1933 - BUG/MINOR: mux-h1: Handle the flag CS_FL_KILL_CONN during a shutdown read/write 1934 - MINOR: mux-h2: Add a mux_ops dedicated to the HTX mode 1935 - MINOR: muxes: Add a flag to specify a multiplexer uses the HTX 1936 - MINOR: stream: Set a flag when the stream uses the HTX 1937 - MINOR: http: update the macro IS_HTX_STRM() to check the stream flag SF_HTX 1938 - MINOR: http_fetch/htx: Use stream flags instead of px mode in smp_prefetch_htx 1939 - MINOR: filters/htx: Use stream flags instead of px mode to instanciate a filter 1940 - MINOR: muxes: Rely on conn_is_back() during init to handle front/back conn 1941 - MEDIUM: muxes: Add an optional input buffer during mux initialization 1942 - MINOR: muxes: Pass the context of the mux to destroy() instead of the connection 1943 - MEDIUM: muxes: Be prepared to don't own connection during the release 1944 - MEDIUM: connection: Add conn_upgrade_mux_fe() to handle mux upgrades 1945 - MEDIUM: htx: Allow the option http-use-htx to be used on TCP proxies too 1946 - MAJOR: proxy/htx: Handle mux upgrades from TCP to HTTP in HTX mode 1947 - MAJOR: muxes/htx: Handle inplicit upgrades from h1 to h2 1948 - MAJOR: htx: Enable the HTX mode by default for all proxies 1949 - REGTEST: Use HTX by default and add '--no-htx' option to disable it 1950 - BUG/MEDIUM: muxes: Don't dereference mux context if null in release functions 1951 - CLEANUP: task: do not export rq_next anymore 1952 - MEDIUM: tasks: improve fairness between the local and global queues 1953 - MEDIUM: tasks: only base the nice offset on the run queue depth 1954 - MINOR: tasks: restore the lower latency scheduling when niced tasks are present 1955 - BUG/MEDIUM: map: Fix memory leak in the map converter 1956 - BUG/MINOR: ssl: Fix 48 byte TLS ticket key rotation 1957 - BUILD: task/thread: fix single-threaded build of task.c 1958 - BUILD: cli/threads: fix build in single-threaded mode 1959 - BUG/MEDIUM: muxes: Make sure we unsubcribed when destroying mux ctx. 1960 - BUG/MEDIUM: h2: Make sure we're not already in the send_list in h2_subscribe(). 1961 - BUG/MEDIUM: h2: Revamp the way send subscriptions works. 1962 - MINOR: connections: Remove the SUB_CALL_UNSUBSCRIBE flag. 1963 - BUG/MEDIUM: Threads: Only use the gcc >= 4.7 builtins when using gcc >= 4.7. 1964 - BUILD: address a few cases of "static <type> inline foo()" 1965 - BUILD: do not specify "const" on functions returning structs or scalars 1966 - BUILD: htx: fix a used uninitialized warning on is_cookie2 1967 - MINOR: peers: Add a new command to the CLI for peers. 1968 - DOC: update for "show peers" CLI command. 1969 - BUG/MAJOR: lb/threads: fix insufficient locking on round-robin LB 1970 - MEDIUM: mworker: store the leaving state of a process 1971 - MEDIUM: mworker-prog: implements 'option start-on-reload' 1972 - CLEANUP: mworker: remove the type field in mworker_proc 1973 - MEDIUM: mworker/cli: export the HAPROXY_MASTER_CLI variable 1974 - MINOR: cli: don't add a semicolon at the end of HAPROXY_CLI 1975 - MINOR: mworker: export HAPROXY_MWORKER=1 when running in mworker mode 1976 - MINOR: init: add a "set-dumpable" global directive to enable core dumps 1977 - BUG/MINOR: listener/mq: correctly scan all bound threads under low load 1978 - BUG/MINOR: mworker: mworker_kill should apply on every children 1979 - BUG/MINOR: mworker: don't exit with an ambiguous value 1980 - BUG/MINOR: mworker: ensure that we still quits with SIGINT 1981 - REGTESTS: exclude tests that require ssl, pcre if no such feature is enabled 1982 - BUG/MINOR: mux-h1: Process input even if the input buffer is empty 1983 - BUG/MINOR: mux-h1: Don't switch the parser in busy mode if other side has done 1984 - BUG/MEDIUM: mux-h1: Notify the stream waiting for TCP splicing if ibuf is empty 1985 - BUG/MEDIUM: mux-h1: Enable TCP splicing to exchange data only 1986 - MINOR: mux-h1: Handle read0 during TCP splicing 1987 - BUG/MEDIUM: htx: Don't return the start-line if the HTX message is empty 1988 - BUG/MAJOR: http_fetch: Get the channel depending on the keyword used 1989 - BUG/MINOR: http_fetch/htx: Allow permissive sample prefetch for the HTX 1990 - BUG/MINOR: http_fetch/htx: Use HTX versions if the proxy enables the HTX mode 1991 - BUG/MEDIUM: tasks: Make sure we set TASK_QUEUED before adding a task to the rq. 1992 - BUG/MEDIUM: tasks: Make sure we modify global_tasks_mask with the rq_lock. 1993 - MINOR: tasks: Don't consider we can wake task with tasklet_wakeup(). 1994 - MEDIUM: tasks: No longer use rq.node.leaf_p as a lock. 1995 - MINOR: tasks: Don't set the TASK_RUNNING flag when adding in the tasklet list. 1996 - BUG/MEDIUM: applets: Don't use task_in_rq(). 1997 - BUG/MAJOR: task: make sure never to delete a queued task 1998 - MINOR: task/thread: factor out a wake-up condition 1999 - CLEANUP: task: remain consistent when using the task's handler 2000 - MEDIUM: tasks: Merge task_delete() and task_free() into task_destroy(). 2001 - MEDIUM: tasks: Don't account a destroyed task as a runned task. 2002 - BUG/MINOR: contrib/prometheus-exporter: Fix a typo in the run-queue metric type 2003 - MINOR: contrib/prometheus-exporter: Remove usless rate metrics 2004 - MINOR: contrib/prometheus-exporter: Rename some metrics to be more usable 2005 - MINOR: contrib/prometheus-exporter: Follow best practices about metrics type 2006 - BUG/MINOR: mworker: disable busy polling in the master process 2007 - MEDIUM: tasks: Use __ha_barrier_store after modifying global_tasks_mask. 2008 - MEDIUM: ssl: Give ssl_sock its own context. 2009 - MEDIUM: connections: Move some fields from struct connection to ssl_sock_ctx. 2010 - MEDIUM: ssl: provide its own subscribe/unsubscribe function. 2011 - MEDIUM: connections: Provide a xprt_ctx for each xprt method. 2012 - MEDIUM: ssl: provide our own BIO. 2013 - BUILD/medium: ssl: Fix build with OpenSSL < 1.1.0 2014 - MINOR: peers: adds counters on show peers about tasks calls. 2015 - MEDIUM: enable travis-ci builds 2016 - MINOR: fd: Add a counter of used fds. 2017 - MEDIUM: connections: Add a way to control the number of idling connections. 2018 - BUG/MEDIUM: maps: only try to parse the default value when it's present 2019 - BUG/MINOR: acl: properly detect pattern type SMP_T_ADDR 2020 - REGTEST: Missing REQUIRE_VERSION declarations. 2021 - MINOR: proto_tcp: tcp-request content: enable set-dst and set-dst-var 2022 - BUG/MEDIUM: h1: Don't parse chunks CRLF if not enough data are available 2023 - BUG/MEDIUM: thread/http: Add missing locks in set-map and add-acl HTTP rules 2024 - BUG/MEDIUM: stream: Don't request a server connection if a shutw was scheduled 2025 - BUG/MINOR: 51d: Get the request channel to call CHECK_HTTP_MESSAGE_FIRST() 2026 - BUG/MINOR: da: Get the request channel to call CHECK_HTTP_MESSAGE_FIRST() 2027 - MINOR: gcc: Fix a silly gcc warning in connect_server() 2028 - MINOR: ssl/cli: async fd io-handlers printable on show fd 2029 - Revert "CLEANUP: wurfl: remove dead, broken and unmaintained code" 2030 - BUILD: add USE_WURFL to the list of known build options 2031 - MINOR: wurfl: indicate in haproxy -vv the wurfl version in use 2032 - BUILD: wurfl: build fix for 1.9/2.0 code base 2033 - CLEANUP: wurfl: removed deprecated methods 2034 - DOC: wurfl: added point of contact in MAINTAINERS file 2035 - MINOR: wurfl: enabled multithreading mode 2036 - MINOR: contrib: dummy wurfl library 2037 - MINOR: dns: dns_requester structures are now in a memory pool 2038 - MINOR: dns: move callback affection in dns_link_resolution() 2039 - MINOR: obj_type: new object type for struct stream 2040 - MINOR: action: new '(http-request|tcp-request content) do-resolve' action 2041 - MINOR: log: Extract some code to send syslog messages. 2042 - REGTEST: replace LEVEL option by a more human readable one. 2043 - REGTEST: rename the reg test files. 2044 - REGTEST: adapt some reg tests after renaming. 2045 - REGTEST: make the "run-regtests" script search for tests in reg-tests by default 2046 - BUG/MAJOR: stream: Missing DNS context initializations. 2047 - BUG/MEDIUM: stream: Fix the way early aborts on the client side are handled 2048 - BUG/MINOR: spoe: Don't systematically wakeup SPOE stream in the applet handler 2049 - BUG/MEDIUM: ssl: Return -1 on recv/send if we got EAGAIN. 2050 - BUG/MAJOR: lb/threads: fix AB/BA locking issue in round-robin LB 2051 - BUG/MAJOR: muxes: Use the HTX mode to find the best mux for HTTP proxies only 2052 - BUG/MINOR: htx: Exclude TCP proxies when the HTX mode is handled during startup 2053 - CLEANUP: task: report calls as unsigned in show sess 2054 - MINOR: tasks/activity: report the context switch and task wakeup rates 2055 - MINOR: stream: measure and report a stream's call rate in "show sess" 2056 - MINOR: applet: measure and report an appctx's call rate in "show sess" 2057 - BUILD: extend Travis CI config to support more platforms 2058 - REGTEST: exclude osx and generic targets for 40be_2srv_odd_health_checks 2059 - REGTEST: relax the IPv6 address format checks in converters_ipmask_concat_strcmp_field_word 2060 - REGTEST: exclude OSX and generic targets from abns_socket.vtc 2061 - BUILD: travis: remove the "allow_failures" entry 2062 - BUG/MINOR: activity: always initialize the profiling variable 2063 - MINOR: activity: make the profiling status per thread and not global 2064 - MINOR: activity: enable automatic profiling turn on/off 2065 - CLEANUP: standard: use proper const to addr_to_str() and port_to_str() 2066 - BUG/MINOR: proto_http: properly reset the stream's call rate on keep-alive 2067 - MINOR: connection: make the debugging helper functions safer 2068 - MINOR: stream/debug: make a stream dump and crash function 2069 - MEDIUM: appctx/debug: force a crash if an appctx spins over itself forever 2070 - MEDIUM: stream/debug: force a crash if a stream spins over itself forever 2071 - MEDIUM: streams: measure processing time and abort when detecting bugs 2072 - BUILD/MEDIUM: contrib: Dummy DeviceAtlas API. 2073 - MEDIUM: da: HTX mode support. 2074 - BUG/MEDIUM: mux-h2: properly deal with too large headers frames 2075 - BUG/MINOR: http: Call stream_inc_be_http_req_ctr() only one time per request 2076 - BUG/MEDIUM: spoe: arg len encoded in previous frag frame but len changed 2077 - MINOR: spoe: Use the sample context to pass frag_ctx info during encoding 2078 - DOC: contrib/modsecurity: Typos and fix the reject example 2079 - BUG/MEDIUM: contrib/modsecurity: If host header is NULL, don't try to strdup it 2080 - MINOR: log: Add "sample" new keyword to "log" lines. 2081 - MINOR: log: Enable the log sampling and load-balancing feature. 2082 - DOC: log: Document the sampling and load-balancing logging feature. 2083 - REGTEST: Add a new reg test for log load-balancing feature. 2084 - BUG/MAJOR: map/acl: real fix segfault during show map/acl on CLI 2085 - REGTEST: Make this reg test be Linux specific. 2086 - CLEANUP: task: move the task_per_thread definition to task.h 2087 - MINOR: activity: report context switch counts instead of rates 2088 - MINOR: threads: Implement HA_ATOMIC_LOAD(). 2089 - BUG/MEDIUM: port_range: Make the ring buffer lock-free. 2090 - BUG/MEDIUM: listener: Fix how unlimited number of consecutive accepts is handled 2091 - MINOR: config: Test validity of tune.maxaccept during the config parsing 2092 - CLEANUP: config: Don't alter listener->maxaccept when nbproc is set to 1 2093 - BUG/MEDIUM: servers: fix typo "src" instead of "srv" 2094 - BUG/MEDIUM: ssl: Don't pretend we can retry a recv/send if we got a shutr/w. 2095 - BUG/MINOR: haproxy: fix rule->file memory leak 2096 - BUG/MINOR: log: properly free memory on logformat parse error and deinit() 2097 - BUG/MINOR: checks: free memory allocated for tasklets 2098 - BUG/MEDIUM: pattern: fix memory leak in regex pattern functions 2099 - BUG/MEDIUM: channels: Don't forget to reset output in channel_erase(). 2100 - BUG/MEDIUM: connections: Make sure we remove CO_FL_SESS_IDLE on disown. 2101 - MINOR: threads: flatten the per-thread cpu-map 2102 - MINOR: init/threads: remove the useless tids[] array 2103 - MINOR: init/threads: make the threads array global 2104 - BUG/MEDIUM: ssl: Use the early_data API the right way. 2105 - BUG/MEDIUM: streams: Don't add CF_WRITE_ERROR if early data were rejected. 2106 - MEDIUM: streams: Add the ability to retry a request on L7 failure. 2107 - MEDIUM: streams: Add a way to replay failed 0rtt requests. 2108 - MEDIUM: streams: Add a new keyword for retry-on, "junk-response" 2109 - BUG/MINOR: stream: also increment the retry stats counter on L7 retries 2110 - BUG/MEDIUM: checks: make sure the warmup task takes the server lock 2111 - BUG/MINOR: logs/threads: properly split the log area upon startup 2112 - BUILD: extend travis-ci matrix 2113 - CLEANUP: Remove appsession documentation 2114 - DOC: Fix typo in keyword matrix 2115 - BUILD: remove "build_libressl" duplicate declaration 2116 - BUILD: travis-ci: get back to osx without openssl support 2117 - BUILD: enable several LibreSSL hacks, including 2118 - BUILD: temporarily mark LibreSSL builds as allowed to fail 2119 - BUILD: travis: TMPDIR replacement. 2120 - BUG/MEDIUM: ssl: Don't attempt to use early data with libressl. 2121 - MINOR: doc: Document allow-0rtt on the server line. 2122 - MINOR: doc: Document the interaction of allow-0rtt and retry-on 0rtt-rejected. 2123 - MEDIUM: proto: Change the prototype of the connect() method. 2124 - MEDIUM: tcp: add the "tfo" option to support TCP fastopen on the server 2125 - MINOR: config: Extract the code of "stick-table" line parsing. 2126 - BUILD/MINOR: stick-table: Compilation fix. 2127 - MEDIUM: stick-table: Stop handling stick-tables as proxies. 2128 - MINOR: stick-tables: Add peers process binding computing. 2129 - MINOR: stick-table: Add prefixes to stick-table names. 2130 - MINOR: peers: Do not emit global stick-table names. 2131 - DOC: Update for "table" lines in "peers" section. 2132 - REGTEST: Add reg tests for "table" lines in "peers" sections. 2133 - MEDIUM: regex: modify regex_comp() to atomically allocate/free the my_regex struct 2134 - REGTEST: make the tls_health_checks test much faster 2135 - REGTEST: make the "table in peers" test require v2.0 2136 - BUG/MINOR: mux-h2: rely on trailers output not input to turn them to empty data 2137 - BUG/MEDIUM: h2/htx: always fail on too large trailers 2138 - MEDIUM: mux-h2: discard contents that are to be sent after a shutdown 2139 - BUG/MEDIUM: mux-h2/htx: never wait for EOM when processing trailers 2140 - BUG/MEDIUM: h2/htx: never leave a trailers block alone with no EOM block 2141 - REGTEST: Flag some slow reg tests. 2142 - REGTEST: Reg tests file renaming. 2143 - REGTEST: Wrong renaming for one reg test. 2144 - REGTEST: Wrong assumption in IP:port logging test. 2145 - BUG/MINOR: mworker/ssl: close OpenSSL FDs on reload 2146 - MINOR: systemd: Use the variables from /etc/default/haproxy 2147 - MINOR: systemd: Make use of master socket in systemd unit 2148 - MINOR: systemd: support /etc/sysconfig/ for redhat based distrib 2149 - BUG/MEDIUM: stick-table: fix regression caused by a change in proxy struct 2150 - BUG/MEDIUM: tasks: fix possible segfault on task_destroy() 2151 - CLEANUP: task: remove unneeded tests before task_destroy() 2152 - MINOR: mworker: support a configurable maximum number of reloads 2153 - BUG/MINOR: mux-h2: fix the condition to close a cs-less h2s on the backend 2154 - BUG/MEDIUM: spoe: Be sure the sample is found before setting its context 2155 - BUG/MINOR: mux-h1: Fix the parsing of trailers 2156 - BUG/MINOR: htx: Never transfer more than expected in htx_xfer_blks() 2157 - MINOR: htx: Split on DATA blocks only when blocks are moved to an HTX message 2158 - MINOR: htx: Don't try to append a trailer block with the previous one 2159 - MINOR: htx: Remove support for unused OOB HTX blocks 2160 - BUILD: travis-ci bugfixes and improvements 2161 - BUG/MEDIUM: servers: Don't use the same srv flag for cookie-set and TFO. 2162 - BUG/MEDIUM: h2: Make sure we set send_list to NULL in h2_detach(). 2163 - BUILD: ssl: fix again a libressl build failure after the openssl FD leak fix 2164 - CLEANUP: ssl-sock: use HA_OPENSSL_VERSION_NUMBER instead of OPENSSL_VERSION_NUMBER 2165 - BUILD: ssl: make libressl use its own version numbers 2166 - CLEANUP: ssl: remove 57 occurrences of useless tests on LIBRESSL_VERSION_NUMBER 2167 - MINOR: ssl: enable aes_gcm_dec on LibreSSL 2168 - BUILD: ssl: fix libressl build again after aes-gcm-enc 2169 - REORG: ssl: move openssl-compat from proto to common 2170 - REORG: ssl: move some OpenSSL defines from ssl_sock to openssl-compat 2171 - CLEANUP: ssl: never include openssl/*.h outside of openssl-compat.h anymore 2172 - CLEANUP: ssl: make inclusion of openssl headers safe 2173 - BUILD: add BoringSSL to travis-ci build matrix 2174 - BUILD: threads: Add __ha_cas_dw fallback for single threaded builds 2175 - BUG/MINOR: stream: Attach the read side on the response as soon as possible 2176 - BUG/MEDIUM: http: Use pointer to the begining of input to parse message headers 2177 - BUG/MEDIUM: h2: Don't check send_wait to know if we're in the send_list. 2178 - BUG/MEDIUM: streams: Make sur SI_FL_L7_RETRY is set before attempting a retry. 2179 - MEDIUM: streams: Add a new http action, disable-l7-retry. 2180 - MINOR: streams: Introduce a new retry-on keyword, all-retryable-errors. 2181 - BUG/MINOR: vars: Fix memory leak in vars_check_arg 2182 - BUILD: travis-ci: make TMPDIR global variable in travis-ci 2183 - CLEANUP: ssl: move the SSL_OP_* and SSL_MODE_* definitions to openssl-compat 2184 - CLEANUP: ssl: remove ifdef around SSL_CTX_get_extra_chain_certs() 2185 - CLEANUP: ssl: move all BIO_* definitions to openssl-compat 2186 - BUILD: threads: fix again the __ha_cas_dw() definition 2187 - BUG/MAJOR: mux-h2: do not add a stream twice to the send list 2188 - Revert "BUG/MINOR: vars: Fix memory leak in vars_check_arg" 2189 - BUG/MINOR: peers: Fix memory leak in cfg_parse_peers 2190 - BUG/MINOR: htx: make sure to always initialize the HTTP method when parsing a buffer 2191 - REGTEST: fix tls_health_checks random failures on MacOS in Travis-CI 2192 - MINOR: spoe: Set the argument chunk size to 0 when SPOE variables are checked 2193 - BUG/MINOR: vars: Fix memory leak in vars_check_arg 2194 - BUG/MAJOR: ssl: segfault upon an heartbeat request 2195 - MINOR: spoa-server: Clone the v1.7 spoa-example project 2196 - MINOR: spoa-server: move some definition from spoa_server.c to spoa_server.h 2197 - MINOR: spoa-server: Externalise debug functions 2198 - MINOR: spoe-server: rename "worker" functions 2199 - MINOR: spoa-server: Replace the thread init system by processes 2200 - MINOR: spoa-server: With debug mode, start only one process 2201 - MINOR: spoa-server: Allow registering external processes 2202 - MINOR: spoa-server: Allow registering message processors 2203 - MINOR: spoa-server: Load files 2204 - MINOR: spoa-server: Prepare responses 2205 - MINOR: spoa-server: Execute registered callbacks 2206 - MINOR: spoa-server: Add Lua processing 2207 - MINOR: spoa-server: Add python 2208 - MINOR/DOC: spoe-server: Add documentation 2209 - BUG/MEDIUM: connections: Don't forget to set xprt_ctx to NULL on close. 2210 - MINOR: lists: add LIST_ADDED() to check if an element belongs to a list 2211 - CLEANUP: mux-h2: use LIST_ADDED() instead of LIST_ISEMPTY() where relevant 2212 - MINOR: mux-h2: add two H2S flags to report the need for shutr/shutw 2213 - CLEANUP: mux-h2: simply use h2s->flags instead of ret in h2_deferred_shut() 2214 - CLEANUP: connection: remove the handle field from the wait_event struct 2215 - BUG/MINOR: log: Wrong log format initialization. 2216 - BUG/MINOR: mux-h2: make the do_shut{r,w} functions more robust against retries 2217 - BUG/MINOR: mworker: use after free when the PID not assigned 2218 - MINOR: mux-h2: remove useless test on stream ID vs last in wake function 2219 - MINOR: mux-h2: make h2_wake_some_streams() not depend on the CS flags 2220 - MINOR: mux-h2: make h2s_wake_one_stream() the only function to deal with CS 2221 - MINOR: mux-h2: make h2s_wake_one_stream() not depend on temporary CS flags 2222 - BUG/MINOR: mux-h2: make sure to honor KILL_CONN in do_shut{r,w} 2223 - CLEANUP: mux-h2: don't test for impossible CS_FL_REOS conditions 2224 - MINOR: mux-h2: add macros to check multiple stream states at once 2225 - MINOR: mux-h2: stop relying on CS_FL_REOS 2226 - BUG/MEDIUM: mux-h2: Set EOI on the conn_stream during h2_rcv_buf() 2227 - BUILD: debug: make gcc not complain on the ABORT_NOW() macro 2228 - MINOR: debug: add a new BUG_ON macro 2229 - MINOR: h2: Use BUG_ON() to enforce rules in subscribe/unsubscribe. 2230 - MINOR: h1: Use BUG_ON() to enforce rules in subscribe/unsubscribe. 2231 - MINOR: connections: Use BUG_ON() to enforce rules in subscribe/unsubscribe. 2232 - BUILD: ist: turn the lower/upper case tables to literal on obsolete linkers 2233 22342019/03/26 : 2.0-dev2 2235 - CLEANUP: http: Remove unreachable code in parse_http_req_capture 2236 - CLEANUP: stream: Remove bogus loop in conn_si_send_proxy 2237 - MINOR: lists: Implement locked variations. 2238 - MEDIUM: servers: Used a locked list for idle_orphan_conns. 2239 - MEDIUM: servers: Reorganize the way idle connections are cleaned. 2240 - BUG/MEDIUM: lists: Properly handle the case we're removing the first elt. 2241 - MINOR: cfgparse: Add a cast to make gcc happier. 2242 - BUG/MEDIUM: standard: Wrong reallocation size. 2243 - BUG/MINOR: listener: keep accept rate counters accurate under saturation 2244 - DOC: fix alphabetic ordering for "tune.fail-alloc" setting 2245 - MAJOR: config: disable support for nbproc and nbthread in parallel 2246 - MEDIUM: listener: keep a single thread-mask and warn on "process" misuse 2247 - MAJOR: listener: do not hold the listener lock in listener_accept() 2248 - MINOR: listener: maintain a per-thread count of the number of connections on a listener 2249 - MINOR: tools: implement functions to look up the nth bit set in a mask 2250 - MINOR: listener: pre-compute some thread counts per bind_conf 2251 - MINOR: listener: implement multi-queue accept for threads 2252 - MAJOR: listener: use the multi-queue for multi-thread listeners 2253 - MINOR: activity: add accept queue counters for pushed and overflows 2254 - MINOR: config: add global tune.listener.multi-queue setting 2255 - MAJOR: threads: enable one thread per CPU by default 2256 - DOC: update management.txt to reflect that threads are used by default 2257 - BUG/MINOR: config: don't over-count the global maxsock value 2258 - BUG/MEDIUM: list: fix the rollback on addq in the locked liss 2259 - BUG/MEDIUM: list: fix LIST_POP_LOCKED's removal of the last pointer 2260 - BUG/MEDIUM: list: add missing store barriers when updating elements and head 2261 - MINOR: list: make the delete and pop operations idempotent 2262 - MINOR: server: remove a few unneeded LIST_INIT calls after LIST_DEL_LOCKED 2263 - BUG/MEDIUM: listener: use a self-locked list for the dequeue lists 2264 - BUG/MEDIUM: listener: make sure the listener never accepts too many conns 2265 - BUG/MEDIUM: list: correct fix for LIST_POP_LOCKED's removal of last element 2266 - MINOR: listener: introduce listener_backlog() to report the backlog value 2267 - MINOR: listener: do not needlessly set l->maxconn 2268 - MINOR: proxy: do not change the listeners' maxconn when updating the frontend's 2269 - MEDIUM: config: don't enforce a low frontend maxconn value anymore 2270 - MINOR: peers: Add a message for heartbeat. 2271 - MINOR: global: keep a copy of the initial rlim_fd_cur and rlim_fd_max values 2272 - BUG/MINOR: init: never lower rlim_fd_max 2273 - BUG/MINOR: checks: make external-checks restore the original rlim_fd_cur/max 2274 - BUG/MINOR: mworker: be careful to restore the original rlim_fd_cur/max on reload 2275 - MINOR: init: make the maxpipe computation more accurate 2276 - MINOR: init: move some maxsock updates earlier 2277 - MEDIUM: init: make the global maxconn default to what rlim_fd_cur permits 2278 - REGTEST: fix a spurious "nbthread 4" in the connection test 2279 - DOC: update the text related to the global maxconn value 2280 - BUG/MAJOR: mux-h2: fix race condition between close on both ends 2281 - MINOR: sample: Replace "req.ungrpc" smp fetch by a "ungrpc" converter. 2282 - BUG/MEDIUM: list: fix again LIST_ADDQ_LOCKED 2283 - MINOR: htx: unconditionally handle parsing errors in requests or responses 2284 - MINOR: mux-h2: always pass HTX_FL_PARSING_ERROR between h2s and buf on RX 2285 - BUG/MEDIUM: h2/htx: verify that :path doesn't contain invalid chars 2286 - MINOR: sample: Code factorization "ungrpc" converter. 2287 - MINOR: sample: Rework gRPC converter code. 2288 - CLEANUP: wurfl: remove dead, broken and unmaintained code 2289 - MINOR: config: relax the range checks on cpu-map 2290 - BUG/MINOR: ssl: fix warning about ssl-min/max-ver support 2291 - MINOR: sample: Extract some protocol buffers specific code. 2292 - DOC: Remove tabs and fixed punctuation. 2293 - MINOR: sample: Add a protocol buffers specific converter. 2294 - REGTEST: Peers reg tests. 2295 - REGTEST: Enable reg tests with HEAD HTTP method usage. 2296 - MINOR: lists: add a LIST_DEL_INIT() macro 2297 - MINOR: task: use LIST_DEL_INIT() to remove a task from the queue 2298 - MINOR: listener: improve incoming traffic distribution 2299 - MINOR: tools: implement my_flsl() 2300 - MEDIUM: listener: change the LB algorithm again to use two round robins instead 2301 - CLEANUP: listener: remove old thread bit mapping 2302 - MINOR: listener: move thr_idx from the bind_conf to the listener 2303 - BUG/MEDIUM: logs: Only attempt to free startup_logs once. 2304 - BUG/MAJOR: config: Wrong maxconn adjustment. 2305 - BUG/MEDIUM: 51d: fix possible segfault on deinit_51degrees() 2306 - OPTIM: task: limit the impact of memory barriers in taks_remove_from_task_list() 2307 - MINOR: fd: Remove debugging code. 2308 - BUG/MEDIUM: listeners: Don't call fd_stop_recv() if fd_updt is NULL. 2309 - MINOR: threads: Implement __ha_barrier_atomic*. 2310 - MEDIUM: threads: Use __ATOMIC_SEQ_CST when using the newer atomic API. 2311 - MINOR: threads: Add macros to do atomic operation with no memory barrier. 2312 - MEDIUM: various: Use __ha_barrier_atomic* when relevant. 2313 - MEDIUM: applets: Use the new _HA_ATOMIC_* macros. 2314 - MEDIUM: xref: Use the new _HA_ATOMIC_* macros. 2315 - MEDIUM: fd: Use the new _HA_ATOMIC_* macros. 2316 - MEDIUM: freq_ctr: Use the new _HA_ATOMIC_* macros. 2317 - MEDIUM: proxy: Use the new _HA_ATOMIC_* macros. 2318 - MEDIUM: server: Use the new _HA_ATOMIC_* macros. 2319 - MEDIUM: task: Use the new _HA_ATOMIC_* macros. 2320 - MEDIUM: activity: Use the new _HA_ATOMIC_* macros. 2321 - MEDIUM: backend: Use the new _HA_ATOMIC_* macros. 2322 - MEDIUM: cache: Use the new _HA_ATOMIC_* macros. 2323 - MEDIUM: checks: Use the new _HA_ATOMIC_* macros. 2324 - MEDIUM: pollers: Use the new _HA_ATOMIC_* macros. 2325 - MEDIUM: compression: Use the new _HA_ATOMIC_* macros. 2326 - MEDIUM: spoe: Use the new _HA_ATOMIC_* macros. 2327 - MEDIUM: threads: Use the new _HA_ATOMIC_* macros. 2328 - MEDIUM: http: Use the new _HA_ATOMIC_* macros. 2329 - MEDIUM: lb/threads: Use the new _HA_ATOMIC_* macros. 2330 - MEDIUM: listeners: Use the new _HA_ATOMIC_* macros. 2331 - MEDIUM: logs: Use the new _HA_ATOMIC_* macros. 2332 - MEDIUM: memory: Use the new _HA_ATOMIC_* macros. 2333 - MEDIUM: peers: Use the new _HA_ATOMIC_* macros. 2334 - MEDIUM: proto_tcp: Use the new _HA_ATOMIC_* macros. 2335 - MEDIUM: queues: Use the new _HA_ATOMIC_* macros. 2336 - MEDIUM: sessions: Use the new _HA_ATOMIC_* macros. 2337 - MEDIUM: ssl: Use the new _HA_ATOMIC_* macros. 2338 - MEDIUM: stream: Use the new _HA_ATOMIC_* macros. 2339 - MEDIUM: tcp_rules: Use the new _HA_ATOMIC_* macros. 2340 - MEDIUM: time: Use the new _HA_ATOMIC_* macros. 2341 - MEDIUM: vars: Use the new _HA_ATOMIC_* macros. 2342 - MINOR: config: remove obsolete use of DEFAULT_MAXCONN at various places 2343 - MINOR: config: continue to rely on DEFAULT_MAXCONN to set the minimum maxconn 2344 - BUG/MEDIUM: list: fix incorrect pointer unlocking in LIST_DEL_LOCKED() 2345 - BUG/MEDIUM: listener: make sure we don't pick stopped threads 2346 - MEDIUM: list: Remove useless barriers. 2347 - MEDIUM: list: Use _HA_ATOMIC_* 2348 - MEDIUM: connections: Use _HA_ATOMIC_* 2349 - BUG/MAJOR: tasks: Use the TASK_GLOBAL flag to know if we're in the global rq. 2350 - BUG/MEDIUM: threads/fd: do not forget to take into account epoll_fd/pipes 2351 - BUG/MEDIUM: init/threads: consider epoll_fd/pipes for automatic maxconn calculation 2352 - BUG/MEDIUM: tasks: Make sure we wake sleeping threads if needed. 2353 - BUG/MINOR: mux-h1: Don't report an error on EOS if no message was received 2354 - BUG/MINOR: stats/htx: Call channel_add_input() when response headers are sent 2355 - BUG/MINOR: lua/htx: Use channel_add_input() when response data are added 2356 - BUG/MINOR: lua/htx: Don't forget to call htx_to_buf() when appropriate 2357 - MINOR: stats: Add the status code STAT_STATUS_IVAL to handle invalid requests 2358 - MINOR: stats: Move stuff about the stats status codes in stats files 2359 - BUG/MINOR: stats: Be more strict on what is a valid request to the stats applet 2360 - Revert "REGTEST: Enable reg tests with HEAD HTTP method usage." 2361 - BUILD: listener: shut up a build warning when threads are disabled 2362 - BUILD: Makefile: allow the reg-tests target to be verbose 2363 - BUILD: Makefile: resolve LEVEL before calling run-regtests 2364 - BUG/MAJOR: spoe: Fix initialization of thread-dependent fields 2365 - BUG/MAJOR: stats: Fix how huge POST data are read from the channel 2366 - BUG/MINOR: http/counters: fix missing increment of fe->srv_aborts 2367 - BUG/MEDIUM: mux-h2: Always wakeup streams with no id to avoid frozen streams 2368 - MINOR: mux-h2: Set REFUSED_STREAM error to reset a stream if no data was never sent 2369 - MINOR: muxes: Report the Last read with a dedicated flag 2370 - MINOR: proto-http/proto-htx: Make error handling clearer during data forwarding 2371 - BUILD: tools: fix a build warning on some 32-bit archs 2372 - MINOR: init: report the list of optionally available services 2373 - MEDIUM: proto_htx: Switch to infinite forwarding if there is no data filter 2374 - BUG/MINOR: cache: Fully consume large requests in the cache applet 2375 - BUG/MINOR: stats: Fully consume large requests in the stats applet 2376 - BUG/MEDIUM: lua: Fully consume large requests when an HTTP applet ends 2377 - MINOR: proto_http: Add function to handle the header "Expect: 100-continue" 2378 - MINOR: proto_htx: Add function to handle the header "Expect: 100-continue" 2379 - MINOR: stats/cache: Handle the header Expect when applets are registered 2380 - MINOR: http/applets: Handle all applets intercepting HTTP requests the same way 2381 - CLEANUP: cache: don't export http_cache_applet anymore 2382 - MINOR: lua: Don't handle the header Expect in lua HTTP applets anymore 2383 - BUG/MINOR: doc: Be accurate on the behavior on pool-purge-delay. 2384 - Revert "MEDIUM: proto_htx: Switch to infinite forwarding if there is no data filter" 2385 - BUG/MEDIUM: mux-h2: Make sure we destroyed the h2s once shutr/shutw is done. 2386 - BUG/MEDIUM: mux-h2: Don't bother keeping the h2s if detaching and nothing to send. 2387 - BUG/MEDIUM: mux-h2: Use the right list in h2_stop_senders(). 2388 - MINOR: mux-h2: copy small data blocks more often and reduce the number of pauses 2389 - CLEANUP: mux-h2: add some comments to help understand the code 2390 - BUG/MEDIUM: ssl: ability to set TLS 1.3 ciphers using ssl-default-server-ciphersuites 2391 - BUG/MINOR: log: properly format IPv6 address when LOG_OPT_HEXA modifier is used. 2392 - BUG/MEDIUM: h2: Try to be fair when sending data. 2393 - BUG/MINOR: proto-http: Don't forward request body anymore on error 2394 - MINOR: mux-h2: Remove useless test on ES flag in h2_frt_transfer_data() 2395 - MINOR: connection: and new flag to mark end of input (EOI) 2396 - MINOR: channel: Report EOI on the input channel if it was reached in the mux 2397 - MEDIUM: mux-h2: Don't mix the end of the message with the end of stream 2398 - MINOR: mux-h1: Set CS_FL_EOI the end of the message is reached 2399 - BUG/MEDIUM: http/htx: Fix handling of the option abortonclose 2400 - CLEANUP: muxes/stream-int: Remove flags CS_FL_READ_NULL and SI_FL_READ_NULL 2401 - MEDIUM: proto_htx: Reintroduce the infinite forwarding on data 2402 - BUG/MEDIUM: h2: only destroy the h2s if h2s->cs is NULL. 2403 - BUG/MEDIUM: h2: Use the new sending_list in h2s_notify_send(). 2404 - BUG/MEDIUM: h2: Follow the same logic in h2_deferred_shut than in h2_snd_buf. 2405 - BUG/MEDIUM: h2: Remove the tasklet from the task list if unsubscribing. 2406 - BUG/MEDIUM: task/h2: add an idempotent task removal fucntion 2407 - CLEANUP: task: only perform a LIST_DEL() when the list is not empty 2408 - BUG/MEDIUM: mux-h2: make sure to always notify streams of EOS condition 2409 - CONTRIB: debug: report the CS and CF's EOI flags 2410 - MINOR: channel: don't unset CF_SHUTR_NOW after shutting down. 2411 24122019/02/26 : 2.0-dev1 2413 - MINOR: mux-h2: only increase the connection window with the first update 2414 - REGTESTS: remove the expected window updates from H2 handshakes 2415 - BUG/MINOR: mux-h2: make empty HEADERS frame return a connection error 2416 - BUG/MEDIUM: mux-h2: mark that we have too many CS once we have more than the max 2417 - MEDIUM: mux-h2: remove padlen during headers phase 2418 - MINOR: h2: add a bit-based frame type representation 2419 - MINOR: mux-h2: remove useless check for empty frame length in h2s_decode_headers() 2420 - MEDIUM: mux-h2: decode HEADERS frames before allocating the stream 2421 - MINOR: mux-h2: make h2c_send_rst_stream() use the dummy stream's error code 2422 - MINOR: mux-h2: add a new dummy stream for the REFUSED_STREAM error code 2423 - MINOR: mux-h2: fail stream creation more cleanly using RST_STREAM 2424 - MINOR: buffers: add a new b_move() function 2425 - MINOR: mux-h2: make h2_peek_frame_hdr() support an offset 2426 - MEDIUM: mux-h2: handle decoding of CONTINUATION frames 2427 - CLEANUP: mux-h2: remove misleading comments about CONTINUATION 2428 - BUG/MEDIUM: servers: Don't try to reuse connection if we switched server. 2429 - BUG/MEDIUM: tasks: Decrement tasks_run_queue in tasklet_free(). 2430 - BUG/MINOR: htx: send the proper authenticate header when using http-request auth 2431 - BUG/MEDIUM: mux_h2: Don't add to the idle list if we're full. 2432 - BUG/MEDIUM: servers: Fail if we fail to allocate a conn_stream. 2433 - BUG/MAJOR: servers: Use the list api correctly to avoid crashes. 2434 - BUG/MAJOR: servers: Correctly use LIST_ELEM(). 2435 - BUG/MAJOR: sessions: Use an unlimited number of servers for the conn list. 2436 - BUG/MEDIUM: servers: Flag the stream_interface on handshake error. 2437 - MEDIUM: servers: Be smarter when switching connections. 2438 - MEDIUM: sessions: Keep track of which connections are idle. 2439 - MINOR: payload: add sample fetch for TLS ALPN 2440 - BUG/MEDIUM: log: don't mark log FDs as non-blocking on terminals 2441 - MINOR: channel: Add the function channel_add_input 2442 - MINOR: stats/htx: Call channel_add_input instead of updating channel state by hand 2443 - BUG/MEDIUM: cache: Be sure to end the forwarding when XFER length is unknown 2444 - BUG/MAJOR: htx: Return the good block address after a defrag 2445 - MINOR: lb: allow redispatch when using consistent hash 2446 - CLEANUP: mux-h2: fix end-of-stream flag name when processing headers 2447 - BUG/MEDIUM: mux-h2: always restart reading if data are available 2448 - BUG/MINOR: mux-h2: set the stream-full flag when leaving h2c_decode_headers() 2449 - BUG/MINOR: mux-h2: don't check the CS count in h2c_bck_handle_headers() 2450 - BUG/MINOR: mux-h2: mark end-of-stream after processing response HEADERS, not before 2451 - BUG/MINOR: mux-h2: only update rxbuf's length for H1 headers 2452 - BUG/MEDIUM: mux-h1: use per-direction flags to indicate transitions 2453 - BUG/MEDIUM: mux-h1: make HTX chunking consistent with H2 2454 - BUG/MAJOR: stream-int: Update the stream expiration date in stream_int_notify() 2455 - BUG/MEDIUM: proto-htx: Set SI_FL_NOHALF on server side when request is done 2456 - BUG/MEDIUM: mux-h1: Add a task to handle connection timeouts 2457 - MINOR: mux-h2: make h2c_decode_headers() return a status, not a count 2458 - MINOR: mux-h2: add a new dummy stream : h2_error_stream 2459 - MEDIUM: mux-h2: make h2c_decode_headers() support recoverable errors 2460 - BUG/MINOR: mux-h2: detect when the HTX EOM block cannot be added after headers 2461 - MINOR: mux-h2: remove a misleading and impossible test 2462 - CLEANUP: mux-h2: clean the stream error path on HEADERS frame processing 2463 - MINOR: mux-h2: check for too many streams only for idle streams 2464 - MINOR: mux-h2: set H2_SF_HEADERS_RCVD when a HEADERS frame was decoded 2465 - BUG/MEDIUM: mux-h2: decode trailers in HEADERS frames 2466 - MINOR: h2: add h2_make_h1_trailers to turn H2 headers to H1 trailers 2467 - MEDIUM: mux-h2: pass trailers to H1 (legacy mode) 2468 - MINOR: htx: add a new function to add a block without filling it 2469 - MINOR: h2: add h2_make_htx_trailers to turn H2 headers to HTX trailers 2470 - MEDIUM: mux-h2: pass trailers to HTX 2471 - MINOR: mux-h1: parse the content-length header on output and set H1_MF_CLEN 2472 - BUG/MEDIUM: mux-h1: don't enforce chunked encoding on requests 2473 - MINOR: mux-h2: make HTX_BLK_EOM processing idempotent 2474 - MINOR: h1: make the H1 headers block parser able to parse headers only 2475 - MEDIUM: mux-h2: emit HEADERS frames when facing HTX trailers blocks 2476 - MINOR: stream/htx: Add info about the HTX structs in "show sess all" command 2477 - MINOR: stream: Add the subscription events of SIs in "show sess all" command 2478 - MINOR: mux-h1: Add the subscription events in "show fd" command 2479 - BUG/MEDIUM: h1: Get the h1m state when restarting the headers parsing 2480 - BUG/MINOR: cache/htx: Be sure to count partial trailers 2481 - BUG/MEDIUM: h1: In h1_init(), wake the tasklet instead of calling h1_recv(). 2482 - BUG/MEDIUM: server: Defer the mux init until after xprt has been initialized. 2483 - MINOR: connections: Remove a stall comment. 2484 - BUG/MEDIUM: cli: make "show sess" really thread-safe 2485 - BUILD: add a new file "version.c" to carry version updates 2486 - MINOR: stream/htx: add the HTX flags output in "show sess all" 2487 - MINOR: stream/cli: fix the location of the waiting flag in "show sess all" 2488 - MINOR: stream/cli: report more info about the HTTP messages on "show sess all" 2489 - BUG/MINOR: lua: bad args are returned for Lua actions 2490 - BUG/MEDIUM: lua: dead lock when Lua tasks are trigerred 2491 - MINOR: htx: Add an helper function to get the max space usable for a block 2492 - MINOR: channel/htx: Add HTX version for some helper functions 2493 - BUG/MEDIUM: cache/htx: Respect the reserve when cached objects are served 2494 - BUG/MINOR: stats/htx: Respect the reserve when the stats page is dumped 2495 - DOC: regtest: make it clearer what the purpose of the "broken" series is 2496 - REGTEST: mailers: add new test for 'mailers' section 2497 - REGTEST: Add a reg test for health-checks over SSL/TLS. 2498 - BUG/MINOR: mux-h1: Close connection on shutr only when shutw was really done 2499 - MEDIUM: mux-h1: Clarify how shutr/shutw are handled 2500 - BUG/MINOR: compression: Disable it if another one is already in progress 2501 - BUG/MINOR: filters: Detect cache+compression config on legacy HTTP streams 2502 - BUG/MINOR: cache: Disable the cache if any compression filter precedes it 2503 - REGTEST: Add some informatoin to test results. 2504 - MINOR: htx: Add a function to truncate all blocks after a specific offset 2505 - MINOR: channel/htx: Add the HTX version of channel_truncate/erase 2506 - BUG/MINOR: proto_htx: Use HTX versions to truncate or erase a buffer 2507 - BUG/CRITICAL: mux-h2: re-check the frame length when PRIORITY is used 2508 - DOC: Fix typo in req.ssl_alpn example (commit 4afdd138424ab...) 2509 - DOC: http-request cache-use / http-response cache-store expects cache name 2510 - REGTEST: "capture (request|response)" regtest. 2511 - BUG/MINOR: lua/htx: Respect the reserve when data are send from an HTX applet 2512 - REGTEST: filters: add compression test 2513 - BUG/MEDIUM: init: Initialize idle_orphan_conns for first server in server-template 2514 - BUG/MEDIUM: ssl: Disable anti-replay protection and set max data with 0RTT. 2515 - DOC: Be a bit more explicit about allow-0rtt security implications. 2516 - MINOR: mux-h1: make the mux_h1_ops struct static 2517 - BUILD: makefile: add an EXTRA_OBJS variable to help build optional code 2518 - BUG/MEDIUM: connection: properly unregister the mux on failed initialization 2519 - BUG/MAJOR: cache: fix confusion between zero and uninitialized cache key 2520 - REGTESTS: test case for map_regm commit 271022150d 2521 - REGTESTS: Basic tests for concat,strcmp,word,field,ipmask converters 2522 - REGTESTS: Basic tests for using maps to redirect requests / select backend 2523 - DOC: REGTESTS README varnishtest -Dno-htx= define. 2524 - MINOR: spoe: Make the SPOE filter compatible with HTX proxies 2525 - MINOR: checks: Store the proxy in checks. 2526 - BUG/MEDIUM: checks: Avoid having an associated server for email checks. 2527 - REGTEST: Switch to vtest. 2528 - REGTEST: Adapt reg test doc files to vtest. 2529 - BUG/MEDIUM: h1: Make sure we destroy an inactive connectin that did shutw. 2530 - BUG/MINOR: base64: dec func ignores padding for output size checking 2531 - BUG/MEDIUM: ssl: missing allocation failure checks loading tls key file 2532 - MINOR: ssl: add support of aes256 bits ticket keys on file and cli. 2533 - BUG/MINOR: backend: don't use url_param_name as a hint for BE_LB_ALGO_PH 2534 - BUG/MINOR: backend: balance uri specific options were lost across defaults 2535 - BUG/MINOR: backend: BE_LB_LKUP_CHTREE is a value, not a bit 2536 - MINOR: backend: move url_param_name/len to lbprm.arg_str/len 2537 - MINOR: backend: make headers and RDP cookie also use arg_str/len 2538 - MINOR: backend: add new fields in lbprm to store more LB options 2539 - MINOR: backend: make the header hash use arg_opt1 for use_domain_only 2540 - MINOR: backend: remap the balance uri settings to lbprm.arg_opt{1,2,3} 2541 - MINOR: backend: move hash_balance_factor out of chash 2542 - MEDIUM: backend: move all LB algo parameters into an union 2543 - MINOR: backend: make the random algorithm support a number of draws 2544 - BUILD/MEDIUM: da: Necessary code changes for new buffer API. 2545 - BUG/MINOR: stick_table: Prevent conn_cur from underflowing 2546 - BUG: 51d: Changes to the buffer API in 1.9 were not applied to the 51Degrees code. 2547 - BUG/MEDIUM: stats: Get the right scope pointer depending on HTX is used or not 2548 - DOC: add a missing space in the documentation for bc_http_major 2549 - REGTEST: checks basic stats webpage functionality 2550 - BUG/MEDIUM: servers: Make assign_tproxy_address work when ALPN is set. 2551 - BUG/MEDIUM: connections: Add the CO_FL_CONNECTED flag if a send succeeded. 2552 - DOC: add github issue templates 2553 - MINOR: cfgparse: Extract some code to be re-used. 2554 - CLEANUP: cfgparse: Return asap from cfg_parse_peers(). 2555 - CLEANUP: cfgparse: Code reindentation. 2556 - MINOR: cfgparse: Useless frontend initialization in "peers" sections. 2557 - MINOR: cfgparse: Rework peers frontend init. 2558 - MINOR: cfgparse: Simplication. 2559 - MINOR: cfgparse: Make "peer" lines be parsed as "server" lines. 2560 - MINOR: peers: Make outgoing connection to SSL/TLS peers work. 2561 - MINOR: cfgparse: SSL/TLS binding in "peers" sections. 2562 - DOC: peers: SSL/TLS documentation for "peers" 2563 - BUG/MINOR: startup: certain goto paths in init_pollers fail to free 2564 - BUG/MEDIUM: checks: fix recent regression on agent-check making it crash 2565 - BUG/MINOR: server: don't always trust srv_check_health when loading a server state 2566 - BUG/MINOR: check: Wake the check task if the check is finished in wake_srv_chk() 2567 - BUG/MEDIUM: ssl: Fix handling of TLS 1.3 KeyUpdate messages 2568 - DOC: mention the effect of nf_conntrack_tcp_loose on src/dst 2569 - BUG/MINOR: proto-htx: Return an error if all headers cannot be received at once 2570 - BUG/MEDIUM: mux-h2/htx: Respect the channel's reserve 2571 - BUG/MINOR: mux-h1: Apply the reserve on the channel's buffer only 2572 - BUG/MINOR: mux-h1: avoid copying output over itself in zero-copy 2573 - BUG/MAJOR: mux-h2: don't destroy the stream on failed allocation in h2_snd_buf() 2574 - BUG/MEDIUM: backend: also remove from idle list muxes that have no more room 2575 - BUG/MEDIUM: mux-h2: properly abort on trailers decoding errors 2576 - MINOR: h2: declare new sets of frame types 2577 - BUG/MINOR: mux-h2: CONTINUATION in closed state must always return GOAWAY 2578 - BUG/MINOR: mux-h2: headers-type frames in HREM are always a connection error 2579 - BUG/MINOR: mux-h2: make it possible to set the error code on an already closed stream 2580 - BUG/MINOR: hpack: return a compression error on invalid table size updates 2581 - MINOR: server: make sure pool-max-conn is >= -1 2582 - BUG/MINOR: stream: take care of synchronous errors when trying to send 2583 - CLEANUP: server: fix indentation mess on idle connections 2584 - BUG/MINOR: mux-h2: always check the stream ID limit in h2_avail_streams() 2585 - BUG/MINOR: mux-h2: refuse to allocate a stream with too high an ID 2586 - BUG/MEDIUM: backend: never try to attach to a mux having no more stream available 2587 - MINOR: server: add a max-reuse parameter 2588 - MINOR: mux-h2: always consider a server's max-reuse parameter 2589 - MEDIUM: stream-int: always mark pending outgoing SI_ST_CON 2590 - MINOR: stream: don't wait before retrying after a failed connection reuse 2591 - MEDIUM: h2: always parse and deduplicate the content-length header 2592 - BUG/MINOR: mux-h2: always compare content-length to the sum of DATA frames 2593 - CLEANUP: h2: Remove debug printf in mux_h2.c 2594 - MINOR: cfgparse: make the process/thread parser support a maximum value 2595 - MINOR: threads: make MAX_THREADS configurable at build time 2596 - DOC: nbthread is no longer experimental. 2597 - BUG/MINOR: listener: always fill the source address for accepted socketpairs 2598 - BUG/MINOR: mux-h2: do not report available outgoing streams after GOAWAY 2599 - BUG/MINOR: spoe: corrected fragmentation string size 2600 - BUG/MINOR: task: fix possibly missed event in inter-thread wakeups 2601 - BUG/MEDIUM: servers: Attempt to reuse an unfinished connection on retry. 2602 - BUG/MEDIUM: backend: always call si_detach_endpoint() on async connection failure 2603 - SCRIPTS: add the issue tracker URL to the announce script 2604 - MINOR: peers: Extract some code to be reused. 2605 - CLEANUP: peers: Indentation fixes. 2606 - MINOR: peers: send code factorization. 2607 - MINOR: peers: Add new functions to send code and reduce the I/O handler. 2608 - MEDIUM: peers: synchronizaiton code factorization to reduce the size of the I/O handler. 2609 - MINOR: peers: Move update receive code to reduce the size of the I/O handler. 2610 - MINOR: peers: Move ack, switch and definition receive code to reduce the size of the I/O handler. 2611 - MINOR: peers: Move high level receive code to reduce the size of I/O handler. 2612 - CLEANUP: peers: Be more generic. 2613 - MINOR: peers: move error handling to reduce the size of the I/O handler. 2614 - MINOR: peers: move messages treatment code to reduce the size of the I/O handler. 2615 - MINOR: peers: move send code to reduce the size of the I/O handler. 2616 - CLEANUP: peers: Remove useless statements. 2617 - MINOR: peers: move "hello" message treatment code to reduce the size of the I/O handler. 2618 - MINOR: peers: move peer initializations code to reduce the size of the I/O handler. 2619 - CLEANUP: peers: factor the error handling code in peer_treet_updatemsg() 2620 - CLEANUP: peers: factor error handling in peer_treat_definedmsg() 2621 - BUILD/MINOR: peers: shut up a build warning introduced during last cleanup 2622 - BUG/MEDIUM: mux-h2: only close connection on request frames on closed streams 2623 - CLEANUP: mux-h2: remove two useless but misleading assignments 2624 - BUG/MEDIUM: checks: Check that conn_install_mux succeeded. 2625 - BUG/MEDIUM: servers: Only destroy a conn_stream we just allocated. 2626 - BUG/MEDIUM: servers: Don't add an incomplete conn to the server idle list. 2627 - BUG/MEDIUM: checks: Don't try to set ALPN if connection failed. 2628 - BUG/MEDIUM: h2: In h2_send(), stop the loop if we failed to alloc a buf. 2629 - BUG/MEDIUM: peers: Handle mux creation failure. 2630 - BUG/MEDIUM: servers: Close the connection if we failed to install the mux. 2631 - BUG/MEDIUM: compression: Rewrite strong ETags 2632 - BUG/MINOR: deinit: tcp_rep.inspect_rules not deinit, add to deinit 2633 - CLEANUP: mux-h2: remove misleading leftover test on h2s' nullity 2634 - BUG/MEDIUM: mux-h2: wake up flow-controlled streams on initial window update 2635 - BUG/MEDIUM: mux-h2: fix two half-closed to closed transitions 2636 - BUG/MEDIUM: mux-h2: make sure never to send GOAWAY on too old streams 2637 - BUG/MEDIUM: mux-h2: do not abort HEADERS frame before decoding them 2638 - BUG/MINOR: mux-h2: make sure response HEADERS are not received in other states than OPEN and HLOC 2639 - MINOR: h2: add a generic frame checker 2640 - MEDIUM: mux-h2: check the frame validity before considering the stream state 2641 - CLEANUP: mux-h2: remove stream ID and frame length checks from the frame parsers 2642 - BUG/MINOR: mux-h2: make sure request trailers on aborted streams don't break the connection 2643 - DOC: compression: Update the reasons for disabled compression 2644 - BUG/MEDIUM: buffer: Make sure b_is_null handles buffers waiting for allocation. 2645 - DOC: htx: make it clear that htxbuf() and htx_from_buf() always return valid pointers 2646 - MINOR: htx: never check for null htx pointer in htx_is_{,not_}empty() 2647 - MINOR: mux-h2: consistently rely on the htx variable to detect the mode 2648 - BUG/MEDIUM: peers: Peer addresses parsing broken. 2649 - BUG/MEDIUM: mux-h1: Don't add "transfer-encoding" if message-body is forbidden 2650 - BUG/MEDIUM: connections: Don't forget to remove CO_FL_SESS_IDLE. 2651 - BUG/MINOR: stream: don't close the front connection when facing a backend error 2652 - BUG/MEDIUM: mux-h2: wait for the mux buffer to be empty before closing the connection 2653 - MINOR: stream-int: add a new flag to mention that we want the connection to be killed 2654 - MINOR: connstream: have a new flag CS_FL_KILL_CONN to kill a connection 2655 - BUG/MEDIUM: mux-h2: do not close the connection on aborted streams 2656 - BUG/MINOR: server: fix logic flaw in idle connection list management 2657 - MINOR: mux-h2: max-concurrent-streams should be unsigned 2658 - MINOR: mux-h2: make sure to only check concurrency limit on the frontend 2659 - MINOR: mux-h2: learn and store the peer's advertised MAX_CONCURRENT_STREAMS setting 2660 - BUG/MEDIUM: mux-h2: properly consider the peer's advertised max-concurrent-streams 2661 - MINOR: xref: Add missing barriers. 2662 - MINOR: muxes: Don't bother to LIST_DEL(&conn->list) before calling conn_free(). 2663 - MINOR: debug: Add an option that causes random allocation failures. 2664 - BUG/MEDIUM: backend: always release the previous connection into its own target srv_list 2665 - BUG/MEDIUM: htx: check the HTX compatibility in dynamic use-backend rules 2666 - BUG/MINOR: tune.fail-alloc: Don't forget to initialize ret. 2667 - BUG/MINOR: backend: check srv_conn before dereferencing it 2668 - BUG/MEDIUM: mux-h2: always omit :scheme and :path for the CONNECT method 2669 - BUG/MEDIUM: mux-h2: always set :authority on request output 2670 - BUG/MEDIUM: stream: Don't forget to free s->unique_id in stream_free(). 2671 - BUG/MINOR: threads: fix the process range of thread masks 2672 - BUG/MINOR: config: fix bind line thread mask validation 2673 - CLEANUP: threads: fix misleading comment about all_threads_mask 2674 - CLEANUP: threads: use nbits to calculate the thread mask 2675 - OPTIM: listener: optimize cache-line packing for struct listener 2676 - MINOR: tools: improve the popcount() operation 2677 - MINOR: config: keep an all_proc_mask like we have all_threads_mask 2678 - MINOR: global: add proc_mask() and thread_mask() 2679 - MINOR: config: simplify bind_proc processing using proc_mask() 2680 - MINOR: threads: make use of thread_mask() to simplify some thread calculations 2681 - BUG/MINOR: compression: properly report compression stats in HTX mode 2682 - BUG/MINOR: task: close a tiny race in the inter-thread wakeup 2683 - BUG/MAJOR: config: verify that targets of track-sc and stick rules are present 2684 - BUG/MAJOR: spoe: verify that backends used by SPOE cover all their callers' processes 2685 - BUG/MAJOR: htx/backend: Make all tests on HTTP messages compatible with HTX 2686 - BUG/MINOR: config: make sure to count the error on incorrect track-sc/stick rules 2687 - DOC: ssl: Clarify when pre TLSv1.3 cipher can be used 2688 - DOC: ssl: Stop documenting ciphers example to use 2689 - BUG/MINOR: spoe: do not assume agent->rt is valid on exit 2690 - BUG/MINOR: lua: initialize the correct idle conn lists for the SSL sockets 2691 - BUG/MEDIUM: spoe: initialization depending on nbthread must be done last 2692 - BUG/MEDIUM: server: initialize the idle conns list after parsing the config 2693 - BUG/MEDIUM: server: initialize the orphaned conns lists and tasks at the end 2694 - MINOR: config: make MAX_PROCS configurable at build time 2695 - BUG/MAJOR: spoe: Don't try to get agent config during SPOP healthcheck 2696 - BUG/MINOR: config: Reinforce validity check when a process number is parsed 2697 - BUG/MEDIUM: peers: check that p->srv actually exists before using p->srv->use_ssl 2698 - CONTRIB: contrib/prometheus-exporter: Add a Prometheus exporter for HAProxy 2699 - BUG/MINOR: mux-h1: verify the request's version before dropping connection: keep-alive 2700 - BUG: 51d: In Hash Trie, multi header matching was affected by the header names stored globaly. 2701 - MEDIUM: 51d: Enabled multi threaded operation in the 51Degrees module. 2702 - BUG/MAJOR: stream: avoid double free on unique_id 2703 - BUILD/MINOR: stream: avoid a build warning with threads disabled 2704 - BUILD/MINOR: tools: fix build warning in the date conversion functions 2705 - BUILD/MINOR: peers: remove an impossible null test in intencode() 2706 - BUILD/MINOR: htx: fix some potential null-deref warnings with http_find_stline 2707 - BUG/MEDIUM: peers: Missing peer initializations. 2708 - BUG/MEDIUM: http_fetch: fix the "base" and "base32" fetch methods in HTX mode 2709 - BUG/MEDIUM: proto_htx: Fix data size update if end of the cookie is removed 2710 - BUG/MEDIUM: http_fetch: fix "req.body_len" and "req.body_size" fetch methods in HTX mode 2711 - BUILD/MEDIUM: initcall: Fix build on MacOS. 2712 - BUG/MEDIUM: mux-h2/htx: Always set CS flags before exiting h2_rcv_buf() 2713 - MINOR: h2/htx: Set the flag HTX_SL_F_BODYLESS for messages without body 2714 - BUG/MINOR: mux-h1: Add "transfer-encoding" header on outgoing requests if needed 2715 - BUG/MINOR: mux-h2: Don't add ":status" pseudo-header on trailers 2716 - BUG/MINOR: proto-htx: Consider a XFER_LEN message as chunked by default 2717 - BUG/MEDIUM: h2/htx: Correctly handle interim responses when HTX is enabled 2718 - MINOR: mux-h2: Set HTX extra value when possible 2719 - BUG/MEDIUM: htx: count the amount of copied data towards the final count 2720 - MINOR: mux-h2: make the H2 MAX_FRAME_SIZE setting configurable 2721 - BUG/MEDIUM: mux-h2/htx: send an empty DATA frame on empty HTX trailers 2722 - BUG/MEDIUM: servers: Use atomic operations when handling curr_idle_conns. 2723 - BUG/MEDIUM: servers: Add a per-thread counter of idle connections. 2724 - MINOR: fd: add a new my_closefrom() function to close all FDs 2725 - MINOR: checks: use my_closefrom() to close all FDs 2726 - MINOR: fd: implement an optimised my_closefrom() function 2727 - BUG/MINOR: fd: make sure my_closefrom() doesn't miss some FDs 2728 - BUG/MAJOR: fd/threads, task/threads: ensure all spin locks are unlocked 2729 - BUG/MAJOR: listener: Make sure the listener exist before using it. 2730 - MINOR: fd: Use closefrom() as my_closefrom() if supported. 2731 - BUG/MEDIUM: mux-h1: Report the right amount of data xferred in h1_rcv_buf() 2732 - BUG/MINOR: channel: Set CF_WROTE_DATA when outgoing data are skipped 2733 - MINOR: htx: Add function to drain data from an HTX message 2734 - MINOR: channel/htx: Add function to skips output bytes from an HTX channel 2735 - BUG/MAJOR: cache/htx: Set the start-line offset when a cached object is served 2736 - BUG/MEDIUM: cache: Get objects from the cache only for GET and HEAD requests 2737 - BUG/MINOR: cache/htx: Return only the headers of cached objects to HEAD requests 2738 - BUG/MINOR: mux-h1: Always initilize h1m variable in h1_process_input() 2739 - BUG/MEDIUM: proto_htx: Fix functions applying regex filters on HTX messages 2740 - BUG/MEDIUM: h2: advertise to servers that we don't support push 2741 - MINOR: standard: Add a function to parse uints (dotted notation). 2742 - MINOR: arg: Add support for ARGT_PBUF_FNUM arg type. 2743 - MINOR: http_fetch: add "req.ungrpc" sample fetch for gRPC. 2744 - MINOR: sample: Add two sample converters for protocol buffers. 2745 - DOC: sample: Add gRPC related documentation. 2746 27472018/12/22 : 2.0-dev0 2748 - BUG/MAJOR: connections: Close the connection before freeing it. 2749 - REGTEST: Require the option LUA to run lua tests 2750 - REGTEST: script: Process script arguments before everything else 2751 - REGTEST: script: Evaluate the varnishtest command to allow quoted parameters 2752 - REGTEST: script: Add the option --clean to remove previous log direcotries 2753 - REGTEST: script: Add the option --debug to show logs on standard ouput 2754 - REGTEST: script: Add the option --keep-logs to keep all log directories 2755 - REGTEST: script: Add the option --use-htx to enable the HTX in regtests 2756 - REGTEST: script: Print only errors in the results report 2757 - REGTEST: Add option to use HTX prefixed by the macro 'no-htx' 2758 - REGTEST: Make reg-tests target support argument. 2759 - REGTEST: Fix a typo about barrier type. 2760 - REGTEST: Be less Linux specific with a syslog regex. 2761 - REGTEST: Missing enclosing quotes for ${tmpdir} macro. 2762 - REGTEST: Exclude freebsd target for some reg tests. 2763 - BUG/MEDIUM: h2: Don't forget to quit the sending_list if SUB_CALL_UNSUBSCRIBE. 2764 - BUG/MEDIUM: mux-h2: Don't forget to quit the send list on error reports 2765 - BUG/MEDIUM: dns: Don't prevent reading the last byte of the payload in dns_validate_response() 2766 - BUG/MEDIUM: dns: overflowed dns name start position causing invalid dns error 2767 - BUG/MINOR: compression/htx: Don't compress responses with unknown body length 2768 - BUG/MINOR: compression/htx: Don't add the last block of data if it is empty 2769 - MEDIUM: mux_h1: Implement h1_show_fd. 2770 - REGTEST: script: Add support of alternatives in requited options list 2771 - REGTEST: Add a basic test for the compression 2772 - BUG/MEDIUM: mux-h2: don't needlessly wake up the demux on short frames 2773 - REGTEST: A basic test for "http-buffer-request" 2774 - BUG/MEDIUM: server: Also copy "check-sni" for server templates. 2775 - MINOR: ssl: Add ssl_sock_set_alpn(). 2776 - MEDIUM: checks: Add check-alpn. 2777 - wip 2778 27792018/12/19 : 1.9.0 2780 - BUG/MEDIUM: compression: Use the right buffer pointers to compress input data 2781 - BUG/MINOR: mux_pt: Set CS_FL_WANT_ROOM when count is zero in rcv_buf() callback 2782 - BUG/MEDIUM: connection: Add a new CS_FL_ERR_PENDING flag to conn_streams. 2783 - CONTRIB: debug: teach the "flags" utility about new conn_stream flags 2784 - BUG/MEDIUM: stream-int: always clear CS_FL_WANT_ROOM before receiving 2785 - BUG/MEDIUM: mux-h2: also restart demuxing when data are pending in demux 2786 - BUG/MEDIUM: mux-h2: restart demuxing as soon as demux data are available 2787 - BUG/MEDIUM: h2: fix aggregated cookie length computation in HTX mode 2788 - MINOR: mux-h2: report more h2c, last h2s and cs information on "show fd" 2789 - CONTRIB: debug: report stream-int's flag SI_FL_CLEAN_ABRT 2790 - MINOR: cli/stream: add the conn_stream in "show sess" output 2791 - BUG/MINOR: mux-h2: don't report a fantom h2s in "show fd" 2792 - BUG/MINOR: cli/fd: don't isolate the thread for each individual fd 2793 - MINOR: objtype: report a few missing types in names and base pointers 2794 - BUG/MEDIUM: mux-h2: make sure to report synchronous errors after EOS 2795 - BUG/MEDIUM: mux-h2: report asynchronous errors in h2_wake_some_streams() 2796 - BUG/MEDIUM: mux-h2: make sure the demux also wakes streams up on errors 2797 - BUG/MINOR: mux-h1: report the correct frontend in error captures 2798 - BUG/MEDIUM: stream-int: also wake the stream up on end of transfer 2799 - MEDIUM: h2: properly check and deduplicate the content-length header in HTX 2800 - BUG/MEDIUM: stream: Forward the right amount of data before infinite forwarding 2801 - BUG/MINOR: proto_htx: Call the HTX version of the function managing client cookies 2802 - BUG/MEDIUM: lua/htx: Handle EOM in receive/get_line calls in HTTP applets 2803 - BUG/MINOR: lua: Return an error if a legacy HTTP applet doesn't send anything 2804 - MINOR: compression: Remove the thread_local variable buf_output 2805 - CLEANUP: connection: rename subscription events values and event field 2806 - CLEANUP: connection: rename conn->mux_ctx to conn->ctx 2807 - MINOR: connection: remove an unwelcome dependency on struct stream 2808 - CLEANUP: stream-int: consistently call the si/stream_int functions 2809 - BUG/MEDIUM: h1: Don't shutw/shutr the connection if we have keepalive. 2810 - BUG/MEDIUM: H2: Make sure htx is set even on empty frames. 2811 - BUG/MEDIUM: mux-h2: pass CS_FL_ERR_PENDING to h2_wake_some_streams() 2812 - MEDIUM: stream-int: always consider all CS errors on the send side 2813 - BUG/MEDIUM: h2: Make sure we don't set CS_FL_ERROR if there's still data. 2814 - CLEANUP: mux-h2: implement h2s_notify_{send,recv} to report events to subscribers 2815 - MINOR: mux-h2: add a new function h2s_alert() to call the data layer 2816 - BUG/MEDIUM: mux-h2: make use of h2s_alert() to report aborts 2817 - MINOR: connection: add cs_set_error() to set the error bits 2818 - CLEANUP: mux-h2: make use of cs_set_error() 2819 - BUG/MINOR: mux-h2: make sure we check the conn_stream in early data 2820 - BUG/MEDIUM: h2: Don't wait for flow control if the connection had a shutr. 2821 - MINOR: cli/show_fd: report that a connection is back or not 2822 - SCRIPTS: add the slack channel URL to the announce script 2823 - CLEANUP: remove my name and address from the copyright banner 2824 - DOC: mention in the readme that 1.9 is a stable version now 2825 28262018/12/16 : 1.9-dev11 2827 - BUG/MEDIUM: connection: Don't use the provided conn_stream if it was tried. 2828 - REGTEST/MINOR: remove double body specification for server txresp 2829 - BUG/MEDIUM: connections: Remove error flags when retrying. 2830 - REGTEST/MINOR: skip seamless-reload test with abns socket on freebsd 2831 - REGTEST/MINOR: remove health-check that can make the test fail 2832 - DOC: clarify that check-sni needs an argument. 2833 - DOC: refer to check-sni in the documentation of sni 2834 - BUG/MEDIUM: mux-h2: fix encoding of non-GET/POST methods 2835 - BUG/MINOR: mux-h1: Fix conn_mode processing for headerless outgoing messages 2836 - BUG/MEDIUM: mux-h1: Add a BUSY mode to not loop on pipelinned requests 2837 - BUG/MEDIUM: mux-h1: Don't loop on the headers parsing if the read0 was received 2838 - BUG/MEDIUM: htx: Always do a defrag if a block value is replace by a bigger one 2839 - BUG/MEDIUM: mux-h2: Don't forget to set the CS_FL_EOS flag with htx. 2840 - BUG/MINOR: hpack: fix off-by-one in header name encoding length calculation 2841 - CLEANUP: hpack: no need to include chunk.h, only include buf.h 2842 - MINOR: hpack: simplify the len to bytes conversion 2843 - MINOR: hpack: use ist2bin() to copy header names in hpack_encode_header() 2844 - MINOR: hpack: optimize header encoding for short names 2845 - CONTRIB: hpack: add a compressed stream generator for the encoder 2846 - MEDIUM: hpack: make it possible to encode any static header name 2847 - MINOR: hpack: move the length computation and encoding functions to .h 2848 - MINOR: hpack: provide a function to encode a short indexed header 2849 - MINOR: hpack: provide a function to encode a long indexed header 2850 - MINOR: hpack: provide new functions to encode the ":status" header 2851 - MEDIUM: mux-h2: make use of standard HPACK encoding functions for the status 2852 - MINOR: hpack: provide a function to encode an HTTP method 2853 - MEDIUM: mux-h2: make use of hpack_encode_method() to encode the method 2854 - MINOR: hpack: provide a function to encode an HTTP scheme 2855 - MEDIUM: mux-h2: make use of hpack_encode_scheme() to encode the scheme 2856 - MINOR: hpack: provide a function to encode an HTTP path 2857 - MEDIUM: mux-h2: make use of hpack_encode_path() to encode the path 2858 - REGTEST: add the HTTP rules test involving HTX processing 2859 - REORG: connection: centralize the conn_set_{tos,mark,quickack} functions 2860 - MEDIUM: cli: rework the CLI proxy parser 2861 - MINOR: cli: parse prompt command in the CLI proxy 2862 - MINOR: cli: implements 'quit' in the CLI proxy 2863 - BUG/MINOR: cli: wait for payload data even without prompt 2864 - MEDIUM: cli: handle payload in CLI proxy 2865 - MINOR: cli: use pcli_flags for prompt activation 2866 - MINOR: compression: Rename the function check_legacy_http_comp_flt() 2867 - MINOR: cache/htx: Don't use the same cache on HTX and legacy HTTP proxies 2868 - MINOR: cache: Register the cache as a data filter only if response is cacheable 2869 - MEDIUM: cache/htx: Add the HTX support into the cache 2870 - MINOR: cache: Improve and simplify the cache configuration check 2871 - MINOR: filters: Export the name of known filters 2872 - MEDIUM: cache/compression: Add a way to safely combined compression and cache 2873 - MEDIUM: cache: Require an explicit filter declaration if other filters are used 2874 - REORG: htx: merge types+proto into common/htx.h 2875 - REORG: http: create http_msg.c to place there some legacy HTTP parts 2876 - REORG: h1: move legacy http functions to http_msg.c 2877 - REORG: h1: move the h1_state definition to proto_http 2878 - CLEANUP: h1: remove some occurrences of unneeded h1.h inclusions 2879 - REORG: h1: merge types+proto into common/h1.h 2880 - CLEANUP: stream: remove SF_TUNNEL, SF_INITIALIZED, SF_CONN_TAR 2881 - MEDIUM: mux-h1: implement true zero-copy of DATA blocks 2882 - MINOR: config: round up global.tune.bufsize to the next multiple of 2 void* 2883 - BUG/MINOR: mux-h2: refrain from muxing during the preface 2884 - BUG/MINOR: mux-h2: advertise a larger connection window size 2885 - DOC: master CLI documentation in management.txt 2886 - MINOR: mux-h2: avoid copying large blocks into full buffers 2887 - MEDIUM: mux-h2: implement true zero-copy send of large HTX DATA blocks 2888 - MINOR: mux-h2: force reads to be HTX-aligned in HTX mode 2889 - MINOR: cli: change 'show proc' output of old processes 2890 - BUG/MEDIUM: mux-h1: Fix the zero-copy on output for chunked messages 2891 - BUG: dns: Prevent stack-exhaustion via recursion loop in dns_read_name 2892 - BUG: dns: Prevent out-of-bounds read in dns_read_name() 2893 - BUG: dns: Prevent out-of-bounds read in dns_validate_dns_response() 2894 - BUG: dns: Fix out-of-bounds read via signedness error in dns_validate_dns_response() 2895 - BUG: dns: Fix off-by-one write in dns_validate_dns_response() 2896 - REGTEST: the cache regtest requires haproxy 1.9 2897 - MEDIUM: cli: store CLI level in the appctx 2898 - MEDIUM: cli: show and change CLI permissions 2899 - CLEANUP: cli: use dedicated define instead of appctx ones 2900 - MEDIUM: cli: handle CLI level from the master CLI 2901 - BUG/MEDIUM: cli: handle correctly prefix and payload 2902 - BUILD: Makefile: Implements the help target 2903 - REGTESTS: adjust the http-rules regtest to support window updates 2904 - BUG/MEDIUM: connections: Remove CS_FL_EOS | CS_FL_REOS on retry. 2905 - BUG/MEDIUM: stream_interface: Don't report read0 if we were not connected. 2906 - BUG/MEDIUM: connection: Just make sure we closed the fd on connection failure. 2907 - MEDIUM: mux: Add an optional "reset" method. 2908 - BUG/MEDIUM: mux-h1: Fix loop if server closes its connection with unparsed data 2909 - MINOR: mux-h1: Add helper functions to wake a stream from recv or send 2910 - BUG/MEDIUM: mux-h1: Wake the stream for send once the connection is established 2911 - BUG/MEDIUM: connections: Don't attempt to reuse an unusable connection. 2912 - MEDIUM: htx: Try to take a connection over if it has no owner. 2913 - REGTEST: Reg testing improvements. 2914 - REGTEST: Add a first test for health-checks. 2915 - REGTEST: Reg test for "check" health-check option. 2916 - REGTEST: level 1 health-check test 2. 2917 - REGTEST: Add miscellaneous reg tests for health-checks. 2918 - REGTEST: add a few HTTP messaging tests 2919 - MINOR: lb: make the leastconn algorithm more accurate 2920 - REGTEST: fix missing space in checks/s00001 2921 - REGTEST: http-messaging: add "option http-buffer-request" for H2 tests 2922 - BUG/MEDIUM: cache: fix random crash on filter parser's error path 2923 - MINOR: connection: realign empty buffers in muxes, not transport layers 2924 - MINOR: mux_h1/h2: simplify the zero-copy Rx alignment 2925 - MINOR: backend: count the number of connect and reuse per server and per backend 2926 - BUG/MINOR: stats: fix inversion of failed header rewrites and other statuses 2927 - MINOR: tools: increase the number of ITOA strings to 16 2928 - MINOR: cache: report the number of cache lookups and cache hits 2929 - MEDIUM: tasks: check the global task mask instead of the thread number 2930 - MINOR: mworker: set all_threads_mask and pid_bit to 1 2931 - BUG/MINOR: proto_htx: Fix htx_res_set_status to also set the reason 2932 - BUG/MINOR: stats: Parse post data for HTX streams 2933 - MINOR: payload/htx: Adapt smp_fetch_len to be HTX aware 2934 - MINOR: http_fecth: Implement body_len and body_size sample fetches for the HTX 2935 - MAJOR: lua: Forbid calls to Channel functions for LUA scripts in HTTP proxies 2936 - MEDIUM: lua/htx: Adapt functions of the HTTP to be compatible with HTX 2937 - MINOR: lua/htx: Adapt the functions get_in_length and is_full to be HTX aware 2938 - MAJOR: lua/htx: Adapt HTTP applets to support HTX messages 2939 - MINOR: lua: Remove useless check on the messages state in HTTP functions 2940 - BUG/MEDIUM: htx: When performing zero-copy, start from the right offset. 2941 - BUG/MINOR: mworker: don't use unitialized mworker_proc struct 2942 - MINOR: mworker/cli: indicate in the master prompt when a reload failed 2943 - MINOR: cli: implements 'reload' on master CLI 2944 - BUG/MEDIUM: log: Don't call sample_fetch_as_type if we don't have a stream. 2945 - BUG/MEDIUM: mux-h1: make sure we always have at least one HTX block to send 2946 - BUG/MAJOR: backend: only update server's counters when the server exists 2947 - MINOR: tools: preset the port of fd-based "sockets" to zero 2948 - BUG/MINOR: log: fix logging to both FD and IP 2949 - REGTEST: Add a reg test for HTTP cookies. 2950 - BUILD: ssl: Fix compilation without deprecated OpenSSL 1.1 APIs 2951 - BUILD: thread: properly report multi-thread support 2952 - BUG/MINOR: logs: leave startup-logs global and not per-thread 2953 - BUG/MEDIUM: threads: don't close the thread waker pipe if not init 2954 - BUG/MAJOR: compression/cache: Make it really works with these both filters 2955 - BUG/MEDIUM: h2: Don't forget to destroy the h2s after deferred shut. 2956 - MEDIUM: proxy: Set http-reuse safe as default. 2957 - MEDIUM: servers: Add a command to limit the number of idling connections. 2958 - MEDIUM: servers: Replace idle-timeout with pool-purge-delay. 2959 - MEDIUM: mux: Destroy the stream before trying to add the conn to the idle list. 2960 - MEDIUM: mux: provide the session to the init() and attach() method. 2961 - MEDIUM: sessions: Don't keep an infinite number of idling connections. 2962 - MEDIUM: servers: Be more agressive when adding H2 connection to idle lists. 2963 - MEDIUM: mux_h2: Always set CS_FL_NOT_FIRST for new conn_streams. 2964 - BUG/MEDIUM: htx/cache: use the correct class of error codes on abort 2965 - BUG/MINOR: cache: also consider CF_SHUTR to abort delivery 2966 - MINOR: pools: Cast to volatile int * instead of int *. 2967 - MINOR: debug: make the ABORT_NOW macro use a volatile int 2968 - BUG/MEDIUM: h2: Don't destroy the h2s if it still has a cs attached. 2969 - BUG/MEDIUM: mux-h1: don't try to process an empty input buffer 2970 - DOC: clarify the agent-check status line syntax 2971 - BUG/MAJOR: hpack: fix length check for short names encoding 2972 - DOC: split the README into README + INSTALL 2973 29742018/12/08 : 1.9-dev10 2975 - MINOR: htx: Rename functions htx_*_to_str() to be H1 specific 2976 - BUG/MINOR: htx: Force HTTP/1.1 on H1 formatting when version is 1.1 or above 2977 - BUG/MINOR: fix ssl_fc_alpn and actually add ssl_bc_alpn 2978 - BUG/MEDIUM: mworker: stop proxies which have no listener in the master 2979 - BUG/MEDIUM: h1: Destroy a connection after detach if it has no owner. 2980 - BUG/MEDIUM: h2: Don't forget to wake the tasklet after shutr/shutw. 2981 - BUG/MINOR: flt_trace/compression: Use the right flag to add the HTX support 2982 - BUG/MEDIUM: stream_interface: Make REALLY sure we read all the data. 2983 - MEDIUM: mux-h1: Revamp the way subscriptions are handled. 2984 - BUG/MEDIUM: mux-h1: Always set CS_FL_RCV_MORE when data are received in h1_recv() 2985 - MINOR: mux-h1: Make sure to return 1 in h1_recv() when needed 2986 - BUG/MEDIUM: mux-h1: Release the mux H1 in h1_process() if there is no h1s 2987 - BUG/MINOR: proto_htx: Truncate the request when an error is detected 2988 - BUG/MEDIUM: h2: When sending in HTX, make sure the caller knows we sent all. 2989 - BUG/MEDIUM: mux-h2: properly update the window size in HTX mode 2990 - BUG/MEDIUM: mux-h2: make sure to always report HTX EOM when consumed by headers 2991 - BUG/MEDIUM: mux-h2: stop sending HTX once the mux is blocked 2992 - BUG/MEDIUM: mux-h2: don't send more HTX data than requested 2993 - MINOR: mux-h2: stop on non-DATA and non-EOM HTX blocks 2994 - BUG/MEDIUM: h1: Correctly report used data with no len. 2995 - MEDIUM: h1: Realign the ibuf before calling rcv_buf if needed. 2996 - BUG/MEDIUM: mux_pt: Always set CS_FL_RCV_MORE. 2997 - MINOR: htx: make htx_from_buf() adjust the size only on new buffers 2998 - MINOR: htx: add buf_room_for_htx_data() to help optimize buffer transfers 2999 - MEDIUM: mux-h1: make use of buf_room_for_htx_data() instead of b_room() 3000 - MEDIUM: mux-h1: attempt to zero-copy Rx DATA transfers 3001 - MEDIUM: mux-h1: avoid a double copy on the Tx path whenever possible 3002 - BUG/MEDIUM: stream-int: don't mark as blocked an empty buffer on Rx 3003 - BUG/MINOR: mux-h1: Check h1m flags to set the server conn_mode on request path 3004 - MEDIUM: htx: Rework conversion from a buffer to an htx structure 3005 - MEDIUM: channel/htx: Add functions for forward HTX data 3006 - MINOR: mux-h1: Don't adjust anymore the amount of data sent in h1_snd_buf() 3007 - CLEANUP: htx: Fix indentation here and there in HTX files 3008 - MINOR: mux-h1: Allow partial data consumption during outgoing data processing 3009 - BUG/MEDIUM: mux-h2: use the correct offset for the HTX start line 3010 - BUG/MEDIUM: mux-h2: stop sending using HTX on errors 3011 - MINOR: mux-h1: Drain obuf if the output is closed after sending data 3012 - BUG/MEDIUM: mworker: stop every tasks in the master 3013 - BUG/MEDIUM: htx: Set the right start-line offset after a defrag 3014 - BUG/MEDIUM: stream: Don't dereference s->txn when it is not there yet. 3015 - BUG/MEDIUM: connections: Reuse an already attached conn_stream. 3016 - MINOR: stream-int: add a new blocking condition on the remote connection 3017 - BUG/MEDIUM: stream-int: don't attempt to receive if the connection is not established 3018 - BUG/MEDIUM: lua: block on remote connection establishment 3019 - BUG/MEDIUM: mworker: fix several typos in mworker_cleantasks() 3020 - SCRIPTS/REGTEST: merge grep+sed into sed in run-regtests 3021 - BUG/MEDIUM: connections: Split CS_FL_RCV_MORE into 2 flags. 3022 - BUG/MEDIUM: h1: Don't free the connection if it's an outgoing connection. 3023 - BUG/MEDIUM: h1: Set CS_FL_REOS if we had a read0. 3024 - BUG/MEDIUM: mux-h1: Be sure to have a conn_stream to set CS_FL_REOS in h1_recv 3025 - REGTEST: Move LUA reg test 4 to level 1. 3026 - MINOR: ist: add functions to copy/uppercase/lowercase into a buffer or string 3027 - MEDIUM: ist: always turn header names to lower case 3028 - MINOR: h2: don't turn HTX header names to lower case anymore 3029 - MEDIUM: ist: use local conversion arrays to case conversion 3030 - MINOR: htx: switch to case sensitive search of lower case header names 3031 - MINOR: mux-h1: Set CS_FL_EOS when read0 is detected and no data are pending 3032 - BUG/MINOR: stream-int: Process read0 even if no data was received in si_cs_recv 3033 - REGTEST: fix the Lua test file name in test lua/h00002 :-) 3034 - REGTEST: add a basic test for HTTP rules manipulating headers 3035 - BUG/MEDIUM: sample: Don't treat SMP_T_METH as SMP_T_STR. 3036 - MINOR: sample: add bc_http_major 3037 - BUG/MEDIUM: htx: fix typo in htx_replace_stline() making it fail all the time 3038 - REGTEST: make the HTTP rules test compatible with HTTP/2 as well 3039 - BUG/MEDIUM: h2: Don't try to chunk data when using HTX. 3040 - MINOR: compiler: add a new macro ALREADY_CHECKED() 3041 - BUILD: h2: mark the start line already checked to avoid warnings 3042 - BUG/MINOR: mux-h1: Remove the connection header when it is useless 3043 30442018/12/02 : 1.9-dev9 3045 - BUILD/MINOR: ssl: fix build with non-alpn/non-npn libssl 3046 - BUG/MINOR: mworker: Do not attempt to close(2) fd -1 3047 - BUILD: compression: fix build error with DEFAULT_MAXZLIBMEM 3048 - MINOR: compression: always create the compression pool 3049 - BUG/MEDIUM: mworker: fix FD leak upon reload 3050 - BUILD: htx: fix fprintf format inconsistency on 32-bit platforms 3051 - BUILD: buffers: buf.h requires unistd to get ssize_t on libmusl 3052 - MINOR: initcall: introduce a way to register init functions to call at boot 3053 - MINOR: init: process all initcalls in order at boot time 3054 - MEDIUM: init: convert all trivial registration calls to initcalls 3055 - MINOR: thread: provide a set of lock initialisers 3056 - MINOR: threads: add new macros to declare self-initializing locks 3057 - MEDIUM: init: use self-initializing spinlocks and rwlocks 3058 - MINOR: initcall: apply initcall to all register_build_opts() calls 3059 - MINOR: initcall: use initcalls for most post_{check,deinit} and per_thread* 3060 - MINOR: initcall: use initcalls for section parsers 3061 - MINOR: memory: add a callback function to create a pool 3062 - MEDIUM: init: use initcall for all fixed size pool creations 3063 - MEDIUM: memory: use pool_destroy_all() to destroy all pools on deinit() 3064 - MEDIUM: initcall: use initcalls for a few initialization functions 3065 - MEDIUM: memory: make the pool cache an array and not a thread_local 3066 - MINOR: ssl: free ctx when libssl doesn't support NPN 3067 - BUG/MINOR: proto_htx: only mark connections private if NTLM is detected 3068 - MINOR: h2: make struct h2_ops static 3069 - BUG/MEDIUM: mworker: avoid leak of client socket 3070 - REORG: mworker: declare master variable in global.h 3071 - BUG/MEDIUM: listeners: CLOEXEC flag is not correctly set 3072 - CLEANUP: http: Fix typo in init_http's comment 3073 - BUILD: Makefile: Disable -Wcast-function-type if it exists. 3074 - BUG/MEDIUM: h2: Don't bogusly error if the previous stream was closed. 3075 - REGTEST/MINOR: script: add run-regtests.sh script 3076 - REGTEST: Add a basic test for the cache. 3077 - BUG/MEDIUM: mux_pt: Don't forget to unsubscribe() on attach. 3078 - BUG/MINOR: ssl: ssl_sock_parse_clienthello ignores session id 3079 - BUG/MEDIUM: connections: Wake the stream once the mux is chosen. 3080 - BUG/MEDIUM: connections: Don't forget to detach the connection from the SI. 3081 - BUG/MEDIUM: stream_interface: Don't check if the handshake is done. 3082 - BUG/MEDIUM: stream_interface: Make sure we read all the data available. 3083 - BUG/MEDIUM: h2: Call h2_process() if there's an error on the connection. 3084 - REGTEST: Fix several issues. 3085 - REGTEST: lua: check socket functionality from a lua-task 3086 - BUG/MEDIUM: session: Remove the session from the session_list in session_free. 3087 - BUG/MEDIUM: streams: Don't assume we have a CS in sess_update_st_con_tcp. 3088 - BUG/MEDIUM: connections: Don't assume we have a mux in connect_server(). 3089 - BUG/MEDIUM: connections: Remove the connection from the idle list before destroy. 3090 - BUG/MEDIUM: session: properly clean the outgoing connection before freeing. 3091 - BUG/MEDIUM: mux_pt: Don't try to send if handshake is not done. 3092 - MEDIUM: connections: Put H2 connections in the idle list if http-reuse always. 3093 - MEDIUM: h2: Destroy a connection with no stream if it has no owner. 3094 - MAJOR: sessions: Store multiple outgoing connections in the session. 3095 - MEDIUM: session: Steal owner-less connections on end of transaction. 3096 - MEDIUM: server: Be smarter about deciding to reuse the last server. 3097 - BUG/MEDIUM: Special-case http_proxy when dealing with outgoing connections. 3098 - BUG/MINOR: cfgparse: Fix transition between 2 sections with the same name 3099 - BUG/MINOR: http: Use out buffer instead of trash to display error snapshot 3100 - BUG/MINOR: htx: Fix block size calculation when a start-line is added/replaced 3101 - BUG/MINOR: mux-h1: Fix processing of "Connection: " header on outgoing messages 3102 - BUG/MEDIUM: mux-h1: Reset the H1 parser when an outgoing message is processed 3103 - BUG/MINOR: proto_htx: Send outgoing data to client to start response processing 3104 - BUG/MINOR: htx: Stop a header or a start line lookup on the first EOH or EOM 3105 - BUG/MINOR: connection: report mux modes when HTX is supported 3106 - MINOR: htx: add a function to cut the beginning of a DATA block 3107 - MEDIUM: conn_stream: Add a way to get mux's info on a CS from the upper layer 3108 - MINOR: mux-h1: Implement get_cs_info() callback 3109 - MINOR: stream: Rely on CS's info if it exists and fallback on session's ones 3110 - MINOR: proto_htx: Use conn_stream's info to set t_idle duration when possible 3111 - MINOR: mux-h1: Don't rely on the stream anymore in h1_set_srv_conn_mode() 3112 - MINOR: mux-h1: Write last chunk and trailers if not found in the HTX message 3113 - MINOR: mux-h1: Be prepare to fail when EOM is added during trailers parsing 3114 - MINOR: mux-h1: Subscribe to send in h1_snd_buf() when not all data have been sent 3115 - MINOR: mux-h1: Consume channel's data in a loop in h1_snd_buf() 3116 - MEDIUM: mux-h1: Add keep-alive outgoing connections in connections list 3117 - MINOR: htx: Add function to add an HTX block just before another one 3118 - MINOR: htx: Add function to iterate on an HTX message using HTX blocks 3119 - MINOR: htx: Add a function to find the HTX block corresponding to a data offset 3120 - MINOR: stats: Don't add end-of-data marker and trailers in the HTX response 3121 - MEDIUM: htx: Change htx_sl to be a struct instead of an union 3122 - MINOR: htx: Add the start-line offset for the HTX message in the HTX structure 3123 - MEDIUM: htx: Don't rely on h1_sl anymore except during H1 header parsing 3124 - MINOR: proto-htx: Use the start-line flags to set the HTTP messsage ones 3125 - MINOR: htx: Add BODYLESS flags on the HTX start-line and the HTTP message 3126 - MINOR: proto_htx: Use full HTX messages to send 100-Continue responses 3127 - MINOR: proto_htx: Use full HTX messages to send 103-Early-Hints responses 3128 - MINOR: proto_htx: Use full HTX messages to send 401 and 407 responses 3129 - MINOR: proto_htx: Send valid HTX message when redir mode is enabled on a server 3130 - MINOR: proto_htx: Send valid HTX message to send 30x responses 3131 - MEDIUM: proto_htx: Convert all HTTP error messages into HTX 3132 - MINOR: mux-h1: Process conn_mode on the EOH when no connection header is found 3133 - MINOR: mux-h1: Change client conn_mode on an explicit close for the response 3134 - MINOR: mux-h1: Capture bad H1 messages 3135 - MAJOR: filters: Adapt filters API to be compatible with the HTX represenation 3136 - MEDIUM: proto_htx/filters: Add data filtering during the forwarding 3137 - MINOR: flt_trace: Adapt to be compatible with the HTX representation 3138 - MEDIUM: compression: Adapt to be compatible with the HTX representation 3139 - MINOR: h2: implement H2->HTX request header frame transcoding 3140 - MEDIUM: mux-h2: register mux for both HTTP and HTX modes 3141 - MEDIUM: mux-h2: make h2_rcv_buf() support HTX transfers 3142 - MEDIUM: mux-h2: make h2_snd_buf() HTX-aware 3143 - MEDIUM: mux-h2: add basic H2->HTX transcoding support for headers 3144 - MEDIUM: mux-h2: implement emission of H2 headers frames from HTX blocks 3145 - MEDIUM: mux-h2: implement the emission of DATA frames from HTX DATA blocks 3146 - MEDIUM: mux-h2: support passing H2 DATA frames to HTX blocks 3147 - BUG/MINOR: cfgparse: Fix the call to post parser of the last sections parsed 3148 - BUG/MEDIUM: mux-h2: don't lose the first response header in HTX mode 3149 - BUG/MEDIUM: mux-h2: remove the HTX EOM block on H2 response headers 3150 - MINOR: listener: the mux_proto entry in the bind_conf is const 3151 - MINOR: connection: create conn_get_best_mux_entry() 3152 - MINOR: server: the mux_proto entry in the server is const 3153 - MINOR: config: make sure to associate the proper mux to bind and servers 3154 - MINOR: hpack: add ":path" to the list of common header fields 3155 - MINOR: h2: add new functions to produce an HTX message from an H2 response 3156 - MINOR: mux-h2: mention that the mux is compatible with both sides 3157 - MINOR: mux-h2: implement an outgoing stream allocator : h2c_bck_stream_new() 3158 - MEDIUM: mux-h2: start to create the outgoing mux 3159 - MEDIUM: mux-h2: implement encoding of H2 request on the backend side 3160 - MEDIUM: mux-h2: make h2_frt_decode_headers() direction-agnostic 3161 - MEDIUM: mux-h2: make h2_process_demux() capable of processing responses as well 3162 - MEDIUM: mux-h2: Implement h2_attach(). 3163 - MEDIUM: mux-h2: Don't bother flagging outgoing connections as TOOMANY. 3164 - REGTEST: Fix LEVEL 4 script 0 of "connection" module. 3165 - MINOR: connection: Fix a comment. 3166 - MINOR: mux: add a "max_streams" method. 3167 - MEDIUM: servers: Add a way to keep idle connections alive. 3168 - CLEANUP: fix typos in the htx subsystem 3169 - CLEANUP: Fix typo in the chunk headers file 3170 - CLEANUP: Fix typos in the h1 subsystem 3171 - CLEANUP: Fix typos in the h2 subsystem 3172 - CLEANUP: Fix a typo in the mini-clist header 3173 - CLEANUP: Fix a typo in the proto_htx subsystem 3174 - CLEANUP: Fix typos in the proto_tcp subsystem 3175 - CLEANUP: Fix a typo in the signal subsystem 3176 - CLEANUP: Fix a typo in the session subsystem 3177 - CLEANUP: Fix a typo in the queue subsystem 3178 - CLEANUP: Fix typos in the shctx subsystem 3179 - CLEANUP: Fix typos in the socket pair protocol subsystem 3180 - CLEANUP: Fix typos in the map management functions 3181 - CLEANUP: Fix typo in the fwrr subsystem 3182 - CLEANUP: Fix typos in the cli subsystem 3183 - CLEANUP: Fix typo in the 51d subsystem 3184 - CLEANUP: Fix a typo in the base64 subsystem 3185 - CLEANUP: Fix a typo in the connection subsystem 3186 - CLEANUP: Fix a typo in the protocol header file 3187 - CLEANUP: Fix a typo in the checks header file 3188 - CLEANUP: Fix typos in the file descriptor subsystem 3189 - CLEANUP: Fix a typo in the listener subsystem 3190 - BUG/MINOR: lb-map: fix unprotected update to server's score 3191 - BUILD: threads: fix minor build warnings when threads are disabled 3192 31932018/11/25 : 1.9-dev8 3194 - REORG: config: extract the global section parser into cfgparse-global 3195 - REORG: config: extract the proxy parser into cfgparse-listen.c 3196 - BUILD: update the list of supported targets and compilers in makefile and readme 3197 - BUILD: reorder the objects in the makefile 3198 - BUILD: Makefile: make "V=1" show some of the commands that are executed 3199 - BUILD: Makefile: add the quiet mode to a few more targets 3200 - BUILD: Makefile: add "$(Q)" to clean, tags and cscope targets 3201 - BUILD: Makefile: switch to quiet mode by default for CC/LD/AR 3202 - MINOR: cli: format `show proc` to be more readable 3203 - MINOR: cli: displays uptime in `show proc` 3204 - MINOR: cli: show master information in 'show proc' 3205 - BUG/MEDIUM: hpack: fix encoding of "accept-ranges" field 3206 - MAJOR: mux-h1: Remove the rxbuf and decode HTTP messages in channel's buffer 3207 - BUG/MINOR: mux-h1: Enable keep-alive on server side 3208 - BUG/MEDIUM: mux-h1: Fix freeze when the kernel splicing is used 3209 - BUG/MEDIUM: mux-h1: Don't set the flag CS_FL_RCV_MORE when nothing was parsed 3210 - BUG/MINOR: stats/htx: Remove channel's output when the request is eaten 3211 - BUG/MINOR: proto_htx: Fix request/response synchronisation on error 3212 - MINOR: stream-int: Notify caller when an error is reported after a rcv_pipe() 3213 - MINOR: stream-int: Notify caller when an error is reported after a rcv_buf() 3214 - BUG/MINOR: stream-int: Don't call snd_buf() if there are still data in the pipe 3215 - MINOR: stream-int: remove useless checks on CS and conn flags in si_cs_send() 3216 - BUG/MINOR: config: Be aware of the HTX during the check of mux protocols 3217 - BUG/MINOR: mux-htx: Fix bad test on h1c flags in h1_recv_allowed() 3218 - MEDIUM: mworker: wait mode use standard init code path 3219 - MINOR: log: introduce ha_notice() 3220 - MINOR: mworker: use ha_notice to announce a new worker 3221 - BUG/MEDIUM: http_fetch: Make sure name is initialized before http_find_header. 3222 - MINOR: cli: add mworker_accept_wrapper to 'show fd' 3223 - MEDIUM: signal: signal_unregister() removes every handlers 3224 - BUG/MEDIUM: mworker: unregister the signals of main() 3225 - MINOR: cli: add a few missing includes in proto/cli.h 3226 - REORG: time/activity: move activity measurements to activity.{c,h} 3227 - MINOR: activity: report the average loop time in "show activity" 3228 - MINOR: activity: add configuration and CLI support for "profiling.tasks" 3229 - MEDIUM: tasks: collect per-task CPU time and latency 3230 - MINOR: sample: add cpu_calls, cpu_ns_avg, cpu_ns_tot, lat_ns_avg, lat_ns_tot 3231 - MINOR: cli/activity: rename the stolen CPU time fields to mention milliseconds 3232 - BUG/MINOR: cli: Fix memory leak 3233 - BUG/MINOR: mworker: fix FD leak and memory leak in error path 3234 - MINOR: poller: move the call of tv_update_date() back to the pollers 3235 - MINOR: polling: add an option to support busy polling 3236 - MINOR: server: Add "alpn" and "npn" keywords. 3237 - MEDIUM: connection: Don't bother reactivating polling after connection retry. 3238 - MAJOR: connections: Defer mux creation for outgoing connection if alpn is set. 3239 - MEDIUM: ssl: Add ssl_bc_alpn and ssl_bc_npn sample fetches. 3240 - MINOR: servers: Free [idle|safe|priv]_conns on exit. 3241 - REGTEST: add the option to test only a specific set of files 3242 - REGTEST: add a test for connections to a "dispatch" address 3243 - BUG/MEDIUM: connections: Don't reset the conn flags in *connect_server(). 3244 - MINOR: server: Only defined conn_complete_server if USE_OPENSSL is set. 3245 - BUG/MEDIUM: servers: Don't check if we have a conn_stream too soon. 3246 - BUG/MEDIUM: sessions: Set sess->origin to NULL if the origin was destroyed. 3247 - MEDIUM: servers: Store the connection in the SI until we have a mux. 3248 - BUG/MEDIUM: h2: wake the processing task up after demuxing 3249 - BUG/MEDIUM: h2: restart demuxing after releasing buffer space 3250 32512018/11/18 : 1.9-dev7 3252 - BUILD: cache: fix a build warning regarding too large an integer for the age 3253 - CLEANUP: fix typos in the comments of the Makefile 3254 - CLEANUP: fix a typo in a comment for the contrib/halog subsystem 3255 - CLEANUP: fix typos in comments for the contrib/modsecurity subsystem 3256 - CLEANUP: fix typos in comments for contrib/spoa_example 3257 - CLEANUP: fix typos in comments for contrib/wireshark-dissectors 3258 - DOC: Fix typos in README and CONTRIBUTING 3259 - MINOR: log: slightly improve error message syntax on log failure 3260 - DOC: logs: the format directive was missing from the second log part 3261 - MINOR: log: report the number of dropped logs in the stats 3262 - MEDIUM: log: add support for logging to existing file descriptors 3263 - MEDIUM: log: support a new "short" format 3264 - MEDIUM: log: add a new "raw" format 3265 - BUG/MEDIUM: stream-int: change the way buffer room is requested by a stream-int 3266 - BUG/MEDIUM: stream-int: convert some co_data() checks to channel_is_empty() 3267 - MINOR: namespaces: don't build namespace.c if disabled 3268 - BUILD/MEDIUM: threads/affinity: DragonFly build fix 3269 - MINOR: http: Add new "early-hint" http-request action. 3270 - MINOR: http: Make new "early-hint" http-request action really be parsed. 3271 - MINOR: http: Implement "early-hint" http request rules. 3272 - MINOR: doc: Add information about "early-hint" http-request action. 3273 - DOC: early-hints: fix truncated line. 3274 - MINOR: mworker: only close std{in,out,err} in daemon mode 3275 - BUG/MEDIUM: log: don't CLOEXEC the inherited FDs 3276 - BUG/MEDIUM: Make sure stksess is properly aligned. 3277 - BUG/MEDIUM: stream-int: make failed splice_in always subscribe to recv 3278 - BUG/MEDIUM: stream-int: clear CO_FL_WAIT_ROOM after splicing data in 3279 - BUG/MINOR: stream-int: make sure not to go through the rcv_buf path after splice() 3280 - CONTRIB: debug: fix build related to conn_stream flags change 3281 - REGTEST: fix scripts 1 and 3 to accept development version 3282 - BUG/MINOR: http_fetch: Remove the version part when capturing the request uri 3283 - MINOR: http: Regroup return statements of http_req_get_intercept_rule at the end 3284 - MINOR: http: Regroup return statements of http_res_get_intercept_rule at the end 3285 - BUG/MINOR: http: Be sure to sent fully formed HTTP 103 responses 3286 - MEDIUM: jobs: support unstoppable jobs for soft stop 3287 - MEDIUM: listeners: support unstoppable listener 3288 - MEDIUM: cli: worker socketpair is unstoppable 3289 - BUG/MINOR: stream-int: set SI_FL_WANT_PUT in sess_establish() 3290 - MINOR: stream: move the conn_stream specific calls to the stream-int 3291 - BUG/MINOR: config: Copy default error messages when parsing of a backend starts 3292 - CLEANUP: h2: minimum documentation for recent API changes 3293 - MINOR: mux: implement a get_first_cs() method 3294 - MINOR: stream-int: make conn_si_send_proxy() use cs_get_first() 3295 - MINOR: stream-int: relax the forwarding rules in stream_int_notify() 3296 - MINOR: stream-int: expand the flags to 32-bit 3297 - MINOR: stream-int: rename SI_FL_WAIT_ROOM to SI_FL_RXBLK_ROOM 3298 - MINOR: stream-int: introduce new SI_FL_RXBLK flags 3299 - MINOR: stream-int: add new functions si_{rx,tx}_{blocked,endp_ready}() 3300 - MINOR: stream-int: replace SI_FL_WANT_PUT with !SI_FL_RX_WAIT_EP 3301 - MINOR: stream-int: use si_rx_blocked()/si_tx_blocked() to check readiness 3302 - MEDIUM: stream-int: use si_rx_buff_{rdy,blk} to report buffer readiness 3303 - MINOR: stream-int: replace si_{want,stop}_put() with si_rx_endp_{more,done}() 3304 - MEDIUM: stream-int: update the endp polling status only at the end of si_cs_recv() 3305 - MINOR: stream-int: make si_sync_recv() simply check ENDP before si_cs_recv() 3306 - MINOR: stream-int: automatically mark applets as ready if they block on the channel 3307 - MEDIUM: stream-int: fix the si_cant_put() calls used for end point readiness 3308 - MEDIUM: stream-int: fix the si_cant_put() calls used for buffer readiness 3309 - MEDIUM: stream-int: use si_rx_shut_blk() to indicate the SI is closed 3310 - MEDIUM: stream-int: unconditionally call si_chk_rcv() in update and notify 3311 - MEDIUM: stream-int: make use of si_rx_chan_{rdy,blk} to control the stream-int from the channel 3312 - MINOR: stream-int: replace si_cant_put() with si_rx_room_{blk,rdy}() 3313 - MEDIUM: connections: Wait until the connection is established to try to recv. 3314 - MEDIUM: mux: Teach the mux_pt how to deal with idle connections. 3315 - MINOR: mux: Add a new "avail_streams" method. 3316 - MINOR: mux: Add a destroy() method. 3317 - MINOR: sessions: Start to store the outgoing connection in sessions. 3318 - MAJOR: connections: Detach connections from streams. 3319 - MINOR: conn_stream: Add a flag to notify the mux it should flush its buffers 3320 - MINOR: htx: Add proto_htx.c file 3321 - MINOR: conn_stream: Add a flag to notify the mux it must respect the reserve 3322 - MINOR: http: Add standalone functions to parse a start-line or a header 3323 - MINOR: http: Call http_send_name_header with the stream instead of the txn 3324 - MINOR: conn_stream: Add a flag to notify the SI some data were received 3325 - MINOR: http: Add macros to check if a stream uses the HTX representation 3326 - MEDIUM: proto_htx: Add HTX analyzers and use it when the mux H1 is used 3327 - MEDIUM: mux-h1: Add dummy mux to handle HTTP/1.1 connections 3328 - MEDIUM: mux-h1: Add parsing of incoming and ougoing HTTP messages 3329 - MAJOR: mux-h1/proto_htx: Handle keep-alive connections in the mux 3330 - MEDIUM: mux-h1: Add support of the kernel TCP splicing to forward data 3331 - MEDIUM: htx: Add API to deal with the internal representation of HTTP messages 3332 - MINOR: http_htx: Add functions to manipulate HTX messages in http_htx.c 3333 - MINOR: proto_htx: Add some functions to handle HTX messages 3334 - MAJOR: mux-h1/proto_htx: Switch mux-h1 and HTX analyzers on the HTX representation 3335 - MINOR: http_htx: Add functions to replace part of the start-line 3336 - MINOR: http_htx: Add functions to retrieve a specific occurrence of a header 3337 - MINOR: proto_htx: Rewrite htx_apply_redirect_rule to handle HTX messages 3338 - MINOR: proto_htx: Add the internal function htx_del_hdr_value 3339 - MINOR: proto_htx: Add the internal function htx_fmt_res_line 3340 - MINOR: proto_htx: Add functions htx_transform_header and htx_transform_header_str 3341 - MINOR: proto_htx: Add functions htx_req_replace_stline and htx_res_set_status 3342 - MINOR: proto_htx: Add function to build and send HTTP 103 responses 3343 - MINOR: proto_htx: Add functions htx_req_get_intercept_rule and htx_res_get_intercept_rule 3344 - MINOR: proto_htx: Add functions to apply req* and rsp* rules on HTX messages 3345 - MINOR: proto_htx: Add functions to manage cookies on HTX messages 3346 - MINOR: proto_htx: Add functions to check the cacheability of HTX messages 3347 - MINOR: proto_htx: Add functions htx_send_name_header 3348 - MINOR: proto_htx: Add functions htx_perform_server_redirect 3349 - MINOR: proto_htx: Add functions to handle the stats applet 3350 - MEDIUM: proto_htx: Adapt htx_process_req_common to handle HTX messages 3351 - MEDIUM: proto_htx: Adapt htx_process_request to handle HTX messages 3352 - MINOR: proto_htx: Adapt htx_process_tarpit to handle HTX messages 3353 - MEDIUM: proto_htx: Adapt htx_wait_for_request_body to handle HTX messages 3354 - MEDIUM: proto_htx: Adapt htx_process_res_common to handle HTX messages 3355 - MINOR: http_fetch: Add smp_prefetch_htx 3356 - MEDIUM: http_fetch: Adapt all fetches to handle HTX messages 3357 - MEDIUM: mux-h1: Wait for connection establishment before consuming channel's data 3358 - MINOR: stats/htx: Adapt the stats applet to handle HTX messages 3359 - MINOR: stream: Don't reset sov value with HTX messages 3360 - MEDIUM: mux-h1: Handle errors and timeouts in the stream 3361 - MINOR: filters/htx: Forbid filters when the HTX is enabled on a proxy 3362 - MINOR: lua/htx: Forbid lua usage when the HTX is enabled on a proxy 3363 - CLEANUP: Fix some typos in the haproxy subsystem 3364 - CLEANUP: Fix typos in the dns subsystem 3365 - CLEANUP: Fix typos in the pattern subsystem 3366 - CLEANUP: fix 2 typos in the xxhash subsystem 3367 - CLEANUP: fix a few typos in the comments of the server subsystem 3368 - CLEANUP: fix a misspell in tests/filltab25.c 3369 - CLEANUP: fix a typo found in the stream subsystem 3370 - CLEANUP: fix typos in comments in ebtree 3371 - CLEANUP: fix typos in reg-tests 3372 - CLEANUP: fix typos in the comments of the vars subsystem 3373 - CLEANUP: fix typos in the hlua_fcn subsystem 3374 - CLEANUP: fix typos in the proto_http subsystem 3375 - CLEANUP: fix typos in the proxy subsystem 3376 - CLEANUP: fix typos in the ssl_sock subsystem 3377 - DOC: Fix typos in different subsections of the documentation 3378 - DOC: fix a few typos in the documentation 3379 - MINOR: Fix an error message thrown when we run out of memory 3380 - MINOR: Fix typos in error messages in the proxy subsystem 3381 - MINOR: fix typos in the examples files 3382 - CLEANUP: Fix a typo in the stats subsystem 3383 - CLEANUP: Fix typos in the acl subsystem 3384 - CLEANUP: Fix typos in the cache subsystem 3385 - CLEANUP: Fix typos in the cfgparse subsystem 3386 - CLEANUP: Fix typos in the filters subsystem 3387 - CLEANUP: Fix typos in the http subsystem 3388 - CLEANUP: Fix typos in the log subsystem 3389 - CLEANUP: Fix typos in the peers subsystem 3390 - CLEANUP: Fix typos in the regex subsystem 3391 - CLEANUP: Fix typos in the sample subsystem 3392 - CLEANUP: Fix typos in the spoe subsystem 3393 - CLEANUP: Fix typos in the standard subsystem 3394 - CLEANUP: Fix typos in the stick_table subsystem 3395 - CLEANUP: Fix typos in the task subsystem 3396 - MINOR: Fix typo in error message in the standard subsystem 3397 - CLEANUP: fix typos in the comments of hlua 3398 - MINOR: Fix typo in the error 500 output of hlua 3399 - MINOR: Fix a typo in a warning message in the spoe subsystem 3400 34012018/11/11 : 1.9-dev6 3402 - BUG/MEDIUM: tools: fix direction of my_ffsl() 3403 - BUG/MINOR: cli: forward the whole command on master CLI 3404 - BUG/MEDIUM: auth/threads: use of crypt() is not thread-safe 3405 - MINOR: compat: automatically detect support for crypt_r() 3406 - MEDIUM: auth/threads: make use of crypt_r() on systems supporting it 3407 - DOC: split the http-request actions in their own section 3408 - DOC: split the http-response actions in their own section 3409 - BUG/MAJOR: stream-int: don't call si_cs_recv() in stream_int_chk_rcv_conn() 3410 - BUG/MINOR: tasks: make sure wakeup events are properly reported to subscribers 3411 - MINOR: stats: report the number of active jobs and listeners in "show info" 3412 - MINOR: stats: report the number of active peers in "show info" 3413 - MINOR: stats: report the number of currently connected peers 3414 - MINOR: cli: show the number of reload in 'show proc' 3415 - MINOR: cli: can't connect to the target CLI 3416 - MEDIUM: mworker: does not create the CLI proxy when no listener 3417 - MINOR: mworker: displays more information when leaving 3418 - MEDIUM: mworker: exit with the incriminated exit code 3419 - MINOR: mworker: displays a message when a worker is forked 3420 - MEDIUM: mworker: leave when the master die 3421 - CLEANUP: stream-int: retro-document si_cs_io_cb() 3422 - BUG/MEDIUM: mworker: does not abort() in mworker_pipe_register() 3423 - BUG/MEDIUM: stream-int: don't wake up for nothing during SI_ST_CON 3424 - BUG/MEDIUM: cli: crash when trying to access a worker 3425 - DOC: restore note about "independant" typo 3426 - MEDIUM: stream: implement stream_buf_available() 3427 - MEDIUM: appctx: check for allocation attempts in buffer allocation callbacks 3428 - MINOR: stream-int: rename si_applet_{want|stop|cant}_{get|put} 3429 - MINOR: stream-int: add si_done_{get,put} to indicate that we won't do it anymore 3430 - MINOR: stream-int: use si_cant_put() instead of setting SI_FL_WAIT_ROOM 3431 - MINOR: stream-int: make use of si_done_{get,put}() in shut{w,r} 3432 - MINOR: stream-int: make it clear that si_ops cannot be null 3433 - MEDIUM: stream-int: temporarily make si_chk_rcv() take care of SI_FL_WAIT_ROOM 3434 - MINOR: stream-int: factor the SI_ST_EST state test into si_chk_rcv() 3435 - MEDIUM: stream-int: make SI_FL_WANT_PUT reflect CF_DONT_READ 3436 - MEDIUM: stream-int: always call si_chk_rcv() when we make room in the buffer 3437 - MEDIUM: stream-int: make si_chk_rcv() check that SI_FL_WAIT_ROOM is cleared 3438 - MINOR: stream-int: replace si_update() with si_update_both() 3439 - MEDIUM: stream-int: make stream_int_update() aware of the lower layers 3440 - CLEANUP: stream-int: remove the now unused si->update() function 3441 - MEDIUM: stream-int: Rely only on SI_FL_WAIT_ROOM to stop data receipt 3442 - MEDIUM: stream-int: Try to read data even if channel's buffer seems to be full 3443 - BUG/MINOR: config: better detect the presence of the h2 pattern in npn/alpn 3444 34452018/10/28 : 1.9-dev5 3446 - BUILD: Makefile: add the new ERR variable to force -Werror 3447 - MINOR: freq_ctr: add swrate_add_scaled() to work with large samples 3448 - MINOR: stream_interface: Avoid calling si_cs_send/recv if not needed. 3449 - CLEANUP: http: Remove the unused function http_find_header 3450 - MINOR: h1: Export some functions parsing the value of some HTTP headers 3451 - BUG/MEDIUM: stream-int: don't set SI_FL_WAIT_ROOM on CF_READ_DONTWAIT 3452 - MINOR: proxy: add a new option "http-use-htx" 3453 - BUG/MEDIUM: pools: fix the minimum allocation size 3454 - MINOR: shctx: Shared objects block by block allocation. 3455 - MINOR: cache: Larger HTTP objects caching. 3456 - MINOR: shctx: Add a maximum object size parameter. 3457 - MINOR: cache: Add "max-object-size" option. 3458 - DOC: Update about the cache support for big objects. 3459 - BUG/MINOR: cache: Crashes with "total-max-size" > 2047(MB). 3460 - BUG/MINOR: cache: Wrong usage of shctx_init(). 3461 - BUG/MINOR: ssl: Wrong usage of shctx_init(). 3462 - MINOR: cache: Avoid usage of atoi() when parsing "max-object-size". 3463 - MINOR: shctx: Change max. object size type to unsigned int. 3464 - DOC: cache: Missing information about "total-max-size" and "max-object-size" 3465 - CLEANUP: tools: fix misleading comment above function LIM2A 3466 - MEDIUM: channel: merge back flags CF_WRITE_PARTIAL and CF_WRITE_EVENT 3467 - BUG/MINOR: only mark connections private if NTLM is detected 3468 - BUG/MINOR: only auto-prefer last server if lb-alg is non-deterministic 3469 - MINOR: stream: don't prune variables if the list is empty 3470 - MINOR: stream-int: add si_alloc_ibuf() to ease input buffer allocation 3471 - MEDIUM: stream-int: replace channel_alloc_buffer() with si_alloc_ibuf() everywhere 3472 - MEDIUM: stream: always call si_cs_recv() after a failed buffer allocation 3473 - MEDIUM: stream: don't try to send first in process_stream() 3474 - MEDIUM: stream-int: make si_update() synchronize flag changes before the I/O 3475 - MEDIUM: stream-int: call si_cs_process() in stream_int_update_conn 3476 - MINOR: stream-int: don't needlessly call tasklet_wakeup() in stream_int_chk_snd_conn() 3477 - MINOR: stream-int: make stream_int_notify() not wake the tasklet up 3478 - MINOR: stream-int: don't needlessly call si_cs_send() in si_cs_process() 3479 - MINOR: mworker: number of reload in the life of a worker 3480 - MEDIUM: mworker: each worker socketpair is a CLI listener 3481 - REORG: mworker: move struct mworker_proc to global.h 3482 - MINOR: server: export new_server() function 3483 - MEDIUM: mworker: move proc_list gen before proxies startup 3484 - MEDIUM: mworker: add proc_list in global.h 3485 - MEDIUM: mworker: proxy for the master CLI 3486 - MEDIUM: mworker: create CLI listeners from argv[] 3487 - MEDIUM: cli: disable some keywords in the master 3488 - MEDIUM: mworker: find the server ptr using a CLI prefix 3489 - MEDIUM: cli: 'show proc' displays processus 3490 - MEDIUM: cli: implement 'mode cli' proxy analyzers 3491 - MINOR: cli: displays sockpair@ in "show cli sockets" 3492 - MEDIUM: cli: enable "show cli sockets" for the master 3493 - MINOR: cli: put @master @<relative pid> @!<pid> in the help 3494 - MEDIUM: listeners: set O_CLOEXEC on the accepted FDs 3495 - MEDIUM: mworker: stop the master proxy in the workers 3496 - MEDIUM: channel: reorder the channel analyzers for the cli 3497 - MEDIUM: cli: write a prompt for the CLI proxy of the master 3498 - MINOR: cli: helper to write an response message and close 3499 - MINOR: cache: Add "Age" header. 3500 - REGTEST: make the IP+port logging test more reliable 3501 - BUG/MINOR: memory: make the thread-local cache allocator set the debugging link 3502 - BUG/MAJOR: http: http_txn_get_path() may deference an inexisting buffer 3503 - BUG/MINOR: backend: assign the wait list after the error check 3504 35052018/10/21 : 1.9-dev4 3506 - BUILD: Allow configuration of pcre-config path 3507 - DOC: clarify force-private-cache is an option 3508 - BUG/MINOR: connection: avoid null pointer dereference in send-proxy-v2 3509 - REORG: http: move the code to different files 3510 - REORG: http: move HTTP rules parsing to http_rules.c 3511 - CLEANUP: http: remove some leftovers from recent cleanups 3512 - BUILD: Makefile: add a "make opts" target to simply show the build options 3513 - BUILD: Makefile: speed up compiler options detection 3514 - BUG/MINOR: backend: check that the mux installed properly 3515 - BUG/MEDIUM: h2: check that the connection is still valid at the end of init() 3516 - BUG/MEDIUM: h2: make h2_stream_new() return an error on memory allocation failure 3517 - REGTEST/MINOR: compatibility: use unix@ instead of abns@ sockets 3518 - MINOR: ssl: cleanup old openssl API call 3519 - MINOR: ssl: generate-certificates for BoringSSL 3520 - BUG/MEDIUM: buffers: Make sure we don't wrap in ci_insert_line2/b_rep_blk. 3521 - MEDIUM: ssl: add support for ciphersuites option for TLSv1.3 3522 - CLEANUP: haproxy: Remove unused variable 3523 - CLEANUP: h1: Fix debug warnings for h1 headers 3524 - CLEANUP: stick-tables: Remove unneeded double (()) around conditional clause 3525 - MEDIUM: task: perform a single tree lookup per run queue batch 3526 - BUG/MEDIUM: Cur/CumSslConns counters not threadsafe. 3527 - BUG/MINOR: threads: move declaration of capabilities to config.h 3528 - OPTIM: tools: optimize my_ffsl() for x86_64 3529 - BUG/MINOR: h2: null-deref 3530 - BUG/MINOR: checks: queues null-deref 3531 - MINOR: connections: Introduce an unsubscribe method. 3532 - MEDIUM: connections: Change struct wait_list to wait_event. 3533 - BUG/MEDIUM: h2: Make sure we're not in the send list on flow control. 3534 - BUG/MEDIUM: mworker: segfault receiving SIGUSR1 followed by SIGTERM. 3535 - BUG/MEDIUM: stream: Make sure to unsubscribe before si_release_endpoint. 3536 - MINOR: http: Move comment about some HTTP macros in the right header file 3537 - MINOR: stats: Add missing include 3538 - MINOR: http: Export some functions and do cleanup to prepare HTTP refactoring 3539 - MEDIUM: http: Ignore http-pretend-keepalive option on frontend 3540 - MEDIUM: http: Ignore http-tunnel option on backend 3541 - MINOR: http: Use same flag for httpclose and forceclose options 3542 - MINOR: h1: Add EOH marker during headers parsing 3543 - MINOR: conn-stream: Add CL_FL_NOT_FIRST flag 3544 - MINOR: h1: Change the union h1_sl to use indirect strings to store infos 3545 - MINOR: h1: Add the flag H1_MF_NO_PHDR to not add pseudo-headers during parsing 3546 - MINOR: log: make sess_log() support sess=NULL 3547 - MINOR: chunk: add chunk_cpy() and chunk_cat() 3548 - MEDIUM: h2: stop relying on H2_SS_IDLE / H2_SS_CLOSED 3549 - CLEANUP: h2: rename h2c_snd_settings() to h2c_send_settings() 3550 - MINOR: h2: don't try to send data before preface 3551 - MINOR: h2: unify the mux init function 3552 - MINOR: h2: retrieve the front proxy from the caller instead of the session 3553 - MINOR: h2: split h2c_stream_new() into h2s_new() + h2c_frt_stream_new() 3554 - MINOR: h2: add a new flag to quickly distinguish front vs back connection 3555 - BUG/MEDIUM: mworker: don't poll on LI_O_INHERITED listeners 3556 - BUG/MEDIUM: stream: don't crash on out-of-memory 3557 - BUILD: compiler: add a new statement "__unreachable()" 3558 - BUILD: lua: silence some compiler warnings about potential null derefs 3559 - BUILD: ssl: fix null-deref warning in ssl_fc_cipherlist_str sample fetch 3560 - BUILD: ssl: fix another null-deref warning in ssl_sock_switchctx_cbk() 3561 - BUILD: stick-table: make sure not to fail on task_new() during initialization 3562 - BUILD: peers: check allocation error during peers_init_sync() 3563 - MINOR: tools: add a new function atleast2() to test masks for more than 1 bit 3564 - MINOR: config: use atleast2() instead of my_popcountl() where relevant 3565 - MEDIUM: fd/threads: only grab the fd's lock if the FD has more than one thread 3566 - MAJOR: tasks: create per-thread wait queues 3567 - OPTIM: tasks: group all tree roots per cache line 3568 - DOC: Fix a few typos 3569 - MINOR: pools: allocate most memory pools from an array 3570 - MINOR: pools: split pool_free() in the lockfree variant 3571 - MEDIUM: pools: implement a thread-local cache for pool entries 3572 - BUG/MEDIUM: threads: fix thread_release() at the end of the rendez-vous point 3573 - Revert "BUILD: lua: silence some compiler warnings about potential null derefs" 3574 - BUILD: lua: silence some compiler warnings about potential null derefs (#2) 3575 - MINOR: lua: all functions calling lua_yieldk() may return 3576 - BUILD: lua: silence some compiler warnings after WILL_LJMP 3577 - BUILD: Makefile: silence an option conflict warning with clang 3578 - MINOR: server: Use memcpy() instead of strncpy(). 3579 - CLEANUP: state-file: make the path concatenation code a bit more consistent 3580 - MINOR: build: Disable -Wstringop-overflow. 3581 - MINOR: cfgparse: Write 130 as 128 as 0x82 and 0x80. 3582 - MINOR: peers: use defines instead of enums to appease clang. 3583 - DOC: fix reference to map files in MAINTAINERS 3584 - MINOR: fd: centralize poll timeout computation in compute_poll_timeout() 3585 - MINOR: poller: move time and date computation out of the pollers 3586 - BUILD: memory: fix pointer declaration for atomic CAS 3587 - BUILD: Makefile: add USE_RT to pass -lrt for clock_gettime() and friends 3588 - MINOR: time: add now_mono_time() and now_cpu_time() 3589 - MEDIUM: time: measure the time stolen by other threads 3590 - BUILD: memory: fix free_list pointer declaration again for atomic CAS 3591 - BUILD: compiler: rename __unreachable() to my_unreachable() 3592 - BUG/MEDIUM: pools: Fix the usage of mmap()) with DEBUG_UAF. 3593 - BUILD: memory: fix free_list pointer declaration again for atomic CAS 3594 - BUG/MEDIUM: h2: Close connection if no stream is left an GOAWAY was sent. 3595 - BUG/MEDIUM: connections: Remove subscription if going in idle mode. 3596 - BUG/MEDIUM: stream: Make sure polling is right on retry. 3597 - MINOR: h2: Make sure to return 1 in h2_recv() when needed. 3598 - MEDIUM: connections: Don't directly mess with the polling from the upper layers. 3599 - MINOR: streams: Call tasklet_free() after si_release_endpoint(). 3600 - MINOR: connection: Add a SUB_CALL_UNSUBSCRIBE event. 3601 - MINOR: h2: Don't run tasks that are waiting to send if mux in full. 3602 - MINOR: ebtree: save 8 bytes in struct eb32sc_node 3603 36042018/09/29 : 1.9-dev3 3605 - BUG/MINOR: h1: don't consider the status for each header 3606 - MINOR: h1: report in the h1m struct if the HTTP version is 1.1 or above 3607 - MINOR: h1: parse the Connection header field 3608 - DOC: Fix typos in lua documentation 3609 - MINOR: h1: Add H1_MF_XFER_LEN flag 3610 - MINOR: http: add http_hdr_del() to remove a header from a list 3611 - MINOR: h1: add headers to the list after controls, not before 3612 - MEDIUM: h1: better handle transfer-encoding vs content-length 3613 - MEDIUM: h1: deduplicate the content-length header 3614 - BUG/MEDIUM: patterns: fix possible double free when reloading a pattern list 3615 - BUG/MEDIUM: h1: Really skip all updates when incomplete messages are parsed 3616 - CLEANUP/CONTRIB: hpack: remove some h1 build warnings 3617 - BUG/MINOR: tools: fix set_net_port() / set_host_port() on IPv4 3618 - BUG/MINOR: cli: make sure the "getsock" command is only called on connections 3619 - MINOR: stktable: provide an unchecked version of stktable_data_ptr() 3620 - MINOR: stream-int: make si_appctx() never fail 3621 - BUILD: ssl_sock: remove build warnings on potential null-derefs 3622 - BUILD: stats: remove build warnings on potential null-derefs 3623 - BUILD: stream: address null-deref build warnings at -Wextra 3624 - BUILD: http: address a couple of null-deref warnings at -Wextra 3625 - BUILD: log: silent build warnings due to unchecked __objt_{server,applet} 3626 - BUILD: dns: fix null-deref build warning at -Wextra 3627 - BUILD: checks: silence a null-deref build warning at -Wextra 3628 - BUILD: connection: silence a couple of null-deref build warnings at -Wextra 3629 - BUILD: backend: fix 3 build warnings related to null-deref at -Wextra 3630 - BUILD: sockpair: silence a build warning at -Wextra 3631 - BUILD: build with -Wextra and sort out certain warnings 3632 - BUG/CRITICAL: hpack: fix improper sign check on the header index value 3633 - BUG/MEDIUM: http: Don't parse chunked body if there is no input data 3634 - DOC: Update configuration doc about the maximum number of stick counters. 3635 - BUG/MEDIUM: process_stream: Don't use si_cs_io_cb() in process_stream(). 3636 - MINOR: h2/stream_interface: Reintroduce te wake() method. 3637 - BUG/MEDIUM: h2: Wake the task instead of calling h2_recv()/h2_process(). 3638 - BUG/MEDIUM: process_stream(): Don't wake the task if no new data was received. 3639 - MEDIUM: lua: Add stick table support for Lua. 3640 36412018/09/12 : 1.9-dev2 3642 - BUG/MINOR: buffers: Fix b_slow_realign when a buffer is realign without output 3643 - BUG/MEDIUM: threads: fix the no-thread case after the change to the sync point 3644 - BUG/MEDIUM: servers: check the queues once enabling a server 3645 - BUG/MEDIUM: queue: prevent a backup server from draining the proxy's connections 3646 - MEDIUM: mux: Remove const on the buffer in mux->snd_buf() 3647 - CLEANUP: backend: Move mux install to call it at only one place 3648 - MINOR: conn_stream: add an tx buffer to the conn_stream 3649 - MINOR: conn_stream: add cs_send() as a default snd_buf() function 3650 - MINOR: backend: Try to find the best mux for outgoing connections 3651 - MEDIUM: backend: don't rely on mux_pt_ops in connect_server() 3652 - MINOR: mux: Add info about the supported side in alpn_mux_list structure 3653 - MINOR: mux: Unlink ALPN and multiplexers to rather speak of mux protocols 3654 - MINOR: mux: Print the list of existing mux protocols during HA startup 3655 - MEDIUM: checks: use the new rendez-vous point to spread check result 3656 - MEDIUM: haproxy: don't use sync_poll_loop() anymore in the main loop 3657 - MINOR: threads: remove the previous synchronization point 3658 - MAJOR: server: make server state changes synchronous again 3659 - CLEANUP: server: remove the update list and the update lock 3660 - BUG/MINOR: threads: Remove the unexisting lock label "UPDATED_SERVERS_LOCK" 3661 - BUG/MEDIUM: stream_int: Don't check CO_FL_SOCK_RD_SH flag to trigger cs receive 3662 - MINOR: mux: Change get_mux_proto to get an ist as parameter 3663 - MINOR: mux: Improve the message with the list of existing mux protocols 3664 - MINOR: mux/frontend: Add 'proto' keyword to force the mux protocol 3665 - MINOR: mux/server: Add 'proto' keyword to force the multiplexer's protocol 3666 - MEDIUM: mux: Use the mux protocol specified on bind/server lines 3667 - BUG/MEDIUM: connection/mux: take care of serverless proxies 3668 - MINOR: queue: make sure the pendconn is released before logging 3669 - MINOR: stream: rename {srv,prx}_queue_size to *_queue_pos 3670 - MINOR: queue: store the queue index in the stream when enqueuing 3671 - MINOR: queue: replace the linked list with a tree 3672 - MEDIUM: add set-priority-class and set-priority-offset 3673 - MEDIUM: queue: adjust position based on priority-class and priority-offset 3674 - DOC: update the roadmap about priority queues 3675 - BUG/MINOR: ssl: empty connections reported as errors. 3676 - MINOR: connections: Make rcv_buf mandatory and nuke cs_recv(). 3677 - MINOR: connections: Move rxbuf from the conn_stream to the h2s. 3678 - MINOR: connections: Get rid of txbuf. 3679 - MINOR: tasks: Allow tasklet_wakeup() to wakeup a task. 3680 - MINOR: connections/mux: Add the wait reason(s) to wait_list. 3681 - MINOR: stream_interface: Don't use si_cs_send() as a task handler. 3682 - MINOR: stream_interface: Give stream_interface its own wait_list. 3683 - MINOR: mux_h2: Don't use h2_send() as a callback. 3684 - MINOR: checks: Add event_srv_chk_io(). 3685 - BUG/MEDIUM: tasks: Don't insert in the global rqueue if nbthread == 1 3686 - BUG/MEDIUM: sessions: Don't use t->state. 3687 - BUG/MEDIUM: ssl: fix missing error loading a keytype cert from a bundle. 3688 - BUG/MEDIUM: ssl: loading dh param from certifile causes unpredictable error. 3689 - BUG/MINOR: map: fix map_regm with backref 3690 - DOC: dns: explain set server ... fqdn requires resolver 3691 - DOC: add documentation for prio_class and prio_offset sample fetches. 3692 - DOC: ssl: Use consistent naming for TLS protocols 3693 - DOC: update the layering design notes 3694 - MINOR: tasks: Don't special-case when nbthreads == 1 3695 - MINOR: fd cache: And the thread_mask with all_threads_mask. 3696 - BUG/MEDIUM: lua: socket timeouts are not applied 3697 - BUG/MINOR: lua: fix extra 500ms added to socket timeouts 3698 - BUG/MEDIUM: server: update our local state before propagating changes 3699 - BUG/MEDIUM: cli/threads: protect all "proxy" commands against concurrent updates 3700 - DOC: server/threads: document which functions need to be called with/without locks 3701 - BUG/MEDIUM: cli/threads: protect some server commands against concurrent operations 3702 - BUG/MEDIUM: streams: Don't forget to remove the si from the wait list. 3703 - BUG/MEDIUM: tasklets: Add the thread as active when waking a tasklet. 3704 - BUG/MEDIUM: stream-int: Check if the conn_stream exist in si_cs_io_cb. 3705 - BUG/MEDIUM: H2: Activate polling after successful h2_snd_buf(). 3706 - BUG/MEDIUM: stream_interface: Call the wake callback after sending. 3707 - BUG/MAJOR: queue/threads: make pendconn_redistribute not lock the server 3708 - BUG/MEDIUM: connection: don't forget to always delete the list's head 3709 - BUG/MEDIUM: lb/threads: always properly lock LB algorithms on maintenance operations 3710 - BUG/MEDIUM: check/threads: do not involve the rendez-vous point for status updates 3711 - BUG/MINOR: chunks: do not store -1 into chunk_printf() in case of error 3712 - BUG/MEDIUM: http: don't store exp_replace() result in the trash's length 3713 - BUG/MEDIUM: http: don't store url_decode() result in the samples's length 3714 - BUG/MEDIUM: dns: don't store dns_build_query() result in the trash's length 3715 - BUG/MEDIUM: map: don't store exp_replace() result in the trash's length 3716 - BUG/MEDIUM: connection: don't store recv() result into trash.data 3717 - BUG/MEDIUM: cli/ssl: don't store base64dec() result in the trash's length 3718 - MINOR: chunk: remove impossible tests on negative chunk->data 3719 - MINOR: sample: remove impossible tests on negative smp->data.u.str.data 3720 - DOC: Fix spelling error in configuration doc 3721 - REGTEST/MINOR: Missing mandatory "ignore_unknown_macro". 3722 - REGTEST/MINOR: Add a new class of regression testing files. 3723 - BUG/MEDIUM: unix: provide a ->drain() function 3724 - MINOR: connection: make conn_sock_drain() work for all socket families 3725 - BUG/MINOR: lua: Bad HTTP client request duration. 3726 - REGEST/MINOR: Add reg testing files. 3727 - BUG/MEDIUM: mux_pt: dereference the connection with care in mux_pt_wake() 3728 - REGTEST/MINOR: Add a reg testing file for b406b87 commit. 3729 - BUG/MEDIUM: lua: reset lua transaction between http requests 3730 - MINOR: add be_conn_free sample fetch 3731 - MINOR: Add srv_conn_free sample fetch 3732 - BUG/MEDIUM: hlua: Make sure we drain the output buffer when done. 3733 - MINOR: checks: Call wake_srv_chk() when we can finally send data. 3734 - BUG/MEDIUM: stream_interface: try to call si_cs_send() earlier. 3735 - BUG/MAJOR: thread: lua: Wrong SSL context initialization. 3736 - REGTEST/MINOR: Add a reg testing file for 3e60b11. 3737 - BUG/MEDIUM: hlua: Don't call RESET_SAFE_LJMP if SET_SAFE_LJMP returns 0. 3738 - REGTEST/MINOR: lua: Add reg testing files for 70d318c. 3739 - BUG/MEDIUM: dns/server: fix incomatibility between SRV resolution and server state file 3740 - BUG/MEDIUM: ECC cert should work with TLS < v1.2 and openssl >= 1.1.1 3741 - MINOR: tools: make date2str_log() take some consts 3742 - MINOR: thread: implement HA_ATOMIC_XADD() 3743 - BUG/MINOR: stream: use atomic increments for the request counter 3744 - BUG/MEDIUM: session: fix reporting of handshake processing time in the logs 3745 - BUG/MEDIUM: h2: fix risk of memory leak on malformated wrapped frames 3746 - BUG/MAJOR: buffer: fix incorrect check in __b_putblk() 3747 - MINOR: log: move the log code to sess_build_logline() to add extra arguments 3748 - MINOR: log: make the backend fall back to the frontend when there's no stream 3749 - MINOR: log: make sess_build_logline() not dereference a NULL stream for txn 3750 - MINOR: log: don't unconditionally pick log info from s->logs 3751 - CLEANUP: log: make the low_level lf_{ip,port,text,text_len} functions take consts 3752 - MINOR: log: keep a copy of the backend connection early in sess_build_logline() 3753 - MINOR: log: do not dereference a null stream to access captures 3754 - MINOR: log: be sure not to dereference a null stream for a target 3755 - MINOR: log: don't check the stream-int's conn_retries if the stream is NULL 3756 - MINOR: log: use NULL for the unique_id if there is no stream 3757 - MINOR: log: keep a copy of s->flags early to avoid a dereference 3758 - MINOR: log: use zero as the request counter if there is no stream 3759 - MEDIUM: log: make sess_build_logline() support being called with no stream 3760 - MINOR: log: provide a function to emit a log for a session 3761 - MEDIUM: h2: produce some logs on early errors that prevent streams from being created 3762 - BUG/MINOR: h1: fix buffer shift after realignment 3763 - MINOR: connection: make the initialization more consistent 3764 - MINOR: connection: add new function conn_get_proxy() 3765 - MINOR: connection: add new function conn_is_back() 3766 - MINOR: log: One const should be enough. 3767 - BUG/MINOR: dns: check and link servers' resolvers right after config parsing 3768 - BUG/MINOR: http/threads: atomically increment the error snapshot ID 3769 - MINOR: snapshot: restart on the event ID and not the stream ID 3770 - MINOR: snapshot: split the error snapshots into common and proto-specific parts 3771 - MEDIUM: snapshot: start to reorder the HTTP snapshot output a little bit 3772 - MEDIUM: snapshot: implement a show() callback and use it for HTTP 3773 - MINOR: proxy: add a new generic proxy_capture_error() 3774 - MINOR: http: make the HTTP error capture rely on the generic proxy code 3775 - MINOR: http: remove the pointer to the error snapshot in http_capture_bad_message() 3776 - REORG: cli: move the "show errors" handler from http to proxy 3777 - BUG/MEDIUM: snapshot: take the proxy's lock while dumping errors 3778 - MEDIUM: snapshots: dynamically allocate the snapshots 3779 - MEDIUM: snapshot: merge the captured data after the descriptor 3780 - MEDIUM: mworker: remove register/unregister signal functions 3781 - MEDIUM: mworker: use the haproxy poll loop 3782 - BUG/MINOR: mworker: no need to stop peers for each proxy 3783 - MINOR: mworker: mworker_cleanlisteners() delete the listeners 3784 - MEDIUM: mworker: block SIGCHLD until the master is ready 3785 - MEDIUM: mworker: never block SIG{TERM,INT} during reload 3786 - MEDIUM: startup: unify signal init between daemon and mworker mode 3787 - MINOR: mworker: don't deinit the poller fd when in wait mode 3788 - MEDIUM: mworker: master wait mode use its own initialization 3789 - MEDIUM: mworker: replace the master pipe by socketpairs 3790 - MINOR: mworker: keep and clean the listeners 3791 - MEDIUM: threads: close the thread-waker pipe during deinit 3792 - MEDIUM: mworker: call per_thread deinit in mworker_reload() 3793 - REORG: http: move the HTTP semantics definitions to http.h/http.c 3794 - REORG: http: move http_get_path() to http.c 3795 - REORG: http: move error codes production and processing to http.c 3796 - REORG: http: move the log encoding tables to log.c 3797 - REORG: http: move some header value processing functions to http.c 3798 - BUG/MAJOR: kqueue: Don't reset the changes number by accident. 3799 - MEDIUM: protocol: use a custom AF_MAX to help protocol parser 3800 - MEDIUM: protocol: sockpair protocol 3801 - TESTS: add a python wrapper for sockpair@ 3802 - BUG/MINOR: server: Crash when setting FQDN via CLI. 3803 - BUG/MINOR: h2: report asynchronous end of stream on closed connections 3804 - BUILD: fix build without thread 3805 - BUG/MEDIUM: tasks: Don't forget to decrement task_list_size in tasklet_free(). 3806 - MEDIUM: connections: Don't reset the polling flags in conn_fd_handler(). 3807 - MEDIUM: connections/mux: Add a recv and a send+recv wait list. 3808 - MEDIUM: connections: Get rid of the recv() method. 3809 - MINOR: h2: Let user of h2_recv() and h2_send() know xfer has been done. 3810 - MEDIUM: h2: always subscribe to receive if allowed. 3811 - MEDIUM: h2: Don't use a wake() method anymore. 3812 - MEDIUM: stream_interface: Make recv() subscribe when more data is needed. 3813 - MINOR: connections: Add a "handle" field to wait_list. 3814 - MEDIUM: mux_h2: Revamp the send path when blocking. 3815 - MEDIUM: stream_interfaces: Starts receiving from the upper layers. 3816 - MINOR: checks: Give checks their own wait_list. 3817 - MINOR: conn_streams: Remove wait_list from conn_streams. 3818 - REORG: h1: create a new h1m_state 3819 - MINOR: h1: add the restart offsets into struct h1m 3820 - MINOR: h1: remove the unused states from h1m_state 3821 - MINOR: h1: provide a distinct init() function for request and response 3822 - MINOR: h1: add a message flag to indicate that a message carries a response 3823 - MINOR: h2: make sure h1m->err_pos field is correct on chunk error 3824 - MINOR: h1: properly pre-initialize err_pos to -2 3825 - MINOR: mux_h2: replace the req,res h1 messages with a single h1 message 3826 - MINOR: h2: pre-initialize h1m->err_pos to -1 on the output path 3827 - MEDIUM: h1: consider err_pos before deciding to accept a header name or not 3828 - MEDIUM: h1: make the parser support a pointer to a start line 3829 - MEDIUM: h1: let the caller pass the initial parser's state 3830 - MINOR: h1: make the message parser support a null <hdr> argument 3831 - MEDIUM: h1: support partial message parsing 3832 - MEDIUM: h1: remove the useless H1_MSG_BODY state 3833 - MINOR: h2: store the HTTP status into the H2S, not the H1M 3834 - MINOR: h1: remove the HTTP status from the H1M struct 3835 - MEDIUM: h1: implement the request parser as well 3836 - MINOR: h1: add H1_MF_TOLOWER to decide when to turn header names to lower case 3837 - MINOR: connection: pass the proxy when creating a connection 3838 - BUG/MEDIUM: h2: Don't forget to empty the wait lists on destroy. 3839 - BUG/MEDIUM: h2: Don't forget to set recv_wait_list to NULL in h2_detach. 3840 - BUG/MAJOR: h2: reset the parser's state on mux buffer full 3841 38422018/08/02 : 1.9-dev1 3843 - BUG/MEDIUM: kqueue: Don't bother closing the kqueue after fork. 3844 - DOC: cache: update sections and fix some typos 3845 - BUILD/MINOR: deviceatlas: enable thread support 3846 - BUG/MEDIUM: tcp-check: Don't lock the server in tcpcheck_main 3847 - BUG/MEDIUM: ssl: don't allocate shctx several time 3848 - BUG/MEDIUM: cache: bad computation of the remaining size 3849 - BUILD: checks: don't include server.h 3850 - BUG/MEDIUM: stream: fix session leak on applet-initiated connections 3851 - BUILD/MINOR: haproxy : FreeBSD/cpu affinity needs pthread_np header 3852 - BUILD/MINOR: Makefile : enabling USE_CPU_AFFINITY 3853 - BUG/MINOR: ssl: CO_FL_EARLY_DATA removal is managed by stream 3854 - BUG/MEDIUM: threads/peers: decrement, not increment jobs on quitting 3855 - BUG/MEDIUM: h2: don't report an error after parsing a 100-continue response 3856 - BUG/MEDIUM: peers: fix some track counter rules dont register entries for sync. 3857 - BUG/MAJOR: thread/peers: fix deadlock on peers sync. 3858 - BUILD/MINOR: haproxy: compiling config cpu parsing handling when needed 3859 - MINOR: config: report when "monitor fail" rules are misplaced 3860 - BUG/MINOR: mworker: fix validity check for the pipe FDs 3861 - BUG/MINOR: mworker: detach from tty when in daemon mode 3862 - MINOR: threads: Fix pthread_setaffinity_np on FreeBSD. 3863 - BUG/MAJOR: thread: Be sure to request a sync between threads only once at a time 3864 - BUILD: Fix LDFLAGS vs. LIBS re linking order in various makefiles 3865 - BUG/MEDIUM: checks: Be sure we have a mux if we created a cs. 3866 - BUG/MINOR: hpack: fix debugging output of pseudo header names 3867 - BUG/MINOR: hpack: must reject huffman literals padded with more than 7 bits 3868 - BUG/MINOR: hpack: reject invalid header index 3869 - BUG/MINOR: hpack: dynamic table size updates are only allowed before headers 3870 - BUG/MAJOR: h2: correctly check the request length when building an H1 request 3871 - BUG/MINOR: h2: immediately close if receiving GOAWAY after the last stream 3872 - BUG/MINOR: h2: try to abort closed streams as soon as possible 3873 - BUG/MINOR: h2: ":path" must not be empty 3874 - BUG/MINOR: h2: fix a typo causing PING/ACK to be responded to 3875 - BUG/MINOR: h2: the TE header if present may only contain trailers 3876 - BUG/MEDIUM: h2: enforce the per-connection stream limit 3877 - BUG/MINOR: h2: do not accept SETTINGS_ENABLE_PUSH other than 0 or 1 3878 - BUG/MINOR: h2: reject incorrect stream dependencies on HEADERS frame 3879 - BUG/MINOR: h2: properly check PRIORITY frames 3880 - BUG/MINOR: h2: reject response pseudo-headers from requests 3881 - BUG/MEDIUM: h2: remove connection-specific headers from request 3882 - BUG/MEDIUM: h2: do not accept upper case letters in request header names 3883 - BUG/MINOR: h2: use the H2_F_DATA_* macros for DATA frames 3884 - BUG/MINOR: action: Don't check http capture rules when no id is defined 3885 - BUG/MAJOR: hpack: don't pretend large headers fit in empty table 3886 - BUG/MINOR: ssl: support tune.ssl.cachesize 0 again 3887 - BUG/MEDIUM: mworker: also close peers sockets in the master 3888 - BUG/MEDIUM: ssl engines: Fix async engines fds were not considered to fix fd limit automatically. 3889 - BUG/MEDIUM: checks: a down server going to maint remains definitely stucked on down state. 3890 - BUG/MEDIUM: peers: set NOLINGER on the outgoing stream interface 3891 - BUG/MEDIUM: h2: fix handling of end of stream again 3892 - MINOR: mworker: Update messages referencing exit-on-failure 3893 - MINOR: mworker: Improve wording in `void mworker_wait()` 3894 - CONTRIB: halog: Add help text for -s switch in halog program 3895 - BUG/MEDIUM: email-alert: don't set server check status from a email-alert task 3896 - BUG/MEDIUM: threads/vars: Fix deadlock in register_name 3897 - MINOR: systemd: remove comment about HAPROXY_STATS_SOCKET 3898 - DOC: notifications: add precisions about thread usage 3899 - BUG/MEDIUM: lua/notification: memory leak 3900 - MINOR: conn_stream: add new flag CS_FL_RCV_MORE to indicate pending data 3901 - BUG/MEDIUM: stream-int: always set SI_FL_WAIT_ROOM on CS_FL_RCV_MORE 3902 - BUG/MEDIUM: h2: automatically set CS_FL_RCV_MORE when the output buffer is full 3903 - BUG/MEDIUM: h2: enable recv polling whenever demuxing is possible 3904 - BUG/MEDIUM: h2: work around a connection API limitation 3905 - BUG/MEDIUM: h2: debug incoming traffic in h2_wake() 3906 - MINOR: h2: store the demux padding length in the h2c struct 3907 - BUG/MEDIUM: h2: support uploading partial DATA frames 3908 - MINOR: h2: don't demand that a DATA frame is complete before processing it 3909 - BUG/MEDIUM: h2: don't switch the state to HREM before end of DATA frame 3910 - BUG/MEDIUM: h2: don't close after the first DATA frame on tunnelled responses 3911 - BUG/MEDIUM: http: don't disable lingering on requests with tunnelled responses 3912 - BUG/MEDIUM: h2: fix stream limit enforcement 3913 - BUG/MINOR: stream-int: don't try to receive again after receiving an EOS 3914 - MINOR: sample: add len converter 3915 - BUG: MAJOR: lb_map: server map calculation broken 3916 - BUG: MINOR: http: don't check http-request capture id when len is provided 3917 - MINOR: sample: rename the "len" converter to "length" 3918 - BUG/MEDIUM: mworker: Set FD_CLOEXEC flag on log fd 3919 - DOC/MINOR: intro: typo, wording, formatting fixes 3920 - MINOR: netscaler: respect syntax 3921 - MINOR: netscaler: remove the use of cip_magic only used once 3922 - MINOR: netscaler: rename cip_len to clarify its uage 3923 - BUG/MEDIUM: netscaler: use the appropriate IPv6 header size 3924 - BUG/MAJOR: netscaler: address truncated CIP header detection 3925 - MINOR: netscaler: check in one-shot if buffer is large enough for IP and TCP header 3926 - MEDIUM: netscaler: do not analyze original IP packet size 3927 - MEDIUM: netscaler: add support for standard NetScaler CIP protocol 3928 - MINOR: spoe: add force-set-var option in spoe-agent configuration 3929 - CONTRIB: iprange: Fix compiler warning in iprange.c 3930 - CONTRIB: halog: Fix compiler warnings in halog.c 3931 - BUG/MINOR: h2: properly report a stream error on RST_STREAM 3932 - MINOR: mux: add flags to describe a mux's capabilities 3933 - MINOR: stream-int: set flag SI_FL_CLEAN_ABRT when mux supports clean aborts 3934 - BUG/MEDIUM: stream: don't consider abortonclose on muxes which close cleanly 3935 - BUG/MEDIUM: checks: a server passed in maint state was not forced down. 3936 - BUG/MEDIUM: lua: fix crash when using bogus mode in register_service() 3937 - MINOR: http: adjust the list of supposedly cacheable methods 3938 - MINOR: http: update the list of cacheable status codes as per RFC7231 3939 - MINOR: http: start to compute the transaction's cacheability from the request 3940 - BUG/MINOR: http: do not ignore cache-control: public 3941 - BUG/MINOR: http: properly detect max-age=0 and s-maxage=0 in responses 3942 - BUG/MINOR: cache: do not force the TX_CACHEABLE flag before checking cacheability 3943 - MINOR: http: add a function to check request's cache-control header field 3944 - BUG/MEDIUM: cache: do not try to retrieve host-less requests from the cache 3945 - BUG/MEDIUM: cache: replace old object on store 3946 - BUG/MEDIUM: cache: respect the request cache-control header 3947 - BUG/MEDIUM: cache: don't cache the response on no-cache="set-cookie" 3948 - BUG/MAJOR: connection: refine the situations where we don't send shutw() 3949 - BUG/MEDIUM: checks: properly set servers to stopping state on 404 3950 - BUG/MEDIUM: h2: properly handle and report some stream errors 3951 - BUG/MEDIUM: h2: improve handling of frames received on closed streams 3952 - DOC/MINOR: configuration: typo, formatting fixes 3953 - BUG/MEDIUM: h2: ensure we always know the stream before sending a reset 3954 - BUG/MEDIUM: mworker: don't close stdio several time 3955 - MINOR: don't close stdio anymore 3956 - BUG/MEDIUM: http: don't automatically forward request close 3957 - BUG/MAJOR: hpack: don't return direct references to the dynamic headers table 3958 - MINOR: h2: add a function to report pseudo-header names 3959 - DEBUG: hpack: make hpack_dht_dump() expose the output file 3960 - DEBUG: hpack: add more traces to the hpack decoder 3961 - CONTRIB: hpack: add an hpack decoder 3962 - MEDIUM: h2: prepare a graceful shutdown when the frontend is stopped 3963 - BUG/MEDIUM: h2: properly handle the END_STREAM flag on empty DATA frames 3964 - BUILD: ssl: silence a warning when building without NPN nor ALPN support 3965 - CLEANUP: rbtree: remove 3966 - BUG/MEDIUM: ssl: cache doesn't release shctx blocks 3967 - BUG/MINOR: lua: Fix default value for pattern in Socket.receive 3968 - DOC: lua: Fix typos in comments of hlua_socket_receive 3969 - BUG/MEDIUM: lua: Fix IPv6 with separate port support for Socket.connect 3970 - BUG/MINOR: lua: Fix return value of Socket.settimeout 3971 - MINOR: dns: Handle SRV record weight correctly. 3972 - BUG/MEDIUM: mworker: execvp failure depending on argv[0] 3973 - MINOR: hathreads: add support for gcc < 4.7 3974 - BUILD/MINOR: ancient gcc versions atomic fix 3975 - BUG/MEDIUM: stream: properly handle client aborts during redispatch 3976 - MINOR: spoe: add register-var-names directive in spoe-agent configuration 3977 - MINOR: spoe: Don't queue a SPOE context if nothing is sent 3978 - DOC: clarify the scope of ssl_fc_is_resumed 3979 - CONTRIB: debug: fix a few flags definitions 3980 - BUG/MINOR: poll: too large size allocation for FD events 3981 - MINOR: sample: add date_us sample 3982 - BUG/MEDIUM: peers: fix expire date wasn't updated if entry is modified remotely. 3983 - MINOR: servers: Don't report duplicate dyncookies for disabled servers. 3984 - MINOR: global/threads: move cpu_map at the end of the global struct 3985 - MINOR: threads: add a MAX_THREADS define instead of LONGBITS 3986 - MINOR: global: add some global activity counters to help debugging 3987 - MINOR: threads/fd: Use a bitfield to know if there are FDs for a thread in the FD cache 3988 - BUG/MEDIUM: threads/polling: Use fd_cache_mask instead of fd_cache_num 3989 - BUG/MEDIUM: fd: maintain a per-thread update mask 3990 - MINOR: fd: add a bitmask to indicate that an FD is known by the poller 3991 - BUG/MEDIUM: epoll/threads: use one epoll_fd per thread 3992 - BUG/MEDIUM: kqueue/threads: use one kqueue_fd per thread 3993 - BUG/MEDIUM: threads/mworker: fix a race on startup 3994 - BUG/MINOR: mworker: only write to pidfile if it exists 3995 - MINOR: threads: Fix build when we're not compiling with threads. 3996 - BUG/MINOR: threads: always set an owner to the thread_sync pipe 3997 - BUG/MEDIUM: threads/server: Fix deadlock in srv_set_stopping/srv_set_admin_flag 3998 - BUG/MEDIUM: checks: Don't try to release undefined conn_stream when a check is freed 3999 - BUG/MINOR: kqueue/threads: Don't forget to close kqueue_fd[tid] on each thread 4000 - MINOR: threads: Use __decl_hathreads instead of #ifdef/#endif 4001 - BUILD: epoll/threads: Add test on MAX_THREADS to avoid warnings when complied without threads 4002 - BUILD: kqueue/threads: Add test on MAX_THREADS to avoid warnings when complied without threads 4003 - CLEANUP: sample: Fix comment encoding of sample.c 4004 - CLEANUP: sample: Fix outdated comment about sample casts functions 4005 - BUG/MINOR: sample: Fix output type of c_ipv62ip 4006 - CLEANUP: Fix typo in ARGT_MSK6 comment 4007 - CLEANUP: standard: Use len2mask4 in str2mask 4008 - MINOR: standard: Add str2mask6 function 4009 - MINOR: config: Add support for ARGT_MSK6 4010 - MEDIUM: sample: Add IPv6 support to the ipmask converter 4011 - MINOR: config: Enable tracking of up to MAX_SESS_STKCTR stick counters. 4012 - BUG/MINOR: cli: use global.maxsock and not maxfd to list all FDs 4013 - MINOR: polling: make epoll and kqueue not depend on maxfd anymore 4014 - MINOR: fd: don't report maxfd in alert messages 4015 - MEDIUM: polling: start to move maxfd computation to the pollers 4016 - CLEANUP: fd/threads: remove the now unused fdtab_lock 4017 - MINOR: poll: more accurately compute the new maxfd in the loop 4018 - CLEANUP: fd: remove the unused "new" field 4019 - MINOR: fd: move the hap_fd_{clr,set,isset} functions to fd.h 4020 - MEDIUM: select: make use of hap_fd_* functions 4021 - MEDIUM: fd: use atomic ops for hap_fd_{clr,set} and remove poll_lock 4022 - MEDIUM: select: don't use the old FD state anymore 4023 - MEDIUM: poll: don't use the old FD state anymore 4024 - MINOR: fd: pass the iocb and owner to fd_insert() 4025 - BUG/MINOR: threads: Update labels array because of changes in lock_label enum 4026 - MINOR: stick-tables: Adds support for new "gpc1" and "gpc1_rate" counters. 4027 - BUG/MINOR: epoll/threads: only call epoll_ctl(DEL) on polled FDs 4028 - DOC: don't suggest using http-server-close 4029 - MINOR: introduce proxy-v2-options for send-proxy-v2 4030 - BUG/MEDIUM: spoe: Always try to receive or send the frame to detect shutdowns 4031 - BUG/MEDIUM: spoe: Allow producer to read and to forward shutdown on request side 4032 - MINOR: spoe: Remove check on min_applets number when a SPOE context is queued 4033 - MINOR: spoe: Always link a SPOE context with the applet processing it 4034 - MINOR: spoe: Replace sending_rate by a frequency counter 4035 - MINOR: spoe: Count the number of frames waiting for an ack for each applet 4036 - MEDIUM: spoe: Use an ebtree to manage idle applets 4037 - MINOR: spoa_example: Count the number of frames processed by each worker 4038 - MINOR: spoe: Add max-waiting-frames directive in spoe-agent configuration 4039 - MINOR: init: make stdout unbuffered 4040 - MINOR: early data: Don't rely on CO_FL_EARLY_DATA to wake up streams. 4041 - MINOR: early data: Never remove the CO_FL_EARLY_DATA flag. 4042 - MINOR: compiler: introduce offsetoff(). 4043 - MINOR: threads: Introduce double-width CAS on x86_64 and arm. 4044 - MINOR: threads: add test and set/reset operations 4045 - MINOR: pools/threads: Implement lockless memory pools. 4046 - MAJOR: fd/threads: Make the fdcache mostly lockless. 4047 - MEDIUM: fd/threads: Make sure we don't miss a fd cache entry. 4048 - MAJOR: fd: compute the new fd polling state out of the fd lock 4049 - MINOR: epoll: get rid of the now useless fd_compute_new_polled_status() 4050 - MINOR: kqueue: get rid of the now useless fd_compute_new_polled_status() 4051 - MINOR: poll: get rid of the now useless fd_compute_new_polled_status() 4052 - MINOR: select: get rid of the now useless fd_compute_new_polled_status() 4053 - CLEANUP: fd: remove the now unused fd_compute_new_polled_status() function 4054 - MEDIUM: fd: make updt_fd_polling() use atomics 4055 - MEDIUM: poller: use atomic ops to update the fdtab mask 4056 - MINOR: fd: move the fd_{add_to,rm_from}_fdlist functions to fd.c 4057 - BUG/MINOR: fd/threads: properly dereference fdcache as volatile 4058 - MINOR: fd: remove the unneeded last CAS when adding an fd to the list 4059 - MINOR: fd: reorder fd_add_to_fd_list() 4060 - BUG/MINOR: time/threads: ensure the adjusted time is always correct 4061 - BUG/MEDIUM: standard: Fix memory leak in str2ip2() 4062 - MINOR: init: emit warning when -sf/-sd cannot parse argument 4063 - BUILD: fd/threads: fix breakage build breakage without threads 4064 - DOC: Describe routing impact of using interface keyword on bind lines 4065 - DOC: Mention -Ws in the list of available options 4066 - BUG/MINOR: config: don't emit a warning when global stats is incompletely configured 4067 - BUG/MINOR: fd/threads: properly lock the FD before adding it to the fd cache. 4068 - BUG/MEDIUM: threads: fix the double CAS implementation for ARMv7 4069 - BUG/MEDIUM: ssl: Don't always treat SSL_ERROR_SYSCALL as unrecovarable. 4070 - BUILD/MINOR: memory: stdint is needed for uintptr_t 4071 - BUG/MINOR: init: Add missing brackets in the code parsing -sf/-st 4072 - DOC: lua: new prototype for function "register_action()" 4073 - DOC: cfgparse: Warn on option (tcp|http)log in backend 4074 - BUG/MINOR: ssl/threads: Make management of the TLS ticket keys files thread-safe 4075 - MINOR: sample: add a new "concat" converter 4076 - BUG/MEDIUM: ssl: Shutdown the connection for reading on SSL_ERROR_SYSCALL 4077 - BUG/MEDIUM: http: Switch the HTTP response in tunnel mode as earlier as possible 4078 - BUG/MEDIUM: ssl/sample: ssl_bc_* fetch keywords are broken. 4079 - MINOR: ssl/sample: adds ssl_bc_is_resumed fetch keyword. 4080 - CLEANUP: cfgparse: Remove unused label end 4081 - CLEANUP: spoe: Remove unused label retry 4082 - CLEANUP: h2: Remove unused labels from mux_h2.c 4083 - CLEANUP: pools: Remove unused end label in memory.h 4084 - CLEANUP: standard: Fix typo in IPv6 mask example 4085 - BUG/MINOR: pools/threads: don't ignore DEBUG_UAF on double-word CAS capable archs 4086 - BUG/MINOR: debug/pools: properly handle out-of-memory when building with DEBUG_UAF 4087 - MINOR: debug/pools: make DEBUG_UAF also detect underflows 4088 - MINOR: stats: display the number of threads in the statistics. 4089 - BUG/MINOR: h2: Set the target of dbuf_wait to h2c 4090 - BUG/MEDIUM: h2: always consume any trailing data after end of output buffers 4091 - BUG/MEDIUM: buffer: Fix the wrapping case in bo_putblk 4092 - BUG/MEDIUM: buffer: Fix the wrapping case in bi_putblk 4093 - BUG/MEDIUM: spoe: Remove idle applets from idle list when HAProxy is stopping 4094 - Revert "BUG/MINOR: send-proxy-v2: string size must include ('\0')" 4095 - MINOR: ssl: extract full pkey info in load_certificate 4096 - MINOR: ssl: add ssl_sock_get_pkey_algo function 4097 - MINOR: ssl: add ssl_sock_get_cert_sig function 4098 - MINOR: connection: add proxy-v2-options ssl-cipher,cert-sig,cert-key 4099 - MINOR: connection: add proxy-v2-options authority 4100 - MINOR: systemd: Add section for SystemD sandboxing to unit file 4101 - MINOR: systemd: Add SystemD's Protect*= options to the unit file 4102 - MINOR: systemd: Add SystemD's SystemCallFilter option to the unit file 4103 - CLEANUP: h2: rename misleading h2c_stream_close() to h2s_close() 4104 - MINOR: h2: provide and use h2s_detach() and h2s_free() 4105 - MEDIUM: h2: use a single buffer allocator 4106 - MINOR/BUILD: fix Lua build on Mac OS X 4107 - BUILD/MINOR: fix Lua build on Mac OS X (again) 4108 - BUG/MINOR: session: Fix tcp-request session failure if handshake. 4109 - CLEANUP: .gitignore: Ignore binaries from the contrib directory 4110 - BUG/MINOR: unix: Don't mess up when removing the socket from the xfer_sock_list. 4111 - DOC: buffers: clarify the purpose of the <from> pointer in offer_buffers() 4112 - BUG/MEDIUM: h2: also arm the h2 timeout when sending 4113 - BUG/MINOR: cli: Fix a crash when passing a negative or too large value to "show fd" 4114 - CLEANUP: ssl: Remove a duplicated #include 4115 - CLEANUP: cli: Remove a leftover debug message 4116 - BUG/MINOR: cli: Fix a typo in the 'set rate-limit' usage 4117 - BUG/MEDIUM: fix a 100% cpu usage with cpu-map and nbthread/nbproc 4118 - BUG/MINOR: force-persist and ignore-persist only apply to backends 4119 - BUG/MEDIUM: threads/unix: Fix a deadlock when a listener is temporarily disabled 4120 - BUG/MAJOR: threads/queue: Fix thread-safety issues on the queues management 4121 - BUG/MINOR: dns: don't downgrade DNS accepted payload size automatically 4122 - TESTS: Add a testcase for multi-port + multi-server listener issue 4123 - CLEANUP: dns: remove duplicate code in src/dns.c 4124 - BUG/MINOR: seemless reload: Fix crash when an interface is specified. 4125 - BUG/MINOR: cli: Ensure all command outputs end with a LF 4126 - BUG/MINOR: cli: Fix a crash when sending a command with too many arguments 4127 - BUILD: ssl: Fix build with OpenSSL without NPN capability 4128 - BUG/MINOR: spoa-example: unexpected behavior for more than 127 args 4129 - BUG/MINOR: lua: return bad error messages 4130 - CLEANUP: lua/syntax: lua is a name and not an acronym 4131 - BUG/MEDIUM: tcp-check: single connect rule can't detect DOWN servers 4132 - BUG/MINOR: tcp-check: use the server's service port as a fallback 4133 - BUG/MEDIUM: threads/queue: wake up other threads upon dequeue 4134 - MINOR: log: stop emitting alerts when it's not possible to write on the socket 4135 - BUILD/BUG: enable -fno-strict-overflow by default 4136 - BUG/MEDIUM: fd/threads: ensure the fdcache_mask always reflects the cache contents 4137 - DOC: log: more than 2 log servers are allowed 4138 - MINOR: hash: add new function hash_crc32c 4139 - MINOR: proxy-v2-options: add crc32c 4140 - MINOR: accept-proxy: support proxy protocol v2 CRC32c checksum 4141 - REORG: compact "struct server" 4142 - MINOR: samples: add crc32c converter 4143 - BUG/MEDIUM: h2: properly account for DATA padding in flow control 4144 - BUG/MINOR: h2: ensure we can never send an RST_STREAM in response to an RST_STREAM 4145 - BUG/MINOR: listener: Don't decrease actconn twice when a new session is rejected 4146 - CLEANUP: map, stream: remove duplicate code in src/map.c, src/stream.c 4147 - BUG/MINOR: lua: the function returns anything 4148 - BUG/MINOR: lua funtion hlua_socket_settimeout don't check negative values 4149 - CLEANUP: lua: typo fix in comments 4150 - BUILD/MINOR: fix build when USE_THREAD is not defined 4151 - MINOR: lua: allow socket api settimeout to accept integers, float, and doubles 4152 - BUG/MINOR: hpack: fix harmless use of uninitialized value in hpack_dht_insert 4153 - MINOR: cli/threads: make "show fd" report thread_sync_io_handler instead of "unknown" 4154 - MINOR: cli: make "show fd" report the mux and mux_ctx pointers when available 4155 - BUILD/MINOR: cli: fix a build warning introduced by last commit 4156 - BUG/MAJOR: h2: remove orphaned streams from the send list before closing 4157 - MINOR: h2: always call h2s_detach() in h2_detach() 4158 - MINOR: h2: fuse h2s_detach() and h2s_free() into h2s_destroy() 4159 - BUG/MEDIUM: h2/threads: never release the task outside of the task handler 4160 - BUG/MEDIUM: h2: don't consider pending data on detach if connection is in error 4161 - BUILD/MINOR: threads: always export thread_sync_io_handler() 4162 - MINOR: mux: add a "show_fd" function to dump debugging information for "show fd" 4163 - MINOR: h2: implement a basic "show_fd" function 4164 - MINOR: cli: report cache indexes in "show fd" 4165 - BUG/MINOR: h2: remove accidental debug code introduced with show_fd function 4166 - BUG/MEDIUM: h2: always add a stream to the send or fctl list when blocked 4167 - BUG/MINOR: checks: check the conn_stream's readiness and not the connection 4168 - BUG/MINOR: fd: Don't clear the update_mask in fd_insert. 4169 - BUG/MINOR: email-alert: Set the mailer port during alert initialization 4170 - BUG/MINOR: cache: fix "show cache" output 4171 - BUG/MAJOR: cache: fix random crashes caused by incorrect delete() on non-first blocks 4172 - BUG/MINOR: spoe: Initialize variables used during conf parsing before any check 4173 - BUG/MINOR: spoe: Don't release the context buffer in .check_timeouts callbaclk 4174 - BUG/MINOR: spoe: Register the variable to set when an error occurred 4175 - BUG/MINOR: spoe: Don't forget to decrement fpa when a processing is interrupted 4176 - MINOR: spoe: Add metrics in to know time spent in the SPOE 4177 - MINOR: spoe: Add options to store processing times in variables 4178 - MINOR: log: move 'log' keyword parsing in dedicated function 4179 - MINOR: log: Keep the ref when a log server is copied to avoid duplicate entries 4180 - MINOR: spoe: Add loggers dedicated to the SPOE agent 4181 - MINOR: spoe: Add support for option dontlog-normal in the SPOE agent section 4182 - MINOR: spoe: use agent's logger to log SPOE messages 4183 - MINOR: spoe: Add counters to log info about SPOE agents 4184 - BUG/MAJOR: cache: always initialize newly created objects 4185 - MINOR: servers: Support alphanumeric characters for the server templates names 4186 - BUG/MEDIUM: threads: Fix the max/min calculation because of name clashes 4187 - BUG/MEDIUM: connection: Make sure we have a mux before calling detach(). 4188 - BUG/MINOR: http: Return an error in proxy mode when url2sa fails 4189 - MINOR: proxy: Add fe_defbe fetcher 4190 - MINOR: config: Warn if resolvers has no nameservers 4191 - BUG/MINOR: cli: Guard against NULL messages when using CLI_ST_PRINT_FREE 4192 - MINOR: cli: Ensure the CLI always outputs an error when it should 4193 - MEDIUM: sample: Extend functionality for field/word converters 4194 - MINOR: export localpeer as an environment variable 4195 - BUG/MEDIUM: kqueue: When adding new events, provide an output to get errors. 4196 - BUILD: sample: avoid build warning in sample.c 4197 - BUG/CRITICAL: h2: fix incorrect frame length check 4198 - DOC: lua: update the links to the config and Lua API 4199 - BUG/MINOR: pattern: Add a missing HA_SPIN_INIT() in pat_ref_newid() 4200 - BUG/MAJOR: channel: Fix crash when trying to read from a closed socket 4201 - BUG/MINOR: log: t_idle (%Ti) is not set for some requests 4202 - BUG/MEDIUM: lua: Fix segmentation fault if a Lua task exits 4203 - MINOR: h2: detect presence of CONNECT and/or content-length 4204 - BUG/MEDIUM: h2: implement missing support for chunked encoded uploads 4205 - BUG/MINOR: spoe: Fix counters update when processing is interrupted 4206 - BUG/MINOR: spoe: Fix parsing of dontlog-normal option 4207 - MEDIUM: cli: Add payload support 4208 - MINOR: map: Add payload support to "add map" 4209 - MINOR: ssl: Add payload support to "set ssl ocsp-response" 4210 - BUG/MINOR: lua/threads: Make lua's tasks sticky to the current thread 4211 - MINOR: sample: Add strcmp sample converter 4212 - MINOR: http: Add support for 421 Misdirected Request 4213 - BUG/MINOR: config: disable http-reuse on TCP proxies 4214 - MINOR: ssl: disable SSL sample fetches when unsupported 4215 - MINOR: ssl: add fetch 'ssl_fc_session_key' and 'ssl_bc_session_key' 4216 - BUG/MINOR: checks: Fix check->health computation for flapping servers 4217 - BUG/MEDIUM: threads: Fix the sync point for more than 32 threads 4218 - BUG/MINOR, BUG/MINOR: lua: Put tasks to sleep when waiting for data 4219 - MINOR: backend: implement random-based load balancing 4220 - DOC/MINOR: clean up LUA documentation re: servers & array/table. 4221 - MINOR: lua: Add server name & puid to LUA Server class. 4222 - MINOR: lua: add get_maxconn and set_maxconn to LUA Server class. 4223 - BUG/MINOR: map: correctly track reference to the last ref_elt being dumped 4224 - BUG/MEDIUM: task: Don't free a task that is about to be run. 4225 - MINOR: fd: Make the lockless fd list work with multiple lists. 4226 - BUG/MEDIUM: pollers: Use a global list for fd shared between threads. 4227 - MINOR: pollers: move polled_mask outside of struct fdtab. 4228 - BUG/MINOR: lua: schedule socket task upon lua connect() 4229 - BUG/MINOR: lua: ensure large proxy IDs can be represented 4230 - BUG/MEDIUM: pollers/kqueue: use incremented position in event list 4231 - BUG/MINOR: cli: don't stop cli_gen_usage_msg() when kw->usage == NULL 4232 - BUG/MEDIUM: http: don't always abort transfers on CF_SHUTR 4233 - BUG/MEDIUM: ssl: properly protect SSL cert generation 4234 - BUG/MINOR: lua: Socket.send threw runtime error: 'close' needs 1 arguments. 4235 - BUG/MINOR: spoe: Mistake in error message about SPOE configuration 4236 - BUG/MEDIUM: spoe: Flags are not encoded in network order 4237 - CLEANUP: spoe: Remove unused variables the agent structure 4238 - DOC: spoe: fix a typo 4239 - BUG/MEDIUM: contrib/mod_defender: Use network order to encode/decode flags 4240 - BUG/MEDIUM: contrib/modsecurity: Use network order to encode/decode flags 4241 - DOC: add some description of the pending rework of the buffer structure 4242 - BUG/MINOR: ssl/lua: prevent lua from affecting automatic maxconn computation 4243 - MINOR: lua: Improve error message 4244 - BUG/MEDIUM: cache: don't cache when an Authorization header is present 4245 - MINOR: ssl: set SSL_OP_PRIORITIZE_CHACHA 4246 - BUG/MEDIUM: dns: Delay the attempt to run a DNS resolution on check failure. 4247 - BUG/BUILD: threads: unbreak build without threads 4248 - BUG/MEDIUM: servers: Add srv_addr default placeholder to the state file 4249 - BUG/MEDIUM: lua/socket: Length required read doesn't work 4250 - MINOR: tasks: Change the task API so that the callback takes 3 arguments. 4251 - MAJOR: tasks: Create a per-thread runqueue. 4252 - MAJOR: tasks: Introduce tasklets. 4253 - MINOR: tasks: Make the number of tasks to run at once configurable. 4254 - MAJOR: applets: Use tasks, instead of rolling our own scheduler. 4255 - BUG/MEDIUM: stick-tables: Decrement ref_cnt in table_* converters 4256 - MINOR: http: Log warning if (add|set)-header fails 4257 - DOC: management: add the new wrew stats column 4258 - MINOR: stats: also report the failed header rewrites warnings on the stats page 4259 - BUG/MEDIUM: tasks: Don't forget to increase/decrease tasks_run_queue. 4260 - BUG/MEDIUM: task: Don't forget to decrement max_processed after each task. 4261 - MINOR: task: Also consider the task list size when getting global tasks. 4262 - MINOR: dns: Implement `parse-resolv-conf` directive 4263 - BUG/MEDIUM: spoe: Return an error when the wrong ACK is received in sync mode 4264 - MINOR: task/notification: Is notifications registered ? 4265 - BUG/MEDIUM: lua/socket: wrong scheduling for sockets 4266 - BUG/MAJOR: lua: Dead lock with sockets 4267 - BUG/MEDIUM: lua/socket: Notification error 4268 - BUG/MEDIUM: lua/socket: Sheduling error on write: may dead-lock 4269 - BUG/MEDIUM: lua/socket: Buffer error, may segfault 4270 - DOC: contrib/modsecurity: few typo fixes 4271 - DOC: SPOE.txt: fix a typo 4272 - MAJOR: spoe: upgrade the SPOP version to 2.0 and remove the support for 1.0 4273 - BUG/MINOR: contrib/spoa_example: Don't reset the status code during disconnect 4274 - BUG/MINOR: contrib/mod_defender: Don't reset the status code during disconnect 4275 - BUG/MINOR: contrib/modsecurity: Don't reset the status code during disconnect 4276 - BUG/MINOR: contrib/mod_defender: update pointer on the end of the frame 4277 - BUG/MINOR: contrib/modsecurity: update pointer on the end of the frame 4278 - MINOR: task: Fix a compiler warning by adding a cast. 4279 - MINOR: stats: also report the nice and number of calls for applets 4280 - MINOR: applet: assign the same nice value to a new appctx as its owner task 4281 - MINOR: task: Fix compiler warning. 4282 - BUG/MEDIUM: tasks: Use the local runqueue when building without threads. 4283 - MINOR: tasks: Don't define rqueue if we're building without threads. 4284 - BUG/MINOR: unix: Make sure we can transfer abns sockets on seamless reload. 4285 - MINOR: lua: Increase debug information 4286 - BUG/MEDIUM: threads: handle signal queue only in thread 0 4287 - BUG/MINOR: don't ignore SIG{BUS,FPE,ILL,SEGV} during signal processing 4288 - BUG/MINOR: signals: ha_sigmask macro for multithreading 4289 - BUG/MAJOR: map: fix a segfault when using http-request set-map 4290 - DOC: regression testing: Add a short starting guide. 4291 - MINOR: tasks: Make sure we correctly init and deinit a tasklet. 4292 - BUG/MINOR: tasklets: Just make sure we don't pass a tasklet to the handler. 4293 - BUG/MINOR: lua: Segfaults with wrong usage of types. 4294 - BUG/MAJOR: ssl: Random crash with cipherlist capture 4295 - BUG/MAJOR: ssl: OpenSSL context is stored in non-reserved memory slot 4296 - BUG/MEDIUM: ssl: do not store pkinfo with SSL_set_ex_data 4297 - MINOR: tests: First regression testing file. 4298 - MINOR: reg-tests: Add reg-tests/README file. 4299 - MINOR: reg-tests: Add a few regression testing files. 4300 - DOC: Add new REGTEST tag info about reg testing. 4301 - BUG/MEDIUM: fd: Don't modify the update_mask in fd_dodelete(). 4302 - MINOR: Some spelling cleanup in the comments. 4303 - BUG/MEDIUM: threads: Use the sync point to check active jobs and exit 4304 - MINOR: threads: Be sure to remove threads from all_threads_mask on exit 4305 - REGTEST/MINOR: Wrong URI in a reg test for SSL/TLS. 4306 - REGTEST/MINOR: Set HAPROXY_PROGRAM default value. 4307 - REGTEST/MINOR: Add levels to reg-tests target. 4308 - BUG/MAJOR: Stick-tables crash with segfault when the key is not in the stick-table 4309 - BUG/BUILD: threads: unbreak build without threads 4310 - BUG/MAJOR: stick_table: Complete incomplete SEGV fix 4311 - MINOR: stick-tables: make stktable_release() do nothing on NULL 4312 - BUG/MEDIUM: lua: possible CLOSE-WAIT state with '\n' headers 4313 - MINOR: startup: change session/process group settings 4314 - MINOR: systemd: consider exit status 143 as successful 4315 - REGTEST/MINOR: Wrong URI syntax. 4316 - CLEANUP: dns: remove obsolete macro DNS_MAX_IP_REC 4317 - CLEANUP: dns: inacurate comment about prefered IP score 4318 - MINOR: dns: fix wrong score computation in dns_get_ip_from_response 4319 - MINOR: dns: new DNS options to allow/prevent IP address duplication 4320 - REGTEST/MINOR: Unexpected curl URL globling. 4321 - BUG/MINOR: ssl: properly ref-count the tls_keys entries 4322 - MINOR: h2: keep a count of the number of conn_streams attached to the mux 4323 - BUG/MEDIUM: h2: don't accept new streams if conn_streams are still in excess 4324 - MINOR: h2: add the mux and demux buffer lengths on "show fd" 4325 - BUG/MEDIUM: h2: never leave pending data in the output buffer on close 4326 - BUG/MEDIUM: h2: make sure the last stream closes the connection after a timeout 4327 - MINOR: tasklet: Set process to NULL. 4328 - MINOR: buffer: implement a new file for low-level buffer manipulation functions 4329 - MINOR: buffer: switch buffer sizes and offsets to size_t 4330 - MINOR: buffer: add a few basic functions for the new API 4331 - MINOR: buffer: Introduce b_sub(), b_add(), and bo_add() 4332 - MINOR: buffer: Add b_set_data(). 4333 - MINOR: buffer: introduce b_realign_if_empty() 4334 - MINOR: compression: pass the channel to http_compression_buffer_end() 4335 - MINOR: channel: add a few basic functions for the new buffer API 4336 - MINOR: channel/buffer: use c_realign_if_empty() instead of buffer_realign() 4337 - MINOR: channel/buffer: replace buffer_slow_realign() with channel_slow_realign() and b_slow_realign() 4338 - MEDIUM: channel: make channel_slow_realign() take a swap buffer 4339 - MINOR: h2: use b_slow_realign() with the trash as a swap buffer 4340 - MINOR: buffer: remove buffer_slow_realign() and the swap_buffer allocation code 4341 - MINOR: channel/buffer: replace b_{adv,rew} with c_{adv,rew} 4342 - MINOR: buffer: replace calls to buffer_space_wraps() with b_space_wraps() 4343 - MINOR: buffer: remove bi_getblk() and bi_getblk_nc() 4344 - MINOR: buffer: split bi_contig_data() into ci_contig_data and b_config_data() 4345 - MINOR: buffer: remove bi_ptr() 4346 - MINOR: buffer: remove bo_ptr() 4347 - MINOR: buffer: remove bo_end() 4348 - MINOR: buffer: remove bi_end() 4349 - MINOR: buffer: remove bo_contig_data() 4350 - MINOR: buffer: merge b{i,o}_contig_space() 4351 - MINOR: buffer: replace bo_getblk() with direction agnostic b_getblk() 4352 - MINOR: buffer: replace bo_getblk_nc() with b_getblk_nc() which takes an offset 4353 - MINOR: buffer: replace bi_del() and bo_del() with b_del() 4354 - MINOR: buffer: convert most b_ptr() calls to c_ptr() 4355 - MINOR: h1: make h1_measure_trailers() take the byte count in argument 4356 - MINOR: h2: clarify the fact that the send functions are unsigned 4357 - MEDIUM: h2: prevent the various mux encoders from modifying the buffer 4358 - MINOR: h1: make h1_skip_chunk_crlf() not depend on b_ptr() anymore 4359 - MINOR: h1: make h1_parse_chunk_size() not depend on b_ptr() anymore 4360 - MINOR: h1: make h1_measure_trailers() use an offset and a count 4361 - MEDIUM: h2: do not use buf->o anymore inside h2_snd_buf's loop 4362 - MEDIUM: h2: don't use b_ptr() nor b_end() anymore 4363 - MINOR: buffer: get rid of b_end() and b_to_end() 4364 - MINOR: buffer: make b_getblk_nc() take const pointers 4365 - MINOR: buffer: make b_getblk_nc() take size_t for the block sizes 4366 - MEDIUM: connection: make xprt->snd_buf() take the byte count in argument 4367 - MEDIUM: mux: make mux->snd_buf() take the byte count in argument 4368 - MEDIUM: connection: make xprt->rcv_buf() use size_t for the count 4369 - MEDIUM: mux: make mux->rcv_buf() take a size_t for the count 4370 - MINOR: connection: add a flags argument to rcv_buf() 4371 - MINOR: connection: add a new receive flag : CO_RFL_BUF_WET 4372 - MINOR: buffer: get rid of b_ptr() and convert its last users 4373 - MINOR: buffer: use b_room() to determine available space in a buffer 4374 - MINOR: buffer: replace buffer_not_empty() with b_data() or c_data() 4375 - MINOR: buffer: replace buffer_empty() with b_empty() or c_empty() 4376 - MINOR: buffer: make bo_putchar() use b_tail() 4377 - MINOR: buffer: replace buffer_full() with channel_full() 4378 - MINOR: buffer: replace bi_space_for_replace() with ci_space_for_replace() 4379 - MINOR: buffer: replace buffer_pending() with ci_data() 4380 - MINOR: buffer: replace buffer_flush() with c_adv(chn, ci_data(chn)) 4381 - MINOR: buffer: use c_head() instead of buffer_wrap_sub(c->buf, p-o) 4382 - MINOR: buffer: use b_orig() to replace most references to b->data 4383 - MINOR: buffer: Use b_add()/bo_add() instead of accessing b->i/b->o. 4384 - MINOR: channel: remove almost all references to buf->i and buf->o 4385 - MINOR: channel: Add co_set_data(). 4386 - MEDIUM: channel: adapt to the new buffer API 4387 - MINOR: checks: adapt to the new buffer API 4388 - MEDIUM: h2: update to the new buffer API 4389 - MINOR: buffer: remove unused bo_add() 4390 - MEDIUM: spoe: use the new buffer API for the SPOE buffer 4391 - MINOR: stats: adapt to the new buffers API 4392 - MINOR: cli: use the new buffer API 4393 - MINOR: cache: use the new buffer API 4394 - MINOR: stream-int: use the new buffer API 4395 - MINOR: stream: use wrappers instead of directly manipulating buffers 4396 - MINOR: backend: use new buffer API 4397 - MEDIUM: http: use wrappers instead of directly manipulating buffers states 4398 - MINOR: filters: convert to the new buffer API 4399 - MINOR: payload: convert to the new buffer API 4400 - MEDIUM: h1: port to new buffer API. 4401 - MINOR: flt_trace: adapt to the new buffer API 4402 - MEDIUM: compression: start to move to the new buffer API 4403 - MINOR: lua: use the wrappers instead of directly manipulating buffer states 4404 - MINOR: buffer: convert part bo_putblk() and bi_putblk() to the new API 4405 - MINOR: buffer: adapt buffer_slow_realign() and buffer_dump() to the new API 4406 - MAJOR: start to change buffer API 4407 - MINOR: buffer: remove the check for output on b_del() 4408 - MINOR: buffer: b_set_data() doesn't truncate output data anymore 4409 - MINOR: buffer: rename the "data" field to "area" 4410 - MEDIUM: buffers: move "output" from struct buffer to struct channel 4411 - MINOR: buffer: replace bi_fast_delete() with b_del() 4412 - MINOR: buffer: replace b{i,o}_put* with b_put* 4413 - MINOR: buffer: add a new file for ist + buffer manipulation functions 4414 - MINOR: checks: use b_putist() instead of b_putstr() 4415 - MINOR: buffers: remove b_putstr() 4416 - CLEANUP: buffer: minor cleanups to buffer.h 4417 - MINOR: buffers/channel: replace buffer_insert_line2() with ci_insert_line2() 4418 - MINOR: buffer: replace buffer_replace2() with b_rep_blk() 4419 - MINOR: buffer: rename the data length member to '->data' 4420 - MAJOR: buffer: finalize buffer detachment 4421 - MEDIUM: chunks: make the chunk struct's fields match the buffer struct 4422 - MAJOR: chunks: replace struct chunk with struct buffer 4423 - DOC: buffers: document the new buffers API 4424 - DOC: buffers: remove obsolete docs about buffers 4425 - MINOR: tasklets: Don't attempt to add a tasklet in the list twice. 4426 - MINOR: connections/mux: Add a new "subscribe" method. 4427 - MEDIUM: connections/mux: Revamp the send direction. 4428 - MINOR: connection: simplify subscription by adding a registration function 4429 - BUG/MINOR: http: Set brackets for the unlikely macro at the right place 4430 - BUG/MINOR: build: Fix compilation with debug mode enabled 4431 - BUILD: Generate sha256 checksums in publish-release 4432 - MINOR: debug: Add check for CO_FL_WILL_UPDATE 4433 - MINOR: debug: Add checks for conn_stream flags 4434 - MINOR: ist: Add the function isteqi 4435 - BUG/MEDIUM: threads: Fix the exit condition of the thread barrier 4436 - BUG/MEDIUM: mux_h2: Call h2_send() before updating polling. 4437 - MINOR: buffers: simplify b_contig_space() 4438 - MINOR: buffers: split b_putblk() into __b_putblk() 4439 - MINOR: buffers: add b_xfer() to transfer data between buffers 4440 - DOC: add some design notes about the new layering model 4441 - MINOR: conn_stream: add a new CS_FL_REOS flag 4442 - MINOR: conn_stream: add an rx buffer to the conn_stream 4443 - MEDIUM: conn_stream: add cs_recv() as a default rcv_buf() function 4444 - MEDIUM: stream-int: automatically call si_cs_recv_cb() if the cs has data on wake() 4445 - MINOR: h2: make each H2 stream support an intermediary input buffer 4446 - MEDIUM: h2: make h2_frt_decode_headers() use an intermediary buffer 4447 - MEDIUM: h2: make h2_frt_transfer_data() copy via an intermediary buffer 4448 - MEDIUM: h2: centralize transfer of decoded frames in h2_rcv_buf() 4449 - MEDIUM: h2: move headers and data frame decoding to their respective parsers 4450 - MEDIUM: buffers: make b_xfer() automatically swap buffers when possible 4451 - MEDIUM: h2: perform a single call to the data layer in demux() 4452 - MEDIUM: h2: don't call data_cb->recv() anymore 4453 - MINOR: h2: make use of CS_FL_REOS to indicate that end of stream was seen 4454 - MEDIUM: h2: use the default conn_stream's receive function 4455 - DOC: add more design feedback on the new layering model 4456 - MINOR: h2: add the error code and the max/last stream IDs to "show fd" 4457 - BUG/MEDIUM: stream-int: don't immediately enable reading when the buffer was reportedly full 4458 - BUG/MEDIUM: stats: don't ask for more data as long as we're responding 4459 - BUG/MINOR: servers: Don't make "server" in a frontend fatal. 4460 - BUG/MEDIUM: tasks: make sure we pick all tasks in the run queue 4461 - BUG/MEDIUM: tasks: Decrement rqueue_size at the right time. 4462 - BUG/MEDIUM: tasks: use atomic ops for active_tasks_mask 4463 - BUG/MEDIUM: tasks: Make sure there's no task left before considering inactive. 4464 - MINOR: signal: don't pass the signal number anymore as the wakeup reason 4465 - MINOR: tasks: extend the state bits from 8 to 16 and remove the reason 4466 - MINOR: tasks: Add a flag that tells if we're in the global runqueue. 4467 - BUG/MEDIUM: tasks: make __task_unlink_rq responsible for the rqueue size. 4468 - MINOR: queue: centralize dequeuing code a bit better 4469 - MEDIUM: queue: make pendconn_free() work on the stream instead 4470 - DOC: queue: document the expected locking model for the server's queue 4471 - MINOR: queue: make sure pendconn->strm->pend_pos is always valid 4472 - MINOR: queue: use a distinct variable for the assigned server and the queue 4473 - MINOR: queue: implement pendconn queue locking functions 4474 - MEDIUM: queue: get rid of the pendconn lock 4475 - MINOR: tasks: Make active_tasks_mask volatile. 4476 - MINOR: tasks: Make global_tasks_mask volatile. 4477 - MINOR: pollers: Add a way to wake a thread sleeping in the poller. 4478 - MINOR: threads/queue: Get rid of THREAD_WANT_SYNC in the queue code. 4479 - BUG/MEDIUM: threads/sync: use sched_yield when available 4480 - MINOR: ssl: BoringSSL matches OpenSSL 1.1.0 4481 - BUG/MEDIUM: h2: prevent orphaned streams from blocking a connection forever 4482 - BUG/MINOR: config: stick-table is not supported in defaults section 4483 - BUILD/MINOR: threads: unbreak build with threads disabled 4484 - BUG/MINOR: threads: Handle nbthread == MAX_THREADS. 4485 - BUG/MEDIUM: threads: properly fix nbthreads == MAX_THREADS 4486 - MINOR: threads: move "nbthread" parsing to hathreads.c 4487 - BUG/MEDIUM: threads: unbreak "bind" referencing an incorrect thread number 4488 - MEDIUM: proxy_protocol: Convert IPs to v6 when protocols are mixed 4489 - BUILD/MINOR: compiler: fix offsetof() on older compilers 4490 - SCRIPTS: git-show-backports: add missing quotes to "echo" 4491 - MINOR: threads: add more consistency between certain variables in no-thread case 4492 - MEDIUM: hathreads: implement a more flexible rendez-vous point 4493 - BUG/MEDIUM: cli: make "show fd" thread-safe 4494 44952017/11/26 : 1.9-dev0 4496 44972017/11/26 : 1.8.0 4498 - BUG/MEDIUM: stream: don't automatically forward connect nor close 4499 - BUG/MAJOR: stream: ensure analysers are always called upon close 4500 - BUG/MINOR: stream-int: don't try to read again when CF_READ_DONTWAIT is set 4501 - MEDIUM: mworker: Add systemd `Type=notify` support 4502 - BUG/MEDIUM: cache: free callback to remove from tree 4503 - CLEANUP: cache: remove unused struct 4504 - MEDIUM: cache: enable the HTTP analysers 4505 - CLEANUP: cache: remove wrong comment 4506 - MINOR: threads/atomic: rename local variables in macros to avoid conflicts 4507 - MINOR: threads/plock: rename local variables in macros to avoid conflicts 4508 - MINOR: threads/atomic: implement pl_mb() in asm on x86 4509 - MINOR: threads/atomic: implement pl_bts() on non-x86 4510 - MINOR: threads/build: atomic: replace the few inlines with macros 4511 - BUILD: threads/plock: fix a build issue on Clang without optimization 4512 - BUILD: ebtree: don't redefine types u32/s32 in scope-aware trees 4513 - BUILD: compiler: add a new type modifier __maybe_unused 4514 - BUILD: h2: mark some inlined functions "unused" 4515 - BUILD: server: check->desc always exists 4516 - BUG/MEDIUM: h2: properly report connection errors in headers and data handlers 4517 - MEDIUM: h2: add a function to emit an HTTP/1 request from a headers list 4518 - MEDIUM: h2: change hpack_decode_headers() to only provide a list of headers 4519 - BUG/MEDIUM: h2: always reassemble the Cookie request header field 4520 - BUG/MINOR: systemd: ignore daemon mode 4521 - CONTRIB: spoa_example: allow to compile outside HAProxy. 4522 - CONTRIB: spoa_example: remove bref, wordlist, cond_wordlist 4523 - CONTRIB: spoa_example: remove last dependencies on type "sample" 4524 - CONTRIB: spoa_example: remove SPOE enums that are useless for clients 4525 - CLEANUP: cache: reorder includes 4526 - MEDIUM: shctx: use unsigned int for len and block_count 4527 - MEDIUM: cache: "show cache" on the cli 4528 - BUG/MEDIUM: cache: use key=0 as a condition for freeing 4529 - BUG/MEDIUM: cache: refcount forbids to free the objects 4530 - BUG/MEDIUM: cache fix cli_kws structure 4531 - BUG/MEDIUM: deinit: correctly deinitialize the proxy and global listener tasks 4532 - BUG/MINOR: ssl: Always start the handshake if we can't send early data. 4533 - MINOR: ssl: Don't disable early data handling if we could not write. 4534 - MINOR: pools: prepare functions to override malloc/free in pools 4535 - MINOR: pools: implement DEBUG_UAF to detect use after free 4536 - BUG/MEDIUM: threads/time: fix time drift correction 4537 - BUG/MEDIUM: threads/time: maintain a common time reference between all threads 4538 - MINOR: sample: Add "thread" sample fetch 4539 - BUG/MINOR: Use crt_base instead of ca_base when crt is parsed on a server line 4540 - BUG/MINOR: stream: fix tv_request calculation for applets 4541 - BUG/MAJOR: h2: always remove a stream from the send list before freeing it 4542 - BUG/MAJOR: threads/task: dequeue expired tasks under the WQ lock 4543 - MINOR: ssl: Handle reading early data after writing better. 4544 - MINOR: mux: Make sure every string is woken up after the handshake. 4545 - MEDIUM: cache: store sha1 for hashing the cache key 4546 - MINOR: http: implement the "http-request reject" rule 4547 - MINOR: h2: send RST_STREAM before GOAWAY on reject 4548 - MEDIUM: h2: don't gracefully close the connection anymore on Connection: close 4549 - MINOR: h2: make use of client-fin timeout after GOAWAY 4550 - MEDIUM: config: ensure that tune.bufsize is at least 16384 when using HTTP/2 4551 - MINOR: ssl: Handle early data with BoringSSL 4552 - BUG/MEDIUM: stream: always release the stream-interface on abort 4553 - BUG/MEDIUM: cache: free ressources in chn_end_analyze 4554 - MINOR: cache: move the refcount decrease in the applet release 4555 - BUG/MINOR: listener: Allow multiple "process" options on "bind" lines 4556 - MINOR: config: Support a range to specify processes in "cpu-map" parameter 4557 - MINOR: config: Slightly change how parse_process_number works 4558 - MINOR: config: Export parse_process_number and use it wherever it's applicable 4559 - MINOR: standard: Add my_ffsl function to get the position of the bit set to one 4560 - MINOR: config: Add auto-increment feature for cpu-map 4561 - MINOR: config: Support partial ranges in cpu-map directive 4562 - MINOR:: config: Remove thread-map directive 4563 - MINOR: config: Add the threads support in cpu-map directive 4564 - MINOR: config: Add threads support for "process" option on "bind" lines 4565 - MEDIUM: listener: Bind listeners on a thread subset if specified 4566 - CLEANUP: debug: Use DPRINTF instead of fprintf into #ifdef DEBUG_FULL/#endif 4567 - CLEANUP: log: Rename Alert/Warning in ha_alert/ha_warning 4568 - MINOR/CLEANUP: proxy: rename "proxy" to "proxies_list" 4569 - CLEANUP: pools: rename all pool functions and pointers to remove this "2" 4570 - DOC: update the roadmap file with the latest changes merged in 1.8 4571 - DOC: fix mangled version in peers protocol documentation 4572 - DOC: add initial peers protovol v2.0 documentation. 4573 - DOC: mention William as maintainer of the cache and master-worker 4574 - DOC: add Christopher and Emeric as maintainers of the threads 4575 - MINOR: cache: replace a fprint() by an abort() 4576 - MEDIUM: cache: max-age configuration keyword 4577 - DOC: explain HTTP2 timeout behavior 4578 - DOC: cache: configuration and management 4579 - MAJOR: mworker: exits the master on failure 4580 - BUG/MINOR: threads: don't drop "extern" on the lock in include files 4581 - MINOR: task: keep a pointer to the currently running task 4582 - MINOR: task: align the rq and wq locks 4583 - MINOR: fd: cache-align fdtab and fdcache locks 4584 - MINOR: buffers: cache-align buffer_wq_lock 4585 - CLEANUP: server: reorder some fields in struct server to save 40 bytes 4586 - CLEANUP: proxy: slightly reorder the struct proxy to reduce holes 4587 - CLEANUP: checks: remove 16 bytes of holes in struct check 4588 - CLEANUP: cache: more efficiently pack the struct cache 4589 - CLEANUP: fd: place the lock at the beginning of struct fdtab 4590 - CLEANUP: pools: align pools on a cache line 4591 - DOC: config: add a few bits about how to configure HTTP/2 4592 - BUG/MAJOR: threads/queue: avoid recursive locking in pendconn_get_next_strm() 4593 - BUILD: Makefile: reorder object files by size 4594 45952017/11/19 : 1.8-rc4 4596 - BUG/MEDIUM: cache: does not cache if no Content-Length 4597 - BUILD: thread/pipe: fix build without threads 4598 - BUG/MINOR: spoe: check buffer size before acquiring or releasing it 4599 - MINOR: debug/flags: Add missing flags 4600 - MINOR: threads: Use __decl_hathreads to declare locks 4601 - BUG/MINOR: buffers: Fix b_alloc_margin to be "fonctionnaly" thread-safe 4602 - BUG/MAJOR: ebtree/scope: fix insertion and removal of duplicates in scope-aware trees 4603 - BUG/MAJOR: ebtree/scope: fix lookup of next node in scope-aware trees 4604 - MINOR: ebtree/scope: add a function to find next node from a parent 4605 - MINOR: ebtree/scope: simplify the lookup functions by using eb32sc_next_with_parent() 4606 - BUG/MEDIUM: mworker: Fix re-exec when haproxy is started from PATH 4607 - BUG/MEDIUM: cache: use msg->sov to forward header 4608 - MINOR: cache: forward data with headers 4609 - MINOR: cache: disable cache if shctx_row_data_append fail 4610 - BUG/MINOR: threads: tid_bit must be a unsigned long 4611 - CLEANUP: tasks: Remove useless double test on rq_next 4612 - BUG/MEDIUM: standard: itao_str/idx and quote_str/idx must be thread-local 4613 - MINOR: tools: add a function to dump a scope-aware tree to a file 4614 - MINOR: tools: improve the DOT dump of the ebtree 4615 - MINOR: tools: emphasize the node being worked on in the tree dump 4616 - BUG/MAJOR: ebtree/scope: properly tag upper nodes during insertion 4617 - DOC: peers: Add a first version of peers protocol v2.1. 4618 - CONTRIB: Wireshark dissector for HAProxy Peer Protocol. 4619 - MINOR: mworker: display an accurate error when the reexec fail 4620 - BUG/MEDIUM: mworker: wait again for signals when execvp fail 4621 - BUG/MEDIUM: mworker: does not deinit anymore 4622 - BUG/MEDIUM: mworker: does not close inherited FD 4623 - MINOR: tests: add a python wrapper to test inherited fd 4624 - BUG/MINOR: Allocate the log buffers before the proxies startup 4625 - MINOR: tasks: Use a bitfield to track tasks activity per-thread 4626 - MAJOR: polling: Use active_tasks_mask instead of tasks_run_queue 4627 - MINOR: applets: Use a bitfield to track applets activity per-thread 4628 - MAJOR: polling: Use active_appels_mask instead of applets_active_queue 4629 - MEDIUM: applets: Don't process more than 200 active applets at once 4630 - MINOR: stream: Add thread-mask of tasks/FDs/applets in "show sess all" command 4631 - MINOR: SSL: Store the ASN1 representation of client sessions. 4632 - MINOR: ssl: Make sure we don't shutw the connection before the handshake. 4633 - BUG/MEDIUM: deviceatlas: ignore not valuable HTTP request data 4634 46352017/11/11 : 1.8-rc3 4636 - BUILD: use MAXPATHLEN instead of NAME_MAX. 4637 - BUG/MAJOR: threads/checks: add 4 missing spin_unlock() in various functions 4638 - BUG/MAJOR: threads/server: missing unlock in CLI fqdn parser 4639 - BUG/MINOR: cli: do not perform an invalid action on "set server check-port" 4640 - BUG/MAJOR: threads/checks: wrong use of SPIN_LOCK instead of SPIN_UNLOCK 4641 - CLEANUP: checks: remove return statements in locked functions 4642 - BUG/MINOR: cli: add severity in "set server addr" parser 4643 - CLEANUP: server: get rid of return statements in the CLI parser 4644 - BUG/MAJOR: cli/streams: missing unlock on exit "show sess" 4645 - BUG/MAJOR: threads/dns: add missing unlock on allocation failure path 4646 - BUG/MAJOR: threads/lb: fix missing unlock on consistent hash LB 4647 - BUG/MAJOR: threads/lb: fix missing unlock on map-based hash LB 4648 - BUG/MEDIUM: threads/stick-tables: close a race condition on stktable_trash_expired() 4649 - BUG/MAJOR: h2: set the connection's task to NULL when no client timeout is set 4650 - BUG/MAJOR: thread/listeners: enable_listener must not call unbind_listener() 4651 - BUG/MEDIUM: threads: don't try to free build option message on exit 4652 - MINOR: applets: no need to check for runqueue's emptiness in appctx_res_wakeup() 4653 - MINOR: add master-worker in the warning about nbproc 4654 - MINOR: mworker: allow pidfile in mworker + foreground 4655 - MINOR: mworker: write parent pid in the pidfile 4656 - MINOR: mworker: do not store child pid anymore in the pidfile 4657 - MINOR: ebtree: implement the scope-aware functions for eb32 4658 - MEDIUM: ebtree: specify the scope of every node inserted via eb32sc 4659 - MINOR: ebtree: update the eb32sc parent node's scope on delete 4660 - MEDIUM: ebtree: only consider the branches matching the scope in lookups 4661 - MINOR: ebtree: implement eb32sc_lookup_ge_or_first() 4662 - MAJOR: task: make use of the scope-aware ebtree functions 4663 - MINOR: task: simplify wake_expired_tasks() to avoid unlocking in the loop 4664 - MEDIUM: task: change the construction of the loop in process_runnable_tasks() 4665 - MINOR: threads: use faster locks for the spin locks 4666 - MINOR: tasks: only visit filled task slots after processing them 4667 - MEDIUM: tasks: implement a lockless scheduler for single-thread usage 4668 - BUG/MINOR: dns: Don't try to get the server lock if it's already held. 4669 - BUG/MINOR: dns: Don't lock the server lock in snr_check_ip_callback(). 4670 - DOC: Add note about encrypted password CPU usage 4671 - BUG/MINOR: h2: set the "HEADERS_SENT" flag on stream, not connection 4672 - BUG/MEDIUM: h2: properly send an RST_STREAM on mux stream error 4673 - BUG/MEDIUM: h2: properly send the GOAWAY frame in the mux 4674 - BUG/MEDIUM: h2: don't try (and fail) to send non-existing data in the mux 4675 - MEDIUM: h2: remove the H2_SS_RESET intermediate state 4676 - BUG/MEDIUM: h2: fix some wrong error codes on connections 4677 - BUILD: threads: Rename SPIN/RWLOCK macros using HA_ prefix 4678 - BUILD: enable USE_THREAD for Solaris build. 4679 - BUG/MEDIUM: h2: don't close the connection is there are data left 4680 - MINOR: h2: don't re-enable the connection's task when we're closing 4681 - BUG/MEDIUM: h2: properly set H2_SF_ES_SENT when sending the final frame 4682 - BUG/MINOR: h2: correctly check for H2_SF_ES_SENT before closing 4683 - MINOR: h2: add new stream flag H2_SF_OUTGOING_DATA 4684 - BUG/MINOR: h2: don't send GOAWAY on failed response 4685 - BUG/MEDIUM: splice/threads: pipe reuse list was not protected. 4686 - BUG/MINOR: comp: fix compilation warning compiling without compression. 4687 - BUG/MINOR: stream-int: don't set MSG_MORE on closed request path 4688 - BUG/MAJOR: threads/tasks: fix the scheduler again 4689 - BUG/MINOR; ssl: Don't assume we have a ssl_bind_conf because a SNI is matched. 4690 - MINOR: ssl: Handle session resumption with TLS 1.3 4691 - MINOR: ssl: Spell 0x10101000L correctly. 4692 - MINOR: ssl: Handle sending early data to server. 4693 - BUILD: ssl: fix build of backend without ssl 4694 - BUILD: shctx: do not depend on openssl anymore 4695 - BUG/MINOR: h1: the HTTP/1 make status code parser check for digits 4696 - BUG/MEDIUM: h2: reject non-3-digit status codes 4697 - BUG/MEDIUM: stream-int: Don't loss write's notifs when a stream is woken up 4698 - BUG/MINOR: pattern: Rely on the sample type to copy it in pattern_exec_match 4699 - BUG/MEDIUM: h2: split the function to send RST_STREAM 4700 - BUG/MEDIUM: h1: ensure the chunk size parser can deal with full buffers 4701 - MINOR: tools: don't use unlikely() in hex2i() 4702 - BUG/MEDIUM: h2: support orphaned streams 4703 - BUG/MEDIUM: threads/cli: fix "show sess" locking on release 4704 - CLEANUP: mux: remove the unused "release()" function 4705 - MINOR: cli: make "show fd" report the fd's thread mask 4706 - BUG/MEDIUM: stream: don't ignore res.analyse_exp anymore 4707 - CLEANUP: global: introduce variable pid_bit to avoid shifts with relative_pid 4708 - MEDIUM: http: always reject the "PRI" method 4709 47102017/11/03 : 1.8-rc2 4711 - BUG/MINOR: send-proxy-v2: fix dest_len in make_tlv call 4712 - BUG/MINOR: send-proxy-v2: string size must include ('\0') 4713 - MINOR: mux: Only define pipe functions on linux. 4714 - MINOR: cache: Remove useless test for nonzero. 4715 - MINOR: cache: Don't confuse act_return and act_parse_ret. 4716 - BUG/MEDIUM: h2: don't try to parse incomplete H1 responses 4717 - BUG/MEDIUM: checks/mux: always enable send-polling after connecting 4718 - BUG/MAJOR: fix deadlock on healthchecks. 4719 - BUG/MINOR: thread: fix a typo in the debug code 4720 - BUILD: shctx: allow to be built without openssl 4721 - BUG/MEDIUM: cache: don't try to resolve wrong filters 4722 - BUG/MAJOR: buffers: fix get_buffer_nc() for data at end of buffer 4723 - BUG/MINOR: freq: fix infinite loop on freq_ctr_period. 4724 - BUG/MINOR: stdarg.h inclusion 4725 - BUG/MINOR: dns: fix missing lock protection on server. 4726 - BUG/MINOR: lua: fix missing lock protection on server. 4727 - BUILD: enable USE_THREAD for OpenBSD build. 4728 - BUG/MAJOR: mux_pt: don't dereference a connstream after ->wake() 4729 - MINOR: thread: report multi-thread support in haproxy -vv 4730 47312017/10/31 : 1.8-rc1 4732 - BUG/MEDIUM: server: Allocate tmptrash before using it. 4733 - CONTRIB: trace: add the possibility to place trace calls in the code 4734 - CONTRIB: trace: try to display the function's return value on exit 4735 - CONTRIB: trace: report the base name only for file names 4736 - BUILD: ssl: support OPENSSL_NO_ASYNC #define 4737 - MINOR: ssl: build with recent BoringSSL library 4738 - BUG/MINOR: ssl: OCSP_single_get0_status can return -1 4739 - BUG/MINOR: cli: restore "set ssl tls-key" command 4740 - CLEANUP: cli: remove undocumented "set ssl tls-keys" command 4741 - IMPORT: sha1: import SHA1 functions 4742 - MINOR: sample: add the sha1 converter 4743 - MINOR: sample: add the hex2i converter 4744 - MINOR: stream-int: stop checking for useless connection flags in chk_snd_conn 4745 - MINOR: ssl: don't abort after sending 16kB 4746 - MINOR: connection: move the cleanup of flag CO_FL_WAIT_ROOM 4747 - MINOR: connection: add flag CO_FL_WILL_UPDATE to indicate when updates are granted 4748 - MEDIUM: connection: make use of CO_FL_WILL_UPDATE in conn_sock_shutw() 4749 - MINOR: raw_sock: make use of CO_FL_WILL_UPDATE 4750 - MINOR: ssl_sock: make use of CO_FL_WILL_UPDATE 4751 - BUG/MINOR: checks: Don't forget to release the connection on error case. 4752 - MINOR: buffer: add the buffer input manipulation functions 4753 - BUG/MEDIUM: prevent buffers being overwritten during build_logline() execution 4754 - MEDIUM: cfgparse: post section callback 4755 - MEDIUM: cfgparse: post parsing registration 4756 - MINOR: lua: add uuid to the Class Proxy 4757 - MINOR: hlua: Add regex class 4758 - MINOR: http: Mark the 425 code as "Too Early". 4759 - MEDIUM: ssl: convert CBS (BoringSSL api) usage to neutral code 4760 - MINOR: ssl: support Openssl 1.1.1 early callback for switchctx 4761 - MINOR: ssl: generated certificate is missing in switchctx early callback 4762 - MEDIUM: ssl: Handle early data with OpenSSL 1.1.1 4763 - BUILD: Makefile: disable -Wunused-label 4764 - MINOR: ssl/proto_http: Add keywords to take care of early data. 4765 - BUG/MINOR: lua: const attribute of a string is overridden 4766 - MINOR: ssl: Don't abuse ssl_options. 4767 - MINOR: update proxy-protocol-v2 #define 4768 - MINOR: merge ssl_sock_get calls for log and ppv2 4769 - MINOR: add ALPN information to send-proxy-v2 4770 - MEDIUM: h1: ensure that 1xx, 204 and 304 don't have a payload body 4771 - CLEANUP: shctx: get ride of the shsess_packet{_hdr} structures 4772 - MEDIUM: lists: list_for_each_entry{_safe}_from functions 4773 - REORG: shctx: move lock functions and struct 4774 - MEDIUM: shctx: allow the use of multiple shctx 4775 - REORG: shctx: move ssl functions to ssl_sock.c 4776 - MEDIUM: shctx: separate ssl and shctx 4777 - MINOR: shctx: rename lock functions 4778 - MINOR: h1: store the status code in the H1 message 4779 - BUG/MINOR: spoe: Don't compare engine name and SPOE scope when both are NULL 4780 - BUG/MINOR: spoa: Update pointer on the end of the frame when a reply is encoded 4781 - MINOR: action: Add trk_idx inline function 4782 - MINOR: action: Use trk_idx instead of tcp/http_trk_idx 4783 - MINOR: action: Add a function pointer in act_rule struct to check its validity 4784 - MINOR: action: Add function to check rules using an action ACT_ACTION_TRK_* 4785 - MINOR: action: Add a functions to check http capture rules 4786 - MINOR: action: Factorize checks on rules calling check_ptr if defined 4787 - MINOR: acl: Pass the ACLs as an explicit parameter of build_acl_cond 4788 - MEDIUM: spoe: Add support of ACLS to enable or disable sending of SPOE messages 4789 - MINOR: spoe: Check uniqness of SPOE engine names during config parsing 4790 - MEDIUM: spoe: Parse new "spoe-group" section in SPOE config file 4791 - MEDIUM: spoe/rules: Add "send-spoe-group" action for tcp/http rules 4792 - MINOR: spoe: Move message encoding in its own function 4793 - MINOR: spoe: Add a type to qualify the message list during encoding 4794 - MINOR: spoe: Add a generic function to encode a list of SPOE message 4795 - MEDIUM: spoe/rules: Process "send-spoe-group" action 4796 - BUG/MINOR: dns: Fix CLI keyword declaration 4797 - MAJOR: dns: Refactor the DNS code 4798 - BUG/MINOR: mailers: Fix a memory leak when email alerts are released 4799 - MEDIUM: mailers: Init alerts during conf parsing and refactor their processing 4800 - MINOR: mailers: Use pools to allocate email alerts and its tcpcheck_rules 4801 - MINOR: standard: Add memvprintf function 4802 - MINOR: log: Save alerts and warnings emitted during HAProxy startup 4803 - MINOR: cli: Add "show startup-logs" command 4804 - MINOR: startup: Extend the scope the MODE_STARTING flag 4805 - MINOR: threads: Prepare makefile to link with pthread 4806 - MINOR: threads: Add THREAD_LOCAL macro 4807 - MINOR: threads: Add atomic-ops and plock includes in import dir 4808 - MEDIUM: threads: Add hathreads header file 4809 - MINOR: threads: Add mechanism to register per-thread init/deinit functions 4810 - MINOR: threads: Add nbthread parameter 4811 - MEDIUM: threads: Adds a set of functions to handle sync-point 4812 - MAJOR: threads: Start threads to experiment multithreading 4813 - MINOR: threads: Define the sync-point inside run_poll_loop 4814 - MEDIUM: threads/buffers: Define and register per-thread init/deinit functions 4815 - MEDIUM: threads/chunks: Transform trash chunks in thread-local variables 4816 - MEDIUM: threads/time: Many global variables from time.h are now thread-local 4817 - MEDIUM: threads/logs: Make logs thread-safe 4818 - MEDIUM: threads/pool: Make pool thread-safe by locking all access to a pool 4819 - MAJOR: threads/fd: Make fd stuffs thread-safe 4820 - MINOR: threads/fd: Add a mask of threads allowed to process on each fd in fdtab array 4821 - MEDIUM: threads/fd: Initialize the process mask during the call to fd_insert 4822 - MINOR: threads/fd: Process cached events of FDs depending on the process mask 4823 - MINOR: threads/polling: pollers now handle FDs depending on the process mask 4824 - WIP: SQUASH WITH SYNC POINT 4825 - MAJOR: threads/task: handle multithread on task scheduler 4826 - MEDIUM: threads/signal: Add a lock to make signals thread-safe 4827 - MEDIUM: threads/listeners: Make listeners thread-safe 4828 - MEDIUM: threads/proxy: Add a lock per proxy and atomically update proxy vars 4829 - MEDIUM: threads/server: Make connection list (priv/idle/safe) thread-safe 4830 - MEDIUM: threads/server: Add a lock per server and atomically update server vars 4831 - MINOR: threads/server: Add a lock to deal with insert in updates_servers list 4832 - MEDIUM: threads/lb: Make LB algorithms (lb_*.c) thread-safe 4833 - MEDIUM: threads/stick-tables: handle multithreads on stick tables 4834 - MINOR: threads/sample: Change temp_smp into a thread local variable 4835 - MEDIUM: threads/http: Make http_capture_bad_message thread-safe 4836 - MINOR: threads/regex: Change Regex trash buffer into a thread local variable 4837 - MAJOR: threads/applet: Handle multithreading for applets 4838 - MAJOR: threads/peers: Make peers thread safe 4839 - MAJOR: threads/buffer: Make buffer wait queue thread safe 4840 - MEDIUM: threads/stream: Make streams list thread safe 4841 - MAJOR: threads/ssl: Make SSL part thread-safe 4842 - MEDIUM: threads/queue: Make queues thread-safe 4843 - MAJOR: threads/map: Make acls/maps thread safe 4844 - MEDIUM: threads/freq_ctr: Make the frequency counters thread-safe 4845 - MEDIUM: thread/vars: Make vars thread-safe 4846 - MEDIUM: threads/filters: Add init/deinit callback per thread 4847 - MINOR: threads/filters: Update trace filter to add _per_thread callbacks 4848 - MEDIUM: threads/compression: Make HTTP compression thread-safe 4849 - MEDIUM: threads/lua: Makes the jmpbuf and some other buffers local to the current thread. 4850 - MEDIUM: threads/lua: Add locks around the Lua execution parts. 4851 - MEDIUM: threads/lua: Ensure that the launched tasks runs on the same threads than me 4852 - MEDIUM: threads/lua: Cannot acces to the socket if we try to access from another thread. 4853 - MEDIUM: threads/xref: Convert xref function to a thread safe model 4854 - MEDIUM: threads/tasks: Add lock around notifications 4855 - MEDIUM: thread/spoe: Make the SPOE thread-safe 4856 - MEDIUM: thread/dns: Make DNS thread-safe 4857 - MINOR: threads: Add thread-map config parameter in the global section 4858 - MINOR: threads/checks: Add a lock to protect the pid list used by external checks 4859 - MINOR: threads/checks: Set the task process_mask when a check is executed 4860 - MINOR: threads/mailers: Add a lock to protect queues of email alerts 4861 - MEDIUM: threads/server: Use the server lock to protect health check and cli concurrency 4862 - MINOR: threads: Don't start when device a detection module is used 4863 - BUG/MEDIUM: threads: Run the poll loop on the main thread too 4864 - BUG/MINOR: threads: Add missing THREAD_LOCAL on static here and there 4865 - MAJOR: threads: Offically enable the threads support in HAProxy 4866 - BUG/MAJOR: threads/freq_ctr: fix lock on freq counters. 4867 - BUG/MAJOR: threads/time: Store the time deviation in an 64-bits integer 4868 - BUILD: stick-tables: silence an uninitialized variable warning 4869 - BUG/MINOR: dns: Fix SRV records with the new thread code. 4870 - MINOR: ssl: Remove the global allow-0rtt option. 4871 - CLEANUP: threads: replace the last few 1UL<<tid with tid_bit 4872 - CLEANUP: threads: rename process_mask to thread_mask 4873 - MINOR: h1: add a function to measure the trailers length 4874 - MINOR: threads: add a portable barrier for threads and non-threads 4875 - BUG/MAJOR: threads/freq_ctr: use a memory barrier to detect changes 4876 - BUG/MEDIUM: threads: Initialize the sync-point 4877 - MEDIUM: connection: start to introduce a mux layer between xprt and data 4878 - MINOR: connection: implement alpn registration of muxes 4879 - MINOR: mux: register the pass-through mux for any ALPN string 4880 - MEDIUM: session: use the ALPN token and proxy mode to select the mux 4881 - MINOR: connection: report the major HTTP version from the MUX for logging (fc_http_major) 4882 - MINOR: connection: introduce conn_stream 4883 - MINOR: mux: add more methods to mux_ops 4884 - MINOR: connection: introduce the conn_stream manipulation functions 4885 - MINOR: mux_pt: implement remaining mux_ops methods 4886 - MAJOR: connection : Split struct connection into struct connection and struct conn_stream. 4887 - MINOR: connection: make conn_stream users also check for per-stream error flag 4888 - MINOR: conn_stream: new shutr/w status flags 4889 - MINOR: conn_stream: modify cs_shut{r,w} API to pass the desired mode 4890 - MEDIUM: connection: make conn_sock_shutw() aware of lingering 4891 - MINOR: connection: add cs_close() to close a conn_stream 4892 - MEDIUM: mux_pt: make cs_shutr() / cs_shutw() properly close the connection 4893 - MEDIUM: connection: replace conn_full_close() with cs_close() 4894 - MEDIUM: connection: make mux->detach() release the connection 4895 - MEDIUM: stream: do not forcefully close the client connection anymore 4896 - MEDIUM: checks: exclusively use cs_destroy() to release a connection 4897 - MEDIUM: connection: add a destroy callback 4898 - MINOR: session: release the listener with the session, not the stream 4899 - MEDIUM: session: make use of the connection's destroy callback 4900 - CONTRIB: hpack: implement a reverse huffman table generator for hpack 4901 - MINOR: hpack: implement the HPACK Huffman table decoder 4902 - MINOR: hpack: implement the header tables management 4903 - MINOR: hpack: implement the decoder 4904 - MEDIUM: hpack: implement basic hpack encoding 4905 - MINOR: h2: centralize all HTTP/2 protocol elements and constants 4906 - MINOR: h2: create a very minimalistic h2 mux 4907 - MINOR: h2: expose tune.h2.header-table-size to configure the table size 4908 - MINOR: h2: expose tune.h2.initial-window-size to configure the window size 4909 - MINOR: h2: expose tune.h2.max-concurrent-streams to limit the number of streams 4910 - MINOR: h2: create the h2c struct and allocate its pool 4911 - MINOR: h2: create the h2s struct and the associated pool 4912 - MINOR: h2: handle two extra stream states for errors 4913 - MINOR: h2: add a frame header descriptor for incoming frames 4914 - MEDIUM: h2: allocate and release the h2c context on connection init/end 4915 - MEDIUM: h2: implement basic recv/send/wake functions 4916 - MEDIUM: h2: dynamically allocate the demux buffer on Rx 4917 - MEDIUM: h2: implement the mux buffer allocator 4918 - MINOR: h2: add the connection and stream flags listing the causes for blocking 4919 - MINOR: h2: add function h2s_id() to report a stream's ID 4920 - MINOR: h2: small function to know when the mux is busy 4921 - MINOR: h2: new function h2c_error to mark an error on the connection 4922 - MINOR: h2: new function h2s_error() to mark an error on a stream 4923 - MINOR: h2: add h2_set_frame_size() to update the size in a binary frame 4924 - MINOR: h2: new function h2_peek_frame_hdr() to retrieve a new frame header 4925 - MINOR: h2: add a few functions to retrieve contents from a wrapping buffer 4926 - MINOR: h2: add stream lookup function based on the stream ID 4927 - MINOR: h2: create dummy idle and closed streams 4928 - MINOR: h2: add the function to create a new stream 4929 - MINOR: h2: update the {MUX,DEM}_{M,D}ALLOC flags on buffer availability 4930 - MEDIUM: h2: start to consider the H2_CF_{MUX,DEM}_* flags for polling 4931 - MINOR: h2: also terminate the connection on shutr 4932 - MEDIUM: h2: properly consider all conditions for end of connection 4933 - MEDIUM: h2: wake the connection up for send on pending streams 4934 - MEDIUM: h2: start to implement the frames processing loop 4935 - MINOR: h2: add a function to send a GOAWAY error frame 4936 - MINOR: h2: match the H2 connection preface on init 4937 - MEDIUM: h2: enable connection polling for send when a cs wants to emit 4938 - MEDIUM: h2: enable reading again on the connection if it was blocked on stream buffer full 4939 - MEDIUM: h2: process streams pending for sending 4940 - MINOR: h2: send a real SETTINGS frame based on the configuration 4941 - MEDIUM: h2: detect the presence of the first settings frame 4942 - MINOR: h2: create a stream parser for the demuxer 4943 - MINOR: h2: implement PING frames 4944 - MEDIUM: h2: decode SETTINGS frames and extract relevant settings 4945 - MINOR: h2: lookup the stream during demuxing 4946 - MEDIUM: h2: honor WINDOW_UPDATE frames 4947 - MINOR: h2: implement h2_send_rst_stream() to send RST_STREAM frames 4948 - MINOR: h2: handle CONTINUATION frames 4949 - MEDIUM: h2: partial implementation of h2_detach() 4950 - MEDIUM: h2: unblock a connection when its current stream detaches 4951 - MEDIUM: h2: basic processing of HEADERS frame 4952 - MEDIUM: h2: don't use trash to decode headers! 4953 - MEDIUM: h2: implement the response HEADERS frame to encode the H1 response 4954 - MEDIUM: h2: send the H1 response body as DATA frames 4955 - MEDIUM: h2: skip the response trailers if any 4956 - MEDIUM: h2: properly continue to parse header block when facing a 1xx response 4957 - MEDIUM: h2: send WINDOW_UPDATE frames for connection 4958 - MEDIUM: h2: handle request body in DATA frames 4959 - MINOR: h2: handle RST_STREAM frames 4960 - MEDIUM: h2: send DATA+ES or RST_STREAM on shutw/shutr 4961 - MINOR: h2: use a common function to signal some and all streams. 4962 - MEDIUM: h2: handle GOAWAY frames 4963 - MINOR: h2: centralize the check for the idle streams 4964 - MINOR: h2: centralize the check for the half-closed(remote) streams 4965 - MEDIUM: h2: silently ignore frames higher than last_id after GOAWAY 4966 - MINOR: h2: properly reject PUSH_PROMISE frames coming from the client 4967 - MEDIUM: h2: perform a graceful shutdown on "Connection: close" 4968 - MEDIUM: h2: send a GOAWAY frame when dealing with an empty response 4969 - MEDIUM: h2: apply a timeout to h2 connections 4970 - BUG/MEDIUM: h2: fix incorrect timeout handling on the connection 4971 - MEDIUM: shctx: forbid shctx to read more than expected 4972 - MEDIUM: cache: configuration parsing and initialization 4973 - MEDIUM: cache: store objects in cache 4974 - MEDIUM: cache: deliver objects from cache 4975 49762017/10/22 : 1.8-dev3 4977 - REORG: ssl: move defines and methodVersions table upper 4978 - MEDIUM: ssl: ctx_set_version/ssl_set_version func for methodVersions table 4979 - MINOR: ssl: support ssl-min-ver and ssl-max-ver with crt-list 4980 - MEDIUM: ssl: disable SSLv3 per default for bind 4981 - BUG/MAJOR: ssl: fix segfault on connection close using async engines. 4982 - BUG/MAJOR: ssl: buffer overflow using offloaded ciphering on async engine 4983 - BUG/MINOR: ssl: do not call directly the conn_fd_handler from async_fd_handler 4984 - BUG/MINOR: haproxy/cli : fix for solaris/illumos distros for CMSG* macros 4985 - BUG/MEDIUM: build without openssl broken 4986 - BUG/MINOR: warning: need_resend may be used uninitialized 4987 - BUG/MEDIUM: misplaced exit and wrong exit code 4988 - BUG/MINOR: Makefile: fix compile error with USE_LUA=1 in ubuntu16.04 4989 - BUILD: scripts: make publish-release support bare repositories 4990 - BUILD: scripts: add an automatic mode for publish-release 4991 - BUILD: scripts: add a "quiet" mode to publish-release 4992 - BUG/MAJOR: http: call manage_client_side_cookies() before erasing the buffer 4993 - BUG/MINOR: buffers: Fix bi/bo_contig_space to handle full buffers 4994 - CONTRIB: plug qdiscs: Plug queuing disciplines mini HOWTO. 4995 - BUG/MINOR: acls: Set the right refflag when patterns are loaded from a map 4996 - BUG/MINOR: ssl: Be sure that SSLv3 connection methods exist for openssl < 1.1.0 4997 - BUG/MINOR: http/filters: Be sure to wait if a filter loops in HTTP_MSG_ENDING 4998 - BUG/MEDIUM: peers: Peers CLOSE_WAIT issue. 4999 - BUG/MAJOR: server: Segfault after parsing server state file. 5000 - BUG/MEDIUM: unix: never unlink a unix socket from the file system 5001 - scripts: create-release pass -n to tail 5002 - SCRIPTS: create-release: enforce GIT_COMMITTER_{NAME|EMAIL} validity 5003 - BUG/MEDIUM: fix segfault when no argument to -x option 5004 - MINOR: warning on multiple -x 5005 - MINOR: mworker: don't copy -x argument anymore in copy_argv() 5006 - BUG/MEDIUM: mworker: don't reuse PIDs passed to the master 5007 - BUG/MINOR: Wrong peer task expiration handling during synchronization processing. 5008 - BUG/MINOR: cfgparse: Check if tune.http.maxhdr is in the range 1..32767 5009 - BUG/MINOR: log: pin the front connection when front ip/ports are logged 5010 - DOC: fix references to the section about the unix socket 5011 - BUG/MINOR: stream: flag TASK_WOKEN_RES not set if task in runqueue 5012 - MAJOR: task: task scheduler rework. 5013 - MINOR: task/stream: tasks related to a stream must be init by the caller. 5014 - MINOR: queue: Change pendconn_get_next_strm into private function 5015 - MINOR: backends: Change get_server_sh/get_server_uh into private function 5016 - MINOR: queue: Change pendconn_from_srv/pendconn_from_px into private functions 5017 - MEDIUM: stream: make stream_new() always set the target and analysers 5018 - MINOR: frontend: initialize HTTP layer after the debugging code 5019 - MINOR: connection: add a .get_alpn() method to xprt_ops 5020 - MINOR: ssl: add a get_alpn() method to ssl_sock 5021 - MINOR: frontend: retrieve the ALPN name when available 5022 - MINOR: frontend: report the connection's ALPN in the debug output 5023 - MINOR: stream: don't set backend's nor response analysers on SF_TUNNEL 5024 - MINOR: connection: send data before receiving 5025 - MAJOR: applet: applet scheduler rework. 5026 - BUG/MAJOR: frontend: don't dereference a null conn on outgoing connections 5027 - BUG/MAJOR: cli: fix custom io_release was crushed by NULL. 5028 - BUG/MAJOR: map: fix segfault during 'show map/acl' on cli. 5029 - BUG/MAJOR: compression: Be sure to release the compression state in all cases 5030 - MINOR: compression: Use a memory pool to allocate compression states 5031 - BUG/MAJOR: applet: fix a freeze if data is immedately forwarded. 5032 - DOC: fix references to the section about time format. 5033 - BUG/MEDIUM: map/acl: fix unwanted flags inheritance. 5034 - BUG/MAJOR: http: fix buffer overflow on loguri buffer. 5035 - MINOR: ssl: compare server certificate names to the SNI on outgoing connections 5036 - BUG/MINOR: stream: Don't forget to remove CF_WAKE_ONCE flag on response channel 5037 - BUG/MINOR: http: Don't reset the transaction if there are still data to send 5038 - BUG/MEDIUM: filters: Be sure to call flt_end_analyze for both channels 5039 - MINOR: peers: Add additional information to stick-table definition messages. 5040 - BUG/MINOR: http: properly handle all 1xx informational responses 5041 - OPTIM: ssl: don't consider a small ssl_read() as an indication of end of buffer 5042 - BUG/MINOR: peers: peer synchronization issue (with several peers sections). 5043 - CLEANUP: hdr_idx: make some function arguments const where possible 5044 - BUG/MINOR: Prevent a use-after-free on error scenario on option "-x". 5045 - BUG/MINOR: lua: In error case, the safe mode is not removed 5046 - BUG/MINOR: lua: executes the function destroying the Lua session in safe mode 5047 - BUG/MAJOR: lua/socket: resources not detroyed when the socket is aborted 5048 - BUG/MEDIUM: lua: bad memory access 5049 - BUG/MINOR: Lua: variable already initialized 5050 - DOC: update CONTRIBUTING regarding optional parts and message format 5051 - DOC: update the list of OpenSSL versions in the README 5052 - BUG/MINOR: http: Set the response error state in http_sync_res_state 5053 - MINOR: http: Reorder/rewrite checks in http_resync_states 5054 - MINOR: http: Switch requests/responses in TUNNEL mode only by checking txn flags 5055 - BUG/MEDIUM: http: Switch HTTP responses in TUNNEL mode when body length is undefined 5056 - MINOR: http: Rely on analyzers mask to end processing in forward_body functions 5057 - BUG/MINOR: http: Fix bug introduced in previous patch in http_resync_states 5058 - BUG/MINOR: contrib/modsecurity: BSD build fix 5059 - BUG/MINOR: contrib/mod_defender: build fix 5060 - BUG/MINOR: ssl: remove haproxy SSLv3 support when ssl lib have no SSLv3 5061 - MINOR: ssl: remove an unecessary SSL_OP_NO_* dependancy 5062 - BUILD: ssl: fix compatibility with openssl without TLSEXT_signature_* 5063 - MINOR: tools: add a portable timegm() alternative 5064 - BUILD: lua: replace timegm() with my_timegm() to fix build on Solaris 10 5065 - DOC: Updated 51Degrees git URL to point to a stable version. 5066 - BUG/MAJOR: http: Fix possible infinity loop in http_sync_(req|res)_state 5067 - MINOR: memory: remove macros 5068 - BUG/MINOR: lua: Fix Server.get_addr() port values 5069 - BUG/MINOR: lua: Correctly use INET6_ADDRSTRLEN in Server.get_addr() 5070 - MINOR: samples: Handle the type SMP_T_METH when we duplicate a sample in smp_dup 5071 - MINOR: samples: Handle the type SMP_T_METH in smp_is_safe and smp_is_rw 5072 - MINOR: samples: Don't allocate memory for SMP_T_METH sample when method is known 5073 - BUG/MINOR: lua: always detach the tcp/http tasks before freeing them 5074 - MINOR: task: always preinitialize the task's timeout in task_init() 5075 - CLEANUP: task: remove all initializations to TICK_ETERNITY after task_new() 5076 - BUG/MAJOR: lua: properly dequeue hlua_applet_wakeup() for new scheduler 5077 - MINOR: lua: Add proxy as member of proxy object. 5078 - DOC: lua: Proxy class doc update 5079 - MINOR: lua: Add lists of frontends and backends 5080 - BUG/MINOR: ssl: Fix check against SNI during server certificate verification 5081 - BUG/MINOR: ssl: make use of the name in SNI before verifyhost 5082 - MINOR: ssl: add a new error codes for wrong server certificates 5083 - BUG/MEDIUM: stream: don't retry SSL connections which fail the SNI name check 5084 - MINOR: ssl: add "no-ca-names" parameter for bind 5085 - BUG/MINOR: lua: Fix bitwise logic for hlua_server_check_* functions. 5086 - DOC: fix alphabetical order of "show commands" in management.txt 5087 - MINOR: listener: add a function to return a listener's state as a string 5088 - MINOR: cli: add a new "show fd" command 5089 - BUG/MEDIUM: ssl: Fix regression about certificates generation 5090 - MINOR: Add server port field to server state file. 5091 - MINOR: ssl: allow to start without certificate if strict-sni is set 5092 - MINOR: dns: Cache previous DNS answers. 5093 - MINOR: obj: Add a new type of object, OBJ_TYPE_SRVRQ. 5094 - Add a few functions to do unaligned access. 5095 - MINOR: dns: Handle SRV records. 5096 - MINOR: check: Fix checks when using SRV records. 5097 - MINOR: doc: Document SRV label usage. 5098 - BUILD/MINOR: cli: shut a minor gcc warning in "show fd" 5099 - BUILD: ssl: replace SSL_CTX_get0_privatekey for openssl < 1.0.2 5100 - BUILD/MINOR: build without openssl still broken 5101 - BUG/MAJOR: stream: in stream_free(), close the front endpoint and not the origin 5102 - CLEANUP: raw_sock: Use a better name for the constructor than __ssl_sock_deinit() 5103 - MINOR: init: Fix CPU affinity setting on FreeBSD. 5104 - MINOR: dns: Update analysis of TRUNCATED response for SRV records 5105 - MINOR: dns: update record dname matching for SRV query types 5106 - MINOR: dns: update dns response buffer reading pointer due to SRV record 5107 - MINOR: dns: duplicate entries in resolution wait queue for SRV records 5108 - MINOR: dns: make debugging function dump_dns_config() compatible with SRV records 5109 - MINOR: dns: ability to use a SRV resolution for multiple backends 5110 - MINOR: dns: enable caching of responses for server set by a SRV record 5111 - MINOR: dns: new dns record type (RTYPE) for OPT 5112 - MINOR: dns: enabled edns0 extension and make accpeted payload size tunable 5113 - MINOR: dns: default "hold obsolete" timeout set to 0 5114 - MINOR: chunks: add chunk_memcpy() and chunk_memcat() 5115 - MINOR: session: add a streams field to the session struct 5116 - MINOR: stream: link the stream to its session 5117 - MEDIUM: session: do not free a session until no stream references it 5118 - MINOR: ist: implement very simple indirect strings 5119 - TESTS: ist: add a test file for the functions 5120 - MINOR: http: export some of the HTTP parser macros 5121 - BUG/MINOR: Wrong type used as argument for spoe_decode_buffer(). 5122 - BUG/MINOR: dns: server set by SRV records stay in "no resolution" status 5123 - MINOR: dns: Maximum DNS udp payload set to 8192 5124 - MINOR: dns: automatic reduction of DNS accpeted payload size 5125 - MINOR: dns: make SRV record processing more verbose 5126 - CLEANUP: dns: remove duplicated code in dns_resolve_recv() 5127 - CLEANUP: dns: remove duplicated code in dns_validate_dns_response() 5128 - BUG/MINOR: dns: wrong resolution interval lead to 100% CPU 5129 - BUG/MEDIUM: dns: fix accepted_payload_size parser to avoid integer overflow 5130 - BUG/MAJOR: lua: fix the impact of the scheduler changes again 5131 - BUG/MEDIUM: lua: HTTP services must take care of body-less status codes 5132 - MINOR: lua: properly process the contents of the content-length field 5133 - BUG/MEDIUM: stream: properly set the required HTTP analysers on use-service 5134 - OPTIM: lua: don't use expensive functions to parse headers in the HTTP applet 5135 - OPTIM: lua: don't add "Connection: close" on the response 5136 - REORG/MEDIUM: connection: introduce the notion of connection handle 5137 - BUG/MINOR: stream-int: don't check the CO_FL_CURR_WR_ENA flag 5138 - MEDIUM: connection: get rid of data->init() which was not for data 5139 - MEDIUM: stream: make stream_new() allocate its own task 5140 - CLEANUP: listener: remove the unused handler field 5141 - MEDIUM: session: add a pointer to a struct task in the session 5142 - MINOR: stream: provide a new stream creation function for connections 5143 - MEDIUM: connection: remove useless flag CO_FL_DATA_RD_SH 5144 - CLEANUP: connection: remove the unused conn_sock_shutw_pending() 5145 - MEDIUM: connection: remove useless flag CO_FL_DATA_WR_SH 5146 - DOC: add CLI info on privilege levels 5147 - DOC: Refer to Mozilla TLS info / config generator 5148 - MINOR: ssl: remove duplicate ssl_methods in struct bind_conf 5149 - BUG/MEDIUM: http: Fix a regression bug when a HTTP response is in TUNNEL mode 5150 - DOC: Add note about "* " prefix in CSV stats 5151 - CLEANUP: memory: Remove unused function pool_destroy 5152 - MINOR: listeners: Change listener_full and limit_listener into private functions 5153 - MINOR: listeners: Change enable_listener and disable_listener into private functions 5154 - MINOR: fd: Don't forget to reset fdtab[fd].update when a fd is added/removed 5155 - MINOR: fd: Set owner and iocb field before inserting a new fd in the fdtab 5156 - MINOR: backends: Make get_server_* functions explicitly static 5157 - MINOR: applet: Check applets_active_queue before processing applets queue 5158 - MINOR: chunks: Use dedicated function to init/deinit trash buffers 5159 - MEDIUM: chunks: Realloc trash buffers only after the config is parsed and checked 5160 - MINOR: logs: Use dedicated function to init/deinit log buffers 5161 - MINOR: logs: Realloc log buffers only after the config is parsed and checked 5162 - MINOR: buffers: Move swap_buffer into buffer.c and add deinit_buffer function 5163 - MINOR: stick-tables: Make static_table_key a struct variable instead of a pointer 5164 - MINOR: http: Use a trash chunk to store decoded string of the HTTP auth header 5165 - MINOR: fd: Add fd_active function 5166 - MINOR: fd: Use inlined functions to check fd state in fd_*_send/recv functions 5167 - MINOR: fd: Move (de)allocation of fdtab and fdinfo in (de)init_pollers 5168 - MINOR: freq_ctr: Return the new value after an update 5169 - MEDIUM: check: server states and weight propagation re-work 5170 - BUG/MEDIUM: epoll: ensure we always consider HUP and ERR 5171 - MINOR: fd: Add fd_update_events function 5172 - MINOR: polling: Use fd_update_events to update events seen for a fd 5173 - BUG/MINOR: server: Remove FQDN requirement for using init-addr and state file 5174 - Revert "BUG/MINOR: server: Remove FQDN requirement for using init-addr and state file" 5175 - MINOR: ssl: rework smp_fetch_ssl_fc_cl_str without internal ssl use 5176 - BUG/MEDIUM: http: Close streams for connections closed before a redirect 5177 - BUG/MINOR: Lua: The socket may be destroyed when we try to access. 5178 - MINOR: xref: Add a new xref system 5179 - MEDIUM: xref/lua: Use xref for referencing cosocket relation between stream and lua 5180 - MINOR: tasks: Move Lua notification from Lua to tasks 5181 - MINOR: net_helper: Inline functions meant to be inlined. 5182 - MINOR: cli: add socket commands and config to prepend informational messages with severity 5183 - MINOR: add severity information to cli feedback messages 5184 - BUILD: Makefile: add a function to detect support by the compiler of certain options 5185 - BUILD: Makefile: shut certain gcc/clang stupid warnings 5186 - BUILD: Makefile: improve detection of support for compiler warnings 5187 - MINOR: peers: don't reference the incoming listener on outgoing connections 5188 - MINOR: frontend: don't retrieve ALPN on the critical path 5189 - MINOR: protocols: always pass a "port" argument to the listener creation 5190 - MINOR: protocols: register the ->add function and stop calling them directly 5191 - MINOR: unix: remove the now unused proto_uxst.h file 5192 - MINOR: listeners: new function create_listeners 5193 - MINOR: listeners: make listeners count consistent with reality 5194 - MEDIUM: session: take care of incrementing/decrementing jobs 5195 - MINOR: listener: new function listener_release 5196 - MINOR: session: small cleanup of conn_complete_session() 5197 - MEDIUM: session: factor out duplicated code for conn_complete_session 5198 - MEDIUM: session: count the frontend's connections at a single place 5199 - BUG/MEDIUM: compression: Fix check on txn in smp_fetch_res_comp_algo 5200 - BUG/MINOR: compression: Check response headers before http-response rules eval 5201 - BUG/MINOR: spoe: Don't rely on SPOE ctx in debug message when its creation failed 5202 - BUG/MINOR: dns: Fix check on nameserver in snr_resolution_cb 5203 - MINOR: ssl: Remove useless checks on bind_conf or bind_conf->is_ssl 5204 - BUG/MINOR: contrib/mod_defender: close the va_list argp before return 5205 - BUG/MINOR: contrib/modsecurity: close the va_list ap before return 5206 - MINOR: tools: make my_htonll() more efficient on x86_64 5207 - MINOR: buffer: add b_del() to delete a number of characters 5208 - MINOR: buffer: add b_end() and b_to_end() 5209 - MINOR: net_helper: add functions to read from vectors 5210 - MINOR: net_helper: add write functions 5211 - MINOR: net_helper: add 64-bit read/write functions 5212 - MINOR: connection: adjust CO_FL_NOTIFY_DATA after removal of flags 5213 - MINOR: ist: add a macro to ease const array initialization 5214 - BUG/MEDIUM: server: unwanted behavior leaving maintenance mode on tracked stopping server 5215 - BUG/MEDIUM: server: unwanted behavior leaving maintenance mode on tracked stopping server (take2) 5216 - BUG/MINOR: log: fixing small memory leak in error code path. 5217 - BUG/MINOR: contrib/halog: fixing small memory leak 5218 - BUG/MEDIUM: tcp/http: set-dst-port action broken 5219 - CLEANUUP: checks: don't set conn->handle.fd to -1 5220 - BUG/MEDIUM: tcp-check: properly indicate polling state before performing I/O 5221 - BUG/MINOR: tcp-check: don't quit with pending data in the send buffer 5222 - BUG/MEDIUM: tcp-check: don't call tcpcheck_main() from the I/O handlers! 5223 - BUG/MINOR: unix: properly check for octal digits in the "mode" argument 5224 - MINOR: checks: make chk_report_conn_err() take a check, not a connection 5225 - CLEANUP: checks: remove misleading comments and statuses for external process 5226 - CLEANUP: checks: don't report report the fork() error twice 5227 - CLEANUP: checks: do not allocate a connection for process checks 5228 - TESTS: checks: add a simple test config for external checks 5229 - BUG/MINOR: tcp-check: don't initialize then break a connection starting with a comment 5230 - TESTS: checks: add a simple test config for tcp-checks 5231 - MINOR: tcp-check: make tcpcheck_main() take a check, not a connection 5232 - MINOR: checks: don't create then kill a dummy connection before tcp-checks 5233 - MEDIUM: checks: make tcpcheck_main() indicate if it recycled a connection 5234 - MEDIUM: checks: do not allocate a permanent connection anymore 5235 - BUG/MEDIUM: cli: fix "show fd" crash when dumping closed FDs 5236 - BUG/MEDIUM: http: Return an error when url_dec sample converter failed 5237 - BUG/MAJOR: stream-int: don't re-arm recv if send fails 5238 - BUILD/MINOR: 51d: fix warning when building with 51Degrees release version 3.2.12.12 5239 - DOC: 51d: add 51Degrees git URL that points to release version 3.2.12.12 5240 - DOC: 51d: Updated git URL and instructions for getting Hash Trie data files. 5241 - MINOR: compiler: restore the likely() wrapper for gcc 5.x 5242 - MINOR: session: remove the list of streams from struct session 5243 - DOC: fix some typos 5244 - MINOR: server: add the srv_queue() sample fetch method 5245 - MINOR: payload: add new sample fetch functions to process distcc protocol 5246 - MAJOR: servers: propagate server status changes asynchronously. 5247 - BUG/MEDIUM: ssl: fix OCSP expiry calculation 5248 - BUG/MINOR: stream-int: don't set MSG_MORE on SHUTW_NOW without AUTO_CLOSE 5249 - MINOR: server: Handle weight increase in consistent hash. 5250 - MINOR: checks: Add a new keyword to specify a SNI when doing SSL checks. 5251 - BUG/MINOR: tools: fix my_htonll() on x86_64 5252 - BUG/MINOR: stats: Clear a bit more counters with in cli_parse_clear_counters(). 5253 - BUG/MAJOR: lua: scheduled task is freezing. 5254 - MINOR: buffer: add bo_del() to delete a number of characters from output 5255 - MINOR: buffer: add a function to match against string patterns 5256 - MINOR: buffer: add two functions to inject data into buffers 5257 - MINOR: buffer: add buffer_space_wraps() 5258 - REORG: channel: finally rename the last bi_* / bo_* functions 5259 - MINOR: buffer: add bo_getblk() and bo_getblk_nc() 5260 - MINOR: channel: make use of bo_getblk{,_nc} for their channel equivalents 5261 - MINOR: channel: make the channel be a const in all {ci,co}_get* functions 5262 - MINOR: ist: add ist0() to add a trailing zero to a string. 5263 - BUG/MEDIUM: log: check result details truncated. 5264 - MINOR: buffer: make bo_getblk_nc() not return 2 for a full buffer 5265 - REORG: http: move some very http1-specific parts to h1.{c,h} 5266 - REORG: http: move the HTTP/1 chunk parser to h1.{c,h} 5267 - REORG: http: move the HTTP/1 header block parser to h1.c 5268 - MEDIUM: http: make the chunk size parser only depend on the buffer 5269 - MEDIUM: http: make the chunk crlf parser only depend on the buffer 5270 - MINOR: h1: add struct h1m for basic HTTP/1 messages 5271 - MINOR: http: add very simple header management based on double strings 5272 - MEDIUM: h1: reimplement the http/1 response parser for the gateway 5273 - REORG: connection: rename CO_FL_DATA_* -> CO_FL_XPRT_* 5274 - MEDIUM: connection: make conn_sock_shutw() aware of lingering 5275 - MINOR: connection: ensure conn_ctrl_close() also resets the fd 5276 - MINOR: connection: add conn_stop_tracking() to disable tracking 5277 - MINOR: tcp: use conn_full_close() instead of conn_force_close() 5278 - MINOR: unix: use conn_full_close() instead of conn_force_close() 5279 - MINOR: checks: use conn_full_close() instead of conn_force_close() 5280 - MINOR: session: use conn_full_close() instead of conn_force_close() 5281 - MINOR: stream: use conn_full_close() instead of conn_force_close() 5282 - MINOR: stream: use conn_full_close() instead of conn_force_close() 5283 - MINOR: backend: use conn_full_close() instead of conn_force_close() 5284 - MINOR: stream-int: use conn_full_close() instead of conn_force_close() 5285 - MINOR: connection: remove conn_force_close() 5286 - BUG/MINOR: ssl: ocsp response with 'revoked' status is correct 5287 52882017/06/02 : 1.8-dev2 5289 - CLEANUP: server: moving netinet/tcp.h inclusion 5290 - DOC: changed "block"(deprecated) examples to http-request deny 5291 - DOC: add few comments to examples. 5292 - DOC: update sample code for PROXY protocol 5293 - DOC: mention lighttpd 1.4.46 implements PROXY 5294 - MINOR server: Restrict dynamic cookie check to the same proxy. 5295 - DOC: stick-table is available in frontend sections 5296 - BUG/MINOR: server : no transparent proxy for DragonflyBSD 5297 - BUILD/MINOR: stats: remove unexpected argument to stats_dump_json_header() 5298 - BUILD/MINOR: tools: fix build warning in debug_hexdump() 5299 - BUG/MINOR: dns: Wrong address family used when creating IPv6 sockets. 5300 - BUG/MINOR: config: missing goto out after parsing an incorrect ACL character 5301 - BUG/MINOR: arg: don't try to add an argument on failed memory allocation 5302 - MEDIUM: server: Inherit CLI weight changes and agent-check weight responses 5303 - BUG/MEDIUM: arg: ensure that we properly unlink unresolved arguments on error 5304 - BUG/MEDIUM: acl: don't free unresolved args in prune_acl_expr() 5305 - BUG/MEDIUM: servers: unbreak server weight propagation 5306 - MINOR: lua: ensure the memory allocator is used all the time 5307 - MINOR: cli: Add a command to send listening sockets. 5308 - MINOR: global: Add an option to get the old listening sockets. 5309 - MINOR: tcp: When binding socket, attempt to reuse one from the old proc. 5310 - MINOR: doc: document the -x flag 5311 - MINOR: proxy: Don't close FDs if not our proxy. 5312 - MINOR: socket transfer: Set a timeout on the socket. 5313 - MINOR: systemd wrapper: add support for passing the -x option. 5314 - BUG/MINOR: server: Fix a wrong error message during 'usesrc' keyword parsing. 5315 - BUG/MAJOR: Broken parsing for valid keywords provided after 'source' setting. 5316 - CLEANUP: logs: typo: simgle => single 5317 - BUG/MEDIUM: acl: proprely release unused args in prune_acl_expr() 5318 - MEDIUM: config: don't check config validity when there are fatal errors 5319 - BUG/MAJOR: Use -fwrapv. 5320 - BUG/MINOR: server: don't use "proxy" when px is really meant. 5321 - BUG/MEDIUM: http: Drop the connection establishment when a redirect is performed 5322 - BUG/MINOR: server: missing default server 'resolvers' setting duplication. 5323 - MINOR: server: Extract the code responsible of copying default-server settings. 5324 - MINOR: server: Extract the code which finalizes server initializations after 'server' lines parsing. 5325 - MINOR: server: Add 'server-template' new keyword supported in backend sections. 5326 - MINOR: server: Add server_template_init() function to initialize servers from a templates. 5327 - DOC: Add documentation for new "server-template" keyword. 5328 - DOC: add layer 4 links/cross reference to "block" keyword. 5329 - DOC: errloc/errorloc302/errorloc303 missing status codes. 5330 - BUG/MEDIUM: lua: memory leak 5331 - CLEANUP: lua: remove test 5332 - BUG/MINOR: hash-balance-factor isn't effective in certain circumstances 5333 - BUG/MINOR: change header-declared function to static inline 5334 - REORG: spoe: move spoe_encode_varint / spoe_decode_varint from spoe to common 5335 - MINOR: Add binary encoding request header sample fetch 5336 - MINOR: proto-http: Add sample fetch wich returns all HTTP headers 5337 - MINOR: Add ModSecurity wrapper as contrib 5338 - BUG/MINOR: ssl: fix warnings about methods for opensslv1.1. 5339 - DOC: update RFC references 5340 - CONTRIB: tcploop: add action "X" to execute a command 5341 - MINOR: server: cli: Add server FQDNs to server-state file and stats socket. 5342 - BUG/MINOR: contrib/mod_security: fix build on FreeBSD 5343 - BUG/MINOR: checks: don't send proxy protocol with agent checks 5344 - MINOR: ssl: add prefer-client-ciphers 5345 - MEDIUM: ssl: revert ssl/tls version settings relative to default-server. 5346 - MEDIUM: ssl: ssl_methods implementation is reworked and factored for min/max tlsxx 5347 - MEDIUM: ssl: calculate the real min/max TLS version and find holes 5348 - MINOR: ssl: support TLSv1.3 for bind and server 5349 - MINOR: ssl: show methods supported by openssl 5350 - MEDIUM: ssl: add ssl-min-ver and ssl-max-ver parameters for bind and server 5351 - MEDIUM: ssl: ssl-min-ver and ssl-max-ver compatibility. 5352 - CLEANUP: retire obsoleted USE_GETSOCKNAME build option 5353 - BUG/MAJOR: dns: Broken kqueue events handling (BSD systems). 5354 - MINOR: sample: Add b64dec sample converter 5355 - BUG/MEDIUM: lua: segfault if a converter or a sample doesn't return anything 5356 - MINOR: cli: add ACCESS_LVL_MASK to store the access level 5357 - MINOR: cli: add 'expose-fd listeners' to pass listeners FDs 5358 - MEDIUM: proxy: zombify proxies only when the expose-fd socket is bound 5359 - MEDIUM: ssl: add basic support for OpenSSL crypto engine 5360 - MAJOR: ssl: add openssl async mode support 5361 - MEDIUM: ssl: handle multiple async engines 5362 - MINOR: boringssl: basic support for OCSP Stapling 5363 - MEDIUM: mworker: replace systemd mode by master worker mode 5364 - MEDIUM: mworker: handle reload and signals 5365 - MEDIUM: mworker: wait mode on reload failure 5366 - MEDIUM: mworker: try to guess the next stats socket to use with -x 5367 - MEDIUM: mworker: exit-on-failure option 5368 - MEDIUM: mworker: workers exit when the master leaves 5369 - DOC: add documentation for the master-worker mode 5370 - MEDIUM: systemd: Type=forking in unit file 5371 - MAJOR: systemd-wrapper: get rid of the wrapper 5372 - MINOR: log: Add logurilen tunable. 5373 - CLEANUP: server.c: missing prototype of srv_free_dns_resolution 5374 - MINOR: dns: smallest DNS fqdn size 5375 - MINOR: dns: functions to manage memory for a DNS resolution structure 5376 - MINOR: dns: parse_server() now uses srv_alloc_dns_resolution() 5377 - REORG: dns: dns_option structure, storage of hostname_dn 5378 - MINOR: dns: new snr_check_ip_callback function 5379 - MAJOR: dns: save a copy of the DNS response in struct resolution 5380 - MINOR: dns: implement a LRU cache for DNS resolutions 5381 - MINOR: dns: make 'ancount' field to match the number of saved records 5382 - MINOR: dns: introduce roundrobin into the internal cache (WIP) 5383 - MAJOR/REORG: dns: DNS resolution task and requester queues 5384 - BUILD: ssl: fix build with OPENSSL_NO_ENGINE 5385 - MINOR: Add Mod Defender integration as contrib 5386 - CLEANUP: str2mask return code comment: non-zero -> zero. 5387 - MINOR: tools: make debug_hexdump() use a const char for the string 5388 - MINOR: tools: make debug_hexdump() take a string prefix 5389 - CLEANUP: connection: remove unused CO_FL_WAIT_DATA 5390 53912017/04/03 : 1.8-dev1 5392 - BUG/MEDIUM: proxy: return "none" and "unknown" for unknown LB algos 5393 - BUG/MINOR: stats: make field_str() return an empty string on NULL 5394 - DOC: Spelling fixes 5395 - BUG/MEDIUM: http: Fix tunnel mode when the CONNECT method is used 5396 - BUG/MINOR: http: Keep the same behavior between 1.6 and 1.7 for tunneled txn 5397 - BUG/MINOR: filters: Protect args in macros HAS_DATA_FILTERS and IS_DATA_FILTER 5398 - BUG/MINOR: filters: Invert evaluation order of HTTP_XFER_BODY and XFER_DATA analyzers 5399 - BUG/MINOR: http: Call XFER_DATA analyzer when HTTP txn is switched in tunnel mode 5400 - BUG/MAJOR: stream: fix session abort on resource shortage 5401 - OPTIM: stream-int: don't disable polling anymore on DONT_READ 5402 - BUG/MINOR: cli: allow the backslash to be escaped on the CLI 5403 - BUG/MEDIUM: cli: fix "show stat resolvers" and "show tls-keys" 5404 - DOC: Fix map table's format 5405 - DOC: Added 51Degrees conv and fetch functions to documentation. 5406 - BUG/MINOR: http: don't send an extra CRLF after a Set-Cookie in a redirect 5407 - DOC: mention that req_tot is for both frontends and backends 5408 - BUG/MEDIUM: variables: some variable name can hide another ones 5409 - MINOR: lua: Allow argument for actions 5410 - BUILD: rearrange target files by build time 5411 - CLEANUP: hlua: just indent functions 5412 - MINOR: lua: give HAProxy variable access to the applets 5413 - BUG/MINOR: stats: fix be/sessions/max output in html stats 5414 - MINOR: proxy: Add fe_name/be_name fetchers next to existing fe_id/be_id 5415 - DOC: lua: Documentation about some entry missing 5416 - DOC: lua: Add documentation about variable manipulation from applet 5417 - MINOR: Do not forward the header "Expect: 100-continue" when the option http-buffer-request is set 5418 - DOC: Add undocumented argument of the trace filter 5419 - DOC: Fix some typo in SPOE documentation 5420 - MINOR: cli: Remove useless call to bi_putchk 5421 - BUG/MINOR: cli: be sure to always warn the cli applet when input buffer is full 5422 - MINOR: applet: Count number of (active) applets 5423 - MINOR: task: Rename run_queue and run_queue_cur counters 5424 - BUG/MEDIUM: stream: Save unprocessed events for a stream 5425 - BUG/MAJOR: Fix how the list of entities waiting for a buffer is handled 5426 - BUILD/MEDIUM: Fixing the build using LibreSSL 5427 - BUG/MEDIUM: lua: In some case, the return of sample-fetches is ignored (2) 5428 - SCRIPTS: git-show-backports: fix a harmless typo 5429 - SCRIPTS: git-show-backports: add -H to use the hash of the commit message 5430 - BUG/MINOR: stream-int: automatically release SI_FL_WAIT_DATA on SHUTW_NOW 5431 - CLEANUP: applet/lua: create a dedicated ->fcn entry in hlua_cli context 5432 - CLEANUP: applet/table: add an "action" entry in ->table context 5433 - CLEANUP: applet: remove the now unused appctx->private field 5434 - DOC: lua: documentation about time parser functions 5435 - DOC: lua: improve links 5436 - DOC: lua: section declared twice 5437 - MEDIUM: cli: 'show cli sockets' list the CLI sockets 5438 - BUG/MINOR: cli: "show cli sockets" wouldn't list all processes 5439 - BUG/MINOR: cli: "show cli sockets" would always report process 64 5440 - CLEANUP: lua: rename one of the lua appctx union 5441 - BUG/MINOR: lua/cli: bad error message 5442 - MEDIUM: lua: use memory pool for hlua struct in applets 5443 - MINOR: lua/signals: Remove Lua part from signals. 5444 - DOC: cli: show cli sockets 5445 - MINOR: cli: automatically enable a CLI I/O handler when there's no parser 5446 - CLEANUP: memory: remove the now unused cli_parse_show_pools() function 5447 - CLEANUP: applet: group all CLI contexts together 5448 - CLEANUP: stats: move a misplaced stats context initialization 5449 - MINOR: cli: add two general purpose pointers and integers in the CLI struct 5450 - MINOR: appctx/cli: remove the cli_socket entry from the appctx union 5451 - MINOR: appctx/cli: remove the env entry from the appctx union 5452 - MINOR: appctx/cli: remove the "be" entry from the appctx union 5453 - MINOR: appctx/cli: remove the "dns" entry from the appctx union 5454 - MINOR: appctx/cli: remove the "server_state" entry from the appctx union 5455 - MINOR: appctx/cli: remove the "tlskeys" entry from the appctx union 5456 - CONTRIB: tcploop: add limits.h to fix build issue with some compilers 5457 - MINOR/DOC: lua: just precise one thing 5458 - DOC: fix small typo in fe_id (backend instead of frontend) 5459 - BUG/MINOR: Fix the sending function in Lua's cosocket 5460 - BUG/MINOR: lua: memory leak executing tasks 5461 - BUG/MINOR: lua: bad return code 5462 - BUG/MINOR: lua: memleak when Lua/cli fails 5463 - MEDIUM: lua: remove Lua struct from session, and allocate it with memory pools 5464 - CLEANUP: haproxy: statify unexported functions 5465 - MINOR: haproxy: add a registration for build options 5466 - CLEANUP: wurfl: use the build options list to report it 5467 - CLEANUP: 51d: use the build options list to report it 5468 - CLEANUP: da: use the build options list to report it 5469 - CLEANUP: namespaces: use the build options list to report it 5470 - CLEANUP: tcp: use the build options list to report transparent modes 5471 - CLEANUP: lua: use the build options list to report it 5472 - CLEANUP: regex: use the build options list to report the regex type 5473 - CLEANUP: ssl: use the build options list to report the SSL details 5474 - CLEANUP: compression: use the build options list to report the algos 5475 - CLEANUP: auth: use the build options list to report its support 5476 - MINOR: haproxy: add a registration for post-check functions 5477 - CLEANUP: checks: make use of the post-init registration to start checks 5478 - CLEANUP: filters: use the function registration to initialize all proxies 5479 - CLEANUP: wurfl: make use of the late init registration 5480 - CLEANUP: 51d: make use of the late init registration 5481 - CLEANUP: da: make use of the late init registration code 5482 - MINOR: haproxy: add a registration for post-deinit functions 5483 - CLEANUP: wurfl: register the deinit function via the dedicated list 5484 - CLEANUP: 51d: register the deinitialization function 5485 - CLEANUP: da: register the deinitialization function 5486 - CLEANUP: wurfl: move global settings out of the global section 5487 - CLEANUP: 51d: move global settings out of the global section 5488 - CLEANUP: da: move global settings out of the global section 5489 - MINOR: cfgparse: add two new functions to check arguments count 5490 - MINOR: cfgparse: move parsing of "ca-base" and "crt-base" to ssl_sock 5491 - MEDIUM: cfgparse: move all tune.ssl.* keywords to ssl_sock 5492 - MEDIUM: cfgparse: move maxsslconn parsing to ssl_sock 5493 - MINOR: cfgparse: move parsing of ssl-default-{bind,server}-ciphers to ssl_sock 5494 - MEDIUM: cfgparse: move ssl-dh-param-file parsing to ssl_sock 5495 - MEDIUM: compression: move the zlib-specific stuff from global.h to compression.c 5496 - BUG/MEDIUM: ssl: properly reset the reused_sess during a forced handshake 5497 - BUG/MEDIUM: ssl: avoid double free when releasing bind_confs 5498 - BUG/MINOR: stats: fix be/sessions/current out in typed stats 5499 - MINOR: tcp-rules: check that the listener exists before updating its counters 5500 - MEDIUM: spoe: don't create a dummy listener for outgoing connections 5501 - MINOR: listener: move the transport layer pointer to the bind_conf 5502 - MEDIUM: move listener->frontend to bind_conf->frontend 5503 - MEDIUM: ssl: remote the proxy argument from most functions 5504 - MINOR: connection: add a new prepare_bind_conf() entry to xprt_ops 5505 - MEDIUM: ssl_sock: implement ssl_sock_prepare_bind_conf() 5506 - MINOR: connection: add a new destroy_bind_conf() entry to xprt_ops 5507 - MINOR: ssl_sock: implement ssl_sock_destroy_bind_conf() 5508 - MINOR: server: move the use_ssl field out of the ifdef USE_OPENSSL 5509 - MINOR: connection: add a minimal transport layer registration system 5510 - CLEANUP: connection: remove all direct references to raw_sock and ssl_sock 5511 - CLEANUP: connection: unexport raw_sock and ssl_sock 5512 - MINOR: connection: add new prepare_srv()/destroy_srv() entries to xprt_ops 5513 - MINOR: ssl_sock: implement and use prepare_srv()/destroy_srv() 5514 - CLEANUP: ssl: move tlskeys_finalize_config() to a post_check callback 5515 - CLEANUP: ssl: move most ssl-specific global settings to ssl_sock.c 5516 - BUG/MINOR: backend: nbsrv() should return 0 if backend is disabled 5517 - BUG/MEDIUM: ssl: for a handshake when server-side SNI changes 5518 - BUG/MINOR: systemd: potential zombie processes 5519 - DOC: Add timings events schemas 5520 - BUILD: lua: build failed on FreeBSD. 5521 - MINOR: samples: add xx-hash functions 5522 - MEDIUM: regex: pcre2 support 5523 - BUG/MINOR: option prefer-last-server must be ignored in some case 5524 - MINOR: stats: Support "select all" for backend actions 5525 - BUG/MINOR: sample-fetches/stick-tables: bad type for the sample fetches sc*_get_gpt0 5526 - BUG/MAJOR: channel: Fix the definition order of channel analyzers 5527 - BUG/MINOR: http: report real parser state in error captures 5528 - BUILD: scripts: automatically update the branch in version.h when releasing 5529 - MINOR: tools: add a generic hexdump function for debugging 5530 - BUG/MAJOR: http: fix risk of getting invalid reports of bad requests 5531 - MINOR: http: custom status reason. 5532 - MINOR: connection: add sample fetch "fc_rcvd_proxy" 5533 - BUG/MINOR: config: emit a warning if http-reuse is enabled with incompatible options 5534 - BUG/MINOR: tools: fix off-by-one in port size check 5535 - BUG/MEDIUM: server: consider AF_UNSPEC as a valid address family 5536 - MEDIUM: server: split the address and the port into two different fields 5537 - MINOR: tools: make str2sa_range() return the port in a separate argument 5538 - MINOR: server: take the destination port from the port field, not the addr 5539 - MEDIUM: server: disable protocol validations when the server doesn't resolve 5540 - BUG/MEDIUM: tools: do not force an unresolved address to AF_INET:0.0.0.0 5541 - BUG/MINOR: ssl: EVP_PKEY must be freed after X509_get_pubkey usage 5542 - BUG/MINOR: ssl: assert on SSL_set_shutdown with BoringSSL 5543 - MINOR: Use "500 Internal Server Error" for 500 error/status code message. 5544 - MINOR: proto_http.c 502 error txt typo. 5545 - DOC: add deprecation notice to "block" 5546 - MINOR: compression: fix -vv output without zlib/slz 5547 - BUG/MINOR: Reset errno variable before calling strtol(3) 5548 - MINOR: ssl: don't show prefer-server-ciphers output 5549 - OPTIM/MINOR: config: Optimize fullconn automatic computation loading configuration 5550 - BUG/MINOR: stream: Fix how backend-specific analyzers are set on a stream 5551 - MAJOR: ssl: bind configuration per certificat 5552 - MINOR: ssl: add curve suite for ECDHE negotiation 5553 - MINOR: checks: Add agent-addr config directive 5554 - MINOR: cli: Add possiblity to change agent config via CLI/socket 5555 - MINOR: doc: Add docs for agent-addr configuration variable 5556 - MINOR: doc: Add docs for agent-addr and agent-send CLI commands 5557 - BUILD: ssl: fix to build (again) with boringssl 5558 - BUILD: ssl: fix build on OpenSSL 1.0.0 5559 - BUILD: ssl: silence a warning reported for ERR_remove_state() 5560 - BUILD: ssl: eliminate warning with OpenSSL 1.1.0 regarding RAND_pseudo_bytes() 5561 - BUILD: ssl: kill a build warning introduced by BoringSSL compatibility 5562 - BUG/MEDIUM: tcp: don't poll for write when connect() succeeds 5563 - BUG/MINOR: unix: fix connect's polling in case no data are scheduled 5564 - MINOR: server: extend the flags to 32 bits 5565 - BUG/MINOR: lua: Map.end are not reliable because "end" is a reserved keyword 5566 - MINOR: dns: give ability to dns_init_resolvers() to close a socket when requested 5567 - BUG/MAJOR: dns: restart sockets after fork() 5568 - MINOR: chunks: implement a simple dynamic allocator for trash buffers 5569 - BUG/MEDIUM: http: prevent redirect from overwriting a buffer 5570 - BUG/MEDIUM: filters: Do not truncate HTTP response when body length is undefined 5571 - BUG/MEDIUM: http: Prevent replace-header from overwriting a buffer 5572 - BUG/MINOR: http: Return an error when a replace-header rule failed on the response 5573 - BUG/MINOR: sendmail: The return of vsnprintf is not cleanly tested 5574 - BUG/MAJOR: ssl: fix a regression in ssl_sock_shutw() 5575 - BUG/MAJOR: lua segmentation fault when the request is like 'GET ?arg=val HTTP/1.1' 5576 - BUG/MEDIUM: config: reject anything but "if" or "unless" after a use-backend rule 5577 - MINOR: http: don't close when redirect location doesn't start with "/" 5578 - MEDIUM: boringssl: support native multi-cert selection without bundling 5579 - BUG/MEDIUM: ssl: fix verify/ca-file per certificate 5580 - BUG/MEDIUM: ssl: switchctx should not return SSL_TLSEXT_ERR_ALERT_WARNING 5581 - MINOR: ssl: removes SSL_CTX_set_ssl_version call and cleanup CTX creation. 5582 - BUILD: ssl: fix build with -DOPENSSL_NO_DH 5583 - MEDIUM: ssl: add new sample-fetch which captures the cipherlist 5584 - MEDIUM: ssl: remove ssl-options from crt-list 5585 - BUG/MEDIUM: ssl: in bind line, ssl-options after 'crt' are ignored. 5586 - BUG/MINOR: ssl: fix cipherlist captures with sustainable SSL calls 5587 - MINOR: ssl: improved cipherlist captures 5588 - BUG/MINOR: spoe: Fix soft stop handler using a specific id for spoe filters 5589 - BUG/MINOR: spoe: Fix parsing of arguments in spoe-message section 5590 - MAJOR: spoe: Add support of pipelined and asynchronous exchanges with agents 5591 - MINOR: spoe: Add support for pipelining/async capabilities in the SPOA example 5592 - MINOR: spoe: Remove SPOE details from the appctx structure 5593 - MINOR: spoe: Add status code in error variable instead of hardcoded value 5594 - MINOR: spoe: Send a log message when an error occurred during event processing 5595 - MINOR: spoe: Check the scope of sample fetches used in SPOE messages 5596 - MEDIUM: spoe: Be sure to wakeup the good entity waiting for a buffer 5597 - MINOR: spoe: Use the min of all known max_frame_size to encode messages 5598 - MAJOR: spoe: Add support of payload fragmentation in NOTIFY frames 5599 - MINOR: spoe: Add support for fragmentation capability in the SPOA example 5600 - MAJOR: spoe: refactor the filter to clean up the code 5601 - MINOR: spoe: Handle NOTIFY frames cancellation using ABORT bit in ACK frames 5602 - REORG: spoe: Move struct and enum definitions in dedicated header file 5603 - REORG: spoe: Move low-level encoding/decoding functions in dedicated header file 5604 - MINOR: spoe: Improve implementation of the payload fragmentation 5605 - MINOR: spoe: Add support of negation for options in SPOE configuration file 5606 - MINOR: spoe: Add "pipelining" and "async" options in spoe-agent section 5607 - MINOR: spoe: Rely on alertif_too_many_arg during configuration parsing 5608 - MINOR: spoe: Add "send-frag-payload" option in spoe-agent section 5609 - MINOR: spoe: Add "max-frame-size" statement in spoe-agent section 5610 - DOC: spoe: Update SPOE documentation to reflect recent changes 5611 - MINOR: config: warn when some HTTP rules are used in a TCP proxy 5612 - BUG/MEDIUM: ssl: Clear OpenSSL error stack after trying to parse OCSP file 5613 - BUG/MEDIUM: cli: Prevent double free in CLI ACL lookup 5614 - BUG/MINOR: Fix "get map <map> <value>" CLI command 5615 - MINOR: Add nbsrv sample converter 5616 - CLEANUP: Replace repeated code to count usable servers with be_usable_srv() 5617 - MINOR: Add hostname sample fetch 5618 - CLEANUP: Remove comment that's no longer valid 5619 - MEDIUM: http_error_message: txn->status / http_get_status_idx. 5620 - MINOR: http-request tarpit deny_status. 5621 - CLEANUP: http: make http_server_error() not set the status anymore 5622 - MEDIUM: stats: Add JSON output option to show (info|stat) 5623 - MEDIUM: stats: Add show json schema 5624 - BUG/MAJOR: connection: update CO_FL_CONNECTED before calling the data layer 5625 - MINOR: server: Add dynamic session cookies. 5626 - MINOR: cli: Let configure the dynamic cookies from the cli. 5627 - BUG/MINOR: checks: attempt clean shutw for SSL check 5628 - CONTRIB: tcploop: make it build on FreeBSD 5629 - CONTRIB: tcploop: fix time format to silence build warnings 5630 - CONTRIB: tcploop: report action 'K' (kill) in usage message 5631 - CONTRIB: tcploop: fix connect's address length 5632 - CONTRIB: tcploop: use the trash instead of NULL for recv() 5633 - BUG/MEDIUM: listener: do not try to rebind another process' socket 5634 - BUG/MEDIUM server: Fix crash when dynamic is defined, but not key is provided. 5635 - CLEANUP: config: Typo in comment. 5636 - BUG/MEDIUM: filters: Fix channels synchronization in flt_end_analyze 5637 - TESTS: add a test configuration to stress handshake combinations 5638 - BUG/MAJOR: stream-int: do not depend on connection flags to detect connection 5639 - BUG/MEDIUM: connection: ensure to always report the end of handshakes 5640 - MEDIUM: connection: don't test for CO_FL_WAKE_DATA 5641 - CLEANUP: connection: completely remove CO_FL_WAKE_DATA 5642 - BUG: payload: fix payload not retrieving arbitrary lengths 5643 - BUILD: ssl: simplify SSL_CTX_set_ecdh_auto compatibility 5644 - BUILD: ssl: fix OPENSSL_NO_SSL_TRACE for boringssl and libressl 5645 - BUG/MAJOR: http: fix typo in http_apply_redirect_rule 5646 - MINOR: doc: 2.4. Examples should be 2.5. Examples 5647 - BUG/MEDIUM: stream: fix client-fin/server-fin handling 5648 - MINOR: fd: add a new flag HAP_POLL_F_RDHUP to struct poller 5649 - BUG/MINOR: raw_sock: always perfom the last recv if RDHUP is not available 5650 - OPTIM: poll: enable support for POLLRDHUP 5651 - MINOR: kqueue: exclusively rely on the kqueue returned status 5652 - MEDIUM: kqueue: take care of EV_EOF to improve polling status accuracy 5653 - MEDIUM: kqueue: only set FD_POLL_IN when there are pending data 5654 - DOC/MINOR: Fix typos in proxy protocol doc 5655 - DOC: Protocol doc: add checksum, TLV type ranges 5656 - DOC: Protocol doc: add SSL TLVs, rename CHECKSUM 5657 - DOC: Protocol doc: add noop TLV 5658 - MEDIUM: global: add a 'hard-stop-after' option to cap the soft-stop time 5659 - MINOR: dns: improve DNS response parsing to use as many available records as possible 5660 - BUG/MINOR: cfgparse: loop in tracked servers lists not detected by check_config_validity(). 5661 - MINOR: server: irrelevant error message with 'default-server' config file keyword. 5662 - MINOR: server: Make 'default-server' support 'backup' keyword. 5663 - MINOR: server: Make 'default-server' support 'check-send-proxy' keyword. 5664 - CLEANUP: server: code alignement. 5665 - MINOR: server: Make 'default-server' support 'non-stick' keyword. 5666 - MINOR: server: Make 'default-server' support 'send-proxy' and 'send-proxy-v2 keywords. 5667 - MINOR: server: Make 'default-server' support 'check-ssl' keyword. 5668 - MINOR: server: Make 'default-server' support 'force-sslv3' and 'force-tlsv1[0-2]' keywords. 5669 - CLEANUP: server: code alignement. 5670 - MINOR: server: Make 'default-server' support 'no-ssl*' and 'no-tlsv*' keywords. 5671 - MINOR: server: Make 'default-server' support 'ssl' keyword. 5672 - MINOR: server: Make 'default-server' support 'send-proxy-v2-ssl*' keywords. 5673 - CLEANUP: server: code alignement. 5674 - MINOR: server: Make 'default-server' support 'verify' keyword. 5675 - MINOR: server: Make 'default-server' support 'verifyhost' setting. 5676 - MINOR: server: Make 'default-server' support 'check' keyword. 5677 - MINOR: server: Make 'default-server' support 'track' setting. 5678 - MINOR: server: Make 'default-server' support 'ca-file', 'crl-file' and 'crt' settings. 5679 - MINOR: server: Make 'default-server' support 'redir' keyword. 5680 - MINOR: server: Make 'default-server' support 'observe' keyword. 5681 - MINOR: server: Make 'default-server' support 'cookie' keyword. 5682 - MINOR: server: Make 'default-server' support 'ciphers' keyword. 5683 - MINOR: server: Make 'default-server' support 'tcp-ut' keyword. 5684 - MINOR: server: Make 'default-server' support 'namespace' keyword. 5685 - MINOR: server: Make 'default-server' support 'source' keyword. 5686 - MINOR: server: Make 'default-server' support 'sni' keyword. 5687 - MINOR: server: Make 'default-server' support 'addr' keyword. 5688 - MINOR: server: Make 'default-server' support 'disabled' keyword. 5689 - MINOR: server: Add 'no-agent-check' server keyword. 5690 - DOC: server: Add docs for "server" and "default-server" new "no-*" and other settings. 5691 - MINOR: doc: fix use-server example (imap vs mail) 5692 - BUG/MEDIUM: tcp: don't require privileges to bind to device 5693 - BUILD: make the release script use shortlog for the final changelog 5694 - BUILD: scripts: fix typo in announce-release error message 5695 - CLEANUP: time: curr_sec_ms doesn't need to be exported 5696 - BUG/MEDIUM: server: Wrong server default CRT filenames initialization. 5697 - BUG/MEDIUM: peers: fix buffer overflow control in intdecode. 5698 - BUG/MEDIUM: buffers: Fix how input/output data are injected into buffers 5699 - BUG/MINOR: http: Fix conditions to clean up a txn and to handle the next request 5700 - CLEANUP: http: Remove channel_congested function 5701 - CLEANUP: buffers: Remove buffer_bounce_realign function 5702 - CLEANUP: buffers: Remove buffer_contig_area and buffer_work_area functions 5703 - MINOR: http: remove useless check on HTTP_MSGF_XFER_LEN for the request 5704 - MINOR: http: Add debug messages when HTTP body analyzers are called 5705 - BUG/MEDIUM: http: Fix blocked HTTP/1.0 responses when compression is enabled 5706 - BUG/MINOR: filters: Don't force the stream's wakeup when we wait in flt_end_analyze 5707 - DOC: fix parenthesis and add missing "Example" tags 5708 - DOC: update the contributing file 5709 - DOC: log-format/tcplog/httplog update 5710 - MINOR: config parsing: add warning when log-format/tcplog/httplog is overriden in "defaults" sections 5711 57122016/11/25 : 1.8-dev0 5713 57142016/11/25 : 1.7.0 5715 - SCRIPTS: make publish-release also copy the new SPOE doc 5716 - BUILD: http: include types/sample.h in proto_http.h 5717 - BUILD: debug/flags: remove test for SF_COMP_READY 5718 - CONTRIB: debug/flags: add check for SF_ERR_CHK_PORT 5719 - MINOR: lua: add function which return true if the channel is full. 5720 - MINOR: lua: add ip addresses and network manipulation function 5721 - CONTRIB: tcploop: scriptable TCP I/O for debugging purposes 5722 - CONTRIB: tcploop: implement fork() 5723 - CONTRIB: tcploop: implement logging when called with -v 5724 - CONTRIB: tcploop: update the usage output 5725 - CONTRIB: tcploop: support sending plain strings 5726 - CONTRIB: tcploop: don't report failed send() or recv() 5727 - CONTRIB: tcploop: add basic loops via a jump instruction 5728 - BUG/MEDIUM: channel: bad unlikely macro 5729 - CLEANUP: lua: move comment 5730 - CLEANUP: lua: control executed twice 5731 - BUG/MEDIUM: ssl: Store certificate filename in a variable 5732 - BUG/MINOR: ssl: Print correct filename when error occurs reading OCSP 5733 - CLEANUP: ssl: Remove goto after return dead code 5734 - CLEANUP: ssl: Fix bind keywords name in comments 5735 - DOC: ssl: Use correct wording for ca-sign-pass 5736 - CLEANUP: lua: avoid directly calling getsockname/getpeername() 5737 - BUG/MINOR: stick-table: handle out-of-memory condition gracefully 5738 - MINOR: cli: add private pointer and release function 5739 - MEDIUM: lua: Add cli handler for Lua 5740 - BUG/MEDIUM: connection: check the control layer before stopping polling 5741 - DEBUG: connection: mark the closed FDs with a value that is easier to detect 5742 - BUG/MEDIUM: stick-table: fix regression caused by recent fix for out-of-memory 5743 - BUG/MINOR: cli: properly decrement ref count on tables during failed dumps 5744 - BUG/MEDIUM: lua: In some case, the return of sample-fetche is ignored 5745 - MINOR: filters: Add check_timeouts callback to handle timers expiration on streams 5746 - MINOR: spoe: Add 'timeout processing' option to limit time to process an event 5747 - MINOR: spoe: Remove useless 'timeout ack' option 5748 - MINOR: spoe: Add 'option continue-on-error' statement in spoe-agent section 5749 - MINOR: spoe: Add "maxconnrate" and "maxerrrate" statements 5750 - MINOR: spoe: Add "option set-on-error" statement 5751 - MINOR: stats: correct documentation of process ID for typed output 5752 - BUILD: contrib: fix ip6range build on Centos 7 5753 - BUILD: fix build on Solaris 10/11 5754 - BUG/MINOR: cli: fix pointer size when reporting data/transport layer name 5755 - BUG/MINOR: cli: dequeue from the proxy when changing a maxconn 5756 - BUG/MINOR: cli: wake up the CLI's task after a timeout update 5757 - MINOR: connection: add a few functions to report the data and xprt layers' names 5758 - MINOR: connection: add names for transport and data layers 5759 - REORG: cli: split dumpstats.c in src/cli.c and src/stats.c 5760 - REORG: cli: split dumpstats.h in stats.h and cli.h 5761 - REORG: cli: move ssl CLI functions to ssl_sock.c 5762 - REORG: cli: move map and acl code to map.c 5763 - REORG: cli: move show stat resolvers to dns.c 5764 - MINOR: cli: create new function cli_has_level() to validate permissions 5765 - MINOR: server: create new function cli_find_server() to find a server 5766 - MINOR: proxy: create new function cli_find_frontend() to find a frontend 5767 - REORG: cli: move 'set server' to server.c 5768 - REORG: cli: move 'show pools' to memory.c 5769 - REORG: cli: move 'show servers' to proxy.c 5770 - REORG: cli: move 'show sess' to stream.c 5771 - REORG: cli: move 'show backend' to proxy.c 5772 - REORG: cli: move get/set weight to server.c 5773 - REORG: cli: move "show stat" to stats.c 5774 - REORG: cli: move "show info" to stats.c 5775 - REORG: cli: move dump_text(), dump_text_line(), and dump_binary() to standard.c 5776 - REORG: cli: move table dump/clear/set to stick_table.c 5777 - REORG: cli: move "show errors" out of cli.c 5778 - REORG: cli: make "show env" also use the generic keyword registration 5779 - REORG: cli: move "set timeout" to its own handler 5780 - REORG: cli: move "clear counters" to stats.c 5781 - REORG: cli: move "set maxconn global" to its own handler 5782 - REORG: cli: move "set maxconn server" to server.c 5783 - REORG: cli: move "set maxconn frontend" to proxy.c 5784 - REORG: cli: move "shutdown sessions server" to stream.c 5785 - REORG: cli: move "shutdown session" to stream.c 5786 - REORG: cli: move "shutdown frontend" to proxy.c 5787 - REORG: cli: move "{enable|disable} frontend" to proxy.c 5788 - REORG: cli: move "{enable|disable} server" to server.c 5789 - REORG: cli: move "{enable|disable} health" to server.c 5790 - REORG: cli: move "{enable|disable} agent" to server.c 5791 - REORG: cli: move the "set rate-limit" functions to their own parser 5792 - CLEANUP: cli: rename STAT_CLI_* to CLI_ST_* 5793 - CLEANUP: cli: simplify the request parser a little bit 5794 - CLEANUP: cli: remove assignments to st0 and st2 in keyword parsers 5795 - BUILD: server: remove a build warning introduced by latest series 5796 - BUG/MINOR: log-format: uncatched memory allocation functions 5797 - CLEANUP: log-format: useless file and line in json converter 5798 - CLEANUP/MINOR: log-format: unexport functions parse_logformat_var_args() and parse_logformat_var() 5799 - CLEANUP: log-format: fix return code of the function parse_logformat_var() 5800 - CLEANUP: log-format: fix return code of function parse_logformat_var_args() 5801 - CLEANUP: log-format: remove unused arguments 5802 - MEDIUM: log-format: strict parsing and enable fail 5803 - MEDIUM: log-format/conf: take into account the parse_logformat_string() return code 5804 - BUILD: ssl: make the SSL layer build again with openssl 0.9.8 5805 - BUILD: vars: remove a build warning on vars.c 5806 - MINOR: lua: add utility function for check boolean argument 5807 - MINOR: lua: Add tokenize function. 5808 - BUG/MINOR: conf: calloc untested 5809 - MINOR: http/conf: store the use_backend configuration file and line for logs 5810 - MEDIUM: log-format: Use standard HAProxy log system to report errors 5811 - CLEANUP: sample: report "converter" instead of "conv method" in error messages 5812 - BUG: spoe: Fix parsing of SPOE actions in ACK frames 5813 - MINOR: cli: make "show stat" support a proxy name 5814 - MINOR: cli: make "show errors" support a proxy name 5815 - MINOR: cli: make "show errors" capable of dumping only request or response 5816 - BUG/MINOR: freq-ctr: make swrate_add() support larger values 5817 - CLEANUP: counters: move from 3 types to 2 types 5818 - CLEANUP: cfgparse: cascade the warnif_misplaced_* rules 5819 - REORG: tcp-rules: move tcp rules processing to their own file 5820 - REORG: stkctr: move all the stick counters processing to stick-tables.c 5821 - DOC: update the roadmap file with the latest changes 5822 58232016/11/09 : 1.7-dev6 5824 - DOC: fix the entry for hash-balance-factor config option 5825 - DOC: Fix typo in description of `-st` parameter in man page 5826 - CLEANUP: cfgparse: Very minor spelling correction 5827 - MINOR: examples: Update haproxy.spec URLs to haproxy.org 5828 - BUG/MEDIUM: peers: on shutdown, wake up the appctx, not the stream 5829 - BUG/MEDIUM: peers: fix use after free in peer_session_create() 5830 - MINOR: peers: make peer_session_forceshutdown() use the appctx and not the stream 5831 - MINOR: peers: remove the pointer to the stream 5832 - BUG/MEDIUM: systemd-wrapper: return correct exit codes 5833 - DOC: stats: provide state details for show servers state 5834 - MEDIUM: tools: make str2ip2() preserve existing ports 5835 - CLEANUP: tools: make ipcpy() preserve the original port 5836 - OPTIM: http: move all http character classs tables into a single one 5837 - OPTIM: http: improve parsing performance of long header lines 5838 - OPTIM: http: improve parsing performance of long URIs 5839 - OPTIM: http: optimize lookup of comma and quote in header values 5840 - BUG/MEDIUM: srv-state: properly restore the DRAIN state 5841 - BUG/MINOR: srv-state: allow to have both CMAINT and FDRAIN flags 5842 - MINOR: server: do not emit warnings/logs/alerts on server state changes at boot 5843 - BUG/MEDIUM: servers: properly propagate the maintenance states during startup 5844 - MEDIUM: wurfl: add Scientiamobile WURFL device detection module 5845 - DOC: move the device detection modules documentation to their own files 5846 - CLEANUP: wurfl: reduce exposure in the rest of the code 5847 - MEDIUM: ssl: Add support for OpenSSL 1.1.0 5848 - MINOR: stream: make option contstats usable again 5849 - MEDIUM: tools: make str2sa_range() return the FQDN even when not resolving 5850 - MINOR: init: move apply_server_state in haproxy.c before MODE_CHECK 5851 - MAJOR: server: postpone address resolution 5852 - MINOR: new srv_admin flag: SRV_ADMF_RMAINT 5853 - MINOR: server: indicate in the logs when RMAINT is cleared 5854 - MINOR: stats: indicate it when a server is down due to resolution 5855 - MINOR: server: make srv_set_admin_state() capable of telling why this happens 5856 - MINOR: dns: implement extra 'hold' timers. 5857 - MAJOR: dns: runtime resolution can change server admin state 5858 - MEDIUM: cli: leave the RMAINT state when setting an IP address on the CLI 5859 - MEDIUM: server: add a new init-addr server line setting 5860 - MEDIUM: server: make use of init-addr 5861 - MINOR: server: implement init-addr none 5862 - MEDIUM: server: make libc resolution failure non-fatal 5863 - MINOR: server: add support for explicit numeric address in init-addr 5864 - DOC: add some documentation for the "init-addr" server keyword 5865 - MINOR: init: add -dr to ignore server address resolution failures 5866 - MEDIUM: server: do not restrict anymore usage of IP address from the state file 5867 - BUG: vars: Fix 'set-var' converter because of a typo 5868 - CLEANUP: remove last references to 'ruleset' section 5869 - MEDIUM: filters: Add attch/detach and stream_set_backend callbacks 5870 - MINOR: filters: Update filters documentation accordingly to recent changes 5871 - MINOR: filters: Call stream_set_backend callbacks before updating backend stats 5872 - MINOR: filters: Remove backend filters attached to a stream only for HTTP streams 5873 - MINOR: flt_trace: Add hexdump option to dump forwarded data 5874 - MINOR: cfgparse: Add functions to backup and restore registered sections 5875 - MINOR: cfgparse: Parse scope lines and save the last one parsed 5876 - REORG: sample: move code to release a sample expression in sample.c 5877 - MINOR: vars: Allow '.' in variable names 5878 - MINOR: vars: Add vars_set_by_name_ifexist function 5879 - MEDIUM: vars: Add a per-process scope for variables 5880 - MINOR: vars: Add 'unset-var' action/converter 5881 - MAJOR: spoe: Add an experimental Stream Processing Offload Engine 5882 - MINOR: spoe: add random ip-reputation service as SPOA example 5883 - MINOR: spoe/checks: Add support for SPOP health checks 5884 - DOC: update ROADMAP file 5885 58862016/10/25 : 1.7-dev5 5887 - MINOR: cfgparse: few memory leaks fixes. 5888 - MEDIUM: log: Decompose %Tq in %Th %Ti %TR 5889 - CLEANUP: logs: remove unused log format field definitions 5890 - BUILD/MAJOR:updated 51d Trie implementation to incorperate latest update to 51Degrees.c 5891 - BUG/MAJOR: stream: properly mark the server address as unset on connect retry 5892 - CLEANUP: proto_http: Removing useless variable assignation 5893 - CLEANUP: dumpstats: Removing useless variables allocation 5894 - CLEANUP: dns: Removing usless variable & assignation 5895 - BUG/MINOR: payload: fix SSLv2 version parser 5896 - MINOR: cli: allow the semi-colon to be escaped on the CLI 5897 - MINOR: cli: change a server health check port through the stats socket 5898 - BUG/MINOR: Fix OSX compilation errors 5899 - MAJOR: check: find out which port to use for health check at run time 5900 - MINOR: server: introduction of 3 new server flags 5901 - MINOR: new update_server_addr_port() function to change both server's ADDR and service PORT 5902 - MINOR: cli: ability to change a server's port 5903 - CLEANUP/MINOR dns: comment do not follow up code update 5904 - MINOR: chunk: new strncat function 5905 - MINOR: dns: wrong DNS_MAX_UDP_MESSAGE value 5906 - MINOR: dns: new MAX values 5907 - MINOR: dns: new macro to compute DNS header size 5908 - MINOR: dns: new DNS structures to store received packets 5909 - MEDIUM: dns: new DNS response parser 5910 - MINOR: dns: query type change when last record is a CNAME 5911 - MINOR: dns: proper domain name validation when receiving DNS response 5912 - MINOR: dns: comments in types/dns.h about structures endianness 5913 - BUG/MINOR: displayed PCRE version is running release 5914 - MINOR: show Built with PCRE version 5915 - MINOR: show Running on zlib version 5916 - MEDIUM: make SO_REUSEPORT configurable 5917 - MINOR: enable IP_BIND_ADDRESS_NO_PORT on backend connections 5918 - BUG/MEDIUM: http/compression: Fix how chunked data are copied during the HTTP body parsing 5919 - BUG/MINOR: stats: report the correct conn_time in backend's html output 5920 - BUG/MEDIUM: dns: don't randomly crash on out-of-memory 5921 - MINOR: Add fe_req_rate sample fetch 5922 - MEDIUM: peers: Fix a peer stick-tables synchronization issue. 5923 - MEDIUM: cli: register CLI keywords with cli_register_kw() 5924 - BUILD: Make use of accept4() on OpenBSD. 5925 - MINOR: tcp: make set-src/set-src-port and set-dst/set-dst-port commutative 5926 - DOC: fix missed entry for "set-{src,dst}{,-port}" 5927 - BUG/MINOR: vars: use sess and not s->sess in action_store() 5928 - BUG/MINOR: vars: make smp_fetch_var() more robust against misuses 5929 - BUG/MINOR: vars: smp_fetch_var() doesn't depend on HTTP but on the session 5930 - MINOR: stats: output dcon 5931 - CLEANUP: tcp rules: mention everywhere that tcp-conn rules are L4 5932 - MINOR: counters: add new fields for denied_sess 5933 - MEDIUM: tcp: add registration and processing of TCP L5 rules 5934 - MINOR: stats: emit dses 5935 - DOC: document tcp-request session 5936 - MINOR: ssl: add debug traces 5937 - BUILD/CLEANUP: ssl: Check BIO_reset() return code 5938 - BUG/MINOR: ssl: Check malloc return code 5939 - BUG/MINOR: ssl: prevent multiple entries for the same certificate 5940 - BUG/MINOR: systemd: make the wrapper return a non-null status code on error 5941 - BUG/MINOR: systemd: always restore signals before execve() 5942 - BUG/MINOR: systemd: check return value of calloc() 5943 - MINOR: systemd: report it when execve() fails 5944 - BUG/MEDIUM: systemd: let the wrapper know that haproxy has completed or failed 5945 - MINOR: proxy: add 'served' field to proxy, equal to total of all servers' 5946 - MINOR: backend: add hash-balance-factor option for hash-type consistent 5947 - MINOR: server: compute a "cumulative weight" to allow chash balancing to hit its target 5948 - MEDIUM: server: Implement bounded-load hash algorithm 5949 - SCRIPTS: make git-show-backports also dump a "git show" command 5950 - MINOR: build: Allow linking to device-atlas library file 5951 - MINOR: stats: Escape equals sign on socket dump 5952 59532016/08/14 : 1.7-dev4 5954 - MINOR: add list_append_word function 5955 - MEDIUM: init: use list_append_word in haproxy.c 5956 - MEDIUM: init: allow directory as argument of -f 5957 - CLEANUP: config: detect double registration of a config section 5958 - MINOR: log: add the %Td log-format specifier 5959 - MEDIUM: filters: Move HTTP headers filtering in its own callback 5960 - MINOR: filters: Simplify calls to analyzers using 2 new macros 5961 - MEDIUM: filters: Add pre and post analyzer callbacks 5962 - DOC: filters: Update the filters documentation accordingly to recent changes 5963 - BUG/MEDIUM: init: don't use environment locale 5964 - SCRIPTS: teach git-show-backports how to report upstream commits 5965 - SCRIPTS: make git-show-backports capable of limiting its history 5966 - BUG/MAJOR: fix listening IP address storage for frontends 5967 - BUG/MINOR: fix listening IP address storage for frontends (cont) 5968 - DOC: Fix typo so fetch is properly parsed by Cyril's converter 5969 - BUG/MAJOR: http: fix breakage of "reqdeny" causing random crashes 5970 - BUG/MEDIUM: stick-tables: fix breakage in table converters 5971 - MINOR: stick-table: change all stick-table converters' inputs to SMP_T_ANY 5972 - BUG/MEDIUM: dns: unbreak DNS resolver after header fix 5973 - BUILD: fix build on Solaris 11 5974 - BUG/MEDIUM: config: fix multiple declaration of section parsers 5975 - BUG/MEDIUM: stats: show servers state may show an servers from another backend 5976 - BUG/MEDIUM: fix risk of segfault with "show tls-keys" 5977 - MEDIUM: dumpstats: 'show tls-keys' is now able to show secrets 5978 - DOC: update doc about tls-tickets-keys dump 5979 - MEDIUM: tcp: add 'set-src' to 'tcp-request connection' 5980 - MINOR: set the CO_FL_ADDR_FROM_SET flags with 'set-src' 5981 - MEDIUM: tcp/http: add 'set-src-port' action 5982 - MEDIUM: tcp/http: new set-dst/set-dst-port actions 5983 - BUG/MEDIUM: sticktables: segfault in some configuration error cases 5984 - BUILD/MEDIUM: rebuild everything when an include file is changed 5985 - BUILD/MEDIUM: force a full rebuild if some build options change 5986 - BUG/MEDIUM: lua: converters doesn't work 5987 - BUG/MINOR: http: add-header: header name copied twice 5988 - BUG/MEDIUM: http: add-header: buffer overwritten 5989 - BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params() 5990 - MINOR: stream: export the function 'smp_create_src_stkctr' 5991 - BUG/MEDIUM: dumpstats: undefined behavior in stats_tlskeys_list() 5992 - MEDIUM: dumpstats: make stats_tlskeys_list() yield-aware during tls-keys dump 5993 - BUG/MINOR: http: url32+src should use the big endian version of url32 5994 - BUG/MINOR: http: url32+src should check cli_conn before using it 5995 - DOC: http: add documentation for url32 and url32+src 5996 - BUG/MINOR: fix http-response set-log-level parsing error 5997 - MINOR: systemd: Use variable for config and pidfile paths 5998 - MINOR: systemd: Perform sanity check on config before reload 5999 - MEDIUM: ssl: support SNI filters with multicerts 6000 - MINOR: ssl: crt-list parsing factor 6001 - BUILD: ssl: fix typo causing a build failure in the multicert patch 6002 - MINOR: listener: add the "accept-netscaler-cip" option to the "bind" keyword 6003 - MINOR: tcp: add "tcp-request connection expect-netscaler-cip layer4" 6004 - BUG/MINOR: init: always ensure that global.rlimit_nofile matches actual limits 6005 - BUG/MINOR: init: ensure that FD limit is raised to the max allowed 6006 - BUG/MEDIUM: external-checks: close all FDs right after the fork() 6007 - BUG/MAJOR: external-checks: use asynchronous signal delivery 6008 - BUG/MINOR: external-checks: do not unblock undesired signals 6009 - CLEANUP: external-check: don't block/unblock SIGCHLD when manipulating the list 6010 - BUG/MEDIUM: filters: Fix data filtering when data are modified 6011 - BUG/MINOR: filters: Fix HTTP parsing when a filter loops on data forwarding 6012 - BUG/MINOR: srv-state: fix incorrect output of state file 6013 - BUG/MINOR: ssl: close ssl key file on error 6014 - BUG/MINOR: http: fix misleading error message for response captures 6015 - BUG/BUILD: don't automatically run "make" on "make install" 6016 - DOC: add missing doc for http-request deny [deny_status <status>] 6017 - CLEANUP: dumpstats: u64 field is an unsigned type. 6018 - BUG/MEDIUM: http: unbreak uri/header/url_param hashing 6019 - BUG/MINOR: Rework slightly commit 9962f8fc to clean code and avoid mistakes 6020 - MINOR: new function my_realloc2 = realloc + free upon failure 6021 - CLEANUP: fixed some usages of realloc leading to memory leak 6022 - Revert "BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()" 6023 - CLEANUP: connection: using internal struct to hold source and dest port. 6024 - DOC: spelling fixes 6025 - BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params() 6026 - BUG/MEDIUM: dns: fix alignment issues in the DNS response parser 6027 - BUG/MINOR: Fix endiness issue in DNS header creation code 6028 - BUG/MEDIUM: lua: the function txn_done() from sample fetches can crash 6029 - BUG/MEDIUM: lua: the function txn_done() from action wrapper can crash 6030 - MEDIUM: http: implement http-response track-sc* directive 6031 - BUG/MINOR: peers: Fix peers data decoding issue 6032 - BUG/MINOR: peers: don't count track-sc multiple times on errors 6033 - MINOR: standard: add function "escape_string" 6034 - BUG/MEDIUM: log: use function "escape_string" instead of "escape_chunk" 6035 - MINOR: tcp: Return TCP statistics like RTT and RTT variance 6036 - DOC: lua: remove old functions 6037 - BUG/MEDIUM: lua: somme HTTP manipulation functions are called without valid requests 6038 - DOC: fix json converter example and error message 6039 - BUG/MEDIUM: stream-int: completely detach connection on connect error 6040 - DOC: minor typo fixes to improve HTML parsing by haproxy-dconv 6041 - BUILD: make proto_tcp.c compatible with musl library 6042 - BUG/MAJOR: compression: initialize avail_in/next_in even during flush 6043 - BUG/MEDIUM: samples: make smp_dup() always duplicate the sample 6044 - MINOR: sample: implement smp_is_safe() and smp_make_safe() 6045 - MINOR: sample: provide smp_is_rw() and smp_make_rw() 6046 - BUG/MAJOR: server: the "sni" directive could randomly cause trouble 6047 - BUG/MEDIUM: stick-tables: do not fail on string keys with no allocated size 6048 - BUG/MEDIUM: stick-table: properly convert binary samples to keys 6049 - MINOR: sample: use smp_make_rw() in upper/lower converters 6050 - MINOR: tcp: add dst_is_local and src_is_local 6051 - BUG/MINOR: peers: some updates are pushed twice after a resync. 6052 - BUILD: protocol: fix some build errors on OpenBSD 6053 - BUILD: log: iovec requires to include sys/uio.h on OpenBSD 6054 - BUILD: tcp: do not include netinet/ip.h for IP_TTL 6055 - BUILD: connection: fix build breakage on openbsd due to missing in_systm.h 6056 - BUILD: checks: remove the last strcat and eliminate a warning on OpenBSD 6057 - BUILD: tcp: define SOL_TCP when only IPPROTO_TCP exists 6058 - BUILD: compression: remove a warning when no compression lib is used 6059 - BUILD: poll: remove unused hap_fd_isset() which causes a warning with clang 6060 - MINOR: tcp: add further tcp info fetchers 6061 - BUG/MINOR: peers: empty chunks after a resync. 6062 - BUG/MAJOR: stick-counters: possible crash when using sc_trackers with wrong table 6063 - MINOR: standard.c: ipcmp() function to compare 2 IP addresses stored in 2 struct sockaddr_storage 6064 - MINOR: standard.c: ipcpy() function to copy an IP address from a struct sockaddr_storage into an other one 6065 - MAJOR: listen section: don't use first bind port anymore when no server ports are provided 6066 60672016/05/10 : 1.7-dev3 6068 - MINOR: sample: Moves ARGS underlying type from 32 to 64 bits. 6069 - BUG/MINOR: log: Don't use strftime() which can clobber timezone if chrooted 6070 - BUILD: namespaces: fix a potential build warning in namespaces.c 6071 - MINOR: da: Using ARG12 macro for the sample fetch and the convertor. 6072 - DOC: add encoding to json converter example 6073 - BUG/MINOR: conf: "listener id" expects integer, but its not checked 6074 - DOC: Clarify tunes.vars.xxx-max-size settings 6075 - CLEANUP: chunk: adding NULL check to chunk_dup allocation. 6076 - CLEANUP: connection: fix double negation on memcmp() 6077 - BUG/MEDIUM: peers: fix incorrect age in frequency counters 6078 - BUG/MEDIUM: Fix RFC5077 resumption when more than TLS_TICKETS_NO are present 6079 - BUG/MAJOR: Fix crash in http_get_fhdr with exactly MAX_HDR_HISTORY headers 6080 - BUG/MINOR: lua: can't load external libraries 6081 - BUG/MINOR: prevent the dump of uninitialized vars 6082 - CLEANUP: map: it seems that the map were planed to be chained 6083 - MINOR: lua: move class registration facilities 6084 - MINOR: lua: remove some useless checks 6085 - CLEANUP: lua: Remove two same functions 6086 - MINOR: lua: refactor the Lua object registration 6087 - MINOR: lua: precise message when a critical error is catched 6088 - MINOR: lua: post initialization 6089 - MINOR: lua: Add internal function which strip spaces 6090 - MINOR: lua: convert field to lua type 6091 - DOC: "addr" parameter applies to both health and agent checks 6092 - DOC: timeout client: pointers to timeout http-request 6093 - DOC: typo on stick-store response 6094 - DOC: stick-table: amend paragraph blaming the loss of table upon reload 6095 - DOC: typo: ACL subdir match 6096 - DOC: typo: maxconn paragraph is wrong due to a wrong buffer size 6097 - DOC: regsub: parser limitation about the inability to use closing square brackets 6098 - DOC: typo: req.uri is now replaced by capture.req.uri 6099 - DOC: name set-gpt0 mismatch with the expected keyword 6100 - MINOR: http: sample fetch which returns unique-id 6101 - MINOR: dumpstats: extract stats fields enum and names 6102 - MINOR: dumpstats: split stats_dump_info_to_buffer() in two parts 6103 - MINOR: dumpstats: split stats_dump_fe_stats() in two parts 6104 - MINOR: dumpstats: split stats_dump_li_stats() in two parts 6105 - MINOR: dumpstats: split stats_dump_sv_stats() in two parts 6106 - MINOR: dumpstats: split stats_dump_be_stats() in two parts 6107 - MINOR: lua: dump general info 6108 - MINOR: lua: add class proxy 6109 - MINOR: lua: add class server 6110 - MINOR: lua: add class listener 6111 - BUG/MEDIUM: stick-tables: some sample-fetch doesn't work in the connection state. 6112 - MEDIUM: proxy: use dynamic allocation for error dumps 6113 - CLEANUP: remove unneeded casts 6114 - CLEANUP: uniformize last argument of malloc/calloc 6115 - DOC: fix "needed" typo 6116 - BUG/MINOR: dumpstats: fix write to global chunk 6117 - BUG/MINOR: dns: inapropriate way out after a resolution timeout 6118 - BUG/MINOR: dns: trigger a DNS query type change on resolution timeout 6119 - CLEANUP: proto_http: few corrections for gcc warnings. 6120 - BUG/MINOR: DNS: resolution structure change 6121 - BUG/MINOR : allow to log cookie for tarpit and denied request 6122 - BUG/MEDIUM: ssl: rewind the BIO when reading certificates 6123 - OPTIM/MINOR: session: abort if possible before connecting to the backend 6124 - DOC: http: rename the unique-id sample and add the documentation 6125 - BUG/MEDIUM: trace.c: rdtsc() is defined in two files 6126 - BUG/MEDIUM: channel: fix miscalculation of available buffer space (2nd try) 6127 - BUG/MINOR: server: risk of over reading the pref_net array. 6128 - BUG/MINOR: cfgparse: couple of small memory leaks. 6129 - BUG/MEDIUM: sample: initialize the pointer before parse_binary call. 6130 - DOC: fix discrepancy in the example for http-request redirect 6131 - MINOR: acl: Add predefined METH_DELETE, METH_PUT 6132 - CLEANUP: .gitignore cleanup 6133 - DOC: Clarify IPv4 address / mask notation rules 6134 - CLEANUP: fix inconsistency between fd->iocb, proto->accept and accept() 6135 - BUG/MEDIUM: fix maxaccept computation on per-process listeners 6136 - BUG/MINOR: listener: stop unbound listeners on startup 6137 - BUG/MINOR: fix maxaccept computation according to the frontend process range 6138 - TESTS: add blocksig.c to run tests with all signals blocked 6139 - MEDIUM: unblock signals on startup. 6140 - MINOR: filters: Print the list of existing filters during HA startup 6141 - MINOR: filters: Typo in an error message 6142 - MINOR: filters: Filters must define the callbacks struct during config parsing 6143 - DOC: filters: Add filters documentation 6144 - BUG/MEDIUM: channel: don't allow to overwrite the reserve until connected 6145 - BUG/MEDIUM: channel: incorrect polling condition may delay event delivery 6146 - BUG/MEDIUM: channel: fix miscalculation of available buffer space (3rd try) 6147 - BUG/MEDIUM: log: fix risk of segfault when logging HTTP fields in TCP mode 6148 - MINOR: Add ability for agent-check to set server maxconn 6149 - CLEANUP: Use server_parse_maxconn_change_request for maxconn CLI updates 6150 - MINOR: filters: add opaque data 6151 - BUG/MEDIUM: lua: protects the upper boundary of the argument list for converters/fetches. 6152 - MINOR: lua: migrate the argument mask to 64 bits type. 6153 - BUG/MINOR: dumpstats: Fix the "Total bytes saved" counter in backends stats 6154 - BUG/MINOR: log: fix a typo that would cause %HP to log <BADREQ> 6155 - BUG/MEDIUM: http: fix incorrect reporting of server errors 6156 - MINOR: channel: add new function channel_congested() 6157 - BUG/MEDIUM: http: fix risk of CPU spikes with pipelined requests from dead client 6158 - BUG/MAJOR: channel: fix miscalculation of available buffer space (4th try) 6159 - BUG/MEDIUM: stream: ensure the SI_FL_DONT_WAKE flag is properly cleared 6160 - BUG/MEDIUM: channel: fix inconsistent handling of 4GB-1 transfers 6161 - BUG/MEDIUM: stats: show servers state may show an empty or incomplete result 6162 - BUG/MEDIUM: stats: show backend may show an empty or incomplete result 6163 - MINOR: stats: fix typo in help messages 6164 - MINOR: stats: show stat resolvers missing in the help message 6165 - BUG/MINOR: dns: fix DNS header definition 6166 - BUG/MEDIUM: dns: fix alignment issue when building DNS queries 6167 - CLEANUP: don't ignore scripts in .gitignore 6168 - BUILD: add a few release and backport scripts in scripts/ 6169 61702016/03/14 : 1.7-dev2 6171 - DOC: lua: fix lua API 6172 - DOC: mailers: typo in 'hostname' description 6173 - DOC: compression: missing mention of libslz for compression algorithm 6174 - BUILD/MINOR: regex: missing header 6175 - BUG/MINOR: stream: bad return code 6176 - DOC: lua: fix somme errors and add implicit types 6177 - MINOR: lua: add set/get priv for applets 6178 - BUG/MINOR: http: fix several off-by-one errors in the url_param parser 6179 - BUG/MINOR: http: Be sure to process all the data received from a server 6180 - MINOR: filters/http: Use a wrapper function instead of stream_int_retnclose 6181 - BUG/MINOR: chunk: make chunk_dup() always check and set dst->size 6182 - DOC: ssl: fixed some formatting errors in crt tag 6183 - MINOR: chunks: ensure that chunk_strcpy() adds a trailing zero 6184 - MINOR: chunks: add chunk_strcat() and chunk_newstr() 6185 - MINOR: chunk: make chunk_initstr() take a const string 6186 - MEDIUM: tools: add csv_enc_append() to preserve the original chunk 6187 - MINOR: tools: make csv_enc_append() always start at the first byte of the chunk 6188 - MINOR: lru: new function to delete <nb> least recently used keys 6189 - DOC: add Ben Shillito as the maintainer of 51d 6190 - BUG/MINOR: 51d: Ensures a unique domain for each configuration 6191 - BUG/MINOR: 51d: Aligns Pattern cache implementation with HAProxy best practices. 6192 - BUG/MINOR: 51d: Releases workset back to pool. 6193 - BUG/MINOR: 51d: Aligned const pointers to changes in 51Degrees. 6194 - CLEANUP: 51d: Aligned if statements with HAProxy best practices and removed casts from malloc. 6195 - MINOR: rename master process name in -Ds (systemd mode) 6196 - DOC: fix a few spelling mistakes 6197 - DOC: fix "workaround" spelling 6198 - BUG/MINOR: examples: Fixing haproxy.spec to remove references to .cfg files 6199 - MINOR: fix the return type for dns_response_get_query_id() function 6200 - MINOR: server state: missing LF (\n) on error message printed when parsing server state file 6201 - BUG/MEDIUM: dns: no DNS resolution happens if no ports provided to the nameserver 6202 - BUG/MAJOR: servers state: server port is erased when dns resolution is enabled on a server 6203 - BUG/MEDIUM: servers state: server port is used uninitialized 6204 - BUG/MEDIUM: config: Adding validation to stick-table expire value. 6205 - BUG/MEDIUM: sample: http_date() doesn't provide the right day of the week 6206 - BUG/MEDIUM: channel: fix miscalculation of available buffer space. 6207 - MEDIUM: pools: add a new flag to avoid rounding pool size up 6208 - BUG/MEDIUM: buffers: do not round up buffer size during allocation 6209 - BUG/MINOR: stream: don't force retries if the server is DOWN 6210 - BUG/MINOR: counters: make the sc-inc-gpc0 and sc-set-gpt0 touch the table 6211 - MINOR: unix: don't mention free ports on EAGAIN 6212 - BUG/CLEANUP: CLI: report the proper field states in "show sess" 6213 - MINOR: stats: send content-length with the redirect to allow keep-alive 6214 - BUG: stream_interface: Reuse connection even if the output channel is empty 6215 - DOC: remove old tunnel mode assumptions 6216 - BUG/MAJOR: http-reuse: fix risk of orphaned connections 6217 - BUG/MEDIUM: http-reuse: do not share private connections across backends 6218 - BUG/MINOR: ssl: Be sure to use unique serial for regenerated certificates 6219 - BUG/MINOR: stats: fix missing comma in stats on agent drain 6220 - MAJOR: filters: Add filters support 6221 - MINOR: filters: Do not reset stream analyzers if the client is gone 6222 - REORG: filters: Prepare creation of the HTTP compression filter 6223 - MAJOR: filters/http: Rewrite the HTTP compression as a filter 6224 - MEDIUM: filters: Use macros to call filters callbacks to speed-up processing 6225 - MEDIUM: filters: remove http_start_chunk, http_last_chunk and http_chunk_end 6226 - MEDIUM: filters: Replace filter_http_headers callback by an analyzer 6227 - MEDIUM: filters/http: Move body parsing of HTTP messages in dedicated functions 6228 - MINOR: filters: Add stream_filters structure to hide filters info 6229 - MAJOR: filters: Require explicit registration to filter HTTP body and TCP data 6230 - MINOR: filters: Remove unused or useless stuff and do small optimizations 6231 - MEDIUM: filters: Optimize the HTTP compression for chunk encoded response 6232 - MINOR: filters/http: Slightly update the parsing of chunks 6233 - MINOR: filters/http: Forward remaining data when a channel has no "data" filters 6234 - MINOR: filters: Add an filter example 6235 - MINOR: filters: Extract proxy stuff from the struct filter 6236 - MINOR: map: Add regex matching replacement 6237 - BUG/MINOR: lua: unsafe initialization 6238 - DOC: lua: fix somme errors 6239 - MINOR: lua: file dedicated to unsafe functions 6240 - MINOR: lua: add "now" time function 6241 - MINOR: standard: add RFC HTTP date parser 6242 - MINOR: lua: Add date functions 6243 - MINOR: lua: move common function 6244 - MINOR: lua: merge function 6245 - MINOR: lua: Add concat class 6246 - MINOR: standard: add function "escape_chunk" 6247 - MEDIUM: log: add a new log format flag "E" 6248 - DOC: add server name at rate-limit sessions example 6249 - BUG/MEDIUM: ssl: fix off-by-one in ALPN list allocation 6250 - BUG/MEDIUM: ssl: fix off-by-one in NPN list allocation 6251 - DOC: LUA: fix some typos and syntax errors 6252 - MINOR: cli: add a new "show env" command 6253 - MEDIUM: config: allow to manipulate environment variables in the global section 6254 - MEDIUM: cfgparse: reject incorrect 'timeout retry' keyword spelling in resolvers 6255 - MINOR: mailers: increase default timeout to 10 seconds 6256 - MINOR: mailers: use <CRLF> for all line endings 6257 - BUG/MAJOR: lua: segfault using Concat object 6258 - DOC: lua: copyrights 6259 - MINOR: common: mask conversion 6260 - MEDIUM: dns: extract options 6261 - MEDIUM: dns: add a "resolve-net" option which allow to prefer an ip in a network 6262 - MINOR: mailers: make it possible to configure the connection timeout 6263 - BUG/MAJOR: lua: applets can't sleep. 6264 - BUG/MINOR: server: some prototypes are renamed 6265 - BUG/MINOR: lua: Useless copy 6266 - BUG/MEDIUM: stats: stats bind-process doesn't propagate the process mask correctly 6267 - BUG/MINOR: server: fix the format of the warning on address change 6268 - CLEANUP: server: add "const" to some message strings 6269 - MINOR: server: generalize the "updater" source 6270 - BUG/MEDIUM: chunks: always reject negative-length chunks 6271 - BUG/MINOR: systemd: ensure we don't miss signals 6272 - BUG/MINOR: systemd: report the correct signal in debug message output 6273 - BUG/MINOR: systemd: propagate the correct signal to haproxy 6274 - MINOR: systemd: ensure a reload doesn't mask a stop 6275 - BUG/MEDIUM: cfgparse: wrong argument offset after parsing server "sni" keyword 6276 - CLEANUP: stats: Avoid computation with uninitialized bits. 6277 - CLEANUP: pattern: Ignore unknown samples in pat_match_ip(). 6278 - CLEANUP: map: Avoid memory leak in out-of-memory condition. 6279 - BUG/MINOR: tcpcheck: fix incorrect list usage resulting in failure to load certain configs 6280 - BUG/MAJOR: samples: check smp->strm before using it 6281 - MINOR: sample: add a new helper to initialize the owner of a sample 6282 - MINOR: sample: always set a new sample's owner before evaluating it 6283 - BUG/MAJOR: vars: always retrieve the stream and session from the sample 6284 - CLEANUP: payload: remove useless and confusing nullity checks for channel buffer 6285 - BUG/MINOR: ssl: fix usage of the various sample fetch functions 6286 - MINOR: stats: create fields types suitable for all CSV output data 6287 - MINOR: stats: add all the "show info" fields in a table 6288 - MEDIUM: stats: fill all the show info elements prior to displaying them 6289 - MINOR: stats: add a function to emit fields into a chunk 6290 - MINOR: stats: add stats_dump_info_fields() to dump one field per line 6291 - MEDIUM: stats: make use of stats_dump_info_fields() for "show info" 6292 - MINOR: stats: add a declaration of all stats fields 6293 - MINOR: stats: don't hard-code the CSV fields list anymore 6294 - MINOR: stats: create stats fields storage and CSV dump function 6295 - MEDIUM: stats: convert stats_dump_fe_stats() to use stats_dump_fields_csv() 6296 - MEDIUM: stats: make stats_dump_fe_stats() use stats fields for HTML dump 6297 - MEDIUM: stats: convert stats_dump_li_stats() to use stats_dump_fields_csv() 6298 - MEDIUM: stats: make stats_dump_li_stats() use stats fields for HTML dump 6299 - MEDIUM: stats: convert stats_dump_be_stats() to use stats_dump_fields_csv() 6300 - MEDIUM: stats: make stats_dump_be_stats() use stats fields for HTML dump 6301 - MEDIUM: stats: convert stats_dump_sv_stats() to use stats_dump_fields_csv() 6302 - MEDIUM: stats: make stats_dump_sv_stats() use the stats field for HTML 6303 - MEDIUM: stats: move the server state coloring logic to the server dump function 6304 - MINOR: stats: do not use srv->admin & STATS_ADMF_MAINT in HTML dumps 6305 - MINOR: stats: do not check srv->state for SRV_ST_STOPPED in HTML dumps 6306 - MINOR: stats: make CSV report server check status only when enabled 6307 - MINOR: stats: only report backend's down time if it has servers 6308 - MINOR: stats: prepend '*' in front of the check status when in progress 6309 - MINOR: stats: make HTML stats dump rely on the table for the check status 6310 - MINOR: stats: add agent_status, agent_code, agent_duration to output 6311 - MINOR: stats: add check_desc and agent_desc to the output fields 6312 - MINOR: stats: add check and agent's health values in the output 6313 - MEDIUM: stats: make the HTML server state dump use the CSV states 6314 - MEDIUM: stats: only report observe errors when observe is set 6315 - MEDIUM: stats: expose the same flags for CLI and HTTP accesses 6316 - MEDIUM: stats: report server's address in the CSV output 6317 - MEDIUM: stats: report the cookie value in the server & backend CSV dumps 6318 - MEDIUM: stats: compute the color code only in the HTML form 6319 - MEDIUM: stats: report the listeners' address in the CSV output 6320 - MEDIUM: stats: make it possible to report the WAITING state for listeners 6321 - REORG: stats: dump the frontend's HTML stats via a generic function 6322 - REORG: stats: dump the socket stats via the generic function 6323 - REORG: stats: dump the server stats via the generic function 6324 - REORG: stats: dump the backend stats via the generic function 6325 - MEDIUM: stats: add a new "mode" column to report the proxy mode 6326 - MINOR: stats: report the load balancing algorithm in CSV output 6327 - MINOR: stats: add 3 fields to report the frontend-specific connection stats 6328 - MINOR: stats: report number of intercepted requests for frontend and backends 6329 - MINOR: stats: introduce stats_dump_one_line() to dump one stats line 6330 - CLEANUP: stats: make stats_dump_fields_html() not rely on proxy anymore 6331 - MINOR: stats: add ST_SHOWADMIN to pass the admin info in the regular flags 6332 - MINOR: stats: make stats_dump_fields_html() not use &trash by default 6333 - MINOR: stats: add functions to emit typed fields into a chunk 6334 - MEDIUM: stats: support "show info typed" on the CLI 6335 - MEDIUM: stats: implement a typed output format for stats 6336 - DOC: document the "show info typed" and "show stat typed" output formats 6337 - MINOR: cfgparse: warn when uid parameter is not a number 6338 - MINOR: cfgparse: warn when gid parameter is not a number 6339 - BUG/MINOR: standard: Avoid free of non-allocated pointer 6340 - BUG/MINOR: pattern: Avoid memory leak on out-of-memory condition 6341 - CLEANUP: http: fix a build warning introduced by a recent fix 6342 - BUG/MINOR: log: GMT offset not updated when entering/leaving DST 6343 63442015/12/20 : 1.7-dev1 6345 - DOC: specify that stats socket doc (section 9.2) is in management 6346 - BUILD: install only relevant and existing documentation 6347 - CLEANUP: don't ignore debian/ directory if present 6348 - BUG/MINOR: dns: parsing error of some DNS response 6349 - BUG/MEDIUM: namespaces: don't fail if no namespace is used 6350 - BUG/MAJOR: ssl: free the generated SSL_CTX if the LRU cache is disabled 6351 - MEDIUM: dns: Don't use the ANY query type 6352 - BUILD: ssl: fix build error introduced in commit 7969a3 with OpenSSL < 1.0.0 6353 - DOC: fix a typo for a "deviceatlas" keyword 6354 - FIX: small typo in an example using the "Referer" header 6355 - MINOR: cli: ability to set per-server maxconn 6356 - DEBUG/MINOR: memory: add a build option to disable memory pools sharing 6357 - DEBUG/MEDIUM: memory: optionally protect free data in pools 6358 - DEBUG/MEDIUM: memory: add optional control pool memory operations 6359 - MEDIUM: memory: add accounting for failed allocations 6360 - BUG/MEDIUM: config: count memory limits on 64 bits, not 32 6361 - BUG/MAJOR: dns: first DNS response packet not matching queried hostname may lead to a loop 6362 - BUG/MINOR: dns: unable to parse CNAMEs response 6363 - BUG/MINOR: examples/haproxy.init: missing brace in quiet_check() 6364 - DOC: deviceatlas: more example use cases. 6365 - MINOR: config: allow IPv6 bracketed literals 6366 - BUG/BUILD: replace haproxy-systemd-wrapper with $(EXTRA) in install-bin. 6367 - BUILD: add Haiku as supported target. 6368 - BUG/MAJOR: http: don't requeue an idle connection that is already queued 6369 - DOC: typo on capture.res.hdr and capture.req.hdr 6370 - BUG/MINOR: dns: check for duplicate nameserver id in a resolvers section was missing 6371 - CLEANUP: use direction names in place of numeric values 6372 - BUG/MEDIUM: lua: sample fetches based on response doesn't work 6373 - MINOR: check: add agent-send server parameter 6374 - BUG/MINOR: http rule: http capture 'id' rule points to a non existing id 6375 - BUG/MINOR: server: check return value of fgets() in apply_server_state() 6376 - BUG/MINOR: acl: don't use record layer in req_ssl_ver 6377 - BUILD: freebsd: double declaration 6378 - BUG/MEDIUM: lua: clean output buffer 6379 - BUILD: check for libressl to be able to build against it 6380 - DOC: lua-api/index.rst small example fixes, spelling correction. 6381 - DOC: lua: architecture and first steps 6382 - DOC: relation between timeout http-request and option http-buffer-request 6383 - BUILD: Make deviceatlas require PCRE 6384 - BUG: http: do not abort keep-alive connections on server timeout 6385 - BUG/MEDIUM: http: switch the request channel to no-delay once done. 6386 - BUG/MINOR: lua: don't force-sslv3 LUA's SSL socket 6387 - BUILD/MINOR: http: proto_http.h needs sample.h 6388 - BUG/MEDIUM: http: don't enable auto-close on the response side 6389 - BUG/MEDIUM: stream: fix half-closed timeout handling 6390 - CLEANUP: compression: don't allocate DEFAULT_MAXZLIBMEM without USE_ZLIB 6391 - BUG/MEDIUM: cli: changing compression rate-limiting must require admin level 6392 - BUG/MEDIUM: sample: urlp can't match an empty value 6393 - BUILD: dumpstats: silencing warning for printf format specifier / time_t 6394 - CLEANUP: proxy: calloc call inverted arguments 6395 - MINOR: da: silent logging by default and displaying DeviceAtlas support if built. 6396 - BUG/MEDIUM: da: stop DeviceAtlas processing in the convertor if there is no input. 6397 - DOC: Edited 51Degrees section of README/ 6398 - BUG/MEDIUM: checks: email-alert not working when declared in defaults 6399 - BUG/MINOR: checks: email-alert causes a segfault when an unknown mailers section is configured 6400 - BUG/MINOR: checks: typo in an email-alert error message 6401 - BUG/MINOR: tcpcheck: conf parsing error when no port configured on server and last rule is a CONNECT with no port 6402 - BUG/MINOR: tcpcheck: conf parsing error when no port configured on server and first rule(s) is (are) COMMENT 6403 - BUG/MEDIUM: http: fix http-reuse when frontend and backend differ 6404 - DOC: prefer using http-request/response over reqXXX/rspXXX directives 6405 - CLEANUP: haproxy: using _GNU_SOURCE instead of __USE_GNU macro. 6406 - MINOR: ssl: Added cert_key_and_chain struct 6407 - MEDIUM: ssl: Added support for creating SSL_CTX with multiple certs 6408 - MINOR: ssl: Added multi cert support for crt-list config keyword 6409 - MEDIUM: ssl: Added multi cert support for loading crt directories 6410 - MEDIUM: ssl: Added support for Multi-Cert OCSP Stapling 6411 - BUILD: ssl: set SSL_SOCK_NUM_KEYTYPES with openssl < 1.0.2 6412 - MINOR: config: make tune.recv_enough configurable 6413 - BUG/MEDIUM: config: properly adjust maxconn with nbproc when memmax is forced 6414 - DOC: ssl: Adding docs for Multi-Cert bundling 6415 - BUG/MEDIUM: peers: table entries learned from a remote are pushed to others after a random delay. 6416 - BUG/MEDIUM: peers: old stick table updates could be repushed. 6417 - MINOR: lua: service/applet can have access to the HTTP headers when a POST is received 6418 - REORG/MINOR: lua: convert boolean "int" to bitfield 6419 - BUG/MEDIUM: lua: Lua applets must not fetch samples using http_txn 6420 - BUG/MINOR: lua: Lua applets must not use http_txn 6421 - BUG/MEDIUM: lua: Forbid HTTP applets from being called from tcp rulesets 6422 - BUG/MAJOR: lua: Do not force the HTTP analysers in use-services 6423 - CLEANUP: lua: bad error messages 6424 - CONTRIB: initiate a debugging suite to make debugging easier 6425 64262015/10/13 : 1.7-dev0 6427 - exact copy of 1.6.0 6428 64292015/10/13 : 1.6.0 6430 - BUG/MINOR: Handle interactive mode in cli handler 6431 - DOC: global section missing parameters 6432 - DOC: backend section missing parameters 6433 - DOC: stats paramaters available in frontend 6434 - MINOR: lru: do not allocate useless memory in lru64_lookup 6435 - BUG/MINOR: http: Add OPTIONS in supported http methods (found by find_http_meth) 6436 - BUG/MINOR: ssl: fix management of the cache where forged certificates are stored 6437 - MINOR: ssl: Release Servers SSL context when HAProxy is shut down 6438 - MINOR: ssl: Read the file used to generate certificates in any order 6439 - MINOR: ssl: Add support for EC for the CA used to sign generated certificates 6440 - MINOR: ssl: Add callbacks to set DH/ECDH params for generated certificates 6441 - BUG/MEDIUM: logs: fix time zone offset format in RFC5424 6442 - BUILD: Fix the build on OSX (htonll/ntohll) 6443 - BUILD: enable build on Linux/s390x 6444 - BUG/MEDIUM: lua: direction test failed 6445 - MINOR: lua: fix a spelling error in some error messages 6446 - CLEANUP: cli: ensure we can never double-free error messages 6447 - BUG/MEDIUM: lua: force server-close mode on Lua services 6448 - MEDIUM: init: support more command line arguments after pid list 6449 - MEDIUM: init: support a list of files on the command line 6450 - MINOR: debug: enable memory poisonning to use byte 0 6451 - BUILD: ssl: fix build error introduced by recent commit 6452 - BUG/MINOR: config: make the stats socket pass the correct proxy to the parsers 6453 - MEDIUM: server: implement TCP_USER_TIMEOUT on the server 6454 - DOC: mention the "namespace" options for bind and server lines 6455 - DOC: add the "management" documentation 6456 - DOC: move the stats socket documentation from config to management 6457 - MINOR: examples: update haproxy.spec to mention new docs 6458 - DOC: mention management.txt in README 6459 - DOC: remove haproxy-{en,fr}.txt 6460 - BUILD: properly report when USE_ZLIB and USE_SLZ are used together 6461 - MINOR: init: report use of libslz instead of "no compression" 6462 - CLEANUP: examples: remove some obsolete and confusing files 6463 - CLEANUP: examples: remove obsolete configuration file samples 6464 - CLEANUP: examples: fix the example file content-sw-sample.cfg 6465 - CLEANUP: examples: update sample file option-http_proxy.cfg 6466 - CLEANUP: examples: update sample file ssl.cfg 6467 - CLEANUP: tests: move a test file from examples/ to tests/ 6468 - CLEANUP: examples: shut up warnings in transparent proxy example 6469 - CLEANUP: tests: removed completely obsolete test files 6470 - DOC: update ROADMAP to remove what was done in 1.6 6471 - BUG/MEDIUM: pattern: fixup use_after_free in the pat_ref_delete_by_id 6472 64732015/10/06 : 1.6-dev7 6474 - MINOR: cli: Dump all resolvers stats if no resolver section is given 6475 - BUG: config: external-check command validation is checking for incorrect arguments. 6476 - DOC: documentation format cleanups 6477 - DOC: lua: few typos. 6478 - BUG/MEDIUM: str2ip: make getaddrinfo() consider local address selection policy 6479 - BUG/MEDIUM: logs: segfault writing to log from Lua 6480 - DOC: fix lua use-service example 6481 - MINOR: payload: add support for tls session ticket ext 6482 - MINOR: lua: remove the run flag 6483 - MEDIUM: lua: change the timeout execution 6484 - MINOR: lua: rename the tune.lua.applet-timeout 6485 - DOC: lua: update Lua doc 6486 - DOC: lua: update doc according with the last Lua changes 6487 - MINOR: http/tcp: fill the avalaible actions 6488 - DOC: reorder misplaced res.ssl_hello_type in the doc 6489 - BUG/MINOR: tcp: make silent-drop always force a TCP reset 6490 - CLEANUP: tcp: silent-drop: only drain the connection when quick-ack is disabled 6491 - BUILD: tcp: use IPPROTO_IP when SOL_IP is not available 6492 - BUILD: server: fix build warnings introduced by load-server-state 6493 - BUG/MEDIUM: server: fix misuse of format string in load-server-state's warnings 6494 64952015/09/28 : 1.6-dev6 6496 - BUG/MAJOR: can't enable a server through the stat socket 6497 - MINOR: server: Macro definition for server-state 6498 - MINOR: cli: new stats socket command: show servers state 6499 - DOC: stats socket command: show servers state 6500 - MINOR: config: new global directive server-state-base 6501 - DOC: global directive server-state-base 6502 - MINOR: config: new global section directive: server-state-file 6503 - DOC: new global directive: server-state-file 6504 - MINOR: config: new backend directives: load-server-state-from-file and server-state-file-name 6505 - DOC: load-server-state-from-file 6506 - MINOR: init: server state loaded from file 6507 - MINOR: server: startup slowstart task when using seamless reload of HAProxy 6508 - MINOR: cli: new stats socket command: show backend 6509 - DOC: servers state seamless reload example 6510 - BUG: dns: can't connect UDP socket on FreeBSD 6511 - MINOR: cfgparse: New function cfg_unregister_sections() 6512 - MINOR: chunk: New function free_trash_buffers() 6513 - BUG/MEDIUM: main: Freeing a bunch of static pointers 6514 - MINOR: proto_http: Externalisation of previously internal functions 6515 - MINOR: global: Few new struct fields for da module 6516 - MAJOR: da: Update of the DeviceAtlas API module 6517 - DOC: DeviceAtlas new keywords 6518 - DOC: README: DeviceAtlas sample configuration updates 6519 - MEDIUM: log: replace sendto() with sendmsg() in __send_log() 6520 - MEDIUM: log: use a separate buffer for the header and for the message 6521 - MEDIUM: logs: remove the hostname, tag and pid part from the logheader 6522 - MEDIUM: logs: add support for RFC5424 header format per logger 6523 - MEDIUM: logs: add a new RFC5424 log-format for the structured-data 6524 - DOC: mention support for the RFC5424 syslog message format 6525 - MEDIUM: logs: have global.log_send_hostname not contain the trailing space 6526 - MEDIUM: logs: pass the trailing "\n" as an iovec 6527 - BUG/MEDIUM: peers: some table updates are randomly not pushed. 6528 - BUG/MEDIUM: peers: same table updates re-pushed after a re-connect 6529 - BUG/MINOR: fct peer_prepare_ackmsg should not use trash. 6530 - MINOR: http: made CHECK_HTTP_MESSAGE_FIRST accessible to other functions 6531 - MINOR: global: Added new fields for 51Degrees device detection 6532 - DOC: Added more explanation for 51Degrees V3.2 6533 - BUILD: Changed 51Degrees option to support V3.2 6534 - MAJOR: 51d: Upgraded to support 51Degrees V3.2 and new features 6535 - MINOR: 51d: Improved string handling for LRU cache 6536 - DOC: add references to rise/fall for the fastinter explanation 6537 - MINOR: support cpu-map feature through the compile option USE_CPU_AFFINITY on FreeBSD 6538 - BUG/MAJOR: lua: potential unexpected aborts() 6539 - BUG/MINOR: lua: breaks the log message if his size exceed one buffer 6540 - MINOR: action: add private configuration 6541 - MINOR: action: add reference to the original keywork matched for the called parser. 6542 - MINOR: lua: change actions registration 6543 - MEDIUM: proto_http: smp_prefetch_http initialize txn 6544 - MINOR: channel: rename function chn_sess to chn_strm 6545 - CLEANUP: lua: align defines 6546 - MINOR: http: export http_get_path() function 6547 - MINOR: http: export the get_reason() function 6548 - MINOR: http: export function http_msg_analyzer() 6549 - MINOR: http: split initialization 6550 - MINOR: lua: reset pointer after use 6551 - MINOR: lua: identify userdata objects 6552 - MEDIUM: lua: use the function lua_rawset in place of lua_settable 6553 - BUG/MAJOR: lua: segfault after the channel data is modified by some Lua action. 6554 - CLEANUP: lua: use calloc in place of malloc 6555 - BUG/MEDIUM: lua: longjmp function must be unregistered 6556 - BUG/MEDIUM: lua: forces a garbage collection 6557 - BUG/MEDIUM: lua: wakeup task on bad conditions 6558 - MINOR: standard: avoid DNS resolution from the function str2sa_range() 6559 - MINOR: lua: extend socket address to support non-IP families 6560 - MINOR: lua/applet: the cosocket applet should use appctx_wakeup in place of task_wakeup 6561 - BUG/MEDIUM: lua: socket destroy before reading pending data 6562 - MEDIUM: lua: change the GC policy 6563 - OPTIM/MEDIUM: lua: executes the garbage collector only when using cosocket 6564 - BUG/MEDIUM: lua: don't reset undesired flags in hlua_ctx_resume 6565 - MINOR: applet: add init function 6566 - MINOR: applet: add an execution timeout 6567 - MINOR: stream/applet: add use-service action 6568 - MINOR: lua: add AppletTCP class and service 6569 - MINOR: lua: add AppletHTTP class and service 6570 - DOC: lua: some documentation update 6571 - DOC: add the documentation about internal circular lists 6572 - DOC: add a CONTRIBUTING file 6573 - DOC: add a MAINTAINERS file 6574 - BUG/MAJOR: peers: fix a crash when stopping peers on unbound processes 6575 - DOC: update coding-style to reference checkpatch.pl 6576 - BUG/MEDIUM: stick-tables: fix double-decrement of tracked entries 6577 - BUG/MINOR: args: add name for ARGT_VAR 6578 - DOC: add more entries to MAINTAINERS 6579 - DOC: add more entries to MAINTAINERS 6580 - CLEANUP: stream-int: remove obsolete function si_applet_call() 6581 - BUG/MAJOR: cli: do not dereference strm_li()->proto->name 6582 - BUG/MEDIUM: http: do not dereference strm_li(stream) 6583 - BUG/MEDIUM: proxy: do not dereference strm_li(stream) 6584 - BUG/MEDIUM: stream: do not dereference strm_li(stream) 6585 - MINOR: stream-int: use si_release_endpoint() to close idle conns 6586 - BUG/MEDIUM: payload: make req.payload and payload_lv aware of dynamic buffers 6587 - BUG/MEDIUM: acl: always accept match "found" 6588 - MINOR: applet: rename applet_runq to applet_active_queue 6589 - BUG/MAJOR: applet: use a separate run queue to maintain list integrity 6590 - MEDIUM: stream-int: split stream_int_update_conn() into si- and conn-specific parts 6591 - MINOR: stream-int: implement a new stream_int_update() function 6592 - MEDIUM: stream-int: factor out the stream update functions 6593 - MEDIUM: stream-int: call stream_int_update() from si_update() 6594 - MINOR: stream-int: export stream_int_update_* 6595 - MINOR: stream-int: move the applet_pause call out of the stream updates 6596 - MEDIUM: stream-int: clean up the conditions to enable reading in si_conn_wake_cb 6597 - MINOR: stream-int: implement the stream_int_notify() function 6598 - MEDIUM: stream-int: use the same stream notification function for applets and conns 6599 - MEDIUM: stream-int: completely remove stream_int_update_embedded() 6600 - MINOR: stream-int: rename si_applet_done() to si_applet_wake_cb() 6601 - BUG/MEDIUM: applet: fix reporting of broken write situation 6602 - BUG/MINOR: stats: do not call cli_release_handler 3 times 6603 - BUG/MEDIUM: cli: properly handle closed output 6604 - MINOR: cli: do not call the release handler on internal error. 6605 - BUG/MEDIUM: stream-int: avoid double-call to applet->release 6606 - DEBUG: add p_malloc() to return a poisonned memory area 6607 - CLEANUP: lua: remove unneeded memset(0) after calloc() 6608 - MINOR: lua: use the proper applet wakeup mechanism 6609 - BUG/MEDIUM: lua: better fix for the protocol check 6610 - BUG/MEDIUM: lua: properly set the target on the connection 6611 - MEDIUM: actions: pass a new "flags" argument to custom actions 6612 - MEDIUM: actions: add new flag ACT_FLAG_FINAL to notify about last call 6613 - MEDIUM: http: pass ACT_FLAG_FINAL to custom actions 6614 - MEDIUM: lua: only allow actions to yield if not in a final call 6615 - DOC: clarify how to make use of abstract sockets in socat 6616 - CLEANUP: config: make the errorloc/errorfile messages less confusing 6617 - MEDIUM: action: add a new flag ACT_FLAG_FIRST 6618 - BUG/MINOR: config: check that tune.bufsize is always positive 6619 - MEDIUM: config: set tune.maxrewrite to 1024 by default 6620 - DOC: add David Carlier as maintainer of da.c 6621 - DOC: fix some broken unexpected unicode chars in the Lua doc. 6622 - BUG/MEDIUM: proxy: ignore stopped peers 6623 - BUG/MEDIUM: proxy: do not wake stopped proxies' tasks during soft_stop() 6624 - MEDIUM: init: completely deallocate unused peers 6625 - BUG/MEDIUM: tcp: fix inverted condition to call custom actions 6626 - DOC: remove outdated actions lists on tcp-request/response 6627 - MEDIUM: tcp: add new tcp action "silent-drop" 6628 - DOC: add URLs to optional libraries in the README 6629 66302015/09/14 : 1.6-dev5 6631 - MINOR: dns: dns_resolution structure update: time_t to unsigned int 6632 - BUG/MEDIUM: dns: DNS resolution doesn't start 6633 - BUG/MAJOR: dns: dns client resolution infinite loop 6634 - MINOR: dns: coding style update 6635 - MINOR: dns: new bitmasks to use against DNS flags 6636 - MINOR: dns: dns_nameserver structure update: new counter for truncated response 6637 - MINOR: dns: New DNS response analysis code: DNS_RESP_TRUNCATED 6638 - MEDIUM: dns: handling of truncated response 6639 - MINOR: DNS client query type failover management 6640 - MINOR: dns: no expected DNS record type found 6641 - MINOR: dns: new flag to report that no IP can be found in a DNS response packet 6642 - BUG/MINOR: DNS request retry counter used for retry only 6643 - DOC: DNS documentation updated 6644 - MEDIUM: actions: remove ACTION_STOP 6645 - BUG/MEDIUM: lua: outgoing connection was broken since 1.6-dev2 (bis) 6646 - BUG/MINOR: lua: last log character truncated. 6647 - CLEANUP: typo: bad indent 6648 - CLEANUP: actions: missplaced includes 6649 - MINOR: build: missing header 6650 - CLEANUP: lua: Merge log functions 6651 - BUG/MAJOR: http: don't manipulate the server connection if it's killed 6652 - BUG/MINOR: http: remove stupid HTTP_METH_NONE entry 6653 - BUG/MAJOR: http: don't call http_send_name_header() after an error 6654 - MEDIUM: tools: make str2sa_range() optionally return the FQDN 6655 - BUG/MINOR: tools: make str2sa_range() report unresolvable addresses 6656 - BUG/MEDIUM: dns: use the correct server hostname when resolving 6657 66582015/08/30 : 1.6-dev4 6659 - MINOR: log: Add log-format variable %HQ, to log HTTP query strings 6660 - DOC: typo in 'redirect', 302 code meaning 6661 - DOC: typos in tcp-check expect examples 6662 - DOC: resolve-prefer default value and default-server update 6663 - MINOR: DNS counters: increment valid counter 6664 - BUG/MEDIUM: DNS resolution response parsing broken 6665 - MINOR: server: add new SRV_ADMF_CMAINT flag 6666 - MINOR: server SRV_ADMF_CMAINT flag doesn't imply SRV_ADMF_FMAINT 6667 - BUG/MEDIUM: dns: wrong first time DNS resolution 6668 - BUG/MEDIUM: lua: Lua tasks fail to start. 6669 - BUILD: add USE_LUA to BUILD_OPTIONS when it's used 6670 - DOC/MINOR: fix OpenBSD versions where haproxy works 6671 - MINOR: 51d: unable to start haproxy without "51degrees-data-file" 6672 - BUG/MEDIUM: peers: fix wrong message id on stick table updates acknowledgement. 6673 - BUG/MAJOR: peers: fix current table pointer not re-initialized on session release. 6674 - BUILD: ssl: Allow building against libssl without SSLv3. 6675 - DOC: clarify some points about SSL and the proxy protocol 6676 - DOC: mention support for RFC 5077 TLS Ticket extension in starter guide 6677 - BUG/MEDIUM: mailer: DATA part must be terminated with <CRLF>.<CRLF> 6678 - DOC: match several lua configuration option names to those implemented in code 6679 - MINOR cfgparse: Correct the mailer warning text to show the right names to the user 6680 - BUG/MINOR: ssl: TLS Ticket Key rotation broken via socket command 6681 - MINOR: stream: initialize the current_rule field to NULL on stream init 6682 - BUG/MEDIUM: lua: timeout error with converters, wrapper and actions. 6683 - CLEANUP: proto_http: remove useless initialisation 6684 - CLEANUP: http/tcp actions: remove the scope member 6685 - BUG/MINOR: proto_tcp: custom action continue is ignored 6686 - MINOR: proto_tcp: add session in the action prototype 6687 - MINOR: vars: reduce the code size of some wrappers 6688 - MINOR: Move http method enum from proto_http to sample 6689 - MINOR: sample: Add ipv6 to ipv4 and sint to ipv6 casts 6690 - MINOR: sample/proto_tcp: export "smp_fetch_src" 6691 - MEDIUM: cli: rely on the map's output type instead of the sample type 6692 - BUG/MEDIUM: stream: The stream doen't inherit SC from the session 6693 - BUG/MEDIUM: vars: segfault during the configuration parsing 6694 - BUG/MEDIUM: stick-tables: refcount error after copying SC for the session to the stream 6695 - BUG/MEDIUM: lua: bad error processing 6696 - MINOR: samples: rename a struct from sample_storage to sample_data 6697 - MINOR: samples: rename some struct member from "smp" to "data" 6698 - MEDIUM: samples: Use the "struct sample_data" in the "struct sample" 6699 - MINOR: samples: extract the anonymous union and create the union sample_value 6700 - MINOR: samples: rename union from "data" to "u" 6701 - MEDIUM: 51degrees: Adapt the 51Degrees library 6702 - MINOR: samples: data assignation simplification 6703 - MEDIUM: pattern/map: Maps can returns various types 6704 - MINOR: map: The map can return IPv4 and IPv6 6705 - MEDIUM: actions: Merge (http|tcp)-(request|reponse) action structs 6706 - MINOR: actions: Remove the data opaque pointer 6707 - MINOR: lua: use the hlua_rule type in place of opaque type 6708 - MINOR: vars: use the vars types as argument in place of opaque type 6709 - MINOR: proto_http: use an "expr" type in place of generic opaque type. 6710 - MINOR: proto_http: replace generic opaque types by real used types for the actions on thr request line 6711 - MINOR: proto_http: replace generic opaque types by real used types in "http_capture" 6712 - MINOR: proto_http: replace generic opaque types by real used types in "http_capture" by id 6713 - MEDIUM: track-sc: Move the track-sc configuration storage in the union 6714 - MEDIUM: capture: Move the capture configuration storage in the union 6715 - MINOR: actions: add "from" information 6716 - MINOR: actions: remove the mark indicating the last entry in enum 6717 - MINOR: actions: Declare all the embedded actions in the same header file 6718 - MINOR: actions: change actions names 6719 - MEDIUM: actions: Add standard return code for the action API 6720 - MEDIUM: actions: Merge (http|tcp)-(request|reponse) keywords structs 6721 - MINOR: proto_tcp: proto_tcp.h is now useles 6722 - MINOR: actions: mutualise the action keyword lookup 6723 - MEDIUM: actions: Normalize the return code of the configuration parsers 6724 - MINOR: actions: Remove wrappers 6725 - MAJOR: stick-tables: use sample types in place of dedicated types 6726 - MEDIUM: stick-tables: use the sample type names 6727 - MAJOR: stick-tables: remove key storage from the key struct 6728 - MEDIUM: stick-tables: Add GPT0 in the stick tables 6729 - MINOR: stick-tables: Add GPT0 access 6730 - MINOR: stick-tables: Add GPC0 actions 6731 - BUG/MEDIUM: lua: the lua fucntion Channel:close() causes a segfault 6732 - DOC: ssl: missing LF 6733 - MINOR: lua: add core.done() function 6734 - DOC: fix function name 6735 - BUG/MINOR: lua: in some case a sample may remain undefined 6736 - DOC: fix "http_action_set_req_line()" comments 6737 - MINOR: http: Action for manipulating the returned status code. 6738 - MEDIUM: lua: turns txn:close into txn:done 6739 - BUG/MEDIUM: lua: cannot process more Lua hooks after a "done()" function call 6740 - BUILD: link with libdl if needed for Lua support 6741 - CLEANUP: backend: factor out objt_server() in connect_server() 6742 - MEDIUM: backend: don't call si_alloc_conn() when we reuse a valid connection 6743 - MEDIUM: stream-int: simplify si_alloc_conn() 6744 - MINOR: stream-int: add new function si_detach_endpoint() 6745 - MINOR: server: add a list of private idle connections 6746 - MINOR: connection: add a new list member in the connection struct 6747 - MEDIUM: stream-int: queue idle connections at the server 6748 - MINOR: stream-int: make si_idle_conn() only accept valid connections 6749 - MINOR: server: add a list of already used idle connections 6750 - MINOR: connection: add a new flag CO_FL_PRIVATE 6751 - MINOR: config: add new setting "http-reuse" 6752 - MAJOR: backend: initial work towards connection reuse 6753 - MAJOR: backend: improve the connection reuse mechanism 6754 - MEDIUM: backend: implement "http-reuse safe" 6755 - MINOR: server: add a list of safe, already reused idle connections 6756 - MEDIUM: backend: add the "http-reuse aggressive" strategy 6757 - DOC: document the new http-reuse directive 6758 - DOC: internals: document next steps for HTTP connection reuse 6759 - DOC: mention that %ms is left-padded with zeroes. 6760 - MINOR: init: indicate to check 'bind' lines when no listeners were found. 6761 - MAJOR: http: remove references to appsession 6762 - CLEANUP: config: remove appsession initialization 6763 - CLEANUP: appsession: remove appsession.c and sessionhash.c 6764 - CLEANUP: tests: remove sessionhash_test.c and test-cookie-appsess.cfg 6765 - CLEANUP: proxy: remove last references to appsession 6766 - CLEANUP: appsession: remove the last include files 6767 - DOC: remove documentation about appsession 6768 - CLEANUP: .gitignore: ignore more test files 6769 - CLEANUP: .gitignore: finally ignore everything but what is known. 6770 - MEDIUM: config: emit a warning on a frontend without listener 6771 - DOC: add doc/internals/entities-v2.txt 6772 - DOC: add doc/linux-syn-cookies.txt 6773 - DOC: add design thoughts on HTTP/2 6774 - DOC: add some thoughts on connection sharing for HTTP/2 6775 - DOC: add design thoughts on dynamic buffer allocation 6776 - BUG/MEDIUM: counters: ensure that src_{inc,clr}_gpc0 creates a missing entry 6777 - DOC: add new file intro.txt 6778 - MAJOR: tproxy: remove support for cttproxy 6779 - BUG/MEDIUM: lua: outgoing connection was broken since 1.6-dev2 6780 - DOC: lua: replace txn:close with txn:done in lua-api 6781 - DOC: intro: minor updates and fixes 6782 - DOC: intro: fix too long line. 6783 - DOC: fix example of http-request using ssl_fc_session_id 6784 - BUG/MEDIUM: lua: txn:done() still causes a segfault in TCP mode 6785 - CLEANUP: lua: fix some indent issues 6786 - BUG/MEDIUM: lua: fix a segfault in txn:done() if called twice 6787 - DOC: lua: mention than txn:close was renamed txn:done. 6788 67892015/07/22 : 1.6-dev3 6790 - CLEANUP: sample: generalize sample_fetch_string() as sample_fetch_as_type() 6791 - MEDIUM: http: Add new 'set-src' option to http-request 6792 - DOC usesrc root privileges requirments 6793 - BUG/MINOR: dns: wrong time unit for some DNS default parameters 6794 - MINOR: proxy: bit field for proxy_find_best_match diff status 6795 - MINOR: server: new server flag: SRV_F_FORCED_ID 6796 - MINOR: server: server_find functions: id, name, best_match 6797 - DOC: dns: fix chapters syntax 6798 - BUILD/MINOR: tools: rename popcount to my_popcountl 6799 - BUILD: add netbsd TARGET 6800 - MEDIUM: 51Degrees code refactoring and cleanup 6801 - MEDIUM: 51d: add LRU-based cache on User-Agent string detection 6802 - DOC: add notes about the "51degrees-cache-size" parameter 6803 - BUG/MEDIUM: 51d: possible incorrect operations on smp->data.str.str 6804 - BUG/MAJOR: connection: fix TLV offset calculation for proxy protocol v2 parsing 6805 - MINOR: Add sample fetch to detect Supported Elliptic Curves Extension 6806 - BUG/MINOR: payload: Add volatile flag to smp_fetch_req_ssl_ec_ext 6807 - BUG/MINOR: lua: type error in the arguments wrapper 6808 - CLEANUP: vars: remove unused struct 6809 - BUG/MINOR: http/sample: gmtime/localtime can fail 6810 - MINOR: standard: add 64 bits conversion functions 6811 - MAJOR: sample: converts uint and sint in 64 bits signed integer 6812 - MAJOR: arg: converts uint and sint in sint 6813 - MEDIUM: sample: switch to saturated arithmetic 6814 - MINOR: vars: returns variable content 6815 - MEDIUM: vars/sample: operators can use variables as parameter 6816 - BUG/MINOR: ssl: fix smp_fetch_ssl_fc_session_id 6817 - BUILD/MINOR: lua: fix a harmless build warning 6818 - BUILD/MINOR: stats: fix build warning due to condition always true 6819 - BUG/MAJOR: lru: fix unconditional call to free due to unexpected semi-colon 6820 - BUG/MEDIUM: logs: fix improper systematic use of quotes with a few tags 6821 - BUILD/MINOR: lua: ensure that hlua_ctx_destroy is properly defined 6822 - BUG/MEDIUM: lru: fix possible memory leak when ->free() is used 6823 - MINOR: vars: make the accounting not depend on the stream 6824 - MEDIUM: vars: move the session variables to the session, not the stream 6825 - BUG/MEDIUM: vars: do not freeze the connection when the expression cannot be fetched 6826 - BUG/MAJOR: buffers: make the buffer_slow_realign() function respect output data 6827 - BUG/MAJOR: tcp: tcp rulesets were still broken 6828 - MINOR: stats: improve compression stats reporting 6829 - MINOR: ssl: make self-generated certs also work with raw IPv6 addresses 6830 - CLEANUP: ssl: make ssl_sock_generated_cert_serial() take a const 6831 - CLEANUP: ssl: make ssl_sock_generate_certificate() use ssl_sock_generated_cert_serial() 6832 - BUG/MINOR: log: missing some ARGC_* entries in fmt_directives() 6833 - MINOR: args: add new context for servers 6834 - MINOR: stream: maintain consistence between channel_forward and HTTP forward 6835 - MINOR: ssl: provide ia function to set the SNI extension on a connection 6836 - MEDIUM: ssl: add sni support on the server lines 6837 - CLEANUP: stream: remove a useless call to si_detach() 6838 - CLEANUP: stream-int: fix a few outdated comments about stream_int_register_handler() 6839 - CLEANUP: stream-int: remove stream_int_unregister_handler() and si_detach() 6840 - MINOR: stream-int: only use si_release_endpoint() to release a connection 6841 - MINOR: standard: provide htonll() and ntohll() 6842 - CLEANUP/MINOR: dns: dns_str_to_dn_label() only needs a const char 6843 - BUG/MAJOR: dns: fix the length of the string to be copied 6844 68452015/06/17 : 1.6-dev2 6846 - BUG/MINOR: ssl: Display correct filename in error message 6847 - MEDIUM: logs: Add HTTP request-line log format directives 6848 - BUG/MEDIUM: check: tcpcheck regression introduced by e16c1b3f 6849 - BUG/MINOR: check: fix tcpcheck error message 6850 - MINOR: use an int instead of calling tcpcheck_get_step_id 6851 - MINOR: tcpcheck_rule structure update 6852 - MINOR: include comment in tcpcheck error log 6853 - DOC: tcpcheck comment documentation 6854 - MEDIUM: server: add support for changing a server's address 6855 - MEDIUM: server: change server ip address from stats socket 6856 - MEDIUM: protocol: add minimalist UDP protocol client 6857 - MEDIUM: dns: implement a DNS resolver 6858 - MAJOR: server: add DNS-based server name resolution 6859 - DOC: server name resolution + proto DNS 6860 - MINOR: dns: add DNS statistics 6861 - MEDIUM: http: configurable http result codes for http-request deny 6862 - BUILD: Compile clean when debug options defined 6863 - MINOR: lru: Add the possibility to free data when an item is removed 6864 - MINOR: lru: Add lru64_lookup function 6865 - MEDIUM: ssl: Add options to forge SSL certificates 6866 - MINOR: ssl: Export functions to manipulate generated certificates 6867 - MEDIUM: config: add DeviceAtlas global keywords 6868 - MEDIUM: global: add the DeviceAtlas required elements to struct global 6869 - MEDIUM: sample: add the da-csv converter 6870 - MEDIUM: init: DeviceAtlas initialization 6871 - BUILD: Makefile: add options to build with DeviceAtlas 6872 - DOC: README: explain how to build with DeviceAtlas 6873 - BUG/MEDIUM: http: fix the url_param fetch 6874 - BUG/MEDIUM: init: segfault if global._51d_property_names is not initialized 6875 - MAJOR: peers: peers protocol version 2.0 6876 - MINOR: peers: avoid re-scheduling of pending stick-table's updates still not pushed. 6877 - MEDIUM: peers: re-schedule stick-table's entry for sync when data is modified. 6878 - MEDIUM: peers: support of any stick-table data-types for sync 6879 - BUG/MAJOR: sample: regression on sample cast to stick table types. 6880 - CLEANUP: deinit: remove codes for cleaning p->block_rules 6881 - DOC: Fix L4TOUT typo in documentation 6882 - DOC: set-log-level in Logging section preamble 6883 - BUG/MEDIUM: compat: fix segfault on FreeBSD 6884 - MEDIUM: check: include server address and port in the send-state header 6885 - MEDIUM: backend: Allow redispatch on retry intervals 6886 - MINOR: Add TLS ticket keys reference and use it in the listener struct 6887 - MEDIUM: Add support for updating TLS ticket keys via socket 6888 - DOC: Document new socket commands "show tls-keys" and "set ssl tls-key" 6889 - MINOR: Add sample fetch which identifies if the SSL session has been resumed 6890 - DOC: Update doc about weight, act and bck fields in the statistics 6891 - BUG/MEDIUM: ssl: fix tune.ssl.default-dh-param value being overwritten 6892 - MINOR: ssl: add a destructor to free allocated SSL ressources 6893 - MEDIUM: ssl: add the possibility to use a global DH parameters file 6894 - MEDIUM: ssl: replace standards DH groups with custom ones 6895 - MEDIUM: stats: Add enum srv_stats_state 6896 - MEDIUM: stats: Separate server state and colour in stats 6897 - MEDIUM: stats: Only report drain state in stats if server has SRV_ADMF_DRAIN set 6898 - MEDIUM: stats: Differentiate between DRAIN and DRAIN (agent) 6899 - MEDIUM: Lower priority of email alerts for log-health-checks messages 6900 - MEDIUM: Send email alerts when servers are marked as UP or enter the drain state 6901 - MEDIUM: Document when email-alerts are sent 6902 - BUG/MEDIUM: lua: bad argument number in analyser and in error message 6903 - MEDIUM: lua: automatically converts strings in proxy, tables, server and ip 6904 - BUG/MINOR: utf8: remove compilator warning 6905 - MEDIUM: map: uses HAProxy facilities to store default value 6906 - BUG/MINOR: lua: error in detection of mandatory arguments 6907 - BUG/MINOR: lua: set current proxy as default value if it is possible 6908 - BUG/MEDIUM: http: the action set-{method|path|query|uri} doesn't run. 6909 - BUG/MEDIUM: lua: undetected infinite loop 6910 - BUG/MAJOR: http: don't read past buffer's end in http_replace_value 6911 - BUG/MEDIUM: http: the function "(req|res)-replace-value" doesn't respect the HTTP syntax 6912 - MEDIUM/CLEANUP: http: rewrite and lighten http_transform_header() prototype 6913 - BUILD: lua: it miss the '-ldl' directive 6914 - MEDIUM: http: allows 'R' and 'S' in the protocol alphabet 6915 - MINOR: http: split the function http_action_set_req_line() in two parts 6916 - MINOR: http: split http_transform_header() function in two parts. 6917 - MINOR: http: export function inet_set_tos() 6918 - MINOR: lua: txn: add function set_(loglevel|tos|mark) 6919 - MINOR: lua: create and register HTTP class 6920 - DOC: lua: fix some typos 6921 - MINOR: lua: add log functions 6922 - BUG/MINOR: lua: Fix SSL initialisation 6923 - DOC: lua: some fixes 6924 - MINOR: lua: (req|res)_get_headers return more than one header value 6925 - MINOR: lua: map system integration in Lua 6926 - BUG/MEDIUM: http: functions set-{path,query,method,uri} breaks the HTTP parser 6927 - MINOR: sample: add url_dec converter 6928 - MEDIUM: sample: fill the struct sample with the session, proxy and stream pointers 6929 - MEDIUM: sample change the prototype of sample-fetches and converters functions 6930 - MINOR: sample: fill the struct sample with the options. 6931 - MEDIUM: sample: change the prototype of sample-fetches functions 6932 - MINOR: http: split the url_param in two parts 6933 - CLEANUP: http: bad indentation 6934 - MINOR: http: add body_param fetch 6935 - MEDIUM: http: url-encoded parsing function can run throught wrapped buffer 6936 - DOC: http: req.body_param documentation 6937 - MINOR: proxy: custom capture declaration 6938 - MINOR: capture: add two "capture" converters 6939 - MEDIUM: capture: Allow capture with slot identifier 6940 - MINOR: http: add array of generic pointers in http_res_rules 6941 - MEDIUM: capture: adds http-response capture 6942 - MINOR: common: escape CSV strings 6943 - MEDIUM: stats: escape some strings in the CSV dump 6944 - MINOR: tcp: add custom actions that can continue tcp-(request|response) processing 6945 - MINOR: lua: Lua tcp action are not final action 6946 - DOC: lua: schematics about lua socket organization 6947 - BUG/MINOR: debug: display (null) in place of "meth" 6948 - DOC: mention the "lua action" in documentation 6949 - MINOR: standard: add function that converts signed int to a string 6950 - BUG/MINOR: sample: wrong conversion of signed values 6951 - MEDIUM: sample: Add type any 6952 - MINOR: debug: add a special converter which display its input sample content. 6953 - MINOR: tcp: increase the opaque data array 6954 - MINOR: tcp/http/conf: extends the keyword registration options 6955 - MINOR: build: fix build dependency 6956 - MEDIUM: vars: adds support of variables 6957 - MINOR: vars: adds get and set functions 6958 - MINOR: lua: Variable access 6959 - MINOR: samples: add samples which returns constants 6960 - BUG/MINOR: vars/compil: fix some warnings 6961 - BUILD: add 51degrees options to makefile. 6962 - MINOR: global: add several 51Degrees members to global 6963 - MINOR: config: add 51Degrees config parsing. 6964 - MINOR: init: add 51Degrees initialisation code 6965 - MEDIUM: sample: add fiftyone_degrees converter. 6966 - MEDIUM: deinit: add cleanup for 51Degrees to deinit 6967 - MEDIUM: sample: add trie support to 51Degrees 6968 - DOC: add 51Degrees notes to configuration.txt. 6969 - DOC: add build indications for 51Degrees to README. 6970 - MEDIUM: cfgparse: introduce weak and strong quoting 6971 - BUG/MEDIUM: cfgparse: incorrect memmove in quotes management 6972 - MINOR: cfgparse: remove line size limitation 6973 - MEDIUM: cfgparse: expand environment variables 6974 - BUG/MINOR: cfgparse: fix typo in 'option httplog' error message 6975 - BUG/MEDIUM: cfgparse: segfault when userlist is misused 6976 - CLEANUP: cfgparse: remove reference to 'ruleset' section 6977 - MEDIUM: cfgparse: check section maximum number of arguments 6978 - MEDIUM: cfgparse: max arguments check in the global section 6979 - MEDIUM: cfgparse: check max arguments in the proxies sections 6980 - CLEANUP: stream-int: remove a redundant clearing of the linger_risk flag 6981 - MINOR: connection: make conn_sock_shutw() actually perform the shutdown() call 6982 - MINOR: stream-int: use conn_sock_shutw() to shutdown a connection 6983 - MINOR: connection: perform the call to xprt->shutw() in conn_data_shutw() 6984 - MEDIUM: stream-int: replace xprt->shutw calls with conn_data_shutw() 6985 - MINOR: checks: use conn_data_shutw_hard() instead of call via xprt 6986 - MINOR: connection: implement conn_sock_send() 6987 - MEDIUM: stream-int: make conn_si_send_proxy() use conn_sock_send() 6988 - MEDIUM: connection: make conn_drain() perform more controls 6989 - REORG: connection: move conn_drain() to connection.c and rename it 6990 - CLEANUP: stream-int: remove inclusion of fd.h that is not used anymore 6991 - MEDIUM: channel: don't always set CF_WAKE_WRITE on bi_put* 6992 - CLEANUP: lua: don't use si_ic/si_oc on known stream-ints 6993 - BUG/MEDIUM: peers: correctly configure the client timeout 6994 - MINOR: peers: centralize configuration of the peers frontend 6995 - MINOR: proxy: store the default target into the frontend's configuration 6996 - MEDIUM: stats: use frontend_accept() as the accept function 6997 - MEDIUM: peers: use frontend_accept() instead of peer_accept() 6998 - CLEANUP: listeners: remove unused timeout 6999 - MEDIUM: listener: store the default target per listener 7000 - BUILD: fix automatic inclusion of libdl. 7001 - MEDIUM: lua: implement a simple memory allocator 7002 - MEDIUM: compression: postpone buffer adjustments after compression 7003 - MEDIUM: compression: don't send leading zeroes with chunk size 7004 - BUG/MINOR: compression: consider the expansion factor in init 7005 - MINOR: http: check the algo name "identity" instead of the function pointer 7006 - CLEANUP: compression: statify all algo-specific functions 7007 - MEDIUM: compression: add a distinction between UA- and config- algorithms 7008 - MEDIUM: compression: add new "raw-deflate" compression algorithm 7009 - MEDIUM: compression: split deflate_flush() into flush and finish 7010 - CLEANUP: compression: remove unused reset functions 7011 - MAJOR: compression: integrate support for libslz 7012 - BUG/MEDIUM: http: hdr_cnt would not count any header when called without name 7013 - BUG/MAJOR: http: null-terminate the http actions keywords list 7014 - CLEANUP: lua: remove the unused hlua_sleep memory pool 7015 - BUG/MAJOR: lua: use correct object size when initializing a new converter 7016 - CLEANUP: lua: remove hard-coded sizeof() in object creations and mallocs 7017 - CLEANUP: lua: fix confusing local variable naming in hlua_txn_new() 7018 - CLEANUP: hlua: stop using variable name "s" alternately for hlua_txn and hlua_smp 7019 - CLEANUP: lua: get rid of the last "*ht" for struct hlua_txn. 7020 - CLEANUP: lua: rename last occurrences of "*s" to "*htxn" for hlua_txn 7021 - CLEANUP: lua: rename variable "sc" for struct hlua_smp 7022 - CLEANUP: lua: get rid of the last two "*hs" for hlua_smp 7023 - REORG/MAJOR: session: rename the "session" entity to "stream" 7024 - REORG/MEDIUM: stream: rename stream flags from SN_* to SF_* 7025 - MINOR: session: start to reintroduce struct session 7026 - MEDIUM: stream: allocate the session when a stream is created 7027 - MEDIUM: stream: move the listener's pointer to the session 7028 - MEDIUM: stream: move the frontend's pointer to the session 7029 - MINOR: session: add a pointer to the session's origin 7030 - MEDIUM: session: use the pointer to the origin instead of s->si[0].end 7031 - CLEANUP: sample: remove useless tests in fetch functions for l4 != NULL 7032 - MEDIUM: http: move header captures from http_txn to struct stream 7033 - MINOR: http: create a dedicated pool for http_txn 7034 - MAJOR: http: move http_txn out of struct stream 7035 - MAJOR: sample: don't pass l7 anymore to sample fetch functions 7036 - CLEANUP: lua: remove unused hlua_smp->l7 and hlua_txn->l7 7037 - MEDIUM: http: remove the now useless http_txn from {req/res} rules 7038 - CLEANUP: lua: don't pass http_txn anymore to hlua_request_act_wrapper() 7039 - MAJOR: sample: pass a pointer to the session to each sample fetch function 7040 - MINOR: stream: provide a few helpers to retrieve frontend, listener and origin 7041 - CLEANUP: stream: don't set ->target to the incoming connection anymore 7042 - MINOR: stream: move session initialization before the stream's 7043 - MINOR: session: store the session's accept date 7044 - MINOR: session: don't rely on s->logs.logwait in embryonic sessions 7045 - MINOR: session: implement session_free() and use it everywhere 7046 - MINOR: session: add stick counters to the struct session 7047 - REORG: stktable: move the stkctr_* functions from stream to sticktable 7048 - MEDIUM: streams: support looking up stkctr in the session 7049 - MEDIUM: session: update the session's stick counters upon session_free() 7050 - MEDIUM: proto_tcp: track the session's counters in the connection ruleset 7051 - MAJOR: tcp: make tcp_exec_req_rules() only rely on the session 7052 - MEDIUM: stream: don't call stream_store_counters() in kill_mini_session() nor session_accept() 7053 - MEDIUM: stream: move all the session-specific stuff of stream_accept() earlier 7054 - MAJOR: stream: don't initialize the stream anymore in stream_accept 7055 - MEDIUM: session: remove the task pointer from the session 7056 - REORG: session: move the session parts out of stream.c 7057 - MINOR: stream-int: make appctx_new() take the applet in argument 7058 - MEDIUM: peers: move the appctx initialization earlier 7059 - MINOR: session: introduce session_new() 7060 - MINOR: session: make use of session_new() when creating a new session 7061 - MINOR: peers: make use of session_new() when creating a new session 7062 - MEDIUM: peers: initialize the task before the stream 7063 - MINOR: session: set the CO_FL_CONNECTED flag on the connection once ready 7064 - CLEANUP: stream.c: do not re-attach the connection to the stream 7065 - MEDIUM: stream: isolate connection-specific initialization code 7066 - MEDIUM: stream: also accept appctx as origin in stream_accept_session() 7067 - MEDIUM: peers: make use of stream_accept_session() 7068 - MEDIUM: frontend: make ->accept only return +/-1 7069 - MEDIUM: stream: return the stream upon accept() 7070 - MEDIUM: frontend: move some stream initialisation to stream_new() 7071 - MEDIUM: frontend: move the fd-specific settings to session_accept_fd() 7072 - MEDIUM: frontend: don't restrict frontend_accept() to connections anymore 7073 - MEDIUM: frontend: move some remaining stream settings to stream_new() 7074 - CLEANUP: frontend: remove one useless local variable 7075 - MEDIUM: stream: don't rely on the session's listener anymore in stream_new() 7076 - MEDIUM: lua: make use of stream_new() to create an outgoing connection 7077 - MINOR: lua: minor cleanup in hlua_socket_new() 7078 - MINOR: lua: no need for setting timeouts / conn_retries in hlua_socket_new() 7079 - MINOR: peers: no need for setting timeouts / conn_retries in peer_session_create() 7080 - CLEANUP: stream-int: swap stream-int and appctx declarations 7081 - CLEANUP: namespaces: fix protection against multiple inclusions 7082 - MINOR: session: maintain the session count stats in the session, not the stream 7083 - MEDIUM: session: adjust the connection flags before stream_new() 7084 - MINOR: stream: pass the pointer to the origin explicitly to stream_new() 7085 - CLEANUP: poll: move the conditions for waiting out of the poll functions 7086 - BUG/MEDIUM: listener: don't report an error when resuming unbound listeners 7087 - BUG/MEDIUM: init: don't limit cpu-map to the first 32 processes only 7088 - BUG/MAJOR: tcp/http: fix current_rule assignment when restarting over a ruleset 7089 - BUG/MEDIUM: stream-int: always reset si->ops when si->end is nullified 7090 - DOC: update the entities diagrams 7091 - BUG/MEDIUM: http: properly retrieve the front connection 7092 - MINOR: applet: add a new "owner" pointer in the appctx 7093 - MEDIUM: applet: make the applet not depend on a stream interface anymore 7094 - REORG: applet: move the applet definitions out of stream_interface 7095 - CLEANUP: applet: rename struct si_applet to applet 7096 - REORG: stream-int: create si_applet_ops dedicated to applets 7097 - MEDIUM: applet: add basic support for an applet run queue 7098 - MEDIUM: applet: implement a run queue for active appctx 7099 - MEDIUM: stream-int: add a new function si_applet_done() 7100 - MAJOR: applet: now call si_applet_done() instead of si_update() in I/O handlers 7101 - MAJOR: stream: use a regular ->update for all stream interfaces 7102 - MEDIUM: dumpstats: don't unregister the applet anymore 7103 - MEDIUM: applet: centralize the call to si_applet_done() in the I/O handler 7104 - MAJOR: stream: do not allocate request buffers anymore when the left side is an applet 7105 - MINOR: stream-int: add two flags to indicate an applet's wishes regarding I/O 7106 - MEDIUM: applet: make the applets only use si_applet_{cant|want|stop}_{get|put} 7107 - MEDIUM: stream-int: pause the appctx if the task is woken up 7108 - BUG/MAJOR: tcp: only call registered actions when they're registered 7109 - BUG/MEDIUM: peers: fix applet scheduling 7110 - BUG/MEDIUM: peers: recent applet changes broke peers updates scheduling 7111 - MINOR: tools: provide an rdtsc() function for time comparisons 7112 - IMPORT: lru: import simple ebtree-based LRU functions 7113 - IMPORT: hash: import xxhash-r39 7114 - MEDIUM: pattern: add a revision to all pattern expressions 7115 - MAJOR: pattern: add LRU-based cache on pattern matching 7116 - BUG/MEDIUM: http: remove content-length from chunked messages 7117 - DOC: http: update the comments about the rules for determining transfer-length 7118 - BUG/MEDIUM: http: do not restrict parsing of transfer-encoding to HTTP/1.1 7119 - BUG/MEDIUM: http: incorrect transfer-coding in the request is a bad request 7120 - BUG/MEDIUM: http: remove content-length form responses with bad transfer-encoding 7121 - MEDIUM: http: restrict the HTTP version token to 1 digit as per RFC7230 7122 - MEDIUM: http: disable support for HTTP/0.9 by default 7123 - MEDIUM: http: add option-ignore-probes to get rid of the floods of 408 7124 - BUG/MINOR: config: clear proxy->table.peers.p for disabled proxies 7125 - MEDIUM: init: don't stop proxies in parent process when exiting 7126 - MINOR: stick-table: don't attach to peers in stopped state 7127 - MEDIUM: config: initialize stick-tables after peers, not before 7128 - MEDIUM: peers: add the ability to disable a peers section 7129 - MINOR: peers: store the pointer to the signal handler 7130 - MEDIUM: peers: unregister peers that were never started 7131 - MEDIUM: config: propagate the table's process list to the peers sections 7132 - MEDIUM: init: stop any peers section not bound to the correct process 7133 - MEDIUM: config: validate that peers sections are bound to exactly one process 7134 - MAJOR: peers: allow peers section to be used with nbproc > 1 7135 - DOC: relax the peers restriction to single-process 7136 - DOC: document option http-ignore-probes 7137 - DOC: fix the comments about the meaning of msg->sol in HTTP 7138 - BUG/MEDIUM: http: wait for the exact amount of body bytes in wait_for_request_body 7139 - BUG/MAJOR: http: prevent risk of reading past end with balance url_param 7140 - MEDIUM: stream: move HTTP request body analyser before process_common 7141 - MEDIUM: http: add a new option http-buffer-request 7142 - MEDIUM: http: provide 3 fetches for the body 7143 - DOC: update the doc on the proxy protocol 7144 - BUILD: pattern: fix build warnings introduced in the LRU cache 7145 - BUG/MEDIUM: stats: properly initialize the scope before dumping stats 7146 - CLEANUP: config: fix misleading information in error message. 7147 - MINOR: config: report the number of processes using a peers section in the error case 7148 - BUG/MEDIUM: config: properly compute the default number of processes for a proxy 7149 - MEDIUM: http: add new "capture" action for http-request 7150 - BUG/MEDIUM: http: fix the http-request capture parser 7151 - BUG/MEDIUM: http: don't forward client shutdown without NOLINGER except for tunnels 7152 - BUILD/MINOR: ssl: fix build failure introduced by recent patch 7153 - BUG/MAJOR: check: fix breakage of inverted tcp-check rules 7154 - CLEANUP: checks: fix double usage of cur / current_step in tcp-checks 7155 - BUG/MEDIUM: checks: do not dereference head of a tcp-check at the end 7156 - CLEANUP: checks: simplify the loop processing of tcp-checks 7157 - BUG/MAJOR: checks: always check for end of list before proceeding 7158 - BUG/MEDIUM: checks: do not dereference a list as a tcpcheck struct 7159 - BUG/MAJOR: checks: break infinite loops when tcp-checks starts with comment 7160 - MEDIUM: http: make url_param iterate over multiple occurrences 7161 - BUG/MEDIUM: peers: apply a random reconnection timeout 7162 - MEDIUM: config: reject invalid config with name duplicates 7163 - MEDIUM: config: reject conflicts in table names 7164 - CLEANUP: proxy: make the proxy lookup functions more user-friendly 7165 - MINOR: proxy: simply ignore duplicates in proxy name lookups 7166 - MINOR: config: don't open-code proxy name lookups 7167 - MEDIUM: config: clarify the conflicting modes detection for backend rules 7168 - CLEANUP: proxy: remove now unused function findproxy_mode() 7169 - MEDIUM: stick-table: remove the now duplicate find_stktable() function 7170 - MAJOR: config: remove the deprecated reqsetbe / reqisetbe actions 7171 - MINOR: proxy: add a new function proxy_find_by_id() 7172 - MINOR: proxy: add a flag to memorize that the proxy's ID was forced 7173 - MEDIUM: proxy: add a new proxy_find_best_match() function 7174 - CLEANUP: http: explicitly reference request in http_apply_redirect_rules() 7175 - MINOR: http: prepare support for parsing redirect actions on responses 7176 - MEDIUM: http: implement http-response redirect rules 7177 - MEDIUM: http: no need to close the request on redirect if data was parsed 7178 - BUG/MEDIUM: http: fix body processing for the stats applet 7179 - BUG/MINOR: da: fix log-level comparison to emove annoying warning 7180 - CLEANUP: global: remove one ifdef USE_DEVICEATLAS 7181 - CLEANUP: da: move the converter registration to da.c 7182 - CLEANUP: da: register the config keywords in da.c 7183 - CLEANUP: adjust the envelope name in da.h to reflect the file name 7184 - CLEANUP: da: remove ifdef USE_DEVICEATLAS from da.c 7185 - BUILD: make 51D easier to build by defaulting to 51DEGREES_SRC 7186 - BUILD: fix build warning when not using 51degrees 7187 - BUILD: make DeviceAtlas easier to build by defaulting to DEVICEATLAS_SRC 7188 - BUILD: ssl: fix recent build breakage on older SSL libs 7189 71902015/03/11 : 1.6-dev1 7191 - CLEANUP: extract temporary $CFG to eliminate duplication 7192 - CLEANUP: extract temporary $BIN to eliminate duplication 7193 - CLEANUP: extract temporary $PIDFILE to eliminate duplication 7194 - CLEANUP: extract temporary $LOCKFILE to eliminate duplication 7195 - CLEANUP: extract quiet_check() to avoid duplication 7196 - BUG/MINOR: don't start haproxy on reload 7197 - DOC: Address issue where documentation is excluded due to a gitignore rule. 7198 - BUG/MEDIUM: systemd: set KillMode to 'mixed' 7199 - BUILD: fix "make install" to support spaces in the install dirs 7200 - BUG/MINOR: config: http-request replace-header arg typo 7201 - BUG: config: error in http-response replace-header number of arguments 7202 - DOC: missing track-sc* in http-request rules 7203 - BUILD: lua: missing ifdef related to SSL when enabling LUA 7204 - BUG/MEDIUM: regex: fix pcre_study error handling 7205 - MEDIUM: regex: Use pcre_study always when PCRE is used, regardless of JIT 7206 - BUG/MINOR: Fix search for -p argument in systemd wrapper. 7207 - MEDIUM: Improve signal handling in systemd wrapper. 7208 - DOC: fix typo in Unix Socket commands 7209 - BUG/MEDIUM: checks: external checks can't change server status to UP 7210 - BUG/MEDIUM: checks: segfault with external checks in a backend section 7211 - BUG/MINOR: checks: external checks shouldn't wait for timeout to return the result 7212 - BUG/MEDIUM: auth: fix segfault with http-auth and a configuration with an unknown encryption algorithm 7213 - BUG/MEDIUM: config: userlists should ensure that encrypted passwords are supported 7214 - BUG/MINOR: config: don't propagate process binding for dynamic use_backend 7215 - BUG/MINOR: log: fix request flags when keep-alive is enabled 7216 - BUG/MEDIUM: checks: fix conflicts between agent checks and ssl healthchecks 7217 - MINOR: checks: allow external checks in backend sections 7218 - MEDIUM: checks: provide environment variables to the external checks 7219 - MINOR: checks: update dynamic environment variables in external checks 7220 - DOC: checks: environment variables used by "external-check command" 7221 - BUG/MEDIUM: backend: correctly detect the domain when use_domain_only is used 7222 - MINOR: ssl: load certificates in alphabetical order 7223 - BUG/MINOR: checks: prevent http keep-alive with http-check expect 7224 - MINOR: lua: typo in an error message 7225 - MINOR: report the Lua version in -vv 7226 - MINOR: lua: add a compilation error message when compiled with an incompatible version 7227 - BUG/MEDIUM: lua: segfault when calling haproxy sample fetches from lua 7228 - BUILD: try to automatically detect the Lua library name 7229 - BUILD/CLEANUP: systemd: avoid a warning due to mixed code and declaration 7230 - BUG/MEDIUM: backend: Update hash to use unsigned int throughout 7231 - BUG/MEDIUM: connection: fix memory corruption when building a proxy v2 header 7232 - MEDIUM: connection: add new bit in Proxy Protocol V2 7233 - BUG/MINOR: ssl: rejects OCSP response without nextupdate. 7234 - BUG/MEDIUM: ssl: Fix to not serve expired OCSP responses. 7235 - BUG/MINOR: ssl: Fix OCSP resp update fails with the same certificate configured twice. 7236 - BUG/MINOR: ssl: Fix external function in order not to return a pointer on an internal trash buffer. 7237 - MINOR: add fetchs 'ssl_c_der' and 'ssl_f_der' to return DER formatted certs 7238 - MINOR: ssl: add statement to force some ssl options in global. 7239 - BUG/MINOR: ssl: correctly initialize ssl ctx for invalid certificates 7240 - BUG/MEDIUM: ssl: fix bad ssl context init can cause segfault in case of OOM. 7241 - BUG/MINOR: samples: fix unnecessary memcopy converting binary to string. 7242 - MINOR: samples: adds the bytes converter. 7243 - MINOR: samples: adds the field converter. 7244 - MINOR: samples: add the word converter. 7245 - BUG/MINOR: server: move the directive #endif to the end of file 7246 - BUG/MAJOR: buffer: check the space left is enough or not when input data in a buffer is wrapped 7247 - DOC: fix a few typos 7248 - CLEANUP: epoll: epoll_events should be allocated according to global.tune.maxpollevents 7249 - BUG/MINOR: http: fix typo: "401 Unauthorized" => "407 Unauthorized" 7250 - BUG/MINOR: parse: refer curproxy instead of proxy 7251 - BUG/MINOR: parse: check the validity of size string in a more strict way 7252 - BUILD: add new target 'make uninstall' to support uninstalling haproxy from OS 7253 - DOC: expand the docs for the provided stats. 7254 - BUG/MEDIUM: unix: do not unlink() abstract namespace sockets upon failure. 7255 - MEDIUM: ssl: Certificate Transparency support 7256 - MEDIUM: stats: proxied stats admin forms fix 7257 - MEDIUM: http: Compress HTTP responses with status codes 201,202,203 in addition to 200 7258 - BUG/MEDIUM: connection: sanitize PPv2 header length before parsing address information 7259 - MAJOR: namespace: add Linux network namespace support 7260 - MINOR: systemd: Check configuration before start 7261 - BUILD: ssl: handle boringssl in openssl version detection 7262 - BUILD: ssl: disable OCSP when using boringssl 7263 - BUILD: ssl: don't call get_rfc2409_prime when using boringssl 7264 - MINOR: ssl: don't use boringssl's cipher_list 7265 - BUILD: ssl: use OPENSSL_NO_OCSP to detect OCSP support 7266 - MINOR: stats: fix minor typo in HTML page 7267 - MINOR: Also accept SIGHUP/SIGTERM in systemd-wrapper 7268 - MEDIUM: Add support for configurable TLS ticket keys 7269 - DOC: Document the new tls-ticket-keys bind keyword 7270 - DOC: clearly state that the "show sess" output format is not fixed 7271 - MINOR: stats: fix minor typo fix in stats_dump_errors_to_buffer() 7272 - DOC: httplog does not support 'no' 7273 - BUG/MEDIUM: ssl: Fix a memory leak in DHE key exchange 7274 - MINOR: ssl: use SSL_get_ciphers() instead of directly accessing the cipher list. 7275 - BUG/MEDIUM: Consistently use 'check' in process_chk 7276 - MEDIUM: Add external check 7277 - BUG/MEDIUM: Do not set agent health to zero if server is disabled in config 7278 - MEDIUM/BUG: Only explicitly report "DOWN (agent)" if the agent health is zero 7279 - MEDIUM: Remove connect_chk 7280 - MEDIUM: Refactor init_check and move to checks.c 7281 - MEDIUM: Add free_check() helper 7282 - MEDIUM: Move proto and addr fields struct check 7283 - MEDIUM: Attach tcpcheck_rules to check 7284 - MEDIUM: Add parsing of mailers section 7285 - MEDIUM: Allow configuration of email alerts 7286 - MEDIUM: Support sending email alerts 7287 - DOC: Document email alerts 7288 - MINOR: Remove trailing '.' from email alert messages 7289 - MEDIUM: Allow suppression of email alerts by log level 7290 - BUG/MEDIUM: Do not consider an agent check as failed on L7 error 7291 - MINOR: deinit: fix memory leak 7292 - MINOR: http: export the function 'smp_fetch_base32' 7293 - BUG/MEDIUM: http: tarpit timeout is reset 7294 - MINOR: sample: add "json" converter 7295 - BUG/MEDIUM: pattern: don't load more than once a pattern list. 7296 - MINOR: map/acl/dumpstats: remove the "Done." message 7297 - BUG/MAJOR: ns: HAProxy segfault if the cli_conn is not from a network connection 7298 - BUG/MINOR: pattern: error message missing 7299 - BUG/MEDIUM: pattern: some entries are not deleted with case insensitive match 7300 - BUG/MINOR: ARG6 and ARG7 don't fit in a 32 bits word 7301 - MAJOR: poll: only rely on wake_expired_tasks() to compute the wait delay 7302 - MEDIUM: task: call session analyzers if the task is woken by a message. 7303 - MEDIUM: protocol: automatically pick the proto associated to the connection. 7304 - MEDIUM: channel: wake up any request analyzer on response activity 7305 - MINOR: converters: add a "void *private" argument to converters 7306 - MINOR: converters: give the session pointer as converter argument 7307 - MINOR: sample: add private argument to the struct sample_fetch 7308 - MINOR: global: export function and permits to not resolve DNS names 7309 - MINOR: sample: add function for browsing samples. 7310 - MINOR: global: export many symbols. 7311 - MINOR: includes: fix a lot of missing or useless includes 7312 - MEDIUM: tcp: add register keyword system. 7313 - MEDIUM: buffer: make bo_putblk/bo_putstr/bo_putchk return the number of bytes copied. 7314 - MEDIUM: http: change the code returned by the response processing rule functions 7315 - MEDIUM: http/tcp: permit to resume http and tcp custom actions 7316 - MINOR: channel: functions to get data from a buffer without copy 7317 - MEDIUM: lua: lua integration in the build and init system. 7318 - MINOR: lua: add ease functions 7319 - MINOR: lua: add runtime execution context 7320 - MEDIUM: lua: "com" signals 7321 - MINOR: lua: add the configuration directive "lua-load" 7322 - MINOR: lua: core: create "core" class and object 7323 - MINOR: lua: post initialisation bindings 7324 - MEDIUM: lua: add coroutine as tasks. 7325 - MINOR: lua: add sample and args type converters 7326 - MINOR: lua: txn: create class TXN associated with the transaction. 7327 - MINOR: lua: add shared context in the lua stack 7328 - MINOR: lua: txn: import existing sample-fetches in the class TXN 7329 - MINOR: lua: txn: add lua function in TXN that returns an array of http headers 7330 - MINOR: lua: register and execute sample-fetches in LUA 7331 - MINOR: lua: register and execute converters in LUA 7332 - MINOR: lua: add bindings for tcp and http actions 7333 - MINOR: lua: core: add sleep functions 7334 - MEDIUM: lua: socket: add "socket" class for TCP I/O 7335 - MINOR: lua: core: pattern and acl manipulation 7336 - MINOR: lua: channel: add "channel" class 7337 - MINOR: lua: txn: object "txn" provides two objects "channel" 7338 - MINOR: lua: core: can set the nice of the current task 7339 - MINOR: lua: core: can yield an execution stack 7340 - MINOR: lua: txn: add binding for closing the client connection. 7341 - MEDIUM: lua: Lua initialisation "on demand" 7342 - BUG/MAJOR: lua: send function fails and return bad bytes 7343 - MINOR: remove unused declaration. 7344 - MINOR: lua: remove some #define 7345 - MINOR: lua: use bitfield and macro in place of integer and enum 7346 - MINOR: lua: set skeleton for Lua execution expiration 7347 - MEDIUM: lua: each yielding function returns a wake up time. 7348 - MINOR: lua: adds "forced yield" flag 7349 - MEDIUM: lua: interrupt the Lua execution for running other process 7350 - MEDIUM: lua: change the sleep function core 7351 - BUG/MEDIUM: lua: the execution timeout is ignored in yield case 7352 - DOC: lua: Lua configuration documentation 7353 - MINOR: lua: add the struct session in the lua channel struct 7354 - BUG/MINOR: lua: set buffer if it is nnot avalaible. 7355 - BUG/MEDIUM: lua: reset flags before resuming execution 7356 - BUG/MEDIUM: lua: fix infinite loop about channel 7357 - BUG/MEDIUM: lua: the Lua process is not waked up after sending data on requests side 7358 - BUG/MEDIUM: lua: many errors when we try to send data with the channel API 7359 - MEDIUM: lua: use the Lua-5.3 version of the library 7360 - BUG/MAJOR: lua: some function are not yieldable, the forced yield causes errors 7361 - BUG/MEDIUM: lua: can't handle the response bytes 7362 - BUG/MEDIUM: lua: segfault with buffer_replace2 7363 - BUG/MINOR: lua: check buffers before initializing socket 7364 - BUG/MINOR: log: segfault if there are no proxy reference 7365 - BUG/MEDIUM: lua: sockets don't have buffer to write data 7366 - BUG/MEDIUM: lua: cannot connect socket 7367 - BUG/MINOR: lua: sockets receive behavior doesn't follows the specs 7368 - BUG/BUILD: lua: The strict Lua 5.3 version check is not done. 7369 - BUG/MEDIUM: buffer: one byte miss in buffer free space check 7370 - MEDIUM: lua: make the functions hlua_gethlua() and hlua_sethlua() faster 7371 - MINOR: replace the Core object by a simple model. 7372 - MEDIUM: lua: change the objects configuration 7373 - MEDIUM: lua: create a namespace for the fetches 7374 - MINOR: converters: add function to browse converters 7375 - MINOR: lua: wrapper for converters 7376 - MINOR: lua: replace function (req|get)_channel by a variable 7377 - MINOR: lua: fetches and converters can return an empty string in place of nil 7378 - DOC: lua api 7379 - BUG/MEDIUM: sample: fix random number upper-bound 7380 - BUG/MINOR: stats:Fix incorrect printf type. 7381 - BUG/MAJOR: session: revert all the crappy client-side timeout changes 7382 - BUG/MINOR: logs: properly initialize and count log sockets 7383 - BUG/MEDIUM: http: fetch "base" is not compatible with set-header 7384 - BUG/MINOR: counters: do not untrack counters before logging 7385 - BUG/MAJOR: sample: correctly reinitialize sample fetch context before calling sample_process() 7386 - MINOR: stick-table: make stktable_fetch_key() indicate why it failed 7387 - BUG/MEDIUM: counters: fix track-sc* to wait on unstable contents 7388 - BUILD: remove TODO from the spec file and add README 7389 - MINOR: log: make MAX_SYSLOG_LEN overridable at build time 7390 - MEDIUM: log: support a user-configurable max log line length 7391 - DOC: provide an example of how to use ssl_c_sha1 7392 - BUILD: checks: external checker needs signal.h 7393 - BUILD: checks: kill a minor warning on Solaris in external checks 7394 - BUILD: http: fix isdigit & isspace warnings on Solaris 7395 - BUG/MINOR: listener: set the listener's fd to -1 after deletion 7396 - BUG/MEDIUM: unix: failed abstract socket binding is retryable 7397 - MEDIUM: listener: implement a per-protocol pause() function 7398 - MEDIUM: listener: support rebinding during resume() 7399 - BUG/MEDIUM: unix: completely unbind abstract sockets during a pause() 7400 - DOC: explicitly mention the limits of abstract namespace sockets 7401 - DOC: minor fix on {sc,src}_kbytes_{in,out} 7402 - DOC: fix alphabetical sort of converters 7403 - MEDIUM: stick-table: implement lookup from a sample fetch 7404 - MEDIUM: stick-table: add new converters to fetch table data 7405 - MINOR: samples: add two converters for the date format 7406 - BUG/MAJOR: http: correctly rewind the request body after start of forwarding 7407 - DOC: remove references to CPU=native in the README 7408 - DOC: mention that "compression offload" is ignored in defaults section 7409 - DOC: mention that Squid correctly responds 400 to PPv2 header 7410 - BUILD: fix dependencies between config and compat.h 7411 - MINOR: session: export the function 'smp_fetch_sc_stkctr' 7412 - MEDIUM: stick-table: make it easier to register extra data types 7413 - BUG/MINOR: http: base32+src should use the big endian version of base32 7414 - MINOR: sample: allow IP address to cast to binary 7415 - MINOR: sample: add new converters to hash input 7416 - MINOR: sample: allow integers to cast to binary 7417 - BUILD: report commit ID in git versions as well 7418 - CLEANUP: session: move the stick counters declarations to stick_table.h 7419 - MEDIUM: http: add the track-sc* actions to http-request rules 7420 - BUG/MEDIUM: connection: fix proxy v2 header again! 7421 - BUG/MAJOR: tcp: fix a possible busy spinning loop in content track-sc* 7422 - OPTIM/MINOR: proxy: reduce struct proxy by 48 bytes on 64-bit archs 7423 - MINOR: log: add a new field "%lc" to implement a per-frontend log counter 7424 - BUG/MEDIUM: http: fix inverted condition in pat_match_meth() 7425 - BUG/MEDIUM: http: fix improper parsing of HTTP methods for use with ACLs 7426 - BUG/MINOR: pattern: remove useless allocation of unused trash in pat_parse_reg() 7427 - BUG/MEDIUM: acl: correctly compute the output type when a converter is used 7428 - CLEANUP: acl: cleanup some of the redundancy and spaghetti after last fix 7429 - BUG/CRITICAL: http: don't update msg->sov once data start to leave the buffer 7430 - MEDIUM: http: enable header manipulation for 101 responses 7431 - BUG/MEDIUM: config: propagate frontend to backend process binding again. 7432 - MEDIUM: config: properly propagate process binding between proxies 7433 - MEDIUM: config: make the frontends automatically bind to the listeners' processes 7434 - MEDIUM: config: compute the exact bind-process before listener's maxaccept 7435 - MEDIUM: config: only warn if stats are attached to multi-process bind directives 7436 - MEDIUM: config: report it when tcp-request rules are misplaced 7437 - DOC: indicate in the doc that track-sc* can wait if data are missing 7438 - MINOR: config: detect the case where a tcp-request content rule has no inspect-delay 7439 - MEDIUM: systemd-wrapper: support multiple executable versions and names 7440 - BUG/MEDIUM: remove debugging code from systemd-wrapper 7441 - BUG/MEDIUM: http: adjust close mode when switching to backend 7442 - BUG/MINOR: config: don't propagate process binding on fatal errors. 7443 - BUG/MEDIUM: check: rule-less tcp-check must detect connect failures 7444 - BUG/MINOR: tcp-check: report the correct failed step in the status 7445 - DOC: indicate that weight zero is reported as DRAIN 7446 - BUG/MEDIUM: config: avoid skipping disabled proxies 7447 - BUG/MINOR: config: do not accept more track-sc than configured 7448 - BUG/MEDIUM: backend: fix URI hash when a query string is present 7449 - BUG/MEDIUM: http: don't dump debug headers on MSG_ERROR 7450 - BUG/MAJOR: cli: explicitly call cli_release_handler() upon error 7451 - BUG/MEDIUM: tcp: fix outgoing polling based on proxy protocol 7452 - BUILD/MINOR: ssl: de-constify "ciphers" to avoid a warning on openssl-0.9.8 7453 - BUG/MEDIUM: tcp: don't use SO_ORIGINAL_DST on non-AF_INET sockets 7454 - BUG/BUILD: revert accidental change in the makefile from latest SSL fix 7455 - BUG/MEDIUM: ssl: force a full GC in case of memory shortage 7456 - MEDIUM: ssl: add support for smaller SSL records 7457 - MINOR: session: release a few other pools when stopping 7458 - MINOR: task: release the task pool when stopping 7459 - BUG/MINOR: config: don't inherit the default balance algorithm in frontends 7460 - BUG/MAJOR: frontend: initialize capture pointers earlier 7461 - BUG/MINOR: stats: correctly set the request/response analysers 7462 - MAJOR: polling: centralize calls to I/O callbacks 7463 - DOC: fix typo in the body parser documentation for msg.sov 7464 - BUG/MINOR: peers: the buffer size is global.tune.bufsize, not trash.size 7465 - MINOR: sample: add a few basic internal fetches (nbproc, proc, stopping) 7466 - DEBUG: pools: apply poisonning on every allocated pool 7467 - BUG/MAJOR: sessions: unlink session from list on out of memory 7468 - BUG/MEDIUM: patterns: previous fix was incomplete 7469 - BUG/MEDIUM: payload: ensure that a request channel is available 7470 - BUG/MINOR: tcp-check: don't condition data polling on check type 7471 - BUG/MEDIUM: tcp-check: don't rely on random memory contents 7472 - BUG/MEDIUM: tcp-checks: disable quick-ack unless next rule is an expect 7473 - BUG/MINOR: config: fix typo in condition when propagating process binding 7474 - BUG/MEDIUM: config: do not propagate processes between stopped processes 7475 - BUG/MAJOR: stream-int: properly check the memory allocation return 7476 - BUG/MEDIUM: memory: fix freeing logic in pool_gc2() 7477 - BUG/MAJOR: namespaces: conn->target is not necessarily a server 7478 - BUG/MEDIUM: compression: correctly report zlib_mem 7479 - CLEANUP: lists: remove dead code 7480 - CLEANUP: memory: remove dead code 7481 - CLEANUP: memory: replace macros pool_alloc2/pool_free2 with functions 7482 - MINOR: memory: cut pool allocator in 3 layers 7483 - MEDIUM: memory: improve pool_refill_alloc() to pass a refill count 7484 - MINOR: stream-int: retrieve session pointer from stream-int 7485 - MINOR: buffer: reset a buffer in b_reset() and not channel_init() 7486 - MEDIUM: buffer: use b_alloc() to allocate and initialize a buffer 7487 - MINOR: buffer: move buffer initialization after channel initialization 7488 - MINOR: buffer: only use b_free to release buffers 7489 - MEDIUM: buffer: always assign a dummy empty buffer to channels 7490 - MEDIUM: buffer: add a new buf_wanted dummy buffer to report failed allocations 7491 - MEDIUM: channel: do not report full when buf_empty is present on a channel 7492 - MINOR: session: group buffer allocations together 7493 - MINOR: buffer: implement b_alloc_fast() 7494 - MEDIUM: buffer: implement b_alloc_margin() 7495 - MEDIUM: session: implement a basic atomic buffer allocator 7496 - MAJOR: session: implement a wait-queue for sessions who need a buffer 7497 - MAJOR: session: only allocate buffers when needed 7498 - MINOR: stats: report a "waiting" flags for sessions 7499 - MAJOR: session: only wake up as many sessions as available buffers permit 7500 - MINOR: config: implement global setting tune.buffers.reserve 7501 - MINOR: config: implement global setting tune.buffers.limit 7502 - MEDIUM: channel: implement a zero-copy buffer transfer 7503 - MEDIUM: stream-int: support splicing from applets 7504 - OPTIM: stream-int: try to send pending spliced data 7505 - CLEANUP: session: remove session_from_task() 7506 - DOC: add missing entry for log-format and clarify the text 7507 - MINOR: logs: add a new per-proxy "log-tag" directive 7508 - BUG/MEDIUM: http: fix header removal when previous header ends with pure LF 7509 - MINOR: config: extend the default max hostname length to 64 and beyond 7510 - BUG/MEDIUM: channel: fix possible integer overflow on reserved size computation 7511 - BUG/MINOR: channel: compare to_forward with buf->i, not buf->size 7512 - MINOR: channel: add channel_in_transit() 7513 - MEDIUM: channel: make buffer_reserved() use channel_in_transit() 7514 - MEDIUM: channel: make bi_avail() use channel_in_transit() 7515 - BUG/MEDIUM: channel: don't schedule data in transit for leaving until connected 7516 - CLEANUP: channel: rename channel_reserved -> channel_is_rewritable 7517 - MINOR: channel: rename channel_full() to !channel_may_recv() 7518 - MINOR: channel: rename buffer_reserved() to channel_reserved() 7519 - MINOR: channel: rename buffer_max_len() to channel_recv_limit() 7520 - MINOR: channel: rename bi_avail() to channel_recv_max() 7521 - MINOR: channel: rename bi_erase() to channel_truncate() 7522 - BUG/MAJOR: log: don't try to emit a log if no logger is set 7523 - MINOR: tools: add new round_2dig() function to round integers 7524 - MINOR: global: always export some SSL-specific metrics 7525 - MINOR: global: report information about the cost of SSL connections 7526 - MAJOR: init: automatically set maxconn and/or maxsslconn when possible 7527 - MINOR: http: add a new fetch "query" to extract the request's query string 7528 - MINOR: hash: add new function hash_crc32 7529 - MINOR: samples: provide a "crc32" converter 7530 - MEDIUM: backend: add the crc32 hash algorithm for load balancing 7531 - BUG/MINOR: args: add missing entry for ARGT_MAP in arg_type_names 7532 - BUG/MEDIUM: http: make http-request set-header compute the string before removal 7533 - MEDIUM: args: use #define to specify the number of bits used by arg types and counts 7534 - MEDIUM: args: increase arg type to 5 bits and limit arg count to 5 7535 - MINOR: args: add type-specific flags for each arg in a list 7536 - MINOR: args: implement a new arg type for regex : ARGT_REG 7537 - MEDIUM: regex: add support for passing regex flags to regex_exec_match() 7538 - MEDIUM: samples: add a regsub converter to perform regex-based transformations 7539 - BUG/MINOR: sample: fix case sensitivity for the regsub converter 7540 - MEDIUM: http: implement http-request set-{method,path,query,uri} 7541 - DOC: fix missing closing brackend on regsub 7542 - MEDIUM: samples: provide basic arithmetic and bitwise operators 7543 - MEDIUM: init: continue to enforce SYSTEM_MAXCONN with auto settings if set 7544 - BUG/MINOR: http: fix incorrect header value offset in replace-hdr/replace-value 7545 - BUG/MINOR: http: abort request processing on filter failure 7546 - MEDIUM: tcp: implement tcp-ut bind option to set TCP_USER_TIMEOUT 7547 - MINOR: ssl/server: add the "no-ssl-reuse" server option 7548 - BUG/MAJOR: peers: initialize s->buffer_wait when creating the session 7549 - MINOR: http: add a new function to iterate over each header line 7550 - MINOR: http: add the new sample fetches req.hdr_names and res.hdr_names 7551 - MEDIUM: task: always ensure that the run queue is consistent 7552 - BUILD: Makefile: add -Wdeclaration-after-statement 7553 - BUILD/CLEANUP: ssl: avoid a warning due to mixed code and declaration 7554 - BUILD/CLEANUP: config: silent 3 warnings about mixed declarations with code 7555 - MEDIUM: protocol: use a family array to index the protocol handlers 7556 - BUILD: lua: cleanup many mixed occurrences declarations & code 7557 - BUG/MEDIUM: task: fix recently introduced scheduler skew 7558 - BUG/MINOR: lua: report the correct function name in an error message 7559 - BUG/MAJOR: http: fix stats regression consecutive to HTTP_RULE_RES_YIELD 7560 - Revert "BUG/MEDIUM: lua: can't handle the response bytes" 7561 - MINOR: lua: convert IP addresses to type string 7562 - CLEANUP: lua: use the same function names in C and Lua 7563 - REORG/MAJOR: move session's req and resp channels back into the session 7564 - CLEANUP: remove now unused channel pool 7565 - REORG/MEDIUM: stream-int: introduce si_ic/si_oc to access channels 7566 - MEDIUM: stream-int: add a flag indicating which side the SI is on 7567 - MAJOR: stream-int: only rely on SI_FL_ISBACK to find the requested channel 7568 - MEDIUM: stream-interface: remove now unused pointers to channels 7569 - MEDIUM: stream-int: make si_sess() use the stream int's side 7570 - MEDIUM: stream-int: use si_task() to retrieve the task from the stream int 7571 - MEDIUM: stream-int: remove any reference to the owner 7572 - CLEANUP: stream-int: add si_ib/si_ob to dereference the buffers 7573 - CLEANUP: stream-int: add si_opposite() to find the other stream interface 7574 - REORG/MEDIUM: channel: only use chn_prod / chn_cons to find stream-interfaces 7575 - MEDIUM: channel: add a new flag "CF_ISRESP" for the response channel 7576 - MAJOR: channel: only rely on the new CF_ISRESP flag to find the SI 7577 - MEDIUM: channel: remove now unused ->prod and ->cons pointers 7578 - CLEANUP: session: simplify references to chn_{prod,cons}(&s->{req,res}) 7579 - CLEANUP: session: use local variables to access channels / stream ints 7580 - CLEANUP: session: don't needlessly pass a pointer to the stream-int 7581 - CLEANUP: session: don't use si_{ic,oc} when we know the session. 7582 - CLEANUP: stream-int: limit usage of si_ic/si_oc 7583 - CLEANUP: lua: limit usage of si_ic/si_oc 7584 - MINOR: channel: add chn_sess() helper to retrieve session from channel 7585 - MEDIUM: session: simplify receive buffer allocator to only use the channel 7586 - MEDIUM: lua: use CF_ISRESP to detect the channel's side 7587 - CLEANUP: lua: remove the session pointer from hlua_channel 7588 - CLEANUP: lua: hlua_channel_new() doesn't need the pointer to the session anymore 7589 - MEDIUM: lua: remove struct hlua_channel 7590 - MEDIUM: lua: remove hlua_sample_fetch 7591 75922014/06/19 : 1.6-dev0 7593 - exact copy of 1.5.0 7594 75952014/06/19 : 1.5.0 7596 - MEDIUM: ssl: ignored file names ending as '.issuer' or '.ocsp'. 7597 - MEDIUM: ssl: basic OCSP stapling support. 7598 - MINOR: ssl/cli: Fix unapropriate comment in code on 'set ssl ocsp-response' 7599 - MEDIUM: ssl: add 300s supported time skew on OCSP response update. 7600 - MINOR: checks: mysql-check: Add support for v4.1+ authentication 7601 - MEDIUM: ssl: Add the option to use standardized DH parameters >= 1024 bits 7602 - MEDIUM: ssl: fix detection of ephemeral diffie-hellman key exchange by using the cipher description. 7603 - MEDIUM: http: add actions "replace-header" and "replace-values" in http-req/resp 7604 - MEDIUM: Break out check establishment into connect_chk() 7605 - MEDIUM: Add port_to_str helper 7606 - BUG/MEDIUM: fix ignored values for half-closed timeouts (client-fin and server-fin) in defaults section. 7607 - BUG/MEDIUM: Fix unhandled connections problem with systemd daemon mode and SO_REUSEPORT. 7608 - MINOR: regex: fix a little configuration memory leak. 7609 - MINOR: regex: Create JIT compatible function that return match strings 7610 - MEDIUM: regex: replace all standard regex function by own functions 7611 - MEDIUM: regex: Remove null terminated strings. 7612 - MINOR: regex: Use native PCRE API. 7613 - MINOR: missing regex.h include 7614 - DOC: Add Exim as Proxy Protocol implementer. 7615 - BUILD: don't use type "uint" which is not portable 7616 - BUILD: stats: workaround stupid and bogus -Werror=format-security behaviour 7617 - BUG/MEDIUM: http: clear CF_READ_NOEXP when preparing a new transaction 7618 - CLEANUP: http: don't clear CF_READ_NOEXP twice 7619 - DOC: fix proxy protocol v2 decoder example 7620 - DOC: fix remaining occurrences of "pattern extraction" 7621 - MINOR: log: allow the HTTP status code to be logged even in TCP frontends 7622 - MINOR: logs: don't limit HTTP header captures to HTTP frontends 7623 - MINOR: sample: improve sample_fetch_string() to report partial contents 7624 - MINOR: capture: extend the captures to support non-header keys 7625 - MINOR: tcp: prepare support for the "capture" action 7626 - MEDIUM: tcp: add a new tcp-request capture directive 7627 - MEDIUM: session: allow shorter retry delay if timeout connect is small 7628 - MEDIUM: session: don't apply the retry delay when redispatching 7629 - MEDIUM: session: redispatch earlier when possible 7630 - MINOR: config: warn when tcp-check rules are used without option tcp-check 7631 - BUG/MINOR: connection: make proxy protocol v1 support the UNKNOWN protocol 7632 - DOC: proxy protocol example parser was still wrong 7633 - DOC: minor updates to the proxy protocol doc 7634 - CLEANUP: connection: merge proxy proto v2 header and address block 7635 - MEDIUM: connection: add support for proxy protocol v2 in accept-proxy 7636 - MINOR: tools: add new functions to quote-encode strings 7637 - DOC: clarify the CSV format 7638 - MEDIUM: stats: report the last check and last agent's output on the CSV status 7639 - MINOR: freq_ctr: introduce a new averaging method 7640 - MEDIUM: session: maintain per-backend and per-server time statistics 7641 - MEDIUM: stats: report per-backend and per-server time stats in HTML and CSV outputs 7642 - BUG/MINOR: http: fix typos in previous patch 7643 - DOC: remove the ultra-obsolete TODO file 7644 - DOC: update roadmap 7645 - DOC: minor updates to the README 7646 - DOC: mention the maxconn limitations with the select poller 7647 - DOC: commit a few old design thoughts files 7648 76492014/05/28 : 1.5-dev26 7650 - BUG/MEDIUM: polling: fix possible CPU hogging of worker processes after receiving SIGUSR1. 7651 - BUG/MINOR: stats: fix a typo on a closing tag for a server tracking another one 7652 - OPTIM: stats: avoid the calculation of a useless link on tracking servers in maintenance 7653 - MINOR: fix a few memory usage errors 7654 - CONTRIB: halog: Filter input lines by date and time through timestamp 7655 - MINOR: ssl: SSL_CTX_set_options() and SSL_CTX_set_mode() take a long, not an int 7656 - BUG/MEDIUM: regex: fix risk of buffer overrun in exp_replace() 7657 - MINOR: acl: set "str" as default match for strings 7658 - DOC: Add some precisions about acl default matching method 7659 - MEDIUM: acl: strenghten the option parser to report invalid options 7660 - BUG/MEDIUM: config: a stats-less config crashes in 1.5-dev25 7661 - BUG/MINOR: checks: tcp-check must not stop on '\0' for binary checks 7662 - MINOR: stats: improve alignment of color codes to save one line of header 7663 - MINOR: checks: simplify and improve reporting of state changes when using log-health-checks 7664 - MINOR: server: remove the SRV_DRAIN flag which can always be deduced 7665 - MINOR: server: use functions to detect state changes and to update them 7666 - MINOR: server: create srv_was_usable() from srv_is_usable() and use a pointer 7667 - BUG/MINOR: stats: do not report "100%" in the thottle column when server is draining 7668 - BUG/MAJOR: config: don't free valid regex memory 7669 - BUG/MEDIUM: session: don't clear CF_READ_NOEXP if analysers are not called 7670 - BUG/MINOR: stats: tracking servers may incorrectly report an inherited DRAIN status 7671 - MEDIUM: proxy: make timeout parser a bit stricter 7672 - REORG/MEDIUM: server: split server state and flags in two different variables 7673 - REORG/MEDIUM: server: move the maintenance bits out of the server state 7674 - MAJOR: server: use states instead of flags to store the server state 7675 - REORG: checks: put the functions in the appropriate files ! 7676 - MEDIUM: server: properly support and propagate the maintenance status 7677 - MEDIUM: server: allow multi-level server tracking 7678 - CLEANUP: checks: rename the server_status_printf function 7679 - MEDIUM: checks: simplify server up/down/nolb transitions 7680 - MAJOR: checks: move health checks changes to set_server_check_status() 7681 - MINOR: server: make the status reporting function support a reason 7682 - MINOR: checks: simplify health check reporting functions 7683 - MINOR: server: implement srv_set_stopped() 7684 - MINOR: server: implement srv_set_running() 7685 - MINOR: server: implement srv_set_stopping() 7686 - MEDIUM: checks: simplify failure notification using srv_set_stopped() 7687 - MEDIUM: checks: simplify success notification using srv_set_running() 7688 - MEDIUM: checks: simplify stopping mode notification using srv_set_stopping() 7689 - MEDIUM: stats: report a server's own state instead of the tracked one's 7690 - MINOR: server: make use of srv_is_usable() instead of checking eweight 7691 - MAJOR: checks: add support for a new "drain" administrative mode 7692 - MINOR: stats: use the admin flags for soft enable/disable/stop/start on the web page 7693 - MEDIUM: stats: introduce new actions to simplify admin status management 7694 - MINOR: cli: introduce a new "set server" command 7695 - MINOR: stats: report a distinct output for DOWN caused by agent 7696 - MINOR: checks: support specific check reporting for the agent 7697 - MINOR: checks: support a neutral check result 7698 - BUG/MINOR: cli: "agent" was missing from the "enable"/"disable" help message 7699 - MEDIUM: cli: add support for enabling/disabling health checks. 7700 - MEDIUM: stats: report down caused by agent prior to reporting up 7701 - MAJOR: agent: rework the response processing and support additional actions 7702 - MINOR: stats: improve the stats web page to support more actions 7703 - CONTRIB: halog: avoid calling time/localtime/mktime for each line 7704 - DOC: document the workarouds for Google Chrome's bogus pre-connect 7705 - MINOR: stats: report SSL key computations per second 7706 - MINOR: stats: add counters for SSL cache lookups and misses 7707 77082014/05/10 : 1.5-dev25 7709 - MEDIUM: connection: Implement and extented PROXY Protocol V2 7710 - MINOR: ssl: clean unused ACLs declarations 7711 - MINOR: ssl: adds fetchs and ACLs for ssl back connection. 7712 - MINOR: ssl: merge client's and frontend's certificate functions. 7713 - MINOR: ssl: adds ssl_f_sha1 fetch to return frontend's certificate fingerprint 7714 - MINOR: ssl: adds sample converter base64 for binary type. 7715 - MINOR: ssl: convert to binary ssl_fc_unique_id and ssl_bc_unique_id. 7716 - BUG/MAJOR: ssl: Fallback to private session cache if current lock mode is not supported. 7717 - MAJOR: ssl: Change default locks on ssl session cache. 7718 - BUG/MINOR: chunk: Fix function chunk_strcmp and chunk_strcasecmp match a substring. 7719 - MINOR: ssl: add global statement tune.ssl.force-private-cache. 7720 - MINOR: ssl: remove fallback to SSL session private cache if lock init fails. 7721 - BUG/MEDIUM: patterns: last fix was still not enough 7722 - MINOR: http: export the smp_fetch_cookie function 7723 - MINOR: http: generic pointer to rule argument 7724 - BUG/MEDIUM: pattern: a typo breaks automatic acl/map numbering 7725 - BUG/MAJOR: patterns: -i and -n are ignored for inlined patterns 7726 - BUG/MINOR: proxy: unsafe initialization of HTTP transaction when switching from TCP frontend 7727 - BUG/MINOR: http: log 407 in case of proxy auth 7728 - MINOR: http: rely on the message body parser to send 100-continue 7729 - MEDIUM: http: move reqadd after execution of http_request redirect 7730 - MEDIUM: http: jump to dedicated labels after http-request processing 7731 - BUG/MINOR: http: block rules forgot to increment the denied_req counter 7732 - BUG/MINOR: http: block rules forgot to increment the session's request counter 7733 - MEDIUM: http: move Connection header processing earlier 7734 - MEDIUM: http: remove even more of the spaghetti in the request path 7735 - MINOR: http: silently support the "block" action for http-request 7736 - CLEANUP: proxy: rename "block_cond" to "block_rules" 7737 - MEDIUM: http: emulate "block" rules using "http-request" rules 7738 - MINOR: http: remove the now unused loop over "block" rules 7739 - MEDIUM: http: factorize the "auth" action of http-request and stats 7740 - MEDIUM: http: make http-request rules processing return a verdict instead of a rule 7741 - MINOR: config: add minimum support for emitting warnings only once 7742 - MEDIUM: config: inform the user about the deprecatedness of "block" rules 7743 - MEDIUM: config: inform the user that "reqsetbe" is deprecated 7744 - MEDIUM: config: inform the user only once that "redispatch" is deprecated 7745 - MEDIUM: config: warn that '{cli,con,srv}timeout' are deprecated 7746 - BUG/MINOR: auth: fix wrong return type in pat_match_auth() 7747 - BUILD: config: remove a warning with clang 7748 - BUG/MAJOR: http: connection setup may stall on balance url_param 7749 - BUG/MEDIUM: http/session: disable client-side expiration only after body 7750 - BUG/MEDIUM: http: correctly report request body timeouts 7751 - BUG/MEDIUM: http: disable server-side expiration until client has sent the body 7752 - MEDIUM: listener: make the accept function more robust against pauses 7753 - BUILD: syscalls: remove improper inline statement in front of syscalls 7754 - BUILD: ssl: SSL_CTX_set_msg_callback() needs openssl >= 0.9.7 7755 - BUG/MAJOR: session: recover the correct connection pointer in half-initialized sessions 7756 - DOC: add some explanation on the shared cache build options in the readme. 7757 - MEDIUM: proxy: only adjust the backend's bind-process when already set 7758 - MEDIUM: config: limit nbproc to the machine's word size 7759 - MEDIUM: config: check the bind-process settings according to nbproc 7760 - MEDIUM: listener: parse the new "process" bind keyword 7761 - MEDIUM: listener: inherit the process mask from the proxy 7762 - MAJOR: listener: only start listeners bound to the same processes 7763 - MINOR: config: only report a warning when stats sockets are bound to more than 1 process 7764 - CLEANUP: config: set the maxaccept value for peers listeners earlier 7765 - BUG/MINOR: backend: only match IPv4 addresses with RDP cookies 7766 - BUG/MINOR: checks: correctly configure the address family and protocol 7767 - MINOR: tools: split is_addr() and is_inet_addr() 7768 - MINOR: protocols: use is_inet_addr() when only INET addresses are desired 7769 - MEDIUM: unix: add preliminary support for connecting to servers over UNIX sockets 7770 - MEDIUM: checks: only complain about the missing port when the check uses TCP 7771 - MEDIUM: unix: implement support for Linux abstract namespace sockets 7772 - DOC: map_beg was missing from the table of map_* converters 7773 - DOC: ebtree: indicate that prefix insertion/lookup may be used with strings 7774 - MEDIUM: pattern: use ebtree's longest match to index/lookup string beginning 7775 - BUILD: remove the obsolete BSD and OSX makefiles 7776 - MEDIUM: unix: avoid a double connect probe when no data are sent 7777 - DOC: stop referencing the slow git repository in the README 7778 - BUILD: only build the systemd wrapper on Linux 2.6 and above 7779 - DOC: update roadmap with completed tasks 7780 - MEDIUM: session: implement half-closed timeouts (client-fin and server-fin) 7781 77822014/04/26 : 1.5-dev24 7783 - MINOR: pattern: find element in a reference 7784 - MEDIUM: http: ACL and MAP updates through http-(request|response) rules 7785 - MEDIUM: ssl: explicitly log failed handshakes after a heartbeat 7786 - DOC: Full section dedicated to the converters 7787 - MEDIUM: http: register http-request and http-response keywords 7788 - BUG/MINOR: compression: correctly report incoming byte count 7789 - BUG/MINOR: http: don't report server aborts as client aborts 7790 - BUG/MEDIUM: channel: bi_putblk() must not wrap before the end of buffer 7791 - CLEANUP: buffers: remove unused function buffer_contig_space_with_res() 7792 - MEDIUM: stats: reimplement HTTP keep-alive on the stats page 7793 - BUG/MAJOR: http: fix timeouts during data forwarding 7794 - BUG/MEDIUM: http: 100-continue responses must process the next part immediately 7795 - MEDIUM: http: move skipping of 100-continue earlier 7796 - BUILD: stats: let gcc know that last_fwd cannot be used uninitialized... 7797 - CLEANUP: general: get rid of all old occurrences of "session *t" 7798 - CLEANUP: http: remove the useless "if (1)" inherited from version 1.4 7799 - BUG/MEDIUM: stats: mismatch between behaviour and doc about front/back 7800 - MEDIUM: http: enable analysers to have keep-alive on stats 7801 - REORG: http: move HTTP Connection response header parsing earlier 7802 - MINOR: stats: always emit HTTP/1.1 in responses 7803 - MINOR: http: add capture.req.ver and capture.res.ver 7804 - MINOR: checks: add a new global max-spread-checks directive 7805 - BUG/MAJOR: http: fix the 'next' pointer when performing a redirect 7806 - MINOR: http: implement the max-keep-alive-queue setting 7807 - DOC: fix alphabetic order of tcp-check 7808 - MINOR: connection: add a new error code for SSL with heartbeat 7809 - MEDIUM: ssl: implement a workaround for the OpenSSL heartbleed attack 7810 - BUG/MEDIUM: Revert "MEDIUM: ssl: Add standardized DH parameters >= 1024 bits" 7811 - BUILD: http: remove a warning on strndup 7812 - BUILD: ssl: avoid a warning about conn not used with OpenSSL < 1.0.1 7813 - BUG/MINOR: ssl: really block OpenSSL's response to heartbleed attack 7814 - MINOR: ssl: finally catch the heartbeats missing the padding 7815 78162014/04/23 : 1.5-dev23 7817 - BUG/MINOR: reject malformed HTTP/0.9 requests 7818 - MINOR: systemd wrapper: re-execute on SIGUSR2 7819 - MINOR: systemd wrapper: improve logging 7820 - MINOR: systemd wrapper: propagate exit status 7821 - BUG/MINOR: tcpcheck connect wrong behavior 7822 - MEDIUM: proxy: support use_backend with dynamic names 7823 - MINOR: stats: Enhancement to stats page to provide information of last session time. 7824 - BUG/MEDIUM: peers: fix key consistency for integer stick tables 7825 - DOC: fix a typo on http-server-close and encapsulate options with double-quotes 7826 - DOC: fix fetching samples syntax 7827 - MINOR: ssl: add ssl_fc_unique_id to fetch TLS Unique ID 7828 - MEDIUM: ssl: Use ALPN support as it will be available in OpenSSL 1.0.2 7829 - DOC: fix typo 7830 - CLEANUP: code style: use tabs to indent codes instead of spaces 7831 - DOC: fix a few config typos. 7832 - BUG/MINOR: raw_sock: also consider ENOTCONN in addition to EAGAIN for recv() 7833 - DOC: lowercase format string in unique-id 7834 - MINOR: set IP_FREEBIND on IPv6 sockets in transparent mode 7835 - BUG/MINOR: acl: req_ssl_sni fails with SSLv3 record version 7836 - BUG/MINOR: build: add missing objects in osx and bsd Makefiles 7837 - BUG/MINOR: build: handle whitespaces in wc -l output 7838 - BUG/MINOR: Fix name lookup ordering when compiled with USE_GETADDRINFO 7839 - MEDIUM: ssl: Add standardized DH parameters >= 1024 bits 7840 - BUG/MEDIUM: map: The map parser includes blank lines. 7841 - BUG/MINOR: log: The log of quotted capture header has been terminated by 2 quotes. 7842 - MINOR: standard: add function "encode_chunk" 7843 - BUG/MINOR: http: fix encoding of samples used in http headers 7844 - MINOR: sample: add hex converter 7845 - MEDIUM: sample: change the behavior of the bin2str cast 7846 - MAJOR: auth: Change the internal authentication system. 7847 - MEDIUM: acl/pattern: standardisation "of pat_parse_int()" and "pat_parse_dotted_ver()" 7848 - MEDIUM: pattern: The pattern parser no more uses <opaque> and just takes one string. 7849 - MEDIUM: pattern: Change the prototype of the function pattern_register(). 7850 - CONTRIB: ip6range: add a network IPv6 range to mask converter 7851 - MINOR: pattern: separe list element from the data part. 7852 - MEDIUM: pattern: add indexation function. 7853 - MEDIUM: pattern: The parse functions just return "struct pattern" without memory allocation 7854 - MINOR: pattern: Rename "pat_idx_elt" to "pattern_tree" 7855 - MINOR: sample: dont call the sample cast function "c_none" 7856 - MINOR: standard: Add function for converting cidr to network mask. 7857 - MEDIUM: sample: Remove types SMP_T_CSTR and SMP_T_CBIN, replace it by SMP_F_CONST flags 7858 - MEDIUM: sample/http_proto: Add new type called method 7859 - MINOR: dumpstats: Group map inline help 7860 - MEDIUM: pattern: The function pattern_exec_match() returns "struct pattern" if the patten match. 7861 - MINOR: dumpstats: change map inline sentences 7862 - MINOR: dumpstats: change the "get map" display management 7863 - MINOR: map/dumpstats: The cli cmd "get map ..." display the "int" format. 7864 - MEDIUM: pattern: The match function browse itself the list or the tree. 7865 - MEDIUM: pattern: Index IPv6 addresses in a tree. 7866 - MEDIUM: pattern: add delete functions 7867 - MEDIUM: pattern: add prune function 7868 - MEDIUM: pattern: add sample lookup function. 7869 - MEDIUM: pattern/dumpstats: The function pattern_lookup() is no longer used 7870 - MINOR: map/pattern: The sample parser is stored in the pattern 7871 - MAJOR: pattern/map: Extends the map edition system in the patterns 7872 - MEDIUM: pattern: merge same pattern 7873 - MEDIUM: pattern: The expected type is stored in the pattern head, and conversion is executed once. 7874 - MINOR: pattern: Each pattern is identified by unique id. 7875 - MINOR: pattern/acl: Each pattern of each acl can be load with specified id 7876 - MINOR: pattern: The function "pattern_register()" is no longer used. 7877 - MINOR: pattern: Merge function pattern_add() with pat_ref_push(). 7878 - MINOR: pattern: store configuration reference for each acl or map pattern. 7879 - MINOR: pattern: Each pattern expression element store the reference struct. 7880 - MINOR: dumpstats: display the reference for th key/pattern and value. 7881 - MEDIUM: pattern: delete() function uses the pat_ref_elt to find the element to be removed 7882 - MEDIUM: pattern_find_smp: functions find_smp uses the pat_ref_elt to find the element to be removed 7883 - MEDIUM: dumpstats/pattern: display and use each pointer of each pattern dumped 7884 - MINOR: pattern/map/acl: Centralization of the file parsers 7885 - MINOR: pattern: Check if the file reference is not used with acl and map 7886 - MINOR: acl/pattern: Acl "-M" option force to load file as map file with two columns 7887 - MEDIUM: dumpstats: Display error message during add of values. 7888 - MINOR: pattern: The function pat_ref_set() have now atomic behavior 7889 - MINOR: regex: The pointer regstr in the struc regex is no longer used. 7890 - MINOR: cli: Block the usage of the command "acl add" in many cases. 7891 - MINOR: doc: Update the documentation about the map and acl 7892 - MINOR: pattern: index duplicates 7893 - MINOR: configuration: File and line propagation 7894 - MINOR: dumpstat/conf: display all the configuration lines that using pattern reference 7895 - MINOR: standard: Disable ip resolution during the runtime 7896 - MINOR: pattern: Remove the flag "PAT_F_FROM_FILE". 7897 - MINOR: pattern: forbid dns resolutions 7898 - DOC: document "get map" / "get acl" on the CLI 7899 - MEDIUM: acl: Change the acl register struct 7900 - BUG/MEDIUM: acl: boolean only matches were broken by recent changes 7901 - DOC: pattern: pattern organisation schematics 7902 - MINOR: pattern/cli: Update used terms in documentation and cli 7903 - MINOR: cli: remove information about acl or map owner. 7904 - MINOR: session: don't always assume there's a listener 7905 - MINOR: pattern: Add function to prune and reload pattern list. 7906 - MINOR: standard: Add ipv6 support in the function url2sa(). 7907 - MEDIUM: config: Dynamic sections. 7908 - BUG/MEDIUM: stick-table: fix IPv4-to-IPv6 conversion in src_* fetches 7909 - MINOR: http: Add the "language" converter to for use with accept-language 7910 - BUG/MINOR: log: Don't dump empty unique-id 7911 - BUG/MAJOR: session: fix a possible crash with src_tracked 7912 - DOC: Update "language" documentation 7913 - MINOR: http: add the function "del-header" to the directives http-request and http-response 7914 - DOC: add some information on capture.(req|res).hdr 7915 - MINOR: http: capture.req.method and capture.req.uri 7916 - MINOR: http: optimize capture.req.method and capture.req.uri 7917 - MINOR: session: clean up the connection free code 7918 - BUG/MEDIUM: checks: immediately report a connection success 7919 - MEDIUM: connection: don't use real send() flags in snd_buf() 7920 - OPTIM: ssl: implement dynamic record size adjustment 7921 - MINOR: stats: report exact last session time in backend too 7922 - BUG/MEDIUM: stats: the "lastsess" field must appear last in the CSV. 7923 - BUG/MAJOR: check: fix memory leak in "tcp-check connect" over SSL 7924 - BUG/MINOR: channel: initialize xfer_small/xfer_large on new buffers 7925 - MINOR: channel: add the date of last read in the channel 7926 - MEDIUM: stream-int: automatically disable CF_STREAMER flags after idle 7927 - MINOR: ssl: add DEFAULT_SSL_MAX_RECORD to set the record size at build time 7928 - MINOR: config: make the stream interface idle timer user-configurable 7929 - MINOR: config: add global directives to set default SSL ciphers 7930 - MINOR: sample: add a rand() sample fetch to return a sample. 7931 - BUG/MEDIUM: config: immediately abort if peers section has no name 7932 - BUG/MINOR: ssl: fix syntax in config error message 7933 - BUG/MEDIUM: ssl: always send a full buffer after EAGAIN 7934 - BUG/MINOR: config: server on-marked-* statement is ignored in default-server 7935 - BUG/MEDIUM: backend: prefer-last-server breaks redispatch 7936 - BUG/MEDIUM: http: continue to emit 503 on keep-alive to different server 7937 - MEDIUM: acl: fix pattern type for payload / payload_lv 7938 - BUG/MINOR: config: fix a crash on startup when a disabled backend references a peer 7939 - BUG/MEDIUM: compression: fix the output type of the compressor name 7940 - BUG/MEDIUM: http: don't start to forward request data before the connect 7941 - MINOR: http: release compression context only in http_end_txn() 7942 - MINOR: protect ebimtree/ebistree against multiple inclusions 7943 - MEDIUM: proxy: create a tree to store proxies by name 7944 - MEDIUM: proxy: make findproxy() use trees to look up proxies 7945 - MEDIUM: proxy: make get_backend_server() use findproxy() to lookup proxies 7946 - MEDIUM: stick-table: lookup table names using trees. 7947 - MEDIUM: config: faster lookup for duplicated proxy name 7948 - CLEANUP: acl: remove obsolete test in parse_acl_expr() 7949 - MINOR: sample: move smp_to_type to sample.c 7950 - MEDIUM: compression: consider the "q=" attribute in Accept-Encoding 7951 - REORG: cfgparse: move server keyword parsing to server.c 7952 - BUILD: adjust makefile for AIX 5.1 7953 - BUG/MEDIUM: pattern: fix wrong definition of the pat_prune_fcts array 7954 - CLEANUP: pattern: move array definitions to proto/ and not types/ 7955 - BUG/MAJOR: counters: check for null-deref when looking up an alternate table 7956 - BUILD: ssl: previous patch failed 7957 - BUILD/MEDIUM: standard: get rid of the last strcpy() 7958 - BUILD/MEDIUM: standard: get rid of sprintf() 7959 - BUILD/MEDIUM: cfgparse: get rid of sprintf() 7960 - BUILD/MEDIUM: checks: get rid of sprintf() 7961 - BUILD/MEDIUM: http: remove calls to sprintf() 7962 - BUG/MEDIUM: systemd-wrapper: fix locating of haproxy binary 7963 - BUILD/MINOR: ssl: remove one call to sprintf() 7964 - MEDIUM: http: don't reject anymore message bodies not containing the url param 7965 - MEDIUM: http: wait for the first chunk or message body length in http_process_body 7966 - CLEANUP: http: rename http_process_request_body() 7967 - CLEANUP: http: prepare dedicated processing for chunked encoded message bodies 7968 - MINOR: http: make msg->eol carry the last CRLF length 7969 - MAJOR: http: do not use msg->sol while processing messages or forwarding data 7970 - MEDIUM: http: http_parse_chunk_crlf() must not advance the buffer pointer 7971 - MAJOR: http: don't update msg->sov anymore while processing the body 7972 - MINOR: http: add a small helper to compute the amount of body bytes present 7973 - MEDIUM: http: add a small helper to compute how far to rewind to find headers 7974 - MINOR: http: add a small helper to compute how far to rewind to find URI 7975 - MEDIUM: http: small helpers to compute how far to rewind to find BODY and DATA 7976 - MAJOR: http: reset msg->sov after headers are forwarded 7977 - MEDIUM: http: forward headers again while waiting for connection to complete 7978 - BUG/MINOR: http: deinitialize compression after a parsing error 7979 - BUG/MINOR: http: deinitialize compression after a compression error 7980 - MEDIUM: http: headers must be forwarded even if data was already inspected 7981 - MAJOR: http: re-enable compression on chunked encoding 7982 - MAJOR: http/compression: fix chunked-encoded response processing 7983 - MEDIUM: http: cleanup: centralize a little bit HTTP compression end 7984 - MEDIUM: http: start to centralize the forwarding code 7985 - MINOR: http: further cleanups of response forwarding function 7986 - MEDIUM: http: only allocate the temporary compression buffer when needed 7987 - MAJOR: http: centralize data forwarding in the request path 7988 - CLEANUP: http: document the response forwarding states 7989 - CLEANUP: http: remove all calls to http_silent_debug() 7990 - DOC: internal: add some reminders about HTTP parsing and pointer states 7991 - BUG/MAJOR: http: fix bug in parse_qvalue() when selecting compression algo 7992 - BUG/MINOR: stats: last session was not always set 7993 - DOC: add pointer to the Cyril's HTML doc in the README 7994 - MEDIUM: config: relax use_backend check to make the condition optional 7995 - MEDIUM: config: report misplaced http-request rules 7996 - MEDIUM: config: report misplaced use-server rules 7997 - DOC: update roadmap with what was done. 7998 79992014/02/03 : 1.5-dev22 8000 - MEDIUM: tcp-check new feature: connect 8001 - MEDIUM: ssl: Set verify 'required' as global default for servers side. 8002 - MINOR: ssl: handshake optim for long certificate chains. 8003 - BUG/MINOR: pattern: pattern comparison executed twice 8004 - BUG/MEDIUM: map: segmentation fault with the stats's socket command "set map ..." 8005 - BUG/MEDIUM: pattern: Segfault in binary parser 8006 - MINOR: pattern: move functions for grouping pat_match_* and pat_parse_* and add documentation. 8007 - MINOR: standard: The parse_binary() returns the length consumed and his documentation is updated 8008 - BUG/MINOR: payload: the patterns of the acl "req.ssl_ver" are no parsed with the good function. 8009 - BUG/MEDIUM: pattern: "pat_parse_dotted_ver()" set bad expect_type. 8010 - BUG/MINOR: sample: The c_str2int converter does not fail if the entry is not an integer 8011 - BUG/MEDIUM: http/auth: Sometimes the authentication credentials can be mix between two requests 8012 - MINOR: doc: Bad cli function name. 8013 - MINOR: http: smp_fetch_capture_header_* fetch captured headers 8014 - BUILD: last release inadvertently prepended a "+" in front of the date 8015 - BUG/MEDIUM: stream-int: fix the keep-alive idle connection handler 8016 - BUG/MEDIUM: backend: do not re-initialize the connection's context upon reuse 8017 - BUG: Revert "OPTIM/MEDIUM: epoll: fuse active events into polled ones during polling changes" 8018 - BUG/MINOR: checks: successful check completion must not re-enable MAINT servers 8019 - MINOR: http: try to stick to same server after status 401/407 8020 - BUG/MINOR: http: always disable compression on HTTP/1.0 8021 - OPTIM: poll: restore polling after a poll/stop/want sequence 8022 - OPTIM: http: don't stop polling for read on the client side after a request 8023 - BUG/MEDIUM: checks: unchecked servers could not be enabled anymore 8024 - BUG/MEDIUM: stats: the web interface must check the tracked servers before enabling 8025 - BUG/MINOR: channel: CHN_INFINITE_FORWARD must be unsigned 8026 - BUG/MINOR: stream-int: do not clear the owner upon unregister 8027 - MEDIUM: stats: add support for HTTP keep-alive on the stats page 8028 - BUG/MEDIUM: stats: fix HTTP/1.0 breakage introduced in previous patch 8029 - Revert "MEDIUM: stats: add support for HTTP keep-alive on the stats page" 8030 - MAJOR: channel: add a new flag CF_WAKE_WRITE to notify the task of writes 8031 - OPTIM: session: set the READ_DONTWAIT flag when connecting 8032 - BUG/MINOR: http: don't clear the SI_FL_DONT_WAKE flag between requests 8033 - MINOR: session: factor out the connect time measurement 8034 - MEDIUM: session: prepare to support earlier transitions to the established state 8035 - MEDIUM: stream-int: make si_connect() return an established state when possible 8036 - MINOR: checks: use an inline function for health_adjust() 8037 - OPTIM: session: put unlikely() around the freewheeling code 8038 - MEDIUM: config: report a warning when multiple servers have the same name 8039 - BUG: Revert "OPTIM: poll: restore polling after a poll/stop/want sequence" 8040 - BUILD/MINOR: listener: remove a glibc warning on accept4() 8041 - BUG/MAJOR: connection: fix mismatch between rcv_buf's API and usage 8042 - BUILD: listener: fix recent accept4() again 8043 - BUG/MAJOR: ssl: fix breakage caused by recent fix abf08d9 8044 - BUG/MEDIUM: polling: ensure we update FD status when there's no more activity 8045 - MEDIUM: listener: fix polling management in the accept loop 8046 - MINOR: protocol: improve the proto->drain() API 8047 - MINOR: connection: add a new conn_drain() function 8048 - MEDIUM: tcp: report in tcp_drain() that lingering is already disabled on close 8049 - MEDIUM: connection: update callers of ctrl->drain() to use conn_drain() 8050 - MINOR: connection: add more error codes to report connection errors 8051 - MEDIUM: tcp: report connection error at the connection level 8052 - MEDIUM: checks: make use of chk_report_conn_err() for connection errors 8053 - BUG/MEDIUM: unique_id: HTTP request counter is not stable 8054 - DOC: fix misleading information about SIGQUIT 8055 - BUG/MAJOR: fix freezes during compression 8056 - BUG/MEDIUM: stream-interface: don't wake the task up before end of transfer 8057 - BUILD: fix VERDATE exclusion regex 8058 - CLEANUP: polling: rename "spec_e" to "state" 8059 - DOC: add a diagram showing polling state transitions 8060 - REORG: polling: rename "spec_e" to "state" and "spec_p" to "cache" 8061 - REORG: polling: rename "fd_spec" to "fd_cache" 8062 - REORG: polling: rename the cache allocation functions 8063 - REORG: polling: rename "fd_process_spec_events()" to "fd_process_cached_events()" 8064 - MAJOR: polling: rework the whole polling system 8065 - MAJOR: connection: remove the CO_FL_WAIT_{RD,WR} flags 8066 - MEDIUM: connection: remove conn_{data,sock}_poll_{recv,send} 8067 - MEDIUM: connection: add check for readiness in I/O handlers 8068 - MEDIUM: stream-interface: the polling flags must always be updated in chk_snd_conn 8069 - MINOR: stream-interface: no need to call fd_stop_both() on error 8070 - MEDIUM: connection: no need to recheck FD state 8071 - CLEANUP: connection: use conn_ctrl_ready() instead of checking the flag 8072 - CLEANUP: connection: use conn_xprt_ready() instead of checking the flag 8073 - CLEANUP: connection: fix comments in connection.h to reflect new behaviour. 8074 - OPTIM: raw-sock: don't speculate after a short read if polling is enabled 8075 - MEDIUM: polling: centralize polled events processing 8076 - MINOR: polling: create function fd_compute_new_polled_status() 8077 - MINOR: cli: add more information to the "show info" output 8078 - MEDIUM: listener: add support for limiting the session rate in addition to the connection rate 8079 - MEDIUM: listener: apply a limit on the session rate submitted to SSL 8080 - REORG: stats: move the stats socket states to dumpstats.c 8081 - MINOR: cli: add the new "show pools" command 8082 - BUG/MEDIUM: counters: flush content counters after each request 8083 - BUG/MEDIUM: counters: fix stick-table entry leak when using track-sc2 in connection 8084 - MINOR: tools: add very basic support for composite pointers 8085 - MEDIUM: counters: stop relying on session flags at all 8086 - BUG/MINOR: cli: fix missing break in command line parser 8087 - BUG/MINOR: config: correctly report when log-format headers require HTTP mode 8088 - MAJOR: http: update connection mode configuration 8089 - MEDIUM: http: make keep-alive + httpclose be passive mode 8090 - MAJOR: http: switch to keep-alive mode by default 8091 - BUG/MEDIUM: http: fix regression caused by recent switch to keep-alive by default 8092 - BUG/MEDIUM: listener: improve detection of non-working accept4() 8093 - BUILD: listener: add fcntl.h and unistd.h 8094 - BUG/MINOR: raw_sock: correctly set the MSG_MORE flag 8095 80962013/12/17 : 1.5-dev21 8097 - MINOR: stats: don't use a monospace font to report numbers 8098 - MINOR: session: remove debugging code 8099 - BUG/MAJOR: patterns: fix double free caused by loading strings from files 8100 - MEDIUM: http: make option http_proxy automatically rewrite the URL 8101 - BUG/MEDIUM: http: cook_cnt() forgets to set its output type 8102 - BUG/MINOR: stats: correctly report throttle rate of low weight servers 8103 - BUG/MEDIUM: checks: servers must not start in slowstart mode 8104 - BUG/MINOR: acl: parser must also stop at comma on ACL-only keywords 8105 - MEDIUM: stream-int: implement a very simplistic idle connection manager 8106 - DOC: update the ROADMAP file 8107 81082013/12/16 : 1.5-dev20 8109 - DOC: add missing options to the manpage 8110 - DOC: add manpage references to all system calls 8111 - DOC: update manpage reference to haproxy-en.txt 8112 - DOC: remove -s and -l options from the manpage 8113 - DOC: missing information for the "description" keyword 8114 - DOC: missing http-send-name-header keyword in keyword table 8115 - MINOR: tools: function my_memmem() to lookup binary contents 8116 - MEDIUM: checks: add send/expect tcp based check 8117 - MEDIUM: backend: Enhance hash-type directive with an algorithm options 8118 - MEDIUM: backend: Implement avalanche as a modifier of the hashing functions. 8119 - DOC: Documentation for hashing function, with test results. 8120 - BUG/MEDIUM: ssl: potential memory leak using verifyhost 8121 - BUILD: ssl: compilation issue with openssl v0.9.6. 8122 - BUG/MINOR: ssl: potential memory leaks using ssl_c_key_alg or ssl_c_sig_alg. 8123 - MINOR: ssl: optimization of verifyhost on wildcard certificates. 8124 - BUG/MINOR: ssl: verifyhost does not match empty strings on wildcard. 8125 - MINOR: ssl: Add statement 'verifyhost' to "server" statements 8126 - CLEANUP: session: remove event_accept() which was not used anymore 8127 - BUG/MINOR: deinit: free fdinfo while doing cleanup 8128 - DOC: minor typo fix in documentation 8129 - BUG/MEDIUM: server: set the macro for server's max weight SRV_UWGHT_MAX to SRV_UWGHT_RANGE 8130 - BUG/MINOR: use the same check condition for server as other algorithms 8131 - DOC: fix typo in comments 8132 - BUG/MINOR: deinit: free server map which is allocated in init_server_map() 8133 - CLEANUP: stream_interface: cleanup loop information in si_conn_send_loop() 8134 - MINOR: buffer: align the last output line of buffer_dump() 8135 - MINOR: buffer: align the last output line if there are less than 8 characters left 8136 - DOC: stick-table: modify the description 8137 - OPTIM: stream_interface: return directly if the connection flag CO_FL_ERROR has been set 8138 - CLEANUP: code style: use tabs to indent codes 8139 - DOC: checkcache: block responses with cacheable cookies 8140 - BUG/MINOR: check_config_validity: check the returned value of stktable_init() 8141 - MEDIUM: haproxy-systemd-wrapper: Use haproxy in same directory 8142 - MEDIUM: systemd-wrapper: Kill child processes when interrupted 8143 - LOW: systemd-wrapper: Write debug information to stdout 8144 - BUG/MINOR: http: fix "set-tos" not working in certain configurations 8145 - MEDIUM: http: add IPv6 support for "set-tos" 8146 - DOC: ssl: update build instructions to use new SSL_* variables 8147 - BUILD/MINOR: systemd: fix compiler warning about unused result 8148 - url32+src - like base32+src but whole url including parameters 8149 - BUG/MINOR: fix forcing fastinter in "on-error" 8150 - CLEANUP: Make parameters of srv_downtime and srv_getinter const 8151 - CLEANUP: Remove unused 'last_slowstart_change' field from struct peer 8152 - MEDIUM: Split up struct server's check element 8153 - MEDIUM: Move result element to struct check 8154 - MEDIUM: Paramatise functions over the check of a server 8155 - MEDIUM: cfgparse: Factor out check initialisation 8156 - MEDIUM: Add state to struct check 8157 - MEDIUM: Move health element to struct check 8158 - MEDIUM: Add helper for task creation for checks 8159 - MEDIUM: Add helper function for failed checks 8160 - MEDIUM: Log agent fail, stopped or down as info 8161 - MEDIUM: Remove option lb-agent-chk 8162 - MEDIUM: checks: Add supplementary agent checks 8163 - MEDIUM: Do not mark a server as down if the agent is unavailable 8164 - MEDIUM: Set rise and fall of agent checks to 1 8165 - MEDIUM: Add enable and disable agent unix socket commands 8166 - MEDIUM: Add DRAIN state and report it on the stats page 8167 - BUILD/MINOR: missing header file 8168 - CLEANUP: regex: Create regex_comp function that compiles regex using compilation options 8169 - CLEANUP: The function "regex_exec" needs the string length but in many case they expect null terminated char. 8170 - MINOR: http: some exported functions were not in the header file 8171 - MINOR: http: change url_decode to return the size of the decoded string. 8172 - BUILD/MINOR: missing header file 8173 - BUG/MEDIUM: sample: The function v4tov6 cannot support input and output overlap 8174 - BUG/MINOR: arg: fix error reporting for add-header/set-header sample fetch arguments 8175 - MINOR: sample: export the generic sample conversion parser 8176 - MINOR: sample: export sample_casts 8177 - MEDIUM: acl: use the fetch syntax 'fetch(args),conv(),conv()' into the ACL keyword 8178 - MINOR: stick-table: use smp_expr_output_type() to retrieve the output type of a "struct sample_expr" 8179 - MINOR: sample: provide the original sample_conv descriptor struct to the argument checker function. 8180 - MINOR: tools: Add a function to convert buffer to an ipv6 address 8181 - MINOR: acl: export acl arrays 8182 - MINOR: acl: Extract the pattern parsing and indexation from the "acl_read_patterns_from_file()" function 8183 - MINOR: acl: Extract the pattern matching function 8184 - MINOR: sample: Define new struct sample_storage 8185 - MEDIUM: acl: associate "struct sample_storage" to each "struct acl_pattern" 8186 - REORG: acl/pattern: extract pattern matching from the acl file and create pattern.c 8187 - MEDIUM: pattern: create pattern expression 8188 - MEDIUM: pattern: rename "acl" prefix to "pat" 8189 - MEDIUM: sample: let the cast functions set their output type 8190 - MINOR: sample: add a private field to the struct sample_conv 8191 - MINOR: map: Define map types 8192 - MEDIUM: sample: add the "map" converter 8193 - MEDIUM: http: The redirect strings follows the log format rules. 8194 - BUG/MINOR: acl: acl parser does not recognize empty converter list 8195 - BUG/MINOR: map: The map list was declared in the map.h file 8196 - MINOR: map: Cleanup the initialisation of map descriptors. 8197 - MEDIUM: map: merge identical maps 8198 - BUG/MEDIUM: pattern: Pattern node has type of "struct pat_idx_elt" in place of "struct eb_node" 8199 - BUG/MEDIUM: map: Bad map file parser 8200 - CLEANUP/MINOR: standard: use the system define INET6_ADDRSTRLEN in place of MAX_IP6_LEN 8201 - BUG/MEDIUM: sample: conversion from str to ipv6 may read data past end 8202 - MINOR: map: export map_get_reference() function 8203 - MINOR: pattern: Each pattern sets the expected input type 8204 - MEDIUM: acl: Last patch change the output type 8205 - MEDIUM: pattern: Extract the index process from the pat_parse_*() functions 8206 - MINOR: standard: The function parse_binary() can use preallocated buffer 8207 - MINOR: regex: Change the struct containing regex 8208 - MINOR: regex: Copy the original regex expression into string. 8209 - MINOR: pattern: add support for compiling patterns for lookups 8210 - MINOR: pattern: make the pattern matching function return a pointer to the matched element 8211 - MINOR: map: export parse output sample functions 8212 - MINOR: pattern: add function to lookup a specific entry in pattern list 8213 - MINOR: pattern/map: Each pattern must free the associated sample 8214 - MEDIUM: dumpstat: make the CLI parser understand the backslash as an escape char 8215 - MEDIUM: map: dynamic manipulation of maps 8216 - BUG/MEDIUM: unique_id: junk in log on empty unique_id 8217 - BUG/MINOR: log: junk at the end of syslog packet 8218 - MINOR: Makefile: provide cscope rule 8219 - DOC: compression: chunk are not compressed anymore 8220 - MEDIUM: session: disable lingering on the server when the client aborts 8221 - BUG/MEDIUM: prevent gcc from moving empty keywords lists into BSS 8222 - DOC: remove the comment saying that SSL certs are not checked on the server side 8223 - BUG: counters: third counter was not stored if others unset 8224 - BUG/MAJOR: http: don't emit the send-name-header when no server is available 8225 - BUG/MEDIUM: http: "option checkcache" fails with the no-cache header 8226 - BUG/MAJOR: http: sample prefetch code was not properly migrated 8227 - BUG/MEDIUM: splicing: fix abnormal CPU usage with splicing 8228 - BUG/MINOR: stream_interface: don't call chk_snd() on polled events 8229 - OPTIM: splicing: use splice() for the last block when relevant 8230 - MEDIUM: sample: handle comma-delimited converter list 8231 - MINOR: sample: fix sample_process handling of unstable data 8232 - CLEANUP: acl: move the 3 remaining sample fetches to samples.c 8233 - MINOR: sample: add a new "date" fetch to return the current date 8234 - MINOR: samples: add the http_date([<offset>]) sample converter. 8235 - DOC: minor improvements to the part on the stats socket. 8236 - MEDIUM: sample: systematically pass the keyword pointer to the keyword 8237 - MINOR: payload: split smp_fetch_rdp_cookie() 8238 - MINOR: counters: factor out smp_fetch_sc*_tracked 8239 - MINOR: counters: provide a generic function to retrieve a stkctr for sc* and src. 8240 - MEDIUM: counters: factor out smp_fetch_sc*_get_gpc0 8241 - MEDIUM: counters: factor out smp_fetch_sc*_gpc0_rate 8242 - MEDIUM: counters: factor out smp_fetch_sc*_inc_gpc0 8243 - MEDIUM: counters: factor out smp_fetch_sc*_clr_gpc0 8244 - MEDIUM: counters: factor out smp_fetch_sc*_conn_cnt 8245 - MEDIUM: counters: factor out smp_fetch_sc*_conn_rate 8246 - MEDIUM: counters: factor out smp_fetch_sc*_conn_cur 8247 - MEDIUM: counters: factor out smp_fetch_sc*_sess_cnt 8248 - MEDIUM: counters: factor out smp_fetch_sc*_sess_rate 8249 - MEDIUM: counters: factor out smp_fetch_sc*_http_req_cnt 8250 - MEDIUM: counters: factor out smp_fetch_sc*_http_req_rate 8251 - MEDIUM: counters: factor out smp_fetch_sc*_http_err_cnt 8252 - MEDIUM: counters: factor out smp_fetch_sc*_http_err_rate 8253 - MEDIUM: counters: factor out smp_fetch_sc*_kbytes_in 8254 - MEDIUM: counters: factor out smp_fetch_sc*_bytes_in_rate 8255 - MEDIUM: counters: factor out smp_fetch_sc*_kbytes_out 8256 - MEDIUM: counters: factor out smp_fetch_sc*_bytes_out_rate 8257 - MEDIUM: counters: factor out smp_fetch_sc*_trackers 8258 - MINOR: session: make the number of stick counter entries more configurable 8259 - MEDIUM: counters: support passing the counter number as a fetch argument 8260 - MEDIUM: counters: support looking up a key in an alternate table 8261 - MEDIUM: cli: adjust the method for feeding frequency counters in tables 8262 - MINOR: cli: make it possible to enter multiple values at once with "set table" 8263 - MINOR: payload: allow the payload sample fetches to retrieve arbitrary lengths 8264 - BUG/MINOR: cli: "clear table" must not kill entries that don't match condition 8265 - MINOR: ssl: use MAXPATHLEN instead of PATH_MAX 8266 - MINOR: config: warn when a server with no specific port uses rdp-cookie 8267 - BUG/MEDIUM: unique_id: HTTP request counter must be unique! 8268 - DOC: add a mention about the limited chunk size 8269 - BUG/MEDIUM: fix broken send_proxy on FreeBSD 8270 - MEDIUM: stick-tables: flush old entries upon soft-stop 8271 - MINOR: tcp: add new "close" action for tcp-response 8272 - MINOR: payload: provide the "res.len" fetch method 8273 - BUILD: add SSL_INC/SSL_LIB variables to force the path to openssl 8274 - MINOR: http: compute response time before processing headers 8275 - BUG/MINOR: acl: fix improper string size assignment in proxy argument 8276 - BUG/MEDIUM: http: accept full buffers on smp_prefetch_http 8277 - BUG/MINOR: acl: implicit arguments of ACL keywords were not properly resolved 8278 - BUG/MEDIUM: session: risk of crash on out of memory conditions 8279 - BUG/MINOR: peers: set the accept date in outgoing connections 8280 - BUG/MEDIUM: tcp: do not skip tracking rules on second pass 8281 - BUG/MEDIUM: acl: do not evaluate next terms after a miss 8282 - MINOR: acl: add a warning when an ACL keyword is used without any value 8283 - MINOR: tcp: don't use tick_add_ifset() when timeout is known to be set 8284 - BUG/MINOR: acl: remove patterns from the tree before freeing them 8285 - MEDIUM: backend: add support for the wt6 hash 8286 - OPTIM/MEDIUM: epoll: fuse active events into polled ones during polling changes 8287 - OPTIM/MINOR: mark the source address as already known on accept() 8288 - BUG/MINOR: stats: don't count tarpitted connections twice 8289 - CLEANUP: http: homogenize processing of denied req counter 8290 - CLEANUP: http: merge error handling for req* and http-request * 8291 - BUG/MEDIUM: http: fix possible parser crash when parsing erroneous "http-request redirect" rules 8292 - BUG/MINOR: http: fix build warning introduced with url32/url32_src 8293 - BUG/MEDIUM: checks: fix slow start regression after fix attempt 8294 - BUG/MAJOR: server: weight calculation fails for map-based algorithms 8295 - MINOR: stats: report correct throttling percentage for servers in slowstart 8296 - OPTIM: connection: fold the error handling with handshake handling 8297 - MINOR: peers: accept to learn strings of different lengths 8298 - BUG/MAJOR: fix haproxy crash when using server tracking instead of checks 8299 - BUG/MAJOR: check: fix haproxy crash during soft-stop/soft-start 8300 - BUG/MINOR: stats: do not report "via" on tracking servers in maintenance 8301 - BUG/MINOR: connection: fix typo in error message report 8302 - BUG/MINOR: backend: fix target address retrieval in transparent mode 8303 - BUG/MINOR: config: report the correct track-sc number in tcp-rules 8304 - BUG/MINOR: log: fix log-format parsing errors 8305 - DOC: add some information about how to apply converters to samples 8306 - MINOR: acl/pattern: use types different from int to clarify who does what. 8307 - MINOR: pattern: import acl_find_match_name() into pattern.h 8308 - MEDIUM: stick-tables: support automatic conversion from ipv4<->ipv6 8309 - MEDIUM: log-format: relax parsing of '%' followed by unsupported characters 8310 - BUG/MINOR: http: usual deinit stuff in last commit 8311 - BUILD: log: silent a warning about isblank() with latest patches 8312 - BUG/MEDIUM: checks: fix health check regression causing them to depend on declaration order 8313 - BUG/MEDIUM: checks: fix a long-standing issue with reporting connection errors 8314 - BUG/MINOR: checks: don't consider errno and use conn->err_code 8315 - BUG/MEDIUM: checks: also update the DRAIN state from the web interface 8316 - MINOR: stats: remove some confusion between the DRAIN state and NOLB 8317 - BUG/MINOR: tcp: check that no error is pending during a connect probe 8318 - BUG/MINOR: connection: check EINTR when sending a PROXY header 8319 - MEDIUM: connection: set the socket shutdown flags on socket errors 8320 - BUG/MEDIUM: acl: fix regression introduced by latest converters support 8321 - MINOR: connection: clear errno prior to checking for errors 8322 - BUG/MINOR: checks: do not trust errno in write event before any syscall 8323 - MEDIUM: checks: centralize error reporting 8324 - OPTIM: checks: don't poll on recv when using plain TCP connects 8325 - OPTIM: checks: avoid setting SO_LINGER twice 8326 - MINOR: tools: add a generic binary hex string parser 8327 - BUG/MEDIUM: checks: tcp-check: do not poll when there's nothing to send 8328 - BUG/MEDIUM: check: tcp-check might miss some outgoing data when socket buffers are full 8329 - BUG/MEDIUM: args: fix double free on error path in argument expression parser 8330 - BUG/MINOR: acl: fix sample expression error reporting 8331 - BUG/MINOR: checks: tcp-check actions are enums, not flags 8332 - MEDIUM: checks: make tcp-check perform multiple send() at once 8333 - BUG/MEDIUM: stick: completely remove the unused flag from the store entries 8334 - OPTIM: ebtree: pack the struct eb_node to avoid holes on 64-bit 8335 - BUG/MEDIUM: stick-tables: complete the latest fix about store-responses 8336 - CLEANUP: stream_interface: remove unused field err_loc 8337 - MEDIUM: stats: don't use conn->xprt_st anymore 8338 - MINOR: session: add a simple function to retrieve a session from a task 8339 - MEDIUM: stats: don't use conn->xprt_ctx anymore 8340 - MEDIUM: peers: don't rely on conn->xprt_ctx anymore 8341 - MINOR: http: prevent smp_fetch_url_{ip,port} from using si->conn 8342 - MINOR: connection: make it easier to emit proxy protocol for unknown addresses 8343 - MEDIUM: stats: prepare the HTTP stats I/O handler to support more states 8344 - MAJOR: stats: move the HTTP stats handling to its applet 8345 - MEDIUM: stats: move request argument processing to the final step 8346 - MEDIUM: session: detect applets from the session by using s->target 8347 - MAJOR: session: check for a connection to an applet in sess_prepare_conn_req() 8348 - MAJOR: session: pass applet return traffic through the response analysers 8349 - MEDIUM: stream-int: split the shutr/shutw functions between applet and conn 8350 - MINOR: stream-int: make the shutr/shutw functions void 8351 - MINOR: obj: provide a safe and an unsafe access to pointed objects 8352 - MINOR: connection: add a field to store an object type 8353 - MINOR: connection: always initialize conn->objt_type to OBJ_TYPE_CONN 8354 - MEDIUM: stream interface: move the peers' ptr into the applet context 8355 - MINOR: stream-interface: move the applet context to its own struct 8356 - MINOR: obj: introduce a new type appctx 8357 - MINOR: stream-int: rename ->applet to ->appctx 8358 - MINOR: stream-int: split si_prepare_embedded into si_prepare_none and si_prepare_applet 8359 - MINOR: stream-int: add a new pointer to the end point 8360 - MEDIUM: stream-interface: set the pointer to the applet into the applet context 8361 - MAJOR: stream interface: remove the ->release function pointer 8362 - MEDIUM: stream-int: make ->end point to the connection or the appctx 8363 - CLEANUP: stream-int: remove obsolete si_ctrl function 8364 - MAJOR: stream-int: stop using si->conn and use si->end instead 8365 - MEDIUM: stream-int: do not allocate a connection in parallel to applets 8366 - MEDIUM: session: attach incoming connection to target on embryonic sessions 8367 - MINOR: connection: add conn_init() to (re)initialize a connection 8368 - MINOR: checks: call conn_init() to properly initialize the connection. 8369 - MINOR: peers: make use of conn_init() to initialize the connection 8370 - MINOR: session: use conn_init() to initialize the connections 8371 - MINOR: http: use conn_init() to reinitialize the server connection 8372 - MEDIUM: connection: replace conn_prepare with conn_assign 8373 - MINOR: get rid of si_takeover_conn() 8374 - MINOR: connection: add conn_new() / conn_free() 8375 - MAJOR: connection: add two new flags to indicate readiness of control/transport 8376 - MINOR: stream-interface: introduce si_reset() and si_set_state() 8377 - MINOR: connection: reintroduce conn_prepare to set the protocol and transport 8378 - MINOR: connection: replace conn_assign with conn_attach 8379 - MEDIUM: stream-interface: introduce si_attach_conn to replace si_prepare_conn 8380 - MAJOR: stream interface: dynamically allocate the outgoing connection 8381 - MEDIUM: connection: move the send_proxy offset to the connection 8382 - MINOR: connection: check for send_proxy during the connect(), not the SI 8383 - MEDIUM: connection: merge the send_proxy and local_send_proxy calls 8384 - MEDIUM: stream-int: replace occurrences of si->appctx with si_appctx() 8385 - MEDIUM: stream-int: return the allocated appctx in stream_int_register_handler() 8386 - MAJOR: stream-interface: dynamically allocate the applet context 8387 - MEDIUM: session: automatically register the applet designated by the target 8388 - MEDIUM: stats: delay appctx initialization 8389 - CLEANUP: peers: use less confusing state/status code names 8390 - MEDIUM: peers: delay appctx initialization 8391 - MINOR: stats: provide some appctx information in "show sess all" 8392 - DIET/MINOR: obj: pack the obj_type enum to 8 bits 8393 - DIET/MINOR: connection: rearrange a few fields to save 8 bytes in the struct 8394 - DIET/MINOR: listener: rearrange a few fields in struct listener to save 16 bytes 8395 - DIET/MINOR: proxy: rearrange a few fields in struct proxy to save 16 bytes 8396 - DIET/MINOR: session: reduce the struct session size by 8 bytes 8397 - DIET/MINOR: stream-int: rearrange a few fields in struct stream_interface to save 8 bytes 8398 - DIET/MINOR: http: reduce the size of struct http_txn by 8 bytes 8399 - MINOR: http: switch the http state to an enum 8400 - MINOR: http: use an enum for the auth method in http_auth_data 8401 - DIET/MINOR: task: reduce struct task size by 8 bytes 8402 - MINOR: stream_interface: add reporting of ressouce allocation errors 8403 - MINOR: session: report lack of resources using the new stream-interface's error code 8404 - BUILD: simplify the date and version retrieval in the makefile 8405 - BUILD: prepare the makefile to skip format lines in SUBVERS and VERDATE 8406 - BUILD: use format tags in VERDATE and SUBVERS files 8407 - BUG/MEDIUM: channel: bo_getline() must wait for \n until buffer is full 8408 - CLEANUP: check: server port is unsigned 8409 - BUG/MEDIUM: checks: agent doesn't get the response if server does not closes 8410 - MINOR: tools: buf2ip6 must not modify output on failure 8411 - MINOR: pattern: do not assign SMP_TYPES by default to patterns 8412 - MINOR: sample: make sample_parse_expr() use memprintf() to report parse errors 8413 - MINOR: arg: improve wording on error reporting 8414 - BUG/MEDIUM: sample: simplify and fix the argument parsing 8415 - MEDIUM: acl: fix the argument parser to let the lower layer report detailed errors 8416 - MEDIUM: acl: fix the initialization order of the ACL expression 8417 - CLEANUP: acl: remove useless blind copy-paste from sample converters 8418 - TESTS: add regression tests for ACL and sample expression parsers 8419 - BUILD: time: adapt the type of TV_ETERNITY to the local system 8420 - MINOR: chunks: allocate the trash chunks before parsing the config 8421 - BUILD: definitely silence some stupid GCC warnings 8422 - MINOR: chunks: always initialize the output chunk in get_trash_chunk() 8423 - MINOR: checks: improve handling of the servers tracking chain 8424 - REORG: checks: retrieve the check-specific defines from server.h to checks.h 8425 - MINOR: checks: use an enum instead of flags to report a check result 8426 - MINOR: checks: rename the state flags 8427 - MINOR: checks: replace state DISABLED with CONFIGURED and ENABLED 8428 - MINOR: checks: use check->state instead of srv->state & SRV_CHECKED 8429 - MINOR: checks: fix agent check interval computation 8430 - MINOR: checks: add a PAUSED state for the checks 8431 - MINOR: checks: create the agent tasks even when no check is configured 8432 - MINOR: checks: add a flag to indicate what check is an agent 8433 - MEDIUM: checks: enable agent checks even if health checks are disabled 8434 - BUG/MEDIUM: checks: ensure we can enable a server after boot 8435 - BUG/MEDIUM: checks: tracking servers must not inherit the MAINT flag 8436 - BUG/MAJOR: session: repair tcp-request connection rules 8437 - BUILD: fix SUBVERS extraction in the Makefile 8438 - BUILD: pattern: silence a warning about uninitialized value 8439 - BUILD: log: fix build warning on Solaris 8440 - BUILD: dumpstats: fix build error on Solaris 8441 - DOC: move option pgsql-check to the correct place 8442 - DOC: move option tcp-check to the proper place 8443 - MINOR: connection: add simple functions to report connection readiness 8444 - MEDIUM: connection: centralize handling of nolinger in fd management 8445 - OPTIM: http: set CF_READ_DONTWAIT on response message 8446 - OPTIM: http: do not re-enable reading on client side while closing the server side 8447 - MINOR: config: add option http-keep-alive 8448 - MEDIUM: connection: inform si_alloc_conn() whether existing conn is OK or not 8449 - MAJOR: stream-int: handle the connection reuse in si_connect() 8450 - MAJOR: http: add the keep-alive transition on the server side 8451 - MAJOR: backend: enable connection reuse 8452 - MINOR: http: add option prefer-last-server 8453 - MEDIUM: http: do not report connection errors for second and further requests 8454 84552013/06/17 : 1.5-dev19 8456 - MINOR: stats: remove the autofocus on the scope input field 8457 - BUG/MEDIUM: Fix crt-list file parsing error: filtered name was ignored. 8458 - BUG/MEDIUM: ssl: EDH ciphers are not usable if no DH parameters present in pem file. 8459 - BUG/MEDIUM: shctx: makes the code independent on SSL runtime version. 8460 - MEDIUM: ssl: improve crt-list format to support negation 8461 - BUG: ssl: fix crt-list for clients not supporting SNI 8462 - MINOR: stats: show soft-stopped servers in different color 8463 - BUG/MINOR: config: "source" does not work in defaults section 8464 - BUG: regex: fix pcre compile error when using JIT 8465 - MINOR: ssl: add pattern fetch 'ssl_c_sha1' 8466 - BUG: ssl: send payload gets corrupted if tune.ssl.maxrecord is used 8467 - MINOR: show PCRE version and JIT status in -vv 8468 - BUG/MINOR: jit: don't rely on USE flag to detect support 8469 - DOC: readme: add suggestion to link against static openssl 8470 - DOC: examples: provide simplified ssl configuration 8471 - REORG: tproxy: prepare the transparent proxy defines for accepting other OSes 8472 - MINOR: tproxy: add support for FreeBSD 8473 - MINOR: tproxy: add support for OpenBSD 8474 - DOC: examples: provide an example of transparent proxy configuration for FreeBSD 8 8475 - CLEANUP: fix minor typo in error message. 8476 - CLEANUP: fix missing include <string.h> in proto/listener.h 8477 - CLEANUP: protect checks.h from multiple inclusions 8478 - MINOR: compression: acl "res.comp" and fetch "res.comp_algo" 8479 - BUG/MINOR: http: add-header/set-header did not accept the ACL condition 8480 - BUILD: mention in the Makefile that USE_PCRE_JIT is for libpcre >= 8.32 8481 - BUG/MEDIUM: splicing is broken since 1.5-dev12 8482 - BUG/MAJOR: acl: add implicit arguments to the resolve list 8483 - BUG/MINOR: tcp: fix error reporting for TCP rules 8484 - CLEANUP: peers: remove a bit of spaghetti to prepare for the next bugfix 8485 - MINOR: stick-table: allow to allocate an entry without filling it 8486 - BUG/MAJOR: peers: fix an overflow when syncing strings larger than 16 bytes 8487 - MINOR: session: only call http_send_name_header() when changing the server 8488 - MINOR: tcp: report the erroneous word in tcp-request track* 8489 - BUG/MAJOR: backend: consistent hash can loop forever in certain circumstances 8490 - BUG/MEDIUM: log: fix regression on log-format handling 8491 - MEDIUM: log: report file name, line number, and directive name with log-format errors 8492 - BUG/MINOR: cli: "clear table" did not work anymore without a key 8493 - BUG/MINOR: cli: "clear table xx data.xx" does not work anymore 8494 - BUG/MAJOR: http: compression still has defects on chunked responses 8495 - BUG/MINOR: stats: fix confirmation links on the stats interface 8496 - BUG/MINOR: stats: the status bar does not appear anymore after a change 8497 - BUG/MEDIUM: stats: allocate the stats frontend also on "stats bind-process" 8498 - BUG/MEDIUM: stats: fix a regression when dealing with POST requests 8499 - BUG/MINOR: fix unterminated ACL array in compression 8500 - BUILD: last fix broke non-linux platforms 8501 - MINOR: init: indicate the SSL runtime version on -vv. 8502 - BUG/MEDIUM: compression: the deflate algorithm must use global settings as well 8503 - BUILD: stdbool is not portable (again) 8504 - DOC: readme: add a small reminder about restrictions to respect in the code 8505 - MINOR: ebtree: add new eb_next_dup/eb_prev_dup() functions to visit duplicates 8506 - BUG/MINOR: acl: fix a double free during exit when using PCRE_JIT 8507 - DOC: fix wrong copy-paste in the rspdel example 8508 - MINOR: counters: make it easier to extend the amount of tracked counters 8509 - MEDIUM: counters: add support for tracking a third counter 8510 - MEDIUM: counters: add a new "gpc0_rate" counter in stick-tables 8511 - BUG/MAJOR: http: always ensure response buffer has some room for a response 8512 - MINOR: counters: add fetch/acl sc*_tracked to indicate whether a counter is tracked 8513 - MINOR: defaults: allow REQURI_LEN and CAPTURE_LEN to be redefined 8514 - MINOR: log: add a new flag 'L' for locally processed requests 8515 - MINOR: http: add full-length header fetch methods 8516 - MEDIUM: protocol: implement a "drain" function in protocol layers 8517 - MEDIUM: http: add a new "http-response" ruleset 8518 - MEDIUM: http: add the "set-nice" action to http-request and http-response 8519 - MEDIUM: log: add a log level override value in struct session 8520 - MEDIUM: http: add support for action "set-log-level" in http-request/http-response 8521 - MEDIUM: http: add support for "set-tos" in http-request/http-response 8522 - MEDIUM: http: add the "set-mark" action on http-request/http-response rules 8523 - MEDIUM: tcp: add "tcp-request connection expect-proxy layer4" 8524 - MEDIUM: acl: automatically detect the type of certain fetches 8525 - MEDIUM: acl: remove a lot of useless ACLs that are equivalent to their fetches 8526 - MEDIUM: acl: remove 15 additional useless ACLs that are equivalent to their fetches 8527 - DOC: major reorg of ACL + sample fetch 8528 - CLEANUP: http: remove the bogus urlp_ip ACL match 8529 - MINOR: acl: add the new "env()" fetch method to retrieve an environment variable 8530 - BUG/MINOR: acl: correctly consider boolean fetches when doing casts 8531 - BUG/CRITICAL: fix a possible crash when using negative header occurrences 8532 - DOC: update ROADMAP file 8533 - MEDIUM: counters: use sc0/sc1/sc2 instead of sc1/sc2/sc3 8534 - MEDIUM: stats: add proxy name filtering on the statistic page 8535 85362013/04/03 : 1.5-dev18 8537 - DOCS: Add explanation of intermediate certs to crt paramater 8538 - DOC: typo and minor fixes in compression paragraph 8539 - MINOR: config: http-request configuration error message misses new keywords 8540 - DOC: minor typo fix in documentation 8541 - BUG/MEDIUM: ssl: ECDHE ciphers not usable without named curve configured. 8542 - MEDIUM: ssl: add bind-option "strict-sni" 8543 - MEDIUM: ssl: add mapping from SNI to cert file using "crt-list" 8544 - MEDIUM: regex: Use PCRE JIT in acl 8545 - DOC: simplify bind option "interface" explanation 8546 - DOC: tfo: bump required kernel to linux-3.7 8547 - BUILD: add explicit support for TFO with USE_TFO 8548 - MEDIUM: New cli option -Ds for systemd compatibility 8549 - MEDIUM: add haproxy-systemd-wrapper 8550 - MEDIUM: add systemd service 8551 - BUG/MEDIUM: systemd-wrapper: don't leak zombie processes 8552 - BUG/MEDIUM: remove supplementary groups when changing gid 8553 - BUG/MEDIUM: config: fix parser crash with bad bind or server address 8554 - BUG/MINOR: Correct logic in cut_crlf() 8555 - CLEANUP: checks: Make desc argument to set_server_check_status const 8556 - CLEANUP: dumpstats: Make cli_release_handler() static 8557 - MEDIUM: server: Break out set weight processing code 8558 - MEDIUM: server: Allow relative weights greater than 100% 8559 - MEDIUM: server: Tighten up parsing of weight string 8560 - MEDIUM: checks: Add agent health check 8561 - BUG/MEDIUM: ssl: openssl 0.9.8 doesn't open /dev/random before chroot 8562 - BUG/MINOR: time: frequency counters are not totally accurate 8563 - BUG/MINOR: http: don't process abortonclose when request was sent 8564 - BUG/MEDIUM: stream_interface: don't close outgoing connections on shutw() 8565 - BUG/MEDIUM: checks: ignore late resets after valid responses 8566 - DOC: fix bogus recommendation on usage of gpc0 counter 8567 - BUG/MINOR: http-compression: lookup Cache-Control in the response, not the request 8568 - MINOR: signal: don't block SIGPROF by default 8569 - OPTIM: epoll: make use of EPOLLRDHUP 8570 - OPTIM: splice: detect shutdowns and avoid splice() == 0 8571 - OPTIM: splice: assume by default that splice is working correctly 8572 - BUG/MINOR: log: temporary fix for lost SSL info in some situations 8573 - BUG/MEDIUM: peers: only the last peers section was used by tables 8574 - BUG/MEDIUM: config: verbosely reject peers sections with multiple local peers 8575 - BUG/MINOR: epoll: use a fix maxevents argument in epoll_wait() 8576 - BUG/MINOR: config: fix improper check for failed memory alloc in ACL parser 8577 - BUG/MINOR: config: free peer's address when exiting upon parsing error 8578 - BUG/MINOR: config: check the proper variable when parsing log minlvl 8579 - BUG/MEDIUM: checks: ensure the health_status is always within bounds 8580 - BUG/MINOR: cli: show sess should always validate s->listener 8581 - BUG/MINOR: log: improper NULL return check on utoa_pad() 8582 - CLEANUP: http: remove a useless null check 8583 - CLEANUP: tcp/unix: remove useless NULL check in {tcp,unix}_bind_listener() 8584 - BUG/MEDIUM: signal: signal handler does not properly check for signal bounds 8585 - BUG/MEDIUM: tools: off-by-one in quote_arg() 8586 - BUG/MEDIUM: uri_auth: missing NULL check and memory leak on memory shortage 8587 - BUG/MINOR: unix: remove the 'level' field from the ux struct 8588 - CLEANUP: http: don't try to deinitialize http compression if it fails before init 8589 - CLEANUP: config: slowstart is never negative 8590 - CLEANUP: config: maxcompcpuusage is never negative 8591 - BUG/MEDIUM: log: emit '-' for empty fields again 8592 - BUG/MEDIUM: checks: fix a race condition between checks and observe layer7 8593 - BUILD: fix a warning emitted by isblank() on non-c99 compilers 8594 - BUILD: improve the makefile's support for libpcre 8595 - MEDIUM: halog: add support for counting per source address (-ic) 8596 - MEDIUM: tools: make str2sa_range support all address syntaxes 8597 - MEDIUM: config: make use of str2sa_range() instead of str2sa() 8598 - MEDIUM: config: use str2sa_range() to parse server addresses 8599 - MEDIUM: config: use str2sa_range() to parse peers addresses 8600 - MINOR: tests: add a config file to ease address parsing tests. 8601 - MINOR: ssl: add a global tunable for the max SSL/TLS record size 8602 - BUG/MINOR: syscall: fix NR_accept4 system call on sparc/linux 8603 - BUILD/MINOR: syscall: add definition of NR_accept4 for ARM 8604 - MINOR: config: report missing peers section name 8605 - BUG/MEDIUM: tools: fix bad character handling in str2sa_range() 8606 - BUG/MEDIUM: stats: never apply "unix-bind prefix" to the global stats socket 8607 - MINOR: tools: prepare str2sa_range() to return an error message 8608 - BUG/MEDIUM: checks: don't call connect() on unsupported address families 8609 - MINOR: tools: prepare str2sa_range() to accept a prefix 8610 - MEDIUM: tools: make str2sa_range() parse unix addresses too 8611 - MEDIUM: config: make str2listener() use str2sa_range() to parse unix addresses 8612 - MEDIUM: config: use a single str2sa_range() call to parse bind addresses 8613 - MEDIUM: config: use str2sa_range() to parse log addresses 8614 - CLEANUP: tools: remove str2sun() which is not used anymore. 8615 - MEDIUM: config: add complete support for str2sa_range() in dispatch 8616 - MEDIUM: config: add complete support for str2sa_range() in server addr 8617 - MEDIUM: config: add complete support for str2sa_range() in 'server' 8618 - MEDIUM: config: add complete support for str2sa_range() in 'peer' 8619 - MEDIUM: config: add complete support for str2sa_range() in 'source' and 'usesrc' 8620 - CLEANUP: minor cleanup in str2sa_range() and str2ip() 8621 - CLEANUP: config: do not use multiple errmsg at once 8622 - MEDIUM: tools: support specifying explicit address families in str2sa_range() 8623 - MAJOR: listener: support inheriting a listening fd from the parent 8624 - MAJOR: tools: support environment variables in addresses 8625 - BUG/MEDIUM: http: add-header should not emit "-" for empty fields 8626 - BUG/MEDIUM: config: ACL compatibility check on "redirect" was wrong 8627 - BUG/MEDIUM: http: fix another issue caused by http-send-name-header 8628 - DOC: mention the new HTTP 307 and 308 redirect statues 8629 - MEDIUM: poll: do not use FD_* macros anymore 8630 - BUG/MAJOR: ev_select: disable the select() poller if maxsock > FD_SETSIZE 8631 - BUG/MINOR: acl: ssl_fc_{alg,use}_keysize must parse integers, not strings 8632 - BUG/MINOR: acl: ssl_c_used, ssl_fc{,_has_crt,_has_sni} take no pattern 8633 - BUILD: fix usual isdigit() warning on solaris 8634 - BUG/MEDIUM: tools: vsnprintf() is not always reliable on Solaris 8635 - OPTIM: buffer: remove one jump in buffer_count() 8636 - OPTIM: http: improve branching in chunk size parser 8637 - OPTIM: http: optimize the response forward state machine 8638 - BUILD: enable poll() by default in the makefile 8639 - BUILD: add explicit support for Mac OS/X 8640 - BUG/MAJOR: http: use a static storage for sample fetch context 8641 - BUG/MEDIUM: ssl: improve error processing and reporting in ssl_sock_load_cert_list_file() 8642 - BUG/MAJOR: http: fix regression introduced by commit a890d072 8643 - BUG/MAJOR: http: fix regression introduced by commit d655ffe 8644 - BUG/CRITICAL: using HTTP information in tcp-request content may crash the process 8645 - MEDIUM: acl: remove flag ACL_MAY_LOOKUP which is improperly used 8646 - MEDIUM: samples: use new flags to describe compatibility between fetches and their usages 8647 - MINOR: log: indicate it when some unreliable sample fetches are logged 8648 - MEDIUM: samples: move payload-based fetches and ACLs to their own file 8649 - MINOR: backend: rename sample fetch functions and declare the sample keywords 8650 - MINOR: frontend: rename sample fetch functions and declare the sample keywords 8651 - MINOR: listener: rename sample fetch functions and declare the sample keywords 8652 - MEDIUM: http: unify acl and sample fetch functions 8653 - MINOR: session: rename sample fetch functions and declare the sample keywords 8654 - MAJOR: acl: make all ACLs reference the fetch function via a sample. 8655 - MAJOR: acl: remove the arg_mask from the ACL definition and use the sample fetch's 8656 - MAJOR: acl: remove fetch argument validation from the ACL struct 8657 - MINOR: http: add new direction-explicit sample fetches for headers and cookies 8658 - MINOR: payload: add new direction-explicit sample fetches 8659 - CLEANUP: acl: remove ACL hooks which were never used 8660 - MEDIUM: proxy: remove acl_requires and just keep a flag "http_needed" 8661 - MINOR: sample: provide a function to report the name of a sample check point 8662 - MAJOR: acl: convert all ACL requires to SMP use+val instead of ->requires 8663 - CLEANUP: acl: remove unused references to ACL_USE_* 8664 - MINOR: http: replace acl_parse_ver with acl_parse_str 8665 - MEDIUM: acl: move the ->parse, ->match and ->smp fields to acl_expr 8666 - MAJOR: acl: add option -m to change the pattern matching method 8667 - MINOR: acl: remove the use_count in acl keywords 8668 - MEDIUM: acl: have a pointer to the keyword name in acl_expr 8669 - MEDIUM: acl: support using sample fetches directly in ACLs 8670 - MEDIUM: http: remove val_usr() to validate user_lists 8671 - MAJOR: sample: maintain a per-proxy list of the fetch args to resolve 8672 - MINOR: ssl: add support for the "alpn" bind keyword 8673 - MINOR: http: status code 303 is HTTP/1.1 only 8674 - MEDIUM: http: implement redirect 307 and 308 8675 - MINOR: http: status 301 should not be marked non-cacheable 8676 86772012/12/28 : 1.5-dev17 8678 - MINOR: ssl: Setting global tune.ssl.cachesize value to 0 disables SSL session cache. 8679 - BUG/MEDIUM: stats: fix stats page regression introduced by commit 20b0de5 8680 - BUG/MINOR: stats: last fix was still wrong 8681 - BUG/MINOR: stats: http-request rules still don't cope with stats 8682 - BUG/MINOR: http: http-request add-header emits a corrupted header 8683 - BUG/MEDIUM: stats: disable request analyser when processing POST or HEAD 8684 - BUG/MINOR: log: make log-format, unique-id-format and add-header more independant 8685 - BUILD: log: unused variable svid 8686 - CLEANUP: http: rename the misleading http_check_access_rule 8687 - MINOR: http: move redirect rule processing to its own function 8688 - REORG: config: move the http redirect rule parser to proto_http.c 8689 - MEDIUM: http: add support for "http-request redirect" rules 8690 - MEDIUM: http: add support for "http-request tarpit" rule 8691 86922012/12/24 : 1.5-dev16 8693 - BUG/MEDIUM: ssl: Prevent ssl error from affecting other connections. 8694 - BUG/MINOR: ssl: error is not reported if it occurs simultaneously with peer close detection. 8695 - MINOR: ssl: add fetch and acl "ssl_c_used" to check if current SSL session uses a client certificate. 8696 - MINOR: contrib: make the iprange tool grep for addresses 8697 - CLEANUP: polling: gcc doesn't always optimize constants away 8698 - OPTIM: poll: optimize fd management functions for low register count CPUs 8699 - CLEANUP: poll: remove a useless double-check on fdtab[fd].owner 8700 - OPTIM: epoll: use a temp variable for intermediary flag computations 8701 - OPTIM: epoll: current fd does not count as a new one 8702 - BUG/MINOR: poll: the I/O handler was called twice for polled I/Os 8703 - MINOR: http: make resp_ver and status ACLs check for the presence of a response 8704 - BUG/MEDIUM: stream-interface: fix possible stalls during transfers 8705 - BUG/MINOR: stream_interface: don't return when the fd is already set 8706 - BUG/MEDIUM: connection: always update connection flags prior to computing polling 8707 - CLEANUP: buffer: use buffer_empty() instead of buffer_len()==0 8708 - BUG/MAJOR: stream_interface: fix occasional data transfer freezes 8709 - BUG/MEDIUM: stream_interface: fix another case where the reader might not be woken up 8710 - BUG/MINOR: http: don't abort client connection on premature responses 8711 - BUILD: no need to clean up when making git-tar 8712 - MINOR: log: add a tag for amount of bytes uploaded from client to server 8713 - BUG/MEDIUM: log: fix possible segfault during config parsing 8714 - MEDIUM: log: change a few log tokens to make them easier to remember 8715 - BUG/MINOR: log: add_to_logformat_list() used the wrong constants 8716 - MEDIUM: log-format: make the format parser more robust and more extensible 8717 - MINOR: sample: support cast from bool to string 8718 - MINOR: samples: add a function to fetch and convert any sample to a string 8719 - MINOR: log: add lf_text_len 8720 - MEDIUM: log: add the ability to include samples in logs 8721 - REORG: stats: massive code reorg and cleanup 8722 - REORG: stats: move the HTTP header injection to proto_http 8723 - REORG: stats: functions are now HTTP/CLI agnostic 8724 - BUG/MINOR: log: fix regression introduced by commit 8a3f52 8725 - MINOR: chunks: centralize the trash chunk allocation 8726 - MEDIUM: stats: use hover boxes instead of title to report details 8727 - MEDIUM: stats: use multi-line tips to display detailed counters 8728 - MINOR: tools: simplify the use of the int to ascii macros 8729 - MINOR: stats: replace STAT_FMT_CSV with STAT_FMT_HTML 8730 - MINOR: http: prepare to support more http-request actions 8731 - MINOR: log: make parse_logformat_string() take a const char * 8732 - MEDIUM: http: add http-request 'add-header' and 'set-header' to build headers 8733 87342012/12/12 : 1.5-dev15 8735 - DOC: add a few precisions on compression 8736 - BUG/MEDIUM: ssl: Fix handshake failure on session resumption with client cert. 8737 - BUG/MINOR: ssl: One free session in cache remains unused. 8738 - BUG/MEDIUM: ssl: first outgoing connection would fail with {ca,crt}-ignore-err 8739 - MEDIUM: ssl: manage shared cache by blocks for huge sessions. 8740 - MINOR: acl: add fetch for server session rate 8741 - BUG/MINOR: compression: Content-Type is case insensitive 8742 - MINOR: compression: disable on multipart or status != 200 8743 - BUG/MINOR: http: don't report client aborts as server errors 8744 - MINOR: stats: compute the ratio of compressed response based on 2xx responses 8745 - MINOR: http: factor out the content-type checks 8746 - BUG/MAJOR: stats: correctly check for a possible divide error when showing compression ratios 8747 - BUILD: ssl: OpenSSL 0.9.6 has no renegociation 8748 - BUG/MINOR: http: disable compression when message has no body 8749 - MINOR: compression: make the stats a bit more robust 8750 - BUG/MEDIUM: comp: DEFAULT_MAXZLIBMEM was expressed in bytes and not megabytes 8751 - MINOR: connection: don't remove failed handshake flags 8752 - MEDIUM: connection: add an error code in connections 8753 - MEDIUM: connection: add minimal error reporting in logs for incomplete connections 8754 - MEDIUM: connection: add error reporting for the PROXY protocol header 8755 - MEDIUM: connection: add error reporting for the SSL 8756 - DOC: document the connection error format in logs 8757 - BUG/MINOR: http: don't log a 503 on client errors while waiting for requests 8758 - BUILD: stdbool is not portable 8759 - BUILD: ssl: NAME_MAX is not portable, use MAXPATHLEN instead 8760 - BUG/MAJOR: raw_sock: must check error code on hangup 8761 - BUG/MAJOR: polling: do not set speculative events on ERR nor HUP 8762 - BUG/MEDIUM: session: fix FD leak when transport layer logging is enabled 8763 - MINOR: stats: add a few more information on session dump 8764 - BUG/MINOR: tcp: set the ADDR_TO_SET flag on outgoing connections 8765 - CLEANUP: connection: remove unused server/proxy/task/si_applet declarations 8766 - BUG/MEDIUM: tcp: process could theorically crash on lack of source ports 8767 - MINOR: cfgparse: mention "interface" in the list of allowed "source" options 8768 - MEDIUM: connection: introduce "struct conn_src" for servers and proxies 8769 - CLEANUP: proto_tcp: use the same code to bind servers and backends 8770 - CLEANUP: backend: use the same tproxy address selection code for servers and backends 8771 - BUG/MEDIUM: stick-tables: conversions to strings were broken in dev13 8772 - MEDIUM: proto_tcp: add support for tracking L7 information 8773 - MEDIUM: counters: add sc1_trackers/sc2_trackers 8774 - MINOR: http: add the "base32" pattern fetch function 8775 - MINOR: http: add the "base32+src" fetch method. 8776 - CLEANUP: session: use an array for the stick counters 8777 - BUG/MINOR: proto_tcp: fix parsing of "table" in track-sc1/2 8778 - BUG/MINOR: proto_tcp: bidirectional fetches not supported anymore in track-sc1/2 8779 - BUG/MAJOR: connection: always recompute polling status upon I/O 8780 - BUG/MINOR: connection: remove a few synchronous calls to polling updates 8781 - MINOR: config: improve error checking on TCP stick-table tracking 8782 - DOC: add some clarifications to the readme 8783 87842012/11/26 : 1.5-dev14 8785 - DOC: fix minor typos 8786 - BUG/MEDIUM: compression: does not forward trailers 8787 - MINOR: buffer_dump with ASCII 8788 - BUG/MEDIUM: checks: mark the check as stopped after a connect error 8789 - BUG/MEDIUM: checks: ensure we completely disable polling upon success 8790 - BUG/MINOR: checks: don't mark the FD as closed before transport close 8791 - MEDIUM: checks: avoid accumulating TIME_WAITs during checks 8792 - MINOR: cli: report the msg state in full text in "show sess $PTR" 8793 - CLEANUP: checks: rename some server check flags 8794 - MAJOR: checks: rework completely bogus state machine 8795 - BUG/MINOR: checks: slightly clean the state machine up 8796 - MEDIUM: checks: avoid waking the application up for pure TCP checks 8797 - MEDIUM: checks: close the socket as soon as we have a response 8798 - BUG/MAJOR: checks: close FD on all timeouts 8799 - MINOR: checks: fix recv polling after connect() 8800 - MEDIUM: connection: provide a common conn_full_close() function 8801 - BUG/MEDIUM: checks: prevent TIME_WAITs from appearing also on timeouts 8802 - BUG/MAJOR: peers: the listener's maxaccept was not set and caused loops 8803 - MINOR: listeners: make the accept loop more robust when maxaccept==0 8804 - BUG/MEDIUM: acl: correctly resolve all args, not just the first one 8805 - BUG/MEDIUM: acl: make prue_acl_expr() correctly free ACL expressions upon exit 8806 - BUG/MINOR: stats: fix inversion of the report of a check in progress 8807 - MEDIUM: tcp: add explicit support for delayed ACK in connect() 8808 - BUG/MEDIUM: connection: always disable polling upon error 8809 - MINOR: connection: abort earlier when errors are detected 8810 - BUG/MEDIUM: checks: report handshake failures 8811 - BUG/MEDIUM: connection: local_send_proxy must wait for connection to establish 8812 - MINOR: tcp: add support for the "v6only" bind option 8813 - MINOR: stats: also report the computed compression savings in html stats 8814 - MINOR: stats: report the total number of compressed responses per front/back 8815 - MINOR: tcp: add support for the "v4v6" bind option 8816 - DOC: stats: document the comp_rsp stats column 8817 - BUILD: buffer: fix another isprint() warning on solaris 8818 - MINOR: cli: add support for the "show sess all" command 8819 - BUG/MAJOR: cli: show sess <id> may randomly corrupt the back-ref list 8820 - MINOR: cli: improve output format for show sess $ptr 8821 88222012/11/22 : 1.5-dev13 8823 - BUILD: fix build issue without USE_OPENSSL 8824 - BUILD: fix compilation error with DEBUG_FULL 8825 - DOC: ssl: remove prefer-server-ciphers documentation 8826 - DOC: ssl: surround keywords with quotes 8827 - DOC: fix minor typo on http-send-name-header 8828 - BUG/MEDIUM: acls using IPv6 subnets patterns incorrectly match IPs 8829 - BUG/MAJOR: fix a segfault on option http_proxy and url_ip acl 8830 - MEDIUM: http: accept IPv6 values with (s)hdr_ip acl 8831 - BUILD: report zlib support in haproxy -vv 8832 - DOC: compression: add some details and clean up the formatting 8833 - DOC: Change is_ssl acl to ssl_fc acl in example 8834 - DOC: make it clear what the HTTP request size is 8835 - MINOR: ssl: try to load Diffie-Hellman parameters from cert file 8836 - DOC: ssl: update 'crt' statement on 'bind' about Diffie-Hellman parameters loading 8837 - MINOR: ssl: add elliptic curve Diffie-Hellman support for ssl key generation 8838 - DOC: ssl: add 'ecdhe' statement on 'bind' 8839 - MEDIUM: ssl: add client certificate authentication support 8840 - DOC: ssl: add 'verify', 'cafile' and 'crlfile' statements on 'bind' 8841 - MINOR: ssl: add fetch and ACL 'client_crt' to test a client cert is present 8842 - DOC: ssl: add fetch and ACL 'client_cert' 8843 - MINOR: ssl: add ignore verify errors options 8844 - DOC: ssl: add 'ca-ignore-err' and 'crt-ignore-err' statements on 'bind' 8845 - MINOR: ssl: add fetch and ACL 'ssl_verify_result' 8846 - DOC: ssl: add fetch and ACL 'ssl_verify_result' 8847 - MINOR: ssl: add fetches and ACLs to return verify errors 8848 - DOC: ssl: add fetches and ACLs 'ssl_verify_crterr', 'ssl_verify_caerr', and 'ssl_verify_crterr_depth' 8849 - MINOR: ssl: disable shared memory and locks on session cache if nbproc == 1 8850 - MINOR: ssl: add build param USE_PRIVATE_CACHE to build cache without shared memory 8851 - MINOR: ssl : add statements 'notlsv11' and 'notlsv12' and rename 'notlsv1' to 'notlsv10'. 8852 - DOC: ssl : add statements 'notlsv11' and 'notlsv12' and rename 'notlsv1' to 'notlsv10'. 8853 - MEDIUM: config: authorize frontend and listen without bind. 8854 - MINOR: ssl: add statement 'no-tls-tickets' on bind to disable stateless session resumption 8855 - DOC: ssl: add 'no-tls-tickets' statement documentation. 8856 - BUG/MINOR: ssl: Fix CRL check was not enabled when crlfile was specified. 8857 - BUG/MINOR: build: Fix compilation issue on openssl 0.9.6 due to missing CRL feature. 8858 - BUG/MINOR: conf: Fix 'maxsslconn' statement error if built without OPENSSL. 8859 - BUG/MINOR: build: Fix failure with USE_OPENSSL=1 and USE_FUTEX=1 on archs i486 and i686. 8860 - MINOR: ssl: remove prefer-server-ciphers statement and set it as the default on ssl listeners. 8861 - BUG/MEDIUM: ssl: subsequent handshakes fail after server configuration changes 8862 - MINOR: ssl: add 'crt-base' and 'ca-base' global statements. 8863 - MEDIUM: conf: rename 'nosslv3' and 'notlsvXX' statements 'no-sslv3' and 'no-tlsvXX'. 8864 - MEDIUM: conf: rename 'cafile' and 'crlfile' statements 'ca-file' and 'crl-file' 8865 - MINOR: ssl: use bit fields to store ssl options instead of one int each 8866 - MINOR: ssl: add 'force-sslv3' and 'force-tlsvXX' statements on bind. 8867 - MINOR: ssl: add 'force-sslv3' and 'force-tlsvXX' statements on server 8868 - MINOR: ssl: add defines LISTEN_DEFAULT_CIPHERS and CONNECT_DEFAULT_CIPHERS. 8869 - BUG/MINOR: ssl: Fix issue on server statements 'no-tls*' and 'no-sslv3' 8870 - MINOR: ssl: move ssl context init for servers from cfgparse.c to ssl_sock.c 8871 - MEDIUM: ssl: reject ssl server keywords in default-server statement 8872 - MINOR: ssl: add statement 'no-tls-tickets' on server side. 8873 - MINOR: ssl: add statements 'verify', 'ca-file' and 'crl-file' on servers. 8874 - DOC: Fix rename of options cafile and crlfile to ca-file and crl-file. 8875 - MINOR: sample: manage binary to string type convertion in stick-table and samples. 8876 - MINOR: acl: add parse and match primitives to use binary type on ACLs 8877 - MINOR: sample: export 'sample_get_trash_chunk(void)' 8878 - MINOR: conf: rename all ssl modules fetches using prefix 'ssl_fc' and 'ssl_c' 8879 - MINOR: ssl: add pattern and ACLs fetches 'ssl_fc_protocol', 'ssl_fc_cipher', 'ssl_fc_use_keysize' and 'ssl_fc_alg_keysize' 8880 - MINOR: ssl: add pattern fetch 'ssl_fc_session_id' 8881 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_version' and 'ssl_f_version' 8882 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_s_dn', 'ssl_c_i_dn', 'ssl_f_s_dn' and 'ssl_c_i_dn' 8883 - MINOR: ssl: add pattern and ACLs 'ssl_c_sig_alg' and 'ssl_f_sig_alg' 8884 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_key_alg' and 'ssl_f_key_alg' 8885 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_notbefore', 'ssl_c_notafter', 'ssl_f_notbefore' and 'ssl_f_notafter' 8886 - MINOR: ssl: add 'crt' statement on server. 8887 - MINOR: ssl: checks the consistency of a private key with the corresponding certificate 8888 - BUG/MEDIUM: ssl: review polling on reneg. 8889 - BUG/MEDIUM: ssl: Fix some reneg cases not correctly handled. 8890 - BUG/MEDIUM: ssl: Fix sometimes reneg fails if requested by server. 8891 - MINOR: build: allow packagers to specify the ssl cache size 8892 - MINOR: conf: add warning if ssl is not enabled and a certificate is present on bind. 8893 - MINOR: ssl: Add tune.ssl.lifetime statement in global. 8894 - MINOR: compression: Enable compression for IE6 w/SP2, IE7 and IE8 8895 - BUG: http: revert broken optimisation from 82fe75c1a79dac933391501b9d293bce34513755 8896 - DOC: duplicate ssl_sni section 8897 - MEDIUM: HTTP compression (zlib library support) 8898 - CLEANUP: use struct comp_ctx instead of union 8899 - BUILD: remove dependency to zlib.h 8900 - MINOR: compression: memlevel and windowsize 8901 - MEDIUM: use pool for zlib 8902 - MINOR: compression: try init in cfgparse.c 8903 - MINOR: compression: init before deleting headers 8904 - MEDIUM: compression: limit RAM usage 8905 - MINOR: compression: tune.comp.maxlevel 8906 - MINOR: compression: maximum compression rate limit 8907 - MINOR: log-format: check number of arguments in cfgparse.c 8908 - BUG/MEDIUM: compression: no Content-Type header but type in configuration 8909 - BUG/MINOR: compression: deinit zlib only when required 8910 - MEDIUM: compression: don't compress when no data 8911 - MEDIUM: compression: use pool for comp_ctx 8912 - MINOR: compression: rate limit in 'show info' 8913 - MINOR: compression: report zlib memory usage 8914 - BUG/MINOR: compression: dynamic level increase 8915 - DOC: compression: unsupported cases. 8916 - MINOR: compression: CPU usage limit 8917 - MEDIUM: http: add "redirect scheme" to ease HTTP to HTTPS redirection 8918 - BUG/MAJOR: ssl: missing tests in ACL fetch functions 8919 - MINOR: config: add a function to indent error messages 8920 - REORG: split "protocols" files into protocol and listener 8921 - MEDIUM: config: replace ssl_conf by bind_conf 8922 - CLEANUP: listener: remove unused conf->file and conf->line 8923 - MEDIUM: listener: add a minimal framework to register "bind" keyword options 8924 - MEDIUM: config: move the "bind" TCP parameters to proto_tcp 8925 - MEDIUM: move bind SSL parsing to ssl_sock 8926 - MINOR: config: improve error reporting for "bind" lines 8927 - MEDIUM: config: move the common "bind" settings to listener.c 8928 - MEDIUM: config: move all unix-specific bind keywords to proto_uxst.c 8929 - MEDIUM: config: enumerate full list of registered "bind" keywords upon error 8930 - MINOR: listener: add a scope field in the bind keyword lists 8931 - MINOR: config: pass the file and line to config keyword parsers 8932 - MINOR: stats: fill the file and line numbers in the stats frontend 8933 - MINOR: config: set the bind_conf entry on listeners created from a "listen" line. 8934 - MAJOR: listeners: use dual-linked lists to chain listeners with frontends 8935 - REORG: listener: move unix perms from the listener to the bind_conf 8936 - BUG: backend: balance hdr was broken since 1.5-dev11 8937 - MINOR: standard: make memprintf() support a NULL destination 8938 - MINOR: config: make str2listener() use memprintf() to report errors. 8939 - MEDIUM: stats: remove the stats_sock struct from the global struct 8940 - MINOR: ssl: set the listeners' data layer to ssl during parsing 8941 - MEDIUM: stats: make use of the standard "bind" parsers to parse global socket 8942 - DOC: move bind options to their own section 8943 - DOC: stats: refer to "bind" section for "stats socket" settings 8944 - DOC: fix index to reference bind and server options 8945 - BUG: http: do not print garbage on invalid requests in debug mode 8946 - BUG/MINOR: config: check the proper pointer to report unknown protocol 8947 - CLEANUP: connection: offer conn_prepare() to set up a connection 8948 - CLEANUP: config: fix typo inteface => interface 8949 - BUG: stats: fix regression introduced by commit 4348fad1 8950 - MINOR: cli: allow to set frontend maxconn to zero 8951 - BUG/MAJOR: http: chunk parser was broken with buffer changes 8952 - MEDIUM: monitor: simplify handling of monitor-net and mode health 8953 - MINOR: connection: add a pointer to the connection owner 8954 - MEDIUM: connection: make use of the owner instead of container_of 8955 - BUG/MINOR: ssl: report the L4 connection as established when possible 8956 - BUG/MEDIUM: proxy: must not try to stop disabled proxies upon reload 8957 - BUG/MINOR: config: use a copy of the file name in proxy configurations 8958 - BUG/MEDIUM: listener: don't pause protocols that do not support it 8959 - MEDIUM: proxy: add the global frontend to the list of normal proxies 8960 - BUG/MINOR: epoll: correctly disable FD polling in fd_rem() 8961 - MINOR: signal: really ignore signals configured with no handler 8962 - MINOR: buffers: add a few functions to write chars, strings and blocks 8963 - MINOR: raw_sock: always report asynchronous connection errors 8964 - MEDIUM: raw_sock: improve connection error reporting 8965 - REORG: connection: rename the data layer the "transport layer" 8966 - REORG: connection: rename app_cb "data" 8967 - MINOR: connection: provide a generic data layer wakeup callback 8968 - MINOR: connection: split conn_prepare() in two functions 8969 - MINOR: connection: add an init callback to the data_cb struct 8970 - MEDIUM: session: use a specific data_cb for embryonic sessions 8971 - MEDIUM: connection: use a generic data-layer init() callback 8972 - MEDIUM: connection: reorganize connection flags 8973 - MEDIUM: connection: only call the data->wake callback on activity 8974 - MEDIUM: connection: make it possible for data->wake to return an error 8975 - MEDIUM: session: register a data->wake callback to process errors 8976 - MEDIUM: connection: don't call the data->init callback upon error 8977 - MEDIUM: connection: it's not the data layer's role to validate the connection 8978 - MEDIUM: connection: automatically disable polling on error 8979 - REORG: connection: move the PROXY protocol management to connection.c 8980 - MEDIUM: connection: add a new local send-proxy transport callback 8981 - MAJOR: checks: make use of the connection layer to send checks 8982 - REORG: server: move the check-specific parts into a check subsection 8983 - MEDIUM: checks: use real buffers to store requests and responses 8984 - MEDIUM: check: add the ctrl and transport layers in the server check structure 8985 - MAJOR: checks: completely use the connection transport layer 8986 - MEDIUM: checks: add the "check-ssl" server option 8987 - MEDIUM: checks: enable the PROXY protocol with health checks 8988 - CLEANUP: checks: remove minor warnings for assigned but not used variables 8989 - MEDIUM: tcp: enable TCP Fast Open on systems which support it 8990 - BUG: connection: fix regression from commit 9e272bf9 8991 - CLEANUP: cttproxy: remove a warning on undeclared close() 8992 - BUG/MAJOR: ensure that hdr_idx is always reserved when L7 fetches are used 8993 - MEDIUM: listener: add support for linux's accept4() syscall 8994 - MINOR: halog: sort output by cookie code 8995 - BUG/MINOR: halog: -ad/-ac report the correct number of output lines 8996 - BUG/MINOR: halog: fix help message for -ut/-uto 8997 - MINOR: halog: add a parameter to limit output line count 8998 - BUILD: accept4: move the socketcall declaration outside of accept4() 8999 - MINOR: server: add minimal infrastructure to parse keywords 9000 - MINOR: standard: make indent_msg() support empty messages 9001 - MEDIUM: server: check for registered keywords when parsing unknown keywords 9002 - MEDIUM: server: move parsing of keyword "id" to server.c 9003 - BUG/MEDIUM: config: check-send-proxy was ignored if SSL was not builtin 9004 - MEDIUM: ssl: move "server" keyword SSL options parsing to ssl_sock.c 9005 - MEDIUM: log: suffix the frontend's name with '~' when using SSL 9006 - MEDIUM: connection: always unset the transport layer upon close 9007 - BUG/MINOR: session: fix some leftover from debug code 9008 - BUG/MEDIUM: session: enable the conn_session_update() callback 9009 - MEDIUM: connection: add a flag to hold the transport layer 9010 - MEDIUM: log: add a new LW_XPRT flag to pin the transport layer 9011 - MINOR: log: make lf_text use a const char * 9012 - MEDIUM: log: report SSL ciphers and version in logs using logformat %sslc/%sslv 9013 - REORG: http: rename msg->buf to msg->chn since it's a channel 9014 - CLEANUP: http: use 'chn' to name channel variables, not 'buf' 9015 - CLEANUP: channel: use 'chn' instead of 'buf' as local variable names 9016 - CLEANUP: tcp: use 'chn' instead of 'buf' or 'b' for channel pointer names 9017 - CLEANUP: stream_interface: use 'chn' instead of 'b' to name channel pointers 9018 - CLEANUP: acl: use 'chn' instead of 'b' to name channel pointers 9019 - MAJOR: channel: replace the struct buffer with a pointer to a buffer 9020 - OPTIM: channel: reorganize struct members to improve cache efficiency 9021 - CLEANUP: session: remove term_trace which is not used anymore 9022 - OPTIM: session: reorder struct session fields 9023 - OPTIM: connection: pack the struct target 9024 - DOC: document relations between internal entities 9025 - MINOR: ssl: add 'ssl_npn' sample/acl to extract TLS/NPN information 9026 - BUILD: ssl: fix shctx build on older compilers 9027 - MEDIUM: ssl: add support for the "npn" bind keyword 9028 - BUG: ssl: fix ssl_sni ACLs to correctly process regular expressions 9029 - MINOR: chunk: provide string compare functions 9030 - MINOR: sample: accept fetch keywords without parenthesis 9031 - MEDIUM: sample: pass an empty list instead of a null for fetch args 9032 - MINOR: ssl: improve socket behaviour upon handshake abort. 9033 - BUG/MEDIUM: http: set DONTWAIT on data when switching to tunnel mode 9034 - MEDIUM: listener: provide a fallback for accept4() when not supported 9035 - BUG/MAJOR: connection: risk of crash on certain tricky close scenario 9036 - MEDIUM: cli: allow the stats socket to be bound to a specific set of processes 9037 - OPTIM: channel: inline channel_forward's fast path 9038 - OPTIM: http: inline http_parse_chunk_size() and http_skip_chunk_crlf() 9039 - OPTIM: tools: inline hex2i() 9040 - CLEANUP: http: rename HTTP_MSG_DATA_CRLF state 9041 - MINOR: compression: automatically disable compression for older browsers 9042 - MINOR: compression: optimize memLevel to improve byte rate 9043 - BUG/MINOR: http: compression should consider all Accept-Encoding header values 9044 - BUILD: fix coexistence of openssl and zlib 9045 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_serial' and 'ssl_f_serial' 9046 - BUG/MEDIUM: command-line option -D must have precedence over "debug" 9047 - MINOR: tools: add a clear_addr() function to unset an address 9048 - BUG/MEDIUM: tcp: transparent bind to the source only when address is set 9049 - CLEANUP: remove trashlen 9050 - MAJOR: session: detach the connections from the stream interfaces 9051 - DOC: update document describing relations between internal entities 9052 - BUILD: make it possible to specify ZLIB path 9053 - MINOR: compression: add an offload option to remove the Accept-Encoding header 9054 - BUG: compression: disable auto-close and enable MSG_MORE during transfer 9055 - CLEANUP: completely remove trashlen 9056 - MINOR: chunk: add a function to reset a chunk 9057 - CLEANUP: replace chunk_printf() with chunk_appendf() 9058 - MEDIUM: make the trash be a chunk instead of a char * 9059 - MEDIUM: remove remains of BUFSIZE in HTTP auth and sample conversions 9060 - MEDIUM: stick-table: allocate the table key of size buffer size 9061 - BUG/MINOR: stream_interface: don't loop over ->snd_buf() 9062 - BUG/MINOR: session: ensure that we don't retry connection if some data were sent 9063 - OPTIM: session: don't process the whole session when only timers need a refresh 9064 - BUG/MINOR: session: mark the handshake as complete earlier 9065 - MAJOR: connection: remove the CO_FL_CURR_*_POL flag 9066 - BUG/MAJOR: always clear the CO_FL_WAIT_* flags after updating polling flags 9067 - MAJOR: sepoll: make the poller totally event-driven 9068 - OPTIM: stream_interface: disable reading when CF_READ_DONTWAIT is set 9069 - BUILD: compression: remove a build warning 9070 - MEDIUM: fd: don't unset fdtab[].updated upon delete 9071 - REORG: fd: move the speculative I/O management from ev_sepoll 9072 - REORG: fd: move the fd state management from ev_sepoll 9073 - REORG: fd: centralize the processing of speculative events 9074 - BUG: raw_sock: also consider ENOTCONN in addition to EAGAIN 9075 - BUILD: stream_interface: remove si_fd() and its references 9076 - BUILD: compression: enable build in BSD and OSX Makefiles 9077 - MAJOR: ev_select: make the poller support speculative events 9078 - MAJOR: ev_poll: make the poller support speculative events 9079 - MAJOR: ev_kqueue: make the poller support speculative events 9080 - MAJOR: polling: replace epoll with sepoll and remove sepoll 9081 - MAJOR: polling: remove unused callbacks from the poller struct 9082 - MEDIUM: http: refrain from sending "Connection: close" when Upgrade is present 9083 - CLEANUP: channel: remove any reference of the hijackers 9084 - CLEANUP: stream_interface: remove the external task type target 9085 - MAJOR: connection: replace struct target with a pointer to an enum 9086 - BUG: connection: fix typo in previous commit 9087 - BUG: polling: don't skip polled events in the spec list 9088 - MINOR: splice: disable it when the system returns EBADF 9089 - MINOR: build: allow packagers to specify the default maxzlibmem 9090 - BUG: halog: fix broken output limitation 9091 - BUG: proxy: fix server name lookup in get_backend_server() 9092 - BUG: compression: do not always increment the round counter on allocation failure 9093 - BUG/MEDIUM: compression: release the zlib pools between keep-alive requests 9094 - MINOR: global: don't prevent nbproc from being redefined 9095 - MINOR: config: support process ranges for "bind-process" 9096 - MEDIUM: global: add support for CPU binding on Linux ("cpu-map") 9097 - MINOR: ssl: rename and document the tune.ssl.cachesize option 9098 - DOC: update the PROXY protocol spec to support v2 9099 - MINOR: standard: add a simple popcount function 9100 - MEDIUM: adjust the maxaccept per listener depending on the number of processes 9101 - BUG: compression: properly disable compression when content-type does not match 9102 - MINOR: cli: report connection status in "show sess xxx" 9103 - BUG/MAJOR: stream_interface: certain workloads could cause get stuck 9104 - BUILD: cli: fix build when SSL is enabled 9105 - MINOR: cli: report the fd state in "show sess xxx" 9106 - MINOR: cli: report an error message on missing argument to compression rate 9107 - MINOR: http: add some debugging functions to pretty-print msg state names 9108 - BUG/MAJOR: stream_interface: read0 not always handled since dev12 9109 - DOC: documentation on http header capture is wrong 9110 - MINOR: http: allow the cookie capture size to be changed 9111 - DOC: http header capture has not been limited in size for a long time 9112 - DOC: update readme with build methods for BSD 9113 - BUILD: silence a warning on Solaris about usage of isdigit() 9114 - MINOR: stats: report HTTP compression stats per frontend and per backend 9115 - MINOR: log: add '%Tl' to log-format 9116 - MINOR: samples: update the url_param fetch to match parameters in the path 9117 91182012/09/10 : 1.5-dev12 9119 - CONTRIB: halog: sort URLs by avg bytes_read or total bytes_read 9120 - MEDIUM: ssl: add support for prefer-server-ciphers option 9121 - MINOR: IPv6 support for transparent proxy 9122 - MINOR: protocol: add SSL context to listeners if USE_OPENSSL is defined 9123 - MINOR: server: add SSL context to servers if USE_OPENSSL is defined 9124 - MEDIUM: connection: add a new handshake flag for SSL (CO_FL_SSL_WAIT_HS). 9125 - MEDIUM: ssl: add new files ssl_sock.[ch] to provide the SSL data layer 9126 - MEDIUM: config: add the 'ssl' keyword on 'bind' lines 9127 - MEDIUM: config: add support for the 'ssl' option on 'server' lines 9128 - MEDIUM: ssl: protect against client-initiated renegociation 9129 - BUILD: add optional support for SSL via the USE_OPENSSL flag 9130 - MEDIUM: ssl: add shared memory session cache implementation. 9131 - MEDIUM: ssl: replace OpenSSL's session cache with the shared cache 9132 - MINOR: ssl add global setting tune.sslcachesize to set SSL session cache size. 9133 - MEDIUM: ssl: add support for SNI and wildcard certificates 9134 - DOC: Typos cleanup 9135 - DOC: fix name for "option independant-streams" 9136 - DOC: specify the default value for maxconn in the context of a proxy 9137 - BUG/MINOR: to_log erased with unique-id-format 9138 - LICENSE: add licence exception for OpenSSL 9139 - BUG/MAJOR: cookie prefix doesn't support cookie-less servers 9140 - BUILD: add an AIX 5.2 (and later) target. 9141 - MEDIUM: fd/si: move peeraddr from struct fdinfo to struct connection 9142 - MINOR: halog: use the more recent dual-mode fgets2 implementation 9143 - BUG/MEDIUM: ebtree: ebmb_insert() must not call cmp_bits on full-length matches 9144 - CLEANUP: halog: make clean should also remove .o files 9145 - OPTIM: halog: make use of memchr() on platforms which provide a fast one 9146 - OPTIM: halog: improve cold-cache behaviour when loading a file 9147 - BUG/MINOR: ACL implicit arguments must be created with unresolved flag 9148 - MINOR: replace acl_fetch_{path,url}* with smp_fetch_* 9149 - MEDIUM: pattern: add the "base" sample fetch method 9150 - OPTIM: i386: make use of kernel-mode-linux when available 9151 - BUG/MINOR: tarpit: fix condition to return the HTTP 500 message 9152 - BUG/MINOR: polling: some events were not set in various pollers 9153 - MINOR: http: add the urlp_val ACL match 9154 - BUG: stktable: tcp_src_to_stktable_key() must return NULL on invalid families 9155 - MINOR: stats/cli: add plans to support more stick-table actions 9156 - MEDIUM: stats/cli: add support for "set table key" to enter values 9157 - REORG/MEDIUM: fd: remove FD_STCLOSE from struct fdtab 9158 - REORG/MEDIUM: fd: remove checks for FD_STERROR in ev_sepoll 9159 - REORG/MEDIUM: fd: get rid of FD_STLISTEN 9160 - REORG/MINOR: connection: move declaration to its own include file 9161 - REORG/MINOR: checks: put a struct connection into the server 9162 - MINOR: connection: add flags to the connection struct 9163 - MAJOR: get rid of fdtab[].state and use connection->flags instead 9164 - MINOR: fd: add a new I/O handler to fdtab 9165 - MEDIUM: polling: prepare to call the iocb() function when defined. 9166 - MEDIUM: checks: make use of fdtab->iocb instead of cb[] 9167 - MEDIUM: protocols: use the generic I/O callback for accept callbacks 9168 - MINOR: connection: add a handler for fd-based connections 9169 - MAJOR: connection: replace direct I/O callbacks with the connection callback 9170 - MINOR: fd: make fdtab->owner a connection and not a stream_interface anymore 9171 - MEDIUM: connection: remove the FD_POLL_* flags only once 9172 - MEDIUM: connection: extract the send_proxy callback from proto_tcp 9173 - MAJOR: tcp: remove the specific I/O callbacks for TCP connection probes 9174 - CLEANUP: remove the now unused fdtab direct I/O callbacks 9175 - MAJOR: remove the stream interface and task management code from sock_* 9176 - MEDIUM: stream_interface: pass connection instead of fd in sock_ops 9177 - MEDIUM: stream_interface: centralize the SI_FL_ERR management 9178 - MAJOR: connection: add a new CO_FL_CONNECTED flag 9179 - MINOR: rearrange tcp_connect_probe() and fix wrong return codes 9180 - MAJOR: connection: call data layer handshakes from the handler 9181 - MEDIUM: fd: remove the EV_FD_COND_* primitives 9182 - MINOR: sock_raw: move calls to si_data_close upper 9183 - REORG: connection: replace si_data_close() with conn_data_close() 9184 - MEDIUM: sock_raw: introduce a read0 callback that is different from shutr 9185 - MAJOR: stream_int: use a common stream_int_shut*() functions regardless of the data layer 9186 - MAJOR: fd: replace all EV_FD_* macros with new fd_*_* inline calls 9187 - MEDIUM: fd: add fd_poll_{recv,send} for use when explicit polling is required 9188 - MEDIUM: connection: add definitions for dual polling mechanisms 9189 - MEDIUM: connection: make use of the new polling functions 9190 - MAJOR: make use of conn_{data|sock}_{poll|stop|want}* in connection handlers 9191 - MEDIUM: checks: don't use FD_WAIT_* anymore 9192 - MINOR: fd: get rid of FD_WAIT_* 9193 - MEDIUM: stream_interface: offer a generic function for connection updates 9194 - MEDIUM: stream-interface: offer a generic chk_rcv function for connections 9195 - MEDIUM: stream-interface: add a snd_buf() callback to sock_ops 9196 - MEDIUM: stream-interface: provide a generic stream_int_chk_snd_conn() function 9197 - MEDIUM: stream-interface: provide a generic si_conn_send_cb callback 9198 - MEDIUM: stream-interface: provide a generic stream_sock_read0() function 9199 - REORG/MAJOR: use "struct channel" instead of "struct buffer" 9200 - REORG/MAJOR: extract "struct buffer" from "struct channel" 9201 - MINOR: connection: provide conn_{data|sock}_{read0|shutw} functions 9202 - REORG: sock_raw: rename the files raw_sock* 9203 - MAJOR: raw_sock: extract raw_sock_to_buf() from raw_sock_read() 9204 - MAJOR: raw_sock: temporarily disable splicing 9205 - MINOR: stream-interface: add an rcv_buf callback to sock_ops 9206 - REORG: stream-interface: move sock_raw_read() to si_conn_recv_cb() 9207 - MAJOR: connection: split the send call into connection and stream interface 9208 - MAJOR: stream-interface: restore splicing mechanism 9209 - MAJOR: stream-interface: make conn_notify_si() more robust 9210 - MEDIUM: proxy-proto: don't use buffer flags in conn_si_send_proxy() 9211 - MAJOR: stream-interface: don't commit polling changes in every callback 9212 - MAJOR: stream-interface: fix splice not to call chk_snd by itself 9213 - MEDIUM: stream-interface: don't remove WAIT_DATA when a handshake is in progress 9214 - CLEANUP: connection: split sock_ops into data_ops, app_cp and si_ops 9215 - REORG: buffers: split buffers into chunk,buffer,channel 9216 - MAJOR: channel: remove the BF_OUT_EMPTY flag 9217 - REORG: buffer: move buffer_flush, b_adv and b_rew to buffer.h 9218 - MINOR: channel: rename bi_full to channel_full as it checks the whole channel 9219 - MINOR: buffer: provide a new buffer_full() function 9220 - MAJOR: channel: stop relying on BF_FULL to take action 9221 - MAJOR: channel: remove the BF_FULL flag 9222 - REORG: channel: move buffer_{replace,insert_line}* to buffer.{c,h} 9223 - CLEANUP: channel: usr CF_/CHN_ prefixes instead of BF_/BUF_ 9224 - CLEANUP: channel: use "channel" instead of "buffer" in function names 9225 - REORG: connection: move the target pointer from si to connection 9226 - MAJOR: connection: move the addr field from the stream_interface 9227 - MEDIUM: stream_interface: remove CAP_SPLTCP/CAP_SPLICE flags 9228 - MEDIUM: proto_tcp: remove any dependence on stream_interface 9229 - MINOR: tcp: replace tcp_src_to_stktable_key with addr_to_stktable_key 9230 - MEDIUM: connection: add an ->init function to data layer 9231 - MAJOR: session: introduce embryonic sessions 9232 - MAJOR: connection: make the PROXY decoder a handshake handler 9233 - CLEANUP: frontend: remove the old proxy protocol decoder 9234 - MAJOR: connection: rearrange the polling flags. 9235 - MEDIUM: connection: only call tcp_connect_probe when nothing was attempted yet 9236 - MEDIUM: connection: complete the polling cleanups 9237 - MEDIUM: connection: avoid calling handshakes when polling is required 9238 - MAJOR: stream_interface: continue to update data polling flags during handshakes 9239 - CLEANUP: fd: remove fdtab->flags 9240 - CLEANUP: fdtab: flatten the struct and merge the spec struct with the rest 9241 - CLEANUP: includes: fix includes for a number of users of fd.h 9242 - MINOR: ssl: disable TCP quick-ack by default on SSL listeners 9243 - MEDIUM: config: add a "ciphers" keyword to set SSL cipher suites 9244 - MEDIUM: config: add "nosslv3" and "notlsv1" on bind and server lines 9245 - BUG: ssl: mark the connection as waiting for an SSL connection during the handshake 9246 - BUILD: http: rename error_message http_error_message to fix conflicts on RHEL 9247 - BUILD: ssl: fix shctx build on RHEL with futex 9248 - BUILD: include sys/socket.h to fix build failure on FreeBSD 9249 - BUILD: fix build error without SSL (ssl_cert) 9250 - BUILD: ssl: use MAP_ANON instead of MAP_ANONYMOUS 9251 - BUG/MEDIUM: workaround an eglibc bug which truncates the pidfiles when nbproc > 1 9252 - MEDIUM: config: support per-listener backlog and maxconn 9253 - MINOR: session: do not send an HTTP/500 error on SSL sockets 9254 - MEDIUM: config: implement maxsslconn in the global section 9255 - BUG: tcp: close socket fd upon connect error 9256 - MEDIUM: connection: improve error handling around the data layer 9257 - MINOR: config: make the tasks "nice" value configurable on "bind" lines. 9258 - BUILD: shut a gcc warning introduced by commit 269ab31 9259 - MEDIUM: config: centralize handling of SSL config per bind line 9260 - BUILD: makefile: report USE_OPENSSL status in build options 9261 - BUILD: report openssl build settings in haproxy -vv 9262 - MEDIUM: ssl: add sample fetches for is_ssl, ssl_has_sni, ssl_sni_* 9263 - DOC: add a special acknowledgement for the stud project 9264 - DOC: add missing SSL options for servers and listeners 9265 - BUILD: automatically add -lcrypto for SSL 9266 - DOC: add some info about openssl build in the README 9267 92682012/06/04 : 1.5-dev11 9269 - BUG/MEDIUM: option forwardfor if-none doesn't work with some configurations 9270 - BUG/MAJOR: trash must always be the size of a buffer 9271 - DOC: fix minor regex example issue and improve doc on stats 9272 - MINOR: stream_interface: add a pointer to the listener for TARG_TYPE_CLIENT 9273 - MEDIUM: protocol: add a pointer to struct sock_ops to the listener struct 9274 - MINOR: checks: add on-marked-up option 9275 - MINOR: balance uri: added 'whole' parameter to include query string in hash calculation 9276 - MEDIUM: stream_interface: remove the si->init 9277 - MINOR: buffers: add a rewind function 9278 - BUG/MAJOR: fix regression on content-based hashing and http-send-name-header 9279 - MAJOR: http: stop using msg->sol outside the parsers 9280 - CLEANUP: http: make it more obvious that msg->som is always null outside of chunks 9281 - MEDIUM: http: get rid of msg->som which is not used anymore 9282 - MEDIUM: http: msg->sov and msg->sol will never wrap 9283 - BUG/MAJOR: checks: don't call set_server_status_* when no LB algo is set 9284 - BUG/MINOR: stop connect timeout when connect succeeds 9285 - REORG: move the send-proxy code to tcp_connect_write() 9286 - REORG/MINOR: session: detect the TCP monitor checks at the protocol accept 9287 - MINOR: stream_interface: introduce a new "struct connection" type 9288 - REORG/MINOR: stream_interface: move si->fd to struct connection 9289 - REORG/MEDIUM: stream_interface: move applet->state and private to connection 9290 - MINOR: stream_interface: add a data channel close function 9291 - MEDIUM: stream_interface: call si_data_close() before releasing the si 9292 - MINOR: peers: use the socket layer operations from the peer instead of sock_raw 9293 - BUG/MINOR: checks: expire on timeout.check if smaller than timeout.connect 9294 - MINOR: add a new function call tracer for debugging purposes 9295 - BUG/MINOR: perform_http_redirect also needs to rewind the buffer 9296 - BUG/MAJOR: b_rew() must pass a signed offset to b_ptr() 9297 - BUG/MEDIUM: register peer sync handler in the proper order 9298 - BUG/MEDIUM: buffers: fix bi_putchr() to correctly advance the pointer 9299 - BUG/MINOR: fix option httplog validation with TCP frontends 9300 - BUG/MINOR: log: don't report logformat errors in backends 9301 - REORG/MINOR: use dedicated proxy flags for the cookie handling 9302 - BUG/MINOR: config: do not report twice the incompatibility between cookie and non-http 9303 - MINOR: http: add support for "httponly" and "secure" cookie attributes 9304 - BUG/MEDIUM: ensure that unresolved arguments are freed exactly once 9305 - BUG/MINOR: commit 196729ef used wrong condition resulting in freeing constants 9306 - MEDIUM: stats: add support for soft stop/soft start in the admin interface 9307 - MEDIUM: stats: add the ability to kill sessions from the admin interface 9308 - BUILD: add support for linux kernels >= 2.6.28 9309 93102012/05/14 : 1.5-dev10 9311 - BUG/MINOR: stats admin: "Unexpected result" was displayed unconditionally 9312 - BUG/MAJOR: acl: http_auth_group() must not accept any user from the userlist 9313 - CLEANUP: auth: make the code build again with DEBUG_AUTH 9314 - BUG/MEDIUM: config: don't crash at config load time on invalid userlist names 9315 - REORG: use the name sock_raw instead of stream_sock 9316 - MINOR: stream_interface: add a client target : TARG_TYPE_CLIENT 9317 - BUG/MEDIUM: stream_interface: restore get_src/get_dst 9318 - CLEANUP: sock_raw: remove last references to stream_sock 9319 - CLEANUP: stream_interface: stop exporting socket layer functions 9320 - MINOR: stream_interface: add an init callback to sock_ops 9321 - MEDIUM: stream_interface: derive the socket operations from the target 9322 - MAJOR: fd: remove the need for the socket layer to recheck the connection 9323 - MINOR: session: call the socket layer init function when a session establishes 9324 - MEDIUM: session: add support for tunnel timeouts 9325 - MINOR: standard: add a new debug macro : fddebug() 9326 - CLEANUP: fd: remove unused cb->b pointers in the struct fdtab 9327 - OPTIM: proto_http: don't enable quick-ack on empty buffers 9328 - OPTIM/MAJOR: ev_sepoll: process spec events after polled events 9329 - OPTIM/MEDIUM: stream_interface: add a new SI_FL_NOHALF flag 9330 93312012/05/08 : 1.5-dev9 9332 - MINOR: Add release callback to si_applet 9333 - CLEANUP: Fix some minor typos 9334 - MINOR: Add TO/FROM_SET flags to struct stream_interface 9335 - CLEANUP: Fix some minor whitespace issues 9336 - MINOR: stats admin: allow unordered parameters in POST requests 9337 - CLEANUP: fix typo in findserver() log message 9338 - MINOR: stats admin: use the backend id instead of its name in the form 9339 - MINOR: stats admin: reduce memcmp()/strcmp() calls on status codes 9340 - DOC: cleanup indentation, alignment, columns and chapters 9341 - DOC: fix some keywords arguments documentation 9342 - MINOR: cli: display the 4 IP addresses and ports on "show sess XXX" 9343 - BUG/MAJOR: log: possible segfault with logformat 9344 - MEDIUM: log: split of log_format generation 9345 - MEDIUM: log: New format-log flags: %Fi %Fp %Si %Sp %Ts %rt %H %pid 9346 - MEDIUM: log: Unique ID 9347 - MINOR: log: log-format: usable without httplog and tcplog 9348 - BUG/MEDIUM: balance source did not properly hash IPv6 addresses 9349 - MINOR: contrib/iprange: add a network IP range to mask converter 9350 - MEDIUM: session: implement the "use-server" directive 9351 - MEDIUM: log: add a new cookie flag 'U' to report situations where cookie is not used 9352 - MEDIUM: http: make extract_cookie_value() iterate over cookie values 9353 - MEDIUM: http: add cookie and scookie ACLs 9354 - CLEANUP: lb_first: add reference to a paper describing the original idea 9355 - MEDIUM: stream_sock: add a get_src and get_dst callback and remove SN_FRT_ADDR_SET 9356 - BUG/MINOR: acl: req_ssl_sni would randomly fail if a session ID is present 9357 - BUILD: http: make extract_cookie_value() return an int not size_t 9358 - BUILD: http: stop gcc-4.1.2 from complaining about possibly uninitialized values 9359 - CLEANUP: http: message parser must ignore HTTP_MSG_ERROR 9360 - MINOR: standard: add a memprintf() function to build formatted error messages 9361 - CLEANUP: remove a few warning about unchecked return values in debug code 9362 - MEDIUM: move message-related flags from transaction to message 9363 - DOC: add a diagram to explain how circular buffers work 9364 - MAJOR: buffer rework: replace ->send_max with ->o 9365 - MAJOR: buffer: replace buf->l with buf->{o+i} 9366 - MINOR: buffers: provide simple pointer normalization functions 9367 - MINOR: buffers: remove unused function buffer_contig_data() 9368 - MAJOR: buffers: replace buf->w with buf->p - buf->o 9369 - MAJOR: buffers: replace buf->r with buf->p + buf->i 9370 - MAJOR: http: move buffer->lr to http_msg->next 9371 - MAJOR: http: change msg->{som,col,sov,eoh} to be relative to buffer origin 9372 - CLEANUP: http: remove unused http_msg->col 9373 - MAJOR: http: turn http_msg->eol to a buffer-relative offset 9374 - MEDIUM: http: add a pointer to the buffer in http_msg 9375 - MAJOR: http: make http_msg->sol relative to buffer's origin 9376 - MEDIUM: http: http_send_name_header: remove references to msg and buffer 9377 - MEDIUM: http: remove buffer arg in a few header manipulation functions 9378 - MEDIUM: http: remove buffer arg in http_capture_bad_message 9379 - MEDIUM: http: remove buffer arg in http_msg_analyzer 9380 - MEDIUM: http: remove buffer arg in http_upgrade_v09_to_v10 9381 - MEDIUM: http: remove buffer arg in http_buffer_heavy_realign 9382 - MEDIUM: http: remove buffer arg in chunk parsing functions 9383 - MINOR: http: remove useless wrapping checks in http_msg_analyzer 9384 - MEDIUM: buffers: fix unsafe use of buffer_ignore at some places 9385 - MEDIUM: buffers: add new pointer wrappers and get rid of almost all buffer_wrap_add calls 9386 - MEDIUM: buffers: implement b_adv() to advance a buffer's pointer 9387 - MEDIUM: buffers: rename a number of buffer management functions 9388 - MEDIUM: http: add a prefetch function for ACL pattern fetch 9389 - MEDIUM: http: make all ACL fetch function use acl_prefetch_http() 9390 - BUG/MINOR: http_auth: ACLs are volatile, not permanent 9391 - MEDIUM: http/acl: merge all request and response ACL fetches of headers and cookies 9392 - MEDIUM: http/acl: make acl_fetch_hdr_{ip,val} rely on acl_fetch_hdr() 9393 - MEDIUM: add a new typed argument list parsing framework 9394 - MAJOR: acl: make use of the new argument parsing framework 9395 - MAJOR: acl: store the ACL argument types in the ACL keyword declaration 9396 - MEDIUM: acl: acl_find_target() now resolves arguments based on their types 9397 - MAJOR: acl: make acl_find_targets also resolve proxy names at config time 9398 - MAJOR: acl: ensure that implicit table and proxies are valid 9399 - MEDIUM: acl: remove unused tests for missing args when args are mandatory 9400 - MEDIUM: pattern: replace type pattern_arg with type arg 9401 - MEDIUM: pattern: get rid of arg_i in all functions making use of arguments 9402 - MEDIUM: pattern: use the standard arg parser 9403 - MEDIUM: pattern: add an argument validation callback to pattern descriptors 9404 - MEDIUM: pattern: report the precise argument parsing error when known. 9405 - MEDIUM: acl: remove the ACL_TEST_F_NULL_MATCH flag 9406 - MINOR: pattern: add a new 'sample' type to store fetched data 9407 - MEDIUM: pattern: add new sample types to replace pattern types 9408 - MAJOR: acl: make use of the new sample struct and get rid of acl_test 9409 - MEDIUM: pattern/acl: get rid of temp_pattern in ACLs 9410 - MEDIUM: acl: get rid of the SET_RES flags 9411 - MEDIUM: get rid of SMP_F_READ_ONLY and SMP_F_MUST_FREE 9412 - MINOR: pattern: replace struct pattern with struct sample 9413 - MEDIUM: pattern: integrate pattern_data into sample and use sample everywhere 9414 - MEDIUM: pattern: retrieve the sample type in the sample, not in the keyword description 9415 - MEDIUM: acl/pattern: switch rdp_cookie functions stack up-down 9416 - MEDIUM: acl: replace acl_expr with args in acl fetch_* functions 9417 - MINOR: tcp: replace acl_fetch_rdp_cookie with smp_fetch_rdp_cookie 9418 - MEDIUM: acl/pattern: use the same direction scheme 9419 - MEDIUM: acl/pattern: start merging common sample fetch functions 9420 - MEDIUM: pattern: ensure that sample types always cast into other types. 9421 - MEDIUM: acl/pattern: factor out the src/dst address fetches 9422 - MEDIUM: acl: implement payload and payload_lv 9423 - CLEANUP: pattern: ensure that payload and payload_lv always stay in the buffer 9424 - MINOR: stick_table: centralize the handling of empty keys 9425 - MINOR: pattern: centralize handling of unstable data in pattern_process() 9426 - MEDIUM: pattern: use smp_fetch_rdp_cookie instead of the pattern specific version 9427 - MINOR: acl: set SMP_OPT_ITERATE on fetch functions 9428 - MINOR: acl: add a val_args field to keywords 9429 - MINOR: proto_tcp: validate arguments of payload and payload_lv ACLs 9430 - MEDIUM: http: merge acl and pattern header fetch functions 9431 - MEDIUM: http: merge ACL and pattern cookie fetches into a single one 9432 - MEDIUM: acl: report parsing errors to the caller 9433 - MINOR: arg: improve error reporting on invalid arguments 9434 - MINOR: acl: report errors encountered when loading patterns from files 9435 - MEDIUM: acl: extend the pattern parsers to report meaningful errors 9436 - REORG: use the name "sample" instead of "pattern" to designate extracted data 9437 - REORG: rename "pattern" files 9438 - MINOR: acl: add types to ACL patterns 9439 - MINOR: standard: add an IPv6 parsing function (str62net) 9440 - MEDIUM: acl: support IPv6 address matching 9441 - REORG: stream_interface: create a struct sock_ops to hold socket operations 9442 - REORG/MEDIUM: move protocol->{read,write} to sock_ops 9443 - REORG/MEDIUM: stream_interface: initialize socket ops from descriptors 9444 - REORG/MEDIUM: replace stream interface protocol functions by a proto pointer 9445 - REORG/MEDIUM: move the default accept function from sockstream to protocols.c 9446 - MEDIUM: proto_tcp: remove src6 and dst6 pattern fetch methods 9447 - BUG/MINOR: http: error snapshots are wrong if buffer wraps 9448 - BUG/MINOR: http: ensure that msg->err_pos is always relative to buf->p 9449 - MEDIUM: http: improve error capture reports 9450 - MINOR: acl: add the cook_val() match to match a cookie against an integer 9451 - BUG/MEDIUM: send_proxy: fix initialisation of send_proxy_ofs 9452 - MEDIUM: memory: add the ability to poison memory at run time 9453 - BUG/MEDIUM: log: ensure that unique_id is properly initialized 9454 - MINOR: cfgparse: use a common errmsg pointer for all parsers 9455 - MEDIUM: cfgparse: make backend_parse_balance() use memprintf to report errors 9456 - MEDIUM: cfgparse: use the new error reporting framework for remaining cfg_keywords 9457 - MINOR: http: replace http_message_realign() with buffer_slow_realign() 9458 94592012/03/26 : 1.5-dev8 9460 - MINOR: patch for minor typo (ressources/resources) 9461 - MEDIUM: http: add support for sending the server's name in the outgoing request 9462 - DOC: mention that default checks are TCP connections 9463 - BUG/MINOR: fix options forwardfor if-none when an alternative header name is specified 9464 - CLEANUP: Make check_statuses, analyze_statuses and process_chk static 9465 - CLEANUP: Fix HCHK spelling errors 9466 - BUG/MINOR: fix typo in processing of http-send-name-header 9467 - MEDIUM: log: Use linked lists for loggers 9468 - BUILD: fix declaration inside a scope block 9469 - REORG: log: split send_log function 9470 - MINOR: config: Parse the string of the log-format config keyword 9471 - MINOR: add ultoa, ulltoa, ltoa, lltoa implementations 9472 - MINOR: Date and time fonctions that don't use snprintf 9473 - MEDIUM: log: make http_sess_log use log_format 9474 - DOC: log-format documentation 9475 - MEDIUM: log: use log_format for mode tcplog 9476 - MEDIUM: log-format: backend source address %Bi %Bp 9477 - BUG/MINOR: log-format: fix %o flag 9478 - BUG/MEDIUM: bad length in log_format and __send_log 9479 - MINOR: logformat %st is signed 9480 - BUILD/MINOR: fix the source URL in the spec file 9481 - DOC: acl is http_first_req, not http_req_first 9482 - BUG/MEDIUM: don't trim last spaces from headers consisting only of spaces 9483 - MINOR: acl: add new matches for header/path/url length 9484 - BUILD: halog: make halog build on solaris 9485 - BUG/MINOR: don't use a wrong port when connecting to a server with mapped ports 9486 - MINOR: remove the client/server side distinction in SI addresses 9487 - MINOR: halog: add support for matching queued requests 9488 - DOC: indicate that cookie "prefix" and "indirect" should not be mixed 9489 - OPTIM/MINOR: move struct sockaddr_storage to the tail of structs 9490 - OPTIM/MINOR: make it possible to change pipe size (tune.pipesize) 9491 - BUILD/MINOR: silent a build warning in src/pipe.c (fcntl) 9492 - OPTIM/MINOR: move the hdr_idx pools out of the proxy struct 9493 - MEDIUM: tune.http.maxhdr makes it possible to configure the maximum number of HTTP headers 9494 - BUG/MINOR: fix a segfault when parsing a config with undeclared peers 9495 - CLEANUP: rename possibly confusing struct field "tracked" 9496 - BUG/MEDIUM: checks: fix slowstart behaviour when server tracking is in use 9497 - MINOR: config: tolerate server "cookie" setting in non-HTTP mode 9498 - MEDIUM: buffers: add some new primitives and rework existing ones 9499 - BUG: buffers: don't return a negative value on buffer_total_space_res() 9500 - MINOR: buffers: make buffer_pointer() support negative pointers too 9501 - CLEANUP: kill buffer_replace() and use an inline instead 9502 - BUG: tcp: option nolinger does not work on backends 9503 - CLEANUP: ebtree: remove a few annoying signedness warnings 9504 - CLEANUP: ebtree: clarify licence and update to 6.0.6 9505 - CLEANUP: ebtree: remove 4-year old harmless typo in duplicates insertion code 9506 - CLEANUP: ebtree: remove another typo, a wrong initialization in insertion code 9507 - BUG: ebtree: ebst_lookup() could return the wrong entry 9508 - OPTIM: stream_sock: reduce the amount of in-flight spliced data 9509 - OPTIM: stream_sock: save a failed recv syscall when splice returns EAGAIN 9510 - MINOR: acl: add support for TLS server name matching using SNI 9511 - BUG: http: re-enable TCP quick-ack upon incomplete HTTP requests 9512 - BUG: proto_tcp: don't try to bind to a foreign address if sin_family is unknown 9513 - MINOR: pattern: export the global temporary pattern 9514 - CLEANUP: patterns: get rid of pattern_data_setstring() 9515 - MEDIUM: acl: use temp_pattern to store fetched information in the "method" match 9516 - MINOR: acl: include pattern.h to make pattern migration more transparent 9517 - MEDIUM: pattern: change the pattern data integer from unsigned to signed 9518 - MEDIUM: acl: use temp_pattern to store any integer-type information 9519 - MEDIUM: acl: use temp_pattern to store any address-type information 9520 - CLEANUP: acl: integer part of acl_test is not used anymore 9521 - MEDIUM: acl: use temp_pattern to store any string-type information 9522 - CLEANUP: acl: remove last data fields from the acl_test struct 9523 - MEDIUM: http: replace get_ip_from_hdr2() with http_get_hdr() 9524 - MEDIUM: patterns: the hdr() pattern is now of type string 9525 - DOC: add minimal documentation on how ACLs work internally 9526 - DOC: add a coding-style file 9527 - OPTIM: halog: keep a fast path for the lines-count only 9528 - CLEANUP: silence a warning when building on sparc 9529 - BUG: http: tighten the list of allowed characters in a URI 9530 - MEDIUM: http: block non-ASCII characters in URIs by default 9531 - DOC: add some documentation from RFC3986 about URI format 9532 - BUG/MINOR: cli: correctly remove the whole table on "clear table" 9533 - BUG/MEDIUM: correctly disable servers tracking another disabled servers. 9534 - BUG/MEDIUM: zero-weight servers must not dequeue requests from the backend 9535 - MINOR: halog: add some help on the command line 9536 - BUILD: fix build error on FreeBSD 9537 - BUG: fix double free in peers config error path 9538 - MEDIUM: improve config check return codes 9539 - BUILD: make it possible to look for pcre in the default system paths 9540 - MINOR: config: emit a warning when 'default_backend' masks servers 9541 - MINOR: backend: rework the LC definition to support other connection-based algos 9542 - MEDIUM: backend: add the 'first' balancing algorithm 9543 - BUG: fix httplog trailing LF 9544 - MEDIUM: increase chunk-size limit to 2GB-1 9545 - BUG: queue: fix dequeueing sequence on HTTP keep-alive sessions 9546 - BUG: http: disable TCP delayed ACKs when forwarding content-length data 9547 - BUG: checks: fix server maintenance exit sequence 9548 - BUG/MINOR: stream_sock: don't remove BF_EXPECT_MORE and BF_SEND_DONTWAIT on partial writes 9549 - DOC: enumerate valid status codes for "observe layer7" 9550 - MINOR: buffer: switch a number of buffer args to const 9551 - CLEANUP: silence signedness warning in acl.c 9552 - BUG: stream_sock: si->release was not called upon shutw() 9553 - MINOR: log: use "%ts" to log term status only and "%tsc" to log with cookie 9554 - BUG/CRITICAL: log: fix risk of crash in development snapshot 9555 - BUG/MAJOR: possible crash when using capture headers on TCP frontends 9556 - MINOR: config: disable header captures in TCP mode and complain 9557 95582011/09/10 : 1.5-dev7 9559 - [BUG] fix binary stick-tables 9560 - [MINOR] http: *_dom matching header functions now also split on ":" 9561 - [BUG] checks: fix support of Mysqld >= 5.5 for mysql-check 9562 - [MINOR] acl: add srv_conn acl to count connections on a specific backend server 9563 - [MINOR] check: add redis check support 9564 - [DOC] small fixes to clearly distinguish between keyword and variables 9565 - [MINOR] halog: add support for termination code matching (-tcn/-TCN) 9566 - [DOC] Minor spelling fixes and grammatical enhancements 9567 - [CLEANUP] dumpstats: make symbols static where possible 9568 - [MINOR] Break out dumping table 9569 - [MINOR] Break out processing of clear table 9570 - [MINOR] Allow listing of stick table by key 9571 - [MINOR] Break out all stick table socat command parsing 9572 - [MINOR] More flexible clearing of stick table 9573 - [MINOR] Allow showing and clearing by key of ipv6 stick tables 9574 - [MINOR] Allow showing and clearing by key of integer stick tables 9575 - [MINOR] Allow showing and clearing by key of string stick tables 9576 - [CLEANUP] Remove assigned but unused variables 9577 - [CLEANUP] peers.h: fix declarations 9578 - [CLEANUP] session.c: Make functions static where possible 9579 - [MINOR] Add active connection list to server 9580 - [MINOR] Allow shutdown of sessions when a server becomes unavailable 9581 - [MINOR] Add down termination condition 9582 - [MINOR] Make appsess{,ion}_refresh static 9583 - [MINOR] Add rdp_cookie pattern fetch function 9584 - [CLEANUP] Remove unnecessary casts 9585 - [MINOR] Add non-stick server option 9586 - [MINOR] Consistently use error in tcp_parse_tcp_req() 9587 - [MINOR] Consistently free expr on error in cfg_parse_listen() 9588 - [MINOR] Free rdp_cookie_name on denint() 9589 - [MINOR] Free tcp rules on denint() 9590 - [MINOR] Free stick table pool on denint() 9591 - [MINOR] Free stick rules on denint() 9592 - [MEDIUM] Fix stick-table replication on soft-restart 9593 - [MEDIUM] Correct ipmask() logic 9594 - [MINOR] Correct type in table dump examples 9595 - [MINOR] Fix build error in stream_int_register_handler() 9596 - [MINOR] Use DPRINTF in assign_server() 9597 - [BUG] checks: http-check expect could fail a check on multi-packet responses 9598 - [DOC] fix minor typo in the "dispatch" doc 9599 - [BUG] proto_tcp: fix address binding on remote source 9600 - [MINOR] http: don't report the "haproxy" word on the monitoring response 9601 - [REORG] http: move HTTP error codes back to proto_http.h 9602 - [MINOR] http: make the "HTTP 200" status code configurable. 9603 - [MINOR] http: partially revert the chunking optimization for now 9604 - [MINOR] stream_sock: always clear BF_EXPECT_MORE upon complete transfer 9605 - [CLEANUP] stream_sock: remove unneeded FL_TCP and factor out test 9606 - [MEDIUM] http: add support for "http-no-delay" 9607 - [OPTIM] http: optimize chunking again in non-interactive mode 9608 - [OPTIM] stream_sock: avoid fast-forwarding of partial data 9609 - [OPTIM] stream_sock: don't use splice on too small payloads 9610 - [MINOR] config: make it possible to specify a cookie even without a server 9611 - [BUG] stats: support url-encoded forms 9612 - [MINOR] config: automatically compute a default fullconn value 9613 - [CLEANUP] config: remove some left-over printf debugging code from previous patch 9614 - [DOC] add missing entry or stick store-response 9615 - [MEDIUM] http: add support for 'cookie' and 'set-cookie' patterns 9616 - [BUG] halog: correctly handle truncated last line 9617 - [MINOR] halog: make SKIP_CHAR stop on field delimiters 9618 - [MINOR] halog: add support for HTTP log matching (-H) 9619 - [MINOR] halog: gain back performance before SKIP_CHAR fix 9620 - [OPTIM] halog: cache some common fields positions 9621 - [OPTIM] halog: check once for correct line format and reuse the pointer 9622 - [OPTIM] halog: remove many 'if' by using a function pointer for the filters 9623 - [OPTIM] halog: remove support for tab delimiters in input data 9624 - [BUG] session: risk of crash on out of memory (1.5-dev regression) 9625 - [MINOR] session: try to emit a 500 response on memory allocation errors 9626 - [OPTIM] stream_sock: reduce the default number of accepted connections at once 9627 - [BUG] stream_sock: disable listener when system resources are exhausted 9628 - [MEDIUM] proxy: add a PAUSED state to listeners and move socket tricks out of proxy.c 9629 - [BUG] stream_sock: ensure orphan listeners don't accept too many connections 9630 - [MINOR] listeners: add listen_full() to mark a listener full 9631 - [MINOR] listeners: add support for queueing resource limited listeners 9632 - [MEDIUM] listeners: put listeners in queue upon resource shortage 9633 - [MEDIUM] listeners: queue proxy-bound listeners at the proxy's 9634 - [MEDIUM] listeners: don't stop proxies when global maxconn is reached 9635 - [MEDIUM] listeners: don't change listeners states anymore in maintain_proxies 9636 - [CLEANUP] proxy: rename a few proxy states (PR_STIDLE and PR_STRUN) 9637 - [MINOR] stats: report a "WAITING" state for sockets waiting for resource 9638 - [MINOR] proxy: make session rate-limit more accurate 9639 - [MINOR] sessions: only wake waiting listeners up if rate limit is OK 9640 - [BUG] proxy: peers must only be stopped once, not upon every call to maintain_proxies 9641 - [CLEANUP] proxy: merge maintain_proxies() operation inside a single loop 9642 - [MINOR] task: new function task_schedule() to schedule a wake up 9643 - [MAJOR] proxy: finally get rid of maintain_proxies() 9644 - [BUG] proxy: stats frontend and peers were missing many initializers 9645 - [MEDIUM] listeners: add a global listener management task 9646 - [MINOR] proxy: make findproxy() return proxies from numeric IDs too 9647 - [DOC] fix typos, "#" is a sharp, not a dash 9648 - [MEDIUM] stats: add support for changing frontend's maxconn at runtime 9649 - [MEDIUM] checks: group health checks methods by values and save option bits 9650 - [MINOR] session-counters: add the ability to clear the counters 9651 - [BUG] check: http-check expect + regex would crash in defaults section 9652 - [MEDIUM] http: make x-forwarded-for addition conditional 9653 - [REORG] build: move syscall redefinition to specific places 9654 - [CLEANUP] update the year in the copyright banner 9655 - [BUG] possible crash in 'show table' on stats socket 9656 - [BUG] checks: use the correct destination port for sending checks 9657 - [BUG] backend: risk of picking a wrong port when mapping is used with crossed families 9658 - [MINOR] make use of set_host_port() and get_host_port() to get rid of family mismatches 9659 - [DOC] fixed a few "sensible" -> "sensitive" errors 9660 - [MINOR] make use of addr_to_str() and get_host_port() to replace many inet_ntop() 9661 - [BUG] http: trailing white spaces must also be trimmed after headers 9662 - [MINOR] stats: display "<NONE>" instead of the frontend name when unknown 9663 - [MINOR] http: take a capture of too large requests and responses 9664 - [MINOR] http: take a capture of truncated responses 9665 - [MINOR] http: take a capture of bad content-lengths. 9666 - [DOC] add a few old and uncommitted docs 9667 - [CLEANUP] cfgparse: fix reported options for the "bind" keyword 9668 - [MINOR] halog: add -hs/-HS to filter by HTTP status code range 9669 - [MINOR] halog: support backslash-escaped quotes 9670 - [CLEANUP] remove dirty left-over of a debugging message 9671 - [MEDIUM] stats: disable complex socket reservation for stats socket 9672 - [CLEANUP] remove a useless test in manage_global_listener_queue() 9673 - [MEDIUM] stats: add the "set maxconn" setting to the command line interface 9674 - [MEDIUM] add support for global.maxconnrate to limit the per-process conn rate. 9675 - [MINOR] stats: report the current and max global connection rates 9676 - [MEDIUM] stats: add the ability to adjust the global maxconnrate 9677 - [BUG] peers: don't pre-allocate 65000 connections to each peer 9678 - [MEDIUM] don't limit peers nor stats socket to maxconn nor maxconnrate 9679 - [BUG] peers: the peer frontend must not emit any log 9680 - [CLEANUP] proxy: make pause_proxy() perform the required controls and emit the logs 9681 - [BUG] peers: don't keep a peers section which has a NULL frontend 9682 - [BUG] peers: ensure the peers are resumed if they were paused 9683 - [MEDIUM] stats: add the ability to enable/disable/shutdown a frontend at runtime 9684 - [MEDIUM] session: make session_shutdown() an independant function 9685 - [MEDIUM] stats: offer the possibility to kill a session from the CLI 9686 - [CLEANUP] stats: centralize tests for backend/server inputs on the CLI 9687 - [MEDIUM] stats: offer the possibility to kill sessions by server 9688 - [MINOR] halog: do not consider byte 0x8A as end of line 9689 - [MINOR] frontend: ensure debug message length is always initialized 9690 - [OPTIM] halog: make fgets parse more bytes by blocks 9691 - [OPTIM] halog: add assembly version of the field lookup code 9692 - [MEDIUM] poll: add a measurement of idle vs work time 9693 - [CLEANUP] startup: report only the basename in the usage message 9694 - [MINOR] startup: add an option to change to a new directory 9695 - [OPTIM] task: don't scan the run queue if we know it's empty 9696 - [BUILD] stats: stdint is not present on solaris 9697 - [DOC] update the README file to reflect new naming rules for patches 9698 - [MINOR] stats: report the number of requests intercepted by the frontend 9699 - [DOC] update ROADMAP file 9700 97012011/04/08 : 1.5-dev6 9702 - [BUG] stream_sock: use get_addr_len() instead of sizeof() on sockaddr_storage 9703 - [BUG] TCP source tracking was broken with IPv6 changes 9704 - [BUG] stick-tables did not work when converting IPv6 to IPv4 9705 - [CRITICAL] fix risk of crash when dealing with space in response cookies 9706 97072011/03/29 : 1.5-dev5 9708 - [BUG] standard: is_addr return value for IPv4 was inverted 9709 - [MINOR] update comment about IPv6 support for server 9710 - [MEDIUM] use getaddrinfo to resolve names if gethostbyname fail 9711 - [DOC] update IPv6 support for bind 9712 - [DOC] document IPv6 support for server 9713 - [DOC] fix a minor typo 9714 - [MEDIUM] IPv6 support for syslog 9715 - [DOC] document IPv6 support for syslog 9716 - [MEDIUM] IPv6 support for stick-tables 9717 - [DOC] document IPv6 support for stick-tables 9718 - [DOC] update ROADMAP file 9719 - [BUG] session: src_conn_cur was returning src_conn_cnt instead 9720 - [MINOR] frontend: add a make_proxy_line function 9721 - [MEDIUM] stream_sock: add support for sending the proxy protocol header line 9722 - [MEDIUM] server: add support for the "send-proxy" option 9723 - [DOC] update the spec on the proxy protocol 9724 - [BUILD] proto_tcp: fix build issue with CTTPROXY 9725 - [DOC] update ROADMAP file 9726 - [MEDIUM] config: rework the IPv4/IPv6 address parser to support host-only addresses 9727 - [MINOR] cfgparse: better report wrong listening addresses and make use of str2sa_range 9728 - [BUILD] add the USE_GETADDRINFO build option 9729 - [TESTS] provide a test case for various address formats 9730 - [BUG] session: conn_retries was not always initialized 9731 - [BUG] log: retrieve the target from the session, not the SI 9732 - [BUG] http: fix possible incorrect forwarded wrapping chunk size (take 2) 9733 - [MINOR] tools: add two macros MID_RANGE and MAX_RANGE 9734 - [BUG] http: fix content-length handling on 32-bit platforms 9735 - [OPTIM] buffers: uninline buffer_forward() 9736 - [BUG] stream_sock: fix handling for server side PROXY protocol 9737 - [MINOR] acl: add support for table_cnt and table_avl matches 9738 - [DOC] update ROADMAP file 9739 97402011/03/13 : 1.5-dev4 9741 - [MINOR] cfgparse: Check whether the path given for the stats socket actually fits into the sockaddr_un structure to avoid truncation. 9742 - [MINOR] unix sockets : inherits the backlog size from the listener 9743 - [CLEANUP] unix sockets : move create_uxst_socket() in uxst_bind_listener() 9744 - [DOC] fix a minor typo 9745 - [DOC] fix ignore-persist documentation 9746 - [MINOR] add warnings on features not compatible with multi-process mode 9747 - [BUG] http: fix http-pretend-keepalive and httpclose/tunnel mode 9748 - [MINOR] stats: add support for several packets in stats admin 9749 - [BUG] stats: admin commands must check the proxy state 9750 - [BUG] stats: admin web interface must check the proxy state 9751 - [MINOR] http: add pattern extraction method to stick on query string parameter 9752 - [MEDIUM] add internal support for IPv6 server addresses 9753 - [MINOR] acl: add be_id/srv_id to match backend's and server's id 9754 - [MINOR] log: add support for passing the forwarded hostname 9755 - [MINOR] log: ability to override the syslog tag 9756 - [MINOR] checks: add PostgreSQL health check 9757 - [DOC] update ROADMAP file 9758 - [BUILD] pattern: use 'int' instead of 'int32_t' 9759 - [OPTIM] linux: add support for bypassing libc to force using vsyscalls 9760 - [BUG] debug: report the correct poller list in verbose mode 9761 - [BUG] capture: do not capture a cookie if there is no memory left 9762 - [BUG] appsession: fix possible double free in case of out of memory 9763 - [CRITICAL] cookies: mixing cookies in indirect mode and appsession can crash the process 9764 - [BUG] http: correctly update the header list when removing two consecutive headers 9765 - [BUILD] add the CPU=native and ARCH=32/64 build options 9766 - [BUILD] add -fno-strict-aliasing to fix warnings with gcc >= 4.4 9767 - [CLEANUP] hash: move the avalanche hash code globally available 9768 - [MEDIUM] hash: add support for an 'avalanche' hash-type 9769 - [DOC] update roadmap file 9770 - [BUG] http: do not re-enable the PROXY analyser on keep-alive 9771 - [OPTIM] http: don't send each chunk in a separate packet 9772 - [DOC] fix minor typos reported recently in the peers section 9773 - [DOC] fix another typo in the doc 9774 - [MINOR] stats: report HTTP message state and buffer flags in error dumps 9775 - [BUG] http chunking: don't report a parsing error on connection errors 9776 - [BUG] stream_interface: truncate buffers when sending error messages 9777 - [MINOR] http: support wrapping messages in error captures 9778 - [MINOR] http: capture incorrectly chunked message bodies 9779 - [MINOR] stats: add global event ID and count 9780 - [BUG] http: analyser optimizations broke pipelining 9781 - [CLEANUP] frontend: only apply TCP-specific settings to TCP/TCP6 sockets 9782 - [BUG] http: fix incorrect error reporting during data transfers 9783 - [CRITICAL] session: correctly leave turn-around and queue states on abort 9784 - [BUG] session: release slot before processing pending connections 9785 - [MINOR] tcp: add support for dynamic MSS setting 9786 - [BUG] stick-table: correctly terminate string keys during lookups 9787 - [BUG] acl: fix handling of empty lines in pattern files 9788 - [BUG] stick-table: use the private buffer when padding strings 9789 - [BUG] ebtree: fix ebmb_lookup() with len smaller than the tree's keys 9790 - [OPTIM] ebtree: ebmb_lookup: reduce stack usage by moving the return code out of the loop 9791 - [OPTIM] ebtree: inline ebst_lookup_len and ebis_lookup_len 9792 - [REVERT] undo the stick-table string key lookup fixes 9793 - [MINOR] http: improve url_param pattern extraction to ignore empty values 9794 - [BUILD] frontend: shut a warning with TCP_MAXSEG 9795 - [BUG] http: update the header list's tail when removing the last header 9796 - [DOC] fix minor typo in the proxy protocol doc 9797 - [DOC] fix typos (http-request instead of http-check) 9798 - [BUG] http: use correct ACL pointer when evaluating authentication 9799 - [BUG] cfgparse: correctly count one socket per port in ranges 9800 - [BUG] startup: set the rlimits before binding ports, not after. 9801 - [BUG] acl: srv_id must return no match when the server is NULL 9802 - [MINOR] acl: add ability to check for internal response-only parameters 9803 - [MINOR] acl: srv_id is only valid in responses 9804 - [MINOR] config: warn if response-only conditions are used in "redirect" rules 9805 - [BUG] acl: fd leak when reading patterns from file 9806 - [DOC] fix minor typo in "usesrc" 9807 - [BUG] http: fix possible incorrect forwarded wrapping chunk size 9808 - [BUG] http: fix computation of message body length after forwarding has started 9809 - [BUG] http: balance url_param did not work with first parameters on POST 9810 - [TESTS] update the url_param regression test to test check_post too 9811 - [DOC] update ROADMAP 9812 - [DOC] internal: reflect the fact that SI_ST_ASS is transient 9813 - [BUG] config: don't crash on empty pattern files. 9814 - [MINOR] stream_interface: make use of an applet descriptor for IO handlers 9815 - [REORG] stream_interface: move the st0, st1 and private members to the applet 9816 - [REORG] stream_interface: split the struct members in 3 parts 9817 - [REORG] session: move client and server address to the stream interface 9818 - [REORG] tcp: make tcpv4_connect_server() take the target address from the SI 9819 - [MEDIUM] stream_interface: store the target pointer and type 9820 - [CLEANUP] stream_interface: remove the applet.handler pointer 9821 - [MEDIUM] log: take the logged server name from the stream interface 9822 - [CLEANUP] session: remove data_source from struct session 9823 - [CLEANUP] stats: make all dump functions only rely on the stream interface 9824 - [REORG] session: move the data_ctx struct to the stream interface's applet 9825 - [MINOR] proxy: add PR_O2_DISPATCH to detect dispatch mode 9826 - [MINOR] cfgparse: only keep one of dispatch, transparent, http_proxy 9827 - [MINOR] session: add a pointer to the new target into the session 9828 - [MEDIUM] session: remove s->prev_srv which is not needed anymore 9829 - [CLEANUP] stream_interface: use inline functions to manipulate targets 9830 - [MAJOR] session: remove the ->srv pointer from struct session 9831 - [MEDIUM] stats: split frontend and backend stats 9832 - [MEDIUM] http: always evaluate http-request rules before stats http-request 9833 - [REORG] http: move the http-request rules to proto_http 9834 - [BUG] http: stats were not incremented on http-request deny 9835 - [MINOR] checks: report it if checks fail due to socket creation error 9836 98372010/11/11 : 1.5-dev3 9838 - [DOC] fix http-request documentation 9839 - [MEDIUM] enable/disable servers from the stats web interface 9840 - [MEDIUM] stats: add an admin level 9841 - [DOC] stats: document the "stats admin" statement 9842 - [MINOR] startup: print the proxy socket which caused an error 9843 - [CLEANUP] Remove unneeded chars allocation 9844 - [MINOR] config: detect options not supported due to compilation options 9845 - [MINOR] Add pattern's fetchs payload and payload_lv 9846 - [MINOR] frontend: improve accept-proxy header parsing 9847 - [MINOR] frontend: add tcpv6 support on accept-proxy bind 9848 - [MEDIUM] Enhance message errors management on binds 9849 - [MINOR] Manage unix socket source field on logs 9850 - [MINOR] Manage unix socket source field on session dump on sock stats 9851 - [MINOR] Support of unix listener sockets for debug and log event messages on frontend.c 9852 - [MINOR] Add some tests on sockets family for port remapping and mode transparent. 9853 - [MINOR] Manage socket type unix for some logs 9854 - [MINOR] Enhance controls of socket's family on acls and pattern fetch 9855 - [MINOR] Support listener's sockets unix on http logs. 9856 - [MEDIUM] Add supports of bind on unix sockets. 9857 - [BUG] stick table purge failure if size less than 255 9858 - [BUG] stick table entries expire on counters updates/read or show table, even if there is no "expire" parameter 9859 - [MEDIUM] Implement tcp inspect response rules 9860 - [DOC] tcp-response content and inspect 9861 - [MINOR] new acls fetch req_ssl_hello_type and rep_ssl_hello_type 9862 - [DOC] acls rep_ssl_hello and req_ssl_hello 9863 - [MEDIUM] Create new protected pattern types CONSTSTRING and CONSTDATA to force memcpy if data from protected areas need to be manipulated. 9864 - [DOC] new type binary in stick-table 9865 - [DOC] stick store-response and new patterns payload and payload_lv 9866 - [MINOR] Manage all types (ip, integer, string, binary) on cli "show table" command 9867 - [MEDIUM] Create updates tree on stick table to manage sync. 9868 - [MAJOR] Add new files src/peer.c, include/proto/peers.h and include/types/peers.h for sync stick table management 9869 - [MEDIUM] Manage peers section parsing and stick table registration on peers. 9870 - [MEDIUM] Manage soft stop on peers proxy 9871 - [DOC] add documentation for peers section 9872 - [MINOR] checks: add support for LDAPv3 health checks 9873 - [MINOR] add better support to "mysql-check" 9874 - [BUG] Restore info about available active/backup servers 9875 - [CONTRIB] Update haproxy.pl 9876 - [CONTRIB] Update Cacti Tempates 9877 - [CONTRIB] add templates for Cacti. 9878 - [BUG] http: don't consider commas as a header delimitor within quotes 9879 - [MINOR] support a global jobs counter 9880 - [DOC] add a summary about cookie incompatibilities between specs and browsers 9881 - [DOC] fix description of cookie "insert" and "indirect" modes 9882 - [MEDIUM] http: fix space handling in the request cookie parser 9883 - [MEDIUM] http: fix space handling in the response cookie parser 9884 - [DOC] fix typo in the queue() definition (backend, not frontend) 9885 - [BUG] deinit: unbind listeners before freeing them 9886 - [BUG] stream_interface: only call si->release when both dirs are closed 9887 - [MEDIUM] buffers: rework the functions to exchange between SI and buffers 9888 - [DOC] fix typo in the avg_queue() and be_conn() definition (backend, not frontend) 9889 - [MINOR] halog: add '-tc' to sort by termination codes 9890 - [MINOR] halog: skip non-traffic logs for -st and -tc 9891 - [BUG] stream_sock: cleanly disable the listener in case of resource shortage 9892 - [BUILD] stream_sock: previous fix lacked the #include, causing a warning. 9893 - [DOC] bind option is "defer-accept", not "defer_accept" 9894 - [DOC] missing index entry for http-check send-state 9895 - [DOC] tcp-request inspect-delay is for backends too 9896 - [BUG] ebtree: string_equal_bits() could return garbage on identical strings 9897 - [BUG] stream_sock: try to flush any extra pending request data after a POST 9898 - [BUILD] proto_http: eliminate some build warnings with gcc-2.95 9899 - [MEDIUM] make it possible to combine http-pretend-keepalived with httpclose 9900 - [MEDIUM] tcp-request : don't wait for inspect-delay to expire when the buffer is full 9901 - [MEDIUM] checks: add support for HTTP contents lookup 9902 - [TESTS] add test-check-expect to test various http-check methods 9903 - [MINOR] global: add "tune.chksize" to change the default check buffer size 9904 - [MINOR] cookie: add options "maxidle" and "maxlife" 9905 - [MEDIUM] cookie: support client cookies with some contents appended to their value 9906 - [MINOR] http: make some room in the transaction flags to extend cookies 9907 - [MINOR] cookie: add the expired (E) and old (O) flags for request cookies 9908 - [MEDIUM] cookie: reassign set-cookie status flags to store more states 9909 - [MINOR] add encode/decode function for 30-bit integers from/to base64 9910 - [MEDIUM] cookie: check for maxidle and maxlife for incoming dated cookies 9911 - [MEDIUM] cookie: set the date in the cookie if needed 9912 - [DOC] document the cookie maxidle and maxlife parameters 9913 - [BUG] checks: don't log backend down for all zero-weight servers 9914 - [MEDIUM] checks: set server state to one state from failure when leaving maintenance 9915 - [BUG] config: report correct keywords for "observe" 9916 - [MINOR] checks: ensure that we can inherit binary checks from the defaults section 9917 - [MINOR] acl: add the http_req_first match 9918 - [DOC] fix typos about bind-process syntax 9919 - [BUG] cookie: correctly unset default cookie parameters 9920 - [MINOR] cookie: add support for the "preserve" option 9921 - [BUG] ebtree: fix duplicate strings insertion 9922 - [CONTRIB] halog: report per-url counts, errors and times 9923 - [CONTRIB] halog: minor speed improvement in timer parser 9924 - [MINOR] buffers: add a new request analyser flag for PROXY mode 9925 - [MINOR] listener: add the "accept-proxy" option to the "bind" keyword 9926 - [MINOR] standard: add read_uint() to parse a delimited unsigned integer 9927 - [MINOR] standard: change arg type from const char* to char* 9928 - [MINOR] frontend: add a new analyser to parse a proxied connection 9929 - [MEDIUM] session: call the frontend_decode_proxy analyser on proxied connections 9930 - [DOC] add the proxy protocol's specifications 9931 - [DOC] document the 'accept-proxy' bind option 9932 - [MINOR] cfgparse: report support of <path> for the 'bind' statements 9933 - [DOC] add references to unix socket handling 9934 - [MINOR] move MAXPATHLEN definition to compat.h 9935 - [MEDIUM] unix sockets: cleanup the error reporting path 9936 - [BUG] session: don't stop forwarding of data upon last packet 9937 - [CLEANUP] accept: replace some inappropriate Alert() calls with send_log() 9938 - [BUILD] peers: shut a printf format warning (key_size is a size_t) 9939 - [BUG] accept: don't close twice upon error 9940 - [OPTIM] session: don't recheck analysers when buffer flags have not changed 9941 - [OPTIM] stream_sock: don't clear FDs that are already cleared 9942 - [BUG] proto_tcp: potential bug on pattern fetch dst and dport 9943 99442010/08/28 : 1.5-dev2 9945 - [MINOR] startup: release unused structs after forking 9946 - [MINOR] startup: don't wait for nothing when no old pid remains 9947 - [CLEANUP] reference product branch 1.5 9948 - [MEDIUM] signals: add support for registering functions and tasks 9949 - [MEDIUM] signals: support redistribution of signal zero when stopping 9950 - [BUG] http: don't set auto_close if more data are expected 9951 99522010/08/25 : 1.5-dev1 9953 - [BUG] stats: session rate limit gets garbaged in the stats 9954 - [DOC] mention 'option http-server-close' effect in Tq section 9955 - [DOC] summarize and highlight persistent connections behaviour 9956 - [DOC] add configuration samples 9957 - [BUG] http: dispatch and http_proxy modes were broken for a long time 9958 - [BUG] http: the transaction must be initialized even in TCP mode 9959 - [BUG] tcp: dropped connections must be counted as "denied" not "failed" 9960 - [BUG] consistent hash: balance on all servers, not only 2 ! 9961 - [CONTRIB] halog: report per-server status codes, errors and response times 9962 - [BUG] http: the transaction must be initialized even in TCP mode (part 2) 9963 - [BUG] client: always ensure to zero rep->analysers 9964 - [BUG] session: clear BF_READ_ATTACHED before next I/O 9965 - [BUG] http: automatically close response if req is aborted 9966 - [BUG] proxy: connection rate limiting was eating lots of CPU 9967 - [BUG] http: report correct flags in case of client aborts during body 9968 - [TESTS] refine non-regression tests and add 4 new tests 9969 - [BUG] debug: wrong pointer was used to report a status line 9970 - [BUG] debug: correctly report truncated messages 9971 - [DOC] document the "dispatch" keyword 9972 - [BUG] stick_table: fix possible memory leak in case of connection error 9973 - [CLEANUP] acl: use 'L6' instead of 'L4' in ACL flags relying on contents 9974 - [MINOR] accept: count the incoming connection earlier 9975 - [CLEANUP] tcp: move some non tcp-specific layer6 processing out of proto_tcp 9976 - [CLEANUP] client: move some ACLs away to their respective locations 9977 - [CLEANUP] rename client -> frontend 9978 - [MEDIUM] separate protocol-level accept() from the frontend's 9979 - [MINOR] proxy: add a list to hold future layer 4 rules 9980 - [MEDIUM] config: parse tcp layer4 rules (tcp-request accept/reject) 9981 - [MEDIUM] tcp: check for pure layer4 rules immediately after accept() 9982 - [OPTIM] frontend: tell the compiler that errors are unlikely to occur 9983 - [MEDIUM] frontend: check for LI_O_TCP_RULES in the listener 9984 - [MINOR] frontend: only check for monitor-net rules if LI_O_CHK_MONNET is set 9985 - [CLEANUP] buffer->cto is not used anymore 9986 - [MEDIUM] session: finish session establishment sequence in with I/O handlers 9987 - [MEDIUM] session: initialize server-side timeouts after connect() 9988 - [MEDIUM] backend: initialize the server stream_interface upon connect() 9989 - [MAJOR] frontend: don't initialize the server-side stream_int anymore 9990 - [MEDIUM] session: move the conn_retries attribute to the stream interface 9991 - [MEDIUM] session: don't assign conn_retries upon accept() anymore 9992 - [MINOR] frontend: rely on the frontend and not the backend for INDEPSTR 9993 - [MAJOR] frontend: reorder the session initialization upon accept 9994 - [MINOR] proxy: add an accept() callback for the application layer 9995 - [MAJOR] frontend: split accept() into frontend_accept() and session_accept() 9996 - [MEDIUM] stats: rely on the standard session_accept() function 9997 - [MINOR] buffer: refine the flags that may wake an analyser up. 9998 - [MINOR] stream_sock: don't dereference a non-existing frontend 9999 - [MINOR] session: differenciate between accepted connections and received connections 10000 - [MEDIUM] frontend: count the incoming connection earlier 10001 - [MINOR] frontend: count denied TCP requests separately 10002 - [CLEANUP] stick_table: add/clarify some comments 10003 - [BUILD] memory: add a few missing parenthesis to the pool management macros 10004 - [MINOR] stick_table: add support for variable-sized data 10005 - [CLEANUP] stick_table: rename some stksess struct members to avoid confusion 10006 - [CLEANUP] stick_table: move pattern to key functions to stick_table.c 10007 - [MEDIUM] stick_table: add room for extra data types 10008 - [MINOR] stick_table: add support for "conn_cum" data type. 10009 - [MEDIUM] stick_table: don't overwrite data when storing an entry 10010 - [MINOR] config: initialize stick tables after all the parsing 10011 - [MINOR] stick_table: provide functions to return stksess data from a type 10012 - [MEDIUM] stick_table: move the server ID to a generic data type 10013 - [MINOR] stick_table: enable it for frontends too 10014 - [MINOR] stick_table: export the stick_table_key 10015 - [MINOR] tcp: add per-source connection rate limiting 10016 - [MEDIUM] stick_table: separate storage and update of session entries 10017 - [MEDIUM] stick-tables: add a reference counter to each entry 10018 - [MINOR] session: add a pointer to the tracked counters for the source 10019 - [CLEANUP] proto_tcp: make the config parser a little bit more flexible 10020 - [BUG] config: report the correct proxy type in tcp-request errors 10021 - [MINOR] config: provide a function to quote args in a more friendly way 10022 - [BUG] stick_table: the fix for the memory leak caused a regression 10023 - [MEDIUM] backend: support servers on 0.0.0.0 10024 - [BUG] stick-table: correctly refresh expiration timers 10025 - [MEDIUM] stream-interface: add a ->release callback 10026 - [MINOR] proxy: add a "parent" member to the structure 10027 - [MEDIUM] session: make it possible to call an I/O handler on both SI 10028 - [MINOR] tools: add a fast div64_32 function 10029 - [MINOR] freq_ctr: add new types and functions for periods different from 1s 10030 - [MINOR] errors: provide new status codes for config parsing functions 10031 - [BUG] http: denied requests must not be counted as denied resps in listeners 10032 - [MINOR] tools: add a get_std_op() function to parse operators 10033 - [MEDIUM] acl: make use of get_std_op() to parse intger ranges 10034 - [MAJOR] stream_sock: better wakeup conditions on read() 10035 - [BUG] session: analysers must be checked when SI state changes 10036 - [MINOR] http: reset analysers to listener's, not frontend's 10037 - [MEDIUM] session: support "tcp-request content" rules in backends 10038 - [BUILD] always match official tags when doing git-tar 10039 - [MAJOR] stream_interface: fix the wakeup conditions for embedded iohandlers 10040 - [MEDIUM] buffer: make buffer_feed* support writing non-contiguous chunks 10041 - [MINOR] tcp: src_count acl does not have a permanent result 10042 - [MAJOR] session: add track-counters to track counters related to the session 10043 - [MINOR] stick-table: provide a table lookup function 10044 - [MINOR] stick-table: use suffix "_cnt" for cumulated counts 10045 - [MEDIUM] session: move counter ACL fetches from proto_tcp 10046 - [MEDIUM] session: add concurrent connections counter 10047 - [MEDIUM] session: add data in and out volume counters 10048 - [MINOR] session: add the trk_conn_cnt ACL keyword to track connection counts 10049 - [MEDIUM] session-counters: automatically update tracked connection count 10050 - [MINOR] session: add the trk_conn_cur ACL keyword to track concurrent connection 10051 - [MINOR] session: add trk_kbytes_* ACL keywords to track data size 10052 - [MEDIUM] session: add a counter on the cumulated number of sessions 10053 - [MINOR] config: support a comma-separated list of store data types in stick-table 10054 - [MEDIUM] stick-tables: add support for arguments to data_types 10055 - [MEDIUM] stick-tables: add stored data argument type checking 10056 - [MEDIUM] session counters: add conn_rate and sess_rate counters 10057 - [MEDIUM] session counters: add bytes_in_rate and bytes_out_rate counters 10058 - [MINOR] stktable: add a stktable_update_key() function 10059 - [MINOR] session-counters: add a general purpose counter (gpc0) 10060 - [MEDIUM] session-counters: add HTTP req/err tracking 10061 - [MEDIUM] stats: add "show table [<name>]" to dump a stick-table 10062 - [MEDIUM] stats: add "clear table <name> key <value>" to clear table entries 10063 - [CLEANUP] stick-table: declare stktable_data_types as extern 10064 - [MEDIUM] stick-table: make use of generic types for stored data 10065 - [MINOR] stats: correctly report errors on "show table" and "clear table" 10066 - [MEDIUM] stats: add the ability to dump table entries matching criteria 10067 - [DOC] configuration: document all the new tracked counters 10068 - [DOC] stats: document "show table" and "clear table" 10069 - [MAJOR] session-counters: split FE and BE track counters 10070 - [MEDIUM] tcp: accept the "track-counters" in "tcp-request content" rules 10071 - [MEDIUM] session counters: automatically remove expired entries. 10072 - [MEDIUM] config: replace 'tcp-request <action>' with "tcp-request connection" 10073 - [MEDIUM] session-counters: make it possible to count connections from frontend 10074 - [MINOR] session-counters: use "track-sc{1,2}" instead of "track-{fe,be}-counters" 10075 - [MEDIUM] session-counters: correctly unbind the counters tracked by the backend 10076 - [CLEANUP] stats: use stksess_kill() to remove table entries 10077 - [DOC] update the references to session counters and to tcp-request connection 10078 - [DOC] cleanup: split a few long lines 10079 - [MEDIUM] http: forward client's close when abortonclose is set 10080 - [BUG] queue: don't dequeue proxy-global requests on disabled servers 10081 - [BUG] stats: global stats timeout may be specified before stats socket. 10082 - [BUG] conf: add tcp-request content rules to the correct list 10083 100842010/05/23 : 1.5-dev0 10085 - exact copy of 1.4.6 10086 100872010/05/16 : 1.4.6 10088 - [BUILD] ebtree: update to v6.0.1 to remove references to dprintf() 10089 - [CLEANUP] acl: make use of eb_is_empty() instead of open coding the tree's emptiness test 10090 - [MINOR] acl: add srv_is_up() to check that a specific server is up or not 10091 - [DOC] add a few precisions about the use of RDP cookies 10092 100932010/05/13 : 1.4.5 10094 - [DOC] report minimum kernel version for tproxy in the Makefile 10095 - [MINOR] add the "ignore-persist" option to conditionally ignore persistence 10096 - [DOC] add the "ignore-persist" option to conditionally ignore persistence 10097 - [DOC] fix ignore-persist/force-persist documentation 10098 - [BUG] cttproxy: socket fd leakage in check_cttproxy_version 10099 - [DOC] doc/configuration.txt: fix typos 10100 - [MINOR] option http-pretend-keepalive is both for FEs and BEs 10101 - [MINOR] fix possible crash in debug mode with invalid responses 10102 - [MINOR] halog: add support for statisticts on status codes 10103 - [OPTIM] halog: use a faster zero test in fgets() 10104 - [OPTIM] halog: minor speedup by using unlikely() 10105 - [OPTIM] halog: speed up fgets2-64 by about 10% 10106 - [DOC] refresh the README file and merge the CONTRIB file into it 10107 - [MINOR] acl: support loading values from files 10108 - [MEDIUM] ebtree: upgrade to version 6.0 10109 - [MINOR] acl trees: add flags and union members to store values in trees 10110 - [MEDIUM] acl: add ability to insert patterns in trees 10111 - [MEDIUM] acl: add tree-based lookups of exact strings 10112 - [MEDIUM] acl: add tree-based lookups of networks 10113 - [MINOR] acl: ignore empty lines and comments in pattern files 10114 - [MINOR] stick-tables: add support for "stick on hdr" 10115 101162010/04/07 : 1.4.4 10117 - [BUG] appsession should match the whole cookie name 10118 - [CLEANUP] proxy: move PR_O_SSL3_CHK to options2 to release one flag 10119 - [MEDIUM] backend: move the transparent proxy address selection to backend 10120 - [MINOR] add very fast IP parsing functions 10121 - [MINOR] add new tproxy flags for dynamic source address binding 10122 - [MEDIUM] add ability to connect to a server from an IP found in a header 10123 - [BUILD] config: last patch breaks build without CONFIG_HAP_LINUX_TPROXY 10124 - [MINOR] http: make it possible to pretend keep-alive when doing close 10125 - [MINOR] config: report "default-server" instead of "(null)" in error messages 10126 101272010/03/30 : 1.4.3 10128 - [CLEANUP] stats: remove printf format warning in stats_dump_full_sess_to_buffer() 10129 - [MEDIUM] session: better fix for connection to servers with closed input 10130 - [DOC] indicate in the doc how to bind to port ranges 10131 - [BUG] backend: L7 hashing must not be performed on incomplete requests 10132 - [TESTS] add a simple program to test connection resets 10133 - [MINOR] cli: "show errors" should display "backend <NONE>" when backend was not used 10134 - [MINOR] config: emit warnings when HTTP-only options are used in TCP mode 10135 - [MINOR] config: allow "slowstart 0s" 10136 - [BUILD] 'make tags' did not consider files ending in '.c' 10137 - [MINOR] checks: add the ability to disable a server in the config 10138 101392010/03/17 : 1.4.2 10140 - [CLEANUP] product branch update 10141 - [DOC] Some more documentation cleanups 10142 - [BUG] clf logs segfault when capturing a non existant header 10143 - [OPTIM] config: only allocate check buffer when checks are enabled 10144 - [MEDIUM] checks: support multi-packet health check responses 10145 - [CLEANUP] session: remove duplicate test 10146 - [BUG] http: don't wait for response data to leave buffer is client has left 10147 - [MINOR] proto_uxst: set accept_date upon accept() to the wall clock time 10148 - [MINOR] stats: don't send empty lines in "show errors" 10149 - [MINOR] stats: make the data dump function reusable for other purposes 10150 - [MINOR] stats socket: add show sess <id> to dump details about a session 10151 - [BUG] stats: connection reset counters must be plain ascii, not HTML 10152 - [BUG] url_param hash may return a down server 10153 - [MINOR] force null-termination of hostname 10154 - [MEDIUM] connect to servers even when the input has already been closed 10155 - [BUG] don't merge anonymous ACLs ! 10156 - [BUG] config: fix endless loop when parsing "on-error" 10157 - [MINOR] http: don't mark a server as failed when it returns 501/505 10158 - [OPTIM] checks: try to detect the end of response without polling again 10159 - [BUG] checks: don't report an error when recv() returns an error after data 10160 - [BUG] checks: don't abort when second poll returns an error 10161 - [MINOR] checks: make shutdown() silently fail 10162 - [BUG] http: fix truncated responses on chunk encoding when size divides buffer size 10163 - [BUG] init: unconditionally catch SIGPIPE 10164 - [BUG] checks: don't wait for a close to start parsing the response 10165 101662010/03/04 : 1.4.1 10167 - [BUG] Clear-cookie path issue 10168 - [DOC] fix typo on stickiness rules 10169 - [BUILD] fix BSD and OSX makefiles for missing files 10170 - [BUILD] includes order breaks OpenBSD build 10171 - [BUILD] fix some build warnings on Solaris with is* macros 10172 - [BUG] logs: don't report "last data" when we have just closed after an error 10173 - [BUG] logs: don't report "proxy request" when server closes early 10174 - [BUILD] fix platform-dependant build issues related to crypt() 10175 - [STATS] count transfer aborts caused by client and by server 10176 - [STATS] frontend requests were not accounted for failed requests 10177 - [MINOR] report total number of processed connections when stopping a proxy 10178 - [DOC] be more clear about the limitation to one single monitor-net entry 10179 101802010/02/26 : 1.4.0 10181 - [MINOR] stats: report maint state for tracking servers too 10182 - [DOC] fix summary to add pattern extraction 10183 - [DOC] Documentation cleanups 10184 - [BUG] cfgparse memory leak and missing free calls in deinit() 10185 - [BUG] pxid/puid/luid: don't shift IDs when some of them are forced 10186 - [EXAMPLES] add auth.cfg 10187 - [BUG] uri_auth: ST_SHLGNDS should be 0x00000008 not 0x0000008 10188 - [BUG] uri_auth: do not attemp to convert uri_auth -> http-request more than once 10189 - [BUILD] auth: don't use unnamed unions 10190 - [BUG] config: report unresolvable host names as errors 10191 - [BUILD] fix build breakage with DEBUG_FULL 10192 - [DOC] fix a typo about timeout check and clarify the explanation. 10193 - [MEDIUM] http: don't use trash to realign large buffers 10194 - [STATS] report HTTP requests (total and rate) in frontends 10195 - [STATS] separate frontend and backend HTTP stats 10196 - [MEDIUM] http: revert to use a swap buffer for realignment 10197 - [MINOR] stats: report the request rate in frontends as cell titles 10198 - [MINOR] stats: mark areas with an underline when tooltips are available 10199 - [DOC] reorder some entries to maintain the alphabetical order 10200 - [DOC] cleanup of the keyword matrix 10201 102022010/02/02 : 1.4-rc1 10203 - [MEDIUM] add a maintenance mode to servers 10204 - [MINOR] http-auth: last fix was wrong 10205 - [CONTRIB] add base64rev-gen.c that was used to generate the base64rev table. 10206 - [MINOR] Base64 decode 10207 - [MINOR] generic auth support with groups and encrypted passwords 10208 - [MINOR] add ACL_TEST_F_NULL_MATCH 10209 - [MINOR] http-request: allow/deny/auth support for frontend/backend/listen 10210 - [MINOR] acl: add http_auth and http_auth_group 10211 - [MAJOR] use the new auth framework for http stats 10212 - [DOC] add info about userlists, http-request and http_auth/http_auth_group acls 10213 - [STATS] make it possible to change a CLI connection timeout 10214 - [BUG] patterns: copy-paste typo in type conversion arguments 10215 - [MINOR] pattern: make the converter more flexible by supporting void* and int args 10216 - [MINOR] standard: str2mask: string to netmask converter 10217 - [MINOR] pattern: add support for argument parsers for converters 10218 - [MINOR] pattern: add the "ipmask()" converting function 10219 - [MINOR] config: off-by-one in "stick-table" after list of converters 10220 - [CLEANUP] acl, patterns: make use of my_strndup() instead of malloc+memcpy 10221 - [BUG] restore accidentely removed line in last patch ! 10222 - [MINOR] checks: make the HTTP check code add the CRLF itself 10223 - [MINOR] checks: add the server's status in the checks 10224 - [BUILD] halog: make without arch-specific optimizations 10225 - [BUG] halog: fix segfault in case of empty log in PCT mode (cherry picked from commit fe362fe4762151d209b9656639ee1651bc2b329d) 10226 - [MINOR] http: disable keep-alive when process is going down 10227 - [MINOR] acl: add build_acl_cond() to make it easier to add ACLs in config 10228 - [CLEANUP] config: use build_acl_cond() instead of parse_acl_cond() 10229 - [CLEANUP] config: use warnif_cond_requires_resp() to check for bad ACLs 10230 - [MINOR] prepare req_*/rsp_* to receive a condition 10231 - [CLEANUP] config: specify correct const char types to warnif_* functions 10232 - [MEDIUM] config: factor out the parsing of 20 req*/rsp* keywords 10233 - [MEDIUM] http: make the request filter loop check for optional conditions 10234 - [MEDIUM] http: add support for conditional request filter execution 10235 - [DOC] add some build info about the AIX platform (cherry picked from commit e41914c77edbc40aebf827b37542d37d758e371e) 10236 - [MEDIUM] http: add support for conditional request header addition 10237 - [MEDIUM] http: add support for conditional response header rewriting 10238 - [DOC] add some missing ACLs about response header matching 10239 - [MEDIUM] http: add support for proxy authentication 10240 - [MINOR] http-auth: make the 'unless' keyword work as expected 10241 - [CLEANUP] config: use build_acl_cond() to simplify http-request ACL parsing 10242 - [MEDIUM] add support for anonymous ACLs 10243 - [MEDIUM] http: switch to tunnel mode after status 101 responses 10244 - [MEDIUM] http: stricter processing of the CONNECT method 10245 - [BUG] config: reset check request to avoid double free when switching to ssl/sql 10246 - [MINOR] config: fix too large ssl-hello-check message. 10247 - [BUG] fix error response in case of server error 10248 102492010/01/25 : 1.4-dev8 10250 - [CLEANUP] Keep in sync "defaults" support between documentation and code 10251 - [MEDIUM] http: add support for Proxy-Connection header 10252 - [CRITICAL] buffers: buffer_insert_line2 must not change the ->w entry 10253 - [MINOR] http: remove a copy-paste typo in transaction cleaning 10254 - [BUG] http: trim any excess buffer data when recycling a connection 10255 102562010/01/25 : 1.4-dev7 10257 - [BUG] appsession: possible memory leak in case of out of memory condition 10258 - [MINOR] config: don't accept 'appsession' in defaults section 10259 - [MINOR] Add function to parse a size in configuration 10260 - [MEDIUM] Add stick table (persistence) management functions and types 10261 - [MEDIUM] Add pattern fetch management types and functions 10262 - [MEDIUM] Add src dst and dport pattern fetches. 10263 - [MEDIUM] Add stick table configuration and init. 10264 - [MEDIUM] Add stick and store rules analysers. 10265 - [MINOR] add option "mysql-check" to use MySQL health checks 10266 - [BUG] health checks: fix requeued message 10267 - [OPTIM] remove SSP_O_VIA and SSP_O_STATUS 10268 - [BUG] checks: fix newline termination 10269 - [MINOR] acl: add fe_id/so_id to match frontend's and socket's id 10270 - [BUG] appsession's sessid must be reset at end of transaction 10271 - [BUILD] appsession did not build anymore under gcc-2.95 10272 - [BUG] server redirection used an uninitialized string. 10273 - [MEDIUM] http: fix handling of message pointers 10274 - [MINOR] http: fix double slash prefix with server redirect 10275 - [MINOR] http redirect: add the ability to append a '/' to the URL 10276 - [BUG] stream_interface: fix retnclose and remove cond_close 10277 - [MINOR] http redirect: don't explicitly state keep-alive on 1.1 10278 - [MINOR] http: move appsession 'sessid' from session to http_txn 10279 - [OPTIM] reorder http_txn to optimize cache lines placement 10280 - [MINOR] http: differentiate waiting for new request and waiting for a complete requst 10281 - [MINOR] http: add a separate "http-keep-alive" timeout 10282 - [MINOR] config: remove undocumented and buggy 'timeout appsession' 10283 - [DOC] fix various too large lines 10284 - [DOC] remove several trailing spaces 10285 - [DOC] add the doc about stickiness 10286 - [BUILD] remove a warning in standard.h on AIX 10287 - [BUG] checks: chars are unsigned on AIX, check was always true 10288 - [CLEANUP] stream_sock: MSG_NOSIGNAL is only for send(), not recv() 10289 - [BUG] check: we must not check for error before reading a response 10290 - [BUG] buffers: remove remains of wrong obsolete length check 10291 - [OPTIM] stream_sock: don't shutdown(write) when the socket is in error 10292 - [BUG] http: don't count req errors on client resets or t/o during keep-alive 10293 - [MEDIUM] http: don't switch to tunnel mode upon close 10294 - [DOC] add documentation about connection header processing 10295 - [MINOR] http: add http_remove_header2() to remove a header value. 10296 - [MINOR] tools: add a "word_match()" function to match words and ignore spaces 10297 - [MAJOR] http: rework request Connection header handling 10298 - [MAJOR] http: rework response Connection header handling 10299 - [MINOR] add the ability to force kernel socket buffer size. 10300 - [BUG] http_server_error() must not purge a previous pending response 10301 - [OPTIM] http: don't delay response if next request is incomplete 10302 - [MINOR] add the "force-persist" statement to force persistence on down servers 10303 - [MINOR] http: logs must report persistent connections to down servers 10304 - [BUG] buffer_replace2 must never change the ->w entry 10305 103062010/01/08 : 1.4-dev6 10307 - [BUILD] warning in stream_interface.h 10308 - [BUILD] warning ultoa_r returns char * 10309 - [MINOR] hana: only report stats if it is enabled 10310 - [MINOR] stats: add "a link" & "a href" for sockets 10311 - [MINOR]: stats: add show-legends to report additional informations 10312 - [MEDIUM] default-server support 10313 - [BUG]: add 'observer', 'on-error', 'error-limit' to supported options list 10314 - [MINOR] stats: add href to tracked server 10315 - [BUG] stats: show UP/DOWN status also in tracking servers 10316 - [DOC] Restore ability to search a keyword at the beginning of a line 10317 - [BUG] stats: cookie should be reported under backend not under proxy 10318 - [BUG] cfgparser/stats: fix error message 10319 - [BUG] http: disable auto-closing during chunk analysis 10320 - [BUG] http: fix hopefully last closing issue on data forwarding 10321 - [DEBUG] add an http_silent_debug function to debug HTTP states 10322 - [MAJOR] http: fix again the forward analysers 10323 - [BUG] http_process_res_common() must not skip the forward analyser 10324 - [BUG] http: some possible missed close remain in the forward chain 10325 - [BUG] http: redirect needed to be updated after recent changes 10326 - [BUG] http: don't set no-linger on response in case of forced close 10327 - [MEDIUM] http: restore the original behaviour of option httpclose 10328 - [TESTS] add a file to test various connection modes 10329 - [BUG] http: check options before the connection header 10330 - [MAJOR] session: fix the order by which the analysers are run 10331 - [MEDIUM] session: also consider request analysers added during response 10332 - [MEDIUM] http: make safer use of the DONT_READ and AUTO_CLOSE flags 10333 - [BUG] http: memory leak with captures when using keep-alive 10334 - [BUG] http: fix for capture memory leak was incorrect 10335 - [MINOR] http redirect: use proper call to return last response 10336 - [MEDIUM] http: wait for some flush of the response buffer before a new request 10337 - [MEDIUM] session: limit the number of analyser loops 10338 103392010/01/03 : 1.4-dev5 10340 - [MINOR] server tracking: don't care about the tracked server's mode 10341 - [MEDIUM] appsession: add "len", "prefix" and "mode" options 10342 - [MEDIUM] appsession: add the "request-learn" option 10343 - [BUG] Configuration parser bug when escaping characters 10344 - [MINOR] CSS & HTML fun 10345 - [MINOR] Collect & provide http response codes received from servers 10346 - [BUG] Fix silly typo: hspr_other -> hrsp_other 10347 - [MINOR] Add "a name" to stats page 10348 - [MINOR] add additional "a href"s to stats page 10349 - [MINOR] Collect & provide http response codes for frontends, fix backends 10350 - [DOC] some small spell fixes and unifications 10351 - [MEDIUM] Decrease server health based on http responses / events, version 3 10352 - [BUG] format '%d' expects type 'int', but argument 5 has type 'long int' 10353 - [BUG] config: fix erroneous check on cookie domain names, again 10354 - [BUG] Healthchecks: get a proper error code if connection cannot be completed immediately 10355 - [DOC] trivial fix for man page 10356 - [MINOR] config: report all supported options for the "bind" keyword 10357 - [MINOR] tcp: add support for the defer_accept bind option 10358 - [MINOR] unix socket: report the socket path in case of bind error 10359 - [CONTRIB] halog: support searching by response time 10360 - [DOC] add a reminder about obsolete documents 10361 - [DOC] point to 1.4 doc, not 1.3 10362 - [DOC] option tcp-smart-connect was missing from index 10363 - [MINOR] http: detect connection: close earlier 10364 - [CLEANUP] sepoll: clean up the fd_clr/fd_set functions 10365 - [OPTIM] move some rarely used fields out of fdtab 10366 - [MEDIUM] fd: merge fd_list into fdtab 10367 - [MAJOR] buffer: flag BF_DONT_READ to disable reads when not required 10368 - [MINOR] http: add new transaction flags for keep-alive and content-length 10369 - [MEDIUM] http request: parse connection, content-length and transfer-encoding 10370 - [MINOR] http request: update the TX_SRV_CONN_KA flag on rewrite 10371 - [MINOR] http request: simplify the test of no-data 10372 - [MEDIUM] http request: simplify POST length detection 10373 - [MEDIUM] http request: make use of pre-parsed transfer-encoding header 10374 - [MAJOR] http: create the analyser which waits for a response 10375 - [MINOR] http: pre-set the persistent flags in the transaction 10376 - [MEDIUM] http response: check body length and set transaction flags 10377 - [MINOR] http response: update the TX_CLI_CONN_KA flag on rewrite 10378 - [MINOR] http: remove the last call to stream_int_return 10379 - [IMPORT] import ebtree v5.0 into directory ebtree/ 10380 - [MEDIUM] build: switch ebtree users to use new ebtree version 10381 - [CLEANUP] ebtree: remove old unused files 10382 - [BUG] definitely fix regparm issues between haproxy core and ebtree 10383 - [CLEANUP] ebtree: cast to char * to get rid of gcc warning 10384 - [BUILD] missing #ifndef in ebmbtree.h 10385 - [BUILD] missing #ifndef in ebsttree.h 10386 - [MINOR] tools: add hex2i() function to convert hex char to int 10387 - [MINOR] http: create new MSG_BODY sub-states 10388 - [BUG] stream_sock: BUF_INFINITE_FORWARD broke splice on 64-bit platforms 10389 - [DOC] option is "defer-accept", not "defer_accept" 10390 - [MINOR] http: keep pointer to beginning of data 10391 - [BUG] x-original-to: name was not set in default instance 10392 - [MINOR] http: detect tunnel mode and set it in the session 10393 - [BUG] config: fix error message when config file is not found 10394 - [BUG] config: fix wrong handling of too large argument count 10395 - [BUG] config: disable 'option httplog' on TCP proxies 10396 - [BUG] config: fix erroneous check on cookie domain names 10397 - [BUG] config: cookie domain was ignored in defaults sections 10398 - [MINOR] config: support passing multiple "domain" statements to cookies 10399 - [MINOR] ebtree: add functions to lookup non-null terminated strings 10400 - [MINOR] config: don't report error on all subsequent files on failure 10401 - [BUG] second fix for the printf format warning 10402 - [BUG] check_post: limit analysis to the buffer length 10403 - [MEDIUM] http: process request body in a specific analyser 10404 - [MEDIUM] backend: remove HTTP POST parsing from get_server_ph_post() 10405 - [MAJOR] http: completely process the "connection" header 10406 - [MINOR] http: only consider chunk encoding with HTTP/1.1 10407 - [MAJOR] buffers: automatically compute the maximum buffer length 10408 - [MINOR] http: move the http transaction init/cleanup code to proto_http 10409 - [MINOR] http: move 1xx handling earlier to eliminate a lot of ifs 10410 - [MINOR] http: introduce a new synchronisation state : HTTP_MSG_DONE 10411 - [MEDIUM] http: rework chunk-size parser 10412 - [MEDIUM] http: add a new transaction flags indicating if we know the transfer length 10413 - [MINOR] buffers: add buffer_ignore() to skip some bytes 10414 - [BUG] http: offsets are relative to the buffer, not to ->som 10415 - [MEDIUM] http: automatically re-aling request buffer 10416 - [BUG] http: body parsing must consider the start of message 10417 - [MINOR] new function stream_int_cond_close() 10418 - [MAJOR] http: implement body parser 10419 - [BUG] http: typos on several unlikely() around header insertion 10420 - [BUG] stream_sock: wrong max computation on recv 10421 - [MEDIUM] http: rework the buffer alignment logic 10422 - [BUG] buffers: wrong size calculation for displaced data 10423 - [MINOR] stream_sock: prepare for closing when all pending data are sent 10424 - [MEDIUM] http: add two more states for the closing period 10425 - [MEDIUM] http: properly handle "option forceclose" 10426 - [MINOR] stream_sock: add SI_FL_NOLINGER for faster close 10427 - [MEDIUM] http: make forceclose use SI_FL_NOLINGER 10428 - [MEDIUM] session: set SI_FL_NOLINGER when aborting on write timeouts 10429 - [MEDIUM] http: add some SI_FL_NOLINGER around server errors 10430 - [MINOR] config: option forceclose is valid in frontends too 10431 - [BUILD] halog: insufficient include path in makefile 10432 - [MEDIUM] http: make the analyser not rely on msg being initialized anymore 10433 - [MEDIUM] http: make the parsers able to wait for a buffer flush 10434 - [MAJOR] http: add support for option http-server-close 10435 - [BUG] http: ensure we abort data transfer on write error 10436 - [BUG] last fix was overzealous and disabled server-close 10437 - [BUG] http: fix erroneous trailers size computation 10438 - [MINOR] stream_sock: enable MSG_MORE when forwarding finite amount of data 10439 - [OPTIM] http: set MSG_MORE on response when a pipelined request is pending 10440 - [BUG] http: redirects were broken by chunk changes 10441 - [BUG] http: the request URI pointer is relative to the buffer 10442 - [OPTIM] http: don't immediately enable reading on request 10443 - [MINOR] http: move redirect messages to HTTP/1.1 with a content-length 10444 - [BUG] http: take care of errors, timeouts and aborts during the data phase 10445 - [MINOR] http: don't wait for sending requests to the server 10446 - [MINOR] http: make the conditional redirect support keep-alive 10447 - [BUG] http: fix cookie parser to support spaces and commas in values 10448 - [MINOR] config: some options were missing for "redirect" 10449 - [MINOR] redirect: add support for unconditional rules 10450 - [MINOR] config: centralize proxy struct initialization 10451 - [MEDIUM] config: remove the limitation of 10 reqadd/rspadd statements 10452 - [MEDIUM] config: remove the limitation of 10 config files 10453 - [CLEANUP] http: remove a remaining impossible condition 10454 - [OPTIM] http: optimize a bit the construct of the forward loops 10455 104562009/10/12 : 1.4-dev4 10457 - [DOC] add missing rate_lim and rate_max 10458 - [MAJOR] struct chunk rework 10459 - [MEDIUM] Health check reporting code rework + health logging, v3 10460 - [BUG] check if rise/fall has an argument and it is > 0 10461 - [MINOR] health checks logging unification 10462 - [MINOR] add "description", "node" and show-node"/"show-desc", remove "node-name", v2 10463 - [MINOR] Allow dots in show-node & add "white-space: nowrap" in th.pxname. 10464 - [DOC] Add information about http://haproxy.1wt.eu/contrib.html 10465 - [MINOR] Introduce include/types/counters.h 10466 - [CLEANUP] Move counters to dedicated structures 10467 - [MINOR] Add "clear counters" to clear statistics counters 10468 - [MEDIUM] Collect & provide separate statistics for sockets, v2 10469 - [BUG] Fix NULL pointer dereference in stats_check_uri_auth(), v2 10470 - [MINOR] acl: don't report valid acls as potential mistakes 10471 - [MINOR] Add cut_crlf(), ltrim(), rtrim() and alltrim() 10472 - [MINOR] Add chunk_htmlencode and chunk_asciiencode 10473 - [MINOR] Capture & display more data from health checks, v2 10474 - [BUG] task.c: don't assing last_timer to node-less entries 10475 - [BUG] http stats: large outputs sometimes got some parts chopped off 10476 - [MINOR] backend: export some functions to recount servers 10477 - [MINOR] backend: uninline some LB functions 10478 - [MINOR] include time.h from freq_ctr.h as is uses "now". 10479 - [CLEANUP] backend: move LB algos to individual files 10480 - [MINOR] lb_map: reorder code in order to ease integration of new hash functions 10481 - [CLEANUP] proxy: move last lb-specific bits to their respective files 10482 - [MINOR] backend: separate declarations of LB algos from their lookup method 10483 - [MINOR] backend: reorganize the LB algorithm selection 10484 - [MEDIUM] backend: introduce the "static-rr" LB algorithm 10485 - [MINOR] report list of supported pollers with -vv 10486 - [DOC] log-health-checks is an option, not a directive 10487 - [MEDIUM] new option "independant-streams" to stop updating read timeout on writes 10488 - [BUG] stats: don't call buffer_shutw(), but ->shutw() instead 10489 - [MINOR] stats: strip CR and LF from the input command line 10490 - [BUG] don't refresh timeouts late after detected activity 10491 - [MINOR] stats_dump_errors_to_buffer: use buffer_feed_chunk() 10492 - [MINOR] stats_dump_sess_to_buffer: use buffer_feed_chunk() 10493 - [MINOR] stats: make stats_dump_raw_to_buffer() use buffer_feed_chunk 10494 - [MEDIUM] stats: don't use s->ana_state anymore 10495 - [MINOR] remove now obsolete ana_state from the session struct 10496 - [MEDIUM] stats: make HTTP stats use an I/O handler 10497 - [MEDIUM] stream_int: adjust WAIT_ROOM handling 10498 - [BUG] config: look for ID conflicts in all sockets, not only last ones. 10499 - [MINOR] config: reference file and line with any listener/proxy/server declaration 10500 - [MINOR] config: report places of duplicate names or IDs 10501 - [MINOR] config: add pointer to file name in block/redirect/use_backend/monitor rules 10502 - [MINOR] tools: add a new get_next_id() function 10503 - [MEDIUM] config: automatically find unused IDs for proxies, servers and listeners 10504 - [OPTIM] counters: move some max numbers to the counters struct 10505 - [BUG] counters: fix segfault on missing counters for a listener 10506 - [MEDIUM] backend: implement consistent hashing variation 10507 - [MINOR] acl: add fe_conn, be_conn, queue, avg_queue 10508 - [MINOR] stats: use 'clear counters all' to clear all values 10509 - [MEDIUM] add access restrictions to the stats socket 10510 - [MINOR] buffers: add buffer_feed2() and make buffer_feed() measure string length 10511 - [MINOR] proxy: provide function to retrieve backend/server pointers 10512 - [MINOR] add the "initial weight" to the server struct. 10513 - [MEDIUM] stats: add the "get weight" command to report a server's weight 10514 - [MEDIUM] stats: add the "set weight" command 10515 - [BUILD] add a 'make tags' target 10516 - [MINOR] stats: add support for numeric IDs in set weight/get weight 10517 - [MINOR] stats: use a dedicated state to output static data 10518 - [OPTIM] stats: check free space before trying to print 10519 105202009/09/24 : 1.4-dev3 10521 - [BUILD] compilation of haproxy-1.4-dev2 on FreeBSD 10522 - [MEDIUM] Collect & show information about last health check, v3 10523 - [MINOR] export the hostname variable so that all the code can access it 10524 - [MINOR] stats: add a new node-name setting 10525 - [MEDIUM] remove old experimental tcpsplice option 10526 - [BUILD] fix build for systems without SOL_TCP 10527 - [MEDIUM] move connection establishment from backend to the SI. 10528 - [MEDIUM] make the global stats socket part of a frontend 10529 - [MEDIUM] session: account per-listener connections 10530 - [MINOR] session: switch to established state if no connect function 10531 - [MEDIUM] make the unix stats sockets use the generic session handler 10532 - [CLEANUP] unix: remove uxst_process_session() 10533 - [CLEANUP] move remaining stats sockets code to dumpstats 10534 - [MINOR] move the initial task's nice value to the listener 10535 - [MINOR] cleanup set_session_backend by using pre-computed analysers 10536 - [MINOR] set s->srv_error according to the analysers 10537 - [MEDIUM] set rep->analysers from fe and be analysers 10538 - [MEDIUM] replace BUFSIZE with buf->size in computations 10539 - [MEDIUM] make it possible to change the buffer size in the configuration 10540 - [MEDIUM] report error on buffer writes larger than buffer size 10541 - [MEDIUM] stream_interface: add and use ->update function to resync 10542 - [CLEANUP] remove ifdef MSG_NOSIGNAL and define it instead 10543 - [MEDIUM] remove TCP_CORK and make use of MSG_MORE instead 10544 - [BUG] tarpit did not work anymore 10545 - [MINOR] acl: add support for hdr_ip to match IP addresses in headers 10546 - [MAJOR] buffers: fix misuse of the BF_SHUTW_NOW flag 10547 - [MINOR] buffers: provide more functions to handle buffer data 10548 - [MEDIUM] buffers: provide new buffer_feed*() function 10549 - [MINOR] buffers: add peekchar and peekline functions for stream interfaces 10550 - [MINOR] buffers: provide buffer_si_putchar() to send a char from a stream interface 10551 - [BUG] buffer_forward() would not correctly consider data already scheduled 10552 - [MINOR] buffers: add buffer_cut_tail() to cut only unsent data 10553 - [MEDIUM] stream_interface: make use of buffer_cut_tail() to report errors 10554 - [MAJOR] http: add support for HTTP 1xx informational responses 10555 - [MINOR] buffers: inline buffer_si_putchar() 10556 - [MAJOR] buffers: split BF_WRITE_ENA into BF_AUTO_CONNECT and BF_AUTO_CLOSE 10557 - [MAJOR] buffers: fix the BF_EMPTY flag's meaning 10558 - [BUG] stream_interface: SI_ST_CLO must have buffers SHUT 10559 - [MINOR] stream_sock: don't set SI_FL_WAIT_DATA if BF_SHUTW_NOW is set 10560 - [MEDIUM] add support for infinite forwarding 10561 - [BUILD] stream_interface: fix conflicting declaration 10562 - [BUG] buffers: buffer_forward() must not always clear BF_OUT_EMPTY 10563 - [BUG] variable buffer size ignored at initialization time 10564 - [MINOR] ensure that buffer_feed() and buffer_skip() set BF_*_PARTIAL 10565 - [BUG] fix buffer_skip() and buffer_si_getline() to correctly handle wrap-arounds 10566 - [MINOR] stream_interface: add SI_FL_DONT_WAKE flag 10567 - [MINOR] stream_interface: add iohandler callback 10568 - [MINOR] stream_interface: add functions to support running as internal/external tasks 10569 - [MEDIUM] session: call iohandler for embedded tasks (applets) 10570 - [MINOR] add a ->private member to the stream_interface 10571 - [MEDIUM] stats: prepare the connection for closing before dumping 10572 - [MEDIUM] stats: replace the stats socket analyser with an SI applet 10573 105742009/08/09 : 1.4-dev2 10575 - [BUG] task: fix possible crash when some timeouts are not configured 10576 - [BUG] log: option tcplog would log to global if no logger was defined 10577 105782009/07/29 : 1.4-dev1 10579 - [MINOR] acl: add support for matching of RDP cookies 10580 - [MEDIUM] add support for RDP cookie load-balancing 10581 - [MEDIUM] add support for RDP cookie persistence 10582 - [MINOR] add a new CLF log format 10583 - [MINOR] startup: don't imply -q with -D 10584 - [BUG] ensure that we correctly re-start old process in case of error 10585 - [MEDIUM] add support for binding to source port ranges during connect 10586 - [MINOR] config: track "no option"/"option" changes 10587 - [MINOR] config: support resetting options do default values 10588 - [MEDIUM] implement option tcp-smart-accept at the frontend 10589 - [MEDIUM] stream_sock: implement tcp-cork for use during shutdowns on Linux 10590 - [MEDIUM] implement tcp-smart-connect option at the backend 10591 - [MEDIUM] add support for TCP MSS adjustment for listeners 10592 - [MEDIUM] support setting a server weight to zero 10593 - [MINOR] make DEFAULT_MAXCONN user-configurable at build time 10594 - [MAJOR] session: don't clear buffer status flags anymore 10595 - [MAJOR] session: only check for timeouts when they have just occurred. 10596 - [MAJOR] session: simplify buffer error handling 10597 - [MEDIUM] config: split parser and checker in two functions 10598 - [MEDIUM] config: support loading multiple configuration files 10599 - [MEDIUM] stream_sock: don't close prematurely when nolinger is set 10600 - [MEDIUM] session: rework buffer analysis to permit permanent analysers 10601 - [MEDIUM] splice: set the capability on each stream_interface 10602 - [BUG] http: redirect rules were processed too early 10603 - [CLEANUP] remove unused DEBUG_PARSE_NO_SPEEDUP define 10604 - [MEDIUM] http: split request waiter from request processor 10605 - [MEDIUM] session: tell analysers what bit they were called for 10606 - [MAJOR] http: complete splitting of the remaining stages 10607 - [MINOR] report in the proxies the requirements for ACLs 10608 - [MINOR] http: rely on proxy->acl_requires to allocate hdr_idx 10609 - [MINOR] acl: add HTTP protocol detection (req_proto_http) 10610 - [MINOR] prepare callers of session_set_backend to handle errors 10611 - [BUG] default ACLs did not properly set the ->requires flag 10612 - [MEDIUM] allow a TCP frontend to switch to an HTTP backend 10613 - [MINOR] ensure we can jump from swiching rules to http without data 10614 - [MINOR] http: take http request timeout from the backend 10615 - [MINOR] allow TCP inspection rules to make use of HTTP ACLs 10616 - [BUILD] report commit date and not author's date as build date 10617 - [MINOR] acl: don't complain anymore when using L7 acls in TCP 10618 - [BUG] stream_sock: always shutdown(SHUT_WR) before closing 10619 - [BUG] stream_sock: don't stop reading when the poller reports an error 10620 - [BUG] config: tcp-request content only accepts "if" or "unless" 10621 - [BUG] task: fix possible timer drift after update 10622 - [MINOR] apply tcp-smart-connect option for the checks too 10623 - [MINOR] stats: better displaying in MSIE 10624 - [MINOR] config: improve error reporting in global section 10625 - [MINOR] config: improve error reporting in listen sections 10626 - [MINOR] config: the "capture" keyword is not allowed in backends 10627 - [MINOR] config: improve error reporting when checking configuration 10628 - [BUILD] fix a minor build warning on AIX 10629 - [BUILD] use "git cmd" instead of "git-cmd" 10630 - [CLEANUP] report 2009 not 2008 in the copyright banner. 10631 - [MINOR] print usage on the stats sockets upon invalid commands 10632 - [MINOR] acl: detect and report potential mistakes in ACLs 10633 - [BUILD] fix incorrect printf arg count with tcp_splice 10634 - [BUG] fix random pauses on last segment of a series 10635 - [BUILD] add support for build under Cygwin 10636 106372009/06/09 : 1.4-dev0 10638 - exact copy of 1.3.18 10639 106402009/05/10 : 1.3.18 10641 - [MEDIUM] add support for "balance hdr(name)" 10642 - [CLEANUP] give a little bit more information in error message 10643 - [MINOR] add X-Original-To: header 10644 - [BUG] x-original-to: fix missing initialization to default value 10645 - [BUILD] spec file: fix broken pipe during rpmbuild and add man file 10646 - [MINOR] improve reporting of misplaced acl/reqxxx rules 10647 - [MEDIUM] http: add options to ignore invalid header names 10648 - [MEDIUM] http: capture invalid requests/responses even if accepted 10649 - [BUILD] add format(printf) to printf-like functions 10650 - [MINOR] fix several printf formats and missing arguments 10651 - [BUG] stats: total and lbtot are unsigned 10652 - [MINOR] fix a few remaining printf-like formats on 64-bit platforms 10653 - [CLEANUP] remove unused make option from haproxy.spec 10654 - [BUILD] make it possible to pass alternative arch at build time 10655 - [MINOR] switch all stat counters to 64-bit 10656 - [MEDIUM] ensure we don't recursively call pool_gc2() 10657 - [CRITICAL] uninitialized response field can sometimes cause crashes 10658 - [BUG] fix wrong pointer arithmetics in HTTP message captures 10659 - [MINOR] rhel init script : support the reload operation 10660 - [MINOR] add basic signal handling functions 10661 - [BUILD] add signal.o to all makefiles 10662 - [MEDIUM] call signal_process_queue from run_poll_loop 10663 - [MEDIUM] pollers: don't wait if a signal is pending 10664 - [MEDIUM] convert all signals to asynchronous signals 10665 - [BUG] O(1) pollers should check their FD before closing it 10666 - [MINOR] don't close stdio fds twice 10667 - [MINOR] add options dontlog-normal and log-separate-errors 10668 - [DOC] minor fixes and rearrangements 10669 - [BUG] fix parser crash on unconditional tcp content rules 10670 - [DOC] rearrange the configuration manual and add a summary 10671 - [MINOR] standard: provide a new 'my_strndup' function 10672 - [MINOR] implement per-logger log level limitation 10673 - [MINOR] compute the max of sessions/s on fe/be/srv 10674 - [MINOR] stats: report max sessions/s and limit in CSV export 10675 - [MINOR] stats: report max sessions/s and limit in HTML stats 10676 - [MINOR] stats/html: use the arial font before helvetica 10677 106782009/03/29 : 1.3.17 10679 - Update specfile to build for v2.6 kernel. 10680 - [BUG] reset the stream_interface connect timeout upon connect or error 10681 - [BUG] reject unix accepts when connection limit is reached 10682 - [MINOR] show sess: report number of calls to each task 10683 - [BUG] don't call epoll_ctl() on closed sockets 10684 - [BUG] stream_sock: disable I/O on fds reporting an error 10685 - [MINOR] sepoll: don't count two events on the same FD. 10686 - [MINOR] show sess: report a lot more information about sessions 10687 - [BUG] stream_sock: check for shut{r,w} before refreshing some timeouts 10688 - [BUG] don't set an expiration date directly from now_ms 10689 - [MINOR] implement ulltoh() to write HTML-formatted numbers 10690 - [MINOR] stats/html: group digits by 3 to clarify numbers 10691 - [BUILD] remove haproxy-small.spec 10692 - [BUILD] makefile: remove unused references to linux24eold and EPOLL_CTL_WORKAROUND 10693 106942009/03/22 : 1.3.16 10695 - [BUILD] Fixed Makefile for linking pcre 10696 - [CONTRIB] selinux policy for haproxy 10697 - [MINOR] show errors: encode backslash as well as non-ascii characters 10698 - [MINOR] cfgparse: some cleanups in the consistency checks 10699 - [MINOR] cfgparse: set backends to "balance roundrobin" by default 10700 - [MINOR] tcp-inspect: permit the use of no-delay inspection 10701 - [MEDIUM] reverse internal proxy declaration order to match configuration 10702 - [CLEANUP] config: catch and report some possibly wrong rule ordering 10703 - [BUG] connect timeout is in the stream interface, not the buffer 10704 - [BUG] session: errors were not reported in termination flags in TCP mode 10705 - [MINOR] tcp_request: let the caller take care of errors and timeouts 10706 - [CLEANUP] http: remove some commented out obsolete code in process_response 10707 - [MINOR] update ebtree to version 4.1 10708 - [MEDIUM] scheduler: get rid of the 4 trees thanks and use ebtree v4.1 10709 - [BUG] sched: don't leave 3 lasts tasks unprocessed when niced tasks are present 10710 - [BUG] scheduler: fix improper handling of duplicates __task_queue() 10711 - [MINOR] sched: permit a task to stay up between calls 10712 - [MINOR] task: keep a task count and clean up task creators 10713 - [MINOR] stats: report number of tasks (active and running) 10714 - [BUG] server check intervals must not be null 10715 - [OPTIM] stream_sock: don't retry to read after a large read 10716 - [OPTIM] buffer: new BF_READ_DONTWAIT flag reduces EAGAIN rates 10717 - [MEDIUM] session: don't resync FSMs on non-interesting changes 10718 - [BUG] check for global.maxconn before doing accept() 10719 - [OPTIM] sepoll: do not re-check whole list upon accepts 10720 107212009/03/09 : 1.3.16-rc2 10722 - [BUG] stream_sock: write timeout must be updated when forwarding ! 10723 107242009/03/09 : 1.3.16-rc1 10725 - appsessions: cleanup DEBUG_HASH and initialize request_counter 10726 - [MINOR] acl: add new keyword "connslots" 10727 - [MINOR] cfgparse: fix off-by 2 in error message size 10728 - [BUILD] fix build with gcc 4.3 10729 - [BUILD] fix MANDIR default location to match documentation 10730 - [TESTS] add a debug patch to help trigger the stats bug 10731 - [BUG] Flush buffers also where there are exactly 0 bytes left 10732 - [MINOR] Allow to specify a domain for a cookie 10733 - [BUG/CLEANUP] cookiedomain -> cookie_domain rename + free(p->cookie_domain) 10734 - [MEDIUM] Fix memory freeing at exit 10735 - [MEDIUM] Fix memory freeing at exit, part 2 10736 - [BUG] Fix listen & more of 2 couples <ip>:<port> 10737 - [DOC] remove buggy comment for use_backend 10738 - [CRITICAL] fix server state tracking: it was O(n!) instead of O(n) 10739 - [MEDIUM] add support for URI hash depth and length limits 10740 - [MINOR] permit renaming of x-forwarded-for header 10741 - [BUILD] fix Makefile.bsd and Makefile.osx for stream_interface 10742 - [BUILD] Haproxy won't compile if DEBUG_FULL is defined 10743 - [MEDIUM] upgrade to ebtree v4.0 10744 - [DOC] update the README file with new build options 10745 - [MEDIUM] reduce risk of event starvation in ev_sepoll 10746 - [MEDIUM] detect streaming buffers and tag them as such 10747 - [MEDIUM] add support for conditional HTTP redirection 10748 - [BUILD] make install should depend on haproxy not "all" 10749 - [DEBUG] add a TRACE macro to facilitate runtime data extraction 10750 - [BUG] event pollers must not wait if a task exists in the run queue 10751 - [BUG] queue management: wake oldest request in queues 10752 - [BUG] log: reported queue position was offed-by-one 10753 - [BUG] fix the dequeuing logic to ensure that all requests get served 10754 - [DOC] documentation for the "retries" parameter was missing. 10755 - [MEDIUM] implement a monotonic internal clock 10756 - [MEDIUM] further improve monotonic clock by check forward jumps 10757 - [OPTIM] add branch prediction hints in list manipulations 10758 - [MAJOR] replace ultree with ebtree in wait-queues 10759 - [BUG] we could segfault during exit while freeing uri_auths 10760 - [BUG] wqueue: perform proper timeout comparisons with wrapping values 10761 - [MINOR] introduce now_ms, the current date in milliseconds 10762 - [BUG] disable buffer read timeout when reading stats 10763 - [MEDIUM] rework the wait queue mechanism 10764 - [BUILD] change declaration of base64tab to fix build with Intel C++ 10765 - [OPTIM] shrink wake_expired_tasks() by using task_wakeup() 10766 - [MAJOR] use an ebtree instead of a list for the run queue 10767 - [MEDIUM] introduce task->nice and boot access to statistics 10768 - [OPTIM] task_queue: assume most consecutive timers are equal 10769 - [BUILD] silent a warning in unlikely() with gcc 4.x 10770 - [MAJOR] convert all expiration timers from timeval to ticks 10771 - [BUG] use_backend would not correctly consider "unless" 10772 - [TESTS] added test-acl.cfg to test some ACL combinations 10773 - [MEDIUM] add support for configuration keyword registration 10774 - [MEDIUM] modularize the global "stats" keyword configuration parser 10775 - [MINOR] cfgparse: add support for warnings in external functions 10776 - [MEDIUM] modularize the "timeout" keyword configuration parser 10777 - [MAJOR] implement tcp request content inspection 10778 - [MINOR] acl: add a new parsing function: parse_dotted_ver 10779 - [MINOR] acl: add req_ssl_ver in TCP, to match an SSL version 10780 - [CLEANUP] remove unused include/types/client.h 10781 - [CLEANUP] remove many #include <types/xxx> from C files 10782 - [CLEANUP] remove dependency on obsolete INTBITS macro 10783 - [DOC] document the new "tcp-request" keyword and associated ACLs 10784 - [MINOR] acl: add REQ_CONTENT to the list of default acls 10785 - [MEDIUM] acl: permit fetch() functions to set the result themselves 10786 - [MEDIUM] acl: get rid of dummy values in always_true/always_false 10787 - [MINOR] acl: add the "wait_end" acl verb 10788 - [MEDIUM] acl: enforce ACL type checking 10789 - [MEDIUM] acl: set types on all currently known ACL verbs 10790 - [MEDIUM] acl: when possible, report the name and requirements of ACLs in warnings 10791 - [CLEANUP] remove 65 useless NULL checks before free 10792 - [MEDIUM] memory: update pool_free2() to support NULL pointers 10793 - [MEDIUM] buffers: ensure buffer_shut* are properly called upon shutdowns 10794 - [MEDIUM] process_srv: rely on buffer flags for client shutdown 10795 - [MEDIUM] process_srv: don't rely at all on client state 10796 - [MEDIUM] process_cli: don't rely at all on server state 10797 - [BUG] fix segfault with url_param + check_post 10798 - [BUG] server timeout was not considered in some circumstances 10799 - [BUG] client timeout incorrectly rearmed while waiting for server 10800 - [MAJOR] kill CL_STINSPECT and CL_STHEADERS (step 1) 10801 - [MAJOR] get rid of SV_STANALYZE (step 2) 10802 - [MEDIUM] simplify and centralize request timeout cancellation and request forwarding 10803 - [MAJOR] completely separate HTTP and TCP states on the request path 10804 - [BUG] fix recently introduced loop when client closes early 10805 - [MAJOR] get rid of the SV_STHEADERS state 10806 - [MAJOR] better separation of response processing and server state 10807 - [MAJOR] clearly separate HTTP response processing from TCP server state 10808 - [MEDIUM] remove unused references to {CL|SV}_STSHUT* 10809 - [MINOR] term_trace: add better instrumentations to trace the code 10810 - [BUG] ev_sepoll: closed file descriptors could persist in the spec list 10811 - [BUG] process_response must not enable the read FD 10812 - [BUG] buffers: remove BF_MAY_CONNECT and fix forwarding issue 10813 - [BUG] process_response: do not touch srv_state 10814 - [BUG] maintain_proxies must not disable backends 10815 - [CLEANUP] get rid of BF_SHUT*_PENDING 10816 - [MEDIUM] buffers: add BF_EMPTY and BF_FULL to remove dependency on req/rep->l 10817 - [MAJOR] process_session: rely only on buffer flags 10818 - [MEDIUM] use buffer->wex instead of buffer->cex for connect timeout 10819 - [MEDIUM] centralize buffer timeout checks at the top of process_session 10820 - [MINOR] ensure the termination flags are set by process_xxx 10821 - [MEDIUM] session: move the analysis bit field to the buffer 10822 - [OPTIM] process_cli/process_srv: reduce the number of tests 10823 - [BUG] regparm is broken on gcc < 3 10824 - [BUILD] fix warning in proto_tcp.c with gcc >= 4 10825 - [MEDIUM] merge inspect_exp and txn->exp into request buffer 10826 - [BUG] process_cli/process_srv: don't call shutdown when already done 10827 - [BUG] process_request: HTTP body analysis must return zero if missing data 10828 - [TESTS] test-fsm: 22 regression tests for state machines 10829 - [BUG] Fix empty X-Forwarded-For header name when set in defaults section 10830 - [BUG] fix harmless but wrong fd insertion sequence 10831 - [MEDIUM] make it possible for analysers to follow the whole session 10832 - [MAJOR] rework of the server FSM 10833 - [OPTIM] remove useless fd_set(read) upon shutdown(write) 10834 - [MEDIUM] massive cleanup of process_srv() 10835 - [MEDIUM] second level of code cleanup for process_srv_data 10836 - [MEDIUM] third cleanup and optimization of process_srv_data() 10837 - [MEDIUM] process_srv_data: ensure that we always correctly re-arm timeouts 10838 - [MEDIUM] stream_sock_process_data moved to stream_sock.c 10839 - [MAJOR] make the client side use stream_sock_process_data() 10840 - [MEDIUM] split stream_sock_process_data 10841 - [OPTIM] stream_sock_read must check for null-reads more often 10842 - [MINOR] only call flow analysers when their read side is connected. 10843 - [MEDIUM] reintroduce BF_HIJACK with produce_content 10844 - [MINOR] re-arrange buffer flags and rename some of them 10845 - [MINOR] do not check for BF_SHUTR when computing write timeout 10846 - [OPTIM] ev_sepoll: detect newly created FDs and check them once 10847 - [OPTIM] reduce the number of calls to task_wakeup() 10848 - [OPTIM] force inlining of large functions with gcc >= 3 10849 - [MEDIUM] indicate a reason for a task wakeup 10850 - [MINOR] change type of fdtab[]->owner to void* 10851 - [MAJOR] make stream sockets aware of the stream interface 10852 - [MEDIUM] stream interface: add the ->shutw method as well as in and out buffers 10853 - [MEDIUM] buffers: add BF_READ_ATTACHED and BF_ANA_TIMEOUT 10854 - [MEDIUM] process_session: make use of the new buffer flags 10855 - [CLEANUP] process_session: move debug outputs out of the critical loop 10856 - [MEDIUM] move QUEUE and TAR timers to stream interfaces 10857 - [OPTIM] add compiler hints in tick_is_expired() 10858 - [MINOR] add buffer_check_timeouts() to check what timeouts have fired. 10859 - [MEDIUM] use buffer_check_timeouts instead of stream_sock_check_timeouts() 10860 - [MINOR] add an expiration flag to the stream_sock_interface 10861 - [MAJOR] migrate the connection logic to stream interface 10862 - [MAJOR] add a connection error state to the stream_interface 10863 - [MEDIUM] add the SN_CURR_SESS flag to the session to track open sessions 10864 - [MEDIUM] continue layering cleanups. 10865 - [MEDIUM] stream_interface: added a DISconnected state between CON/EST and CLO 10866 - [MEDIUM] remove stream_sock_update_data() 10867 - [MINOR] maintain a global session list in order to ease debugging 10868 - [BUG] shutw must imply close during a connect 10869 - [MEDIUM] process shutw during connection attempt 10870 - [MEDIUM] make the stream interface control the SHUT{R,W} bits 10871 - [MAJOR] complete layer4/7 separation 10872 - [CLEANUP] move the session-related functions to session.c 10873 - [MINOR] call session->do_log() for logging 10874 - [MINOR] replace the ambiguous client_return function by stream_int_return 10875 - [MINOR] replace client_retnclose() with stream_int_retnclose() 10876 - [MINOR] replace srv_close_with_err() with http_server_error() 10877 - [MEDIUM] make the http server error function a pointer in the session 10878 - [CLEANUP] session.c: removed some migration left-overs in sess_establish() 10879 - [MINOR] stream_sock_data_finish() should not expose fd 10880 - [MEDIUM] extract TCP request processing from HTTP 10881 - [MEDIUM] extract the HTTP tarpit code from process_request(). 10882 - [MEDIUM] move the HTTP request body analyser out of process_request(). 10883 - [MEDIUM] rename process_request to http_process_request 10884 - [BUG] fix forgotten server session counter 10885 - [MINOR] declare process_session in session.h, not proto_http.h 10886 - [MEDIUM] first pass of lifting to proto_uxst.c:uxst_event_accept() 10887 - [MINOR] add an analyser code for UNIX stats request 10888 - [MINOR] pre-set analyser flags on the listener at registration time 10889 - [BUG] do not forward close from cons to prod with analysers 10890 - [MEDIUM] ensure that sock->shutw() also closes read for init states 10891 - [MINOR] add an analyser state in struct session 10892 - [MAJOR] make unix sockets work again with stats 10893 - [MEDIUM] remove cli_fd, srv_fd, cli_state and srv_state from the session 10894 - [MINOR] move the listener reference from fd to session 10895 - [MEDIUM] reference the current hijack function in the buffer itself 10896 - [MINOR] slightly rebalance stats_dump_{raw,http} 10897 - [MINOR] add a new back-reference type : struct bref 10898 - [MINOR] add back-references to sessions for later use by a dumper. 10899 - [MEDIUM] add support for "show sess" in unix stats socket 10900 - [BUG] do not release the connection slot during a retry 10901 - [BUG] dynamic connection throttling could return a max of zero conns 10902 - [BUG] do not try to pause backends during reload 10903 - [BUG] ensure that listeners from disabled proxies are correctly unbound. 10904 - [BUG] acl-related keywords are not allowed in defaults sections 10905 - [BUG] cookie capture is declared in the frontend but checked on the backend 10906 - [BUG] critical errors should be reported even in daemon mode 10907 - [MINOR] redirect: add support for the "drop-query" option 10908 - [MINOR] redirect: add support for "set-cookie" and "clear-cookie" 10909 - [MINOR] redirect: in prefix mode a "/" means not to change the URI 10910 - [BUG] do not dequeue requests on a dead server 10911 - [BUG] do not dequeue the backend's pending connections on a dead server 10912 - [MINOR] stats: indicate if a task is running in "show sess" 10913 - [BUG] check timeout must not be changed if timeout.check is not set 10914 - [BUG] "option transparent" is for backend, not frontend ! 10915 - [MINOR] transfer errors were not reported anymore in data phase 10916 - [MEDIUM] add a send limit to a buffer 10917 - [MEDIUM] don't report buffer timeout when there is I/O activity 10918 - [MEDIUM] indicate when we don't care about read timeout 10919 - [MINOR] add flags to indicate when a stream interface is waiting for space/data 10920 - [MEDIUM] enable inter-stream_interface wakeup calls 10921 - [MAJOR] implement autonomous inter-socket forwarding 10922 - [MINOR] add the splice_len member to the buffer struct in preparation of splice support 10923 - [MEDIUM] stream_sock: factor out the return path in case of no-writes 10924 - [MEDIUM] i/o: rework ->to_forward and ->send_max 10925 - [OPTIM] stream_sock: do not ask for polling on EAGAIN if we have read 10926 - [OPTIM] buffer: replace rlim by max_len 10927 - [OPTIM] stream_sock: factor out the buffer full handling out of the loop 10928 - [CLEANUP] replace a few occurrences of (flags & X) && !(flags & Y) 10929 - [CLEANUP] stream_sock: move the write-nothing condition out of the loop 10930 - [MEDIUM] split stream_sock_write() into callback and core functions 10931 - [MEDIUM] stream_sock_read: call ->chk_snd whenever there are data pending 10932 - [MINOR] stream_sock: fix a few wrong empty calculations 10933 - [MEDIUM] stream_sock: try to send pending data on chk_snd() 10934 - [MINOR] global.maxpipes: add the ability to reserve file descriptors for pipes 10935 - [MEDIUM] splice: add configuration options and set global.maxpipes 10936 - [MINOR] introduce structures required to support Linux kernel splicing 10937 - [MEDIUM] add definitions for Linux kernel splicing 10938 - [MAJOR] complete support for linux 2.6 kernel splicing 10939 - [BUG] reserve some pipes for backends with splice enabled 10940 - [MEDIUM] splice: add hints to support older buggy kernels 10941 - [MEDIUM] introduce pipe pools 10942 - [MEDIUM] splice: make use of pipe pools 10943 - [STATS] report pipe usage in the statistics 10944 - [OPTIM] make global.maxpipes default to global.maxconn/4 when not specified 10945 - [BUILD] fix snapshot date extraction with negative timezones 10946 - [MEDIUM] move global tuning options to the global structure 10947 - [MEDIUM] splice: add the global "nosplice" option 10948 - [BUILD] add USE_LINUX_SPLICE to enable LINUX_SPLICE on linux 2.6 10949 - [BUG] we must not exit if protocol binding only returns a warning 10950 - [MINOR] add support for bind interface name 10951 - [BUG] inform the user when root is expected but not set 10952 - [MEDIUM] add support for source interface binding 10953 - [MEDIUM] add support for source interface binding at the server level 10954 - [MEDIUM] implement bind-process to limit service presence by process 10955 - [DOC] document maxpipes, nosplice, option splice-{auto,request,response} 10956 - [DOC] filled the logging section of the configuration manual 10957 - [DOC] document HTTP status codes 10958 - [DOC] document a few missing info about errorfile 10959 - [BUG] fix random memory corruption using "show sess" 10960 - [BUG] fix unix socket processing of interrupted output 10961 - [DOC] add diagrams of queuing and future ACL design 10962 - [BUILD] proto_http did not build on gcc-2.95 10963 - [BUG] the "source" keyword must first clear optional settings 10964 - [BUG] global.tune.maxaccept must be limited even in mono-process mode 10965 - [MINOR] ensure that http_msg_analyzer updates pointer to invalid char 10966 - [MEDIUM] store a complete dump of request and response errors in proxies 10967 - [MEDIUM] implement error dump on unix socket with "show errors" 10968 - [DOC] document "show errors" 10969 - [MINOR] errors dump must use user-visible date, not internal date. 10970 - [MINOR] time: add __usec_to_1024th to convert usecs to 1024th of second 10971 - [MINOR] add curr_sec_ms and curr_sec_ms_scaled for current second. 10972 - [MEDIUM] measure and report session rate on frontend, backends and servers 10973 - [BUG] the "connslots" keyword was matched as "connlots" 10974 - [MINOR] acl: add 2 new verbs: fe_sess_rate and be_sess_rate 10975 - [MEDIUM] implement "rate-limit sessions" for the frontend 10976 - [BUG] interface binding: length must include the trailing zero 10977 - [BUG] typo in timeout error reporting : report *res and not *err 10978 - [OPTIM] maintain_proxies: only wake up when the frontend will be ready 10979 - [OPTIM] rate-limit: cleaner behaviour on low rates and reduce consumption 10980 - [BUG] switch server-side stream interface to close in case of abort 10981 - [CLEANUP] remove last references to term_trace 10982 - [OPTIM] freq_ctr: do not rotate the counters when reading 10983 - [BUG] disable any analysers for monitoring requests 10984 - [BUG] rate-limit in defaults section was ignored 10985 - [BUG] task: fix handling of duplicate keys 10986 - [OPTIM] task: don't unlink a task from a wait queue when waking it up 10987 - [OPTIM] displace tasks in the wait queue only if absolutely needed 10988 - [MEDIUM] minor update to the task api: let the scheduler queue itself 10989 - [BUG] event_accept() must always wake the task up, even in health mode 10990 - [CLEANUP] task: distinguish between clock ticks and timers 10991 - [OPTIM] task: reduce the number of calls to task_queue() 10992 - [OPTIM] do not re-check req buffer when only response has changed 10993 - [CLEANUP] don't enable kernel splicing when socket is closed 10994 - [CLEANUP] buffer_flush() was misleading, rename it as buffer_erase 10995 - [MINOR] buffers: implement buffer_flush() 10996 - [MEDIUM] rearrange forwarding condition to enable splice during analysis 10997 - [BUILD] build fixes for Solaris 10998 - [BUILD] proto_http did not build on gcc-2.95 (again) 10999 - [CONTRIB] halog: fast log parser for haproxy 11000 - [CONTRIB] halog: faster fgets() and add support for percentile reporting 11001 110022008/04/19 : 1.3.15 11003 - [BUILD] Added support for 'make install' 11004 - [BUILD] Added 'install-man' make target for installing the man page 11005 - [BUILD] Added 'install-bin' make target 11006 - [BUILD] Added 'install-doc' make target 11007 - [BUILD] Removed "/" after '$(DESTDIR)' in install targets 11008 - [BUILD] Changed 'install' target to install the binaries first 11009 - [BUILD] Replace hardcoded 'LD = gcc' with 'LD = $(CC)' 11010 - [MEDIUM]: Inversion for options 11011 - [MEDIUM]: Count retries and redispatches also for servers, fix redistribute_pending, extend logs, %d->%u cleanup 11012 - [BUG]: Restore clearing t->logs.bytes 11013 - [MEDIUM]: rework checks handling 11014 - [DOC] Update a "contrib" file with a hint about a scheme used for formathing subjects 11015 - [MEDIUM] Implement "track [<backend>/]<server>" 11016 - [MINOR] Implement persistent id for proxies and servers 11017 - [BUG] Don't increment server connections too much + fix retries 11018 - [MEDIUM]: Prevent redispatcher from selecting the same server, version #3 11019 - [MAJOR] proto_uxst rework -> SNMP support 11020 - [BUG] appsession lookup in URL does not work 11021 - [BUG] transparent proxy address was ignored in backend 11022 - [BUG] hot reconfiguration failed because of a wrong error check 11023 - [DOC] big update to the configuration manual 11024 - [DOC] large update to the configuration manual 11025 - [DOC] document more options 11026 - [BUILD] major rework of the GNU Makefile 11027 - [STATS] add support for "show info" on the unix socket 11028 - [DOC] document options forwardfor to logasap 11029 - [MINOR] add support for the "backlog" parameter 11030 - [OPTIM] introduce global parameter "tune.maxaccept" 11031 - [MEDIUM] introduce "timeout http-request" in frontends 11032 - [MINOR] tarpit timeout is also allowed in backends 11033 - [BUG] increment server connections for each connect() 11034 - [MEDIUM] add a turn-around state of one second after a connection failure 11035 - [BUG] fix typo in redispatched connection 11036 - [DOC] document options nolinger to ssl-hello-chk 11037 - [DOC] added documentation for "option tcplog" to "use_backend" 11038 - [BUG] connect_server: server might not exist when sending error report 11039 - [MEDIUM] support fully transparent proxy on Linux (USE_LINUX_TPROXY) 11040 - [MEDIUM] add non-local bind to connect() on Linux 11041 - [MINOR] add transparent proxy support for balabit's Tproxy v4 11042 - [BUG] use backend's source and not server's source with tproxy 11043 - [BUG] fix overlapping server flags 11044 - [MEDIUM] fix server health checks source address selection 11045 - [BUG] build failed on CONFIG_HAP_LINUX_TPROXY without CONFIG_HAP_CTTPROXY 11046 - [DOC] added "server", "source" and "stats" keywords 11047 - [DOC] all server parameters have been documented 11048 - [DOC] document all req* and rsp* keywords. 11049 - [DOC] added documentation about HTTP header manipulations 11050 - [BUG] log response byte count, not request 11051 - [BUILD] code did not build in full debug mode 11052 - [BUG] fix truncated responses with sepoll 11053 - [MINOR] use s->frt_addr as the server's address in transparent proxy 11054 - [MINOR] fix configuration hint about timeouts 11055 - [DOC] minor cleanup of the doc and notice to contributors 11056 - [MINOR] report correct section type for unknown keywords. 11057 - [BUILD] update MacOS Makefile to build on newer versions 11058 - [DOC] fix erroneous "useallbackups" option in the doc 11059 - [DOC] applied small fixes from early readers 11060 - [MINOR] add configuration support for "redir" server keyword 11061 - [MEDIUM] completely implement the server redirection method 11062 - [TESTS] add a test case for the server redirection mechanism 11063 - [DOC] add a configuration entry for "server ... redir <prefix>" 11064 - [BUILD] backend.c and checks.c did not build without tproxy ! 11065 - Revert "[BUILD] backend.c and checks.c did not build without tproxy !" 11066 - [BUILD] backend.c and checks.c did not build without tproxy ! 11067 - [OPTIM] used unsigned ints for HTTP state and message offsets 11068 - [OPTIM] GCC4's builtin_expect() is suboptimal 11069 - [BUG] failed conns were sometimes incremented in the frontend! 11070 - [BUG] timeout.check was not pre-set to eternity 11071 - [TESTS] add test-pollers.cfg to easily report pollers in use 11072 - [BUG] do not apply timeout.connect in checks if unset 11073 - [BUILD] ensure that makefile understands USE_DLMALLOC=1 11074 - [MINOR] silent gcc for a wrong warning 11075 - [CLEANUP] update .gitignore to ignore more temporary files 11076 - [CLEANUP] report dlmalloc's source path only if explictly specified 11077 - [BUG] str2sun could leak a small buffer in case of error during parsing 11078 - [BUG] option allbackups was not working anymore in roundrobin mode 11079 - [MAJOR] implementation of the "leastconn" load balancing algorithm 11080 - [BUILD] ensure that users don't build without setting the target anymore. 11081 - [DOC] document the leastconn LB algo 11082 - [MEDIUM] fix stats socket limitation to 16 kB 11083 - [DOC] fix unescaped space in httpchk example. 11084 - [BUG] fix double-decrement of server connections 11085 - [TESTS] add a test case for port mapping 11086 - [TESTS] add a benchmark for integer hashing 11087 - [TESTS] add new methods in ip-hash test file 11088 - [MAJOR] implement parameter hashing for POST requests 11089 110902007/12/06 : 1.3.14 11091 - New option http_proxy (Alexandre Cassen) 11092 - add support for "maxqueue" to limit server queue overload (Elijah Epifanov) 11093 - Check for duplicated conflicting proxies (Krzysztof Oledzki) 11094 - stats: report server and backend cumulated downtime (Krzysztof Oledzki) 11095 - use backends only with use_backend directive (Krzysztof Oledzki) 11096 - Handle long lines properly (Krzysztof Oledzki) 11097 - Implement and use generic findproxy and relax duplicated proxy check (Krzysztof Oledzki) 11098 - continous statistics (Krzysztof Oledzki) 11099 - add support for logging via a UNIX socket (Robert Tsai) 11100 - fix error checking in strl2ic/strl2uic() 11101 - fix calls to localtime() 11102 - provide easier-to-use ultoa_* functions 11103 - provide easy-to-use limit_r and LIM2A* macros 11104 - add a simple test for the status page 11105 - move error codes to common/errors.h 11106 - silent warning about LIST_* being redefined on OpenBSD 11107 - add socket address length to the protocols 11108 - group PR_O_BALANCE_* bits into a checkable value 11109 - externalize the "balance" option parser to backend.c 11110 - introduce the "url_param" balance method 11111 - make default_backend work in TCP mode too 11112 - disable warning about localtime_r on Solaris 11113 - adjust error messages about conflicting proxies 11114 - avoid calling some layer7 functions if not needed 11115 - simplify error path in event_accept() 11116 - add an options field to the listeners 11117 - added a new state to listeners 11118 - unbind_listener() must use fd_delete() and not close() 11119 - add a generic unbind_listener() primitive 11120 - add a generic delete_listener() primitive 11121 - add a generic unbind_all_listeners() primitive 11122 - create proto_tcp and move initialization of proxy listeners 11123 - stats: report numerical process ID, proxy ID and server ID 11124 - relative_pid was not initialized 11125 - missing header names in raw stats output 11126 - fix missing parenthesis in check_response_for_cacheability 11127 - small optimization on session_process_counters() 11128 - merge ebtree version 3.0 11129 - make ebtree headers multiple-include compatible 11130 - ebtree: include config.h for REGPRM* 11131 - differentiate between generic LB params and map-specific ones 11132 - add a weight divisor to the struct proxy 11133 - implement the Fast Weighted Round Robin (FWRR) algo 11134 - include filltab25.c to experiment on FWRR for dynamic weights 11135 - merge test-fwrr.cfg to validate dynamic weights 11136 - move the load balancing algorithm to be->lbprm.algo 11137 - change server check result to a bit field 11138 - implement "http-check disable-on-404" for graceful shutdown 11139 - secure the calling conditions of ->set_server_status_{up,down} 11140 - report disabled servers as "NOLB" when they are still UP 11141 - document the "http-check disable-on-404" option 11142 - http-check disable-on-404 is not limited to HTTP mode 11143 - add a test file for disable-on-404 11144 - use distinct bits per load-balancing algorithm type 11145 - implement the slowstart parameter for servers 11146 - document the server's slowstart parameter 11147 - stats: report the server warm up status in a "throttle" column 11148 - fix 2 minor issues on AIX 11149 - add the "nbsrv" ACL verb 11150 - add the "fail" condition to monitor requests 11151 - remove a warning from gcc due to htons() in standard.c 11152 - fwrr: ensure that we never overflow in placements 11153 - store the build options to report with -vv 11154 - fix the status return of the init script (R.I. Pienaar) 11155 - stats: real time monitoring script for unix socket (Prizee) 11156 - document "nbsrv" and "monitor fail" 11157 - restrict the set of allowed characters for identifiers 11158 - implement a time parsing function 11159 - add support for time units in the configuration 11160 - add a bit of documentation about timers 11161 - introduce separation between contimeout, and tarpit + queue 11162 - introduce the "timeout" keyword 11163 - grouped all timeouts in one structure 11164 - slowstart is in ms, not seconds 11165 - slowstart: ensure we don't start with a null weight 11166 - report the number of times each server was selected 11167 - fix build on AIX due to recent log changes 11168 - fix build on Solaris due to recent log changes 11169 111702007/10/18 : 1.3.13 11171 - replace the code under O'Reilly license (Arnaud Cornet) 11172 - add a small man page (Arnaud Cornet) 11173 - stats: report haproxy's version by default (Krzysztof Oledzki) 11174 - stats: count server retries and redispatches (Krzysztof Oledzki) 11175 - core: added easy support for Doug Lea's malloc (dlmalloc) 11176 - core: fade out memory usage when stopping proxies 11177 - core: moved the sockaddr pointer to the fdtab structure 11178 - core: add generic protocol support 11179 - core: implement client-side support for PF_UNIX sockets 11180 - stats: implement the CSV output 11181 - stats: add a link to the CSV export HTML page 11182 - stats: implement the statistics output on a unix socket 11183 - config: introduce the "stats" keyword in global section 11184 - build: centralize version and date into one file for each 11185 - tests: added a new hash algorithm 11186 111872007/10/18 : 1.3.12.3 11188 - add the "nolinger" option to disable data lingering (Alexandre Cassen) 11189 - fix double-free during clean exit (Krzysztof Oledzki) 11190 - prevent the system from sending an RST when closing health-checks 11191 (Krzysztof Oledzki) 11192 - do not add a cache-control header when on non-cacheable responses 11193 (Krzysztof Oledzki) 11194 - spread health checks even more (Krzysztof Oledzki) 11195 - stats: scope "." must match the backend and not the frontend 11196 - fixed call to chroot() during startup 11197 - fix wrong timeout computation in event_accept() 11198 - remove condition for exit() under fork() failure 11199 112002007/09/20 : 1.3.12.2 11201 - fix configuration sanity checks for TCP listeners 11202 - set the log socket receive window to zero bytes 11203 - pre-initialize timeouts to infinity, not zero 11204 - fix the SIGHUP message not to alert on server-less proxies 11205 - timeouts and retries could be ignored when switching backend 11206 - added a file to check that "retries" works. 11207 - O'Reilly has clarified its license 11208 112092007/09/05 : 1.3.12.1 11210 - spec I/O: fix allocations of spec entries for an FD 11211 - ensure we never overflow in chunk_printf() 11212 - improve behaviour with large number of servers per proxy 11213 - add support for "stats refresh <interval>" 11214 - stats page: added links for 'refresh' and 'hide down' 11215 - fix backend's weight in the stats page. 11216 - the "stats" keyword is not allowed in a pure frontend. 11217 - provide a test configuration file for stats and checks 11218 112192007/06/17 : 1.3.12 11220 - fix segfault at exit when using captures 11221 - bug: negation in ACL conds was not cleared between terms 11222 - errorfile: use a local file to feed error messages 11223 - acl: support '-i' to ignore case when matching 11224 - acl: smarter integer comparison with operators eq,lt,gt,le,ge 11225 - acl: support maching on 'path' component 11226 - acl: implement matching on header values 11227 - acl: distinguish between request and response headers 11228 - acl: permit to return any header when no name specified 11229 - acl: provide default ACLs 11230 - added the 'use_backend' keyword for full content-switching 11231 - acl: specify the direction during fetches 11232 - acl: provide the argument length for fetch functions 11233 - acl: provide a reference to the expr to fetch() 11234 - improve memory freeing upon exit 11235 - str2net() must not change the const char * 11236 - shut warnings 'is*' macros from ctype.h on solaris 11237 112382007/06/03 : 1.3.11.4 11239 - do not re-arm read timeout in SHUTR state ! 11240 - optimize I/O by detecting system starvation 11241 - the epoll FD must not be shared between processes 11242 - limit the number of events returned by *poll* 11243 112442007/05/14 : 1.3.11.3 11245 - pre-initialize timeouts with tv_eternity during parsing 11246 112472007/05/14 : 1.3.11.2 11248 - fixed broken health-checks since switch to timeval 11249 112502007/05/14 : 1.3.11.1 11251 - fixed ev_kqueue which was forgotten during the switch to timeval 11252 - allowed null timeouts for past events in select 11253 112542007/05/14 : 1.3.11 11255 - fixed ev_sepoll again by rewriting the state machine 11256 - switched all timeouts to timevals instead of milliseconds 11257 - improved memory management using mempools v2. 11258 - several minor optimizations 11259 112602007/05/09 : 1.3.10.2 11261 - fixed build on OpenBSD (missing types.h) 11262 112632007/05/09 : 1.3.10.1 11264 - fixed sepoll transition matrix (two states were missing) 11265 112662007/05/08 : 1.3.10 11267 - several fixes in ev_sepoll 11268 - fixed some expiration dates on some tasks 11269 - fixed a bug in connection establishment detection due to speculative I/O 11270 - fixed rare bug occuring on TCP with early close (reported by Andy Smith) 11271 - implemented URI hashing algorithm (Guillaume Dallaire) 11272 - implemented SMTP health checks (Peter van Dijk) 11273 - replaced the rbtree with ul2tree from old scheduler project 11274 - new framework for generic ACL support 11275 - added the 'acl' and 'block' keywords to the config language 11276 - added several ACL criteria and matches (IP, port, URI, ...) 11277 - cleaned up and better modularization for some time functions 11278 - fixed list macros 11279 - fixed useless memory allocation in str2net() 11280 - store the original destination address in the session 11281 112822007/04/15 : 1.3.9 11283 - modularized the polling mechanisms and use function pointers instead 11284 of macros at many places 11285 - implemented support for FreeBSD's kqueue() polling mechanism 11286 - fixed a warning on OpenBSD : MIN/MAX redefined 11287 - change socket registration order at startup to accomodate kqueue. 11288 - several makefile cleanups to support old shells 11289 - fix build with limits.h once for all 11290 - ev_epoll: do not rely on fd_sets anymore, use changes stacks instead. 11291 - fdtab now holds the results of polling 11292 - implemented support for speculative I/O processing with epoll() 11293 - remove useless calls to shutdown(SHUT_RD), resulting in small speed boost 11294 - auto-registering of pollers at load time 11295 112962007/04/03 : 1.3.8.2 11297 - rewriting either the status line or request line could crash the 11298 process due to a pointer which ought to be reset before parsing. 11299 - rewriting the status line in the response did not work, it caused 11300 a 502 Bad Gateway due to an erroneous state during parsing 11301 113022007/04/01 : 1.3.8.1 11303 - fix reqadd when no option httpclose is used. 11304 - removed now unused fiprm and beprm from proxies 11305 - split logs into two versions : TCP and HTTP 11306 - added some docs about http headers storage and acls 11307 - added a VIM script for syntax color highlighting (Bruno Michel) 11308 113092007/03/25 : 1.3.8 11310 - fixed several bugs which might have caused a crash with bad configs 11311 - several optimizations in header processing 11312 - many progresses towards transaction-based processing 11313 - option forwardfor may be used in frontends 11314 - completed HTTP response processing 11315 - some code refactoring between request and response processing 11316 - new HTTP header manipulation functions 11317 - optimizations on the recv() patch to reduce CPU usage under very 11318 high data rates. 11319 - more user-friendly help about the 'usesrc' keyword (CTTPROXY) 11320 - username/groupname support from Marcus Rueckert 11321 - added the "except" keyword to the "forwardfor" option (Bryan German) 11322 - support for health-checks on other addresses (Fabrice Dulaunoy) 11323 - makefile for MacOS 10.4 / Darwin (Dan Zinngrabe) 11324 - do not insert "Connection: close" in HTTP/1.0 messages 11325 113262007/01/26 : 1.3.7 11327 - fix critical bug introduced with 1.3.6 : an empty request header 11328 may lead to a crash due to missing pointer assignment 11329 - hdr_idx might be left uninitialized in debug mode 11330 - fixed build on FreeBSD due to missing fd_set declaration 11331 113322007/01/22 : 1.3.6.1 11333 - change in the header chaining broke cookies and authentication 11334 113352007/01/22 : 1.3.6 11336 - stats now support the HEAD method too 11337 - extracted http request from the session 11338 - huge rework of the HTTP parser which is now a 28-state FSM. 11339 - linux-style likely/unlikely macros for optimization hints 11340 - do not create a server socket when there's no server 11341 - imported lots of docs 11342 113432007/01/07 : 1.3.5 11344 - stats: swap color sets for active and backup servers 11345 - try to guess server check port when unset 11346 - added complete support and doc for TCP Splicing 11347 - replace the wait-queue linked list with an rbtree. 11348 - a few bugfixes and cleanups 11349 113502007/01/02 : 1.3.4 11351 - support for cttproxy on the server side to present the client 11352 address to the server. 11353 - added support for SO_REUSEPORT on Linux (needs kernel patch) 11354 - new RFC2616-compliant HTTP request parser with header indexing 11355 - split proxies in frontends, rulesets and backends 11356 - implemented the 'req[i]setbe' to select a backend depending 11357 on the contents 11358 - added the 'default_backend' keyword to select a default BE. 11359 - new stats page featuring FEs and BEs + bytes in both dirs 11360 - improved log format to indicate the backend and the time in ms. 11361 - lots of cleanups 11362 113632006/10/15 : 1.3.3 11364 - fix broken redispatch option in case the connection has already 11365 been marked "in progress" (ie: nearly always). 11366 - support regparm on x86 to speed up some often called functions 11367 - removed a few useless calls to gettimeofday() in log functions. 11368 - lots of 'const char*' cleanups 11369 - turn every FD_* into functions which are faster on recent CPUs 11370 113712006/09/03 : 1.3.2 11372 - started the changes towards I/O completion callbacks. stream_sock* have 11373 replaced event_*. 11374 - added the new "reqtarpit" and "reqitarpit" protection features 11375 113762006/07/09 : 1.3.1 (1.2.15) 11377 - now, haproxy warns about missing timeout during startup to try to 11378 eliminate all those buggy configurations. 11379 - added "Content-Type: text/html" in responses wherever appropriate, as 11380 suggested by Cameron Simpson. 11381 - implemented "option ssl-hello-chk" to use SSLv3 CLIENT HELLO messages to 11382 test server's health 11383 - implemented "monitor-uri" so that haproxy can reply to a specific URI with 11384 an "HTTP/1.0 200 OK" response. This is useful to validate multiple proxies 11385 at once. 11386 113872006/06/29 : 1.3.0 11388 - exploded the whole file into multiple .c and .h. No functionnal 11389 difference is expected at all. 11390 - fixed a bug by which neither stats nor error messages could be returned if 11391 'clitimeout' was missing. 11392 113932006/05/21 : 1.2.14 11394 - new HTML status report with the 'stats' keyword. 11395 - added the 'abortonclose' option to better resist traffic surges 11396 - implemented dynamic traffic regulation with the 'minconn' option 11397 - show request time on denied requests 11398 - definitely fixed hot reconf on OpenBSD by the use of SO_REUSEPORT 11399 - now a proxy instance is allowed to run without servers, which is 11400 useful to dedicate one instance to stats 11401 - added lots of error counters 11402 - a missing parenthesis preventd matching of cacheable cookies 11403 - a missing parenthesis in poll_loop() might have caused missed events. 11404 114052006/05/14 : 1.2.13.1 11406 - an uninitialized field in the struct session could cause a crash when 11407 the session was freed. This has been encountered on Solaris only. 11408 - Solaris and OpenBSD no not support shutdown() on listening socket. Let's 11409 be nice to them by performing a soft stop if pause fails. 11410 114112006/05/13 : 1.2.13 11412 - 'maxconn' server parameter to do per-server session limitation 11413 - queueing to support non-blocking session limitation 11414 - fixed removal of cookies for cookie-less servers such as backup servers 11415 - two separate wait queues for expirable and non-expirable tasks provide 11416 better performance with lots of sessions. 11417 - some code cleanups and performance improvements 11418 - made state dumps a bit more verbose 11419 - fixed missing checks for NULL srv in dispatch mode 11420 - load balancing on backup servers was not possible in source hash mode. 11421 - two session flags shared the same bit, but fortunately they were not 11422 compatible. 11423 114242006/04/15 : 1.2.12 11425 Very few changes preparing for more important changes to support per-server 11426 session limitations and queueing : 11427 - ignore leading empty lines in HTTP requests as suggested by RFC2616. 11428 - added the 'weight' parameter to the servers, limited to 1..256. It applies 11429 to roundrobin and source hash. 11430 - the optional '-s' option could clobber '-st' and '-sf' if compiled in. 11431 114322006/03/30 : 1.2.11.1 11433 - under some conditions, it might have been possible that when the 11434 last dead server became available, it would not have been used 11435 till another one would have changed state. Could not be reproduced 11436 at all, however seems possible from the code. 11437 114382006/03/25 : 1.2.11 11439 - added the '-db' command-line option to disable backgrounding. 11440 - added the -sf/-st command-line arguments which are used to specify 11441 a list of pids to send a FINISH or TERMINATE signal upon startup. 11442 They will also be asked to release their port if a bind fails. 11443 - reworked the startup mechanism to allow the sending of a signal to a list 11444 of old pids if a socket cannot be bound, with a retry for a limited amount 11445 of time (1 second by default). 11446 - added the ability to enforce limits on memory usage. 11447 - added the 'source' load-balancing algorithm which uses the source IP(v4|v6) 11448 - re-architectured the server round-robin mechanism to ease integration of 11449 other algorithms. It now relies on the number of active and backup servers. 11450 - added a counter for the number of active and backup servers, and report 11451 these numbers upon SIGHUP or state change. 11452 114532006/03/23 : 1.2.10.1 11454 - while fixing the backup server round-robin "feature", a new bug was 11455 introduced which could miss some backup servers. 11456 - the displayed proxy name was wrong when dumping upon SIGHUP. 11457 114582006/03/19 : 1.2.10 11459 - assert.h is needed when DEBUG is defined. 11460 - ENORMOUS long standing bug affecting the epoll polling system : 11461 event_data is a union, not a structure ! 11462 - Make fd management more robust and easier to debug. Also some 11463 micro-optimisations. 11464 - Limit the number of consecutive accept() in multi-process mode. 11465 This produces a more evenly distributed load across the processes and 11466 slightly improves performance by reducing bottlenecks. 11467 - Make health-checks be more regular, and faster to retry after a timeout. 11468 - Fixed some messages to ease parsing of alerts. 11469 - provided a patch to enable epoll on RHEL3 kernels. 11470 - Separated OpenBSD build from the main Makefile into a new one. 11471 114722006/03/15 : 1.2.9 11473 - haproxy could not be stopped after being paused, it had to be woken up 11474 first. This has been fixed. 11475 - the 'ulimit-n' parameter is now optional and by default computed from 11476 maxconn + the number of listeners + the number of health-checks. 11477 - it is now possible to specify a maximum number of connections at build 11478 time with the SYSTEM_MAXCONN define. The value set in the configuration 11479 file will then be limited to this value, and only the command-line '-n' 11480 option will be able to bypass it. It will prevent against accidental 11481 high memory usage on small systems. 11482 - RFC2616 expects that any HTTP agent accepts multi-line headers. Earlier 11483 versions did not detect a line beginning with a space as the continuation 11484 of previous header. It is now correct. 11485 - health checks sent to servers configured with identical intervals were 11486 sent in perfect synchronisation because the initial time was the same 11487 for all. This could induce high load peaks when fragile servers were 11488 hosting tens of instances for the same application. Now the load is 11489 spread evenly across the smallest interval amongst a listener. 11490 - a new 'forceclose' option was added to make the proxy close the outgoing 11491 channel to the server once it has sent all its headers and the server 11492 starts responding. This helps some servers which don't close upon the 11493 'Connection: close' header. It implies 'option httpclose'. 11494 - there was a bug in the way the backup servers were handled. They were 11495 erroneously load-balanced while the doc said the opposite. Since 11496 load-balanced backup servers is one of the features some people have 11497 been asking for, the problem was fixed to reflect the documented 11498 behaviour and a new option 'allbackups' was introduced to provide the 11499 feature to those who need it. 11500 - a never ending connect() could lead to a fast select() loop if its 11501 timeout times the number of retransmits exceeded the server read or write 11502 timeout, because the later was used to compute select()'s timeout while 11503 the connection timeout was not reached. 11504 - now we initialize the libc's localtime structures very early so that even 11505 under OOM conditions, we can still send dated error messages without 11506 segfaulting. 11507 - the 'daemon' mode implies 'quiet' and disables 'verbose' because file 11508 descriptors are closed. 11509 115102006/01/29 : 1.2.8 11511 - fixed a nasty bug affecting poll/epoll which could return unmodified data 11512 from the server to the client, and sometimes lead to memory corruption 11513 crashing the process. 11514 - added the new pause/play mechanism with SIGTTOU/SIGTTIN for hot-reconf. 11515 115162005/12/18 : 1.2.7.1 11517 - the "retries" option was ignored because connect() could not return an 11518 error if the connection failed before the timeout. 11519 - TCP health-checks could not detect a connection refused in poll/epoll 11520 mode. 11521 115222005/11/13 : 1.2.7 11523 - building with -DUSE_PCRE should include PCRE headers and not regex.h. At 11524 least on Solaris, this caused the libc's regex primitives to be used instead 11525 of PCRE, which caused trouble on group references. This is now fixed. 11526 - delayed the quiet mode during startup so that most of the startup alerts can 11527 be displayed even in quiet mode. 11528 - display an alert when a listener has no address, invalid or no port, or when 11529 there are no enabled listeners upon startup. 11530 - added "static-pcre" to the list of supported regex options in the Makefile. 11531 115322005/10/09 : 1.2.7rc (1.1.33rc) 11533 - second batch of socklen_t changes. 11534 - clean-ups from Cameron Simpson. 11535 - because tv_remain() does not know about eternity, using no timeout can 11536 make select() spin around a null time-out. Bug reported by Cameron Simpson. 11537 - client read timeout was not properly set to eternity initialized after an 11538 accept() if it was not set in the config. It remained undetected so long 11539 because eternity is 0 and newly allocated pages are zeroed by the system. 11540 - do not call get_original_dst() when not in transparent mode. 11541 - implemented a workaround for a bug in certain epoll() implementations on 11542 linux-2.4 kernels (epoll-lt <= 0.21). 11543 - implemented TCP keepalive with new options : tcpka, clitcpka, srvtcpka. 11544 115452005/08/07 : 1.2.6 11546 - clean-up patch from Alexander Lazic fixes build on Debian 3.1 (socklen_t). 11547 115482005/07/06 : 1.2.6-pre5 (1.1.32) 11549 - added the number of active sessions (proxy/process) in the logs 11550 115512005/07/06 : 1.2.6-pre4 (1.1.32-pre4) 11552 - the time-out fix introduced in 1.1.25 caused a corner case where it was 11553 possible for a client to keep a connection maintained regardless of the 11554 timeout if the server closed the connection during the HEADER phase, 11555 while the client ignored the close request while doing nothing in the 11556 other direction. This has been fixed now by ensuring that read timeouts 11557 are re-armed when switching to any SHUTW state. 11558 115592005/07/05 : 1.2.6-pre3 (1.1.32-pre3) 11560 - enhanced error reporting in the logs. Now the proxy will precisely detect 11561 various error conditions related to the system and/or process limits, and 11562 generate LOG_EMERG logs indicating that a resource has been exhausted. 11563 - logs will contain two new characters for the error cause : 'R' indicates 11564 a resource exhausted, and 'I' indicates an internal error, though this 11565 one should never happen. 11566 - server connection timeouts can now be reported in the logs (sC), as well 11567 as connections refused because of maxconn limitations (PC). 11568 115692005/07/05 : 1.2.6-pre2 (1.1.32-pre2) 11570 - new global configuration keyword "ulimit-n" may be used to raise the FD 11571 limit to usable values. 11572 - a warning is now displayed on startup if the FD limit is lower than the 11573 configured maximum number of sockets. 11574 115752005/07/05 : 1.2.6-pre1 (1.1.32-pre1) 11576 - new configuration keyword "monitor-net" makes it possible to be monitored 11577 by external devices which connect to the proxy without being logged nor 11578 forwarded to any server. Particularly useful on generic TCPv4 relays. 11579 115802005/06/21 : 1.2.5.2 11581 - fixed build on PPC where chars are unsigned by default 11582 115832005/05/02 : 1.2.5.1 11584 - dirty hack to fix a bug introduced with epoll : if we close an FD and 11585 immediately reassign it to another session through a connect(), the 11586 Prev{Read,Write}Events are not updated, which causes trouble detecting 11587 changes, thus leading to many timeouts at high loads. 11588 115892005/04/30 : 1.2.5 (1.1.31) 11590 - changed the runtime argument to disable epoll() to '-de' 11591 - changed the runtime argument to disable poll() to '-dp' 11592 - added global options 'nopoll' and 'noepoll' to do the same at the 11593 configuration level. 11594 - added a 'linux24e' target to the Makefile for Linux 2.4 systems patched to 11595 support epoll(). 11596 - changed default FD_SETSIZE to 65536 on Solaris (default=1024) 11597 - conditionned signals redirection to #ifdef DEBUG_MEMORY 11598 115992005/04/26 : 1.2.5-pre4 11600 - made epoll() support a compile-time option : ENABLE_EPOLL 11601 - provided a very little libc replacement for a possibly missing epoll() 11602 implementation which can be enabled by -DUSE_MY_EPOLL 11603 - implemented the poll() poller, which can be enabled with -DENABLE_POLL. 11604 The equivalent runtime argument becomes '-P'. A few tests show that it 11605 performs like select() with many fds, but slightly slower (certainly 11606 because of the higher amount of memory involved). 11607 - separated the 3 polling methods and the tasks scheduler into 4 distinct 11608 functions which makes the code a lot more modular. 11609 - moved some event tables to private static declarations inside the poller 11610 functions. 11611 - the poller functions can now initialize themselves, run, and cleanup. 11612 - changed the runtime argument to enable epoll() to '-E'. 11613 - removed buggy epoll_ctl() code in the client_retnclose() function. This 11614 function was never meant to remove anything. 11615 - fixed a typo which caused glibc to yell about a double free on exit. 11616 - removed error checking after epoll_ctl(DEL) because we can never know if 11617 the fd is still active or already closed. 11618 - added a few entries in the makefile 11619 116202005/04/25 : 1.2.5-pre3 11621 - experimental epoll() support (use temporary '-e' argument) 11622 116232005/04/24 : 1.2.5-pre2 11624 - implemented the HTTP 303 code for error redirection. This forces the 11625 browser to fetch the given URI with a GET request. The new keyword for 11626 this is 'errorloc303', and a new 'errorloc302' keyword has been created 11627 to make them easily distinguishable. 11628 - added more controls in the parser for valid use of '\x' sequence. 11629 - few fixes from Alex & Klaus 11630 116312005/02/17 : 1.2.5-pre1 11632 - fixed a few errors in the documentation 11633 116342005/02/13 11635 - do not pre-initialize unused file-descriptors before select() anymore. 11636 116372005/01/22 : 1.2.4 11638 - merged Alexander Lazic's and Klaus Wagner's work on application 11639 cookie-based persistence. Since this is the first merge, this version is 11640 not intended for general use and reports are more than welcome. Some 11641 documentation is really needed though. 11642 116432005/01/22 : 1.2.3 (1.1.30) 11644 - add an architecture guide to the documentation 11645 - released without any changes 11646 116472004/12/26 : 1.2.3-pre1 (1.1.30-pre1) 11648 - increased default BUFSIZE to 16 kB to accept max headers of 8 kB which is 11649 compatible with Apache. This limit can be configured in the makefile now. 11650 Thanks to Eric Fehr for the checks. 11651 - added a per-server "source" option which now makes it possible to bind to 11652 a different source for each (potentially identical) server. 11653 - changed cookie-based server selection slightly to allow several servers to 11654 share a same cookie, thus making it possible to associate backup servers to 11655 live servers and ease soft-stop for maintenance periods. (Alexander Lazic) 11656 - added the cookie 'prefix' mode which makes it possible to use persistence 11657 with thin clients which support only one cookie. The server name is prefixed 11658 before the application cookie, and restore back. 11659 - fixed the order of servers within an instance to match documentation. Now 11660 the servers are *really* used in the order of their declaration. This is 11661 particularly important when multiple backup servers are in use. 11662 116632004/10/18 : 1.2.2 (1.1.29) 11664 - fixed a bug where a TCP connection would be logged twice if the 'logasap' 11665 option was enabled without the 'tcplog' option. 11666 - encode_string() would use hdr_encode_map instead of the map argument. 11667 116682004/08/10 : (1.1.29-pre2) 11669 - the logged request is now encoded with '#XX' for unprintable characters 11670 - new keywords 'capture request header' and 'capture response header' enable 11671 logging of arbitrary HTTP headers in requests and responses 11672 - removed "-DSOLARIS" after replacing the last inet_aton() with inet_pton() 11673 116742004/06/06 : 1.2.1 (1.1.28) 11675 - added the '-V' command line option to verbosely report errors even though 11676 the -q or 'quiet' options are specified. This is useful with '-c'. 11677 - added a Red Hat init script and a .spec from Simon Matter <simon.matter@invoca.ch> 11678 116792004/06/05 : 11680 - added the "logasap" option which produces a log without waiting for the data 11681 to be transferred from the server to the client. 11682 - added the "httpclose" option which removes any "connection:" header and adds 11683 "Connection: close" in both direction. 11684 - added the 'checkcache' option which blocks cacheable responses containing 11685 dangerous headers, such as 'set-cookie'. 11686 - added 'rspdeny' and 'rspideny' to block certain responses to avoid sensible 11687 information leak from servers. 11688 116892004/04/18 : 11690 - send an EMERG log when no server is available for a given proxy 11691 - added the '-c' command line option to syntactically check the 11692 configuration file without starting the service. 11693 116942003/11/09 : 1.2.0 11695 - the same as 1.1.27 + IPv6 support on the client side 11696 116972003/10/27 : 1.1.27 11698 - the configurable HTTP health check introduced in 1.1.23 revealed a shameful 11699 bug : the code still assumed that HTTP requests were the same size as the 11700 original ones (22 bytes), and failed if they were not. 11701 - added support for pidfiles. 11702 117032003/10/22 : 1.1.26 11704 - the fix introduced in 1.1.25 for client timeouts while waiting for servers 11705 broke almost all compatibility with POST requests, because the proxy 11706 stopped to read anything from the client as soon as it got all of its 11707 headers. 11708 117092003/10/15 : 1.1.25 11710 - added the 'tcplog' option, which provides enhanced, HTTP-like logs for 11711 generic TCP proxies, or lighter logs for HTTP proxies. 11712 - fixed a time-out condition wrongly reported as client time-out in data 11713 phase if the client timeout was lower than the connect timeout times the 11714 number of retries. 11715 117162003/09/21 : 1.1.24 11717 - if a client sent a full request then shut its write connection down, then 11718 the request was aborted. This case was detected only when using haproxy 11719 both as health-check client and as a server. 11720 - if 'option httpchk' is used in a 'health' mode server, then responses will 11721 change from 'OK' to 'HTTP/1.0 200 OK'. 11722 - fixed a Linux-only bug in case of HTTP server health-checks, where a single 11723 server response followed by a close could be ignored, and the server seen 11724 as failed. 11725 117262003/09/19 : 1.1.23 11727 - fixed a stupid bug introduced in 1.1.22 which caused second and subsequent 11728 'default' sections to keep previous parameters, and not initialize logs 11729 correctly. 11730 - fixed a second stupid bug introduced in 1.1.22 which caused configurations 11731 relying on 'dispatch' mode to segfault at the first connection. 11732 - 'option httpchk' now supports method, HTTP version and a few headers. 11733 - now, 'option httpchk', 'cookie' and 'capture' can be specified in 11734 'defaults' section 11735 117362003/09/10 : 1.1.22 11737 - 'listen' now supports optionnal address:port-range lists 11738 - 'bind' introduced to add new listen addresses 11739 - fixed a bug which caused a session to be kept established on a server till 11740 it timed out if the client closed during the DATA phase. 11741 - the port part of each server address can now be empty to make the proxy 11742 connect to the server on the same port it was connected to, be an absolute 11743 unsigned number to reflect a single port (as in older versions), or an 11744 explicitly signed number (+N/-N) to indicate that this offset must be 11745 applied to the port the proxy was connected to, when connecting to the 11746 server. 11747 - the 'port' server option allows the user to specify a different 11748 health-check port than the service one. It is mandatory when only relative 11749 ports have been specified and check is required. By default, the checks are 11750 sent to the service port. 11751 - new 'defaults' section which is rather similar to 'listen' except that all 11752 values are only used as default values for future 'listen' sections, until 11753 a new 'defaults' resets them. At the moment, server options, regexes, 11754 cookie names and captures cannot be set in the 'defaults' section. 11755 117562003/05/06 : 1.1.21 11757 - changed the debug output format so that it now includes the session unique 11758 ID followed by the instance name at the beginning of each line. 11759 - in debug mode, accept now shows the client's IP and port. 11760 - added one 3 small debugging scripts to search and pretty print debug output 11761 - changed the default health check request to "OPTIONS /" instead of 11762 "OPTIONS *" since not all servers implement the later one. 11763 - "option httpchk" now accepts an optional parameter allowing the user to 11764 specify and URI other than '/' during health-checks. 11765 117662003/04/21 : 1.1.20 11767 - fixed two problems with time-outs, one where a server would be logged as 11768 timed out during transfer that take longer to complete than the fixed 11769 time-out, and one where clients were logged as timed-out during the data 11770 phase because they didn't have anything to send. This sometimes caused 11771 slow client connections to close too early while in fact there was no 11772 problem. The proper fix would be to have a per-fd time-out with 11773 conditions depending on the state of the HTTP FSM. 11774 117752003/04/16 : 1.1.19 11776 - haproxy was NOT RFC compliant because it was case-sensitive on HTTP 11777 "Cookie:" and "Set-Cookie:" headers. This caused JVM 1.4 to fail on 11778 cookie persistence because it uses "cookie:". Two memcmp() have been 11779 replaced with strncasecmp(). 11780 117812003/04/02 : 1.1.18 11782 - Haproxy can be compiled with PCRE regex instead of libc regex, by setting 11783 REGEX=pcre on the make command line. 11784 - HTTP health-checks now use "OPTIONS *" instead of "OPTIONS /". 11785 - when explicit source address binding is required, it is now also used for 11786 health-checks. 11787 - added 'reqpass' and 'reqipass' to allow certain headers but not the request 11788 itself. 11789 - factored several strings to reduce binary size by about 2 kB. 11790 - replaced setreuid() and setregid() with more standard setuid() and setgid(). 11791 - added 4 status flags to the log line indicating who ended the connection 11792 first, the sessions state, the validity of the cookie, and action taken on 11793 the set-cookie header. 11794 117952002/10/18 : 1.1.17 11796 - add the notion of "backup" servers, which are used only when all other 11797 servers are down. 11798 - make Set-Cookie return "" instead of "(null)" when the server has no 11799 cookie assigned (useful for backup servers). 11800 - "log" now supports an optionnal level name (info, notice, err ...) above 11801 which nothing is sent. 11802 - replaced some strncmp() with memcmp() for better efficiency. 11803 - added "capture cookie" option which logs client and/or server cookies 11804 - cleaned up/down messages and dump servers states upon SIGHUP 11805 - added a redirection feature for errors : "errorloc <errnum> <url>" 11806 - now we won't insist on connecting to a dead server, even with a cookie, 11807 unless option "persist" is specified. 11808 - added HTTP/408 response for client request time-out and HTTP/50[234] for 11809 server reply time-out or errors. 11810 118112002/09/01 : 1.1.16 11812 - implement HTTP health checks when option "httpchk" is specified. 11813 118142002/08/07 : 1.1.15 11815 - replaced setpgid()/setpgrp() with setsid() for better portability, because 11816 setpgrp() doesn't have the same meaning under Solaris, Linux, and OpenBSD. 11817 118182002/07/20 : 1.1.14 11819 - added "postonly" cookie mode 11820 118212002/07/15 : 1.1.13 11822 - tv_diff used inverted parameters which led to negative times ! 11823 118242002/07/13 : 1.1.12 11825 - fixed stats monitoring, and optimized some tv_* for most common cases. 11826 - replaced temporary 'newhdr' with 'trash' to reduce stack size 11827 - made HTTP errors more HTML-fiendly. 11828 - renamed strlcpy() to strlcpy2() because of a slightly difference between 11829 their behaviour (return value), to avoid confusion. 11830 - restricted HTTP messages to HTTP proxies only 11831 - added a 502 message when the connection has been refused by the server, 11832 to prevent clients from believing this is a zero-byte HTTP 0.9 reply. 11833 - changed 'Cache-control:' from 'no-cache="set-cookie"' to 'private' when 11834 inserting a cookie, because some caches (apache) don't understand it. 11835 - fixed processing of server headers when client is in SHUTR state 11836 118372002/07/04 : 11838 - automatically close fd's 0,1 and 2 when going daemon ; setpgrp() after 11839 setpgid() 11840 118412002/06/04 : 1.1.11 11842 - fixed multi-cookie handling in client request to allow clean deletion 11843 in insert+indirect mode. Now, only the server cookie is deleted and not 11844 all the header. Should now be compliant to RFC2965. 11845 - added a "nocache" option to "cookie" to specify that we explicitly want 11846 to add a "cache-control" header when we add a cookie. 11847 It is also possible to add an "Expires: <old-date>" to keep compatibility 11848 with old/broken caches. 11849 118502002/05/10 : 1.1.10 11851 - if a cookie is used in insert+indirect mode, it's desirable that the 11852 the servers don't see it. It was not possible to remove it correctly 11853 with regexps, so now it's removed automatically. 11854 118552002/04/19 : 1.1.9 11856 - don't use snprintf()'s return value as an end of message since it may 11857 be larger. This caused bus errors and segfaults in internal libc's 11858 getenv() during localtime() in send_log(). 11859 - removed dead insecure send_syslog() function and all references to it. 11860 - fixed warnings on Solaris due to buggy implementation of isXXXX(). 11861 118622002/04/18 : 1.1.8 11863 - option "dontlognull" 11864 - fixed "double space" bug in config parser 11865 - fixed an uninitialized server field in case of dispatch 11866 with no existing server which could cause a segfault during 11867 logging. 11868 - the pid logged was always the father's, which was wrong for daemons. 11869 - fixed wrong level "LOG_INFO" for message "proxy started". 11870 118712002/04/13 : 11872 - http logging is now complete : 11873 - ip:port, date, proxy, server 11874 - req_time, conn_time, hdr_time, tot_time 11875 - status, size, request 11876 - source address 11877 118782002/04/12 : 1.1.7 11879 - added option forwardfor 11880 - added reqirep, reqidel, reqiallow, reqideny, rspirep, rspidel 11881 - added "log global" in "listen" section. 11882 118832002/04/09 : 11884 - added a new "global" section : 11885 - logs 11886 - debug, quiet, daemon modes 11887 - uid, gid, chroot, nbproc, maxconn 11888 118892002/04/08 : 1.1.6 11890 - regex are now chained and not limited anymore. 11891 - unavailable server now returns HTTP/502. 11892 - increased per-line args limit to 40 11893 - added reqallow/reqdeny to block some request on matches 11894 - added HTTP 400/403 responses 11895 118962002/04/03 : 1.1.5 11897 - connection logging displayed incorrect source address. 11898 - added proxy start/stop and server up/down log events. 11899 - replaced log message short buffers with larger trash. 11900 - enlarged buffer to 8 kB and replace buffer to 4 kB. 11901 119022002/03/25 : 1.1.4 11903 - made rise/fall/interval time configurable 11904 119052002/03/22 : 1.1.3 11906 - fixed a bug : cr_expire and cw_expire were inverted in CL_STSHUT[WR] 11907 which could lead to loops. 11908 119092002/03/21 : 1.1.2 11910 - fixed a bug in buffer management where we could have a loop 11911 between event_read() and process_{cli|srv} if R==BUFSIZE-MAXREWRITE. 11912 => implemented an adjustable buffer limit. 11913 - fixed a bug : expiration of tasks in wait queue timeout is used again, 11914 and running tasks are skipped. 11915 - added some debug lines for accept events. 11916 - send warnings for servers up/down. 11917 119182002/03/12 : 1.1.1 11919 - fixed a bug in total failure handling 11920 - fixed a bug in timestamp comparison within same second (tv_cmp_ms) 11921 119222002/03/10 : 1.1.0 11923 - fixed a few timeout bugs 11924 - rearranged the task scheduler subsystem to improve performance, 11925 add new tasks, and make it easier to later port to librt ; 11926 - allow multiple accept() for one select() wake up ; 11927 - implemented internal load balancing with basic health-check ; 11928 - cookie insertion and header add/replace/delete, with better strings 11929 support. 11930 119312002/03/08 11932 - reworked buffer handling to fix a few rewrite bugs, and 11933 improve overall performance. 11934 - implement the "purge" option to delete server cookies in direct mode. 11935 119362002/03/07 11937 - fixed some error cases where the maxfd was not decreased. 11938 119392002/02/26 11940 - now supports transparent proxying, at least on linux 2.4. 11941 119422002/02/12 11943 - soft stop works again (fixed select timeout computation). 11944 - it seems that TCP proxies sometimes cannot timeout. 11945 - added a "quiet" mode. 11946 - enforce file descriptor limitation on socket() and accept(). 11947 119482001/12/30 : release of version 1.0.2 : fixed a bug in header processing 119492001/12/19 : release of version 1.0.1 : no MSG_NOSIGNAL on solaris 119502001/12/16 : release of version 1.0.0. 119512001/12/16 : added syslog capability for each accepted connection. 119522001/11/19 : corrected premature end of files and occasional SIGPIPE. 119532001/10/31 : added health-check type servers (mode health) which replies OK then closes. 119542001/10/30 : added the ability to support standard TCP proxies and HTTP proxies 11955 with or without cookies (use keyword http for this). 119562001/09/01 : added client/server header replacing with regexps. 11957 eg: 11958 cliexp ^(Host:\ [^:]*).* Host:\ \1:80 11959 srvexp ^Server:\ .* Server:\ Apache 119602000/11/29 : first fully working release with complete FSMs and timeouts. 119612000/11/28 : major rewrite 119622000/11/26 : first write 11963